Gamers are vocal about their displeasure when games are slow to download. Worse yet, if a game is unavailable due to too much traffic or a DDoS attack, gamers are, rightly so, incensed. And, if you have customers in China, Japan, Korea or Russia, performance can suffer due to distance induced latency. Find out how to protect your applications while ensuring fast downloads with dynamic web acceleration and DDoS mitigation. A dynamic content acceleration network not only ensures fast application downloads, but also accommodates peaks in traffic during a game launch. DDoS mitigation offloads attacks to special sponge PoPs, so your customers are not affected.
Takeaway
In this session you will learn how to speed up and secure your gaming application throughout the world, including in China, Japan, Korea and Russia. Your gamers will thank you.
ENSURING FAST AND SECURE GAMING APPLICATION DOWNLOADS GLOBALLY
1. CDNETWORKS.COM
“Ensuring Fast and Secure Gaming
Application Downloads Globally”
Presented by John McIlwain, Director of Products, CDNetworks
2. GAME DOWNLOAD PERFORMANCE WAS THE TITLE
EXPANDED INTO ALL TYPES OF CONTENT
FOCUSING ON THE NETWORK LAYER
QUICK REVIEW ON HOSTING
INTERNET CHALLENGES
DIFFERENT TYPES OF CONTENT & DELIVERY
ACCELERATION
SECURITY
I WILL TALK ABOUT
CDNETWORKS.COM
3. Cloud Hosting is becoming the norm
On-demand scalability
Easily expand into new markets
OpEx vs CapEx
Of course traditional hosting is not going away
Learning from the “cloud approach”
Hybrid can be good
• Fixed vs variable costs
Need to augment your Network strategy
Hosting
CDNETWORKS.COM
4. Need to Scale Your Network Also
CDNETWORKS.COM
125
780
Don’t want to get
attacked here
5. Gaming is a favorite target of attackers
Lots of money spent
Lots of time lost
Big or small, everyone is at risk
Let’s talk about the network layer
What About Attacks?
CDNETWORKS.COM
7. CDNETWORKS.COM
PoP 3
PoP 2
PoP 1
Tier 3 Networks
(Multi-homed ISP)
IXC
Tier 1 Networks
Tier 3 Networks
(single homed ISP)
Tier 2 ISPs
Global Network
Providers
Internet Users
Broadband
Providers
Tier 2 Networks
Regional
ISPs,
University
Networks
Transit
Transit
Transit
Transit
Peering
THE GLOBAL INTERNET IS COMPLEX
8. INTERNET RTT LATENCY
DISTANCE
SPEED OF LIGHT
70 ms
150 ms
LONDON
NEW YORK
500 ms SHANGHAI
GLOBAL INTERNET CHALLENGES
CDNETWORKS.COM
SAN FRANCISCO
9. GLOBAL INTERNET CHALLENGES
NETWORK PROBLEMS
NETWORK OF NETWORKS BOTTLENECKS
PACKET LOSS
CONGESTION
RETRANSMISSION
CDNETWORKS.COM
SAN FRANCISCO
USER
10. MULTIPLE RTTs FOR CONNECTION NEGOTIATION
GLOBAL INTERNET CHALLENGES
INEFFICIENT PROTOCOLS / RTT MULTIPLIER
•CHATTY PROTOCOL
•TCP SLOW START
•TENS OF BACK & FORTH ROUND TRIPS
•30-50 RTTs FOR ONLY 1 PAGE
•CONNECTION LOAD AT ORIGIN
CDNETWORKS.COM
SAN FRANCISCO
FILE
USER
16. TCP is connection oriented
TCP handles most communication problems
(at the cost of possible large delays)
You need to create data format rules
Has sequence and acknowledgements
TCP
CDNETWORKS.COM
http://www.ni.com/white-paper/6723/en/
17. UDP is a connectionless service
You must handle communication problems
But, you have control
You must decide on timeout issues
But, you have control
UDP
CDNETWORKS.COM
http://www.ni.com/white-paper/6723/en/
23. DYNAMIC REPLICATION
GENERALLY CANNOT CACHE/REPLICATE REAL-TIME DATA
NEED TO DETERMINE CONSISTENCY REQUIREMENTS
THEN DESIGN ORIGIN ARCHITECTURE TO SUPPORT
CDNETWORKS.COM
24. REPLICATION – DYNAMIC CONTENT
CONSISTENCY QUESTIONS
HOW MANY HITS ON MY WEB PAGE?
CLOSE ENOUGH IS OK
HOW MANY PEOPLE VIEWED MY LINKEDIN PROFILE?
UPDATED HOURLY IS OK
I WANT TO BUY SEAT 11B ON AN AIRPLANE?
CAN ONLY SELL SEAT 11B ONE TIME
PROBLEMS IF SOLD MORE THAN ONCE
CDNETWORKS.COM
25. REPLICATION – DYNAMIC CONTENT
CONSISTENCY APPROACHES
WEAK
BEST EFFORT
ACCEPTABLE FOR SOME LOST DATA
EXAMPLE: VOIP or WEB PAGE COUNTER
EVENTUAL
DATA OFTEN PUT IN “WORK QUEUE”
EXAMPLE: PROFILE VIEWS
STRONG
RELATIONAL DATABASES
USE TRANSACTIONS
WAITS FOR CONFIRMATION
EXAMPLE: SEAT 11B
CDNETWORKS.COM
26. REPLICATION – DYNAMIC CONTENT
DATACENTER IMPACT:
WHAT ABOUT SINGLE DATACENTER?
WEAK, EVENTUAL, STRONG:
EASY, BUT SPOF
SPEED & RELIABILITY EXCELLENT
WHAT ABOUT MULTI DATACENTER?
WEAK, EVENTUAL:
RELATIVELY EASY, HARDER THAN SINGLE DATACENTER THOUGH…
STRONG
MUCH MORE DIFFICULT
THINK BANK TRANSACTION
CDNETWORKS.COM
27. Source: http://www.cs.usfca.edu/~srollins/courses/cs682-s08/web/notes/transactions.html
REPLICATION – DYNAMIC CONTENT
OPTIONS FOR MULTI-DATACENTER
DON’T
JUST BUILD AS RELIABLE OF A SINGLE DATACENTER SOLUTION AS YOU
CAN
2+ DATACENTERS - GOOD
MASTER/REPLICA, MULTI-MASTER
GENERALLY NOT STRONG CONSISTENCY (TERMS VARY)
MIGHT LOSE SOME ACTIVE AND VERY RECENT DATA
2+ DATACENTERS - EXCELLENT
2 PHASE COMMIT/PAXOS
THINK OF BANKING & SEAT 11B
CDNETWORKS.COM
28. REPLICATION – DYNAMIC CONENT
Single Origin
3 Datacenters
CDN (CDNetworks)
ASSUME YOU HAVE A 2 OR 3 DATACENTER SOLUTION
Is it as fast as you need?
CDNETWORKS.COM
30. THESE ARE SOME COMMON TECHNIQUES
DIFFERENT CDNs USE DIFFERENT TECHNIQUES
MOST CDNs DO NOT SHARE TECHNIQUES
BOTTOM LINE – PERFORMANCE RESULTS MATTER!
DISCLAIMER: DYNAMIC ACCELERATION
CDNETWORKS.COM
MEASURE ALL THE THINGS
31. TCP CAN BE VERY SLOW
http://asperasoft.com/technology/transport/fasp/#tcp-464
32. DYNAMIC CONTENT
NO: CACHING, COMPRESSION,
CONN. POOLING OR KEEP ALIVE
DWA EDGE
WITH: COMPRESSION,
CONN. POOLING AND KEEP ALIVE
CONTINUOUS CONNECTIONS BETWEEN EDGE & SHIELD; & SHIELD + ORIGIN REDUCE
ROUND TRIPS FOR TCP OPEN & CLOSE CONNECTION
DWA SHIELD
PERSISTANTCONNECTIONS
ORIGINORIGIN
FILEPARTSNOTCOMPRESSED
CDNETWORKS.COM
33. TLS/SSL OFFLOAD
NO: SSL OFFLOADING
DWA EDGE
WITH: SSL OFFLOAD
EDGE SERVER WITH SSL CERTIFICATION ENCRYPTS & DECRYPTS ON IT’S
OWN TO REDUCE ORIGIN LOAD
ORIGIN ORIGIN
CDNETWORKS.COM
37. OPTIMALLY TUNED TCP LINKS
LONGRESPONSETIME
HIGH LATENCY
DWA Edge
LOW LATENCY
WITH LARGE WINDOWS, FAST RETRANSMIT, FINE GRAINED RETRANSMISSION TIMEOUTS
AND FAST RECOVERY
DWA Shield
LOW LATENCY
ORIGIN
CDNETWORKS.COM
48. Test all options
Usually Download is different than Upload
Upload as close as possible
Aspera or other client/server options
TCP (HTTP/S)
Need to add smarts
Non-TCP
UDP and other options
LARGE FILE OPTIONS
CDNETWORKS.COM
49. CDN BEST PRACTICES
DETERMINE DOMAINS: STATIC, DYNAMIC, & PROTOCOL NEEDS
GLOBAL CUSTOMERS = GLOBAL CDN & GLOBAL DNS
HAVE (at least) PRIMARY & BACKUP ORIGINS
SET TTL HEADERS ON STATIC CONTENT & DNS
CDNS CAN ACCELERATE (FIRST/LAST/MIDDLE MILE)
CDNS CAN INCREASE ROUTING RELIABILITY
CONSIDER UDP IF YOUR APP ONLY NEEDS MINIMIAL “TCP” STUFF
CDNS SEND EXTRA HEADERS, USE IF DESIRED
USE APIs FOR CDN AUTOMATION & MONITORING
TEST EVERTHGING: BACKBONE, LAST-MILE, REAL-USE
CDNETWORKS.COM
50. CDNS CAN OVERRIDE (HTTP/S)
SOME CDNS CAN RUN “RULES” AT EDGE
OVERRIDE MARKETING TEAM
IMMEDIATE EFFECT
REWRITE URL
SEND REQUESTS FROM “1.JPG” TO “OLD/1.JPG”
REDIRECT URL (301/302)
“http” to “https”
OVERRIDE HEADER
CACHE-CONTROL: MAX-AGE
CACHE-CONTROL: NO-STORE
CDNETWORKS.COM
51. CDNS CAN OVERRIDE (HTTP/S)
CONTENT VARIATION
USE CORRECT index.html BASED ON COOKIE OR GEO LOCATION
REFERRER CHECKING
BLACK/WHITE LIST
GEO CONTROL
ALLOW/DENY CONTENT BASED ON GEOGRAPHY
ORIGIN REQUEST HEADERS
PASS
ORIGIN FAILURE
SET BACKUP
DELIVER STALE CONTENT
RETURN 503 (REDUCE ORIGIN LOAD)
CDNETWORKS.COM