HyperIP by NetEx Blog

HyperIP Series – You Asked About WAN Acceleration of Encrypted Data…

Posted by Marketing

A customer recently asked a question during a webcast, “How does HyperIP accelerate encrypted data?” The answer is, it depends.

In the case where the data was encrypted when it was written to disk, as is required in most financial institutions, encryption poses problems for WAN optimization controllers who need to inspect the data to perform their optimization techniques:

1. Compression and deduplication on the network can no longer be applied to a secured/encrypted packet, so data reduction algorithms are a moot point.

2. Data security is paramount, so movement or transport of that data over the IP network requires the datagram to be intact, not un-encrypted, then re-encrypted putting data security at risk. That now means data pattern caching in disk or memory is no longer applicable.

3. Payloads in the encrypted data block can be quite large requiring a data streaming technology to meet window requirements and aggressive RTO’s to be adhered to.

So how can HyperIP WAN Optimization Virtual Appliance from NetEx accelerate encrypted data?

If the data is encrypted prior to HyperIP compression won’t be possible but HyperIP will still be able mitigate network issues that degrade WAN performance. SSL data payload, certificates, and keys will all passed through HyperIP’s accelerated transport at or near wire speed. No matter the distance or latency, no matter the packet loss on the WAN, no matter the amount of network congestion or out–of-order sequence issues, HyperIP will maximize the throughput of the application.  This allows for complete data security, no modification of the SSL-encrypted block of data jeopardizing the integrity of the payload, transparent to both the application and encryption.

If the traffic is encrypted with a Taclane KG encryptor, HyperIP takes the unencrypted data from the source, optimizes the transport of that data to near wire speed, then compresses the data blocks to reduce traffic on the WAN, then hands that data to an encryption appliance. This is the preferred solution in most Department of Defense implementations, where specific encryption gear is required. This solution allows for complete WAN Acceleration of the block of data before it is encrypted. Global replication and backup of data now leverage HyperIP’s value and complete data security with government approved encryption on the WAN links.

See a success story about HyperIP in a DoD implementation:
http://www.netex.com/index.php/download_file/view/73

Whether you are moving your secured data to a cloud storage provider, your own private cloud facility, a centralized data repository from remote offices, or an in-house DR facility, HyperIP can significantly improve the performance of your applications.

Resources:
Part 2 of The Ultimate Guide to Gaining Control of Your WAN
How to Leverage Cloud Backup Services

This entry was posted in HyperIP, and tagged , , , , , , , Bookmark the permalink.

HyperIP Series – You Asked About vMotions Over Global Networks….

Posted by Marketing

Storage vMotion is different from “vMotion” where your storage stays the same and you change hosts, or “live storage vMotion” where the host is the same and you change the datastore. The storage vMotion I’m talking about is changing both the host and datastore. Storage vMotion works great on a LAN, but performing it over a WAN is a whole different story.

If you have ever tried to Storage vMotion your virtual machines over a WAN, I’m guessing it didn’t work so well. Most who try to do this are not able to. Why, you ask? Because over a WAN the native TCP stack on your ESX(i) hosts will start to back down. You’ll be lucky to complete a small storage vMotion over moderate distance in several hours, if at all. We have several customers who have tried this natively and have run into problems.  Now they use HyperIP WAN Optimization virtual appliance to mitigate performance issues making long distance vMotion a reality.

One of our customers, a large ‘financial’ enterprise level corporation, has been using HyperIP for their storage vMotions for well over a year now. When they first realized they had a need to migrate VM’s over their WAN, they would start a storage vMotion at the end of the day, expecting it to be completed when they came into the office the next day.  What they found is that in almost all attempts, the vMotion failed. They installed HyperIP and instantly they were vMotioning thousands of VM’s over their WAN between data centers. Last time we spoke to them, they had storage vMotioned over 1200 VM’s using HyperIP. They now do this on a regular basis. Before HyperIP they were lucky to get a single vMotion to finish.

Being able to move a VM at high speed anywhere in the world at anytime can have a profound impact on the way you do business and the way that your IT infrastructure is built and managed. You can build and configure VM’s locally at your corporate IT data center and HyperIP storage vMotion them out to where they need to go. If you are consolidating data centers or branch offices, you’ll need to move those VM’s over your WAN, or even a small internet link. If your organization is building dozens, hundreds, or thousands of VM’s, you’ll want to use HyperIP to move them.

In conclusion, HyperIP is downloadable, easy to implement, has a very small VM footprint, is inexpensive, and most important of all is absolutely necessary to storage vMotion your VM’s over a WAN. Download HyperIP now to start your free 30 day evaluation to take advantage your new ability to storage vMotion your VM’s anywhere in the world. Click the big orange box above to start the download process.

This entry was posted in HyperIP, and tagged , , , , , , , , , , , , Bookmark the permalink.

HyperIP Series – You Asked About TSM Testing with HyperIP..

Posted by DaveHuhne

We recently had an opportunity to test IBM Tivoli Storage Manager (TSM) Client to a TSM Server in our HyperIP lab. When doing any kind of application verification or performance testing it is important to first determine the overall limits of the native application with and without WAN acceleration.

Lab testing in an emulated environment is a good way to test applications because you can mimic certain network topologies and characteristics. In our case the HyperIP lab consists of two HyperIP WAN Optimization virtual appliances, two windows servers, and a distance simulator for the WAN. The simulator has the ability to inject packet loss, network latency and other network conditions over various bandwidths that can degrade application performance.

The main objective with any test is to try to validate whether the HyperIP can accelerate the application over various distances with varying latency and packet loss scenarios. Every application has its own performance characteristics and limitations. The same is true for WAN networks. They are about as unique as fingerprints.

Like many backup applications TSM was designed for the data center and performs very well when moving data short distances. Since we are truly becoming a global society is it important to be able to move data over longer distances which is clearly a requirement of cloud storage environments.

With the case of IBM TSM, we started off testing with a simple delay of 10 ms round trip time (RTT). At this relatively short distance TSM slowed by 80% compared to its native performance. This is typical application degradation due primarily to the inefficiencies of the TCP transport and not necessarily the fault of the TSM application. When HyperIP was added to the configuration, the TSM application was able to achieve throughput equivalent to native performance and no delay. In fact HyperIP was able to help TSM achieve near native performance rates at distances represented by 40 ms RTT, 80 ms RTT, 320 ms RTT all the way up to a 1 second RTT. This is a testament to how well TSM and HyperIP interoperate together.

Many applications have internal limitations such as outstanding operations, queue size, or queue depth that artificially restrict the application’s ability to maximize throughput. That was certainly not the case with TSM. TSM can certainly pump data over the network when it is not encumbered with TCP performance issues. When operating TSM with HyperIP, the two combined can sustain the same throughput rates whether running across town, across the ocean, or around the world. That was very impressive. TSM over HyperIP brings LAN-like performance to WAN-based remote backups.

 

This entry was posted in HyperIP, and tagged , , , , , , , , , , Bookmark the permalink.

Subscribe to our Blog

With RSS feeds, you don't have to visit our site everyday to keep up to date. Simply subscribe to our blog via RSS or Email and our posts will come to you!

Subscribe
via RSS

Search Blog Posts

Search

Subject

Visit our Website visit arrow