F5 Distributed Cloud

Services
PRESENTER
TITLE
DATE
 Fundamental shift in how apps are designed & deployed

Microservices-based Apps

Monolithic Apps

Multi-cloud and Edge Computing

One Cloud Provider

API-based Communication
IP
Network-based
Communication HTTP
HTTP

​ 2 © 2022 F5
 Application delivery is changing
CDNs Cloud Distributed Cloud
Scale out static object serving Scale out app servers Scale and connect everything

Origin Site Origin Site Cloud Origin Site(s) Cloud(s)

Data Center Hybrid Cloud Multi-Cloud Distributed Cloud

​ 3 © 2022 F5
 Technical challenges
of delivering apps APPDEV DEVOPS NETOPS SECOPS

#1 Complex coordination because of

technology inconsistencies between
teams and across environments

#2 Automation challenge ”stitching”

multiple environments, layering net,
security, and apps, at scale
APPLICATION SECURITY APPLICATION SECURITY APPLICATION SECURITY
Web app Secure Denial of Anti-fraud Web app Secure Denial of Anti-fraud Web app Secure Denial of Anti-fraud
firewall access service & anti-bot firewall access service & anti-bot firewall access service & anti-bot

App/web Ingress API Load App/web Ingress API Load App/web Ingress API Load
#3 Security difficulties due to server controller gateway balancer server controller gateway balancer server controller gateway balancer

multiple different attack surfaces APPLICATION DELIVERY APPLICATION DELIVERY APPLICATION DELIVERY

and sophistication of bad actors

On-prem / Private Clouds Public Clouds Edge
Legacy & Modern Apps Legacy & Modern Apps Modern / Distributed Apps

#4 Limited observability of silo’d

telemetry trapped in disjointed
systems & environments

End-user
Experience
​ 4 © 2022 F5
 Distributed Cloud Services
for Modern App Delivery APPDEV DEVOPS NETOPS SECOPS

#1 Collaborate across teams with a APPLICATION SECURITY POLICIES

centralized SaaS console to simplify Web app Secure Denial of Anti-fraud

Application and
Infrastructure insights
planning and streamline execution
firewall access service & anti-bot

App/web Ingress API Load

server controller gateway balancer
Unified SaaS Console
#2 Automate network configs and APPLICATION DELIVERY CONFIGURATIONS for all Stakeholders
security deployment to reduce effort, SaaS
errors, and gaps in coverage

#3 Advanced security filters out TELEMETRY TELEMETRY TELEMETRY

bad traffic before it hits customer

networks, stays up to date
On-prem / Private Clouds Public Clouds Edge
Legacy & Modern Apps Legacy & Modern Apps Modern / Distributed Apps

#4 Full stack observability of

network, security, and application
performance, cloud-agnostic and
exportable

End-user
Experience
​ 5 © 2022 F5
 Distributed Cloud Services Use Cases
Networking:
Hybrid and Multi-cloud
Uniform multi- and hybrid- cloud
connectivity for workloads deployed
across clouds
• Multi-cloud transit
• Multi-cloud load balancing
• Multi-cluster app mesh
• Global high-speed high-capacity
backbone network
​ 6 © 2022 F5
Security:
Web App and API Protection
API security, WAF, DDoS protection,
firewall, bot defense, anomaly
detection
• Streamline multi-cloud security
orchestration
• Manage and secure APIs
• Reduce fraud and abuse
• Simplify security to aid app
development
Application Delivery:
Cloud and Edge
Run microservice-based apps
wherever you require, globally, in the
cloud, data center, or the edge
• Secure Kubernetes gateway
• Managed Kubernetes
• Edge infrastructure &
application management
• Distributed apps
 Key Building Blocks
Understanding the Critical Components

Networking App Security App Development & Delivery

Router Firewall ADC WAF API security DDoS Mitigation K8s Compute K8s Cluster Service
(Layer 7) Platform Management Discovery

DDoS Mitigation API Gateway Firewall Bot Defense Identity Secrets

(Layer 3-4) Management

Kubernetes Platform Services

Distributed Networking and Security Services
for Distributed Applications

Distributed Cloud Console

Visibility and Centralized Artificial Intelligence/
SaaS-based centralized console managing Analytics Operations Advanced Insights
application lifecycle and visibility

​ 7 © 2022 F5
 A Distributed Node Architecture
Flexible deployment options across cloud and edge sites

Distributed Cloud Mesh Distributed Cloud App Stack

Distributed
Fraud
API Bot Application
& Abuse
Gateway Defense [Fleet]
ADC
Load Anomaly
Identity
balancer detection

Cloud IaC API App Secrets

Controller Security Service Control
Security Mgmt.

Service
VPN WAF
Discovery

Cluster
Router SDN Firewall Management
Network
Security
DDoS Compute
BGP Platform
Mitigation

Integrated High Performance Networking

Simplified Application Infrastructure Stack
and Advanced Security Stack [L3-L7]

​ 8 © 2022 F5
 Linking everything together
Building an Application Edge
Site Token

Key

Customer
Edge (CE)
End Users | Clients |
Admin | SecOps | Regional
Consumers | Constituents Edge (RE)
NetOps | DevOps

F5 Global Network
Click to add
[Private text
Backbone]

Private cloud
www.mywebsite.com

Headquarters

Global
External
Internal
Site 1 Site N

Edge Deployments Public Cloud Networks

​ 9 © 2022 F5
 Delivered Across F5’s Global Private Network

12+ Tbps capacity Multi-Tbps private backbone Dedicated connectivity

(Tier-1 Carriers: NTT, Telia, Level3) (Zayo, Telia, CenturyLink) (Cloud providers, SaaS providers)

​ 10 © 2022 F5
 Providing value across DevOps, SecOps & NetOps
Accelerate app deliver and reduce operational complexity

Simpler, more agile operations End-to-end visibility and

via easy-to-use SaaS services policy enforcement

More effective for modern, Lower TCO with SaaS model,

distributed apps and multi-cloud multiple services, unified
management

​ 11 © 2022 F5
 Security and Multi-Cloud Networking
Industry: Online Gaming & Poker
​B2C GAMING CUSTOMER
​Private data center was under a DDoS attack that
was impacting business, and they needed a quick
solution to resolve the attack.
​MULTI-CLOUD ADOPTION
​After the attack had been mitigated, they realized they
needed to think more critically about security and
redundancy – how they would prevent such events in
the future with back-up/duplication of key business
functions.
​SOLUTION
Following the initial engagement, they expanded use
of the platform and our global private backbone. We
worked with them to migrate to the cloud, expand out
of their private DC, consolidate network services,
WAF and security capabilities to support this
transition.
​ 12 © 2022 F5
​ROBUST SECURITY, SIMPLIFIED
CLOUD MIGRATION AND
IMPROVED RESILIENCY
​OUTCOMES
F5 Distributed Cloud Services allowed
this customer to seamlessly move to the
cloud, increase scale and resiliency
while improving collaboration across
teams, simplifying operations and
enhancing their security posture:
• Increased collaboration across siloed
technical functions
• End-to-end security – reduced risk
across multiple environments
3-5
• Vendor consolidation - replaced
between 3-5 vendors
VENDORS REPLACED
 Security and Multi-Cloud Networking ​DISTRIBUTED APP DELIVERY TO
Industry: Information Technology & Electronics THE CUSTOMER EDGE, AND
CLOSER TO THE INTERACTION

​ELECTRONICS CUSTOMER ​OUTCOMES

​Large Japanese electronics manufacturer needed
a solution to support their digital signage and
public surveillance applications.
​SCALABLE DELIVERY OF APPS
​Building a solution in-house to accommodate the
deployment and operation of applications across
thousands of device locations proved to be costly
and complicated.
F5 Distributed Cloud Services allowed
this customer to simplify the operations
of distributed apps across a large
network:
• Simplified operations
• End-to-end security and telemetry
• Increased agility and time to service

​SOLUTION
F5 Distributed Cloud Services was deployed as a
lightweight network across their edge locations to
54K
EDGE DEVICE LOCATIONS
simplify security, app delivery and lifecycle
management for applications across a large
distributed edge environment.

​ 13 © 2022 F5
 ...The [F5 Distributed Cloud Platform]
has demonstrated that it solves critical
operational challenges within existing
telco service offerings, increasing
#5 Global Telco
$92B Annual Revenues operator efficiency and revenue
streams...”
- Keiichi Makizono, SVP & CIO

​ 14 © 2022 F5
 We have worked very closely with [F5] to
maximize our resiliency and security,
as well as our user experience, and
have been able to build a complete
#2 French Ecommerce application delivery network and several
$3.6B Annual Revenues
security tools with their Distributed
Cloud Platform

- Romain Broussard, IT Director

​ 15 © 2022 F5