ADN Proposal

Customer Name
Customer Logo

January 1, 2010

Submitted by: Company Name

Confidential

For Internal and Official Channel Partner Use Only

1

DOCUMENT CHANGE CONTROL SHEET

This document will be maintained under change control.

Document Title / ADN Proposal
Version / 1.1
Date of Issue / January 1, 2010
Author / First Last
Filename / ADN Proposal v1.0.docx
Distribution / BlueCoatSystems

Document History

DATE / VERSION / INITIATED BY / COMMENTS
1/1/2010 / 1.0 / First Last / Original Document

Table of Contents

1. Executive Summary

2. Summary of Customer Situation

Current Environment (Network, Applications, Locations, etc.)

Current Issues/Problems

Desired Outcome

3. Proposed Solution

Overview

Design details

Network diagram

In-Path Acceleration Deployment

WCCP Acceleration Deployment

Transparent Acceleration Tunnel

Remote users and small branch offices

Value (how the solution solves CUSTOMER’s problems)

Technology details

Acceleration of Oracle Applications

4. Proposed Project and Timeline

Project Goals and Deliverables

Timeline

Proof of Concept

Checklist and preparation

Installation and Acceptance Plan

Roles and Responsibilities

Customer

Partner/VAR

Blue Coat

5. Detailed Bill of Materials

6. About Blue Coat Systems

7. About VAR Partner

8. References

1. Executive Summary

VAR welcomes this opportunity to present this Proposal to CUSTOMER. This document conveys VAR’s understanding of CUSTOMER’s current environment and requirements based on VAR’s knowledge of your environment. Furthermore, this document offers a detailed description of services specifically tailored to the needs of CUSTOMER.

As organizations and employees become more distributed, the productivity of users in branch and remote offices becomes increasingly important to the success of the business as a whole. WAN optimization will enable fast, secure access to critical applications wherever users are working: at headquarters, in branch offices, or when traveling.

By deploying a Blue Coat WAN optimization solution, the foundation of an Application Delivery Network (ADN) will be in place enabling your organization to increase productivity and reduce costs. In an ADN, Blue Coat appliances are integrated into the network to provide visibility, acceleration, and control for all TCP (and UDP streaming) traffic sent over the WAN, including Web (HTTP), secure Web (SSL), file sharing (CIFS), Microsoft Outlook/Exchange (MAPI), DNS, live and on-demand streaming (RTSP, MMS, streaming over HTTP) traffic, and TCP-based applications.

The following are main objectives and common benefits from a Blue Coat ADN solution:

  • Delivers automatic classification and visibility of applications running on the network
  • Prioritizes the applications that are the most business critical and provides Quality of Service (QoS)
  • Accelerates applications including file sharing, email, enterprise and external web-based applications including those using HTTPS
  • Optimizes the use of existing WAN bandwidth
  • Improves application response times and protocol efficiency
  • Reduces data transfer over the WAN where/when possible
  • Stops malware instead of accelerating it.
  • Provides per user or per group policy control

Furthermore, this cost-effective solution matches CUSTOMER’s specific success criteria as follows:

  • Overall performance and reporting of CUSTOMER’s WAN services will be improved with the combined use of Blue Coat PacketShaper and ProxySG
  • WAN link utilization will be reduced and will delay link upgrades
  • Visibility, acceleration and control provided by Blue Coat’s solution will allow you to monitor and ensure the performance, reliability and usability of Oracle ERP system over the WAN links
  • Rollout can be done quickly (within 60-90 days)
  • Sizing has been done to minimize the need for any upgrades for the next 18-24 months
  • VAR and Blue Coat will work with CUSTOMER to design reports on improvements and ROI from this solution

2. Summary of Customer Situation

Current Environment (Network, Applications, Locations, etc.)

CUSTOMER’s current infrastructure includes the following:

  • No WAN Optimization currently deployed
  • Limited deep inspection on WAN traffic
  • Limited reporting of WAN traffic
  • Primary applications are CIFS, MAPI, SharePoint, HTTP and Oracle ERP
  • Data center consolidation was completed 9 months ago with primary data centers in 3 geographies (Americas, Europe and Asia-Pacific)
  • 2000 users in New York/150 Mbps bandwidth
  • 500 users in London/45 Mbps bandwidth
  • Approximately 250 users in Tokyo/8-10 Mbps bandwidth
  • Each geography has 5-10 regional offices with 50-200 users each and variety of bandwidth
  • Expect 20% annual growth

Current Issues/Problems

  • After data center consolidation there are repeat complaints of poor performance and applications timing out
  • Bandwidth utilization on the WAN links has increased 35-50%
  • Rollout of Oracle ERP solution is being delayed until WAN performance can be improved and better monitored

Desired Outcome

Based on past discussions, VAR understands that the technical goals CUSTOMER hopes to meet with this project are the following:

  • Improve the overall performance and reporting of CUSTOMER’sWAN services
  • Reduce WAN link utilization sufficient to allow at least 12 month delay in any link upgrades
  • Ensure performance, reliability and usability of Oracle ERP system

Furthermore, key business requirements of this project are:

  • Cost-effective solution that will address growth, capacity and upgradability
  • Rollout can be done quickly (within 60-90 days)
  • Design and deploy for future growth – at minimum 18-24 months without any upgrades required
  • Easy to demonstrate and report on improvements and ROI from this solution
  • Perform all major migration tasks during CUSTOMER approved change windows

3. Proposed Solution

Overview

The solution proposed in this document is designed to address the issues and desired outcomes discussed above in a cost effective and scalable manner. This solution is based on Blue Coat PacketShaper and ProxySG appliances that will be deployed in the core and branch offices. Minimal changes or impact to the existing network are expected.

We have provided a timeline of less than 90 days for proof of concept (PoC) testing, testing report and final recommendation, ordering and setup/staging of equipment, deployment and acceptance testing. We recommend the PoC phase to include a network assessment using the PacketShaper in order to accurately measure the current and the optimized WAN application performance and utilization.

Given the tight timeline and the global nature of this deployment we highly recommend the use of Professional Services for the PoC and the deployment. We have also included training for two members of your IT staff so that you can make the most of your investment. Training is available worldwide and if there are other staff members who require training it can be arranged based on location and course schedules.

Design details

Below is a detailed description of the proposed solution. Later in this document is a complete Bill of Materials (BoM).

Network diagram

In CUSTOMER’s network Blue Coat’s acceleration solution will be deployed in a network that includes branch offices with clients accessing applications located on application servers at the corporate data center. A single ProxySG will be deployed in-path at each branch location and using WCCP at the core/data center. The PacketShaper devices will all be deployed in-line.

Data Center: The ProxySG at this site acts as a Concentrator peer, accepting inbound tunnel connections from the remote Branch peer at the remote sites. It then recreates the application request data and forwards the request to the application server. When the Concentrator peer receives the application response data from the application server it returns it to the Branch peer over the same tunnel.

Branch: The in-path ProxySG at this location acts as a Branch peer, intercepting client application traffic and establishing outbound transparent tunnel connections with the Concentrator peer at the data center to optimize the traffic.

  • Sizing: Branch sites have been sized to either the number of users or bandwidth (whichever is higher) with headroom for 20% annual growth and a 24 month window.
  • Redundant links: Sites with redundant links/routers are designed with two (2) devices in an active-active configuration.

This diagram is a placeholder (stolen from Boot Camp lab design). Will produce a better example that diagrams 3 data centers and several branch offices with various links.

In-Path Acceleration Deployment

In an in-path deployment, the ProxySG appliance is physically inserted into the path of the clients and servers. The in-path ProxySG intercepts the application traffic you want to optimize and bridges all other traffic. Generally, Blue Coat recommends using a hardware bridge and pass-through card for in-path deployments. This is because the hardware pass-through card has two interfaces that pass traffic when there is no power, enabling the ProxySG appliance to fail to a connected state without interrupting traffic.

WCCP Acceleration Deployment

Within the Data Centers a WCCP implementation has been assumed and will be configured on either the MPLS or core routers.

Transparent Acceleration Tunnel

When a branch peer intercepts application traffic for optimization, it initiates a TCP connection with the Concentrator peer, which located in data center, at the site hosting the application server. This TCP connection between acceleration peers is called an acceleration tunnel. With a transparent tunnel connection, the original destination IP address and port are maintained. Depending on the desired level of transparency, the connection over the WAN can use the original client’s IP address or the IP address of the branch peer. To use transparent tunnels, both the branch peer and the concentrator peer must be deployed in-path or virtually in-path.

Remote users and small branch offices

For remote/mobile users we have proposed Blue Coat’s Proxy Client. Proxy Client will enable roaming users to benefit from WAN Optimization technologies for improved performance while optionally also providing URL filtering and malware protection. For more detailed information on the Proxy Client see the Technology Details section below and the attached product datasheets.

Small branch offices will also deploy ProxySG inline but we have proposed the Proxy Edition of Blue Coat’s SGOS to enable Direct-to-Net. This will enable CUSTOMER’s smaller and more remote offices to use ADSL or business grade DSL connections with local web traffic using the local connection with full protection and URL filtering while of course providing acceleration back to the data center for internal applications.

Value (how this (or Blue Coat’s) solution solves CUSTOMER’s problems)

This proposed solution satisfied the technical and business success criteria as shown in the table below.

Objective / How this solution satisfies the objective
Improve the overall performance and reporting of WAN services / Typical bandwidth gains are xx%
Detailed application performance and WAN link utilization monitoring and reporting
Reduce WAN link utilization to delay link upgrades / Typical bandwidth gains are xx%
PacketShaper can be used to monitor utilization and peak usage
Limit and control recreational traffic
Ensure performance, reliability, and usability of Oracle ERP system / Improvement in login times from 25-97 times
Reduction in bandwidth usage from 95-98%
PacketShaper can be used to monitor application performance
Cost-effective solution that addresses growth, capacity and upgradability / Application Delivery Network (ADN) solution contains cost and improves productivity
Direct-to-Net options offer further cost saving opportunities
PacketShaper can be used for monitoring and planning
Quick rollout / Ease of deployment will be demonstrated in PoC
Professional Services engagement designed for rapid and predictable deployment
Designed for future growth and minimum upgrades / Proposal includes sizing considerations to account for 20% annual growth
Report on WAN improvement and ROI / Typical bandwidth gains are xx%
Reporting examples to be created during PoC
Refer to Blue Coat ROI calculator for detailed analysis
Minimum impact on network / PacketShaper network assessment will minimize surprises
Inline deployment at branch is simple and has fail-to-wire bypass interface
WCCP at the core provides flexibility and is proven method
No changes to servers or clients required

Technology details

Blue Coat acceleration technology is a patent-pending combination of data reduction and application acceleration techniques that provide measurable improvements in performance and reduction of bandwidth. Whether at the edge of your network, or right in the heart of it, Blue Coat acceleration technology provides a powerful toolkit to optimize performance for distributed applications.

These technologies include:

Protocol Optimization

Improves the performance of protocols that are inefficient over the WAN by eliminating the impact of latency native to their design. Blue Coat has been optimizing network protocols for over a decade, and offers multiple improvements for TCP, CIFS, HTTP, HTTPS, MAPI and streaming video and IM protocols.

Byte Caching and Compression

Dictionary-based gigabyte caching combines high performance disk storage for large byte patterns with innovative indexing and referencing techniques to drastically reduce bandwidth from large, repetitive data transmission. Inline compression reduces predictable patterns even on the first pass, making it an ideal complement to byte caching technology.

Asymmetric Pipelining and Object Caching for Web and SSL

Blue Coat’s pipelining parallelizes multiple connections within compound web pages, moving data and objects much more quickly to the user. Object caching, with patented adaptive refresh, assures that the freshest content is served immediately to the users – without the network wait. Blue Coat delivers this acceleration in an asymmetric architecture, requiring only a single box at the branch to accelerate internal and external HTTP and SSL traffic – with no appliance required on the other side of the transaction.

Video Split Streaming, Object Caching & CDN

Large video files – whether static or streamed live – are difficult to deliver in distributed environments due to large bandwidth requirements. Blue Coat’s live split streaming takes a single stream from the WAN and splits it into multiple streams at the remote site, enabling all employees to view live streams at the bandwidth cost of just one stream. Video caching makes on-demand video instantly available to employees, while CDN capabilities enable you to pre- position content at non-peak times.

Recreational traffic control & SaaS Acceleration

Classify each external website access with Blue Coat WebFilter and our real time WebPulse service in order to prioritize business, minimize recreation and prevent malware infections. Unique Internet caching capabilities let you reduce bandwidth for allowed Web sites – and accelerates Software as a Service (SaaS) applications important to your business. Note, Web filtering and WebPulse are only available with the ProxySG Proxy Edition.

Bandwidth Management

Prioritize network resources based not only on port or device, but on users, applications and content to more accurately reflect your corporate policies on the network. Works by itself, or integrates with your infrastructure QoS to provide application intelligence to the packet switching network.

Proxy Client

Proxy Client extends application delivery and acceleration to the desktop. Using the same technologies as the ProxySG, including caching, compression and protocol optimization, the Proxy Client accelerates web and office applications for roaming and small branch users. The ProxyClient delivers LAN-like user experience with a simple and easy footprint for installation, configuration, deployment and ongoing maintenance.

As well as optimisationProxyClient has a real-time relationship to the Blue Coat WebPulse cloud service that continuously analyzes web content in the background for hidden malware, this allows IT administrators to enforce web content filtering polices to users when they are not connected the enterprise network. ProxyClient is part of a larger "community watch" where each ProxyClient user requests benefits the entire community to detect malware and rate web content.

Acceleration of Oracle Applications

Oracle Applications (including the Oracle E-Business Suite) are a collection of enterprise business applications, including enterprise resource planning (ERP), supply chain management (SCM), and customer relationship management (CRM) applications, all utilizing Oracle’s core relational database management system (RDBMS) technologies. The Oracle Applications set of products, including Financials, Hyperion, Siebel, PeopleSoft,and the E-Business Suite are delivered to end-users via a set of services from Oracle’s “technology stack”. This may use Oracle Forms Server, Reports Server, Discoverer, JInitiator,Apache Web Server or some other application server.

These full featured clients with rich functionality tend to operate well in local area networks (LAN) environments, but become user unfriendly when access over the wide area networks (WAN) at branch locations. The effects of WAN latency, congestion, and limited bandwidth all combine to cause severely degraded performance at branch/remote locations, reducing productivity and increasing user frustration. Faced with a slow application, user adoption of Oracle enhanced business processes can stall, increasing application rollout costs and reduce overall productivity. Blue Coat appliances can optimize and accelerate all Oracle Applications traffic - reducing latency and increasing WAN throughput for users, while maintaining control, visibility, and security for network administrators.

Oracle Applications over the WAN

Oracle Applications over the WAN are usually delivered via a set of web services, as part of an overall enterprise service-oriented architecture (enterprise SOA). Oracle Application traffic over the WAN is usually secured with SSL encryption to provide a secure end-to- end communication channel between user and server. Commonly, this encryption thwarts attempts at optimization.