Enhanced VPN Service - National Communications Group

Transcript Enhanced VPN Service - National Communications Group

AT&T Enhanced VPN

Presenter: Sam Levine-866-624-2008 x111

The world’s networking company SM

Agenda

   IP Networking Presents Choices AT&T’s Network-based IP VPN Connectivity        The AT&T Network • AT&T Global Network (AGN)  AT&T Enhanced VPN Services • Service Features • Benefits • Country Availability • Service Level Agreements (SLAs) - Our Targets • Resiliency Options VoIP Option Class of Service AT&T integrated Global Enterprise Management System (iGEMS) Managed Services Support Centers Web-based Reporting Integrated VPNs - Value Added Services Wrap UP / Q&A © 2005 AT&T, All Rights Reserved.

IP Networking Presents Choices

Network-based IP VPN Integrated VPN VPN is delivered over MPLS-enabled backbone and is built in the network cloud.

Premises-based IP VPN

Storage MPLS VPN AT&T Global MPLS Network Network Based Firewall Web / App Server Internet

Data Center Branch Office Remote Offices and Workers Suppliers/Distributors Remote Workers Headquarters

VPN is delivered over the Internet, Public IP or Private IP backbone networks, and requires premises devices and utilizes tunneling protocols such as IPSec, Secure Socket Layer (SSL), L2TP and PPTP.

Enterprise networking often demands a combination of VPNs with flexible access of management, continuity choices and enhanced features. These technologies are complementary, not competing.

, levels

AT&T’s Network-based IP VPN Connectivity

Provides a management continuum of customer managed, hybrid and AT&T managed options Remote Access Remote Access Internet LAN Router DSU LAN Router DSU PE NB FW VPN GW AT&T Network Local Loop PE DSU Router DSU Router VPN IP Transport Management VPN with Managed Router and Managed Encryption extends AT&T logical network management to the customer premises Managed Network Application Services extend AT&T logical network management to the customer LAN and applications

LAN LAN

AT&T’s Network-based IP VPN Services

WAN/LAN Mgmt Proactive Management Proactive Monitoring Transport Network Services

AT&T Enhanced VPN Services



Provisioned via AT&T Global Network



AT&T fully managed CPE (DSU / CSU and the router)



Plan, Design, Deploy and Managed End-to-End Environment

  

Enhanced SLAs to the router 24 X 7 Customer Care with Proactive Management Enhanced Web-based Reporting

AT&T IP Enabled Frame Relay / ATM PLUS Service



Provisioned via AT&T Global Network

    

AT&T managed DSU Plan, Design, Deploy and Monitor Environment SLAs to the DSU 24 X 7 Customer Care with Proactive Monitoring DSU Web-based Reporting Monitoring & Management powered by iGEMS

AT&T IP Enabled Frame Relay / ATM Service



Provisioned via AT&T Global Network

    

AT&T Managed Transport only Plan, Design and Deploy environment Network Level SLAs 24 X 7 Customer Care Web-based Reporting A le rt s

  

AT&T MPL Private Network Transport Service



Provisioned via AT&T IP Backbone



Customer Managed or AT&T Managed CPE



Plan, Design and Deploy Environment with proactive management capabilities Network Level SLAs 24 X 7 Customer Care Web-based Reporting Monitoring & Management Choices - Increasing the Value

AT&T Global Enhanced Network

Plus 600+ US POPs

• • • • • •

$300M Investment Fully Integrated Supports All Services Common Management Platform Global Processes In-country Personnel

Leveraging AT&T’s Global Network Strength



Global MPLS-enabled IP Network at the Core and at the Edge



Industry-leading performance: end-to-end reliability, jitter and latency



Protected by AT&T’s robust Network Disaster Recovery Program



More than 147 countries covered through 7,000+ Remote Access Points

AT&T Enhanced VPN Services

Customer Site D Maint. Modem

Access

Access Line PE Customer Site A CE Customer Site C Access Line Maint. Modem CE Access Line Maint. Modem CE PE • • •

Enterprise Solution Single Virtual Global Network Consistent feature functionality Converged network Access

PE Maint. Modem CE Access Line Customer Site • B • • • •

Ease of Operations Comprehensive network design Project management deployment Edge-to-edge service Intimate Lifecycle Care On-line portal for Visibility

MPLS

AT&T End-to-End Management • • •

Flexible Functions Any to any connectivity Transport independent Classes of Service / Prioritization

• • • •

Performance Resiliency options Availability commitments Latency commitments Responsiveness commitments

Enhanced VPN Supports Your Network

Headquarters

MPLS Core (Traffic Prioritization)

Overseas Offices

Networking

Suppliers

AT&T Global Network

Global Remote Access

End-to-End Business Application View

Remote Workers Branch Office

Increasing levels of management support to meet your needs

Design

   Design Centers of Excellence / Solutions Center  Experienced Engineers and Designers Define Architecture and Topology  Network and Access  Security  Hardware/Software Engineer for Performance and Business Continuity

Deploy

     Creation, Execution & Management of Project Plans Global Procurement & Provisioning  Including access connections Global Configure/Test/Installation Establish & Integrate operational Infrastructure (performance reporting, web reporting access, etc.) Trained Professionals using Proven Processes (3,500 global individuals)

Manage

      Service Management (Proactive, Reactive & Predictive) Single Global Platform ( iGEMS) Performance Management (Network / Application) Service Level, Availability and Performance reporting Global Managed Service Support Centers In-country, in-language help desks © 2005 AT&T, All Rights Reserved.

Service Features

     AT&T Global Network • Globally consistent seamless network • Available in 60+ countries • Access independent • Uniform, Global, MPLS-enabled Any-to-Any connectivity • Using MPLS in core and at the edge Predicatable Performance (QoS) • Multiple Classes of Service supported to accomodate all types of applications Security • MPLS inherent security on par with Frame Relay • Additional optional AT&T Security Services High Performance Network • Industry-leading Service Level Objectives (SLOs) / Service Level Agreements (SLA) • Back-up and Resiliency Options      End-to-End Management • Comprehensive network solution design leveraging AT&T engineering and operational expertise • Project and deployment management utilizing global tool set to develop, document and drive implementations globally • Proactive network management with leading edge iGEMS tool Web-based Reporting • Layer 3 reports (IP level) Simplicity of One Stop Shop • One contract, one price schedule, one servicing model deployment / operation / customer care, one bill Multimedia-enabled • Supports Voice-over-IP and other applications Global Help Desk Support - 24X7 • Regional Helpdesks supporting multiple languages © 2005 AT&T, All Rights Reserved.

Benefits of AT&T Enhanced VPN



Global Coverage -

Provides ease of global implementation among all locations with consistent feature functionality so that each location, no matter where in the world can perform the same tasks. 

Management Continuum

Network facilities, network management and monitoring on a 24x7 basis ensuring network reliability and availability and reduces cost of ownership in network technology, thus improving return on investment within the network.



Cost Efficiencies -

AT&T managed services provide cost savings in the recruiting, training and maintenance of head count. Costs are reduced with a fully meshed network, with no need for large bandwidth and CPE at a Hub site, plus flexibility of bandwidth / CPE can be up- or down-graded for minimal charge. IT budgets are slashed, but return on your communications are up.



One-Stop-Shopping

For global ordering and implementation, with in-country support providing ease of implementation saving time and assuring network productivity and your productivity since you do not need to keep track of many vendors - only AT&T. 

Flexible, Robust Network Architecture -

MPLS-based network architecture provides any-to-any connectivity allowing for a unified connection for intranet, extranet and Internet access for constant communications among all locations without the burden of configuring numerous PVCs allowing for operational and cost efficiencies. 

Simplified Pricing and Packaging

Providing consistent monthly recurring charges for ease of budgeting, accounting, and reconciliation, enabling operational and cost-efficiencies. 

Service Level Agreements -

Available for standard solutions provide assurance that the network will perform as required. Reduced down time keeps productivity up.

Benefits of AT&T Enhanced VPN



Operational Efficiencies

- Divisions working together, information received faster and direct keep organizations working smarter not harder. Project Implementation Managers (PIMs) oversee the implementation of your network and provide you updates, your network is installed faster - your communicating sooner and productivity is increased. Moves, adds, changes and deletes within your network happen faster, keeping your network streamlined. Reconciliation of invoices completed faster because there is only one vendor, one invoice to reconcile. Operational efficiencies that keep your bottom line healthy.



Application awareness

- Allows you to define the priority of different applications and assign the appropriate Class of Service to each application at every location enabling a single network to accurately and consistently prioritize traffic, ensuring the delivery of higher priority traffic ahead of lower priority traffic. 

Superior scalability

- Significant reduction in effort and time to install to add new locations, including the CPE, in a comparable meshed frame relay network allowing the network to change as your company does. 

Flexible access options

- Simplification and flexibility of access options provides you with the ability to connect your remote workers and branch offices to headquarters. 

Increased security

- MPLS provides for greater security through the creation and assignment of unique VRF tables to your individual VPN ensuring secured networking - no one but those your want to get your information. 

Simplified transition

- A simple and efficient way to transition from more traditional data networking to IP-enabled networking or from unmanaged to managed service providing operational and cost efficiencies. © 2005 AT&T, All Rights Reserved.

Country Availability - VoIP Option

Argentina Australia Austria Belgium Brazil Bulgaria Canada Chile China Colombia Croatia Cyprus Czech Republic Denmark Ecuador Estonia Finland France Germany Greece Hong Kong Hungary India Indonesia Ireland Israel Italy Japan Korea (South) Luxembourg Malaysia Mexico Netherlands Neth. Antilles New Zealand Norway Peru Philippines Poland Portugal Romania Russia Singapore Slovak Republic Slovenia Spain Sweden Switzerland Taiwan Thailand United Kingdom USA Venezuela Latvia, Liechtenstein, Lithuania, South Africa, Turkey and Ukraine available via custom bid

Standard Plan SLAs – The Targets

 Time to install • Set by PIM + customer, dependent on country, type router, line speed etc.

 Time to implement SW Change (Move, Add, Change, Delete) • Set by PIM + customer, dependent on complexity of change  Time to implement HW Change (Move, Add, Change, Delete) • Set by PIM + customer, dependent on complexity of change  Site availability • Up to 99.99%, dependent on backup options, country  Site to site latency • Dependent on country endpoints, tail circuit size and CoS  Site to site packet delivery • Dependent on country end points and CoS  Time to restore • Generally 4 hours, dependent on country and backup © 2005 AT&T, All Rights Reserved.

Resiliency Options



Resiliency Options

• Resiliency Option 1: Single Router, Single Access Line and ISDN • Resiliency Option 2: Single Router, Dual Access Line • Resiliency Option 3: Dual Routers, Single Access Line (Optional ISDN) • Resiliency Option 4: Dual Routers, Dual Access Lines © 2005 AT&T, All Rights Reserved.

VoIP Option: Value Added Support for Your Applications

Branch Home Office Key E&M V+D Voice Gateway Router

PSTN VoIP on EVPN

T1/E1 with CAS Voice

P B X

V+D Voice Gateway Router AT&T Management Center

•VoIP Technical Assistance •Centralized dial plan •Internal QoS auto ticketing by the center •Web call detail reports •Calls rated for VoIP quality by NPR customer report © 2005 AT&T, All Rights Reserved.

IP Applications

VoIP ERP Multimedia VPN WWW

Low Latency Low Bandwidth Latency Tolerant Bursty Bandwidth

Non-Uniform Network Traffic demands Traffic Management

How AT&T Achieves Class of Service

By applying several techniques in the customer site router because this is where most of the problems take place ...

Classification Classification of packets into different lists is done in the customer router based on customer requirements Marking Controls the amount of traffic accepted for each class Policing Discards the excess traffic Traffic Shaping Queues the access traffic Fair Queuing Provides minimum bandwidth guarantee to each class. One queue used for each class Congestion mechanism In case of congestion, traffic of the lowest priority class is discarded first

... combined with QoS information from the network core .

Network-based IP VPN Class of Service Structure

Network-based IP VPN Model – Port, CoS template option Port

CoS 1 CoS 2 CoS 3 CoS 4 CoS bandwidth allocation applied at port level

Frame Relay Model – Port, PVC Port PVC

PVC bursting to port speed

Differentiated Classes of Service

Traffic Class CoS 1 CoS 2 CoS 3 CoS 4 Traffic Type Designed to carry real time applications Designed to carry critical business applications Designed to carry standard business applications Designed to carry general business applications Suggested Examples Voice over IP , high speed video Transactional applications, videoconferencing Database applications, commercial business applications File transfer, batch, e-mail, Web browsing and database replication Burst to Port available on Class of Service CDRs (Commited Data Rate)

Seamless Network Management

AT&T‘s agile Global Enterprise Management System (iGEMS) • • • • • •

Converged managed services platform Supports the full range of AT&T Services Reactive, proactive and predictive network and systems management Allows AT&T to deliver application-specific SLAs with end-to-end visibility (only provider in industry to do so) Executes more than 100 different third-party management applications Correlates and pinpoints alarms for faster diagnosis and resolution.

Service Centers at a Glance

Amsterdam, NL Redditch/Vilvoorde/Ehningen Phoenix, AZ Alpharetta, GA Durham/Tampa/Schaumburg Birmingham, UK

• • • • • • • Global Deployment Highly skilled networking professionals 7 X 24 X 365 Support Access to “best in class” technology partners & suppliers Access to the next generation networking professionals through local labor force and universities Integrated Technology Platform Common Processes

Toronto, Canada

Sao Paolo Mitaka/Sydney

Global Managed Services Support Centers

  

(MSSC)

Qualified, Trained Professionals  90% of Tier 2 Techs have one certifications, 24% have 2 or more of the certifications, 11% of the org has 3 or more certifications  Cisco certified: CCNA, CCNP & CCIE  7.5 average years of experience for Tier 2 support Dedicated trained Network Performance Group • High level dedicated Tier 3 Techs with areas of expertise – Strong in-depth SNA expertise • A number of Level 2 teams exist to support the MSSC within AT&T within their areas of expertise: – – – – – – NetTech – Provides logical router, config support and troubleshooting NetPerf – Provides router PD on throughput issues IP Network Ops – Supports the infrastructure for the Network security and access Change Team – Responsible for implementing scheduled changes to customer routers DIALSW – Remote Access end-to-end support LIGSUP2 – Remote Access gateway technical support Real-Time Call and Problem Management Systems • 24-hours-per-day, 7-days-per-week with live call specialists / Technical Support answers the call • On-line Website for Incident Submissions / Updates – Electronically bonded to customer, requiring userid and password – View progress reports on-line © 2005 AT&T, All Rights Reserved.

Global Helpdesk Support

   Managed Data services presently provides Regional helpdesks supporting multiple languages   Network Management 24-hours-per-day, 7-days-per-week Integrated Processes, procedures and tools • Standardized Ticketing Defined escalation process SPOC, Single point of issue ownership / resolution © 2005 AT&T, All Rights Reserved.

AT&T BusinessDirect

-

Personalized Home Page

Alerts!

New Services & Announcements Site Management Current Tools & Messages A single view on all AT&T services Uses iGems technology to underpin multiple different services Secure customized view into your managed infrastructure Service Line specific -

Network Topology Maps; Performance Reporting; Ticketing and Ordering

Standard Web-based Reports

 Monthly Overview Reports • Backbone Measurements – Availability/Latency/Reliability measured around the clock • Site Availability – Average site availability for all attached DTEs for the month • Site to Site Latency by CoS – Average packet delivery measured between qualifying site pairs by CoS  Accessed from iGEMS Global Measurements System • Traffic Usage by CoS – Regular Polling, reporting measurements and exceptions for each CoS per site connection • Traffic Behavior by CoS – Report lists measured CoS distribution compared with contracted rates • CE Statistics – Access Link – Access Method (ATM, Frame Relay) – CE Router Performance – LAN Port • Exception Reports – Measurements compared with thresholds • Forecast Reports – 30/60/90 day projections based on historic data © 2005 AT&T, All Rights Reserved.

Gold Plan Web-based Reports

•    All Standard Level Reports Network operation – Site Availability – Site to Site Response Time by CoS – Site to Site Packet Delivery by CoS Installation and change – On Time Installation of New Site – On Time Physical Change (hardware) – On Time Logical Change (software) Service restoration (available only in the U.S.) © 2005 AT&T, All Rights Reserved.

Integrated Enterprise VPN - Value Added Services

Storage Application Performance Mgmt



Voice over IP / LAN Telephony

 

VPN Remote Access Branch Managed Router Supplier Intrusion Detection MPLS VPN VoIP AT&T Global Network Data Center Ultra-Available Ring Managed Firewall VPN Remote Access Content Hosting Storage Management Security Management



Managed Firewall



Managed Authentication



Intrusion Detection



Anti-Virus Scanning AT&T Internet Data Center Network Based Firewall Internet Customer Transport / Access



Private Line



Frame Relay / ATM



Remote Access Web / App Server Web Site

Customer Scenario Enhanced VPN

Business Challenge

• To rapidly replace the existing FR network by the end of March 2002 • Common network for all divisions with quality of service and to support future services, technologies and requirements • Compliant with existing US network

Company Information

Sara Lee Corporation is a global manufacturer and marketer of high-quality, brand-name products for consumers throughout the world. With headquarters in Chicago, Sara Lee Corporation has operations in 58 countries and markets branded products in more than 180 nations. The corporation employs 141,500 worldwide. In EMEA, Sara Lee operates 4 separate divisions. (http://www.saralee.com)

External Reference

YES

Solution

• 140 sites connected to the AT&T MPLS backbone based on EVPN service. • Four global applications centers connected to MPLS network. • All divisions connected to MPLS backbone.

Client Benefits

• Open and flexible architecture that meets current needs of migration and future evolution. • Meets Sara Lee's functional, operational, global and budgetary requirements. 

Americas

Hundreds of locations connected via fully managed EVPN service • • •

EMEA & Asia/Pacific

Customer Scenario Enhanced VPN

Business Challenge Company Information

• Global expansion created the need for seamless flow of data and other critical information across all locations • Simplifying the frame relay infrastructure of LafargeNet was a strong requisite Lafarge is the world's leading producer of building materials. The Group holds top-ranking positions in each of its four divisions: Cement, Aggregates and Concrete, Roofing, Gypsum. In 2001, Group sales amounted to €13.7 billion. With a workforce of 83,000 people, Lafarge is now present in 75 countries. Lafarge offers all construction industry sectors - from architect to tradesman, from distributor to end user - a comprehensive range of products and solutions for each stage of the building process. (http://www.lafarge.com)

Solution

• Internet Protocol Virtual Private Network (IVPN) connections for remote sites and AT&T Managed Data Network Services (MDNS) and MPLS based services

External Reference

YES

EMEA

(EVPN) for critical appli. & main locations • 50 sites being connected to the Lafarge hub in 26 countries on all 5 continents

Client Benefits



Americas

Lafarge North America largest diversified construction materials company and supplier of    All locations connect to LafargeNet Hub EVPN, MDNS Frame Relay & IVPN services 12 EVPN connections • Worldwide network connectivity • Security policy protecting the LafargeNet against any unwelcome intrusion • High-performance multi-protocol solution  cement, aggregates and concrete in the U.S. and Canada 1 EVPN site in Canada 

Worldwide

Lafarge, a world leader in  

Asia Pacific

Global MDNS Frame Relay Service in Japan, Singapore, Thailand 1 EVPN site in Singapore (EVPN) that supports all kinds of business applications and any to any connectivity • Connectivity solution in countries without a building materials that is active in 75 countries, and employs more than 85,000 people. local AT&T presence with IVPN • Hybrid VPN to meet different specific needs • Flexible billing

AT&T was instrumental simplifying the global infrastructure of Lafarge’s intranet (LafargeNet)

Enhanced VPN Offers End-to-End Management

• •

Experienced Engineering and Operations Personnel

– Network design and consultation – Solutions Centers – Installation and implementation project management globally

Proactive and Predictive Network Management

– Continuous 24x7x365 proactive monitoring with notifications via phone, e-mail or pages – Fault management – Auto detection tools that receive alarms on the network and CPE – Automatic maintenance tickets generated with resolution notification – Enhanced SLAs offering proactive credits •

Responsive to your Networking Needs

– Perform as internal telecommunication / IT Department acting like an extension of your personnel – In-country, in-language technical help desk support •

Historical and Near Real Time Reporting

What the Analysts are Saying

“AT&T is the best in the VPN business …,” demonstrating a “future-proof global VPN architecture,” an extensive breadth of offerings with SLAs to guarantee service IDC rates AT&T top of all US IP VPN managed carriers for market share, performance, and leadership AT&T awarded top ratings of all IP VPN carriers for global reach and leadership in IP VPN functionality AT&T IP VPNs rated “Best in Class” by Telemark based on survey of multi-national corporations

Thank You!!

Back Up Charts

iGEMS Processes: Disciplined Performance Delivery of Predictable



Rigorous Proven Processes

 Application Due Diligence & Stress Testing  Service Level and Configuration Engineering  Project, Change, Capacity, Configuration & Inventory Management  Customer Acceptance Testing  Operational Metrics  Time to Respond  Time to Restore/Repair 

Proactive & Predictive Fault Management

   Availability Monitoring & Management Application Performance Management Quick Fault Isolation & Performance Restoration     Ticketing & Escalations Rapid Root Cause Analysis End-to-End Service Views Performance Analysis & Consulting © 2005 AT&T, All Rights Reserved.

AT&T Network-based IP VPN Remote Access



Firewall DSL Router VPN Gateway Secure Tunnel Internet or AT&T IP Backbone DSL Router VPN GW



AT&T MPLS VPN Routed Connection Regional Office HQ