1 YEAR UPGRADE BUYER PROTECTION PLAN Professional Reference Series ASP Configuration Gary Palmatier, Vice President of Business Development and Solution Architecture, EngineX Networks, Inc. Foreword by Dale Booth, Chairman & CEO, EngineX Networks, Inc. Sean Thurston Technical Editor Become an Application Service Provider! • Step-by-Step Instructions for Converting an ISP from Standard Bandwidth Provisioning to Providing Complex Services • Hundreds of Common ASP Terms Defined,Types of ASP Firms Identified,and Best Platforms Revealed • Complete Coverage of Application Outsourcing,Business Process Outsourcing, and Platform IT Outsourcing Application Service Provider [ ] Handbook 130_ASP_newFC 6/19/01 3:02 PM Page 1 solutions@syngress.com With more than 1,500,000 copies of our MCSE, MCSD, CompTIA, and Cisco study guides in print, we continue to look for ways in which we can better serve the information needs of our readers. One way we do this is by listening. Readers like yourself have been telling us they want an Internet-based ser- vice that would extend and enhance the value of our books. Based on reader feedback and our own strategic plan, we have created a Web site that we hope will exceed your expectations. Solutions@syngress.com is an interactive treasure trove of useful infor- mation focusing on our book topics and related technologies. The site offers the following features: ■ One-year warranty against content obsolescence due to vendor product upgrades. You can access online updates for any affected chapters. ■ “Ask the Author”™ customer query forms that enable you to post questions to our authors and editors. ■ Exclusive monthly mailings in which our experts provide answers to reader queries and clear explanations of complex material. ■ Regularly updated links to sites specially selected by our editors for readers desiring additional reliable information on key topics. Best of all, the book you’re now holding is your key to this amazing site. Just go to www.syngress.com/solutions, and keep this book handy when you register to verify your purchase. Thank you for giving us the opportunity to serve your needs. And be sure to let us know if there’s anything else we can do to help you get the max- imum value from your investment. We’re listening. www.syngress.com/solutions 130_ASP_FM 6/19/01 2:57 PM Page i 130_ASP_FM 6/19/01 2:57 PM Page ii 1 YEAR UPGRADE BUYER PROTECTION PLAN Professional Reference Series ASP Configuration Application Service Provider [ ] Handbook 130_ASP_FM 6/19/01 2:57 PM Page iii Syngress Publishing, Inc., the author(s), and any person or firm involved in the writing, editing, or production (collectively “Makers”) of this book (“the Work”) do not guarantee or warrant the results to be obtained from the Work. There is no guarantee of any kind, expressed or implied, regarding the Work or its contents.The Work is sold AS IS and WITHOUT WARRANTY.You may have other legal rights, which vary from state to state. In no event will Makers be liable to you for damages, including any loss of profits, lost savings, or other inci- dental or consequential damages arising out from the Work or its contents. Because some states do not allow the exclusion or limitation of liability for consequential or incidental damages, the above limitation may not apply to you. You should always use reasonable case, including backup and other appropriate precautions, when working with computers, networks, data, and files. Syngress Media®, Syngress®, and “Career Advancement Through Skill Enhancement®,”are registered trademarks of Syngress Media, Inc. “Ask the Author™,”“Ask the Author UPDATE™,”“Mission Critical™,” and “Hack Proofing™” are trademarks of Syngress Publishing, Inc. Brands and product names mentioned in this book are trademarks or service marks of their respective companies. KEY SERIAL NUMBER 001 KKHJH87875 002 GSRSUY6456 003 ALERKTPD53 004 E458XPS368 005 5ERPTK348A 006 NV49533JFE 007 Q8URVNA394 008 BHU89FE2MP 009 Q2WPMKA843 010 CDFUU8Z922 PUBLISHED BY Syngress Publishing, Inc. 800 Hingham Street Rockland, MA 02370 ASP Configuration Handbook: A Guide for ISPs Copyright © 2001 by Syngress Publishing, Inc. All rights reserved. Printed in the United States of America. Except as permitted under the Copyright Act of 1976, no part of this publication may be reproduced or dis- tributed in any form or by any means, or stored in a database or retrieval system, without the prior written permission of the publisher, with the exception that the program listings may be entered, stored, and executed in a computer system, but they may not be reproduced for publication. Printed in the United States of America 1 2 3 4 5 6 7 8 9 0 ISBN: 1-928994-26-1 Technical Editor: Sean Thurston Freelance Editorial Manager: Maribeth Corona-Evans Co-Publisher: Richard Kristof Copy Editor: Beth A. Roberts Cover Design by: Michael Kavish Index by: Robert Saigh Page Layout and Art by: Shannon Tozier Distributed by Publishers Group West in the United States. 130_ASP_FM 6/19/01 2:57 PM Page iv v Acknowledgments v We would like to acknowledge the following people for their kindness and support in making this book possible. Richard Kristof and Duncan Anderson of Global Knowledge, for their generous access to the IT industry’s best courses, instructors, and training facilities. Karen Cross, Lance Tilford, Meaghan Cunningham, Kim Wylie, Harry Kirchner, Bill Richter, Kevin Votel, Brittin Clark, and Kent Anderson of Publishers Group West for sharing their incredible marketing experience and expertise. Mary Ging, Caroline Hird, Simon Beale, Caroline Wheeler,Victoria Fuller, Jonathan Bunkell, and Klaus Beran of Harcourt International for making certain that our vision remains worldwide in scope. Anneke Baeten, Annabel Dent, and Laurie Giles of Harcourt Australia for all their help. David Buckland,Wendi Wong, Daniel Loh, Marie Chieng, Lucy Chong, Leslie Lim, Audrey Gan, and Joseph Chan of Transquest Publishers for the enthusiasm with which they receive our books. Kwon Sung June at Acorn Publishing for his support. Ethan Atkin at Cranbury International for his help in expanding the Syngress program. Joe Pisco, Helen Moyer, and the great folks at InterCity Press for all their help. 130_ASP_FM 6/19/01 2:57 PM Page v 130_ASP_FM 6/19/01 2:57 PM Page vi vii Contributors Dale Booth is EngineX Networks’ Chairman and CEO. He has more than two decades of telecommunications industry experience, including the role of Senior Vice President and Chief Operating Officer at Fujitsu Network Services, a division of Fujitsu Network Communications. Dale created the vendor-neutral services division and powered it to a 373 per- cent compound annual growth rate. He also served as Chief Information Officer of Fujitsu Network Communications. Prior to that, he held var- ious technical and management positions at InteCom, a PBX start-up specializing in converged voice and data platforms. Dale has an engi- neering degree from DeVry Institute and did post-graduate work at the University of Pennsylvania,Wharton School of Business. He serves on numerous boards and councils, including Daisytek International, the Texas Quality Foundation, and the International Engineering Consortium. Gary Palmatier is Vice President of Business Development and Solution Architecture for EngineX Networks Inc. He is responsible for defining markets, creating technical service solutions, and managing customer, partner, and alliance relationships. He has more than 18 years of telecom- munications industry experience. Previously, he was Director of Advanced Network Services at Fujitsu Network Services, where he established the professional services business unit and directed the division’s global profes- sional services efforts. Gary has a master’s degree in IS management from Aurora University, in Aurora, IL and a bachelor’s degree in industrial tech- nology from Southern Illinois University. Gary serves as Chairman of the Systems Integration Committee of the National Convergence Alliance. He is certified as an Oracle Master Systems Analyst and is a member of the IEEE. Gary has been a featured speaker at Argonne National Laboratory, professional societies, and industry symposiums on topics such as software engineering, innovation, and management systems. He has also taught electronics technology, programming languages, and networking at the college level. 130_ASP_FM 6/19/01 2:57 PM Page vii Matt Lyons (CCIE #1133) is the Director of Solution Architecture for EngineX Networks Inc. Matt has over 20 years of experience working with networking and IP. He has worked for such early network pioneers as Ungermann Bass, SynOptics Communications, Network General, and Nestar Systems, the first company to network the Apple II. After more than 7 years at Cisco Systems, and leveraging his international consulting experience, he has joined EngineX Networks to build a Solution Architecture group that is focused on large-scale carrier network issues and design. Matt lives in Fremont, CA. Kevin Murphy (CCNA, CSE) is the Director of Business Development for EngineX Networks Inc. Kevin is responsible for developing the part- nerships and alliances required to support EngineX Networks’ advanced designs and deployments. Previously, Kevin served on the EngineX Design team as a Solution Architect and Engagement Manager. His areas of focus include VoIP, content networking, and VPN. He has also held var- ious business development and sales positions within the Infrastructure segment. Kevin holds a bachelor’s degree in business administration from the University of Southern California with an entrepreneur emphasis. He lives in San Francisco, CA. Aaron Davidson (CCNA) is a Solution Architect with EngineX Networks Inc. He creates infrastructure and data center design solutions. His specialties include security, load balancing, and implementation of var- ious vendors’ equipment. Aaron’s background includes designing and securing several Silicon Valley dot.com ventures and working for numerous Internet service providers. Aaron lives in the East Bay and is working on his certifications and a music career. Mark Egan (CCNP, MCSE, MCP+I, CNE) is a Senior Solution Architect for EngineX Networks Inc. He provides technical leadership for the Solution Architecture team as well as support for the design and implementation of customer networks. Mark’s background includes working for Sprint-Paranet as a Technical Analyst and as a Consultant for Exxon. Mark Lives in Dublin, CA. viii 130_ASP_FM 6/19/01 2:57 PM Page viii ix Ben Tsui (CCNP, CCDA, MCSE, MCP+I, MBA) is a Senior Network Engineer with EngineX Networks Inc. He designs telecommunications infrastructures and implements network devices as well as the provision of local loop for transport deployment. His specialties include research, doc- umentation, and implementation. Ben’s background includes positions as Design Engineer for PacBell and a Network Engineer Specialist for SBC Datacomm. Ben lives in Fremont, CA. He is pursuing his master’s degree in telecommunications. 130_ASP_FM 6/19/01 2:57 PM Page ix [...]... System Monitoring 10 3 10 4 10 6 10 9 11 0 11 1 11 1 11 2 11 4 11 5 11 6 11 8 13 3 13 3 13 7 13 7 14 1 14 2 14 3 14 4 14 4 14 5 14 7 14 7 14 8 14 9 15 9 15 9 16 2 16 8 17 1 17 2 17 4 17 4 17 6 17 7 xv 13 0 _ASP_ TOC xvi 6 /19 / 01 3:00 PM Page xvi Contents Summary Solutions Fast Track Frequently Asked Questions 17 9 18 0 18 4 Chapter 4 Performance Enhancement Technologies 18 7 Introduction 18 8 Content Delivery What Is Web Caching? 18 9 Networks and... Servers Hewlett-Packard Sun Microsystems Compaq Network Equipment Data Traffic Explosion Alcatel Networks Cisco Systems Extreme Networks 12 12 12 12 13 14 14 15 15 16 16 16 17 18 18 18 19 19 19 21 21 21 21 22 22 22 23 24 24 25 25 25 25 26 26 26 13 0 _ASP_ TOC 6 /19 / 01 3:00 PM Page xiii Contents F5 Networks Foundry Networks Juniper Networks Lucent Technologies Nortel Networks Cache Appliance Makers Akamai... CDN How Do CDNs Work? Who Needs CDNs? Content Providers What Do Content Publishers Require from CDNs? CDN Service Providers 208 209 209 210 210 211 211 212 213 213 214 215 215 217 218 219 219 223 226 228 230 2 31 232 232 233 234 235 237 xvii 13 0 _ASP_ TOC xviii 6 /19 / 01 3:00 PM Page xviii Contents What CDN Service Providers Require CDN Deployment Basics and Considerations Network Service Providers Satellite-Based... 467 468 468 469 469 469 472 473 477 479 480 4 81 4 81 4 81 482 484 485 486 509 522 532 13 0 _ASP_ TOC 6 /19 / 01 3:00 PM Page xxvii Contents Configuration for a Cisco Systems MGX Router That Is Located within the Access Layer Summary 537 553 Appendix B ASP Configuration Handbook Fast Track 555 Index 585 xxvii 13 0 _ASP_ TOC 6 /19 / 01 3:00 PM Page xxviii 13 0 _ASP_ Frwd 6 /19 / 01 2:59 PM Page xxix Foreword For the modern... www.syngress.com 13 0 _ASP_ Frwd 6 /19 / 01 2:59 PM Page xxxiv 13 0 _ASP_ 01 6 /19 / 01 2:42 PM Page 1 Chapter 1 An Introduction to ASPs for ISPs Solutions in this chapter: s Why This Book Is for You s Definitions of Common ASP Terms s The Elements That Make an ASP Viable s Possible Business Models and Offerings s Types of ASP Firms s The OSI-ISO Seven Layer Model s Choosing the Best Platform for Your ASP s Business... The Cost of Hardware Upgrades The Cost of System Software Upgrades 1 2 3 4 5 5 5 6 6 6 7 7 7 8 8 9 10 10 10 10 11 11 xi 13 0 _ASP_ TOC xii 6 /19 / 01 3:00 PM Page xii Contents The Cost of Application Software Upgrades Network Administration Resources Other Support (Training, Help Desk, Etc.) Possible Business Models and Offerings Types of ASP Firms Professional Consulting Project-Based Service Providers Outsourcing... Assessment Security Technologies and Attacks Virtual Private Networks Perimeter Firewalls Stateful Inspection 303 304 306 306 308 309 309 309 312 313 314 315 316 317 319 320 320 3 21 323 13 0 _ASP_ TOC 6 /19 / 01 3:00 PM Page xxi Contents Security Components Discussed from an ASP s Perspective External Network (Internet) To Inside To Outside Perimeter Firewall To Inside To Outside Internal Network Perimeter Firewall... Provider Conversion Market Factors ASP Customer Value Proposition ISP Value Proposition ASP Services Also Enable Future Migration Up the Value Chain ISP to ASP: The Perfect Fit? Critical Success Factors Business Models Determining Your Offerings Customer Issues 48 49 49 50 51 51 57 59 60 61 63 64 67 68 69 71 72 73 75 78 80 82 82 84 86 88 91 91 94 94 96 99 13 0 _ASP_ TOC 6 /19 / 01 3:00 PM Page xv Contents Summary... Data Backup Remote Mirroring Synchronous Asynchronous 260 2 61 262 262 263 264 266 266 267 267 268 270 270 2 71 272 273 274 275 276 277 277 280 2 81 2 81 2 81 2 81 282 282 284 287 288 289 289 290 290 2 91 xix 13 0 _ASP_ TOC xx 6 /19 / 01 3:00 PM Page xx Contents Redundant Array of Inexpensive Disks RAID-0 RAID -1 RAID-2 RAID-3 RAID-4 RAID-5 RAID-6 RAID -10 RAID-53 SAN Solutions Offered by Various Vendors IBM’s SAN... Usage 19 5 appliances: Key Requirements for a Caching Solution 19 5 s Midstream— Deployment Models for Data Caching 19 7 www.midstream.com s Network Engines— Forward Proxy 19 8 www.networkengines.com Transparent Caching 19 8 s Vingage— Reverse Proxy 19 8 www.vingage.com Cache Locations and Placement 19 9 s Vividon— Cache Hierarchies 19 9 www.vividon.com What Are Cache Appliances? 2 01 Cost Effectiveness 2 01 Ease . to Begin 11 1 Server Hardware 11 1 Central Processing Unit 11 2 Symmetric Multiprocessing 11 4 Random Access Memory 11 5 Mass Storage 11 6 Network Adapters 11 8 Software Solutions for Your ASP 13 3 System. listening. www.syngress.com/solutions 13 0 _ASP_ FM 6 /19 / 01 2:57 PM Page i 13 0 _ASP_ FM 6 /19 / 01 2:57 PM Page ii 1 YEAR UPGRADE BUYER PROTECTION PLAN Professional Reference Series ASP Configuration Application Service Provider [ ] Handbook 13 0 _ASP_ FM. of Solution 13 0 _ASP_ TOC 6 /19 / 01 3:00 PM Page xiv Contents xv Summary 10 3 Solutions Fast Track 10 4 Frequently Asked Questions 10 6 Chapter 3 Server Level Considerations 10 9 Introduction 11 0 Implementation,Where