Using Ada95 to Build Software for a Gigabit Layer 7 IP Using Ada95 - PowerPoint PPT Presentation

Using Ada95 to Build Software for a Gigabit Layer 7 IP Using Ada95 to Build Software for a Gigabit Layer 7 IP Networking Device: Ada’s No Big Deal Anymore Networking Device: Ada’s No Big Deal Anymore Mike Kamrad Mike Kamrad “senior” Software Engineer “senior” Software Engineer kamrad@TopLayer.com kamrad@TopLayer.com +1.508.870.1300x139 +1.508.870.1300x139 FAX +1.508.870.9797 FAX +1.508.870.9797 www.TopLayer.com www.TopLayer.com

What You’ll See ♦ A Really Bitchin’ Data ♦ A Really Bitchin’ Data- -Comm Product Comm Product ♦ Architecture ♦ Architecture ♦ Ada Software Development Environment ♦ Ada Software Development Environment ♦ Obstacles and Lessons Learned ♦ Obstacles and Lessons Learned ♦ Restricted Usage RTOS ♦ Restricted Usage RTOS 2 10/3/00 Top Layer - "Layers above the Rest"

�� ������ ��������� �� ������ ��������� �������������������������������� ������������� ������������ ������������������������������� ������� �������

Who is Top Layer Networks? ♦ Founded January, 1997 ♦ Founded January, 1997 ♦ 155+ Employees ♦ 155+ Employees ♦ Headquarters in Westboro, MA, USA ♦ Headquarters in Westboro, MA, USA ♦ Strong executive management team ♦ Strong executive management team ♦ ♦ Chipcom, Fore Systems, DEC, Wellfleet/Bay Networks Chipcom, Fore Systems, DEC, Wellfleet/Bay Networks ♦ World ♦ World- -class engineering team class engineering team ♦ ♦ DEC, Fore, Chipcom, 3Com, etc. DEC, Fore, Chipcom, 3Com, etc. ♦ ♦ Major experience in ASICs and Major experience in ASICs and switches switches ♦ Private Company ♦ Private Company - - Raised over $30M in funding Raised over $30M in funding ♦ Shipping Products: AppSwitch 2500 ♦ Shipping Products: AppSwitch 2500 - - October ‘99; October ‘99; AppSwitch 3500 - AppSwitch 3500 - June ‘00 June ‘00 ♦ Over 125 customers… and growing! ♦ Over 125 customers… and growing! 4 10/3/00 Top Layer - "Layers above the Rest"

What is the Top Layer AppSwitch? ♦ The AppSwitch is a high performance L4 ♦ The AppSwitch is a high performance L4- -L7 device L7 device e- - with a powerful set of flexible features, called e with a powerful set of flexible features, called Application Control . Application Control . ♦ It provides flexible solutions to today’s IP ♦ It provides flexible solutions to today’s IP networking challenges including congestion, networking challenges including congestion, accounting, monitoring, high- -availability, availability, accounting, monitoring, high responsiveness, and security security . . responsiveness, and 5 10/3/00 Top Layer - "Layers above the Rest"

What is e-Application Control? ♦ ♦ A powerful set of flexible high A powerful set of flexible high- -performance features... performance features... ♦ ♦ Security Augmentation Security Augmentation – Packet Filter Firewall with Syslog Syslog Reporting Reporting – Packet Filter Firewall with – Filters for Filters for DoS DoS attacks attacks – – Flow Mirroring for IDS – Flow Mirroring for IDS ♦ ♦ Application Accounting/Monitoring Application Accounting/Monitoring – TopFlow protocol protocol – TopFlow – TopFlow TopFlow Data Collector Data Collector – – – TopView Graphs TopView Graphs ♦ ♦ Application Traffic Management Application Traffic Management – – Application QoS Application QoS – – Application Balancing Application Balancing – – Application Redirection Application Redirection …built on a powerful policy- …built on a powerful policy -based management model based management model which includes a unique Application Definition Library which includes a unique Application Definition Library 6 10/3/00 Top Layer - "Layers above the Rest"

What do we do with Applications ♦ Prioritize ♦ Prioritize - Assign relative priorities to Applications - Weighted Round Robin Queuing ..... FTP ..… Priority 1 ….. Priority 2 . ...……….. .…. Priority 3 Priority 4 etc. 7 10/3/00 Top Layer - "Layers above the Rest"

What do we do with Applications ♦ Graduated Priorities ♦ Graduated Priorities - Priorities are altered as size of flow increases Priority 1 Priority 2 . . . .……. .…. Priority 3 Priority 4 etc. 8 10/3/00 Top Layer - "Layers above the Rest"

What do we do with Applications ♦ Bandwidth Guarantees ♦ Bandwidth Guarantees - Assign guaranteed bandwidth to Applications - Uses the static queues - Will guarantee per flow bandwidth up to 8 Mbps per flow - Up to 128 flows can be set ..... ……... ..… H.323 Priority 1 ……... 2Mbps .…. Priority 2 MS Stream …..…. 1 Mbps ….. Priority 3 Xing Streamworks ……... 384Kbps Priority 4 1Mbps etc. 9 10/3/00 Top Layer - "Layers above the Rest"

What do we do with Applications ♦ Firewall ♦ Firewall - A firewall policy can be set by application ..... between zones FastPath FastPath Process Process 10 10/3/00 Top Layer - "Layers above the Rest"

What do we do with Applications ♦ TopFlow ♦ TopFlow displays message flow displays message flow statistics statistics - Output stats on packets sent by application and - TopFlow output: user + L3/L2 data Background ..... Engine FTP ..… ….. FastPath FastPath Process Process .…. 11 10/3/00 Top Layer - "Layers above the Rest"

AppSwitch 2500 console console - AS2512 - 12 10/100 TX ports + 2 100FX ports - 32,000 simultaneous flows 12 10/3/00 Top Layer - "Layers above the Rest"

AppSwitch 3500 console console - AS3502 - 12 10/100 TX ports + 2 Gig ports (1 redundant only) - 256,000 simultaneous flows - Additional packet processing capability 13 10/3/00 Top Layer - "Layers above the Rest"

Technical Differentiators ♦ “ ♦ “Touch Touch every every packet packet” ” switching engine switching engine ♦ Stateful packet inspection ♦ Stateful packet inspection ♦ Datalink independent LAN/WAN switching ♦ Datalink independent LAN/WAN switching ♦ Hierarchical Hybrid Queuing (HHQ) ♦ Hierarchical Hybrid Queuing (HHQ) ♦ Customizable Application Policy Library ♦ Customizable Application Policy Library ♦ “Automatic” operation ♦ “Automatic” operation ♦ Scaleable, extensible architecture ♦ Scaleable, extensible architecture 14 10/3/00 Top Layer - "Layers above the Rest"

Architecture

Architecture Matters! ♦ Key components ♦ Key components TM Programmable ♦ TopFire ♦ TopFire TM Programmable Silicon Switching Engine Silicon Switching Engine – Architected, designed, and patented – Architected, designed, and patented – Layer 7 at full wire speed at every port Layer 7 at full wire speed at every port – – Very scaleable and extensible – Very scaleable and extensible – Same architecture/software Same architecture/software in entire family in entire family – TM Application Flow Switching ♦ TopPath ♦ TopPath TM Application Flow Switching 16 10/3/00 Top Layer - "Layers above the Rest"

e-Application Control Architecture L2/L3 Forwarding L4 Tables Tx Queue Packet Incoming Tx Queue Data Processing Tx Queue Priority Output Application Application Session Queues Definition Policies Data Library Stateful Application Control 17 10/3/00 Top Layer - "Layers above the Rest"

Architecture - A Closer Look AppSwitch 2500 Lookup Tables Memory Forwarding Engine Fast Path Code, System Data, Background Engine SDRAM Memory RE Chip RE Chip SRAM MII Octal MAC MII Octal MAC Queue Manager Descriptors, QM Tables SRAM Memory MOM Chip MOM Chip QM Chip 100 Mbps MII 100 Mbps MII Packet Memory RAMbus DRAM TopFire TM chipset 18 10/3/00 Top Layer - "Layers above the Rest"

Scalable Architecture AppSwitch 3500 Lookup Tables Forwarding Engine Background Engine Application Engine Memory Fast Path Code, System Data, SRAM SDRAM Memory RE Chip RE Chip RE Chip Queue Manager Descriptors, Dual Gig + 16 QM Tables 10/100 MAC SRAM Memory GMOM Chip QM Chip 1000 Mbps 100 Mbps MII Packet Memory RAMbus DRAM 19 10/3/00 Top Layer - "Layers above the Rest"

Major Software Components ♦ Forwarding Engine ♦ Forwarding Engine - - The main switching The main switching component to establish and maintain component to establish and maintain message flows, per network policies message flows, per network policies ♦ Background Engine ♦ Background Engine - - The management The management control component that interfaces with the control component that interfaces with the network administrator network administrator ♦ Application Engine(s) ♦ Application Engine(s) - - Protocol specific Protocol specific accelerator to handle complex protocols accelerator to handle complex protocols 20 10/3/00 Top Layer - "Layers above the Rest"