F5 Networks

Infobox_Company
company_name = F5 Networks, Inc.
company_
company_type = Public (NASDAQ)
foundation = 1996
industry = Technology
revenue = $525.7 million USD
num_employees = 1357 (as of 2007-06-30)
location = Seattle, Washington
key_people = CEO: John McAdam
products = Networking
homepage = [http://www.f5.com/ www.f5.com] |

F5 Networks, Inc. (NASDAQ|FFIV) is a networking appliances company. It is headquartered in Seattle, Washington and has development and marketing offices worldwide. It originally manufactured and sold some of the first load balancing products. There is some debate about whether F5, or competitor [http://coyotepoint.com Coyote Point Systems] invented the load balancer in the mid 1990s.

F5 Networks' flagship product, the BIG-IP network appliance, was originally a network load balancer but today also offers other functionality such as access control and application security. Add-on modules to F5's BIG-IP family of products offer email filtering and intelligent compression to allow for lower bandwidth and faster downloads in addition to load balancing and local traffic management capabilities.

F5 also offers other products in various segments of the Application Delivery Controller market. According to Gartner, F5 has a majority of the market share in this industry. According to Gartner, the most significant competitors (in terms of market share) are Cisco Systems and Citrix Systems. Other competitors include Barracuda Networks, Nortel, Foundry Networks, Astrocom, Radware, Coyote Point Systems, KEMP Technologies, jetNEXUS and Zeus Technology.

Corporate history

F5 Networks, originally named F5 Labs, was founded in 1996. F5's first product was a load balancer called BIG-IP. If a server went down or became overloaded, BIG-IP directed traffic away from that server to other servers that could handle the load. F5's namewas inspired by the film Twister - F5 is the highest category tornado according to the Fujita scale. [ [http://www.americanexecutive.com/spotlights/sl_10_04_F5Networks.asp An article about F5 in American Executive Spotlight] ]

In 1999 the company went public and was listed on the NASDAQ stock exchange (NASDAQ: FFIV). Corporate focus is on network intelligence.

F5 experienced a rough period after the collapse of the dot-com bubble but since then has had a strong recovery. In 2004, 80% of the F5 business was with Fortune 500 companies. Fact|date=September 2007

Using internal development and acquisitions the company extended its reach beyond load balancing, producing a wide range of products for what is known today as Application Delivery Networking. These products seek to improve the delivery of the applications by attempting to make them run faster and more securely.

F5 Networks has acquired a number of companies during its existence:
* uRoam (Remote access SSL VPN) for USD 25M on June 23, 2003 (product now called FirePass)
* Magnifire (web application firewall) for USD 29M on May 31, 2004 (product now called Application Security Manager)
* Swan Labs (WAN acceleration and web acceleration) for USD 43M on November 15, 2005 (products now called WebAccelerator and WANJet)
* Acopia Networks (file virtualization) for USD 210M on September 13, 2007 (product extends F5 Application Delivery Networking system)

Products

F5 Networks sells a variety of products in the Application Delivery Controller space:

* BIG-IP Local Traffic Manager (LTM): Provides Load balancing
* BIG-IP Global Traffic Manager (GTM): Provides Global Server Load Balancing
* BIG-IP Link Controller (LC)
* BIG-IP Application Security Manager (ASM)
* BIG-IP WebAccelerator (WA)
* FirePass SSL VPN
* WANJet
* BIG-IP Enterprise Manager

There are also several optional modules available for the Local Traffic Manager.

BIG-IP

BIG-IP is a network appliance on which most of F5's products are run. The core network functionality is implemented in Traffic Management Operating System (TMOS), which is developed by F5. The appliance also runs a Linux-based operating system, which is used for management tasks. Most of the product offerings can be run in any combination on the same hardware and same operating system and it is controlled by licensing.

FirePass and WANJet now also run under TMOS as modules. This functionality has been supported since 9.4.x. The FirePass module is currently in beta for select customers of F5 Networks.

BIG-IP v9

On September 7th, 2004 F5 Networks released version 9.0 of the BIG-IP software in addition to a new collection of BIG-IP appliances on which customers could run said software. Version 9.0 was a significant leap forward in technology and is significantly different than the previous versions of BIG-IP. The significant changes include:

* Moved from BSD to Linux to handle systems management functions (disks, logging, bootup, console access, etc)
* Creation of a Traffic Management Microkernel (TMM) to directly talk to the networking hardware and handle all network activities
* Creation of the standard full-proxy mode which fully terminates network connections at the BIG-IP and establishes new connections between the BIG-IP and the real servers. This allows for optimum TCP stacks on both sides as well as the complete ability to modify traffic in either direction.

The current version, as of September 2008, is 9.4.5.

BIG-IP Hardware

The new line of BIG-IP hardware released in 2004 (with the 8400 and 8800 being released more recently) was a significant step forward from the older, more PC-like hardware. All current models except BIG-IP 1500 have hardware SSL support for handshakes and bulk encryption/decryption as well as a front LCD panel for configuration and monitoring and a separate service processor for out-of-band management. The 3400 and higher has a custom ASIC to handle many load balancing tasks. The 6400 and higher has optional redundant power supplies. The 8800 comes with hardware compression support standard although that is optional on the 6400 and higher. Viprion is new chassis/module based hardware. Basically it is a chassis which can hold up to 4 blades which are equivalent to 8800.

The full model line-up is as follows, with approximate best-case throughput indicated:

* BIG-IP 1500: 1U, 512 Mbit/s
* BIG-IP 3400: 1U, 1 Gbit/s
* BIG-IP 6400: 2U, 2 Gbit/s
* BIG-IP 6800: 2U, 4 Gbit/s
* BIG-IP 8400: 2U, 10 Gbit/s
* BIG-IP 8800: 2U, 10 Gbit/s (faster full-proxy, SSL, and compression performance than the 8400)
* Viprion: 7U, 36 Gbit/s (chassis system with four Performance Blades 100)

BIG-IP Software Features

*SSL Acceleration: all current models of the BIG-IP appliance have specialized hardware for SSL handshakes as well as bulk encryption/decryption. This hardware can perform SSL encryption/decryption more efficiently than the general-purpose CPUs found on web servers. The BIG-IP 8800 can handle 6 Gbit/s of SSL encryption/decryption.
*Intelligent Compression: reduces amount of data to be transferred for HTTP objects by utilizing gzip compression available in all modern web browers (optional hardware compression is available for the BIG-IP 6400 or higher).
*Rate Shaping: allows some applications to receive a greater portion of the bandwidth and/or a higher priority than others.
*Advanced Client Authentication: the BIG-IP can authenticate users against a variety of authentication sources (including Active Directory, LDAP, Radius, etc) before allowing them access to a website.
*Advanced Routing: including BGP, OSPF, and RIP routing protocols.
*IPv6/IPv4 Gateway
*Caching: Caches static HTTP content in RAM to take load off of the web servers.
*Global traffic management: GTM, formerly known as 3DNS, uses DNS to provide global high-availability for applications. At least two GTM servers in at least two locations will answer DNS requests for an entire domain or a subdomain. The GTM servers also monitor the availability of applications in more than one datacenter. When clients request IPs for hostnames managed by GTM, it returns the "best" server for that user based on application availability, location of the user, round-trip-time, etc.
*Application security: application security manager is a Web Application Firewall and utilizes a positive (default-deny) application layer security policy to secure HTTP and HTTPS websites.
*Link/Internet Service Provider (ISP) Load balancing
*Web Acceleration: above and beyond caching and compression, the web accelerator modifies the actual content of websites in real time to provide a better end-user experience.
*SPAM Filtering: the message security module utilizes Secure Computing's TrustedSource IP reputation database to refuse mail from known spammers even before sending the messages to other SPAM filters.
*iControl Application Programming Interface (API): an open API for management of the BIG-IP
*iRules: a TCL-based scripting language allowing arbitrary manipulation of traffic flowing through the BIG-IP, including real-time modification of said data.

FirePass SSL VPN

The FirePass is an SSL VPN appliance and comes in a few models:
* FirePass 1200: 100 recommended simultaneous users
* FirePass 4100: 500 recommended simultaneous users
* FirePass 4300: 2000 recommended simultaneous users

There are several benefits of the FirePass over the more traditional IPsec solutions, including:
* Granular access control: grant users different sets of privileges based on who they are, what client they are on, and where they are coming from. When combined with an authentication server such as Active Directory or LDAP, the group memberships for the user can determine which resources they can access with fine-grained control.
* Access through firewalls: IPsec may be blocked by firewalls while port 443/tcp is almost always allowed unmolested.
* Endpoint security: the client can be checked for an active virus scanner, registry entries, personal firewall, etc, before being allowed access to the network.
* In addition to providing full network access like IPsec, the FirePass can provide access to only one server and port, and provide portal access to web sites and file shares, thus eliminating the need for any network access.

WANJet

The WANJet provides a point-to-point optimization solution over the WAN. A central location can have a WANJet and then multiple remote locations can also have WANJets which can provide significant performance improvements over the WAN links, especially when doing bulk data transfers (files, database replication, etc) or when high latency is involved (i.e. satellite or international links). It accomplishes this by using TCP optimizations between the devices to minimize the effects of latency, Transmitted Data Reduction Level 1 (TDR1) to selectively compress traffic, and TDR2 to eliminate the transmission of unnecessary data.

Notes