Customer Driven Innovation A10 Networks CGNAT and IPv6 Transition Overview Nikolay Mikhailov – Solution Architect Do not distribute/edit/copy without the written consent of A10 Networks 1
Meeting Purpose & Agenda Who is A10? Ericsson and A10 partnership IPv6 transition challenges Technology and functional requirements Solution highlights A10 product family Competitive comparison 2
A10 Company Overview Headquarters in San Jose Offices in 22 countries; customers in 50 countries Founded in Late 2004 CEO & Founder Lee Chen ACOS Platform Co-founder of Foundry Networks, Centillion Networks Leader in Application Networking Consistent Revenue Growth Optimize the networks of web giants, enterprises and service providers 4
CGNAT & IPv6 Transition Customer References 5
Ericsson and A10 IPv6 Partnership Summary Smart Services Router (SSR) A10 certified & preferred CGNAT & IPv6 transition solution Global partnership agreement signed Sept 18th 2012 Technology & market leadership Strategic long-term relationship A10 CGNAT & IPv6 Transition 6
IPv6 Business Driver – IPv4 Depletion IPv4 Blocks Available IPv4 Exhaustion More people & devices connected requiring an IP address – less IPv4 blocks available Source: ARIN Increased IPv6 Adoption Cellphone More adoption in 2011 than all previous years combined Increased attention - World IPv6 Day Estimated 31 billion connected devices by 2020 (Intel study) TV Surveillance Camera Heart Rate Digital Monitor Weight Scale Game Console Digital DVD Recorder eBook Car 7
IPv6 Website Reachability Source :UofPenn IPv6 Adoption Monitor 8
Google Access via IPv6 Source :ARIN IPv6 Adoption Monitor 9
Why is IPv6 not Already Widely Used? IPv6 requires a full IPv6 chain of communication From End Devices / Clients (desktop, laptop, game device, smartphone) To Service Providers (Internet Service Providers, Mobile Network Operators) To Enterprise / Content Providers Challenges Relatively low percentage of V6 content availability No IPV4 backwards compatibility! Lack of home CPE device support IPv6 Migration deployment and scale requirements Throughput NAT sessions ALG s
Service Providers’ IPv4 Exhaustion Solutions IPv4 Preservation Technology CGNAT (Carrier Grade NAT) Deployment Models NAT44 (Mobile) NAT444 (Wireline) IPv6 Migration Technologies (Lots more!) Stateful DS-Lite NAT64 / DNS64 Stateless 6rd Stateless NAT46 11
Requirements for Carrier Grade NAT (CGN) Highly transparent existing user applications continue to work Minimal to no impact on customers Well defined NAT behavior new user applications can easily be developed Consistent Deterministic Fairness in resource sharing User guarantees and protection Work for both client-server (traditional) and clientclient (P2P) applications 12
Ensure your Customer’s Applications Work! Application Level Gateways (ALGs) for Applications that Require Special Handling Streaming Media (RTSP) File Services (FTP) Voice over IP (SIP) Virtual Private Networking (PPTP, IPsec) TFTP, ICMP, and DNS End Point Independent Mapping and Filtering Peer to Peer Applications VoIP Gaming Instant messaging Sticky NAT Hair Pinning 13
The Secret to Seamless IPv6 Transition Flexibility, Adaptability, and Feature Concurrency No one solution will fit all environments Each solution has its own pros & cons 14
Solution Highlights 16
ACOS: L2 to L7 Intelligent Software Platform 7+ years of development Energy efficient and highest performance Separate control, data and management plane Versatile, adaptable and efficient 64-bit symmetric multi-core shared memory Virtual and Physical 17
A10 Solution Highlights Support for multiple IPv6 Migration Technologies Feature Concurrency for CGNAT, NAT64/DNS64, DS-Lite, 6RD, NAT46! No licenses High Availability Fully stateful Active-Standby or Active-Active IPv6 session synchronization for uninterrupted service following failover Multiple High Availability sets in the same network for greater service protection Logging Scalable, low impact, high performance and highly configurable Advanced features (Fixed-N
A10 Solution Highlights (continued) Flexibility of Deployment Distributed or centralized Broadest range of performance choices Inline mode or one-armed mode User quota management IPv6 Routing Static IPv6 route and neighbor configuration Dynamic routing - OSPFv3, IS-IS, RIPng, BGP4+ Multi-Tenancy 128 VRF/VR Dynamic/Static routing between partitions AX Management Through IPv6 Full native IPv6 and IPv4 management and feature support SSH, HTTP, HTTPS, SCP, and
AX and Thunder Series Appliance Models AX 3030 64M Sessions 27 Gbps 188 W Max 2 x 10 Gb AX 3400 64M Sessions 38 Gbps 338 W Max 4 x 10 Gb AX 3530 256M Sessions 115 Gbps 476 W Max 12 x 10 Gb LOM Thunder 5430/6430 256M Sessions 77/150 Gbps 550/780 W Max 16 x 10 Gb 4x 40Gb LOM 20
Thunder 6430S – 150 Gbps, 1 RU 24
Thunder Advantage: 5430S, 6430 and 6430S Smart design for optimal performance • • • FPGA and ASIC technology coupled with fast Intel Xeon CPUs Fastest CPS, Throughput, DDoS SYN Flood protection and SSL CPS per RU Delivering maximum uptime • • • No moving parts, except hot swap smart fans No inaccessible fans or HDDs Lights out management/IPMI Green, data center friendly design • Highly compact, 1 RU design • 80 Plus “Platinum” efficiency RPS • Highest performance per Watt aVCS for 8x scale 2
A10 Networks Differentiation/Advantages Industry-leading and mature implementation High performance Very high session establishment rate Large number of concurrent sessions Very high CGN processing performance per second & throughput “Green” form factor Proven interoperability, flexible deployment Numerous live production deployments Significant marquee customers Rapid adoption of future CGN enhancements 1U with least power consumption Price/performance advantage All-inc
Competitive Comparison AX 6430S VIPRION 4300 MS-ISA CGSE+ NG-SPC VSU-I Bandwidth 150 Gbps 40Gbps 10 Gbps 80 Gbps 35 Gbps 20 Gbps New Connections Per Second 5 Million 1.
Competitive Comparison – BW per Rack Unit 160 140 120 100 80 60 40 20 0 A10 F5 Alcatel Cisco Juniper Huawei Полоса пропускания / RU, Gbps 31
Thunder 6430, Top Product – 150Gbps, 1RU 32
F5 Comparison - Capacity AX 6430S + VS.
F5 Comparison - Functionality Feature F5 VIPRION 4800 A10 AX6430S All-inclusive (including NAT46, draft-ietf-behave-lsnrequirements-10, …) NAT License Additional license ALG Support FTP, PPTP, RTSP, SIP, IPSec-UDP More than 50+ protocols EIF (RFC5128) No Yes NAT sessions Limited and different for L4 & L7 Minimum 2xhigher Form factor 16RU Compact Power consumption Non-effective, no DC module Minimum 3xhigher Density No cheap 1GE port for this Hardware platform Needless components Fully
Cisco Comparison - Capacity AX 6430S + VS. CRS-3 Metrics AX 6430S CRS-3 Capacity / Rack unit 150 Gbps / 1 RU 7.
Cisco Comparison - Functionality Feature Cisco CRS-3 CGSE+ A10 AX6430S NAT License 5/10/20M NAT44 licenses, 6RD licenses ALG Support FTP, RTSP, PPTP Logging Limited All-inclusive (including NAT46, draft-ietfbehave-lsnrequirements-10, …) FTP, PPTP, RTSP, SIP, TFTP, IPsec-ESP Complete CPS 1M 5M Compact No Yes RADIUS No Yes Syslog (TCP/UDP) No/Yes Yes/Yes 36
Juniper Comparison - Capacity 4x AX 6430S + VS. 2x MX-480 Metrics AX 6430S CRS-3 Capacity / Rack unit 150 Gbps / 1 RU 6.
Juniper Comparison - Functionality Feature Juniper MX480 NG-SPC A10 AX6430S All-inclusive (including NAT46, draft-ietfbehave-lsnrequirements-10, …) NAT License Separate licenses, not all drafts are supported Performance influence Degradation in case of 4 NG-SPC No Logging Limited Complete CPS 240K 1M Compact No Yes ALG 25K maximum No HW limits degradation 38
SoftAX Virtual Appliances - No Analogues! Support for Hyper-V, KVM, VMware, Xen High-performance 8 Gbps High-performance 4 Gbps Entry Level/Lab 1 Gbps Entry Level/Lab 200 Mbps Lab Edition 39
Thank You Any App Any Cloud Any Size www.a10networks.
