ZXTM (Zeus Extensible Traffic Manager) In Virtual Mode - Broadband Testing
ZXTM (Zeus ExtensibleTraffic Manager)In Virtual ModeWith Microsoft Virtual ServerA Broadband-Testing Report
Zeus ZXTM Virtual Mode – Microsoft Virtual Server ReportFirst published February 2007 (V1.0)Published by Broadband-TestingLa Calade, 11700 Moux, Aude, FranceTel : 33 (0)4 68 43 99 70Fax : 33 (0)4 68 43 99 71E-mail : info@broadband-testing.co.ukInternet : HTTP://www.broadband-testing.co.uk 2007 Broadband-TestingAll rights reserved. No part of this publication may be reproduced, photocopied, stored on a retrieval system, or transmitted without the express written consent of theauthors.Please note that access to or use of this Report is conditioned on the following:ii1.The information in this Report is subject to change by Broadband-Testing without notice.2.The information in this Report, at publication date, is believed by Broadband-Testing to be accurate and reliable, but is not guaranteed. All use of and reliance onthis Report are at your sole risk. Broadband-Testing is not liable or responsible for any damages, losses or expenses arising from any error or omission in thisReport.3.NO WARRANTIES, EXPRESS OR IMPLIED ARE GIVEN BY Broadband-Testing. ALL IMPLIED WARRANTIES, INCLUDING IMPLIED WARRANTIES OFMERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NON-INFRINGEMENT ARE DISCLAIMED AND EXCLUDED BY Broadband-Testing. INNO EVENT SHALL Broadband-Testing BE LIABLE FOR ANY CONSEQUENTIAL, INCIDENTAL OR INDIRECT DAMAGES, OR FOR ANY LOSS OF PROFIT,REVENUE, DATA, COMPUTER PROGRAMS, OR OTHER ASSETS, EVEN IF ADVISED OF THE POSSIBILITY THEREOF.4.This Report does not constitute an endorsement, recommendation or guarantee of any of the products (hardware or software) tested or the hardware andsoftware used in testing the products. The testing does not guarantee that there are no errors or defects in the products, or that the products will meet yourexpectations, requirements, needs or specifications, or that they will operate without interruption.5.This Report does not imply any endorsement, sponsorship, affiliation or verification by or with any companies mentioned in this report.6.All trademarks, service marks, and trade names used in this Report are the trademarks, service marks, and trade names of their respective owners, and noendorsement of, sponsorship of, affiliation with, or involvement in, any of the testing, this Report or Broadband-Testing is implied, nor should it be inferred. Broadband-Testing 1995-2007
Zeus ZXTM Virtual Mode – Microsoft Virtual Server ReportTABLE OF CONTENTSEXECUTIVE SUMMARY: ZXTM – THE NEXT STEP - VIRTUALISATION. 1INTRODUCTION: WHAT IS ZXTM? . 2WHAT IS VIRTUALISATION? . 3Partitioning . 3Isolation . 3Encapsulation . 3ZXTM PUT TO THE TEST IN A VIRTUALISED ENVIRONMENT . 4Testbed Details . 4Test: Requests Per Second (RPS) At Layer 4 And Layer 7 . 5Test: SSL Performance. 6Test: Cache Performance . 7SUMMARY AND CONCLUSIONS . 8APPENDIX: MORE TESTBED DETAILS. 9TABLE OF FIGURESFigure 1 – ZXTM Within The Backend Network .2Figure 2 – ZXTM As A Virtual Application .3Figure 3 – Our Testbed For The Virtualisation Testing .4Figure 4 – RPS At Layer 4/7 .5Figure 5 – SSL Conns Per Second – ID Reuse 0/10 .6Figure 6 – Cache Performance .7Figure 7 – Spirent Avalanche 2500 .9Figure 8 – Creating A Spirent Avalanche Test.10 Broadband-Testing 1995-2007 iii
Zeus ZXTM Virtual Mode – Microsoft Virtual Server ReportBROADBAND-TESTINGBroadband-Testing is Europe’s foremost independent network testing facility and consultancyorganisation for broadband and network infrastructure products.Based in the south of France, Broadband-Testing offers extensive labs, demo and conferencefacilities. From this base, Broadband-Testing provides a range of specialist IT, networking anddevelopment services to vendors and end-user organisations throughout Europe, SEAP and theUnited States.Broadband-Testing is an associate of the following:NSS Network Testing Laboratories (specialising in security product testing)Broadband Vantage (broadband consultancy group)Limbo Creatives (bespoke software development)Broadband-Testing Laboratories are available to vendors and end-users for fully independenttesting of networking, communications and security hardware and software.Broadband-Testing Laboratories operates an Approval scheme which enables products to beshort-listed for purchase by end-users, based on their successful approval.Output from the labs, including detailed research reports, articles and white papers on the latestnetwork-related technologies, are made available free of charge on our web site atHTTP://www.broadband-testing.co.ukThe conference centre in Moux in the south of France is the ideal location for sales training,general seminars and product launches, and Broadband-Testing can also provide technical writingservices for sales, marketing and technical documentation, as well as documentation and testhouse facilities for product development.Broadband-Testing Consultancy Services offers a range of network consultancy servicesincluding network design, strategy planning, Internet connectivity and product developmentassistance.iv Broadband-Testing 1995-2007
Zeus ZXTM Virtual Mode – Microsoft Virtual Server ReportEXECUTIVE SUMMARY: ZXTM – THE NEXT STEP VIRTUALISATIONTo date with Zeus, we have proved that ZXTM:-Outperforms any other Layer 7 traffic management product on the market interms of price:performance and sometimes in terms of performance at anyprice.-Scales perfectly; every time another appliance is added, performance increasesaccordingly, as well as adding extra resilience in each instance. So redundancycomes free -Is capable of performing highly complex Layer 7 operations at multi-gigabitspeeds.-Is able to dramatically improve the performance of enterprise applications andapplication servers, such as BEA WebLogic and Apache Web Serverrespectively.In all of the above cases, ZXTM was running as a hardware appliance, but Zeus alsoprovides its own software in a form that can be run on a Virtual Appliance.This report investigates how ZXTM performs when running in a virtualised environment.Our chosen platform is Microsoft's Virtual Server.Our key findings show that:ZXTM installs and runs in an MS VS environment with a minimum ofdeployment time and zero additional training or support requirements.ZXTM performance in a virtual environment is more than satisfactory andcapable of supporting complex Layer 7 applications and transactions.ZXTM performance in the MS VS environment was very usable but it isimportant to point out, even so, that Microsoft's Virtual Server onlysupports one CPU, so was not currently able to take full advantage of ourtest appliance, which was dual-processor based, as is standard for ZeusZXTM appliances.We proved that it is entirely possible to run ZXTM in a virtualisedenvironment alongside other applications on the same server. So where outand out performance is less of an issue than data management andmanipulation, ZXTM can be a very cost-effective add-on to an existingapplication server environment.The Microsoft solution was stable – we ran extended tests to prove this.The forthcoming releases of MS Virtual Server technology (it will support64-bit guests and multiple-CPU configurations) should help increaseperformance significantly.Both in terms of pure performance and flexibility ZXTM effectively rubberstamps the use of a virtualised environment. Broadband-Testing 1995-2007 1
Zeus ZXTM Virtual Mode – Microsoft Virtual Server ReportINTRODUCTION: WHAT IS ZXTM?ZXTM from Zeus Technology operates at both Layer 4 (L4) load-balancing and Layer 7(L7) intelligent traffic management levels and it is Ethernet-based but it is not a switch,or really any kind of “Ethernet device” per se, but effectively a server-based networkappliance which is sold as software or an appliance. It therefore typically sits in front ofthe server farm, behind the Internet gateway, from where it conducts traffic managementin a wide number of different ways, none of which simply involve throwing raw bandwidthat it.Figure 1 – ZXTM Within The Backend NetworkBeing an appliance, rather than a switch, means ZXTM works on a simple gatewayprinciple – one way in, one way out (though in practise this is likely to be multiple GigabitNIC connections) sharing Gigabit Ethernet switch capacity with the server farm. With itsmulti-faceted redundancy configurations, it also means that huge clusters of distributedZXTM devices can be created offering both extreme levels of performance and extremelevels of resilience). It can also run in a virtualised environment, as tested here withMicrosoft Virtual Server. ZXTMs feature set is extensive, covering intelligent loadbalancing and every aspect of L7 traffic management: throughput, compression, datamanipulation, security – such as DoS protection – server and application optimisation,migration tools One excellent example of this attention to detail lies in ZXTMsTrafficScript feature for deep packet inspection and manipulation. This is quite simplythe most comprehensive, rules-based methodology for traffic control available onanything we’ve seen.So what ZXTM is all about is not throwing more bandwidth at the problem but, instead,throwing intelligence at it. Never mind the width, feel the quality as you might say 2 Broadband-Testing 1995-2007
Zeus ZXTM Virtual Mode – Microsoft Virtual Server ReportWHAT IS VIRTUALISATION?Virtualisation decouples the physical hardware from the operating system with a view toproducing a more efficient and flexible operating environment. It allows multiple virtualmachines to run in isolation, side-by-side on the same physical machine. Each virtualmachine has its own set of virtual hardware (e.g., RAM, CPU, NIC, etc.) upon which anoperating system and applications are loaded. The operating system therefore sees anormal, working environment, regardless of the actual physical hardware components.Some of the key benefits of virtualisation are summarised as follows:PartitioningMultiple applications and operating systems can be supported within asingle physical system.Servers can be consolidated into virtual machines on either a scale-up orscale-out architecture.Computing resources are treated as a uniform pool to be allocated tovirtual machines in a controlled manner.IsolationVirtual machines are completely isolated from the host machine and othervirtual machines. If a virtual machine crashes, all others are unaffected.Data does not leak across virtual machines and applications can onlycommunicate over configured network connections.EncapsulationComplete virtual machine environment is saved as a single file, so it is easyto back up, move and copy.Standardised, virtualised hardware is presented to the application guaranteeing compatibility.Figure 2 – ZXTM As A Virtual Application Broadband-Testing 1995-2007 3
Zeus ZXTM Virtual Mode – Microsoft Virtual Server ReportZXTM PUT TO THE TEST IN A VIRTUALISEDENVIRONMENTTestbed DetailsBroadband-Testing created a twin testbed in order to put ZXTM to the test in a virtualisedenvironment, a Microsoft Virtual Server platform.For the testing we were using MS Virtual Server 2005 R2, running on WindowsServer 2003 R2, on a dual AMD Opteron platform, typical of a standard ZXTMappliance environment.Benchmarking wise, we used both Zeus’ BenchBot, Linux-based web client simulators anda testbed based upon Spirent’s Avalanche and Reflector 2700 client and server trafficsimulator appliances (see appendix for more details).Figure 3 – Our Testbed For The Virtualisation TestingAs always, the basis of the testing was not to simply run a series of “white gloves on”technical laboratory tests, but to create as realistic as possible a virtual world for theZXTM, with real web traffic and real-world applications. It was our goal to define tests ina very clear way that use parameters that would be very meaningful to a customer foruse as a sizing-guide in a purchasing decision. It's not uncommon to see a vendor claim"connections per second" by measuring "null connections", or by only measuring the newconnections established (i.e. SYN's per second, not full connections where there is anactual transfer of data) in order to boost metrics. All the tests performed were carryingout real end user transactions, which is why we are able to state that these were realworld conditions. The scenarios we created and tested, were as follows:Requests Per Second (Layer 4 and Layer 7 - http)Maximum SSL Sessions (termination handled by ZXTM)L4/L7 ThroughputCache RPS and Throughput4 Broadband-Testing 1995-2007
Zeus ZXTM Virtual Mode – Microsoft Virtual Server ReportNote: For more reports on ZXTM, please go online to the Broadband-Testing website:www.broadband-testing.co.uk where you will find several reports available to downloadfor free.One important point to make, in terms of analysing these results against previous ZXTMtesting we have carried out, is that – in native form – ZXTM runs as a 64-bit application.However, in virtual mode it is only able to run as a 32-bit application, so there is anobvious potential performance loss point, in addition to the extra overhead involved in thelayered approach that virtualisation creates. It is worth noting again, too, that MS VirtualServer can only utilise a single CPU.Test: Requests Per Second (RPS) At Layer 4 And Layer 7Here we were looking for a measure of how many concurrent connections – effectiveInternet sessions - ZXTM could support during an extended period of user activity. Thisnot only gives us an indication of the scalability – per device – of the ZXTM, but also itsresilience, vital within a virtualised environment. Specifically, we looked to see how manyrequests per second each device was capable of sustaining across a range of file requestsizes. Max requests is with a minimal file size, then we tested again with 2K and 8K filesizes, both common in the real world. We began by testing at Layer 4, then tested atLayer 7, where – based on previous ZXTM tests – we would expect to see someperformance loss compared with the Layer 4 figures but very little as a percentage. WithMS Virtual Server we achieved a maximum of 5660rps at Layer 4 and 4110rps at Layer 7(http requests).L4/7 Requests Per Second6000566050004110358040002850MS VS L43000MS VS L717302000148010000Requests/second2k file requests/second8k file requests/secondFigure 4 – RPS At Layer 4/7 Broadband-Testing 1995-2007 5
Zeus ZXTM Virtual Mode – Microsoft Virtual Server ReportTest: SSL PerformanceAs more and more secure services appear on the Internet, so more and more SSLtransactions will occur. Real-world SSL transaction performance, whether terminating atthe device under test, or then re-encrypting to send the request onto a target server, istherefore increasingly vital. So it is important for a Layer 7 device to offer a high level ofsustainable SSL support – where the device terminates the SSL sessions, rather thanpassing them to the target server. SSL session handling is an absolute killer for serverperformance, so this is a vital function of a Layer 7 traffic management device.For the SSL tests, we ran two separate tests – using the RC4-MD5 cipher - with twodifferent session ID reuse values – this is the number of times an SSL connection isallowed to use the same ID. For reasons of working the test device as hard as possible,our first test allowed a once-only use of an ID. This is the most secure methodology but israrely used in the real world. It is an excellent way of measuring the capabilities of aLayer 7 device under the most trying circumstances however. We also ran a – moretypical – 10-session ID reuse test in order to get something much closer to real worldfigures. Below we see the Connections Per Second figure for the Ms Virtual Serverdeployment reach 397cps. Note that it’s not long ago since dedicated hardware platformsexceeding 800cps SSL performance were deemed as exceptional, so in real world termsthis a very usable performance figure. With session ID re-use set to 10, we see asignificant improvement in SSL transaction performance, with MS Virtual Server max’ingat 3354cps.SSL CPSSID Reuse 0SID Reuse 10335435003000Conns Per Sec2435250020001330150010003975000SSL CPS MaxSSL CPS 2kSSL CPS 8kFigure 5 – SSL Conns Per Second – ID Reuse 0/106 Broadband-Testing 1995-2007
Zeus ZXTM Virtual Mode – Microsoft Virtual Server ReportTest: Cache PerformanceHere we tested the cache performance of ZXTM, both in terms of Requests Per Second(RPS) achieved and throughput generated with the MS Virtual Server deploymentachieving a max of 8470rps while sustaining a throughput rate of 269Mbps.Cache 000.269Cacherequests/secondCache throughput(GBits/sec)Figure 6 – Cache Performance Broadband-Testing 1995-2007 7
Zeus ZXTM Virtual Mode – Microsoft Virtual Server ReportSUMMARY AND CONCLUSIONSWithin the scope of this test we set out to show, primarily, that the ZXTM trafficmanagement application is able to run, and run well, in a virtual environment.Our testing proved that this is indeed the case, subjecting – as we did – ZXTM to lengthyand repeated tests in a Microsoft Virtual Server environment. What this means is thatLayer 7 traffic management solutions can be deployed in an incredibly cost-effective andefficient manner by those users valuing the intelligence and manageability of such adeployment over out and out performance. The Microsoft solution was stable – we ranextended tests to prove this. However, the forthcoming releases of MS Virtual Servertechnology (it will support 64-bit guests and multiple-CPU configurations) should helpincrease performance significantly.In A Nutshell We proved that it is entirely possible to run ZXTM in a virtualised environment alongsideother applications on the same server. So where out and out performance is less of anissue than data management and manipulation, ZXTM can be a very cost-effective add-onto an existing application server environment.8 Broadband-Testing 1995-2007
Zeus ZXTM Virtual Mode – Microsoft Virtual Server ReportAPPENDIX: MORE TESTBED DETAILSInternet architectures are becoming increasingly complex.Whether you're building network equipment or providing a service, you must deliverconsistent performance under all conditions. Until now, capacity assessment at high-loadshas been a costly and complex process. For this reason Spirent Communicationsintroduced the Avalanche and Reflector appliances to assist with the challenge. AtBroadband-Testing we have taken these web application simulation and planning productsand integrated them into our test-bed simulating real-life Internet conditions; those thatthe average user experiences daily.Figure 7 – Spirent Avalanche 2500Avalanche is described by Spirent as a capacity assessment product that challenges anycomputing infrastructure or network device to stand up to the real-world load andcomplexity of the Internet or intranets The system determines the architecturaleffectiveness, points of failure, and the performance capabilities of a network or system.Using Avalanche to generate Internet user traffic and Reflector to emulate large clustersof data servers, you can simulate even the world's largest customer environments. Thesystem provides invaluable information about a site's architectural effectiveness, points offailure, modes of performance degradation, robustness under critical load, and potentialperformance bottlenecks. It is able to set up, transfer data over, and tear downconnections at very high rates - all while handling cookies, IP masquerading for largenumbers of addresses, and traversing tens of thousands of URLs.Avalanche initiates and maintains more than a million concurrent connections, eachappearing to come from a different IP address. This allows realistic and accurate capacityassessment of routers, firewalls, load-balancing switches, and Web, application, anddatabase servers. It helps identify potential bottlenecks from the router connection all theway to the database. This accuracy is especially critical for gauging Layer 4-7performance. The ability to additionally simulate error conditions such as HTTP aborts,packet loss, and TCP/IP stack idiosyncrasies can help anticipate-and avoid-significant andpreviously unknown impacts on performance. Broadband-Testing 1995-2007 9
Zeus ZXTM Virtual Mode – Microsoft Virtual Server ReportTo enable more accurate load simulations across multi-tiered Web site architectures, thesystem also supports extremely realistic user modelling behaviours such as think times,click stream, and HTTP aborts that cause Web servers to terminate connections whileback-end application servers continue to process requests. Configuring in this way issimple as both Avalanche and Reflector directly from a desktop browser to set up tests,review feedback in real time, and easily reconfigure test parameters.Figure 8 – Creating A Spirent Avalanche TestThe Avalanche also supports browser cookies, html forms, HTTP posts, and SSLencrypted traffic. The system therefore gives you the flexibility to specify data sourcesand mix and match data sets to recreate accurate user behaviour at very highperformance levels.It also simulates SSL loads that can stress the world's most sophisticated secure ecommerce platforms. It also includes configurable cipher suites that enable you toemulate different types of browsers. Avalanche includes a high-accuracy delay factor thatmimics latencies in users' connections by simulating the long-lived connections that tie upnetworking resources. Long-lived, slow links can have a far more detrimental effect onperformance than a large number of short-lived connections, so this approach deliversmore realistic test results.While Avalanche focuses on the client activity, Reflector realistically simulates thebehaviour of large Web, application, and data server environments. Combined withAvalanche it therefore provides a total solution for recreating the world's largest serverenvironments.10 Broadband-Testing 1995-2007
Zeus ZXTM Virtual Mode – Microsoft Virtual Server ReportBy generating accurate and consistent HTTP responses to Avalanche's high volume ofrealistic Internet user requests, Reflector tests to capacity any equipment or network youconnect between the two systems. Its protocol-level accuracy helps you assure thestability and performance of switches, routers, load balancers, firewalls, caches, andother Layer 4-7 devices. The system is ideal for helping infrastructure service providersvalidate, enforce, and maintain service level agreements (SLAs). Broadband-Testing 1995-2007 11
ZXTM from Zeus Technology operates at both Layer 4 (L4) load-balancing and Layer 7 (L7) intelligent traffic management levels and it is Ethernet-based but it is not a switch, or really any kind of "Ethernet device" per se, but effectively a server-based network
With ZXTM, Zeus is looking to enter the Layer 7 traffic management market in a different way to that taken by the players to date. Zeus has forcedly - and correctly - come to the Layer 7 market from an intelligent software perspective, and at a very compelling price:performance point. Intelligent traffic management is what ZXTM is all about.
Zeus Traffic Manager's built-in RTP proxy can be used to manage and make fault-tolerant both the SIP and RTP traffic in an environment where all clients are local: Using Zeus Traffic Manager's built-in RTP proxy when all clients are local In more complex environments, a specialized RTP proxy is required. I NV I T E m a ry @ e xa m p le . c om
Zeus Traffic Manager can manage the client connections on behalf of Apache. In this case, the Apache server behaves as if it were communicating on a fast, low-latency network. Zeus Traffic Manager can give consistent performance and can eliminate the latency effects that cause poor performance in Apache.
Load Balancing systems have found greater usage in a number of our day to day things [7]. Some of the few examples are: DNS (Domain Name Server), ZXTM LB (Zeus Extensible Traffic Manager Load Balancer) and AMAZON Load Balancing. These provide effective load
ZEUS — MAIN FEATURES 10 Most widespread online banking trojan out there ZeuS tracks which keys the user presses — virtual or physical (keyloging, screenshooting) ZeuS uses web injections — Man in the Browser attacks ZeuS is capable of bypassing the most advanced bank security system, bypassing 2-factor authentication systems
/ How-Tos / OS X / Remove "ZEUS Virus Detected" Mac warning from Safari, Chrome and Firefox HOW-TOS Remove "ZEUS Virus Detected" Mac warning from Safari, Chrome and Firefox John Dee November 12, 2019 22.6K Views Get rid of Zeus virus alert hoax on Mac, which is caused by malicious code hijacking Safari and other browsers in order
Literature on "Zeus Heat Shrink Tubing of Teflon, Zeus (22) Filed: May 10, 2000 Literature on "Zeus Family of Fluoropolymers', Zeus Indus 9 trial Products, Inc., Catalog p. 4. Related U.S. Application Data (74) Attorney, Agent, or Firm-Kriegsman & Kriegsman
2 AUDITING ARTIFICIAL INTELLIGENCE CONTENTS 4 Potential Impact of Artificial Intelligence on Organizations 4 Why Should Auditors Care About AI? 4 / Challenges for the Auditor 6 / Mapping COBIT to Strategy: A Visual Representation of How to Apply COBIT 2019 in the Auditing of AI 8 / Challenges and Solutions for the AI Auditor 9 Conclusion 10 Resources and References for Auditing AI 12 .
