dragan novaković - cisco.com€¢unifies wired and wireless security and ... wirelessly extending...

© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1

Dragan Novaković[email protected]

Components

•Security Policies•QoS Policies•RF Management•Mobility Management•Comprehensive Knowledge of path loss and SNR of each AP

Cisco WLAN Controller

Cisco Prime NCS

SNMP v3

Web Browser

Cisco MobilityServicesEngine

SOAP / XML


Access Points

and SNR of each AP

•MAC Layer Encryption

•Air monitoring

•Each AP is effectively a remote interface on the controller

Switch/RoutedNetwork

Engine

CAPWAP: Control And Provisioning of Wireless Access Points, runs over UDP - 5247 Data port, 5246 control port)

Product Overview

Cisco Confidential© 2011 Cisco and/or its affiliates. All rights reserved. 3

Product Overview

11abg

AP1240 AP1260 AP3500e

Performance & Functionality

AP1250Ruggediz

ed

11n

Current models


Carp

ete

d

AP1130 AP3500iAP1140AP1040

Hom

eO

ffic

e

OEAP600

like Indoor

11bg BridgeIndoor AP with

Enclosures

High-SpeedBridge

Mesh APs

Overview


Outd

oor or

Outd

oor-lik

e Indoor

BR1300ExtendAir

r5005

(SolutionPlusProduct)

AP1522 AP1524

3rd Party Vendors

ie. Terrawave

AP1550

How it looked like till BN4 Launch

WiSM-300

Perform

ance &

Scale

5508-12

5508-12, 25, 50, 100, 250, 500 (LICENSE-BASED)

5508-25 5508-50 5508-100 5508-250

4404-100

4402-12, 25, 50

5508-500

EoSEoS announced per 13. June 2011announced per 13. June 2011


# of APs 1002512 50 3006

Perform

ance &

Scale

250 500

WLCME-6, 8, 12, 25

3750G-25, 50

4402-12, 25, 50

2106, 12, 25

New models extending the existing family

Campus and Full Service Branch

2500

5500

WiSM2

Featu

res/P

erform

ance

NEW

NEW


Lean Branch

2500

WLCM2

7500

Scale

Featu

res/P

erform

ance

NEW

NEW

ROI Analysis for Contractor Access

� ROI for Asset Tracking: 328%

� Payback period: 6 months

� Total 3 year savings: $161,785

•Guest networks for customers,

partners and auditors

•Vendor replenishment networks

•Public access networks

ROI Analysis for wIPS & 802.1X




• Automatic, 24 x 7 security and

compliance monitoring for

breaches via wireless medium

•Network access control

based on user location

Mobility Services – more than just data connectivity

GUESTSECURITY•Unifies wired and wireless security and ensures network information integrity by enabling location-based authentication and precise detection, identification and prevention of wireless threats.

•Allows customers, vendors, and other non-employees to wirelessly access network resources, with privileges based on user-type and physical location, without compromising the enterprise security.


Real-time Mobile Data Services

ROI Analysis for VoWLAN



� Total 3 year savings: $1,878,648

•Real-time mobile voice

communication

•Improved collaboration

via mobile unified communications

•Faster customer service response

ROI Analysis for Asset Tracking




•Asset management

•Location based content

distribution

•Streamlined workflow

using historical location data

•Quickly locates any Wi-Fi device to support enhanced network security, management, and troubleshooting as well as enable location-based applications througha rich, open API.

LOCATION

Wirelessly extending resources to individuals irrespective of time or location

VOICEExtends IP communications to the enterprise wireless network enabling toll-quality voice, voice services and call connectivity between networks by diverse client support,QoS and integration with theenterprise telephony system

New HW Products


New HW Products

5508Controller

Internet

Corporate Network

Corporate Asset

Routere.g. Linksys

Corp.WLAN

LocallydefinedWLAN

DTLS VPN

OfficeExtend AP


Controller

Non-corporateAssetse.g. Wii, DVR

Extend AP

� Extend office wireless work environment to remote sites:corporate SSIDs available in remote site�� managed by IT

� Create locally significant SSID directly on OfficeExtend AP;unique SSID can be created for each location�� not managed by IT

� Ideal for telecommuting, home-sourcing, outsourcing applications

Dual band 802.11n AP for the homes

Proven hardware design

Validated OEAP Features / Function

Supported by 5508, WiSM2, 2500


7.67” x 6.92” x 1.45”

Available worldwide (all reg domains)

FCS: Q1CY11

Supports up to 2 corporate SSIDs

Supports up to 15 wireless clients

User-configured personal SSID

Control and data plane encryption


RF channel / power are set automatically at power up

Corporate client cannot access personal / local resources (i.e. home printer)

No RRM, wIPS, Rogue Detection, Location, Guest Services

4 Additional Ethernet ports

Dedicated Ethernet port for corporate-bound device

Remaining 3-ports are for personal use

USB port is disabled initially, under consideration:


External hard drive

Printers / Projectors

3G back-haul modem

Cradle for vertical placement

On/Off Switch

No PoE support

FeaturesFeatures

� Outdoor 802.11n Access Point� Up to 6x higher throughput than 1520

� Dual-Radio 2.4 and 5 GHz (Universal Access)

BenefitsBenefits

� RF Excellence:Increased client coverage, range and throughput; detect and mitigate RF interference


(Universal Access)

� CleanAir and ClientLink

� Dual-band Antennas� Integrated, Low-Profile

� Backhaul

� Fiber, Ethernet, Mesh � 8x4 HFC DOCSIS 3.0

� Unified Mode:Authentication, Security, Mobility,..

� Flexible Deployment:Access or mesh network, extension of an Ethernet network, Fiber, Wireless or Cable backhaul

� High Performance:Multipurpose network with low CAPEX & OPEX

1552E1552E

�Standard and flexible model with dual-radio system

�Targeting municipal & campus deployments, video surveillance apps, mining environments, & data offload

� FCS in April

1552C1552C

� Integrated cable modem interface with DOCSIS 3.0

�Targeted for 3G data offload applications & public Wi-Fi

�FCS in April


1552I1552I

�Lightweight, Low power & energy efficient

�Designed to blend in with the surrounding environment

� FCS in May-Jun

1552H1552H

�Class 1, Div 2/Zone 2 hazardous location certified

�Targeted hazardous environments like Oil & Gas refineries, chemical plants, mining pits, & mfg factories

� FCS in May-Jun 1- Integrated Antenna replaces multiple single-band antennas list up to $950

2- *The prices above do NOT include the External antennas for the E/H versions

� 2 Radios 2.4/5 GHz

� 2 Tx, 3 Rx

� MIMO, 2 SS

� 3x Dual-Band Ant.


1552E1552E 1552H1552H 1552C1552C 1552I1552I

802.11 b/g/n

802.11 a/n

Standard

External

802.11b/g/n

802.11a/n

Hazardous Loc.

External

802.11b/g/n

802. 11a/n

Cable Modem

Integrated

802.11b/g/n

802.11a/n

Standard

Integrated

2.4 GHz

5 GHz

Type

Antenna

MIMO Multiple-In, Multiple-OutSS Spatial Streams

Features

•

•

•


•

•

•

•

•

•

•

• Feature Rich Entry level Controller

802.11n Ready

Guest Access

Wireless IPS

• Unsurpassed Performance & Scale for Entry level Controller

Support high end RF Excellence (CleanAir APs)



5500 Style Licensing

Specifications At-a-Glance

Access Points 5 – 50

Devices 500

Throughput 300Mbps

Form FactorDesktop w/ optional Rack Mount

I/O 2x1GE; 2x1GE PoE

At-A-Glance2100 2500

Interfaces 8xEthernet (2 PoE) 4xGE (2 PoE)

# of APs 6, 12, 25 5 - 50

# of Devices 256 500

Scale as you grow


AP Licensing FixScale as you grow

Built-In Licenses: 5, 15, 25 and 50Adder Licenses (5 and 25)

Throughput 100Mbps 300Mbps

Concurrent AP Upgrade/Join

10 50

Data Encryption(Data DTLS)

Not Supported Licensed (Optional)

Teleworker Support (OEAP)

Not SupportedSupported

(w/ Data DTLS License)

Note: Wired Guest Access and Guest Access Anchor is NOT supported

Key Features Key Benefits

Supports 10 access points Supports 50 access points

SRE-ISM-300-K9SRE-SM-700-K9SRE-SM-900-K9


Supports 10 access points Supports 50 access points

Small physical, energy and carbon footprint

Save on energy bills and protect environment

High-performance, high-capacity hardware

Deploy performance demanding and high availability applications

On-demand, remote application provisioning

Improve flexibility of branch infrastructure

Integrated management and troubleshooting

Simplify administration and reduce costs

Based on SRE for ISR G2

� Maximize on ISR G2 Investment

Lower Cap-Ex/Op-Ex

Wired/Wireless solution

• Wireless Entry level Controller Performance on ISR platform

802.11n Ready

Support high end RF Excellence (CleanAir




Devices 500

Throughput 300Mbps

Form Factor SRE Module on ISR G2

I/O ISR backplane


5500 Style Licensing

For Catalyst 6500

10G Backplane Channels

Dedicated Control Processor

Dedicated Data Processor

•

•

•

•


Serial Console Port

Status LEDs

•

•

•

•

•

•

• Enhanced Operational Savings

Higher Scale

Reduced downtime during upgrades

Single Controller

• Higher Performance

Throughput

Concurrent Rich Media application flows




Clients 10,000

I/O 10G

Chassis Level Scale3,500 APs & 70,000 Clients

Concurrent AP Joins 500

No. of Phy Controller 1

Power 225 W

Concurrent Rich Media application flows

• Maximize Catalyst 6K Investment

Supervisor & Service Module Refresh

5500 WiSM WiSM2

# of Access Points 12 – 500 300 100 – 500

Throughput Up to 8 Gbps Up to 8 Gbps Up to 10 Gbps

Clients Up to 7,000 Up to 10,000 Up to 10,000

Concurrent AP upgrades/joins

Up to 500 Up to 20 Up to 500

Network I/OUp to 8, 1 Gbps

Cat6k back plane Cat6k back plane


Network I/OUp to 8, 1 Gbps

SFPsCat6k back plane Cat6k back plane

Mobility domain size Up to 36,000 Aps Up to 10,800 APs Up to 36,000 APs

# of controllers per physical device

1 2 1

Power Consumption 125W 164W 225W

AP count and feature upgrade via licensing

Yes No Yes

Encrypted data link between AP and controller

Yes No Yes

OfficeExtend Solution Yes No Yes

•

•


• Game Changing Branch Solution

Lower Cap-Ex – leverage fewer controllers across branches

Decreased Op-Ex through centralized management

• Enhanced Scalability & Flexibility

Higher Scale


Higher Scale

AP Groups

5500 Style Licensing Specifications At-a-Glance

Access Points 500– 2,000

Devices 20,000

Deployment Model FlexConnect

Form Factor 1RU Appliance

I/O 2x10GE Interfaces

No. of AP’s / Group 50

No. AP Groups 1,500

Hvala !!!Hvala !!!

dragan novaković - cisco.com€¢unifies wired and wireless security and ... wirelessly extending...

Documents