Presentation is loading. Please wait.

Presentation is loading. Please wait.

Improving Resilience and Performance in Light of Recent Internet Outages Troy Whitney – Manager, Solutions Engineering.

Published byAustin Powers Modified over 7 years ago

Similar presentations

Presentation on theme: "Improving Resilience and Performance in Light of Recent Internet Outages Troy Whitney – Manager, Solutions Engineering."— Presentation transcript:

1 Improving Resilience and Performance in Light of Recent Internet Outages
Troy Whitney – Manager, Solutions Engineering

2 We now live in an Internet-centric IT world
Employee Productivity Business Operations DDoS Attack Cloud Outages Customer Experience

3 So what’s changed? Everything.
INTERNET Data Center ‘Private’ circuits connect the corporate WAN through Internet Service Providers Branch

4 Cloud data centers host business critical apps
INTERNET Data Center Apps Applications hosted in the cloud or remote data centers Branch

5 Direct Internet Access connects branches
Data Center Apps Direct Internet connectivity to cloud services and software-defined routing between branches Branch

6 Wireless is everywhere
INTERNET Data Center Apps Wireless is the primary connection at the branch Branch

7 And employees work where convenient
INTERNET Data Center Apps Home Employees access applications from home and on the road Branch

8 Managed DNS is a linchpin of service delivery
DNS services are managed by external providers INTERNET Data Center Apps Home Branch

9 CDNs and DDoS mitigation act as intermediaries
CDNs offload traffic, filter attacks and reduce latency CDN / DDoS Mitigation DNS INTERNET Data Center Apps Home Branch

10 IaaS has become your additional data center
CDN / DDoS Mitigation IaaS providers host services and entire applications IaaS DNS INTERNET Data Center Apps Home Branch

11 Internet Outages Happen All the Time
~ 170 affected interfaces / hour ~ 1.6K prefixes / hour

12 Internet Outage: AWS S3

13 50% of major retailers affected
IaaS outages As business move critical apps and services to IaaS clouds, outages can be very damaging Despite fault-isolated regions, many apps aren’t multi- region Even those that are focus on compute, not resiliency of other services Impacts can be complex, correlated and externally introduced AWS S3 outage Feb 2017 4 hours 1000s of apps and sites Estimated $150M impact 50% of major retailers affected

14 Broad impact on sites and apps
Impacted file storage, often not replicated across regions Impacted other dependent AWS services (Redshift, ELB, RDS, etc.) Impacted AWS monitoring services (Cloud Watch, status page) Impacted commonly-used third-party services (Blue Kai, etc.)

15 A large-scale operations error
AWS unintentionally removed servers and had to restart the file storage systems The issue identification, system restart and recovery took hours This showed up as completely unavailable services

16 Internet Outage: Dyn DNS DDoS

17 DDoS attacks Attackers attempt to prevent users from reaching a service with a denial of service attack DDoS attacks overwhelm networks, network equipment or applications with traffic They happen with alarming frequency and scale, causing business interruption and covering traces of other attack types Largest attacks now exceed 500 Gbps Costs in excess of $40K per hour per company One attack cost a firm 8% of customers

18 Dyn DNS DDoS DNS matters!
You can’t send a message if you don’t know the address An example from Oct 21st 2016

19 Service availability impacted for 24 hours
DNS is application traffic too It needs the network to run A DDoS attack prevents that

20 Network connectivity to Dyn during the attack

21 Clogging the Pipes

22 Internet Outage: Rostelecom Route Leak

23 Dozens of large scale routing leaks each year
Route leaks Networks around the world exchange routes, data on how traffic can move to its destination But, these routes can leak accidentally or another network can intentionally hijack them This causes Internet traffic to move to an incorrect destination, denying service or allowing traffic inspection Dozens of large scale routing leaks each year Lasting from seconds to days

24 Rostelecom route leak April 27th
Rostelecom, a Russian state owned ISP leaked routes for dozens of networks Including major payments infrastructure: Visa, Mastercard, BNP Paribas, HSBC, MUFG, UBS, Santander Traffic flowed through Russian networks for over 7 minutes

25 Taking financial traffic for a ride
Traffic entered the Rostelecom network Traversed 60+ interfaces either in a loop or as it was inspected Then returned back to the payment card network

26 A New Approach to Managing Internet Outages

27 Collect performance data from every perspective
NY Branch INTERNET Data Center Apps Home Enterprise Agents Cloud Agents HK Branch Endpoint Agents

28 A unified view of performance from user to app
End-to-End Performance Data User App Performance User Experience Network Connectivity Network Topology Routing Topology App Routing Enterprise, Endpoint and Cloud Agents

29 See every network like it’s your own
Washington, DC Visualize your network topologies the way that critical services flow over it San Francisco, CA Boston, MA See faults and dependencies in context Hong Kong Dallas, TX 3 © 2017 ThousandEyes Inc. All Rights Reserved.  Vancouver, Canada

30 Quickly surface insights from a global data set
Immediately identify issues from complex behaviors Algorithms sort through the data of all ThousandEyes users to find the answer NTT in Virginia New York Cloud Agent Salesforce Customer 1 Boston Enterprise Agent Google Los Angeles Cloud Agent Customer 2 Comcast in Denver AWS

31 Solve issues across shared infrastructure
Washington, DC Dashboards / Reports Alerts Snapshots Your Network Your ISP Cloud or CDN

32 About Us 2010 San Francisco New York | London | Austin
We’re a team of network experts, committed to helping you best connect your business FOUNDED IN 2010 HEADQUARTERS IN: San Francisco OFFICES IN: New York | London | Austin

33 Thank You

Download ppt "Improving Resilience and Performance in Light of Recent Internet Outages Troy Whitney – Manager, Solutions Engineering."

Similar presentations

Hello i am so and so, title/role and a little background on myself (i.e. former microsoft employee or anything interesting) set context for what going.

Hello i am so and so, title/role and a little background on myself (i.e. former microsoft employee or anything interesting) set context for what going.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 1: Exploring the Network Network Basics.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 1: Exploring the Network Network Basics.
John Whittle Sales Specialist Case Study: Manage Transactions Across the Enterprise Featuring BMC Middleware Management.

John Whittle Sales Specialist Case Study: Manage Transactions Across the Enterprise Featuring BMC Middleware Management.
Iron Mountain’s Email Continuity Service ©2006 Iron Mountain Incorporated. All rights reserved. Iron Mountain and the design of the mountain are registered.

Iron Mountain’s Continuity Service ©2006 Iron Mountain Incorporated. All rights reserved. Iron Mountain and the design of the mountain are registered.
Copyright © 2012 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill/Irwin CHAPTER FIVE INFRASTRUCTURES: SUSTAINABLE TECHNOLOGIES CHAPTER.

Copyright © 2012 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill/Irwin CHAPTER FIVE INFRASTRUCTURES: SUSTAINABLE TECHNOLOGIES CHAPTER.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 1: Exploring the Network Introduction to Networks.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 1: Exploring the Network Introduction to Networks.
CHAPTER OVERVIEW SECTION 5.1 – MIS INFRASTRUCTURE

CHAPTER OVERVIEW SECTION 5.1 – MIS INFRASTRUCTURE
DIRECT-TO-CLOUD Issues & Implications Dale McCarty.

DIRECT-TO-CLOUD Issues & Implications Dale McCarty.
Cyber Security Finance Forum 2012 Michael DuBose Managing Director & Practice Leader Cyber Investigations.

Cyber Security Finance Forum 2012 Michael DuBose Managing Director & Practice Leader Cyber Investigations.
Network Techlab (India) Pvt. Ltd.

Network Techlab (India) Pvt. Ltd.
Building Sustainable MIS Infrastuctures

Building Sustainable MIS Infrastuctures
Effectively Explaining the Cloud to Your Colleagues.

Effectively Explaining the Cloud to Your Colleagues.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Exploring the Enterprise Network Infrastructure Introducing Routing and Switching.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Exploring the Enterprise Network Infrastructure Introducing Routing and Switching.
Net Optics Confidential and Proprietary Net Optics appTap Intelligent Access and Monitoring Architecture Solutions.

Net Optics Confidential and Proprietary Net Optics appTap Intelligent Access and Monitoring Architecture Solutions.
CHAPTER FIVE INFRASTRUCTURES: SUSTAINABLE TECHNOLOGIES

CHAPTER FIVE INFRASTRUCTURES: SUSTAINABLE TECHNOLOGIES
© 2006 Avaya Inc. All rights reserved. Avaya Services Michael Dundon Business Development Manager.

© 2006 Avaya Inc. All rights reserved. Avaya Services Michael Dundon Business Development Manager.
IPv4 TO IPv6 TRANSITION AND INTEROPERABILITY FOR TELECOM SERVICE PROVIDER Business Problem In today’s environment of growing connectivity where almost.

IPv4 TO IPv6 TRANSITION AND INTEROPERABILITY FOR TELECOM SERVICE PROVIDER Business Problem In today’s environment of growing connectivity where almost.
Exploring the Network.

Exploring the Network.
Module 2: Creating Efficient Replication Solutions.

Module 2: Creating Efficient Replication Solutions.
SOFTWARE DEFINED NETWORKING/OPENFLOW: A PATH TO PROGRAMMABLE NETWORKS April 23, 2012 © 2011-2012 Brocade Communications Systems, Inc.

SOFTWARE DEFINED NETWORKING/OPENFLOW: A PATH TO PROGRAMMABLE NETWORKS April 23, 2012 © Brocade Communications Systems, Inc.

Similar presentations

Ads by Google