Consolidation, Convergence,

and the Cloud

Sean Duggan

Dir. Product Management

2 © F5 Networks, Inc.

3 © F5 Networks, Inc.

The Unmanaged Data Tsunami Business destruction

2010 2009 2008 2011 2012

4 © F5 Networks, Inc.

Mobile Broadband Trends Optimizing and scaling the data and control planes

• VAS to reduce bandwidth/costs (e.g., video optimization) and for

new revenue-generating services (e.g., security, parental control...)

• Intelligent traffic steering and HTTP header enrichment

• WiFi offload and mobile data offload (SIPTO, LIPA)

Optimizing and enriching the data plane

• Build cost-effective infrastructure for AAA,

PCC, and IMS

• IPv4 address exhaustion (NAT44)

• IPv6 transition (NAT64 / DNS64)

Scaling and securing the control plane

Base Station

RAN

Backhaul and Core

VAS VAS

WiFi

AP IP/MPLS

Video Opt, URL Filtering,

AI, DPI, Caching/CDN...

CGN and IPv6 transition

VAS

5 © F5 Networks, Inc.

Fixed Broadband Trends Optimize Internet experience and deliver premium content

BNG

Edge

Metro Ethernet IP/MPLS Core

RGW

• Transparent caching and carrier CDN

• Distributed VOD server placement

• Cloud-based gaming

Content delivery and distribution

• Evolution toward enabling network functions

in the cloud (e.g., CGN, BNG, MPLS PE)

• Evolution toward virtualizing home CPE and

STB functions in the cloud

Network virtualization

• IPv4 address exhaustion (NAT44 and DS-Lite)

• IPv6 transition (DS-Lite, NAT64 / DNS64)

Carrier-grade NAT and IPv6 transition

6 © F5 Networks, Inc.

Business Services—Trends From connectivity supplier to business partner

L3 PE

Metro Ethernet IP/MPLS Core

• Expand traditional VPN offerings with cloud

services and applications

• Virtualized infrastructure to reduce TCO

• Resilient data center disaster recovery

Cloud services delivery • Application visibility reporting

• Web acceleration and web firewall for enhanced

and secure hosting solutions

• Secure remote access solution for teleworkers

and extranet applications

• WAN optimization for site-to-site connectivity

Application-aware managed services

Data Center 1

Data Center 2

L3 PE

L3 PE

Branch Office

Corp HQ

7 © F5 Networks, Inc.

Controlling the Cost/Revenue Curve Building a smarter, application-aware network

• Network consolidation and convergence

• Optimized traffic patterns

• Distributed content injection with

CDN and transparent caching

• Context-aware web and video

optimization

• Traffic offloading via WiFi, small

cells

• Efficient IPv6 migration

Lower Costs

• Residential services

• Multi-screen experience

• Parental control services

• Cloud-based gaming

• Context-aware services (location-

based, terminal-dependent... )

• Business services

• Cloud services

• Application-aware networking

Increase Revenue

F5 technology is a key component in each of these solutions

in both wireline and mobile networks

8 © F5 Networks, Inc.

9 © F5 Networks, Inc.

10 © F5 Networks, Inc.

Converged Control Plane Protocol Support

Capabilities & Benefits DNS SIP Radius Diameter

Signaling traffic management • Message-based routing & switching

• L4-7 packet inspection

• Health monitoring

Transformation • Packet content manipulation

• Protocol transformation

• Message normalization

Unified security approach • Stateful ICSA certified firewall

• White/Black Listing

• Topology masking

Rules-based service flexibility • Advanced configuration framework

• Dynamic on-the-fly implementations

• >100K developer community

Unmatched performance • Message-based architecture

11 © F5 Networks, Inc.

Scaling and Managing the Control Plane F5 manages your control plane traffic

LTE/4G

Policy & AAA

Charging

• DRA & DEA capabilities

• DNS Caching/Resolving & Authoritative DNS

• SIP transparent switching and scaling

Scaling the control plane

• Unified wide network management

• Visibility

• Telco grade assurance

Control plane management

• Connect Diameter to legacy signaling

• Roaming/hybrid networks

• MAP, CAMEL, RADIUS, LDAP, GTP, HTTP…

Legacy/4G connectivity

Legacy

RADIUS, LDAP, SS7,GTP’

SDC/BIG-IP

12 © F5 Networks, Inc.

UTRAN

E-UTRAN

ePC

MME/SGSN

Data Plane

Control Plane

Application Plane

Router

SPR

OCS AAA

Diameter DHCP

Video VoIP AS SMS/MMS

Consolidating the Control Plan - DNS

HSS

HLR DNS Activation

Security

SOC LI

Sess

Mgm

Billing/Med/Portal

PKI Cust Portal

Non IMS IMS

x-CSCF

APPx APPx

GGSNPDN/

PGW/BRAS

OFCS

S-GW

Agg

Router DPI

PCRF

Web

Caching

WAP

Gateways

Video

Optimization Video

Caching Video

Transcoding Content

Streaming

Subscriber Management

Fix Core

BRAS

DNS

Forwarding

DNS

Caching

Resolvers

DNS

Auth. DNS

Internal

Zones

GERAN

Fixed Line

LDNS

Internet

13 © F5 Networks, Inc.

UTRAN

E-UTRAN

ePC

MME/SGSN

Data Plane

Control Plane

Application Plane

Router

SPR

OCS AAA

Diameter DHCP

Video VoIP AS SMS/MMS

Converged Carrier Infrastructure - DNS

HSS

HLR DNS Activation

Security

SOC LI

Sess

Mgm

Billing/Med/Portal

PKI Cust Portal

Non IMS IMS

x-CSCF

APPx APPx

GGSNPDN/

PGW/BRAS

OFCS

S-GW

Agg

Router DPI

PCR

F

Web

Caching

WAP

Gateways

Video

Optimization Video

Caching Video

Transcoding Content

Streaming

Subscriber Management

Fix Core

BRAS

DNS

Forwarding

GERAN

Fixed Line

DNS

LDNS

Internet

14 © F5 Networks, Inc.

UTRAN

E-UTRAN

ePC

MME/SGSN

Data Plane

Control Plane

Application Plane

Router

SPR

OCS AAA

Diameter DHCP

Video VoIP AS SMS/MMS

Converged Carrier Infrastructure - DNS

HSS

HLR DNS Activation

Security

SOC LI

Sess

Mgm

Billing/Med/Portal

PKI Cust Portal

Non IMS IMS

x-CSCF

APPx APPx

GGSNPDN/

PGW/BRAS

OFCS

S-GW

Agg

Router DPI

PCR

F

Web

Caching

WAP

Gateways

Video

Optimization Video

Caching Video

Transcoding Content

Streaming

Subscriber Management

Fix Core

BRAS

DNS

Forwarding

GERAN

Fixed Line

DNS

LDNS

• GTM and delegation

• Recursive DNS load

balancing and screening

• DNS Express

• DNS caching

• DNS resolver

• DNSSEC validation

LB

X

C

R

V

LB LB 64 CR V

LB X

Internet

15 © F5 Networks, Inc.

16 © F5 Networks, Inc.

Mobile Data Plane—Increasing Complexity

URL Filtering

WAP Gateway Video Optimization

• GGSN does APN-based segmentation

• Aggregation router does policy-based routing (e.g. Port80-based forwarding)

• Traffic segmented in VLANs to VAS layer

Static and inflexible traffic segmentation

Transparent

Caching

• Complex architecture, hard to scale

• Results in high CapEx and OpEx on VAS side

• Difficult to add new services (inflexible, requires changes in GGSN, VLAN management…)

• Everything is mostly HTTP/S now!

Challenges

GGSN

PGW

RTR DPI FW CGN

VAS/OPTIMIZATION

RTR

17 © F5 Networks, Inc.

Service Provider Requirements VAS offload, L7-based traffic steering, & Security

Converged Traffic Management

18 © F5 Networks, Inc.

Converged Traffic Management

URL Filtering

WAP Gateway Video Optimization

• Subscriber-, application-, and context-aware intelligent traffic management

• Learn subscriber policies via AAA

• Integrated load balancing to VAS/optimization platforms and AAA

Intelligent traffic management

Transparent Caching

• Simplified architecture—reduced CapEx

• Optimize use of VAS/optimization platforms

• Per-subscriber opt-in/opt-out model

• Application oriented routing/switching/steering

Advantages

GGSN

PGW

RTR

AAA

RADIUS/Diameter

DPI CGN FW

Convergence for the Managed

Service Cloud

20 © F5 Networks, Inc.

Cloud Services / Data Centers CSPs increasingly use

network assets to target

data center service

opportunities

Ovum forecasts the public cloud computing infrastructure-as-a-service (IaaS) opportunity at $1.6bn in

2011, growing to $15.0bn in 2016. Of the $1.6bn in 2011 revenues, no more than 10% was earned by

communications service providers (CSPs). Using their data center and WAN infrastructure assets,

CSPs have a significant new opportunity to compete against their IT rivals, including data center

specialists, and capture more of this growing revenue source.

Data centers are becoming a

much more critical piece of

‘telecom’ infrastructure

Service providers expanding data

center offerings on quest for new

revenue

21 © F5 Networks, Inc.

Confidence in Foundations

22 © F5 Networks, Inc.

To provide users with the best access to and experience with a

service without the user needing to know or care about how the

service is delivered or the complexity involved.

What Is the Goal of a Cloud?

Fact: Providing a cloud is complex.

© F5 Networks, Inc.

23 © F5 Networks, Inc.

F5’s vision is to make the development, operation, and use of a

cloud as easy as possible so the provider can connect their

users to their services.

This means:

• Getting users to the right part of the provider’s cloud.

• Providing the ability to control access in the cloud.

• Providing layers of security within the cloud.

• Providing the means to make the supporting cloud infrastructure

as efficient, dynamic, and resilient as possible.

• Providing the best possible user experience.

F5 Cloud Vision

24 © F5 Networks, Inc.

F5 Cloud Vision

25 © F5 Networks, Inc.

Getting Users to the Right Cloud

26 © F5 Networks, Inc.

Getting Users to the Right Cloud

Secure Applications and Data

• Transaction assurance • DNS security • Dynamic DNSSEC • DNS DDoS mitigation

Optimized Applications and Data

• Dynamic data center load balancing • TCP optimization • Health monitoring • Geolocation • Client and application performance

monitoring • Automatic site-to-site failover • IPv6/IPv4 translation • DNS offload

27 © F5 Networks, Inc.

Getting Users to the Right Cloud Specific Services • Customer-specific traffic

management • Application-specific security • Application acceleration

Data Center

Front Door Services • Authentication enforcement • SSL termination • User acceleration • Security and DDoS protection

28 © F5 Networks, Inc.

Consolidate and Aggregate Increasing VM density with F5

http://www.techvalidate.com/product-research/f5-big-ip/facts/975-FFD-F8D

Before After

SSL

TCP OPT.

CACHING

COMPRESSION

Activate cache and

compression if latency is

greater than X ms

29 © F5 Networks, Inc.

Automation

Automation

iControl

iControl

Monitoring and Management

Front End Virtualization

App Server Virtualization

Storage Virtualization

Demand

F5 Provision

Detection

VM Provision

Demand

Detection

F5 Deprovision

vCenter

30 © F5 Networks, Inc.

Cloudbursting with the BIG-IP System Cloud Resources

Local

Servers

Data Center

31 © F5 Networks, Inc.

• Live application migration

• Disaster avoidance

• Capacity expansion

Automate and Orchestrate Live application migration between two data centers

KEY POINTS: • No downtime/app disruption

• User and app session persistence

before, during, after migration

• Dynamic global and local application

network redirection for new and active

connections

• Latency and bandwidth mitigated

through WAN optimization

• SSL encrypted transport

See full demo at http://www.youtube.com/watch?v=9-c_iB10Wqk

32 © F5 Networks, Inc.

Automate and Orchestrate Integrate within your data center orchestration/automation tool

HP Orchestrator

Microsoft SCOM and VMM

Tivoli

VMWare vCenter

VMware Orchestrator

33 © F5 Networks, Inc.

© 2012 F5 Networks, Inc. All rights reserved. F5, F5 Networks, the F5 logo, and IT agility. Your way., are trademarks of F5 Networks, Inc.

in the U.S. and in certain other countries. Other F5 trademarks are identified at f5.com. Any other products, services, or company names

referenced herein may be trademarks of their respective owners with no endorsement or affiliation, express or implied, claimed by F5.