The Operational Consistency Proxy

#devops #management #webperf Cloud makes more urgent the need to consistently manage infrastructure and its policies regardless of where that infrastructure might reside

f5friday

While the potential for operational policy (performance, security, reliability, access, etc..) diaspora is often mentioned in conjunction with cloud, it remains a very real issue within the traditional data center as well. Introducing cloud-deployed resources and applications only serves to exacerbate the problem.

F5 has long offered a single-pane of glass management solution for F5 systems with Enterprise Manager (EM) and recently introduced significant updates that increase its scope into the cloud and broaden its capabilities to simplify the increasingly complex operational tasks associated with managing security, performance, and reliability in a virtual world.

f5em2.0AUTOMATE COMMON TASKS

The latest release of F5 EM includes enhancements to its ability to automate common tasks such as configuring and managing SSL certificates, managing policies, and enabling/disabling resources which assists in automating provisioning and de-provisioning processes as well as automating what many might consider mundane – and yet critical – maintenance window operations.

Updating policies, too, assists in maintaining operational consistency across all F5 solutions – whether in the data center or in the cloud. This is particularly important in the realm of security, where control over access to applications is often far less under the control of IT than even the business would like. Combining F5’s cloud-enabled solutions such as F5 Application Security Manager (ASM) and Access Policy Manager (APM) with the ability for F5 EM to manage such distributed instances in conjunction with data center deployed instances provides for consistent enforcement of security and access policies for applications regardless of their deployment location. For F5 ASM specifically, this extends to Live Signature updates, which can be downloaded by F5 EM and distributed to managed instances of F5 ASM to ensure the most up-to-date security across enterprise concerns.

The combination of centralized management with automation also ensures rapid response to activities such as the publication of CERT advisories. Operators can quickly determine from the centralized inventory the impact of such a vulnerability and take action to redress the situation.

INTEGRATED PERFORMANCE METRICS real-time-app-perf-monitoring-cloud-dc

F5 EM also includes an option to provision a Centralized Analytics Module. This module builds on F5’s visibility into application performance based on its strategic location in the architecture – residing in front of the applications for which performance is a concern. Individual instances of F5 solutions can be directed to gather a plethora of application performance related statistics, which is then aggregated and reported on by application in EM’s Centralized Analytics Module.

These metrics enable capacity planning, troubleshooting and can be used in conjunction with broader business intelligence efforts to understand the performance of applications and its related impact whether those applications are in the cloud or in the data center. This global monitoring extends to F5 device health and performance, to ensure infrastructure services scale along with demand. 

Monitoring includes:

  • Device Level Visibility & Monitoring
  • Capacity Planning
  • Virtual Level & Pool Member Statistics
  • Object Level Visibility
  • Near Real-Time Graphics
  • Reporting

In addition to monitoring, F5 EM can collect actionable data upon which thresholds can be determined and alerts can be configured.

Alerts include:

  • Device status change
  • SSL certificate expiration
  • Software install complete
  • Software copy failure
  • Statistics data threshold
  • Configuration synchronization
  • Attack signature update
  • Clock skew

When thresholds are reached, triggers send an alert via email, SNMP trap or syslog event. More sophisticated alerting and inclusion in broader automated, operational systems can be achieved by taking advantage of F5’s control-plane API, iControl. F5 EM is further able to proxy iControl-based applications, eliminating the need to communicate directly with each BIG-IP deployed.

OPERATIONAL CONSISTENCY PROXY

By acting as a centralized management and operational console for BIG-IP devices, F5 EM effectively proxies operational consistency across the data center and into the cloud. Its ability to collect and aggregate metrics provides a comprehensive view of application and infrastructure performance across the breadth and depth of the application delivery chain, enabling more rapid response to incidents whether performance or security related.

F5 EM ensures consistency in both infrastructure configuration and operational policies, and actively participates in automation and orchestration efforts that can significantly decrease the pressure on operations when managing the critical application delivery network component of a highly distributed, cross-environment architecture.

Additional Resources:

Happy Managing!


Connect with Lori: Connect with F5:
o_linkedin[1] google  o_rss[1] o_twitter[1]   o_facebook[1] o_twitter[1] o_slideshare[1] o_youtube[1] google

Related blogs & articles:


read more

Fusion-io Intros ION Software-Defined Storage

Fusion-io Wednesday trotted out a piece of software called ION Data Accelerator that All Things Digital says means that a server fitted with flash can replace a storage array.
It also says that “servers that run in the cloud are going all-flash” starting with the boxes in Facebook’s data centers. They’re no longer combined with hard disks.
Fusion-io says its ION Data Accelerator software transforms 1U servers into network-shared ioMemory data acceleration appliances delivering over one million IOPS, up to 6 GB/s throughput and under 0.06 millisecond access latency. Applications that need access to shared data benefit from the performance.
It’ll scale as the underlying server and networking get fancier and it won’t lose data to power outages.

read more

Writer’s iCloud hacked as Wozniak calls cloud “horrendous”

Apple co-founder Steve Wozniak is hardly sitting on the fence with his opinions on the cloud

Speaking after a performance of Mike Daisey’s monologue “The Agony and the Ecstasy of Steve Jobs”, Steve Wozniak was in uncompromising mood concerning his thoughts on cloud computing.

Wozniak reportedly told the packed theatre audience: “I think [cloud’s] going to be horrendous. I think there are going to be a lot of horrible problems in the next five years”.

Five years is a long time. According to Gartner, four years is all it will take for a third of consumers’ digital content to end up in the cloud.

Wozniak added: “With the cloud, you don’t own anything. The more we transfer everything onto the cloud, the less we’re going to have control over it”.

As a result, it’s easy to sympathise with the unfortunate story of US journalist Mat …

Gartner Hype-Cycle 2012 – Cloud Computing

Let me read between the lines of Gartner Hype-Cycle for Cloud Computing – 2012. According to my reading this is what Gartner really wants to say. I agree with 4 of them, am doubtful about one and disagree with one.
Gartner has stated these points using a different language. I am being more direct.
Cloud Computing has started going down the “trough of disillusionment”!
After hovering in the “peak of inflated expectation” for last 3 years, cloud computing has started down the “trough of disillusionment”!

read more

Apple & Google to Vie in Kodak Patent Auction

As part of its bankruptcy proceedings, Eastman Kodak has put 1,100 patents on the block.
They are expected to be sold at auction on August 8.
There was reportedly a Monday deadline for initial bids according to what “people familiar with the matter” told the Wall Street Journal.
Apple, teamed with Microsoft and Nathan Myhrvold’s Intellectual Ventures, and Google in company with RPX, Samsung, LG and HTC are believed to be after them for protection.
Apple and Google were on opposite sides in the great Nortel patent auction last year and Apple and Microsoft et al walked off with the IP for $4.5 billion, a victory the inflated the expectations of patent holders everywhere.

read more

The Need for (HTML5) Speed

An old English proverb observes that “Even a broken clock is right twice a day.” A more modern idiom involves a blind squirrel and an acorn, and I’m certain there are many other culturally specific nuggets of wisdom that succinctly describe what is essentially blind luck.
The proverb and modern idioms fit well the case of modern acceleration techniques as applied to content delivered to mobile devices. A given configuration of options and solutions may inadvertently be “right” twice a day purely by happenstance, but the rest of the time they may not be doing all that much good.

read more

Thoughts for the Week-End

1. NBC’s Olympics coverage proves the point that all the great technology in the world is wasted if the human element is forgotten. This has been a stunning technological display, accompanied by some of the most ignorant commentary and craven corporatism imaginable.
2. The sudden pivot to SDN in particular and networks in general scares me. Too soon, guys, you’re getting ahead of your customers.
3. I agree with @krishnan that it’s asinine to talk about how open source has “won.” This has never been a zero-sum discussion.
4. Our summer in Northern Illinois has been statistically equal to the norm for Tulsa, Oklahoma. I’ve always wondered what it would be like to live in Oklahoma; now I don’t have to.
5. Related to Thought #2, this talk of public-cloud consolidation makes me nervous. How can something be consolidated before it’s been allowed to mature?
6. Read my article about Citic and its new Singapore datacenter. Gaze in wonder at all the US vendors mentioned. Agree with me that cloud computing creates great jobs and that IT jobs are only going to be more sophisticated in the future, not wiped out.
7. Write a letter to your Congressperson and Senator and implore them to focus on how to rebuild our economy on technology in general and cloud computing in particular. Yes, write a letter. Don’t send an email, as most of them don’t yet know how to use it. And by all means, don’t tweet it. They’ll think you’re some sort of subversive.

Have a great week-end!

read more

Are the Costs of Cloud Security Too Good to Be True?

The costs of holistic security are very different from company to company when considering direct costs, soft costs, hidden requirements, scope of services, and migration issues.
What is it they say…you get what you pay for, right? In most cases, that is a spot on assessment but in terms of the cloud-based security, the numbers tend to add up towards the benefit of the user. But let’s get the whole idea of numbers down straight. It’s all relative. What is pricy for one organization is downright affordable to another, so in terms of costs let’s look squarely at the moving target of return on investment. What makes cloud security compelling is how the costs break down in terms of hard and soft cost savings

read more

Cloud’s Cohesion: When Virtual Worlds (Must) Collide

The software application developer is about to become the cloud software-as-a-service application developer. At least this is the truism that we must accept if we give full credence to the ‘trending’ topics coming out of IT vendors’ newswires just now.
Logically, as an industry, we appear to have spent most of our time up until now concentrating on the construction of cloud computing architectures, development frameworks, usage models (i.e., public, private and/or hybrid) and the multifarious issues pertaining to the migration of both data and applications.

read more

Zetta.net Achieves Distinct Cloud Storage Advantages Through Use of WebDAV

Zetta.net, a provider of 3-in-1 online server backup solutions, has announced that storage analyst firm Storage Strategies NOW reports that the company’s use of the WebDAV (Web Distributed Authoring and Versioning) protocol is a distinct advantage for its Zetta.net DataProtect cloud infrastructure. The recent Delta Report authored by Storage Strategies NOW outlines how WebDAV delivers both the security and speed required by today’s customers of cloud-based data protection, making Zetta.net unique in terms of throughput and recovery availability.
“WebDAV is latency independent and efficient over wide area networks, particularly when compared to file protocols like CIFS and NFS,” said James E. Bagley, senior analyst, and Deni Connor, founding analyst of Storage Strategies NOW in the report. “By using WebDAV, the data is encrypted during transmission and stored quickly and efficiently. Connections are kept open continuously which reduces the amount of stress on the customer network and the internet in general. This is coupled with the speed and efficiency of Zetta.net’s compression and incremental-forever update technology, making it unique in terms of throughput and recovery availability.”

read more

The cloud news categorized.