The Zeus Blog: Application Delivery, Cloud Computing, Load Balancing, Virtualization

Is XenServer the flavor of the week for traffic management software? Citrix have just this week released Netscaler VPX (their Xen Virtual Appliance version of the Netscaler traffic management appliance), and Zeus have made available a Xen Virtual Appliance of the ZXTM Desktop Edition.

XenServer is a viable competitor to the more entrenched and mature VMware ESX product line.  It has gained a lot of share in cloud environments as it is available at no cost (although I don't expect that either of the virtual appliances will be deployable in a general infrastructure cloud - you need software or a custom virtual machine for that).

If you would like to evaluate ZXTM on Citrix XenServer (perhaps you are considering Citrix’s new Netscaler VPX product), then the ZXTM Desktop Edition is a great way to begin.The desktop edition can be quickly and easily installed to create a full environment containing the ZXTM software and some sample webservers. The ZXTM Desktop Edition is a training and educational tool that teaches users how to solve a range of common web and application challenges with ZXTM.

To download the ZXTM Desktop Edition for XenServer, go to http://knowledgehub.zeus.com/desktop/.  Installation is a snap, and within 5 minutes you should be up and running and load-balancing your first services.

If you would like to run the full ZXTM software on your XenServer virtual platform, you can follow in the footsteps of many of our customers who run the ZXTM software in a Linux virtual machine and get great performance and reliability from XenServer.  Our own performance tests indicate that while Xen performance is not yet on par with VMware, it’s still impressive (almost 2 Gbits HTTP throughput, and over 6000 SSL transactions per second), and well in excess of the performance that can be achieved with Citrix’s Netscaler VPX alternative.

Alternatively, download Zeus' Development License - a full-featured version of ZXTM that may be used for any non-production purpose, such as development, test, staging and demonstration.

Interest in SoftADC devices is certainly heating up, and it will be interesting to see how the other hardware-based incumbents in the traffic management industry respond to this development.  They are an absolute necessity for traffic management in public and hybrid clouds, but Xen-only appliances are not the full answer.  If you want to deploy your application absolutely anywhere, you still need to look to Zeus for pure software traffic management.

See also: Citrix Netscaler VPX - Welcome to the Party!

Owen Garrett

Zeus were delighted to be invited to present that the inaugral CloudStorm event, in Brussels on September 3rd.  With 175 IT professionals present, the Atomium was the perfect location - sitting in a bubble, in the middle of the sky, talking about cloud computing!

We spoke, not just about load balancing, but also about some of our experiences and our customers' experiences concerning cloud computing, load balancing and application development.  We've found that it's often the application development team who first realize the opportunity that cloud computing presents, particularly with regard to the ability to specify and build the infrastructure themselves.  Coupled with the fantastic application-focused capabilities of a modern load balancer, this is a great combination that lets them build, test, deploy and manage their applications much more efficiently.  There are a few examples in presentation below.

Owen Garrett

You know the sort of opinions and guesses that get circulated, never challenged and eventually become accepted wisdom without ever being proved?   Don’t eat before you swim else you’ll get cramp.  Dress up warm or you’ll catch cold.  Or the myths that take root because their proponents have more voice than their detractors?  A $100 HDMI cable will give you a better picture than a $10 one.

Here’s another one: Network-intensive applications are not suitable for virtualization.  Surely it’s obvious... you take an application (like a software load balancer) that does a lot of network I/O, you put it on top of a virtualization stack, and of course the overhead of virtualization is going to impact performance significantly. 

Zeus has a lot of customers who run our software traffic manager on VMware’s virtualization stack, and they are sometimes curious about performance.  So we ran some tests, using VMware vSphere 4 (aka ESX 4.0):

The tests were a mixture of network-intensive (bandwidth and connections-per-second) and CPU-intensive (SSL transactions per second) workloads.

We compared the performance of a pre-release of ZXTM Virtual Appliance 5.1r2 running on ESX 3.5 and ESX 4.0 to the ZXTM software 5.1r1 running on a typical Linux installation (Ubuntu 8.10).

Compared to ESX 3.5, we found that the network-intensive tests generated approximately 25% better performance on ESX 4.0.  There was little difference in the SSL performance.

The most interesting results come from comparing VMware vSphere 4 (ESX 4.0) with the native performance obtained from the hardware:

The virtual appliance was tested with a number of virtual CPUs; the 4 vCPU result is typically lower than the 3 vCPU result because of contention with the hypervisor processes on CPU0.

For the majority of tests, the performance of the virtual appliance is within 90% of the native system, and in some cases, exceeds native by up to 20%.  The traffic management system runs faster under VMware than natively!

What conclusions can we draw from this?

The myth that workloads that perform a lot of network I/O are not suitable for virtualization has been well any truly debunked, at least when considering VMware virtualization and a sensibly tuned virtual appliance.

Clearly, the VMware hypervisor does not impose a significant performance impediment, and in some cases the combination of VMware and the tuned Virtual Appliance gave better performance than the native installation of ZXTM.

For more information, delve deeper into the test report on www.zeus.com.

Owen Garrett

The guys at Joyent have recently announced a pre-built, pre-tuned MySQL appliance which offers some very fantastic looking performance benchmarks.  From a technical perspective, Joyent have one of the most complete and capable cloud platforms, and the testaments of their customers back this up (47 billion queries over 13 months on one MySQL appliance, without a reboot or any downtime).

There are a few interesting trends you can draw from this.  Joyent launched their first accelerator application, the Zeus Accelerator in May 2009; with MySQL added to their portfolio and undoubtedly more to follow, this illustrates the growing-up of the Cloud IaaS (Infrastructure-as-a-Service) market and a gradual move up the value stack towards PaaS (Platform-as-a-Service).  Other cloud vendors will certainly follow suit, not forgetting VMware’s purchase of SpringSource which the pundits suggest indicates a move from IaaS to PaaS for them.  Convenience and choice will mark the top IaaS vendors out from the rest who provide little more than a platform to run your virtual machines.

You can also look forward to closer integration between the Zeus  and MySQL accelerators.  Where performance and scalability is key, Zeus’ traffic management technology gives you a way to scale your MySQL capacity horizontally by routing requests transparently based on the permissions of the MySQL user.  This solution is illustrated in the MySQL Scalability knowledgehub article, and shows the huge power of TrafficScript.

Look forward to more innovations from both Joyent and Zeus in the near future.

Owen Garrett

Giving a definitive performance statement for our ZXTM software is always a challenge because, unlike our hardware appliance contemporaries, our customers have an almost infinite choice of platforms to deploy our software on.

Periodically, we take a new-generation server and run it through our internal benchmarking platform so that we can produce some performance guidelines; this is the same platform that we use for our internal software tuning and regression testing at each release.  With all of the buzz around Intel’s Nehalem chipsets, there was a lot of anticipation in the engineering team to the performance that ZXTM might achieve.

It didn’t disappoint: The x4170 Sun server is equipped with two Nehalem-class processors (sounding like a cold war nuclear submarine):

This Nehalem server was the first one to saturate the 10Gbits of testing infrastructure that we had available at the time. 

See the full performance chart here; there’s about 12 months of processor development between each column in the performance chart, so performance of a ZXTM-based Traffic Manager is growing by 50-100% year-on-year on most counts, simply due to advances in processors and system architecture. 

The Nehalem server’s list price is just shy of $10,000 (source sun.com, July ’09).  The previous generation lists at $7,000, and the Opteron server is EoL (an equivalent 4-core system from Dell costs in the region of $1000-$2000).  You can buy the server to meet your traffic needs now, and cost-effectively upgrade the hardware just when you need to.

CPU Utilization

During the tests, we also measure CPU utilization, seeking to drive the idle time to single figure percentages to verify that we have extracted all the performance we can from the system (notwithstanding ZXTM’s supra-linear performance growth with CPU utilization).  During the higher-bandwidth tests, we saw considerable idle time, topping out at over 70% idle when the system was serving 10Gbits from its webcache.  This means there’s a lot of CPU resource remaining for other tasks... running TrafficScript rules for example.

Can I obtain these figures in real life?

A Bugatti Veyron will reach 253 mph at the end of a 9km straight on Volkswagen’s test track, but will struggle to maintain 60 mph on a twisty back road.  Likewise, the performance of any network appliance will vary significantly between a carefully controlled benchmark environment, and in real life.

Zeus’ benchmarks are fairly straightforward and representative.  We don’t rely on specialist layer-3 packet processing hardware or dumbed down layer-4 profiles to get great performance figures on a configuration that is nothing like what you would deploy in production (because we haven't got any trick hardware or dumbed down profiles).  As a result, ZXTM users get fewer surprises than they sometimes do with hardware appliances.

The most significant variables that will cause a deviation from the benchmarks above and what you will achieve on your own service are:

• the complexity of the Trafficscript and Java rules you use;
• the differences in behaviour between slow, jittery, unreliable real-world clients and networks and the fast local network and well-behaved clients that are used in a benchmark. 

As ever, the best advice anyone can give you is to acquire and test your shortlisted load balancers with your required configuration, and ultimately against your live traffic. And, put ZXTM on your shortlist – it only takes a couple of minutes to download and much less than an hour to install and get started, and the feature set and support is second to none.

Owen Garrett

Previously, we considered how Application Developers may be the point of entry for cloud computing into your organization.  In this posting, I'll consider the effect that might have.

Cloud Computing is not just about cost savings

The role of the applications team changes when they start to use cloud platforms.  Now, they control not just the application code, but large portions of the application infrastructure it runs on too.  Apps guys are smart, and basic infrastructure isn’t hard.  Your good apps guys probably run their own infrastructure from home or from some service provider already, and know enought about TCP and HTTP and Firewalling and to hold their own with their network colleagues.

Perhaps this sounds like a recipe for disaster, but with sufficient support and buy-in, you can make this shift in responsibilities work.  Finally the applications teams can drive the infrastructure, leaving the cloud provider to make the hard hardware decisions.

In fact, it’s a potentially a catalyst for great success.  Take load balancing as a case in point.

Load Balancers

Modern load balancers (a.k.a. “Application Delivery Controllers”) are immensely capable devices that can manage and transform network traffic in a multitude of ways to address all sorts of application problems.  However, there’s a problem.  They are often in the wrong place and they can’t be moved.

The majority of load balancers are hardware appliances.  They sit in the datacenter, owned by the network team, with a massive organizational firewall around them.  Their scripting and traffic management capabilities are blunted because they are in the wrong hands.

Suppose that an application developer has a problem he needs to solve.  Perhaps there’s a bug in an application that is provoked by particular requests and he needs to seal it off pending future investigation.  Perhaps there’s a clustering problem he could bypass with appropriate session persistence in the load balancer.  Maybe he has to support some new client software that uses a slightly different protocol variation that requires either an application modification or a simple rewrite rule in the load balancer.

In each case, the problem can be solved using the load balancer more quickly and effectively than by modifying the application code, but this assumes two things.  Firstly, the developer needs access to a load balancer to develop and test the fix, and secondly he has to negotiate his way through the organizational firewalls to place his change request and wait for it to be approved and applied.

Imagine instead that your load balancer / application delivery controller resided in the cloud as a software service.  Your application developers could get unrestricted access to a dedicated load balancer (on a pay-by-use or zero-cost basis) to develop solutions and use the functionality more effectively in his applications.  This is entirely possible if you choose a cloud provider who offers this advanced load balancing functionality as service (e.g. Joyent), or if you use a software load balancer rather than a hardware one (and run it in your cloud of choice), particularly one with free licenses for your application developers.

Make your application infrastructure ‘cloud ready’

This ‘empowering’ of your applications team for the benefit of your business is not a consequence of cloud computing.  It’s a consequence of making your application infrastructure ‘cloud ready’, whether or not it ever gets deployed to a cloud. 

Making your infrastructure ‘cloud ready’ entails a subtle, discreet shift in power to your applications team.  Audit your application infrastructure, picking out any components of your composite application that are implemented in hardware appliances – firewalling, intrusion detection, web application firewalls, load balancers etc – and replace them with software alternatives when the next technology refresh comes round.  If necessary, walk round your datacenter with a pack of post-it notes tagging any brightly-colored single-purpose appliances with the label ‘anchor’, because those appliances are going to weigh your application down and prevent you from ever moving it to the cloud.

When you do come to deploy software alternatives to your legacy hardware appliances, you will naturally deploy them on the same type of server hardware that you use for your application servers and application code.  So it’s a natural move to hand responsibility over to your applications teams to manage them from then on.

By doing so, you achieve two things.

You make your infrastructure ‘cloud ready’. Next year, when your CFO reads the article in his airline magazine explaining how MultiCorp saved $millions and delivered new services faster than their competitors as a result of moving to a cloud architecture, and then asks you “why can’t we do the same?” you’re lined up to be your company’s next hero and the CFO’s new best friend.

A ‘cloud ready’ infrastructure sidesteps the ‘breaking down silos’ challenge that many organizations struggle with.  It goes directly to the heart of a key challenge, empowering your most innovative, valuable employees to create more new services, more quickly for your business. 

Like so many advances in the IT industry, Cloud Computing is much more than a technical solution to a technical problem.  Like client-server, and SOA and Virtualization before it, cloud computing can be a catalyst (or just an excuse) to shed legacy shackles that hold your business back and effect real change for the better.

Owen Garrett

This is part 1 of a two part blog post based on a presentation given yesterday at CloudCamp Paris.

Some unexpected benefits of cloud computing

Gartner calculated that medium to large enterprises could spend as little as 20% of their annual IT budget on ‘value creation’ – making the new stuff (applications and services) that differentiated the business from its competition.  Up to 80% of the annual IT budget went towards “keeping the lights on” – the capital and operational costs of the infrastructure to host the applications.

Hand in hand with budget is power and influence.   These figures betray the deep-seated and unhealthy imbalance in power in many large organizations which are held to ransom by costly, inflexible business infrastructure that is very resistant to change.

If you work for a smaller organization, these figures may leave you in disbelief, but the infrastructure treadmill is almost inevitable as your organization grows.  It takes some very smart thinking (the sort of thinking that lead Amazon to create EC2) to break away from this.

One of the key aspirations of Cloud Computing is that it will allow organizations to exchange some of those enormous capital infrastructure costs for pay-by-use operational costs, and through elasticity and improved infrastructure utilization, reduce your overall costs.

However, just as virtualization brings more benefits than just server consolidation, so the Cloud Computing approach can bring more to the table than just pay-by-use and elasticity.

Who adopts cloud computing?

In an organization, you might think that the infrastructure and operations teams are the first to embrace cloud computing, but in fact, they are usually so far out of the room that you’ll find them standing on the edge of the window sill with their fingers in their ears singing nonsense verse very loudly.  Cloud Computing threatens these teams with serious loss of control, power and influence, and they will spread as much FUD as they can to keep it off the agenda.

Instead, the first adopter and most vocal proponent of Cloud Computing is often the Application Development team.  Cloud computing lets them bypass the organizational barriers and obstacles that the datacenter guys put in their place.  Watch how the balance of power in your organization begins to shift.

Picture the scene...  the apps team need 8 servers for a 15 day’s worth of QA testing before releasing a new service.  They approach the business manager who commissioned the service:

“The datacenter guys have told us there’s a lead time of 2 months to acquire and rack up the servers we need (yeah, sorry, we forgot to ask two months ago), and they said some sniffy nonsense about the datacenter being almost ‘full’.  I’ve been using a cloud provider for some other stuff, and I can get the 8 servers we need from them in 10 minutes.”

Now the business manager is sold on Cloud Computing.  He approaches his CFO:

“Your datacenter team has quoted me $10,000 for the 8 servers I need for QA testing.  My apps guys can get them from their cloud provider for $40/day.  We only need them running for 8 hours a day, so it’ll cost about $200.”

The CFO has to choose between putting $6,000 of depreciating assets on the balance book and accounting for $4,000 of internal costs, and signing off on an extra $200 on someone’s expense report.

Granted, this is just a QA system where the benefits of cloud computing are particularly clear, but you can imagine the conversations about the production systems that follow over the next few months.

So that's the potential cost benefits... what else?

Next week I'll disuss what might happen when your apps guys get free reign on your application infrastructure...

Owen Garrett

I’ve just returned from Sys-Con’s Cloud Computing Conference and Expo in beautiful Prague. A very useful networking event; it was great to meet familiar faces in the growing cloud community and to evangelize the cloud approach to a new audience!

Roman Staneck, CEO of Good Data, opened with the keynote – Building Great Companies on the Cloud. Good Data is one of the Czech Republic’s cloud success stories (although Roman is now based in San Francisco, the engineering is centered in his home country); they provide deep business analytics and really could not operate in a cost-effective way without the pay-by-use and scaling capabilities of the cloud.

As well as a session at the Cloud Bootcamp, I spoke about architectures for applications in the cloud, and why load balancing is not only a key architectural component but also a proven way to get more performance, control and manageability out of cloud applications.

Application Architecture

At first glance, cloud-based applications may not look significantly different to applications running in traditional physical or virtualized datacenters. In the Cloud, you still get servers to run things on, you still get storage (though not always persistent) and you get basic network connectivity. The Cloud Provider manages large amounts of this physical infrastructure, chops it up using virtualization techniques, then rents to you what you need on a by-use basis. 

However, one of the more common reasons for using an infrastructure cloud is to utilize the massive scalability it provides. If you have this in mind, it will affect the architecture you want to use.

There are other considerations too; I wouldn’t say that the Cloud is ‘less reliable’ than other infrastructures, but the fact remains that if you plan for failure and build a fault-tolerant architecture, many tasks become easier. Scalability requires automation, as do so many routine management tasks. Finally, if you've planned for disaster recovery you’ll find it much easier to migrate your application to another provider if commercial or SLA reasons require you to do so.

Distilling this down, we want a scalable, fault-tolerant, and most importantly simple architecture for our cloud based application.

Here's a few choices:

1. Monolithic Applications

The most simple application architecture – the monolithic (all on one server) design as epitomized by the LAMP stack – is not amenable to cloud applications.

Not only does it present a single point of failure, but because it’s limited to a single server instance, it has limited scalability if traffic demands exceed the capacity of the machine.

2. Three-tier applications

In his Cloudnavigator blog, Rick Otten recently wondered aloud whether 3-tier web architecture models were too rigid for the cloud.

In his blog, he identifies the role of the load balancer in this architecture. He asks if an F5 balancer can render the webserver-part of the architecture irrelevant (Rick – an F5 can’t, but a ZXTM certainly can).

Rick compares the Infrastructure-as-a-Service (IaaS) approach with Platform-as-a-Service (PaaS) architectures, but I’d like to stay with the different architectures, you can use in IaaS clouds.

There’s nothing stopping you deploying this architecture, but it has scalability challenges and is probably more complex than is necessary for most applications. For example, when the service becomes overloaded, scaling out the web tier may only have a marginal effect if the app tier is the bottleneck, and you have much less granularity over how you scale.

3. Service Oriented Architecture (SOA)

The SOA approach to application architecture breaks an application apart into constituent, reusable services, and then wires them back together with network cables (virtually perhaps!) to create something like this:

You might be tempted to conclude, after 10 years of hard-learned experience, that the SOA approach was developed by a consortium of vendors with paid-for voting rights on various standards bodies, championing it for their own commercial gain rather than for the good of the IT industry as a whole.

This architecture can work for massively complex, distributed applications. Amazon use a home-grown SOA approach, where well over 150 SOA components are queried to generate a single web page on amazon.com, but they built their application this way because it suited the way they governed their development team as much as for scalability reasons. With low utilization of individual servers and a complex architecture that is very expensive to scale, it’s probably not the best way to begin.

4. An architecture for the Cloud?

There’s one architectural design pattern beginning to prevail in cloud applications where scalability is a key concern. It’s emerging from experiences in building highly-scalable applications across any infrastructure; I don’t know if it has a widely accepted name yet, and I would not presume to give it one:

The application part of your service is implemented in a single, self-contained unit that is designed from the outset to be scalable horizontally. Ideally, no session state is stored in that unit, so it can be scaled at will for easy performance increase.

The data is stored in a separately scalable database. There are a lot of approaches to highly scalable database implementation, and most of them dispense with the traditional monolithic relational approach and partition the data in some scalable manner. Again, there’s lots of real-world examples (for example, this one) referenced through the invaluable site highscalability.com.

Scalability becomes much easier (apart from the problem of tracking where data is if you partition it – master-slave is one approach) because your application becomes much more homogeneous. It’s relatively straightforward to spin up more ‘app’ when latency or CPU utilization increases and poke the load balancer to send traffic to it.

In this design, caching becomes an architectural solution rather than an afterthought. Memcached may be used for caching on the application tier, and web caching used on the front-end load balancing tier.

Partition the app as well as the data: It’s not a scalable idea to put transient state in the database in a busy system (for example, the intermediate state of a shopping cart). If you need to track state, client-side cookies and/or local data on the application instances.  You can use the session persistence capabilities of the load balancer to pin simple sessions (keyed by cookie for example) to the application partition that contains the more detailed data. If you follow that route, you can partition your application layer as well as your data layer, thus minimizing internal network chatter which can sometimes cost you dear.

For more information on this sort of architecture, Wille Faler’s blog is a good starting point.

Load balancing in the Cloud

None of this was the focus of the session in Prague... it was just a lead into the more interesting question of why and how you could architect advanced load balancing right into the core of your application, whether it’s physical, virtual or cloud based. There’s a lot of lessons the cloud ecosystem will inherit from experience in physical or virtual environments, and I’ll touch on a few another time.

Owen Garrett

It’s great to hear that Citrix has finally bowed to market demands and acknowledged that software is the right delivery model for an Application Delivery Controller such as their Netscaler ADC. Many of Zeus’ own customers have standardized on virtual infrastructure and have been running our ZXTM Virtual Appliance since it was launched in November 2006, and Zeus have been developing software ADCs since ZXTM's first public beta in November 2003. Citrix’s recent announcement that they intend to enter the market with a virtual appliance in Q3 2009 validates the 5+ years of investment Zeus has made to date in this market.

Zeus is, and always has been, the only company to focus exclusively on software application delivery controllers. We’re adamantly platform agnostic, providing ZXTM software for any modern Linux, for Solaris and FreeBSD, and our customers run ZXTM on a range of virtualization platforms, including Xen, VMware, Solaris LDOMs, HyperV, OracleVM and Amazon EC2. Our experience has led us to learn that users value choice, and the ability to migrate their application from physical platforms to virtual or cloud environments (at no cost) is critical to avoiding lock-in to any infrastructure platform. Citrix’s decision to restrict Netscaler VPX to XenServer is understandable and will support organizations who have chosen to standardize on Citrix technologies throughout. However, XenServer has a very small share of the virtualization market, so this limits customer choice and is something they will need to review if they intend to make any impact in the software ADC market.

It will be interesting to learn how Citrix position and price Netscaler VPX to avoid undercutting their very-high-margin hardware MPX device (that 'slashes datacenter costs' at $180,000 a pair). Offering a virtual appliance alternative may prove to be a trojan horse if customers realise that the only different between VPX and MPX is a low-end Intel server with a couple of acceleration ASICs.

Trying to position VPX as just suitable for SMB customers won’t work for them, as major enterprises have found that the performance of software such as ZXTM far outstrips hardware appliances, and the price is just too compelling. However, by restricting VPX to a second-tier virtualization platform, they may find they cannot realize the full performance potential of their software, and that’s without considering TrafficScript, Java Extensions, a comprehensive API and Event Handling framework and a wide feature set in ZXTM software that far outstrips the capabilities of Netscaler MPX hardware in many respects today. Perhaps positioning VPX as a low-end SMB product is a necessary choice Citrix cannot avoid.

Citrix wisely have identified that a software version of the Netscaler ADC is a great way to “give development teams who best understand the unique requirements of each application easy access to NetScaler functionality”. Zeus knows that application developers are key to realizing the potential of modern ADC devices, and locking ADCs away in an inaccessible datacenter and wrapping them with layers of bureaucracy and change control blunts their value. We acknowledged this when we made ZXTM available at no cost for development purposes, added a Plugin for the Eclipse IDE, and Zeus’ ZXTM KnowledgeHub has supported application developers with deployment tips, TrafficScript rules and performance articles since 2006.

Citrix’s announcement is further confirmation, if that were needed, that datacenter administrators are throwing away their overpriced, overheating, overhyped hardware appliances and moving to cleaner, greener, more cost effective virtual appliances. We look forward to talking to anyone running legacy hardware ADC appliances as they question their investment in hardware and consider going software or virtual instead.

Owen Garrett

Gartner singled out the role of “Application Delivery Architect” to be an IT organization’s next key hire.  What is an ‘Application Delivery Architect’, and how might you go about learning the skills to become one?

The 'Application Delivery Architect' isn’t an additional layer of architectural management. Rather, he or she is a specialist with experience in the various technologies (primarily WAN Optimization Controllers and Application Delivery Controllers, as well as caches and security solutions) that control how a web-enabled application is effectively accessed over a network:

Many organizations will already be able to find these skills in-house and there is overlap with other functions, but Gartner points out that they must be recognised and coordinated by one key role.

The network team hand traffic over to the Application Delivery Architect at layer 3; the Application Delivery Architect then manages the traffic up the stack to present user sessions, correctly encapsulated, to the applications:

An application delivery architect is concerned about:

• Availability.  Making the application resilient to failure begins with load balancing and clustering, but many applications may not cluster well and many different types of failure can occur.  An App Delivery Architect will know how to use session persistence to interpret and juggle multiple sessions effectively, select the best load balancing algorithm and how to construct appropriate health monitors to detect and manage failures.

• Performance.  Most applications have performance weaknesses, whether it’s poor coding, overly-complex page generation or concurrency limits that are provoked by slow clients.  An Application Delivery Architect will know how to spot these weaknesses and overcome them to extract greater capacity from the existing infrastructure.

• Security.  Any vulnerabilities in the application must be sealed to prevent a client from exploiting them, and DoS attacks must be mitigated using a Web Application Firewall or the scripting capabilities in an advanced Application Delivery Controller.

• Agility.  When an organization wishes to deploy a new service or make changes to an existing one, the application delivery architect facilitates and orchestrates the process to ensure that there is no interruption in service.

• Access: The application delivery architect may deploy WAN optimization technology and layers of caching to improve the performance of applications to remote users, whether located in a branch office or on the open internet.  He or she also works with the security team to ensure smooth authentication, authorization and access controls.

• Monitoring and Measurement.  To detect trends and to inform his or her decisions, the Application Delivery Architect will monitor the successful delivery of an organization’s applications, their performance and their correct operation.

The most important attributes an Application Delivery Architect should have are:

• The ability to influence cross-functional teams and drive change, establishing his or her authority through knowledge and expertise rather than taking authority from above

• A strong understanding of how the applications function, and how they behave with different types of clients, including potentially malicious ones.

He or she will work most closely with the application developers, test teams and operational staff to track performance and learn the various behaviours of the application.  He or she will also work with the network team to fine-tune how the application is delivered over the network. 

How does one become an application delivery architect? Your major goal should be to build expertise in the tools of the trade.  Learn how to effectively use the capabilities of an Application Delivery Controller (ADC), the most important and sophisticated tool an application delivery architect should know.  Zeus' ZXTM is an advanced software ADC available at no cost through both an educational ‘Desktop Edition’ for training purposes, and a wide-ranging Development License program for long term development and proof-of-concept projects.  Installing it in front of an existing web application is a great way to begin your journey.

Software WAN Optimization Controllers (WOCs) are also worthy of investigation, bearing in mind that they require a WAN or a network simulator to make the most from.  Replify (www.replify.com) are one supplier of software WOC technology that is worth a look.

For more information, begin with a ZXTM Desktop Edition or Development License download, and take a look at some of the application delivery examples on the ZXTM KnowledgeHub at http://knowledgehub.zeus.com/.

Owen Garrett