Web Traffic Offload of MPLS Networks Jeff Bird, RSM Zscaler 1-23-14.
20
Web Traffic Offload of MPLS Networks Jeff Bird, RSM Zscaler 1-23-14
-
Upload
noelle-moor -
Category
Documents
-
view
221 -
download
2
Transcript of Web Traffic Offload of MPLS Networks Jeff Bird, RSM Zscaler 1-23-14.
Web Traffic Offload of MPLS Networks
Jeff Bird, RSMZscaler 1-23-14
© 2013 Forrester Research, Inc. Reproduction Prohibited 2
Use some/more third-party managed telecom/communications services
Adopt/expand use of 'as-a-service' delivery of telecommunications services using shared infrastructure
Move some/more applications to the cloud
Migrate our networks to an all-IP environment
Enhance enterprise network bandwidth capacity
49%
51%
71%
73%
80%
Top multinational enterprise network & telecoms priorities
“Which of the following initiatives are likely to be your firm's top telecom adoption priorities over the next 12 months?”
Base: 954 Telecoms decision-makers at firms with 1,000 or more employees who are responsible for multicountry or global network and telecoms technology decisions (“critical priority” and “high priority” responses); Source: Forrsights
Networks And Telecommunications Survey, Q1 2013
© 2013 Forrester Research, Inc. Reproduction Prohibited 3
Workforces are both increasingly distributed, and mobile.
Globalizing business operations demands a highly reliable and resilient corporate network.
Globalization resets business, customer and employee expectations about speed of responsiveness and decisions, and for team collaboration.
The more internationally distributed a firm’s operations, the bigger the challenge to deliver consistent apps performance.
Security becomes a big issue around Web Apps
Business globalization drives need for a highly available and reliable international site-to-site network
© 2013 Forrester Research, Inc. Reproduction Prohibited 4
MPLS interest is driven mostly by perceptions of “value for spend”
Reasons for using MPLS - ranked
• Need more QoS network capacity
• Need high network reliability, and predictability
• Want to improve user experience with collaboration and productivity apps
• Need to upgrade network to support new enterprise communications apps
• Want a simplified WAN infrastructure
• Want to improve access to internally hosted, and off-premises hosted and cloud applications
• Want data traffic routing control including QoS
• Need a modern and future-proof network
• Need to integrate disparate networks globally
© 2013 Forrester Research, Inc. Reproduction Prohibited 5
The Age of Mobility (it’s about the Web apps!)
Drivers
Workplace virtualization
Collaboration (internal, external)
Consumerization (bring-your-own devices, apps)
IT Challenges
Manage growing complexity (endpoint, network, information security)
Cost management – licenses, IT support
Direct technology purchases (BYO-T) risk bypass of IT standards
Customer and employee expectations of more , easy to use, mobile apps will change how business is done
© 2013 Forrester Research, Inc. Reproduction Prohibited 6
Virtualization success rides on getting your Cloud strategy right
Most firms are keen to consolidate data centers
A majority will adopt hybrid cloud – own DC + virtual private cloud &/or public cloud (e.g., Office 365, Salesforce, Dropbox, gMail)
Many will migrate UC&C app to SaaS models
All virtualizing firms are beefing up network security
Most firms will shift network and security management towards 3rd party services to help move forward faster and better …
Common thread here is more Web traffic…
©2013 Zscaler, Inc. All rights reserved.7
Is MPLS Dead or Have These Reports Been Greatly Exaggerated?
Why? The Cloud Goes (Went) Enterprise!
On-the-go
Home or Hotel
Regional Office
Regional Gateway
Sales from the road on iPAD
Office from everywhere
Marketing user groups
Training videos from iPhone
Corporate storage
Cloud ServicesBusiness Critical
HQ
APT/0Day
DLP
Users
Applications
Personal or business Use
Where is your Corporate Perimeter?
— Impact —
3 Trends Transforming Network & Security
Business Users go Mobile
Users work from home or on-the-go
Users who BYOD50%
90%
Mobile, Cloud & Social: Driving business beyond the corporate network (often without policy & protection)
This has broken the traditional trusted “hub & spoke” network.Users are often outside the corporate network accessing cloud-based services.
80% of my MLPS traffic used to be for applications at my HQ and 20% was Internet bound. Now it’s just the opposite.” – CIO, Fortune 50 company
“
Cloud Apps go Mainstream
Cloud-based applications used by an enterprise
50
Social goes Enterprise
employees use Facebook at work
75%
1 GB
Traditional MPLS Networking – Hub & Spoke
NEW YORK
HQ: SAN JOSE
SEATTLE
ATLANTA
DATACENTER
INTERNET
For Internet Access also provision a 1 Gbps Dedicated Internet Line at the “hub” datacenter
4
Provision a T3 (45 Mbps) per site to provide connectivity to the MPLS network
2
T3T3
T3T3
Provision a 1 Gbps Ethernet circuit to provide the “hub” datacenter connectivity to the MPLS network
3
1 GB
MPLS PROVIDER
Contact a MPLS Service Provider & Architect1
Is This The Best Way to Provide Internet Access?
NEW YORK
HQ: SAN JOSE
SEATTLE
ATLANTA
DATACENTER
INTERNET 1 G
B
MPLS PROVIDERT3T3
T3T3
1 GB
By volume often 70%+ of MPLS backhauled traffic is
Internet bound or Web Traffic port 80 & 443
MPLS Bandwidth is more expensive than commodity
Direct Internet Access$$$$$$$
1 GB
“Direct 2 Net” Split Tunnel Path to Insecurity?
NEW YORK
HQ: SAN JOSE
SEATTLE
ATLANTA
DATACENTER
INTERNET
T3T3
T3T3
1 GB
MPLS PROVIDERLayers of appliances (FW, IPS, AV, DLP, NGFW, BA) are deployed at the “hub” datacenter to secure
Internet access!
Branch router security (UTM) is one approach to secure local
Internet access…
… but keeping policy consistent and providing per user policy and reporting/visibility is a nightmare
Easy way out is to still backhaul…So is MPLS Dead?
The Web Traffic Offload Approach with Zscaler
NEW YORK
HQ: SAN JOSE
SEATTLE
ATLANTA
DATACENTER
INTERNET
Reduce the size of the MPLS links to a T1 (1.5Mbps) instead of a T3 Link (45 Mbps) and save $$
2
T1T1
T1T1
Reduce the size of the Internet access at the datacenter. Simplify Network & Security and save $$
3
1100 MB
MPLS PROVIDER
Purchase inexpensive local Internet access at the branches (often faster/lower latency!) and save $$
1
INTERNET
ISP
ISP
ISPISP
100 MB
Offload your Web traffic to the Zscaler Cloud for security processing!
4
What Does Typical Security Look Like Today?
Mobile & Distributed Workforce
Regional Office
Home or Hotspot
HQ
On-the-go
Cloud Services
Social Media
Cloud Apps
Mobile Apps
Botnet
Exploits
Proxy Server
APT/Bot Gateway
Application Awaerness
URL Web-Filter
Antivirus-Filter
WAN/SSL Accleration
Load Balancer
DLP
SSL/IPSec VPN
What Does Zscaler Do?
Block the bad, protect the good
Global check post Enforces business policy
NO HARDWARE | NO SOFTWARE
Mobile & Distributed Workforce
Regional Office
Home or Hotspot
HQ
On-the-go
Cloud Services
Social Media
Cloud Apps
Mobile Apps
Botnet
Exploits
Can It Scale?
©2013 Zscaler, Inc. All rights reserved.16
The name Zscaler stands for the Zenith of Scalability
Every day Zscaler processes more than 12 billion transactions through our cloud from 4,500 customers in 183 countries
Our cloud operates in 110+ datacenters across 12 world class service providers
400M Tweets Per Day
5B Searches Per Day
4.7B Likes Per Day < 12B Transactions Per Day
* October 2013 Statistics
Zscaler’s 110 Datacenters – 4000 Customers
Active Data Centers
October 2013
Amsterdam
Los Angeles
Mexico City
Chicago I, IIToronto
New YorkWashington DC I, II
Atlanta I, IIMiami
Sao PauloJohannesburg
Oslo
Frankfurt I, IIGdansk
StockholmMoscow
Mumbai
Singapore
Sydney
Hong Kong
TokyoMadrid
TaipeiDubaiKuwait City
Cape Town
San FranciscoSunnyvale
Santiago
AmmanDallas I, II
DenverParis
LondonBern
Chennai
RiyadhCairo
Lima
Kuala Lumpur
©2013 Zscaler, Inc. All rights reserved.17
Zscaler: Leader & the Most Visionary
Secure Web Gateway Magic Quadrant
…the fastest-growing vendor…
…earned the strongest score in Completeness of Vision…
…cloud has the largest global footprint…
…Zscaler is a very good candidate for most enterprises …
“
”
©2013 Zscaler, Inc. All rights reserved.18
Thank You! Next Steps
Register for a Free Trial http://www.zscaler.com/freeevalution.php
Register for a Personalized Demohttp://www.zscaler.com/onlinedemo.php
Register for a Webinar/Live Demo http://www.zscaler.com/webinars.php
©2013 Zscaler, Inc. All rights reserved.19
20
Q & A
