Post on 09-Jun-2015
Cisco Confidential © 2010 Cisco and/or its affiliates. All rights reserved. 1
CCLE Cisco Mobility Solution Update
Cedo Vicente, Mobility Consulting Systems Engineer Mid-South SLED covering AR, GA, KY, TN
cedo@cisco.com
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2 2
CiscoLive! – San Francisco
May 18 – 22, 2014 www.ciscolive.com/us
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 3
1
2
3
4
5
6
Introduction
WLC Software, Prime and AP hardware update
WLC High Availability
Application Visibility and Control
Bonjour Phase I, II and III
Policy and Profiling
High Density Experience HDX plus HD RF Design 7
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 4
Simple
Secure
Business Value Connecting People
Connecting Clouds
Connecting Things
Cisco ONE Enterprise or Meraki Cloud Architecture
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 5
Wireless Control System
Access Control Server
LAN Mgmt Solution
Identity Mgmt
NAC Profiler
Guest Server
Cisco Wireless LAN Controller
Internal Resources
Cisco Firewall Cisco Access Point
Catalyst Switch
Internet
One Network
Converged Access Switch
3K/4K
Corporate Network
One Management One Policy
Cisco Confidential 6 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Unified Access: Wireless Deployment Options
AUTONOMOUS CLOUD MANAGED FLEX CONNECT CENTRALIZED CONVERGED
• Common OS • Lean IT • Mid-Market / Distributed
Enterprise
• Intended for static installations • SP Hotspots
• Data center hosted controller • Distributed enterprises
• Premise-based controller • Traditional Overlay Model • Highly Scalable
• Common OS • Consistent Wired/Wireless • Highest performance
• MR Access Points • MS switches • MX security • Dashboard
• Aironet Access Points • 11ac: 3700 / 2700 • 11n: 1600 / 700
• Catalyst Switches • 3850 / 3650 • 2960-X
• Controllers • N / A
• Aironet Access Points • 11ac: 3700 / 2700 • 11n: 1600 / 700
• Catalyst Switches • 6800/4500/3850/3650 • 4500-X / 2960-X
• Controllers • 8510 / 7510
• Aironet Access Points • 11ac: 3700 / 2700 • 11n: 1600 / 700
• Catalyst Switches • 6800/4500/3850/3650 • 4500-X / 2960-X
• Controllers • 8510 / 5760 / 5508 /
WiSM2 / 2504 / vWLC
• Aironet Access Points • 11ac: 3700 / 2700 • 11n: 1600 / 700
• Catalyst Switches • 6800/4500*/3850/3650 • 4500-X
• Controllers • Integrated • 5760 external MC*
Dashboard
WAN Intranet
Cisco Unified Access: 1 Architecture, 4 Deployment Modes Cisco Cloud Networking
* Roadmap
Prime ISE
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 7
Norman Abramson, a professor at the University of Hawaii, developed the world’s first wireless computer communication network, ALOHAnet (operational in 1971), using low-cost ham-like radios. The system included seven computers deployed over four islands to communicate with the central computer on the Oahu Island without using phone lines.
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 9
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 10
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 11
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12
Cisco Confidential © 2010 Cisco and/or its affiliates. All rights reserved. 13
WLC Software, Prime and AP Update
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 14
SRE ISR G2 2500 Virtual
Controller Flex 7500
8500 5760 5508 WISM2
Catalyst 3850
Catalyst 3850
Virtual Controller
• 1 to 50 APs per switch/stack (Directly connected APs) • 2000 clients per stack • 40 Gbps per switch
• 12 to 500 APs • 7000 clients • 8 Gbps
• 100 to 1000 APs • 15,000 clients • 20 Gbps
• 25 to 1000 APs • 12,000 clients • 60 Gbps
• 300 to 6000 APs • 64,000 clients • 10 Gbps
Large Campus Service Provider
Small Campus / Branch (Controller On-Premise) Branch (Controller in DC)
• 5 to 50 APs • 500 clients • 500 Mbps
• 5 to 75 APs • 1000 clients • 1 Gbps
• 5 to 200 APs • 3000 clients • 500 Mbps
• 1 to 50 APs per switch/stack (Directly connected) • 2000 clients per stack • 40 Gbps per switch
• 5 to 200 APs • 3000 clients • 500 Mbps
• 300 to 6000 APs • 64,000 clients • 1 Gbps
WLAN Controller Portfolio
Cisco Confidential 15 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
AireOS Roadmap Delivered Planning Committed
Q4CY13 CUWN 7.6
Interoperability with MSE 7.6, ISE 1.2, PI update1 1.4.0.45
Aug CY14 CUWN 8.0 (MD Release train)
Interoperability with MSE 8.0, ISE 1.2 and 1.3, PI 2.1
Q4CY14 Demo release
Q1CY15 CUWN 8.1
Interoperability with MSE 8.x, ISE 1.3, PI 2.x
AP3700: Integrated 802.11ac Wave 1—Modular AP
Vlan tagging on AP700W local Eth ports Air Time Entitlement Bandwidth Policing - per client, per SSID, % based Uplink/Downlink airtime
AP 2700, AP 700W (7.6MR2) Improved client battery life with 802.11v CleanAir 2.0 (Enhanced Wi-Fi Awareness)
AP1532 (Centralized, Mesh, Bridge) Native IPv6 (Centralized Mode Only) World Regulatory Domain and Universal Image
AP1552: With Emerson Sensor Gateway Granular Bonjour policies per user-group and location
Mesh Convergence Improvement Phase 3: <10 sec convergence
3G Small Cell Module: For AP3600 and AP3700
AVC rate limit, AVC AAA override
FlexConnect support for AVC
AP3702P (with StadiumVision Antennas) VideoStream for FlexConnect Mesh support for FlexConnect
HA WLC SKU monitoring
FQDN Pre-Auth ACL for Onboarding AP1600 CleanAir Express Guest Anchor Redundancy: Primary, Secondary, Tertiary
Network Resilience for SSO PMIPv6 MAG on AP Microsoft SDN Lync support
AVC support for Jabber, Dropbox and Microsoft Lync 2013
HD Experience Ph1 (Rx SOP, Smart Roam, CL 3.0, CA 80Mhz, TurboAgg)
iBeacon visibility and security – CleanAir (spectrum) and MSE location integration
FIPS, CC, UcAPL, USGv6 EoGRE, GTPv2 tunneling from WLC
Ability to run 11r within same SSID Passpoint Release 2 Certification
1. AirTime Entitlement
2. iBeacon integration
with CleanAir and MSE
3. Microsoft SDN Lync integration
4. Chromecast
Cisco Confidential 16 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
IOS roadmap Delivered Committed
June 2013 IOS XE 3.2 (Maintenance)
Parity w CUWN 7.0 and Interop w MSE 7.4, ISE1.1 and 1.2, PI 2.0
Q4CY13 IOS XE 3.3 (Darya)
Parity With CUWN 7.4 and Interop With MSE 7.5, ISE 1.2, PI 2.1
Q2CY14 IOS XE 3.6 (Amur)
Interop With CUWN 7.6/8.0 and Interop With MSE 8.0, ISE 1.2 and 1.3, PI 2.1
Q4CY14 IOS XE 3.7 (Beni)
Interop with MSE 8.x, ISE 1.3, PI 2.x
Web GUI for WLC 5700 Series and Catalyst 3850
AP3700: Integrated 802.11ac Wave 1—Modular AP (With 3.3.1)
AP2700 Support AP700i and AP700W Support
Support for Outdoor 11ac Cyprus (Centralized Mode Only)
ISE 1.2 support AP3600: 802.11ac 11ac: Wave 1 Module
Regulatory Domains for China (H) Sup 8E wireless support
AP SSO With Stacking Cable Support for Outdoor AP1530 series (Centralized Mode Only)
Regulatory Domains for India(D) and Indonesia(F)
Bonjour Services Directory (Phase 1) Wired and Wireless Profiling and Policy Sleeping Client: Ability to remember a guest via webauth for a few days
Application Visibility (no control) With AP1600, AP3600, AP3700
QOS tie-in to Application Visibility, newer protocol packs support for Jabber, Lync 2013, Dropbox
TrustSec SXP and SGT Bonjour Services Directory (Phase 2)
802.11r L2 Fast Roaming WebUI https performance and feature enhancements
802.11w Protected Management Frame FIPS, CC, UcAPL, USGv6
AP Neighbor List (Subset of 802.11k) Upstream QOS with 5760
Regulatory Domains for Australia and New Zealand(-Z) with 3.3.2
Ability to run 802.11r within same SSID
Wired guest with 5760: access ports (3.3.1) CleanAir Express with AP1600
• Geo-redundancy for 5760
w/o stack cable • Client Stateful switchover
(SSO)
Planning (Early look
CY15 Key features)
© 2012 Cisco and/or its affiliates. All rights reserved. 17
Assurance End-to-End Application Experience & Visibility
Plug & Play Simplified Deployment of New Cisco Devices
Lifecycle Converged
Management with Integrated Best
Practices
Convergence Consolidation Cisco Advantage
© 2012 Cisco and/or its affiliates. All rights reserved. 18
Deployment/Feature Considerations
Prime Version to Deploy
WLC 7.4 or earlier PI 1.3 with all patches
WLC 7.5 (802.11ac) PI 1.4
IOS XE 3.2 (Converged Access) PI 2.0
Wireless (Lifecycle) Only
Deployment/Feature Considerations
Prime Version to Deploy
WLC 7.5 (802.11ac) PI 1.4 (no IDUs) 4500-Sup-8E, 3650, 6800ia, IOS-XE 3.2, WLC 7.4 or earlier PI 2.0 (with monthly IDUs)
Wired & Wireless (Lifecycle and/or Assurance)
Deployment/Feature Considerations
Prime Version to Deploy
Any WLC version PI 2.1 (FCS Apr 15)
Wireless and/or Wired Lifecycle and/or Assurance
EN SEVT 10/2013 Recommendation
EN SEVT 4/2014 Recommendation
** Existing PI 1.4.x customers are recommended to wait until PI 2.2 to migrate
© 2012 Cisco and/or its affiliates. All rights reserved. 19
• Cisco UCS can be used as a virtual infrastructure deployment. i.e ESX/ESXi running on UCS
Virtual Appliance Size
Virtual CPU Memory (DRAM) HDD Size Throughput (Disk I/O)
Express 4 12 GB 300 GB 200 MBps
Standard 16 16 GB 900 GB 200 MBps
Pro 16 24 GB 1200 GB 200 MBps
Mapping of PI 1.x to 2.x OVA/Bundle/SKU
PI 1.x PI 2.0
Small Express
Medium Express
Large Standard
Extra Large Pro
© 2012 Cisco and/or its affiliates. All rights reserved. 20
AireOS WLC version support enhancements ü Comprehensive Support for WLC 7.4
ü Support WLC 7.5, WLC 7.6 & MSE 7.6 support
² Feature configuration at WLC 7.4 feature parity (newer feature configuration at controller or CLI Templates)
² Does not include Client SSO, Policy Classification Engine and Bonjour feature support – these will need to be configured via the WLC web GUI or CLI Templates)
ü Support WLC 8.0 when available (future release)
² Feature configuration at WLC 7.4 feature parity (newer feature configuration at controller or CLI Templates)
² Does not include Client SSO, Policy Classification Engine and Bonjour feature support – these will need to be configured via the WLC web GUI or CLI Templates)
² New 8.0 features not supported
© 2012 Cisco and/or its affiliates. All rights reserved. 21
• Additional Browser support Chrome 31+, IE 8 & 9 with Google Chrome Frame plugin, Mozilla Firefox ESR 24
• Defect fixes (internal and customer found) • Upgrade from 1.3.2 and 2.0 • Additional AP support (see following slide for details) • WLC 7.5 with 7.4 feature parity • WLC 7.6/8.0 Ready” with 7.4 feature parity (may require Device Pack) • IOS-XE 3.6 “Amur Ready” with IOS-XE 3.3 feature parity (may require Device Pack) • MSE 7.6 support • Qualification of 7.4 MR2 and 7.6 MR2
© 2012 Cisco and/or its affiliates. All rights reserved. 22
AP Model WLC 7.6 MR2
AP3600 & AP3700I/E/P Supported AP3600/AP3700 with Stadium Antenna Supported 11ac module Supported AP2700I/E Supported AP702W Supported AP702i Supported AP1530I/E Supported
No Support for Planning tool with 2700/702W/1530/3700 No Support for AireOS 8.0 or IOS-XE (wireless features)
© 2012 Cisco and/or its affiliates. All rights reserved. 23
Prime Infrastructure Console
Prime Infrastructure Instances
Network Data
Device Affinity
Network Data Network Data Network Data
Static Data
Fan Out Queries
Aggregation
Single Pane Monitoring • Unified Assets View • Unified Alarms View • Unified Clients views • Consolidated Reports • Consolidated Dashlets • Consolidated Search
Cisco Confidential 24 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Cisco Aironet Indoor Access Point Industry’s Best 802.11n and 802.11ac Series Access Points
Mission Specific
600 & 700
Enterprise Class
1600 Mission Critical
2700 Best in Class
3700
Enterprise Best In Class Value-Based Mission Critical
• Up to 600 Mbps
• 702w: Wall Plate AP
• Hospitality, Dorms, MDU
• 702i: Compact Mid-market AP
• 600: Teleworker
• Up to 600 Mbps
• 3x3 MIMO : 2 SS
• CleanAir Express*
• ClientLink 2.0
• Over 1 Gbps, 802.11ac • 3x4 MIMO : 3 SS • HDX Technology • CleanAir 80 MHz,
ClientLink 3.0, VideoStream
• Over 1 Gbps, 802.11ac • 4x4 MIMO : 3SS • HDX Technology • CleanAir 80 MHz,
ClientLink 3.0, VideoStream • Future proof modularity: Security,
3G Small Cell, Location Accuracy or Wave 2 802.11ac
NEW
NEW
2600
3600
802.11n 802.11ac
802.11ac
802.11n
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 25
Note: Only Cisco APs can beam-form a 3-SS signal as it requires 4 transmitters - most APs on the market don’t have this additional radio for reliability and performance ☺ The additional radio assists in both transmit and receive.
The extra radio “D” is used to augment spatial stream data and is used in beam-forming Note .11n had support for beam-forming but was never adopted so few if any clients supported it. Client-Link performs beam-forming on legacy 11a/g/n clients as well as 802.11ac clients.
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 26
ClientLink 3.0 YouTube video: http://www.youtube.com/watch?v=0q_shbSpOIA
• ClientLink 3.0 helps the Cisco AP maintain 256 QAM with m9 rate
• Cisco’s 11ac AP has a significant 256 QAM advantage over the competition 11ac AP
• The Test: Use a MacBook Pro (3ss) and record the data rate in 40+ locations in a cubicle environment while running traffic to the client.
Cisco AP Heatmap
Competitor AP Heatmap
© 2012 Cisco and/or its affiliates. All rights reserved. 27
Module 802.11ac Wave 1
(AP3600 Only)
Security 3G Small Cell Hyper Location Accuracy
802.11ac Wave 2
Benefits Support new 802.11ac data
clients and Smartphones, up to
1Gbps+ wireless speeds
Full comprehensive wireless security posture with off
channel scan for WIPS, CleanAir,
Rogue Detection, Context Aware, and
RRM
Provides extended 3G cellular
infrastructure coverage where cell tower signals cannot go (carpet
areas in high rises, MDUs)
Provides <1m location accuracy
802.11ac Phase 2 adding support for Multi-User MIMO and “switch like’
behavior, up to 2.5 Gbps+ wireless
speeds
Future Future Thru 2014
© 2012 Cisco and/or its affiliates. All rights reserved. 28
§ Starts at $1,095 List Price
§ 3x4 MIMO: 3 SS 802.11ac AP
§ 3x performance of 802.11n
§ RF Excellence enabled in Hardware
§ HDX Technology
§ 2 GigE Ports § Downstream device support only
Aironet 2700 Series
Orderable April 15 FCS May 1
CUWN 7.6 MR2 IOS XE 3.6 (Amur)
© 2012 Cisco and/or its affiliates. All rights reserved. 29
Cisco Aironet 802.11n and 802.11ac AP Comparison
© 2012 Cisco and/or its affiliates. All rights reserved. 30
2700 Power Requirements
Description AP Functionality PoE
Budget* (Watts)
802.3af E-PoE 802.3at PoE+
PWRINJ4
2700
PoE+ 802.3at
2700 – Out of the Box 3x4:3 on 5G & 3x4:3 on 2.4G 16.1
PoE 802.3af
2700 – Out of the box** Auxiliary Ethernet Port disabled 2x2:2 on 5G & 2x2:2 on 2.4G
n/a n/a
* This is the power required at the PSE, which is a switch or injector.
We are posting WORSE CASE power draw at this time " Our goal by FCS is full functionality using 802.3af (15.4W) with only the secondary AUX port disabled but it is a stretch goal at this time. (4/10/2014)
© 2012 Cisco and/or its affiliates. All rights reserved. 31
with Integrated 802.11ac (3x4:3SS)
Same ports as AP-3700 except we shortened the name to PoE and added an additional (non-PoE) auxiliary “AUX” Ethernet port*
*Note: If powering AP on 802.3af (15.4W) this 2nd “AUX” port is disabled
© 2012 Cisco and/or its affiliates. All rights reserved. 32
with Integrated 802.11ac (3x4:3SS)
with Integrated 802.11ac (3x4:3SS)
Customer have requested the need to leverage the AP for end devices such as projectors, phones, Point of Sale Terminals etc.– Note today this AUX port is locally switched and not managed* This will be improved in later releases but for now there is no LAG or any management of this port in the 7.6MR2 initial release. *Note: Do not connect the “AUX” port to the same uplink switch as the AP.
*Note: Port is enabled by default if running high PoE power over 15.4W and there is no spanning tree protection right now all to be addressed later.
© 2012 Cisco and/or its affiliates. All rights reserved. 33
§ $495 List
§ Compact wired + wireless solution for Multi Dwelling Unit (MDU) § Hospitality, Higher Ed dorms, Healthcare
§ Simultaneous Dual Radio, Dual Band with Integrated Antennas
§ 4 GigE Ports § 1 PoE Out Port
§ Mountable and lockable to most junction box worldwide
§ VLAN tag support in CUWN 8.0/IOS XE 3.6
Aironet 700w Series
Orderable Now FCS May 1
CUWN 7.6 MR2 IOS XE 3.6 (Amur)
Cisco Confidential 34 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Cisco Aironet 700W Access Point Series • Target for Multi Dwelling Unit (MDU) Deployments seeking a high-
performance in-room Wireless + Wired Access Device: • Hospitality • Higher Education for dorm-rooms • K-12 for dorm-rooms or other similar deployments • Health care (long-term care facilities or similar deployments)
• Designed for ease of mounting to numerous global wall junction standards. Specially designed brackets: default bracket included in the box (zero cost) or an optional bracket to cover local Ethernet ports.
• Sleek design in a small form factor: 15 x 10 x 3 cm (6 x 4 x 1.5 in)
• Robust enterprise-class design and RF performance
• Simultaneous Dual Radio, Dual Band with Integrated Antennas
• 4x GigE Ethernet Ports, 1x uplink GigE port
• Powered over Ethernet (PoE) or with AC Adapter
• PoE out port up to 803.af Class 0 (depending on powering options)
Cisco Aironet 700W Series Wi-Fi Standards 802.11a/b/g/n
Max Data Rate 300 Mbps per radio
Radio Design MIMO: Spatial Streams Dual-Radio, 2x2:2
Local Ethernet Ports 4 x GE
Powering Capability 1 x GE port PoE out
Port-based VLANs Coming in 8.0 / Amur MR
Autonomous (Future)
Data Uplink (Mbps) 10/100/1000
Power 802.3af/at, AC Adapter
Security lock Torx screw, Kensignton lock
Cisco Confidential 35 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Cisco Aironet Access Point Comparison Indoor AP Series OEAP600 700I 700W 1600 2700 3700
Wi-Fi Standards 802.11a/b/g/n 802.11a/b/g/n 802.11a/b/g/n 802.11a/b/g/n 802.11a/b/g/n/ac 802.11a/b/g/n/ac
Max Data Rate per Radio 300 Mbps 300 Mbps 300 Mbps 600 Mbps Over 1 Gbps Over 1Gbps
RF Design 2x3:2 2x2:2 2x2:2 3x3:2 3x4:3 4x4:3
Performance/Coverage/ Investment Protection u uu uu uuu uuuu uuuuu
Max No. of Clients per AP 15 200 200 256 400 400
RRM ✔ ✔ ✔ ✔ ✔
High Density Experience ✔ ✔
CleanAir CleanAir Express* ✔ ✔
ClientLink ClientLink 2.0 ClientLink 3.0 ClientLink 3.0
Max ClientLink Clients per AP 64 256 256
BandSelect ✔ ✔ ✔ ✔ ✔
VideoStream ✔ ✔ ✔ ✔ ✔
Rogue AP Detection ✔ ✔ ✔ ✔ ✔
Adaptive wIPS ✔ ✔ ✔ ✔ ✔
External Antenna Opt ✔ ✔ ✔
Module Options WSM (Security), Cisco 3G SCM (Q4CY13), or Wave 2
802.11ac (2015)
Cisco Confidential 36 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
AP-700W (Wall Plate AP) 1 Screwdriver and in less than 1 Minute and you are done…..
Default is AIR-AP-BRACKET-W (in picture) Note this AP is designed for Wall mounting (do not mount on ceilings)
Cisco Confidential 37 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
AP-700W Mounting Bracket Options If ordering spare append “=“ to P/N
(Optional) AIR-AP-BRACKET-WP (default) AIR-AP-BRACKET-W
Hides/secures Ethernet ports
Standard bracket
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 38 CISCO CONFIDENTIAL – NDA ONLY
700W Power Requirements
Description AP Functionality PoE
Budget* (Watts)
802.3af E-PoE 802.3at PoE+
PWRINJ4
700W
PoE+ 802.3at
700W – Out of the Box 2x2:2 (both bands) all ports on including PoE OUT 16.1
PoE 802.3af
700W – Out of the box PoE OUT - Port is (disabled) This is the green port on AP 2x2:2 in both bands
15.4 n/a n/a
* This is the power required at the PSE, which is a switch or injector.
Local power supply AIR-PWR-C= may be used. Do not use AIR-PWR-B
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 39
with Integrated 802.11ac (3x4:3SS)
AP-700W is designed for Wall Mount only (smaller footprint)
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 40
with Integrated 802.11ac (3x4:3SS)
2.4 GHz channels Mixture of 700W wall mounted with conventional ceiling mount Enterprise APs Take-away roaming properly also channels balance out well
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 41
AP-700W --- Non-supported features on 7.6 MR2
• Mesh Support
• Autonomous (planned for future release)
• Office-Extend
• Explicit Beam-forming
• Spectrum Intelligence is NOT enabled at FCS but does have hardware to support it.
• IGMP Snooping for IP TV multicast join point (requested feature)
• Managed local-switched Ethernet ports
• Tunneling Ethernet ports.
• Split-tunneling Ethernet ports.
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 42
It is shorter than the “stock” dipole but does not bend
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 43
Older style dipole with knuckle New style - Short Dipole
Why is it needed? - Aesthetics primarily
Cisco Confidential 44 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Cisco Aironet Outdoor Access Point Industry’s Most Comprehensive Outdoor Offerings
MSO / Cable
1552C 1552CU
• Seamless Connectivity • GPS
• CleanAir, ClientLink
• Deployment Flexibility • Fiber SPF / Battery • PoE Out • GPS • CleanAir, ClientLink
• Integrated DOCSIS 3.0 Cable Modem
• Cable Plant Powered • GPS • CleanAir, ClientLink
Industrial
1552H 1552S
1552WU
• Haz Loc Certified Class 1/Div 2/Zone 2
• Integrated Honeywell Sensor Gateway (S)
• CleanAir, ClientLink
Versatile
1552E 1552EU
Internal Antenna
1552I Ultra Low Profile Flexible
1532I 1532E
• Sleek design • Int./Ext. antennas • Value
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 45
WNG Outdoor Access Points 1532I 1532E 1552I 1552E/EU 1552C/CU
Type Internal antennas External antenna Internal antennas External antennas Cable modem
Antennas Internal Flexible Antenna Port
(dual-band or single band) Internal E: Ext. dual-band
EU: Ext. single band C: Internal
CU: Ext. single-band
Fiber SPF optics n
PoE out (802.3af) LAN port, (no PoE) LAN port, (no PoE) n
Cable modem n
Battery backup option n
Power options PoE (UPoE / 802.3at*)
24-57 VDC PoE (802.3at) 24-57 VDC AC, 12 VDC AC, 12 VDC, PoE
40-90V cable plant 12VDC
Data rate (2.4 / 5 G) 215 / 300 Mbps 145 / 300 Mbps 145 / 300 Mbps 145 / 300 Mbps 145 / 300 Mbps
Radio design Tx-Rx:SS
3x3:3 (2.4 GHz) 2x3:2 (5 GHz)
2x2:2 (2.4 GHz) 2x2:2 (5 GHz) 2x3:2 2x3:2 2x3:2
Clients per radio 100 100 200 200 200
CleanAir n n n
ClientLink n n n
BandSelect n n n n n
VideoStream n n n n n
Rogue AP detection n n n n n
FlexConnect n n n n n
Wireless mesh n n n n n
Temperature range °C -30 to 65 -30 to 65 -40 to 55 -40 to 55 -40 to 55
New
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 46
• Antenna Gain: 3/5 dBi (2/5GHz) • 2G: 3x3:3 (Tx/Rx/3SS)
5G: 2x3:2 • Tx Power
• 2G: 24 dBm/Tx = 28 dBm; EIRP= 31 dBm • 5G: 24 dBm/Tx = 27 dBm; EIRP= 32 dBm
• Power Interface: PoE or DC (48V) • Power Consumption: 28.5 W
• Weight: 2.3kg • LAN port (10/100/1000 Mbps Ethernet) • LTE & WiMAX Signal Rejection (2.1/2.3 GHz; 30 dB; 2.5 GHz; 35 dB)
• Spectrum Intelligence (potential future SW release) • India Extended Band: 5.825-5.875 GHz
• IP67 • -30 to +65 ºC Ambient, +55 ºC with Solar Loading (1200W/m2)
23 x 17 x 10 cm (9 x 7 x 4”); < 3.0 Liters; 2.3 kg
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 47
• Cover can be painted to blend with background
• No Cisco logo
Ruckus 7782
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 48
1552E 1532E
1550 Parameter 1530 SFP backhaul X Cable backhaul X CleanAir X ClientLink X Direct AC power input X
PoE Out X GPS X Battery Backup X Haz Loc version X
1550 supports many options not available on the 1530
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 49
Aironet AP Series End of Sale Announce
End of Sale Date
SW End of Support*
HW End of Support
Software Release Support
Recommended Aironet 802.11n
G2 Series Indoor
1130, 1240v Jan 25, 2013 Jul 26, 2013 Q3 2016 Jul 31, 2018 Last MD release – 8.0.x Last feature release – 8.0 1600 / 2700
1040, 1140, 1260v Apr 2, 2013 Oct 1, 2013 Q3 2016 Sep 30, 2018 Last MD release – 8.0.x,
IOS XE 3.6 (Amur) Last feature release – TBD
1600 / 2700
1040, 1140 for EU/ETSIv♯ Sep 1, 2012 Nov 30, 2012 Q3 2016 Mar 31, 2018
Last MD release – 8.0.x, IOS XE 3.6 (Amur)
Last feature release – TBD 1600 / 2700
3500 No plan currently No plan currently TBD No plan currently Beyond 8.0 3700 Outdoor
1310 July 2012 January 2013 Q3 2013 Q1 CY18 Last feature release – 7.0.x 1530 / 1550
1520v October 2011 March 2012 Q3 2016 Q1 CY17 Last MD release – 8.0.x Last feature release – 8.0 1530 / 1550
1524SBv Q4 CY12 Q2 CY13 Q3 2016 Q2 CY18 Last MD release – 8.0.x Last feature release – 8.0 1530 / 1550
Dates above presented as Quarter CY are provided a Target dates, instead of Actual. v Only hardware support in 8.0 for 1130,1240, and 1520. New features introduced in 8.0 not be supported. ♯ Earlier EOS timeline for EU/ETSI due to new DFS rules starting 2013
*Projected, based on 2 years out from 8.0 FCS
CISCO CONFIDENTIAL – NDA ONLY
Cisco Confidential © 2010 Cisco and/or its affiliates. All rights reserved. 50
WLC High Availability
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 51
5500, WiSM2, 7500, 8500 Series
L2 Redundant Link
Active WLC Hot-Standby WLC
Since 7.3, and evolving
• 1:1 wireless stateful failover capability in appliance and integrated controllers • SSID is always beaconing (even after primary controller is down) • Subsecond WLAN network convergence
Backup Controller (Requires L2 Adj.)
5508
WiSM2
Flex7500
8500
2500
$20,000
$25,000
$40,000
$60,000
(N + 1 only) $2,000
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 52
with Integrated 802.11ac (3x4:3SS)
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 53
with Integrated 802.11ac (3x4:3SS)
• Active – Standby 1:1 Redundancy
• Both WLC share IP Address of management interface
• Bulk and Incremental Config Sync
• APs does not go in Discovery state when Active WLC fails
• Supported on 5500 / 7500 / 8500 and WiSM-2 WLC
• Downtime 5 - 1000 msec in case of Box failover , ~3 seconds in case of Network Issues
• Auto-recovery from maintenance mode once Peer-RP and default gateway reach-ability is restored
• SSO Support for Internal DHCP Server
• SSO support for sleeping clients
• SSO support for OEAP 600
• CAC method Bandwidth allocation parameters for both voice & video and Call Statistics synced to the Standby
• GW reach-ability check mechanism enhanced to avoid false positives
• Peer RMI ICMP ping replaced with UDP messages
• Faster HA Pair-up
• Active – Standby can be geographically separated over L2 VLAN/Fiber
• Client database is synced to the Standby
Client information is synced when client moves to RUN state.
Client re-association is avoided on switch over
• Fully authenticated clients(RUN state) are synced to the peer
• Effective service downtime = Detection time + Switch Over Time (Network recovery/convergence)
Phase 1 : APSSO 7.3
Phase 2 : Client SSO 7.5
Phase 3 : Improvements 8.0
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 54
Bulk Sync Status
Enhanced debugs/ serviceability for HA
Configurable keep-alive timer/retries and peer-search timer value
Replace peer RMI ICMP ping with UDP message
Standby WLC on-the-fly Maintenance mode
Default gateway reachability check enhancement
Faster HA Pairup
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 55
Mechanism to convey the status of Bulk Sync, both AP and Client sync
Status can be Pending/In-progress/Complete
Output of “show redundancy summary” will also reflect Bulk Sync status
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 56
New categories of Statistics
All
Infra
Transport
Keep-Alive
GW-Reachability
Config-Sync
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 57
Keep-alive retry 3 to 10
Keep-alive timer 100 to 1000ms
Peer search timer 60-300 s
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 58
‘Internal DHCP Server’ can be
configured on HA enabled Controllers
Synced to Standby WLC so that soon after a Switchover the ‘Internal DHCP
Server’ on new Active will start serving clients.
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 59
Sleeping Client DB sync between
Active and Standby WLC
Sleeping clients avoid web re-
authentication if they wake-up
within the sleeping client timeout interval post switchover
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 60
OEAP600 APs will not to reset their
CAPWAP tunnel
Clients will continue their
connection with the new
Active controller in a
Seamless manner
Cisco Confidential © 2010 Cisco and/or its affiliates. All rights reserved. 61
Application Visibility and Control
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 62
• Application classification and Control of 1039 applications with NBAR2 engine
• Support of 16 AVC profiles with 32 rules per profile
• One AVC profiles support per WLAN; same profile support on multiple WLANs
• AVC profile mapped to WLAN has a rule for MARK or DROP action
• Graphical presentation on the controller of all classified applications
• One NetFlow exporter and monitor can be configured on WLC
• AVC NetFlow monitoring on PI with PAM license
• Protocol Pack 4.1 Support in AVC phase 2
• Additional application support – total of 1056
• Protocol Pack dynamic load to update applications support
• Protocol Pack 9.0
• NBAR Engine rel 3.1
• AAA AVC Profile over-ride for clients
• AVC Per Application, Per Client based Rate limiting on WLAN
• Integration of AVC profiles to the Local Policy classification per user and per device
• AVC Directional QoS DSCP Marking for Upstream and Downstream traffic
• Support for 1088 applications
• AVC – 8.0
• Phase-3
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 63
• In Rel 8.0 AAA AVC profile over-ride per clients to obtain different AVC profiles even though they are connected to the same WLAN.
• AAA attribute for client or for a user profile can be configured on AAA servers, e.g. Open Radius/Cisco ACS/ISE.
• The AAA attribute is defined as a generic Cisco “AV-Pair” and can be defined as a string and value pair in AAA.
• The AAA AVC Profile is defined as a Cisco AV Pair. The String is defined as “avc-profile-name” . This has to be configured for any AVC profile existing on the WLC.
Prior to rel 8.0 AVC Profile is configured on a WLAN and all clients connected to that WLAN would inherit the same AVC profile.
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 64
Teacher
YouTube
Teacher Student
YouTube Facebook bittorrent
Student
Cisco-av-pair=avc-profile-name=<avc profile on wlc> PI/AAA WLC
Switch
AP
SSID: Classroom Security:WPA2/802.1x
Cisco-av-pair=role=<role name>
Skype Facebook Skype bittorrent
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 65
ISE configuration for AVC
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 66
AVC configuration for AAA override Example – Teacher, Student
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 67
(WLC) >show client detail 18:20:32:bd:52:b7
Client MAC Address............................... 18:20:32:bd:52:b7
Client Username ................................. student1
Client State..................................... Associated
Client User Group................................ student
Client NAC OOB State............................. Access
Wireless LAN Id.................................. 2
Wireless LAN Network Name (SSID)................. ClassroomAVC
Wireless LAN Profile Name........................ ClassroomAVC
Policy Manager State............................. RUN
Policy Manager Rule Created...................... Yes
Audit Session ID................................. 0a0a0a0500000061533434e9
AAA Role Type.................................... student
Local Policy Applied............................. None
AVC Profile Name: ............................... student-AVC
CLI AVC client configuration > show client detail
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 68
AVC Profile Applied on the WLAN
(WLC-IPv6) >show avc profile detailed <Profile Name>
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 69
Granular Policy for AVC – Use Cases User and Device specific Application Policies
ROLE BASED APPLICATION POLICY • Alice(Nurse) and Bob(IT Admin) are both employees in a hospital • Both Alice and connected to same SSID. • Bob can access certain applications (for e.g. YouTube), Alice cannot
ROLE BASED + DEVICE TYPE APPLICATION POLICY • Alice can access EMR info on an IT provisioned Windows Laptop • Alice cannot access EMR info on her personal iPAD
ROLE BASED + DEVICE TYPE + APPLICATION SPECIFIC POLICY • Alice has limited access (rate limit) to Skype on her iPhone and
limited download (directional) for Bittorrent
Cisco Confidential © 2010 Cisco and/or its affiliates. All rights reserved. 70
Bonjour Phase 1, II and III
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 71
Bonjour - 7.5 Phase -2
Bonjour - 8.0 Phase -3
• Bonjour service with mDNS gateway for wired and wireless services
• Bonjour Service policy applied per Interface or per WLAN
• mDNS services cached on the controller
• Bonjour services available on all Controller seen L2 domains
• Bonjour services supported on the Anchor controller
• Bonjour services supported with L2 and L3 roaming
• 100 services and 64 service-providers per service type
• Support of Flex Connect APs in central and local mode
Bonjour - 7.4 Phase -1
• Support of mDNS services across L3 domains
• Introduction of mDNS AP for Bonjour service snooping on 10 Wired VLANs
• LSS – Location Specific Services
• Priority MAC of Bonjour service
• Origin Based service discovery
• 6400 services and service-providers per service type
• Bonjour GW with access policy controlled service discovery
• Device service mapping to access policy
• Bonjour Group and single access policy management
• Bonjour profile control by local policy
• Bonjour Device management from ISE portal
• Introduction of Bonjour admin to manage specific Bonjour services from Cisco Prime
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 72
Scaling and Expanding Services • In 7.4, we worked on mDNS GW on the controller, Service snooping and Unicast
responds to Service requests
• In 7.5, we worked on scaling and expanding services: 1. Location Specific Services (LSS): tired of seeing all wireless Apple TVs in the entire campus? Enable “LSS”, and only see the Bonjour devices on the AP you are associated to
2. mDNS AP: In 7.4, wired devices must be on WLC trunk to be seen. In 7.5, Bonjour devices on mdns-AP switch are also listed
3. Origin-Based Service Discovery: only want to see wired Bonjour Devices (including mDNS AP)? Or only wireless Bonjour devices? Enable Origin-Based Service Discovery and you will only see wireless or wired
Apple TV
VLAN X
AP WLC L3 Switch
VLAN Y
Trunk
AirPrint VLAN Z
CAPWAP Tunnel
I want to see this one
Bldg 5
Not this one! I can see that one too now attached via mdns-AP !
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 73
Scaling and Expanding Services - continued • In 7.5, we worked on scaling and expanding services:
4. Service limit: extended from 100 devices / 64 services to 6400 on 2500,5508,WiSM2 and vWLC and 16000 services on 7510 and 8510 UC Controllers.
5. Priority MAC: (in large campuses), ensures that up to 50 MAC per Service Instance addresses are always listed, even if network contains more than 6400 / 16000 services
6. Bonjour Browser: WLC lists all discovered services, even if you did not configure them (easier to add to the WLC service list)
Apple TV
VLAN X
AP WLC L3 Switch
VLAN Y
Trunk
AirPrint VLAN Z
CAPWAP Tunnel
Make sure everyone sees that TV
These are the services I see: pick the ones you need
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 74
Policy Components
Organize by using policies • In 8.0 you can create Service Groups: Users (roles and identity), Devices, Service
• And then you decide how these Service Groups interact by using Bonjour Polices and Profiles with ISE on mDNS enabled Controller
Location Device Type
Student
Teacher
Admin
John
User-Role Identity
Bonjour Instant
Services
WLC
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 75
AirPlay
Bonjour Policy Example for Education
Teacher Network
mDNS Service Instances Groups
Student Network
AirPrint AirPlay File Share
Teacher Service Profile
AirPlay File Share
Student Service Profile
iTunes Sharing
Same WLAN
Apple TV1 Apple TV1
Apple TV2
AirPrint
Teacher Service Instance List
Student Service Instance List
76 © 2012 Cisco and/or its affiliates. All rights reserved.
High Density Design requirements for the Digital
Classroom
© 2012 Cisco and/or its affiliates. All rights reserved. 77
Cisco Confidential 78 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
HDX Technology High Density Experiences
802.11ac interference detection and mitigation
PREDICTABLITY
Beam forming for 802.11a/g/n/ac
UNMATCHED SCALE
Optimized for high density performance
HDX Technology = Solution for High Density BYOD Environments
n
n
AP
ac
ac
n
ac
CLEAN AIR CLIENT LINK TURBO BOOST
BATTERY SAVINGS
INTELLIGENT ROAMING
OPTIMIZED ROAMING
RF NOISE REDUCTION
RELIABILITY
Unstick clients as they roam between AP’s or to cellular
Recycle RF channels to maximize spectrum efficiency
© 2012 Cisco and/or its affiliates. All rights reserved. 79
Co channel interference is key. Consider using only 20Mhz wide channels instead of bonding channels at 40 or even 80Mhz for 802.11ac. You will need to shutoff some of the 2.4Ghz radios depending on how many AP’s are in the room for channel isolation. Remember, 2.4Ghz has only 3 channels, 1,6 and 11. I use about 50 users per AP for rough sizing guide before construction. AP’s outside of the HDR can cause co-channel interference. Consider this into the design and you maybe able to isolate them with patch antenna’s also. Omni directional antennas are NOT a good option for HDR because of RF propagation. Always use a directional patch antenna such as the Cisco AIR-ANT2566 as this will help reduce the RF cell size. Using ether a 3602E or 3702E is a good option from an AP standpoint. Reduce data rates to reduce cell size on both the 2.4 and 5Ghz spectrum. AP’s with directional patch antennas won’t hear each other very well for TPC so RRM will adjust the power to the highest power. Make sure to survey and set power to lower maximum to achieve 20% overlap of cells. With no occupancy in the room, RRM will adjust TPC lower. Since RRM does slow incremental adjustments, consider setting a minimum TPC power setting for for when the 180lbs water bags fill the room again. Set a value for RX-SOP “Receive Start Of Packet”. This will make AP’s hard of hearing for other AP’s and clients on the same channel. Be careful !!
© 2012 Cisco and/or its affiliates. All rights reserved. 80
• Receiver Start of Packet Detection Threshold (RX-SOP) determines the Wi-Fi signal level in dBm at which an AP radio will demodulate and decode a packet.
• The higher the level, the less sensitive the radio is and the smaller the receiver cell size will be
• By reducing the cell size we can affect every thing from the distribution of clients to our perception of channel utilization
• This is for High Density designs – and requires knowledge of the behavior you want to support
• A client needs to have someplace to go if you ignore it on the current cell
WARNING – This setting is a brick wall – if you set it above where your clients are being heard – they will no longer be heard. Really.
© 2012 Cisco and/or its affiliates. All rights reserved. 81
• Reduce sensitivity to interference and noise – reduce Channel Utilization
• It sharpens the cell edge – we will hear what we intend to cover
• Caveats – You can significantly reduce coverage You can make it impossible for intended clients to associate or communicate with your AP
• This feature is to be used in conjunction with a known design to solve a specific problems when you understand the coverage and usage of the network by the users
• RX-SOP is available at the global level as well as in RF profiles – Strongly recommend applying only through profiles – to solve specific problems with HDX
© 2012 Cisco and/or its affiliates. All rights reserved. 82
• Settings High, Medium, Low, Auto
• Auto is default behavior, and leaves RX-SOP function linked to CCA threshold for automatic adjustment
• Most networks can support a LOW setting and see improvement
• This affects all packets seen at the receiver
83
-80dB
-85dB
Today’s Solution Cisco “Optimized Roaming”
3G or 4G
-80dB -80dB
Weak Wi-Fi Signal
Client Stickiness Causes Poor
User Experience
Overall Drop In Cell
Performance
Consistent User
Experience Efficient Cell
Usage
© 2012 Cisco and/or its affiliates. All rights reserved. 84
• Sets a threshold RSSI value and or Minimum Data rate that a client will be sent a deauth at
• Developed to support Cellular Hand Off
• Global configuration of 4 Parameters available
Enable/Disable Interval (seconds) Data Rate threshold RSSI threshold configured through Data CHD
• Trigger is Pre-Coverage hole event – set under CHDM config
© 2012 Cisco and/or its affiliates. All rights reserved. 85
• Enable/Disable – Global command
• Interval = #seconds between checks at the Radio
• Data Rate threshold-
• Used in conjunction with RSSI threshold, if set is a gating function where both data rate and rssi must be true for action – default is disabled
• RSSI threshold – set through data RSSI config in Coverage at the global level, and under RRM in RF Profile
© 2012 Cisco and/or its affiliates. All rights reserved. 86
36!
40!
44!
48!
52!
56!
60!
64!
68!
72!
76!
80!
84!
88!
92!
96!
100!
104!
108!
112!
116!
120!
124!
128!
132!
136!
140!
144!
149!
153!
157!
161!
165!
169!
173!
177!
181!
20 40 80
160
US
Europe Japan
20 40 80
160
India 20 40 80
160
China
Existing Channel New Channel
UNII-2 UNII-1 NEW! UNII-2 NEW! UNII-2 UNII-3 NEW!
5250 MHz
5350 MHz
5470 MHz
5725 MHz
5725 MHz
5925 MHz
© 2012 Cisco and/or its affiliates. All rights reserved. 87
© 2012 Cisco and/or its affiliates. All rights reserved. 88
© 2012 Cisco and/or its affiliates. All rights reserved. 89
© 2012 Cisco and/or its affiliates. All rights reserved. 90
© 2012 Cisco and/or its affiliates. All rights reserved. 91
© 2012 Cisco and/or its affiliates. All rights reserved. 92
Local Edition
Clean Air Demo using MetaGeek
© 2012 Cisco and/or its affiliates. All rights reserved. 94
Local Edition