Cisco Unified Wireless Network Wireless Solution

4/19/2012

1

Cisco Confidential© 2010 Cisco and/or its affiliates. All rights reserved. 1

Cisco Unified Wireless Network Wireless Solution

Edo Rodadi

Systems Engineer Mobility

© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2

• New services-rich controller portfolio for enterprise

• New controller architecture for lean branches

• Secure, high performance network extension to home

Centralized management and control for anywhere access

• Better handle mobile devices and rich media

• Highly scalable mobility services for more customer interaction

• Centrally provision and manage teleworking solutions

• Integrated wireless switch blade for Catalyst 6500 chassis

Cisco Wireless Services Module 2

• 802.11n for smaller enterprise sites

Cisco 2500 Wireless Controller

• Integrated module for ISRG2 routers with the features of 2500

Cisco Wireless Controller on SRE

• Economies of scale for lean branches

Flex 7500 Controller

• 802.11nteleworkingaccess point

Cisco 600 Office Extend Access Point

4/19/2012

2


wIPS Location

ServiceN- Service

Mobility Service Engine

Cisco Prime NCS

WiSM2

5500

2500 Flex 7500WLC on SRE

OfficeExtend

AP 600

AP 1040

AP 1140

AP 3500

AP 1260 AP 3600 1552E/H 1552I/C

Network

Services

NMS

WLC

WLAN AP


Components

Access

Points

• Security Policies

• QoS Policies

• RF Management

• Mobility Management

• Comprehensive

Knowledge of path loss

and SNR of each AP

• MAC Layer Encryption

• Air monitoring

• Each AP is effectively

a remote interface on

the controller

Switch/Routed

Network

Cisco WLAN Controller

Cisco Prime NCS

SNMP v3

Web

Browser

Cisco Mobility

Services

Engine

CAPWAP: Control And Provisioning of Wireless Access Points,

runs over UDP - 5247 Data port, 5246 control port)

SOAP / XML

4/19/2012

3

Wireless LAN Controllers


5500

Scale

Fea

ture

s/P

erf

orm

an

ce

2500

WLC on SRE

WiSM2Campus

Lean

Branch

Flex 7500

4/19/2012

4


WiSM2

MobilityDomain Size

PerformanceUp to 20 GbpsTies in with AP3600

Clients

Maximum # of APsin a Chassis

Number ofAccess Points

Up to 1000

Up to 15,000

Up to 7000

Up to 36,000 APs

Campus tool

Full Service Branches

500 AP - 15.0 (1) SY1000 AP – 15.0(1) SY1

Release WiSM2 Timeframe

12.2(33)SXJ1 7.0.x(500 AP)

Shipping

12.2(33)SXJ2 7.2(1K AP)

Q1CY2012

Release WiSM2 Timeframe

15.0(1) SY 7.0.x(500 AP)

Shipping

15.0(1) SY1 7.2(1KAP)

Q1CY2012

Campus Services- SUP-2T- NAM-3/SAM with SAA- ASA

Mixed mode within same chassis supported: WiSM with 7.0.116.0, WiSM2 with 7.2(or beyond)Price of WiSM2-1K = $167,995

Sup2T Support

Sup720 Support

WiSM NOT supported with Sup2T


5500 WiSM WiSM2

Number of Access Points 12–500 300 100 – 1000

Number of Clients Up to 7000 Up to 10,000 Up to 15,000

Throughput Up to 8 Gbps Up to 8 Gbps Up to 20 Gbps

Concurrent AP Upgrades/Joins

Up to 500 Up to 20 Up to 1000

Network I/O Up to 8, 1 Gbps SFPs Cat6K back plane Cat6K back plane

Mobility Domain Size Up to 36,000 Aps Up to 10,800 APs Up to 36,000 APs

Number of Controllers per Physical Device

1 2 1

Power Consumption 125W 164W 225W

AP Count and Feature Upgrade Via Licensing

Yes No Yes

Encrypted Data Link Between AP and Controller

Yes No Yes

OfficeExtend Solution Yes No Yes

4/19/2012

5


Competitive Differentiation

Best in class performance

Industry leading performance with encryption

Enhanced Operational Savings

Upgrades or fails 500 AP within mins

Enhanced rich media performance

Multiple concurrent low-latency media flows

Recognizing Opportunities

Customer planning to install Greenfield enterprise-grade wireless on campus to enable smartphones, tablets and laptops

Nearing refresh cycle on 4400 series WLCplanning 11a/g to 11n migration

Access Points 12 - 500

Clients 7,000

Form-factor 1 RU

IO Interface 8x 1GE ports, LAG

Upgrade Licenses 25,50,100,250

Power consumption 125W

Cisco 5500 Series Wireless Controller



WAN Tolerance

High Latency Networks

WAN Survivability

Security

802.1x based port authentication

Voice support

Voice CAC

OKC/CCKM


Customer having a large number of branches

Retail Customers

Autonomous AP Customers

Flex 7500 Wireless Controller

Access Points 300 - 3,000

Clients 30,000

Branches 1000

Access Points / Branch 50

Deployment Model FlexConnect

Form Factor 1 RU

IO Interface 2x 10GE

Upgrade Licenses 100, 200, 500, 1K

4/19/2012

6


FlexConnect (H-REAP) Local Mode

Flex 7500 5500/WiSM2 5500/WiSM2

Centralized Mgmt

L3 Mobility

RRM

Rich RF (Clean Air, Client

Link)

Videostream

WMM CAC

CCX CAC

Guest Services

Adaptive WiPS / ELM

Context-Aware

Data DTLS

Teleworker

Mesh

ACL’s


FlexConnect (H-REAP) Local Mode

Flex 7500 5500/WiSM2 5500/WiSM2

AP’s Managed 3,000 500/500 500/500

Clients Supported 30,000 7,000/10,000 7,000/10,000

# of H-REAP Groups 1000 100

AP’s per H-REAP Group 50 25

# of AP Groups 2,000 500 500

AP’s per RRM Group 4,000 1,000 1,000

WLAN’s 512 512 512

WLAN per H-REAP Group 16 16

Rogue AP’s Supported 8,000 2,000 2,000

Rogue Clients Supported 10,000 2,500 2,500

4/19/2012

7



Ability to ‘scale the network as you grow’ with licensing

Part of a PCI certified architecture

Ability to support various deployment modes including local mode and enterprise mesh

2500 Wireless Controller

Access Points 5-50

Clients 500

Throughput 500 Mbps

Deployment Model Local and

FlexConnect

Form Factor Desktop

IO Interface 4x 1GE

Upgrade Licenses 5, 25

Power Consumption 80W


Greenfield opportunities wherein SMBcustomers looking for enterprise-grade access

Existing SMB customers nearing refresh cycle on WLC2100

Migrate customers with standalone deployments in process of adding more APs


2100 2500

Number of Access Points 6,12, 25 5-50

Number of Clients 256 500

Throughput 100 Mbps 500 Mbps

Form Factor Desktop Desktop

Network I/O 8x Eth 4x GE

Power Consumption 92W 80W

Flexible Licensing No Yes

VideoStream No Yes

Encrypted Data Link Between AP and Controller No Yes

OfficeExtend Solution No Yes

Guest Anchor No No

LAG No No

AP directly connected to Controller Limited No

4/19/2012

8



Integrated Wired/Wireless solution with support for security, mobility, WAN optimization, unified communications, video, and customized applications

Consistency of functionality and management with other devices in CUWN portfolio

Wireless Controller on SRE

Access Points ISM: 5-10

SM: 5-50

Clients 500

Throughput 500 Mbps

Deployment Model Local and

FlexConnect

Form Factor SRE (ISM/SM)

IO Interface ISR G2 Backplane

Upgrade Licenses 5, 25

Device supported

on

1941, 2900 and 3900

Series ISR G2


Multi-branch deployments expecting multiple integrated services. Branch size is small or supports few wireless devices.

Upsell opportunity to customers that already own an ISR G2 router


NEW

WLCM WLC on SRE

Number of Access Points

6, 8, 12, 25 5-50

Number of Clients 256 500

Throughtput 100 Mbps 500 Mbps

Form FactorNetwork module

for ISR Routers

SRE (ISM/SM) on

1941/2900/3900 Series

ISR G2

Network I/ODedicated

Wireless Module

Generic Services Ready

Engine

Power Consumption

ISR Backplane ISR G2 Backplane

Flexible Licensing No Yes

VideoStream No Yes

Encrypted Data Link Between AP and Controller

No No

OfficeExtendSolution

No No

ISR G2Model

Maximum No. of SRE

Modules

Cisco SRE-300

ISM

Cisco SRE-

700/900 SM

Cisco 1941, 2901

1 1 0

Cisco 2911, 2921

2 1 1

Cisco 2951, 3925, 3925E

3 1 2

Cisco 3945, 3945E

5 1 4

ISR G2/SRE Family

Although ISR G2 can support more than 1 SRE module, only 1 WLC application on ISR G2 router is supported.

4/19/2012

9


2500 SeriesWLC on SRE

for ISR G25500 Series WiSM2

TargetSmall Medium

BusinessSmall Medium Business

Mid-Sized to Large

Enterprise

Mid-Sized to Large

Enterprise

Deployment ModelLocal Mode

FlexConnect

Local Mode

FlexConnectLocal Mode FlexConnect Local Mode FlexConnect

Form Factor Desktop

ISM/SM module for

1941/2900/3900 ISR

G2

1 RU ApplianceBlade for CAT6K

Up to 7 per Chassis

Interfaces or Network I/O 4xGE ISR G2 Backplane 8xGE CAT6K Backplane

Power Consumption 80W 125W 220W

Onsite Controller

Centralized Management

Centralized Data Policy

Enforcement

Data DTLS

OfficeExtend Teleworker

Wireless Mesh

Workgroup Bridge


2500 SeriesWLC on SRE

for ISR G25500 Series WiSM2

AP’s Managed 5-50ISM 5-10

SM 5-5012-500 100-1000

Client Support 500 500 7,000 15,000

Tag Support 500 500 5,000 5,000

Throughput 500 Mbps 500 Mbps 8 Gbps 20 Gbps

# of AP Groups 30 30 500 500

AP’s per Group 25 25 25 25

WLAN’s 16 16 512 512

LAG

Mobility L2/L3 L2/L3 L2/L3 L2/L3

RRM

NAC

CCX CAC/ WMM

Multicast

VideoStream

Guest Services (Wireless)

Guest Services (Wired)

Guest Anchor

ACL’s

4/19/2012

10

Cisco Confidential 19© 2010 Cisco and/or its affiliates. All rights reserved.

Access Point


AP 3600

802.11n WiFi

With CleanAir

technology

Business-Ready Mission CriticalBest in Class

Mission Critical

AP 3500

AP 1260

AP 1140AP 1040

OfficeExtend

AP 600

Teleworker

4/19/2012

11


3600 Series 3500 Series 1260 Series 1140 Series 1040 Series 600 Series 1550 Series

Data Rate 450 Mbps 300 Mbps 300 Mbps 300 Mbps 300 Mbps 300 Mbps 300 Mbps

Radio Design 4X4:3 2X3:2 2x3:2 2x3:2 2X2:2 2X2:2 2x3:2

CleanAir

ClientLink ClientLink 2.0

BandSelect

VideoStream

Rogue AP Detection

Adaptive wIPS

OfficeExtend

FlexConnect *

Wireless Mesh *

Data Uplink (Mbps) 10/100/1000 10/100/1000 10/100/1000 10/100/1000 10/100/1000 10/100 10/100/1000

Power 802.3af 802.3af 802.3af 802.3af 802.3af 100 to 240 VAC,

50-60 Hz

By Model

Number: See AP

AAG

Temperature Range in

Celsius

(i) -0 to 40° C

(e) -20 to 55°C

(i) -0 to 40° C

(e) -20 to 55°C

-20 to 55°C -0 to 40°C -0 to 40°C 0 to 40°C -40 to 55°C

Wi-Fi Standards 802.11 a/b/g/n 802.11 a/b/g/n 802.11 a/b/g/n 802.11 a/b/g/n 802.11 a/b/g/n 802.11 a/b/g/n 802.11a/b/g/n

* Planned for 7.2 Release


• Aironet 3600 Series Access Points are the fastest, most reliable

access points in the industry, and are the only 4X4:3 access points

available today. When combined with ClientLink 2.0 they deliver a

wired experience to your wireless network! The AP3600 delivers

better throughput over more range for all 11a/g/n clients all the time.

4/19/2012

12


Comparing the 802.11n EBF features with Client Link 2.0

Client Link 2.0 – Supports up to 128 clients per radio dynamically and

works with ALL 802.11a/g/n clients 1-SS, 2-SS and 3-SS

Note: No other product can do this today.

Take-Away - Client Link 2.0 works TODAY and supports all 802.11a/g/n clients

802.11n BF spec. not ready - what we are doing today


4/19/2012

13


• Information architecture: Seamless navigation and workflows align to tasks

• Modern interaction behavior: Maintains context while performing network management tasks

• Smart tables & advanced filtering: Quickly view additional information without leaving the workflow

• Ever-present alarm views & browser: Always-on visibility to potential end-user problems to speed remediation

Designed to Work With How IT Approaches Problems


High-level View of Key Metrics with Contextual Drill-down to Detailed Data

26© 2011 Cisco Systems, Inc. All rights reserved.Lumos Features DRAFT Cisco Confidential

• Flexible platform: Accommodates new and experienced IT administrators

• Simple, intuitive user interface: Eliminates complexity

• User-defined customization: Display the the most relevant information

4/19/2012

14


• Correlated and focused wired / wireless client visibility

Client health metrics

Client posture & profile

Client troubleshooting

Client Reporting

Unknown device ID input

• Clear view of the end-user landscape

Who is connecting

Using which device

Are they authorized


• Wired & wireless discovery and inventory

Add / detect infrastructure devices such as switches, WLAN controllers and access points

• Comprehensive access infrastructure reporting

View the access infrastructure as a whole or as discrete technologies

• Stolen asset notification

Track when devices presumed stolen come back online

28© 2011 Cisco Systems, Inc. All rights reserved.Lumos Features DRAFT Cisco Confidential

4/19/2012

15


Provides Context as to Where the Wired Endpoint Resides


• Shows where security & policy problems exist

Retrieves information directly from clients: Wired, wireless - authenticated, unauthenticated

• Reduces the time to troubleshoot security & policy problems

Client posture status and client profiled views

• Drill deeper into security & policy issue details

Direct linkage from Cisco NCS to Cisco ISE with contextual filtering

Converged Security and Policy

Monitoring and Troubleshooting

4/19/2012

16



PlanningRF Prediction Tools Assist in Designing Optimal WLANs

• Integrated Planning Tool

– Import floor plans from 3rd-party tools

– Configure access point placement, coverage, and other variables

– Generate equipment proposal

• Hierarchical Maps

– Design multiple buildings, floors, regions

• Location and Voice Readiness Tools

– View performance and coverage estimates

Easily Visualize the Ideal RF Environment

Planning Tool

Instant Access

to Tools Hierarchical Maps

• Eliminate improper RF designs and coverage problems

• Built-in tools perform site-surveys, RF reassessments and RF readiness evaluation

4/19/2012

17


Flexible Configuration Templates Streamline Operations

• Apply common configurations across one or more controllers and access points

• Role-based access control and partitioning

• Standalone access point monitoring and migration

• Controlled wireless guest access

Industry’s Broadest Array of Integrated Configuration Templates

Customizable

Templates

Instant Additional Info.

Easily Define Configuration

Parameters

• Fast creation and maintenance of configurations for WLAN controllers, APs, and MSE

• Maximizes uptime and improves operational efficiency

• Deploy large, multi-site networks and managed-service alike


Quickly Access the Information You Need – When You Need IT

• Identify and diagnose RF Interference events, air quality and interference security threats with Cisco CleanAir

• Robust fault event and alarm management

• Guided step-by-step client troubleshooting tools

• Ever-present search for cross network historical information

• Cisco ISE and ACS views for additional endpoint data

Coverage Visualization

Color-Coded Icons

Ever-present Alarm Summary

Centralized Monitoring of the entire WLAN and LAN

• Efficiently assess, prioritize and manage RF interference issues

• Analyze problems and misconfigurations for all client devices across all connection media

• Troubleshoot large-scale LAN and WLAN environments with minimal IT staffing

• Quickly discover events occurring outside baseline parameters

4/19/2012

18


Mapping

Hierarchy

and

Icons

(Expandable)

Simplified Customization of

Display

Quick

Access

To Tools

Ever-Present

Alarm Summary(Expandable)

Heat Map of

Each Location

Ever-Present

Search


Returning the Network to Optimal Performance

• Integrated workflows and tools:

1.Receive performance degradation notices

2.Quickly asses service disruptions

3.Research resolution

4.Take action

• CleanAir alerts summaries and reports identify where poor air quality and interferers exist

• Security dashboard and index show current security status

• Voice Tools for customized queries to address VoWLAN problems

• Diagnose the RF environment and mitigate interference from Wi-Fi and non-WiFi sources

• Quickly assess and understand ways to improve the security index of the network

• Quickly discover events occurring outside baseline parameters

Security Dashboard

Streamlined Workflows 1

2

3

4/19/2012

19


Continuous Improvement

• Effectively plan for future capacity, while properly controlling costs

• Align the reporting structure to your business or operational environment

• Understand common trends and top users of resources to right-size the network environment

• Extensive on-demand and automatic reporting

• Fully customizable

• Focused compliance reporting

• Alarm and event forwarding to 3rd-party solutions

• Output to CSV of PDF

Long term historical reporting and trend analysis


Identity Services Integration

• Shows where security &

policy problems exist

• Drill deeper into issue

details

Services Management and Integration

CleanAir

• Detect RF Interference

• Locate the source

• Automatically adjust to

optimize the environment

Adaptive WIPS

• Assess wireless

vulnerabilities

• Auto-classify threats

• Protect the wireless

network

Context-Aware

• Contextual Info about Wi-

Fi clients and tagged

mobile devices

• Optimize application

delivery

4/19/2012

20


Unprecedented Scalability

• Complete lifecycle management of hundreds of wireless LAN controllers from a centralized location

• Rich monitoring and troubleshooting for Cisco Catalyst Switches

Visibility into key performance metrics – interface ports, endpoints and users and switch inventory

Device WCS Devices

Supported

NCS Devices

Supported

Cisco Lightweight Access

Points

3,000 15,000

Cisco Autonomous Access

Points

1,250 5,000

Cisco Switches 0 5,000


Virtual AppliancePhysical Appliance

Appliance Delivery ModelsPhysical and Virtual

Application & Components

OS

Cisco-branded Hardware

(1RU)

Cisco

Provided


OS

Cisco

Provided

Customer

Provided

Virtual Infrastructure

4/19/2012

21

Cisco Confidential 41© 2010 Cisco and/or its affiliates. All rights reserved.

Mobility Service Engine


• CleanAir

• System wide interferer event correlation

• Visualization of interferer zone of impact

• History & playback and location of interferes

• WIPS & Adaptive WIPS

• Locate rogues

• Comprehensive over-the-air attack detection (DoS & Security Penetration)

• Context-Aware

• Visibility & performance monitoring

• Asset Management

• Location enabled mobile apps

4/19/2012

22


With MSE Without MSE

System wide Interferer Details & Event

CorrelationLowers Problem Resolution Time/Cost

Zone of Impact & Interferer NotificationImproved Visibility & Reduces Resolution Time/Cost

History & Playbackinvestigate past problems

Locates Non Wi-Fi interferers & Rogues Improved Security

Interferer details & event correlation

not readily available

No visibility to Interferers and their impact

No historical data for

troubleshooting purposes

Can not locate rogue devices and

interferers / Non-Std Wi-Fi thus

compromising network security

*

* Useful when customers have more than one WLC


Monitor Mode Enhanced Local Mode (ELM)

Does not serve clients. Dedicated AP for full time

monitoring.

Faster rogue intercept times

Scans all channels for longer duration looking for threats

More data for better forensic analysis on & off channel

Requires one Monitor Mode AP for every 5 data

serving APs

Requires additional infrastructure

Ideal for customers who want faster rogue intercept

time or have a separate security group that mandates

overlay monitoring

AP doubles for data serving and monitoring.

Better on-channel protection

Stays on-channel and scans off-channel as best effort.

More data for better forensic analysis on-channel

Does not require any additional APs. Requires aWIPS

licensing on all APs

No additional infrastructure required

Ideal for price sensitive customers who all looking for

the best on-channel protection without requiring to add

APs or sensors

4/19/2012

23


Investment Areas 7.2 (January 2012)

BYOD

- Local Services Discovery (Notification based)

- Local Services Discovery (MSAP based – eval)

Architectural

Flexibility

- HA

- Virtual Appliance

- Location support on HREAP

- IPv6 support

Wireless As Primary

Access

- GPS coordinate support

- Rogue detection enhancements

- New signatures

- Wi-Fi Direct detection & classification

- Simplified configuration


MSE HA

No HA license or a second set of client/ WIPS license required

Requires Secondary hardware

Supports 1:1 & 2:1 configuration (2 primaries can be backed to one secondary)

HA for all services supported; Failover times < 1 min

Supports automatic & manual failover / failback

Physical to physical & virtual to virtual HA supported

MSE Virtual Appliance

Will require activation license + CAS / WIPS license

No change to CAS/ WIPS pricing

All licenses will be only available by e-delivery

Virtual appliance will be distributed as OVA image

Only SASU required & will have Average Configuration Price (ACP)

Two reference server configs supported , similar to NCS (UCS C210/250 M2)

Supported on ESX & ESXi 4.1

4/19/2012

24


Virtual AppliancePhysical Appliance (Existing)


OS

MSE Hardware

Cisco ProvidedApplication & Components

OS

Cisco Provided

Customer

Provided

Virtual Infrastructure

Licenses

(Context-Aware & aWIPS)

Licenses

(Context-Aware & aWIPS)


Product Configuration

SmartNetAIR-MSE-33xx-K9 – Hardware (Physical Delivery)

Context-Aware , aWIPS – License (Physical Delivery)

Physical Appliance

SASU for software

upgrades & support

Services

L-MSE-7.0-K9 – Virtual Appliance License (E-Delivery)

Context-Aware, aWIPS – License (E-Delivery)

Virtual Appliance

SASU for software

upgrades & support

Services

4/19/2012

25

Thank you.

Date post:	12-Sep-2021
Category:	Documents
Upload:	others
View:	7 times
Download:	0 times

Cisco Unified Wireless Network Wireless Solution

Documents