The SysMaster 1000 is a self-contained, plug-and-play
network management appliance for business-critical local Internet
sites or data centers. It is designed to satisfy the needs of small-sized
businesses. It provides automatic and intelligent management of Internet
traffic, coupled with solid performance, high reliability and flexibility.
- Up to 100 Mb/s throughput
- 6,000 connections/sec. per device
- Scaling to over 200,000 concurrent connections
- Virtually unlimited support for network devices including web
servers, firewalls, cache servers, routers, LDAP, VPN, DB, application
servers and more
  |
Key Features and Benefits: |
 |
|
|
- Small footprint;
- A high availability loadbalancing device for servers, caches,
firewalls, VPN gateways and more;
- NAT, Direct Path Routing and Global IP tunneling for advanced
loadbalancing;
- Provides persistence mode for enhanced security and reliability;
- Dual Config options for additional performance and availability;
- Advanced security features for diverting well known malicious
web attacks;
- Proxy Servers Load Balancing;
- Advanced network monitoring with statistics and trending of
Internet traffic through the SysMaster Web GUI Console;
- IP, Port and Protocol based loadbalancing:
- Traffic prioritization and rate shaping for efficient bandwidth
allocation;
- Direct Routing optional mode that allows servers to bypass
SysMaster 1000 when returning traffic to client for faster
return responses;
- Global IP Tunneling feature for geographically distributed
networks and services;
- Full TCP/IP protocol support, including UDP;
- Bi-directional Secure Network Address Translation (SNAT);
- SysMaster Web GUI console for traffic monitoring and trending
for your entire network.
|
Task-oriented Solution for Small
Businesses |
|
|
|
SysMaster 1000 offers task-oriented, low
cost solutions for small businesses. It is suitable for building
small Intranet and Extranet solutions. It can be used as a:
-
dedicated router with QoS capabilities for providing fast Internet
access;
-
dedicated firewall to protect local networks;
-
dedicated loadbalancer to optimize the load on local web/proxy
servers;
- dedicated bandwidth aggregator that loadbalances traffic between
gateways.
The SysMaster 1000 features an easy setup through
a configuration utility that allows even people with limited network
experience to work with it.
|
High Availability and
Reliability |
|
|
|
SysMaster guarantees consistent cluster performance
and full server fault tolerance by removing single points of failure
and possible bottleneck effects in the network solutions, as well
as implementing solid security algorithms. The SysMaster 1000 provides
high availability to your server arrays by utilizing different means:
Server-level Health Detection
SysMaster constantly monitors the status of your servers. Web
traffic is directed only to healthy servers.
Service-level Health Detection
SysMaster constantly monitors the status of your applications
(services) running on your servers. Web traffic is directed only
to servers with healthy services, guaranteeing the best quality
of service to your clients.
Dual Configurations
SysMaster can additionally work in configuration together with
a secondary SysMaster device to act as backup if the primary device
fails or goes down. For dual configuration, SysMaster devices
work in active/active or active/standby
mode.
The SysMaster 1000 delivers high levels
of scalability and flexibility.
- Server
Level Scalability - Additional servers can be added to
the cluster on the fly, or they can be taken out of service for
upgrade or maintenance without affecting the quality of service.
-
Traffic Level Scalability - When web traffic increases,
you can easily add another server to the cluster to achieve the
necessary performance gain instead of upgrading to expensive hardware.
This way, your web site infrastructure can easily grow as the
demand for its services increases, while at the same time protecting
investments made in the existing servers.
- Platform Level Scalability - can be used with
multiple heterogeneous hardware platforms, allowing enterprises
to protect investments in legacy hardware installations, as well
as simply and easily integrate future hardware equipment.
The SysMaster 1000 is easy to set up, and easy to
manage. The SysMaster 1000 is a self-contained 'plug and play' appliance
that doesn't require additional installation of software on your
servers. Network management is made easier, too, because administrators
can deploy new servers, and take individual servers off-line for
routine maintenance without disrupting service to end users.
Secure Management
The SysMaster 1000 features a secured management interface that
provides a username/login mechanism for access complete with Access
Control Lists. Using the SysMaster's management consoles, administrators
can login and manage all SysMaster settings. SysMaster provides
two consoles for management - web based and VGA menu
(terminal) based.
Simplified Management
The SysMaster 1000 centralizes the management of server resources
and devices such as firewalls, proxy and caches. End users are
directed to a single virtual address, facilitating network administration
and maintenance.
Easy Installation and Serviceability
The SysMaster 1000 can be installed on almost any type of network.
There are no internal or external interface limitations; there
are just ports with features assigned. This gives the network
manager more flexibility to install the SysMaster 1000 in the
network, and the ability to easily access features on any port.
The software core of SysMaster can be serviced and upgraded with
new versions via its web management console easily and securely.
In addition, the SysMaster 1000 provides on its box all necessary
ports for hooking up a keyboard and monitor for on-site configuration.
|
SysMaster 1000 as a Traffic
Monitor |
|
|
|
SysMaster displays a detailed graphical representation
of the traffic that goes through it. Network administrators receive
data about the way network traffic changes in time, and the number
of managed connections by the device that helps them understand
site's performance and bolster online presence.
|
Comprehensive Web Management GUI
Console |
|
|
|
SysMaster comes with a comprehensive Web
management GUI console to facilitate the configuration and maintenance
of enterprise networks. This utility provides detailed statistical
information about the traffic loads of your network, and displays
estimated traffic load increases and decreases for achieving maximum
efficiency of your servers.
|
SysMaster 1000 as a Loadbalancer |
|
|
|
High-volume web sites usually consist of multiple
servers or server clusters providing the same service from synchronized
contents. With SysMaster 1000, all these servers are addressed from
the Internet using a single Virtual IP address. SysMaster loadbalances
the traffic for this IP among the servers based upon the workload
and the processing capabilities of the individual servers. SysMaster
uses both static and dynamic algorithms for optimized loadbalancing.
Direct-Path Routing mode for High Speed
Loadbalancing
Since SysMaster takes into account the individual capabilities
of every server, you can put servers with varying capabilities
in one cluster, obtaining optimum performance and high utilization
of the available resources, and reducing investment costs. To
increase the overall throughput of the server cluster, SysMaster
1000 implements the Direct-Path Routing technique allowing servers
to send responses directly to the clients without passing through
the loadbalancing device.
NAT Loadbalancing
Since SysMaster takes into account the individual capabilities
of every server, you can put servers with varying capabilities
in one cluster. This provides optimum performance and high utilization
of the available resources, and reducing investment costs. To
increase the overall throughput of the server cluster, SysMaster
1000 implements the Direct-Path Routing technique, allowing servers
to send responses directly to the clients without passing through
the loadbalancing device.
Advanced Flexibility - Huge variety of balanced
traffic
SysMaster supports the following IP Protocols:
Web (http), FTP, UDP, DNS, E-Mail, LDAP, TCP,
SSL, Streaming Audio, Streaming Video and others.
Advanced Flexibility - Huge variety of balanced
devices
SysMaster allows loadbalancing of a vast number of different types
of network devices:
- Web servers;
- Firewalls;
- Routers;
- Cache servers;
- Proxy servers;
- Multimedia servers;
- VPN;
- NFS;
- LDAP servers;
- Others.
Security
SysMaster implements a solid security model. Using it,
network administrators can build high performance arrays of servers
that can fail-over easily under its control as opposed to a solution
with only one or two big and expensive servers whose failure can
be critical.
Persistence
SysMaster integrates another feature that allows users to resume
their connection to the same server they communicated with. SysMaster
offers two modes of persistence: Source-Server and
Mega Proxy Sever Persistence - Big enterprises and
ISPs use loadbalancing across multiple proxy servers to connect
to the Internet.
High Speed
Direct-Path Routing Performance
The SysMaster 1000 includes a loadbalancing mode called Direct-Path
Routing. This mode allows servers to bypass SysMaster when returning
traffic to clients. This method allows for supporting an increased
number of simultaneous connections that translates to greater
throughput of your services as a whole.
Easy Performance Upgrades
Internet traffic demands are advancing rapidly. SysMaster 1000
is ready, thanks to its unique hardware/software application design,
to achieve performance gains eliminating the need for upgrade
to expensive hardware.
For more information see
'SysMaster as a Load Balancer'.
|
Global Scalability and Availability |
|
|
|
The unique architecture of SysMaster 1000 allows
loadbalancing to be performed on both a local and global basis.
Utilizing the Global IP Tunneling feature of SysMaster, real servers
can be geographically distributed, maintaining uninterruptible service
even when site-wide failures occur.
For more information see
'SysMaster as a Loadbalancer'.
|
SysMaster 1000 as a Network Cache
Controller |
|
|
|
The SysMaster 1000 loadbalances user requests to
the cache server best able to process the requests. If the requested
data is not available locally, the Proxy server fetches it from
the Internet, and then redirects it to the end user that requested
it. The whole process remains totally invisible to the end user.
SysMaster facilitates this process by efficiently decreasing the
latency time from requesting Internet content to actually receiving
it.
For more information see
'SysMaster as a Network Cache Manager'.
|
Firewall and Security Application |
|
|
|
The firewall application of SysMaster acts in both
incoming and outgoing directions. Network administrators can grant
Internet access to selected "trusted" locations, and public access
can be limited to selected "safe" services. On the other hand, outgoing
traffic can also be filtered to protect valuable data.
Security
SysMaster provides solid security to Enterprise networks utilizing
various security mechanisms.
Extensive set of attacks that SysMaster
handles
SysMaster is designed to protect itself from attacks,
and provide protection for the servers being loadbalanced. Basic
protection features:
- Specially designed core software for advanced
security;
- Packet Filtering (IPFW);
- Security script identifies any services/ports
being probed;
- Default deny device - tight control of traffic
allowed to pass through;
- Administration through Access Control Lists;
- Protects itself and servers from ICMP attack
(thwarts ping attacks);
- Can reap idle connections (thwarts Denial of
Service attacks);
- Can perform source route tracing (thwarts IP
spoofing);
- Unacknowledged SYN without ACK buffers (thwarts
SYN floods);
- Thwarts teardrop and land attacks;
- Can map well known ports to any ports on the
servers (Port mapping);
- Real Servers IP addresses can be hidden from
the public;
- Not running SMTPd, FTPd, or any other attackable
daemons.
For more information see
'SysMaster as a Firewall'.
|
Router/Gateway Application
-
SysMaster 1000 as a Gateway in NAT mode |
|
|
|
The SysMaster 1000 connects local corporate networks
to the Internet. Corporate computers have private IP addresses,
and are not directly accessible from the global network. LAN users
access the Internet through the SysMaster 1000. SysMaster rewrites
packets as they pass through it, so that they always seem to come
from the device itself. It then rewrites the responses so that they
can reach the original recipient.
SysMaster allows all managed servers to be visible
via a Virtual IP, and on specified ports that can be easily enabled
and filtered, resulting in enhanced security.
In Network Address Translation mode, well-known
ports such as 80, 443, 20, and 21 can be mapped to any port number
on the actual servers. This provides greater security by making
it difficult for intruders to identify what services are running
on which port.
For more information see
'SysMaster as a Gateway'.
|
Quality of Service Application
- Bandwidth Management and
Denial of Service Prevention |
|
|
|
The SysMaster 1000 uses IP QoS together
with TCP and UDP level filtering to implement Bandwidth Management
and Denial of Service Prevention.
Bandwidth Management - SysMaster manages
incoming and outgoing traffic using filtering traffic by specified
sets of filter parameters for refined bandwidth utilization and
restriction policies. The QoS application supports the DiffServ
protocol provisioning for the proper treatment of the DiffServ marked
IP packets throughout the core network of the Internet.
Denial of Service Prevention
- SysMaster provides extended capabilities for filtering
any malicious attacks based on TCP, UDP, IP, ICMP protocols. This
greatly improves the security of your bandwidth, and guarantees
that such attacks will not disrupt the normal operation of your
systems.
|
