6.x Release Update

obtainablerabbiData Management

Jan 31, 2013 (4 years and 2 months ago)

109 views

1

®

PacketWise 6.0 Update

®


Slide
2

New 6.0 Features


Xpress
-

Acceleration (Compression)


Application
-
Intelligent


Improved Fit in Redundant Topologies


Link Monitoring


Secure Management (SSL/SSH)


AppCelera redirection


Command Scheduling in WUI


New Applications Classified


% Partitions


Data Entry Form


System Variables

®


Slide
3

New 6.0 Features


VLAN and MPLS Enhancements


File Browser


ZIP and UNZIP


Report Enhancements


Back
-
up and Restore Measurement Data


Resets


AppVantage Features in PacketWise


CLI Command Editing


ARP Command


Packetcapture

®


Slide
4

Xpress

Application

Intelligent Acceleration



Application Class Policies:


Partition/Rate = 256Kbps


Burst Priority = LOW


Compression = ON


Application Class
-
Based Compression


Integrated with Traffic Management/Monitoring


Multiple Algorithm “Plug
-
ins” Architecture


Chose What Traffic to Compress



-

e.g. Don’t Compress VoIP, Streaming


Active Tunnel Management


Latency Management


MTU Management to
control packet separation, Selective Packet
Bundling

®


Slide
5

Xpress Acceleration


PacketShaper w/Express
on both ends


Compression specific
reports


Software Key Required


Chargeable


Memory Requirements

®


Slide
6

Xpress Reports

®


Slide
7

Improved Fit in Redundant Topologies


Direct Standby


LEM connection between
PacketShapers (Outside)


Access
-
Link Monitoring


Basic Mode


Multiple WAN
(Link Up/Down)


Advanced Mode


prevents
overload of WAN


Link State Mirroring


Brings down second port of
NIC pair when one goes down


Requires Inside interface of
Standby pair connected

WAN /
Internet

L

L

®


Slide
8

High Availability PacketShaper
Implementation


Disable relays in PacketShapers

in order to redirect traffic around
a PacketShaper failure.


PacketShaper’s High
-
Availability (Direct Standby) implementation
requires 2 directly connected PS via the
OUTSIDE
port on the

uppermost LEM
.


INSIDE

port of that LEM provides a redundant

management path to
the PacketShaper.


PS

PS

Redundant

Management path

Network
Segment


Direct PS
-
PS Link

(copied traffic)

Redundant
management link

LAN

S

S

®


Slide
9

High Availability PacketShaper
Operation


Once Connected, a discovery and self config process is used
between the PacketShapers.


Verify that the direct connection is with another PacketShaper
running in direct standby mode.


Once a peer PS has been identified on the direct connection, copies
of in
-
band traffic will be transmitted over the direct link to the other
PS.


Traffic received on the direct link is measured, classified and
controlled then discarded.


The speed of the direct link shall be greater than or equal to the
WAN link.


This Ethernet is expected to be a point
-
to
-
point connection between
the two Shapers (Packets are modified, will not pass an FCS
check).


®


Slide
10

Secure Management


HTTP
-
S

(HTTP over Secure Socket Level)

Port 443


port can be changed


HTTP

Port 80


SSH

(Secure Shell)

Port 22


port can be changed

Supports SSH protocol versions 1.3, 1.5, and 2.0.


Telnet

Port 23

®


Slide
11

SSL

Clicking the

Secure Login

Checkbox connects

Via SSL

®


Slide
12

SSH

®


Slide
13

SSL


E
-
commerce web
-
servers require purchasing for
certificates issued by a commercial CA, this is

primarily to have a trusted 3
rd

party verify the

web site is who they say they are.


PacketShaper only uses

SSL for encryption.

PacketShaper uses

certificates issued by

Packeteer as 3
rd

party

verification is not

required and so you

may see this alert.


®


Slide
14

Command Scheduling


Now available in the WUI


Supported added for:


Day of Week


Specified Day


Ongoing or one time basis


Local Time or UTC


Schedules stored in unit configuration


no need
for the startup.cmd


Email notification

®


Slide
15

Extended Classifications


HTTP
-
Tunnel

Traffic on port 80 using the http
-
tunnel.com or socks2http gateway


IPComp

IP Payload compression


Megaco

Media Gateway Control (H.248)


MGCP

Media Gateway Control Protocol


SIP


Session Initiation Protocol


Skinny

Cisco’s Skinny Client Control (SCCP)


®


Slide
16

Extended Classifications (Changes)


AOL and ICQ
-
2000


Name changed to AOL
-
AIM
-
ICQ


Differentiates between AOL client an IM


Citrix Published Apps using Nfuse 1.7


Gnutella


Mutella, Shareaza, Xolos, Ares, Acquistion, Phex,
Qtraxmax and Morpheus


Gnutella over UDP


FTP


Non
-
standard, passive, extended passive

®


Slide
17

Partitions


Partitions can now be configured as % as well
as fixed bps rates


One configuration covers devices with different
WAN speeds


Can reduce the number of PolicyCenter groups

®


Slide
18

Data Entry Form


Used for repetitive tasks


Special type of command file



®


Slide
19

Data Entry Form



®


Slide
20

System Variables

®


Slide
21

VLAN and MPLS Enhancements


Classify application traffic by ISL (Inter
-
Switch Link, a
Cisco protocol)


Classify application traffic by VLAN priority


Create a policy to change the VLAN identification
(802.1Q) or priority value (802.1p) on a packet


Management considerations when deployed on VLAN
trunk


Use a LEM card for management


MPLS


Create classes based on the experimental bits field in the MPLS
label


Create a policy to add or change an MPLS label or experimental
bits field



®


Slide
22

File Browser


Ability to access the
PacketShaper’s flash disk
and hard drive


Delete files


Create and uncompress
ZIP files


Upload files to your
Packeteer unit


Download files


Edit and create command
files (a Command File
Editor)


®


Slide
23

Report Enhancements


Saving Generated
Reports


Enable Offline Reports in
Security Settings


Download Summary.zip
file from PacketShaper


From Word Document
specify the IP address
and Look SNMP
community string


Create Network
Performance Summary

®


Slide
24

Report Enhancements


Utilization and Efficiency graphs show when
Shaping is On or Off


Green line on top shows shaping on

®


Slide
25

Report Enhancements


Top 10 Children Pie Graphs

®


Slide
26

Measurement Engine Improvements


Ability to back
-
up ME Data


Ability to restore ME Data


(Devices must be running the same version of PacketWise and have
the same capacity)



Measurement Engine can be stopped and
started


measure start


measure stop

®


Slide
27

Measurement Resets


Option to selectively reset Measurement
Variables

®


Slide
28

AppVantage Features


Customer Portal


Customer Portal


Allows service providers to offer customized, limited and branded
set of Packetwise information to their customers (each customer
sees only their own data)


Required Tasks:


Create customer accounts, passwords, and directories from CLI or WUI


Customized sample LOGIN.HTM and INDEX.HTM based on
information the service provider wants to show the customer


FTP the edited LOGIN.HTM file to the directory 9.258/customer


FTP the edited INDEX.HTM file to each customer’s home directory


Designing Portal Content requires basic web scripting, examples are
provided in Appendix G of the AppVantage Manual.


®


Slide
29

AppVantage Features


Customer Portal

®


Slide
30

AppVantage Features


Customer Portal

®


Slide
31

AppVantage


Packet Exchange Time


The
packet exchange time

is the interval
between a data packet leaving PacketShaper
and the arrival of its acknowledgment (ACK).
This variable is sampled every minute.

®


Slide
32

CLI Command Editing

®


Slide
33

Synthetic Transactions


Synthetic transactions allows PacketWise to initiate web or other TCP
transactions at periodic intervals to verify the availability of critical
hosts.


Traffic classes for the hosts specified in synthetic transactions. The
classes will be created in a folder named SyntheticTransactions.




®


Slide
34

ARP Command


The
arp privadd

command now allows you to add static
MAC address entries without PacketWise resolving
them. You will need to specify the device through which
the packets destined for the machine has to go (Inside or
Outside).


This is a permanent entry, you will have to delete the
entry manually using
arp drop

when you want to remove
the entry.



arp privadd
<ipaddress> <mac_addr> <device
(inside|outside)
>


®


Slide
35

Packetcapture


PacketShaper has ability to take packet traces


File is in TCP Dump format

®


Slide
36

Packetcapture

®


Slide
37

6.0.1 Updates


Support for the 1550



Expanded Classification


BitTorrent


eDonkey


Includes eMule and Overnet


SonyOnline


updated Everquest


Gnutella


updated for Ares



Ability to disable scheduled items

®


Slide
38

6.0.2 Updates


Classifications


Apple
-
iTunes


Ariel
-
419


Ariel
-
422


Filetopia


GoToMyPC


Lotus
-
IM


PeerEnabler


Altnet over KaZaA v2.5 and PeerEnabler


PostgreSQL


SmartSockets


WinampStream


Windows
-
POPUP


Winny (by plugin)

®


Slide
39

6.0.2 Updates


New Application
Specific Criteria


PostgreSQL


classification by database name

(Manual or discovery within class)



SSL


classification for certificate common name



FTP
-
Data
-
Clear


classification by file name



NNTP
-
Clear


classification for newsgroup
name

®


Slide
40

6.1.1 Updates


Support for the 9500


New Gigabit LEM cards (6500, 8500 and 9500)


Fiber Bypass


Watch Mode
-

support for multiple Site Routers
by MAC or IP address


Compression Estimator Mode


NIC Speed and Duplex displayed on the SETUP
page under basic settings page


LFN


Long FAT Network Support

®


Slide
41

6.1.1 Updates


Expanded Classification


IP Mobility


SunND


swIPe:


New Compressible services


Browser Acceleration


SSL Certificate classification now plugin


Change in VLAN Classification


Top Ten now places least efficient classes at top

®


Slide
42

6.1.2 Updates


Browser speed improvements


Change in way uncommitted bandwidth is
allocated

43

®

Questions