13659 Solution Guide Tracy/doa - voxtechnologies.com · client connects a SAProuter with a SAPgui...

ENTERASYS NETWORKSBest-in-Class Solution for mySAP.com Implementation

Solution Overview

Table of Contents

Introduction ......................................................................................2

Brief Overview of the mySAP.com Solution ................................3

SAP Architecture ..............................................................................4

Enterasys Networks Strategy for the Successful Deployment of SAP Applications ..........................................................................5

100% Availability Networking ....................................................6

Total Networking Visibility ..........................................................6

Adaptive Networking ..................................................................7

Deploying SAP ..................................................................................8

Data Center Architecture ..............................................................8

High Availability Network ..............................................................9

Adaptive Networking Services ....................................................10

Network Visibility ..........................................................................11

Campus Network Architecture ....................................................11

Remote Access Networks..............................................................12

Providing End-to-End QoS for a successful SAP

Implementation ..............................................................................13

Classification ....................................................................................14

802.IQ priority/TOS Marking........................................................14

Committed Access Rate/Rate Limiting ......................................14

Congestion Management ..............................................................15

Conclusion ........................................................................................15

An Enterasys Networks’ Solution Overview I Best-in-Class Solutions for mySAP.com Implementation

I Enterasys Networks I www.enterasys.com I Copyright 2000 Enterasys Networks. All Rights reserved pg 1 of 16



Introduction

For today’s enterprise, the network is the lifeblood of the organization. The data network, and more importantlythe business critical applications dependent upon it, have become critical success factors in the daily competitivelandscape. Today’s highly effective organizations utilize their network – and the mission-critical applications runningacross them – to provide an edge over their competition.

The network and the enterprise solutions are leveraged by the organization to gain an advantage over theircompetitors by increasing the efficiency of their core business processes, which in turns reduces time-to-market,increases efficiency, and enables the organization to provide best-in-class customer service.

SAPTM is the world’s leading provider of business applications software. SAP software solutions have beenimplemented in more than 12,000 companies worldwide, and SAP has the leading market share in its segment.Through mySAP.comTM, SAP has moved well beyond integration within single enterprises to power collaborationof entire markets by spanning enterprise boundaries.

Addressing a technology opportunity, such as the deployment of mySAP.com, quickly and effectively is key tosuccessfully delivering an IT business advantage to the organization. SAP and Enterasys have entered a TechnologyPartnership in order to assist our joint customers in this endeavor.

Enterasys Networks is the only provider of total network solutions created specifically for enterprise-classcustomers. By utilizing its technology, expertise and the partnership with SAP and other industry leaders, Enterasysis committed to delivering best-in-class network infrastructure solutions for mySAP.com implementations.

This paper is provided to assist our joint customers with the design and selection of an inherently scalable, reliable,and manageable solution that is capable of providing an optimal network infrastructure for a mySAP.comimplementation.



Brief Overview of the mySAP.com Solution

SAP AG is the world’s leading provider of inter-enterprise software solutions. Via the SAP R/3® System, thousandsof customers across the globe have integrated the processes within their own enterprises and across their businesscommunities.

SAP’s sophisticated solutions empower over 12,000 companies worldwide with a large array of products andservices addressing a diverse range of industries. In fact, the SAP R/3 system provides industry-specific functionalityfor 22 industries. Figure 1 summarizes the industry-specific SAP R/3 solutions.

By heavily leveraging its extensive experience in delivering customer-centric, open, personalized and collaborativeinter-enterprise solutions, SAP’s mySAP.com™ offering is powering collaboration of entire markets.

With mySAP.com, implemented to fully integrate an organization’s operational business processes, companies canextend their reach beyond the boundaries of their own enterprise, to reach out to their customers, suppliers andpartners. MySAP.com has become the enabler of a previously unattainable level of collaborative business.

The ever-present forces in today’s marketplace such as globalization, expansion, diversification, mergers andacquisitions, and the opportunities of the Internet make a coordinated view and management of information acritical success factor for enterprises today.

The proven and reliable SAP Internet platform offers complete and seamless integration of back-office and front-office information, providing users with a complete view of the data integral to the successful execution oftheir job role.

The rapid pace of technological innovation and the Internet is redefining today’s business world. A mySAP.comsolution, integrating best-of breed products and services from SAP AG and its strategic and technology partner,Enterasys, can be a key point of differentiation for the best-in-class enterprise. By optimizing the supply chain,improving customer satisfaction, and reducing time-to-market/benefit by attaining new levels of collaboration withcustomers, employees, suppliers and business partners, mySAP.com can be key to achieving the seemingly limitlesspotential of the Internet Economy.

Figure 1: SAP Industry-specific Applications

Source: SAP AG

Process

DiscreteManufacturing

Process

Public Sector andEducation

Cross Industry

Services Industries

Consumer Products

SAP Chemicals

SAP Pharmaceuticals

SAP Oil & Gas

SAP Eng. & Construction

SAP Aerospace & Defense

SAP High Tech & Electronics

SAP Automotive

SAP Software

SAP Banking

SAP Insurance

Federal

State and Local

Education

Financials

Enterprise

Human Resources

SAP Healthcare

SAP Telco

SAP Media

SAP Transportation

SAP Utilities

SAP Services

SAP Retail

SAP Consumer Products

SAP Apparel & Footwear



SAP Architecture

A SAP system is built around a scalable and robust architecture. In its simplest from, it is built around a three-tierarchitecture, shown in Figure 2.

The heart of the system is composed of Database and SAP application servers. The Database layer can be builtaround many different database management systems, including Oracle®, Informix® and DB2® The Applicationlayer is comprised of the SAP R/3 application servers.

The Basic building blocks of a SAP system deployment are:

• SAPgui client™

• SAP Application Server

• Database Server

The SAPgui client is the primary front-end into the SAP system. It is not a terminal emulation program, but anapplication that graphically displays SAP data to the user. SAPgui clients make connections to a SAP system throughthe Dialog Service on a SAP Application server or via a SAProuter.

The SAP Application server is the heart of the SAP system that provides industry-specific solutions. These serversare responsible for processing all client transactions, queuing print jobs, generating reports and coordinating accessto the Database servers.

The Database servers are the central Datastore for the SAP system. Although the Database management systemcan reside on the same system as a SAP Application server, in larger implementations it is typically deployed onseparate systems.

Figure 2: SAP Three Tier Architecture

Source SAP AG

Database Layer DatabaseServer

R3Application

Server

R3Application

Server

R3Application

Server

SAPGUI

SAPGUI

SAPGUI

SAP ServerCommunications

Application Layer

SAP AccessCommunications

Presentation Layer


Other SAP components (shown in Figure 3) include the SAP Message server, SAProuter, SAP Gateway and SAPprint service:

• The SAP Message Server provides a mechanism to manage access through the SAPlogon service. The MessageServer manages user connections and provides a connection load balancing.

• The SAProuter provides a middleware layer between remoter clients and the SAP Application servers. Each SAPclient connects a SAProuter with a SAPgui client. The SAProuter initiates individual connections to SAPApplication servers and Gateway services.

• The SAP Gateway service provides a connection to other SAP systems. SAP Application servers utilize theGateway service to share and exchange information between systems.

• The SAP Print service manages the print spooling of SAP reports.

Enterasys Networks’ Strategy for the Successful Deployment of SAP Applications

Enterasys Networks is focused solely on meeting the needs of Enterprise customers. From this focus emerges akeen awareness of the requirements for solutions that meet and exceed the needs and expectations of the Global2000 enterprise customer.

Enterasys’ solutions are designed with three fundamental strategies for delivering next-generation, best-in-classenterprise network infrastructure solutions for mySAP.com implementations. The three fundamental strategies are:

• 100% Availability

• Total Network Visibility

• Adaptive Networking

Solutions developed in keeping with these three overarching design strategies result in a scalable, reliable, andinherently manageable network. Design and deployment of an infrastructure with these attributes is key to thesuccessful deployment of SAP and other business-critical applications, particularly as VoIP and other bandwidth-intensive applications compete for limited resources. Figure 4 illustrates the concept of the three design strategies,their components and inter-relationships.


Figure 3: SAP R/3 Communications

Source: SAP AG

ApplicationServer

(DispaterDialog Serviceand Work Proc

Info Service

(MessageServer)

GatewayService

(Gateway)

Print Service

(Spool WorkProc.)

DispatcherPort

MessageServerPort

GatewayPort

GatewayPort

GatewayPort

Different R/3

System

Otherprogramsusing SAP

Comm. API

Print Service(SAPL.pd

orBerkely Lpd


100% Availability Networking

Compliance with the 100% Availability Networking strategy requires the development and implementation oftechnologies that ensure the maximum availability of the network and the business-critical applications running onit. This compliance is achieved by designing multiple levels of redundancy and resiliency mechanisms into theelements comprising the network system. In order to achieve physical redundancy, Enterasys products areengineered with redundant power supplies, distributed architectures, and automatic fail-over to secondaryinterfaces to avoid single points of failure.

At the logical level, there are multiple technologies ranging from Layer-2 protocols such as the Spanning TreeProtocol (STP) and link aggregation, to higher-layer protocols such as Open Shortest Path FIrst (OSPF) and VirtualRouter Redundancy Protocol (VRRP). The implementation of these resiliency services are designed to beinteroperable due to close adherence to the IEEE and IETF standards and other industry-recognized standardsbodies. This adherence guarantees the highest possible level of infrastructure interoperability and resiliency, whichin turn provides maximum availability of the network for support of business-critical applications such as SAP.

All switch platforms, whether simple stackable Layer 2 switches or SmartSwitches™, Matrix E7™, andSmartSwitch Router are designed with the principles of the High Availability Networking strategy in mind. Inaddition, the services implemented to realize the goals of the strategy also improve overall network scalability byutilizing various load-balancing capabilities. In turn, this provides resiliency as well as the availability of greaternetwork bandwidth.

Total Network Visibility

Achieving Total Network Visibility is crucial to successfully deploying and achieving maximum availability of SAP’sadvanced applications. Total Network Visibility is achieved through:

• Advanced monitoring and user detection services built into the hardware

• Advanced system-level management software services comprising a complete next-generation networkinfrastructure solution.

• Network End-System Discovery

Every Enterasys product supports at least a minimum set of Remote Monitoring (RMON) capabilities, with mostproducts supporting full implementations of the RMON 1, and application-aware RMON2 standards. In addition,every SmartSwitch Router is capable of providing IP call accounting services to provide data for usage accounting,decision support, and billing/charge-back.

These technologies are key to monitoring the health and operation of a SAP application, from the client to the


Figure 4: Fundamental Elements of Enterasys Networks’ Solutions

Network Node and Alias DiscoveryFull RMON I & RMON II

IP Call Accounting

End to End Layer 4 ServicesApplication Level Visibility

End to End Quality of Service

TotalNetworkVisibility

AdaptiveNetworking

High AvailabilityNetworking

Distributed SwitchingArchitectures

OSPF Multipath RoutingPer VLAN Spanning Tree

Spanning TreeSmartTrunk


application servers to the database servers. Enterasys recently unveiled the ability to discover end-system networkaliases. This capability allows network administrators to locate any resource in the network at any time with a fewclicks of the mouse. In the future, this feature will be enhanced to support the detection of application usage.

Enterasys also provides a system management software product, NetSight™ Switch Manager, to configure andmonitor these features, enabling an enterprise-wide implementation. Many of the administrative tasks required tomanage the next-generation infrastructure, including configuration of the multi-layer frame classification functionsoutlined later in this paper, can be accomplished from a single management interface. NetSight Switch Managerreduces the system configuration burden on the IT staff by enabling configuration of these parameters across anenterprise to be completed within hours instead of days. It eliminates the need to configure each device individuallyvia the local management interface or command line interface.

In addition to the configuration management capabilities, the NetSight Switch Manager also provides an intuitive GUIfor managing the network topology. This tool can be leveraged in the day-to-day monitoring and troubleshootingactivities by providing a near-real time representation of the physical and logical topologies of the network. Throughthis tool and the node and alias capabilities of the hardware, problem devices can be found in a matter of seconds.

Adaptive Networking

Full realization of functionality in the third strategic area, Adaptive Networking, is just beginning to emerge. Thekey concept embodied by this strategy is to move the network infrastructure beyond a reactive system withminimal intelligence, to one with embedded intelligence capable of adapting to a desired behavior. Put differently,the networks of today are dependent on a relatively static configuration of the elements comprising the systemthat results in a predetermined desired behavior. Changing the behavior of the network system (due to a changein the operating environment) often requires changes to the existing configuration of one or more elements. Insome cases, a complete reconfiguration of one or several network elements may be required. Although there aretools to assist in these tasks, in the majority of these changes, some amount of manual intervention must occur.The result is a very static, non-pliant system.

The ultimate goal for Adaptive Networking is to change the paradigm away from manual configuration, to a rules-based paradigm that shifts the change mechanism from manual intervention to automated reconfiguration of thesystem, initiated by the system itself. In this model, the network infrastructure is provided a set of rules, or anetwork policy that prescribes a system-level behavior based on a set of occurring conditions. An AdaptiveNetwork requires that the network system has the intelligence to detect its current state, and alter its behaviorbased on the rule set. The services made possible by an implementation of the Adaptive Network strategy providefor automated end-to-end configuration for Quality of Service (QoS), Advanced Security such as Denial-of-Serviceattack prevention, and application layer awareness with automated policy enforcement.

Enterasys has a long history of innovation in the area of Adaptive Networking. The collection of node and aliasinformation by the switch ports–essentially the detection of individual network users and the protocols they areutilizing–is an important step in Enterasys’ realization of the Adaptive Networking concept.



Deploying SAP

The key to deploying a successful SAP implementation is to build iton a reliable and scalable network. A reliable network provides aconsistent user experience, while sufficient scalability allows forthe continued growth of the deployment. A non-robust networkinfrastructure will lead to unacceptable network downtime andhigh operational costs.

Enterasys Networks solutions are designed around the needs ofthe Global 2000 Enterprises. Enterasys’ solutions scale to supportnetwork needs from robust large-scale campus networks and highperformance metropolitan area networks, to a diverse array ofremote user access. Enterasys’ scalable solutions provide End-to-End QoS and Security while maintaining high availability andreliability. Figure 5 illustrates an Enterasys Network’s 100%availability data center solution.

The basic building blocks of a successfully deployed SAP networkinfrastructure are:

• Data Center

• Campus Networks and MANs

• Remote Networks and WANs

The Data Center is where the core of the SAP solution isdeployed. The campus network provides connections to allcampus users and may include Metropolitan Area Networks.Remote Networks include WAN connections for remote offices,Business-to-Business and Internet access via Virtual PrivateNetworks (VPNs).

Data Center Architecture

To successfully deploy a mission critical client/server architecture, great care in design of the Enterprise DataCenter must be taken. Enterasys Network’s advanced networking products are designed to provide robust andhighly reliable network solutions. The primary platform is Enterasys Networks’ SmartSwitch Router™ 8000 series.The SmartSwitch Router 8000 and 8600 provide robust, non-blocking routing and Layer 4 services.

To provide a scalable architecture for the Data Center, it is advisable to utilize a two-tier architecture. Thisarchitecture is designed to minimize network bottlenecks, even under high traffic loads. High bandwidthconnectivity options include Gigabit and Fast Ethernet as well as high speed MANs and WANs interfaces such asATM and Packet over SONET.

Each SmartSwitch Router 8600 provides a full range of Layer 3 and Layer 4 services. The SmartSwitch Routers aredesigned around a fully distributed architecture. Each module from Enterasys is capable of making multi-layerforwarding decisions and benefits from the scalability of this design. Many competing switches on the market todayrely on Layer 3 modules to make forwarding decisions for Layer 2 line cards. The increased intelligence ofEnterasys’ design provides for greater scalability and reliability.

A scalable Data Center architecture is based on a multi-tier network hierarchy. To achieve this, a ServerDistribution Layer and a server access Layer provide the necessary building blocks. Each server access switch willbe dual homed to a Server Distribution switch with Gigabit Ethernet technology. Each server ideally is dual homedwith Gigabit or Fast Ethernet connections to the server access Switches. The proper bandwidth scaling should bedone at the time of initial deployment with some percentage of growth provided for.


Figure 5: High Availability Data Center Solution

Data CenterDistributionSwitches

Data CenterServer AccessSwitches

Gigabit EthernetATMPacket Over SONET

OSPF Multpath Load Balancing

Enterasys NetworksSmartSwitch Router 8000 Family

Campus Backboneor

Metropolitan AreaNetwork

Data Center Serverw/Gigabit Ethernet

SAP Application Serversw/Fast or Gigabit Ethernet

SAP ITS Web Serversw/Fast Ethernet


High Availability Network

100% availability of database and application servers is mandatory for successful operation of a mission-criticalSAP deployment. Global business operates 24 hours a day, 7 days a week, 365 days a year. Most user sessions willtime out in about 20 seconds in the event of a service outage. It is a requirement for the network to converge in20 seconds or less.

Figure 6 depicts two tiers of SmartSwitch Router 8600s. The first tier, or server distribution switches, connects to thecampus backbone or metropolitan area network. Both switches are configured for full routing and support OpenOSPF, a multipath load-balancing routing algorithm that supports rapid re-convergence. The primary connection tothe second tier will be meshed Gigabit Ethernet connections. It is recommended that these connections be configuredto participate in OSPF routing on both the server access and server distribution switches.

It is usually optimum to implement a server redundancy mechanism. Thesemechanisms vary from simple physical layer redundancy to more advance serverclustering techniques.

The need for Layer 2, or non-routed connections between each server accessSwitch pair will be dependent on the redundancy mode deployed. For example, ifmultiple adapters with active and unique IP and MAC addresses were utilized, thenit would be desirable to allow each server access Switch to be configured tosupport a unique IP Subnet. This configuration removes the need to support anyLayer 2-topology protocol and greatly simplifies the SAP server deployment.However, if a server clustering or adapter redundancy that rely on Layer 2-testmechanism is chosen, then it is necessary to run redundant links between eachserver access Switch Chassis. Enterasys recommends that SmartTrunk™ portaggregation is utilized.

Whether one or more subnets are trunked between the server access Switches,SmartTrunk will provide for rapid re-convergence and minimal system downtime.SmartTrunk provides for both load balancing as well as sub-second reconfigurationbetween chassis. SmartTrunk also may be utilized to provide redundant server

connections. SmartTrunk connections can be distributed over multiple modules and there is no limitation on thenumber of concurrent physical connections. This allows for the greater resiliency and performance.

Another aspect of 100% availability is the utilization of a gateway redundancy mechanism. Each server willgenerally be configured with a default gateway, which allows communication to the rest of the world. If the defaultgateway router fails, and even if there is an alternative path available, communications would halt. There are threeprincipal mechanisms to provide default gateway redundancy:

• Virtual Router Clusters with Virtual Router Redundancy Protocol (VRRP)

• Gateway Advertisements with Internet Router Discovery Protocol

• Network topology detection by utilizing routing service in the servers themselves.

Virtual Router Clusters use industry standard RFC 2338 to provide a scaleable and efficient gateway failover.Failovers of 1 second are achievable as well as rudimentary load balancing through Symmetrical VRRP. SymmetricalVRRP utilizes two or more default gateways. Each switch in the cluster provides a redundant failover for itsneighbor switch. Servers can be alternately configured for each gateway in the cluster, thus providing a loadbalancing effect.

Internet Router Discovery Protocol (RFC 742) is a dynamic method for servers to detect available gateways onthe network. Each SmartSwitch Router is configured as an IRDP server. Each router periodically advertises itselfto the IRDP clients on the network. An IRDP client maps the gateway address choosing the best available path.IRDP clients can also ‘Solicit’ router information. This allows clients that come on line in-between Discoverymessages to detect an available network gateway.


Figure 6: Bridge and Routing Domains

Tier 1Distribution

Switches

Tier 2Server Access

witches

Bridging Domain

Routing Domain

OSPF Multipath Load Balancing


On most servers today, there is the ability to configure routing protocol ina passive or listen only mode. Almost all UNIX systems support the RouteDrouting protocol. RouteD is an implementation of the RIP version 1 routingprotocol. RouteD is typically used in ‘Quiet Mode,’ where the RouteDprocess listens for RIP router updates and builds its own routing tables forpacket forwarding. Each SmartSwitch Router can be configured to distributeits routing tables to the Servers through Route Redistribution. This methodis generally less desirable than the previous two methods because it doesplace a burden on servers that must now process routing information.

With the advent of SAP’s Internet Transaction Service (ITS,) the web hascome to SAP users. ITS provides for a Web Server to act as a proxy for SAPclients to the SAP application server. As noted earlier, these web sessionsgenerally utilize standard HTTP sessions with Secure Socket Layer sessionsecurity. One mechanism to provide scalability and fault tolerance is the useof intelligent Server Arrays. Each SmartSwitch Router is a full-featuredserver load balancer supporting multiple load balancing algorithms as wellas Source IP and SSL session persistence. Figure 7 illustrates high availabilityserver arrays.

The server access SmartSwitch Router also provide advanced contentverification with the ability to proactively interact with each server andverify that the HTTP process is correctly functioning and passing theproper content. If a SmartSwitch Router detects a web server that hasfailed or is not providing the proper content, then the switch will notconnect any new users to the failed server system. The server is taken outof the active list of servers, but it will be checked periodically to determineif is available for clients again.

Adaptive Networking Services

Adaptive network services provide a full range of capabilities to enhance the robustness of a SAP deployment.These capabilities include comprehensive Layer 4 application recognition, rich QoS services, wire speed securityand Denial-of-Service Attack prevention

Each server access SmartSwitch Router can be configured in an advanced services mode which Enterasys hasdeveloped called Layer 4 Bridging. Layer 4 Bridging gives full application-level awareness without the need forrouting to the port, as switches from some other vendors require. This application-level awareness will help toensure reliable and responsive SAP deployments.

Each server access SmartSwitch can be configured with advanced Quality of Service (QoS) features such asDifferentiated Services, Weighted Fair Queuing, Committed Access Rate, and Weighted Random Early Detection.

Most SAP client-to-application server traffic consumes little network bandwidth. The application-server-to-database-server traffic can consume from 100 Mbs to many Gigabits per second. It is a requirement to provideconnections between these servers with good congestion management capabilities to ensure that thesetransactions happen in an efficient manner. If congestion leads down to the slowing in the processing oftransactions, then all up-stream users will experience poor unresponsive performance of the application.

Another aspect of adaptive networking is to safeguard the mission critical data that SAP is built upon. Networkattacks do not always occur from the outside in. In reality, most attacks on the IT infrastructure and corporate datacome from within the enterprise. Each SmartSwitch Router is capable of providing wire-speed Access Control Listwith packet detection all the way up to the application layer.

These Enterasys safe guards insure that SAP services are available only for authorized uses. Each Server DistributionSwitch should be configured with security policies disallowing all subnets and networks access to the SAPApplication servers and Database servers. As systems, subnets and networks need access to the SAP ApplicationSystems, policies can then be configured to grant access only to specific systems. It is also prudent to grant onlylimited access to the Database servers. Another important aspect of the SmartSwitch Router is its ability to bluntmany of today’s Denial-of-Service Attacks. These attacks include SYN Attack, LAND, SMURF Attack and manyothers.


Figure 7: High Availability Server Arrays

Data CenterDistribution

Switches

Data CenterServer Access

Switches

Virtual IP Address and Port

Campus Backboneor

Metropolitan AreaNetwork

Database Server SAP Application Servers SAP ITS Web Servers



Network Visibility

Once a network or Data Center has been designed and implemented, its is important toperform periodic evaluations of how that implementation is operating. To this end,Enterasys has designed the SmartSwitch Router to provide advanced visibility andinstrumentation services. Because the SmartSwitch Router supports a flow-basedarchitecture, Enterasys can provide network information down to the granularity ofindividual IP conversations.

In addition, it is critical to understand the health of the SAP system. Every SmartSwitchRouter supports RMON and RMON II statistics gathering as well as full IP Traffic accounting.

Campus Network Architecture

The second requirement for a successful SAP deployment is a scalable and resilient campusinfrastructure. Enterasys Networks’ supports a wide range of advanced platforms thatsupport a diverse array of enterprise applications and services. A campus networkarchitecture must be robust enough to support SAP’s mission-critical ERP applications aswell as support emerging services such as Voice over IP (VoIP).

It is desirable to deploy a modular three-tier campus architecture. This building blockapproach facilitates network resiliency and scalability while allowing for better security.

The three tiers of modular campus network architecture are:

• Access Layer

• Distribution Layer

• Core Layer

The Access Layer is deployed to service all user connections just as server access switches connect servers in thedata center. The Access layer can be made up of the Enterasys Matrix E7 or SmartSwitch 6000. The Accessswitches provide dedicated 10/100 Mb/s connections. The default uplinks from this layer are two or more GigabitEthernet connections, although it is still common to see multiple Fast Ethernet links utilized. Figure 9 is anillustration of a typical implementation of a three-tier modular network utilizing the Enterasys SmartSwitch Router,Matrix E7, and the SmartSwitch 2000/6000.

The Enterasys Matrix E7 is a new generation of Intelligent Access Switch. The Matrix E7 has been designed to scaleto bandwidth in excess of 400 Gb/s and 500 10/100 user connections. The E7 supports full Layer 4 application layerawareness as well as full QoS and security services.

The SmartSwitch 6000 supports over 240 10/100 user connections and bandwidth in excess of 32 Gigabits inaddition to all of the services that are provided for in the Matrix E7.

Both the Matrix E7 and the SmartSwitch 6000 chassis support Layer 4 routing services today with integrated awardwining SmartSwitch Router technology.

Enterasys builds on its strategy of total network visibility by providing an innovative service called Node & AliasDiscovery. This technology allows system-level visibility into the real time location and properties of the edgedevices and end systems. Quite simply, Enterasys is the only vendor able to deliver a system that answers thecritical support and monitoring question of “Where is IP address x.x.x.x?” In the future, it will be possible to detectand report which applications are running and which end system they reside on. It will even be possible to detectwhich SAP Application Server, Message Server and SAP Router a user is communicating with.

Enterasys also supports a full implementation of RMON per switch. This means each Matrix and SmartSwitchmodule support groups 1-9 per port, including packet capture and filters. With the inclusion of the AdvancedRouter Modules, these systems support all the application-aware functionality of RMON 2 standard.

Figure 8: Modular Campus Network Architecture

Campus UserAccessLayer

CampusDistribution

Layer

CampusCore

Layer

Data CenterDistribution

Layer

Data CenterServer Access

Layer

Matrix E7SmartSwitch 6000SmartSwitch 2000

SmartSwitchRouter 8600



SmartSwitchRouter 8600Matrix E7


The Campus Distribution Layer provides a point for Layer 3 aggregation. The Campus Distribution Layer should beutilized to isolate the Layer 2 domains in the Access Layer networks.

It is key to provide a network that is tolerant of network outages. Enterasys has developed Layer 2 resiliencytechnologies based on evolving IEEE standards such as Rapid Reconfiguration Spanning Tree (802.1W) and PerVLAN Spanning Tree (802.1s). These technologies minimize the impact on users during a device failure. TheDistribution Layer Switches also provide gateway redundancy through Internet standard VRRP and IRDP. Asdiscussed previously, these technologies are key to providing non-stop networking capabilities in the campus.

The Campus Core Layer is the backbone of the network. The core interconnects all of the User Access and serveraccess blocks. The majority of the Campus traffic will transverse this layer. All Distribution Layer Switches willconnect into the core with Gigabit Ethernet technology except where it is reasonable to utilize trunked FastEthernet links. Metropolitan Area Network connections can be accomplished through Long Haul Gigabit Ethernet,ATM and Packet Over SONET technologies.

Remote Access Networks

A large portion of SAP traffic will come in from remote offices and networks. Enterasys Networks supports adiverse array of Wide Area Options in the SmartSwitch Router family. Remote SAP access can be services with awide array of technologies including ATM, Frame Relay, Multilink PPP, ISDN, VPN, T1/E1, T3/E3, OC-3c/STM-1and OC-12c/STM-3 technologies. Enterasys supports these technologies across the entire line of SmartSwitchRouter Layer 4 Switches.

A WAN access network is deployed in a similar manner to the Server Distribution network. All WAN connectionsare aggregated at this point. Great care must be taken when provisioning the wide area circuits. Each SAPgui client

consumes approximately 2 Kbytes of bandwidth per dialog instance.SAP has provided a formula for estimating Bandwidth requirements:

C= 16000 X N/ (Tresp + Tthink) bits/second

Where:

C = Bandwidth required to display the SAPgui

N = Number of concurrent SAP users

Tresp = Time needed by the System before it can display the nextdialog screen

Tthink = Time needed by a user to process a screen shot in seconds

The SAP formula can be used for estimating the bandwidthrequirements for traffic between the application server and clients.When combined with the requirements of other applications runningbetween the central and remote sites, it can be used to determinebandwidth provisioning requirements.


Figure 9: WAN Access Layer

Core NetworkSwitches

SmartSwitch Router 8000 Family

WAN AccessSwitches

ATMT 1/E 1, T3/E3Frame RelayOC-3c

T1/E 1ISDNFrame RelayVPN L2TP, IPSEC

SmartSwitch Router 2000 SmartSwitch Router 500/600/700

WANInternet


An Enterasys Networks’ White Paper I Enterasys Multi-layer Frame Classification

Providing End-to-End QoS for a Successful SAP Implementation

A fundamental component to deploying a SAP R/3 System is Quality of Service (QoS). In enterprise networks, SAPimplementations compete for network resources with many other applications and services. These competingapplications can include file transfer, email, IP telephony and many others. These services are usually newmultimedia, video, web and telephony, which put a considerable burden on the network infrastructure. The biggestburden comes from applications such as file transfers and network based backup that consumes the maximumavailable bandwidth. Figure 10 illustrates the concept of providing end-to-end QoS for a SAP implementation.

SAP traffic can be broken down into specific performance requirements that are dependent on the type of traffic.SAPgui-to-SAP application server traffic has very little impact on the network, consuming approximately 2 Kbytesper screen update. If SAP Internet Transaction Services is deployed, the SAPgui services will experience a 20 to 30percent increase in bandwidth utilization. The majority of SAP traffic occurs between the application servers anddatabase servers. This traffic is typically called “back-end” communications. If the back-end communications areimpacted by network congestion, then all SAP users will experience overall network delay.

Enterasys Networks has engineered a wide array of QoS features and capabilities into all of its enterprise networkinfrastructure solutions. From the user access level in the Matrix E7/SmartSwitch 6000 to the SmartSwitch Router8000, a comprehensive suite of services is available to guarantee consistent and timely delivery of SAP services tothe end users.

The QoS capabilities inherent in the Enterasys solution can be broken down into the following four areas:

• Classification

• 802.1Q priority/TOS Marking

• Committed Access Rate/Rate Limiting

• Congestion Management

The following sections describe these capabilities and their application in providing end-to-end QoS for a SAPimplementation.

Figure 10: End-to-end QoS

QoS Edge QoS Core QoS WAN•Access Control•Priority Classifications•L2 Marking•Scheduling•Outbound Rate Limit

•Application Rate Limit•Congestion Avoidance•L3 Marketing•Scheduling

•Filtering•Scheduling•Congestion Avoidance•Shaping

Campus A

WAN

Campus B


Classification

The primary component of Enterasys’ QoS services is the ability to detect and classifyspecific traffic streams. All of Enterasys’ enterprise platforms support a full Layer 4classification capability. Through this capability, Enterasys is able to provide a networkinfrastructure solution capable of end-to-end detection of the network traffic associatedwith SAP. Enterasys switching platforms are able to manage all the various IP trafficpatterns, ensuring that SAP’s mission critical applications are delivered to end users in aconsistent and timely manner, greatly improving the SAP user experience.

Each Matrix E7 and SmartSwitch 2000/6000 supports multi-layer frame classificationcapability. This capability, when used in conjunction with the frame marking capabilityoutlined later in this section, provides the ability to assign priority handling to SAP trafficacross the enterprise.

Enterasys’ SmartSwitch Router suite supports a per-flow classification capability thatagain can be used in conjunction with priority marking. This capability allows each switchin the network to:

• Classify frames at wire-rate

• Apply the various traffic management services to the SAP conversations withoutimpacting switch throughput.

Figure 11 illustrates the per-flow classification capability of the SmartSwitch Router.

802.1Q priority/TOS Marking

All Enterprise switching platforms support multi-layer frame marking. This ability allows User Access switches tomark SAPgui or ITS traffic as mission critical for all up-stream devices. Packet marking allows switches without aclassification capability to process marked traffic.

Every Enterasys product supports Layer 2 marking with IEEE 802.1D(p) packet tagging. All Enterprise classproducts support the marking of IP Precedence, Type of Service or Differentiated Services Code Point (DSCP).

Committed Access Rate/Rate Limiting

Enterasys’ Switches support advanced traffic policing through Rate Limiting services. Rate Limiting allows eachMatrix E7, SmartSwitch and SmartSwitch Router to regulate the amount of bandwidth available per application.Rate limiting can be defined such that there is always bandwidth available for applications such as SAP Server toDatabase transactions.


Figure 11: SSR Multi-layer Frame Classification

SIP DIP TYPE TOS/DSCP

SrcPort

DestPort

InaboundPackets

Flows

In Port

FlowSetup

QoS


Congestion Management:

Congestion Management is accomplished through two distinct services: Avoidance and Scheduling.

• Congestion avoidance is performed through Weighted Random Early Detection services.WRED allows for the control of individual IP flows. WRED Provides fair bandwidth reductionbetween host connections through implicit notification. This service helps to facilitate thedelivery of SAP’s mission critical applications while maintaining acceptable performance forless mission critical applications.

• Enterasys’ primary scheduling (queuing) mechanism is the Weighted Fair Queuing algorithm.WFQ allows network administrators to define classes of services for various networkapplications. WFQ is available on all Matrix E7, SmartSwitch and SmartSwitch Router systems.

Figure 12 Illustrates the concept of the Weighted Fair Queuing mechanism.

Conclusion

SAP R/3 and the mySAP.com strategy are powerful tools that can provide successful companies a competitiveadvantage. The successful realization of the competitive advantages provided by SAP R/3 and mySAP.com areultimately dependent on the scalability, reliability and manageability of the network infrastructure. The networkinfrastructure is the vehicle by which the organization’s stakeholders utilize the power of the SAP solution. If thenetwork cannot scale as the organization grows and the demands upon it increase, if it is not reliable or cannot bemanaged effectively, then the power and potential advantage are left unrealized.

Enterasys Networks’ approach to designing and implementing a best-in-class network infrastructure for amySAP.com implementation will result in full realization of that advantage. The experience in providing end-to-endsolutions, technology leadership, and our experience as a SAP R/3 customer uniquely qualifies Enterasys as aprovider of infrastructure solutions.

Through our Technology Partnership, Enterasys is committed to continuing close collaboration with SAP to designand deliver optimal solutions providing advanced features and functionality supportive of SAP R/3 and mySAP.comimplementations.


Figure 12: Weighted Fair Queuing

AllOtherTraffic30%

ERPSAP/r3Oracle40%

H.323Voice/Video20%

ControlMessage

10%

OutboundPort


North America

35 Industrial Way

Rochester, NH 03867

U.S.A.

(603) 332-9400

50 Minuteman Road

Andover, MA 01810

U.S.A.

(978) 684-1000

Europe/Middle East/Africa

Network House

Newbury Business Park

London Road, Newbury

Berkshire, England RG13 2PZ

44-1635-580000

Asia Pacific

85 Science Park Drive

#03-01/04

The Cavendish

Singapore 118259

65-775-5355

Unit 8,Allambie Grove Estate

25 Frenchs Forest NSW 2086

Sydney, Australia

61-29950-5900

Latin America

Periferico Sur No. 3642

Piso 6

Colonia Jardines del Pedregal

Mexico City DF 01900

Mexico

525-490-3400

Av Jurubatuba, 73-3° andar

Brooklin-São Paulo

04583-100-Brazil

55-11-5508-4600

The following is a partial list of trademarks or registered trademarks owned by, or under the control of, Cabletron: Cabletron Systems,

SmartTrunk, SmartSwitch Router, and NetSight.

The following is a partial list of trademarks or service marks of Enterasys Networks, Inc: Enterasys Networks.

SAP software, R/3 software, mySAP.com, EnjoySAP are trademarks or registered trademarks of SAP AG.

Oracle is a registered trademark of Oracle Corporation.

Informix is a trademark of Informix Software, Inc.

UNIX is a registered trademark of SCO Santa Clara Operation.

All their trademarks are the property of their respective owners.

Copyright © 2000 Enterasys Networks, a Cabletron Systems, Inc. company. All Rights Reserved. NOTE: Cabletron Systems, Inc. reserves theright to change specifications without notice. Please contact your representative to confirm current specifications.

Lit#9012047-1 6/00


Date post:	29-May-2018
Category:	Documents
Upload:	phungdien
View:	226 times
Download:	0 times

13659 Solution Guide Tracy/doa - voxtechnologies.com · client connects a SAProuter with a SAPgui...

Documents