The document outlines the features and benefits of Citrix CloudBridge's WAN optimization and virtualization technologies, emphasizing secure and efficient application delivery across various network types. Key capabilities include dynamic monitoring, logical bonding, and traffic management to enhance performance and reduce congestion. It also discusses architectural considerations for deployment and integration with existing WAN optimization solutions.

1. v2 March © 2015 Citrix | Confidential
Virtual WAN

2. © 2015 Citrix | Confidential
The What
Defining CloudBridge

3. © 2015 Citrix | Confidential
• WAN Optimization
– TCP Optimization
– Compression/De-Duplication
– Protocol Optimization
– Bandwidth Management
CloudBridge WAN Optimization
• 1011011010 SSL 1011011010 SSL 101101110 SSL 1011 101101110 SSL 1011000110011 001110010100
• 1011011101 10011
• 1011011101 10011
• 1011011101 10011
Optimization
• 1011011101 10011000001
• 1011011101 10011
• 1011011101 10011
Branch Office Data Center
MPLS or Private Circuit

4. © 2015 Citrix | Confidential
• WAN Virtualization as a conceptual overview
– Service critical applications for the modern enterprise
– Leverage the changing capability and capacity of the public
infrastructure
– Always on
– Sometimes it is just about Bandwidth
CloudBridge WAN Virtualization
• Logical bonding of capacity
• Always on availability for the WAN
• Dynamic monitoring for best path
• Transparent Overlay
• Encryption where required
MPLS
Business DSL
LTE Wireless
Capacity Management and Logical Bonding

5. © 2015 Citrix | Confidential
CloudBridge Edition Summary
Edition Primary Benefits Recommended for
CloudBridge
WAN Op Edition
Optimized and secure application
delivery from DC over private networks
Video Caching
Enhanced Application Visibility
Quality of Service
• WAN Links that suffer from
congestion and will benefit from
Compression
• Long distance / International links
CloudBridge
Virtual WAN Edition
Highly reliable and secure application
delivery from DC or Cloud over public or
private networks
Use MPLS, Broadband internet,
4G/LTE, Satellite links
Enhanced WAN Visibility
Quality of Service
• Increasing Bandwidth needs
• MPLS not available or expensive
• 100% branch application
availability

6. © 2015 Citrix | Confidential
Virtual WAN Building Blocks and Definitions
Architecture and Defining Virtual WAN

7. © 2015 Citrix | Confidential
• Virtual WAN Encapsulates flows into a UDP tunnel Port 4980
– All application flows designated for the Virtual WAN service are encapsulated.
– Encryption is applied where required on Public circuits.
– UDP padding includes intelligence for monitoring of circuit state
• Virtual WAN operates as an L2 and L3 device.
– Operates as an L2 device for application flows not designated for VWAN
specific service.
– Operates as an L3 device for flows designated as interesting by policy for the
Virtual WAN.
• All configured Circuits are considered candidates for Virtual WAN
traffic
– Traffic types can be made persistent to a circuit but will use other circuits in
case of failure.
– All circuits are constantly monitored for state.
CloudBridge Virtual WAN Fundamental Concepts

8. © 2015 Citrix | Confidential
Virtual WAN Terminology Appliances
MCN VWN
• Master Control Node
– Only one primary
– Time keeper for the Virtual WAN
– Logically it is located at DC but the role can be assigned to any appliance
– Configurator for the Virtual WAN
• VWN (Virtual WAN Node)
– Branch appliance
– Inherits its configuration from the MCN

9. © 2015 Citrix | Confidential
• Virtual Path Service
– Traffic destined for the Virtual WAN are defined by policy
– Comprises all WAN Circuits
– Traffic management performed at each node in the Virtual WAN
Virtual WAN Terminology Circuit Definitions
MCN VWN
Virtual Path Service

10. © 2015 Citrix | Confidential
• Virtual Path
– Fundamental building block for Virtual WAN Services
– Uni-Directional
– 2X WAN links
– Each Path has has an associated monitor
Virtual WAN Terminology Circuit Definitions
VWN
MCN
Virtual Paths
1
2
3
4

11. © 2015 Citrix | Confidential
• Internet provisioned circuits add
– Dynamism with the ability to have multiple routed options for
connectivity
– Complexity because they are often Asymmetric making BW
management more complex
Internet Circuits and Virtual Paths

12. © 2015 Citrix | Confidential
Services and BW Management
Services and BW Management

13. © 2015 Citrix | Confidential
• Services associated with Virtual WAN
– Virtual WAN Service – Traffic associated by rule or route destined for a
WAN Path and has a traffic management policy
– Intranet Service – Traffic not encapsulated traffic destined for a site with no
Virtual WAN and is associated with a traffic management policy
– Internet – Traffic not encapsulated destined for the internet
– Passthrough – Traffic not accounted for by the other service rules and is
not associated with a BW management policy
Defining Virtual Services

14. © 2015 Citrix | Confidential
Virtual Services in Action
• Services associated with Virtual WAN
– Note that Passthrough traffic is unaccounted for with
regards to Bandwidth

15. © 2015 Citrix | Confidential
• 17 traffic management Classes
– 17 Classes
– Can be edited but none added
– Class 10 Realtime = Voice
– Class 11 thru 17 = ICA, RDP, etc
– Class 15 and 16 = CIFS, FTP, etc
Understanding Bandwidth Management “Classes”

16. © 2015 Citrix | Confidential
Deployment
Network Architecture and HA

17. © 2015 Citrix | Confidential
Building Capacity with Virtual WAN Zoning
• Virtual WAN capacity considerations
– Maximum of 1Gbps of throughput
– 256 sites
– Refer CloudBridge Data sheet for the latest specifications
256 Sites
HA CB Virtual WAN
PBR Route Policies

18. © 2015 Citrix | Confidential
• Inline
– Requires VIP for each Virtual WAN service
– LAN routing information
– Services and BW management policies
Basic Deployment Modes
Example 1 Example 2

19. © 2015 Citrix | Confidential
Basic Deployment Modes
• Inline With HA
– Modified VRRP
– Only one appliance is active at a time
– Both appliances configured in Blocking mode
– Configuration is synced across appliances

20. © 2015 Citrix | Confidential
Advanced Architecture Considerations Combining Virtual WAN and
Optimization
• Combining WAN Optimization and Virtual WAN
– Virtual WAN should always go after WAN OPT
– Virtual WAN will envelope in UDP obscuring TCP
packets
– Guidelines for good WAN Opt planning do not change
– Asymmetrical routing
– WAN Opt benefits

21. © 2015 Citrix | Confidential
Advanced Architecture Considerations Combining Virtual WAN and
Optimization
• Combining WAN Optimization and Virtual WAN
out of line
– PBR can be combined with HA
– WCCP adds clustering and resiliency
– WAN opt closer to the LAN than Virtual WAN

22. © 2015 Citrix | Confidential
Advanced Architecture Considerations Combining Virtual WAN and
Optimization
• Combining WAN Optimization and Virtual WAN
out of line
– PBR can be combined with HA
– WCCP adds clustering and resiliency
– WAN opt closer to the LAN than Virtual WAN

23. © 2015 Citrix | Confidential
Advanced Architecture Considerations VLAN Trunks
• When spanning a VLAN trunk
– Each VLAN requires a VIP and gateway to host Virtual WAN services
– Routing is required for each path

24. © 2015 Citrix | Confidential
Building Capacity with Virtual WAN
• Zoning is a method for
– Creating capacity by allocating traffic in manageable segments
– Uses PBR Route Maps to segment load by sites
– HA capabilities require doubling the number of hardware appliances
– Made easier if there is some logic for IP to site allocation
256 Site Zone
256 Site Zone
PBR Route Policies
HA CB Virtual WAN

25. © 2015 Citrix | Confidential
Work better. Live better.Work better. Live better.