1 Alexander Kudryashov Networking Architect [email protected] February 2011 Changing the...
-
Upload
zackary-longfield -
Category
Documents
-
view
228 -
download
6
Transcript of 1 Alexander Kudryashov Networking Architect [email protected] February 2011 Changing the...
1
Alexander KudryashovNetworking [email protected]
February 2011
Changing the Rules of NetworkingIntroduction to the new HP Networking portfolio
2
Useful Links
– http://www.hp.com/networking/
– http://www.hp.com/networking/warranty
– http://www.hp.com/customercare/services/carepacks/care-packs.htm
– http://www.procurve.com/configurator
– http://h17007.www1.hp.com/us/en/support/converter/index.aspx
– http://h18000.www1.hp.com/products/quickspecs/division/division.html#12042
– https://my.procurve.com/knowledgebase/knowledgemanagement.aspx?smp=1
– http://h10144.www1.hp.com/products/eos/index.htm
– http://h10144.www1.hp.com/library/interoperability.aspx
– http://h17007.www1.hp.com/us/en/training/certifications/index.aspx
– http://h41156.www4.hp.com/education/index.aspx?cc=ru&ll=ru
3
Product Help !!!
Technical information on:– Product structure, features, functionality– Theory of operation– Compatibility & connectivity– Part numbers, options, licensing– Support statements, technical documents
OBP Technical Presales Support
– [email protected] - English– [email protected] - Russian
Partners, HP, Distributors, SI
4
How Design Network ?! ENDC !
Gather information related to the network project• ID of order!• End customer • Network structure (user, resource, servers), cabling)• Solution needs (Security, high availability…)• Any technical documentation related to the project (existing plan, RFP/RFI…)
Send your information to ENDC
Web : http://h40060.www4.hp.com/procurve/customercare/services/design_center/form.php?cc=uk&lc=en
55
Agenda
– Changing Rules of Networking
– Networking Portfolio Overview
– A Series Switches
– A Series Routers
– E Series
– Wireless
– V Series
– S Series
– Network Management
– Competitors overview
6
HP Networking
ProCurve ++ =
7
HP offers the complete solution
8
HP is Changing the Rules of NetworkingBridging the Network Architecture Gap
How we do it at
Modern OS and protocols
Unified Network Architecture - Wired/wireless integration
DV Labs Proactive Security
Modern architecture
Integrated security; Zero Day Initiative
Based on open standards
50% lower power consumption
End-to-end single mgmt
Leading warranties and svcs.
What it means for Customers
Operational consistency Faster recovery/resiliency
Fewer devices; lower Capex
Faster deployment; Proactive protection
Up to 2x better performance
2.3x more attacks blocked
Easier integration
Lower Opex
Better aligned resources; Comprehensive visibility
Investment protection
Reduced Network
Complexity
Higher Performance
and Flexibility
Lower TCO
9
Changing The Rules With Experience & Expertise Long history of success
• 30 years in networking• Fastest growing vendor since 2001• #2 vendor in Enterprise Networking
Customer Intimacy
• 60% increase in networking-focused sales specialists• 5,500 enterprise sales with Converged Infrastructure focus
Technical expertise
• 5,000 certified network professionals•14,000 networking certifications• Deep practices in network migration, unified comms, and business transformation
Partner Ecosystem • 40,000 networking Partners• Global coverage with sales, delivery and support
HP will run on HP Networking
• Commitment to transform HP networking infrastructure to 100% HP;• Support 300,000 employees plus partners & suppliers
10
MAGIC Quadrant:Enterprise LAN (Global), 2010
HP Positioned in Gartner’s
Leaders Quadrant
The Gartner Magic Quadrant is copyrighted June 2010 by Gartner, Inc., and is reused with permission. The Magic Quadrant is a graphical representation of a marketplace at and for a specific time period. It depicts Gartner’s analysis of how certain vendors measure against criteria for that marketplace, as defined by Gartner. Gartner does not endorse any vendor, product or service depicted in the Magic Quadrant, and does not advise technology users to select only those vendors placed in the “Leaders” quadrant. The Magic Quadrant is intended solely as a research tool, and is not meant to be a specific guide to action. Gartner disclaims all warranties, express or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
The Magic Quadrant graphic was published by Gartner, Inc., as part of a larger research note and should be evaluated in the context of the entire report. The Gartner report is available upon request from HP Networking.
Figure 1. Magic Quadrant for Enterprise LAN (Global)
Source: Gartner (June 2010)
11
Networking Portfolio Overview
networking together.
12
VALUELAN Switching
MobilityWAN
Portfolio Design Centers by FamilyLarge Enterprise
Small Business
Established Technology
Advanced Technology
ESSENTIALLAN Switching
MobilityNet Management
Security
ADVANCED & SECURITY
DC/LAN SwitchingWAN Routing
MobilityNet Management
Security
13
Web Managed Switches
HP V19x0HP V1810HP V1700
Unmanaged Switches
HP V14x0HP V2124HP V408
WLAN/WAN
HP V1xx Wireless Routers
Modular Switches
HP A12500HP A9500HP A7500
Top of Rack Switches
HP A5810HP A5820HP A6600
Server Blade Switch
HP A6120
Fixed Port Switches
HP A5800HP A5500HP A5120HP A36x0HP A3100HP Intellijack
Routers
HP A8800HP A6600HP A-MSR 50HP A-MSR 30HP A-MSR 20HP A7000
WLAN
HP A-WX5004 ControllerHP A-WA2xxx Access PointsHP A3000 Wireless SwitchesHP A9000 Access PointsHP A8760 Access PointHP A7760 Access Point
Management
IMCNNMiNA
Edge to Core, Enterprise to SMB
Portfolio breadth and depth
Modular Switches
HP E8200HP E5400HP E4200
Fixed Port Switches
HP E5500GHP E4800GHP E3500GHP E2910GHP E4500GHP E25x0GHP E4200GHP E5500HP E3500HP E4500HP E2610HP E4210HP E2810HP E25x0
WLAN
HP E-MSM7xx ControllersHP E-MSM4xx Access PointsHP E-MSM3xx Access PointsHP E-M110 Access PointHP E-MSM317 Access Point
Unified Communications
HP UC ApplicationsHP VCX Connect PlatformHP VCX Enterprise PlatformHP VCX GatewaysHP 3x00 IP Phones
Management
PCM/PCM+IDMNIMTMS zl Module
IPS
HP S5100NHP S2500NHP S1400NHP S660NHP S330HP S110HP S10HP Core Controller
Management
SMSHP SMS Controller
ADVANCED ESSENTIAL VALUE SECURITY
Advanced: For customers with large/complex deployments seeking advanced, full featured networking technology to drive competitive advantage with lower cost of ownership.
Essential: For customers seeking essential proven technology that’s affordable and easy to use while providing scalability for future needs.
Value: For value-conscious customers seeking reliable and easy-to-use connectivity solutions.
Security: For companies that require world-class network Security solutions to proactively stop threats and deliver business continuityNote: “x” in a product series name indicates multiple series numbers are available
14
©2010 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice
HP A Series Switches
©200915
A-Family Modular Switches
A12500 Series• 18 and 8-slot 6.6/3.3 terabit
switches• Up to 144 (1:1)/576 (4:1)
10GB & 864 Gig ports• Non-blocking, zero service
interruption design• Architecture supports
40/100-GbE • Wire speed
L2/IPv4/IPv6/MPLS• Intelligent Resilient Fabric
(IRF)
A9500 Series• 12, 8 and 5-slot 1.4
terabit switches• Up to 192 10GB &
576 Gig ports• Load-sharing fabrics,
redundant chassis, management, power supplies, fans IRF stacking
A7500 Series• 10, 6, 3 and 2-slot, 1.2 terabit
switch• Up to 84 10GB and 504 Gig ports• Red. main control; passive
backplane; IRF• IPv4, IPv6, OSPF, BGP, IS-IS
A5800/A5810/A5820Series• Family of Gig & 10-Gig
Switches• Both modular & fixed-
port (up to 48 ports)• Media & OAA module
slots; IRF; IPv4/IPv6AC and DC power options
16
HP A12500 Datacenter switch
– PERFORMANCE• 6.6Tbps (13.32Tbps) switching /13’s latency• Up to 864 Gigabit ports or 512 10 Gigabit ports• Virtual Resilient Switch Fabric (IRF ®, RRPP)
– FEATURES• Future proof resilient architecture designed to support
40/100GE FCoE• Non-blocking, zero service interruption design• Fully distributed switching and software architecture• Separate control and forwarding planes • IRF™ technology enables virtual chasswith sub 50 mS
convergence• Supporting MPLS
– WHY IT WINS• Future proofed architecture – 40/100G, PoE+• Management consistency via Comware OS and IMC• High performance multi-core service modules• 2X the performance of Competitor• Green Design – consumes 50% less power than Competitor
17
A9500 - State-of-the-art Enterprise Core Modular Switch– PERFORMANCE
• 857 Mpps forwarding / 1.4 Gbps• Up to 192 ports 10GE or 576 ports Gigabit• Virtual Resilient Switch Fabric (IRF ®, RRPP)
– FEATURES• Extensive high availability and security• HA / hot swappable modules• Extensive Layer 2 and Layer 3 features• Supports integrated services, including Firewall, WLAN
Controller, Load Balancer and Network Monitoring
– WHY IT WINS• Future proofed architecture – 40/100G, PoE+• Management consistency via Comware OS and IMC• High performance multi-core service modules• 2X the performance of Competitor• Green Design – consumes 60% less power than Competitor
A9512
A9508-V
A9505
18
A7500 – Flexible Enterprise Modular Switch Family– PERFORMANCE
• 714 Mpps forwarding / 1.2 Tbps• Supports up to 84 ports 10 Gigabit and 504 ports Gigabit• Virtual Resilient Switch Fabric (IRF ®, RRPP)
– FEATURES• Extensive High Availability and Security• HA / Hot Swappable Modules• Extensive Layer 2 and Layer 3 features• High PoE+ port density• Supports integrated services, including Firewall, WLAN
Controller, Load Balancer and Network Monitoring
– WHY IT WINS• Future proofed architecture – 40/100G, FCoE, DCE, PoE+• Management Consistency via Comware OS and IMC• High Performance Service Modules• Green Design – consumes 60% less power than Competitor• 1.8 X the performance of Competitor• 3 X the performance of Competitor (access) A7502
A7503 A7506
A7506-V A7510
A7503-S
19
A5820X / A5800 Series Flex-Chassis
– PERFORMANCE• Wire speed Gigabit switches with 10-Gigabit ports
• A5820X – up to 24 port 10Gig per unit / 192 per stack
• A5800 – up to 80 port 1Gig per unit / 640 per stack
– FEATURES• Modules for 2 and 4 Port 10G interfaces, 16 port
Gigabit interfaces, and Service Modules• Full management features for Enterprise
deployments• Layer 2/3/4 switching with adv Layer 3 RIP and
multicast (OSPF / PIM) routing• Full IPv6 routing and management• PoE+ ready
– WHY IT WINS• Unique Flex Chassis design delivers chassis-like
resiliency in a fixed form factor• Flexibility allows multiple hardware
configurations, including seamless 10GE upgrades and support for integrated applications
• Enterprise-class Comware OS with operational consistency across other Enterprise switches and routers
Building or Department Enterprise Core, High Density
Aggregation and Access or Data Center Top-of-Rack Switch
20
A-Family Fixed-Port and Blade Switches
A3100 Series• 24, 16 & 8-port 10/100 Layer 2,
Lite Layer 3 switches w Gig uplinks
• PoE/non-PoE; AC/DC; .1x & MAC Auth
A36x0 Series• 24 & 48-port 10/100 switches
w Gig uplinks• Redundant power• IPv4/IPv6 routing
* Product or some product features specifically designed for Data Center applications.
A5800/A5810/A5820 Series• Family of Gig & 10-Gig
Switches• Both modular & fixed-port (up
to 48 ports)• Media & OAA module slots;
IRF; IPv4/IPv6• AC and DC power options
A5120 Series• Layer 2, Lite Layer 3 24/48-
port Gig switches w 10GB uplinks
A5500 Series• 24 & 48-port Gig switches w
10GB uplinks• PoE/non-PoE; AC/DC; IRF;
IPv4/IPv6
A6600 Series*• 24 & 48-port Gig and 10GB
TOR switches• F-to-B/B-to-F airflow, red.
fans, PSUs
HP A6120 C-Class Server Blade Switches*• Gig/10GB and 10GB• 10-GbE switch CEE capable
21
©2010 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice
HP A Series Routers
22
HP’s Comprehensive Router Portfolio
A8800
MSR20-1x
MSR
MSR20 Series
A6600
A6602 A6608
A8802 A8805 A8808
MSR30 Series MSR50 Series
MSR20-11 MSR20-12 MSR20-15MSR20-13
A6604
A8812
A6616
MSR 900MSR 900 MSR 920
New modern architecture, leveraging common OS, management and network design/resiliency protocols
23
Key Features Benefits
NP based 10GE distributed architecture
Innovative architecture ensures better service and more applications
Carrier- Class Reliability Provides continuous and stable
multiple services
Managed services (VPN, H-QOS, Security, OAM, Net stream, NAT)
Ease the management and deployment of multiple services
Green Design Lower power consumption
A8800 RoutersNP based, 10GE core Routers
24
A6600 RoutersOpen, Multi-core, Distributed Processing Routers
Key Features Benefits
Advanced Architecture: Multi-Core CPU, distributed processing, Integrated application module support
Innovative architecture ensures better services and more applications.
Integrated Multiple Services Processing No additional cost for VPN, NAT, NetStream modules
Embedded encryption and all-around security feature
Protect business assets and reduce overall costs
Flexible extensibility and compatibility Ease network upgrade and protect investment with backward-compatible modules.
Carrier-class Reliability Ensure multiple services continuous and stable
25
MSR50 Series Reliable, Secure, Multi-Service Router Platforms
Key Features Benefits
Excellent processing performance; Concurrent service processing without compromise
Convenience of Routing, Switching, Voice, Security.
Reduce capital investments and operational costs
High Reliability Ensures services are continuous and stable
Unified iMC management platform Simplifies operations by managing services using unified tools
Integrated application support Develops a rich portfolio of applications Expands the scope of cooperation Promotes a win-win situation
26
MSR30 SeriesFlexible, Secure, OAA-Ready Multi-Service Router Platforms
Key Features Benefits
Excellent processing performance; Concurrent service processing without compromise
Convenience of Routing, Switching, Voice, Security.
Reduces capital investments and operational costs
Unified IMC management platform Simplifies operations by managing services using unified tools
Integrated application support Develops a rich portfolio of applications Expands the depth of cooperation Promote a win-win situation
27
MSR20 SeriesAffordable, Flexible, Secure WAN and LAN Access
Key Features Benefits
Excellent processing performance; Concurrent service processing without compromise
Convenience of Routing, Switching, Voice, Security.
Reduces capital investments and operational costs
Unified iMC management platform Simplifies operations by managing services using unified tools
Integrated 2 WAN and LAN ports Take advantage of fixed-configuration models
28
MSR 20-1X and 900 All-in-one BoxEconomical, Flexible, Secure WAN, Wired and Wireless LAN Access
Key Feature Benefit
Wireless, WAN, LAN, Voice, VPN firewall all-in-one
Reduced overall cost, power consumption, space requirements and complexity
Compact Design Desktop or rackmount supported
Fixed-port and modular designFixed ports to reduce cost Modular increase flexibility
Simplified managementWeb management, easy to deploy, especially for non-technical users
29
MSR Series Competitive Advantages – Multiple Service Integrated
–Data, voice SIP and H.323, LAN switching, WLAN, 3G, FW, IPSec/SSL VPN all-in-one
– Integrated Application Support: WAN optimization, VCX solution,
– Multiple Link Access
–Traditional link: Serial, E1/T1, ADSL, G.SHDSL, ISDN/AM backup,
–High-density Ethernet access: WAN FE/GE, LAN 4/9/16/24-port FE, PoE
–Mobility access: 11g/n WiFi, 3G;
– Full Security and Access Control
–Routing and forwarding security: MD5, uRPF, Advanced ACL, TACACS+
–Service security: DAR (Deep application Recognition), EAD solution, anti-P2P, anti DOS attack
–VPN: L2TP/GRE/IPSec/SSL VPN.
– Easier Management and Deployment
– IMC: intelligent Management Centre
–Management tools: CLI, WEB, TR069
30
©2010 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice
E Series
31
E-Family Summary
Design Center• Mainstream businesses: mid to large• Target customer Attitude: Networking is a cost center, pragmatic, risk averse
Key Product Attributes• Easy to use• Highly reliable• Moderately scalable• Fully managed• Lifetime warranty
32
E5400 Series• 12 & 6-slot switches• Up to 288 Gig/48 10GB ports• PoE, PoE+ and non-PoE
modules• Options for imbedded ONE,
firewall, wireless and management services
• IPv4 routing and IPv6 host
E-Family Modular Switches
E8200 Series• 12 & 6-slot switches• Up to 288 Gig/48 10GB ports• Redundant management
modules,backplane and power supplies
• PoE, PoE+ and non-PoE modules
• Options for imbedded ONE, firewall, wireless and management services
• IPv4 routing and IPv6 host
E4200 Series• 8 & 4-slot switches; • Layer 2 with static routing• Cost effective 10/100/1000
connectivity with 10GB uplinks
33
E2610 Series• 24/48-port switches with Gig
uplinks• PoE, partial PoE and non-PoE
Layer 2 Only
E-Family Fixed-Port Switches
Full Layer 3
E3500 Series• 24/48-port Gig & 10/100
switches• PoE/PoE+ and non-PoE• IPv4 Routing/IPv6 host
Lite Layer 3
E45x0 Series• 24/48-port Gig & 10/100
switches• PoE and non-PoE
E2510 Series• 24/48-port Gig &
10/100 switches
E2520 Series• 8/24-port Gig & 10/100
PoE switches with Gig Uplinks
E5500 Series• 24/48-port Gig & 10/100
switches• SRN resilient stacking• PoE/non-PoE
E4800G Series• 24/48-port switches w
10GB slot• PoE and non-PoE
E2910 Series• 24/48-port switches w 10GB
slot• PoE/PoE+ and non-PoE
E2810G Series• 24/48-port Gig switches
with Gig Uplinks
E4200G Series• 12/24/48-port Gig switches• PoE/nonPoE
E4210 Series• 8/16/24/48-port 10/10• PoE/nonPoE
34
The HP-E ONE Services zl Module
HP ProCurve ONE Services zl Module:• Intel T7500 Core 2 Duo, 4G Main Memory, 4G
Flash, 250G HDD• 2 x 10G Ethernet connections to backplane• Future plans include virtualization, scalability,
other form factors, and closer coupling with the management and forwarding plane
Supported in zl series chassis:• 5400zl for edge & branch (4U / 7U)• 8200 with high availability for core and
distribution
HP-E Switch 8212zl
35
HP HP-E TMS zl Module
– Real-time threat detection and mitigation:
– Stateful firewall with deep packet inspection
– Intrusion detection/prevention system (IDS/IPS)
– IP Security (IPsec) VPN
– Integration with PCM+/NIM
36
©2010 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice
Wireless
37
UnifiedNetworkAccess
– Wired-like WLAN Reliability and Performance• Integrated 802.11n for increased capacity and coverage
• Highest capacity WLAN solution in industry
• Leverages high availability features of core chassis platform
– Increases Overall Network Security and Policy Control• Wired security benefits extend to WLAN: IPS, EAD, UAM
• Simplified security: identical user security, policy and QoS profiles for wired and WLAN
– Lowest TCO• Integrated network mgmt and Common OS reduces complexity and IT training/personnel - lowers deployment and maintenance costs
• Integrated WLAN and highest AP management capacity reduces required hardware, lowers CAPEX by 25%
UNA Enables Single Wired and Wireless Access Layer
Lowest TCO
SecurityReliability & Performance
HP Unified Network Access Redefines Edge Connectivity
38
Radically Simplify Design & Operations
Unified Network/Design, Policy, Security and NMS across Hardware,
Software and Management
Separate, Disjointed Networks, Policy, Security and NMS
WLANController
Wired LANWLAN
WLAN Net Mgmt Net Mgmt
Unified Network Access
Wired Switch with Integrated Wireless LAN Controller
Legacy – Overlay Now and Future – UNA
39
HP A-WA2110A/G Single Radio
HP A-WA2220A/G Dual Radio
HP A7500 Access Controller Module
HP A-WA2620XN Outdoor AP*Q4CY2010
Indoor APs Ruggedized APs
Unified Switches WLAN Controllers WLAN Controller Modules
HP A3000-24G-PoE+
HP A3000-10G-PoE+HP A3000-8G-PoE+
HP A-WX5004
HP A-WA2620N Single Radio
HP A-WA2612N Dual Radio
HP A-WA2620EN Dual Radio
HP A9500 Access Controller Module
HP A5800 Access Controller Modules
HP A-WA2610N Single Radio
New modern architecture, leveraging common OS, management and network design/resiliency protocols
Controllers
Access Points
HP A-Series Unified Network Access WLAN Portfolio
40
Industry-leading WLAN Capacity and Scalability
– Highest Capacity WLAN solution• Supports 640 APs from single controller module
• Supports 256 Aps from single 1U controller
• 20,000 users per controller module• MAC Address Table – 24,000 per controller module
• 20Gb/s of wireless throughput per controller module
– Local WLAN Switching• Intelligently streamlines network performance
• Eliminates WLAN controller bottlenecks
– WLAN Traffic Load Balancing• Balances network load to maximize user experience
A7500 Module A9500 Module
WLAN Controllers
WLAN Controller Modules
A5800 Module
Unified Switches
HP A3000-24G-PoE+
HP A3000-10G-PoE+HP A3000-8G-PoE+
HP A-WX5004
41
E-Family WirelessC
ON
TR
OLL
ER
SA
CC
ESS P
OIN
TS
E-MSM 317 Access Device
• Integrated Access Point and Switch
E-M100, E-MSM3xx, E-MSM4xx Series• Single / Dual / Tri
radios• Indoor and outdoor• 802.11a/b/g/n
E8200/E5400 SeriesWireless Controller Module• MSM765 module• Supports from 40 to 200
APs
E-MSM760Wireless ControllerAppliance• Supports from 40 to
200 APs
E-MSM710Wireless Controller Appliance• Supports up to 10 APs
42
A7500 ModuleA9500 Module(128-640)
E-MSM760E-MSM765 Module
(40-200)
E-MSM710(3-10)
Enterprise Class Wireless Solutions (Family A & E)
Wireless
HP Advantages:
• Seamless unified wired and wireless architecture
• Operation simplicity through single management console
• Optimized .11n architecture• Significantly Reduced TCO• Technology innovation• Superior solution scale from 3 –
640 Access Points per device
A5004A5800 Module
(64-256)
Acc
ess
Po
ints
Man
aged
(S
cale
)
640 APs
300 APs
200 APs
125 APs
100 APs
50 APs
25 APs
10 APs
5 APs
A3000(4-48)
E series A series
43
©2010 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice
V Series
44
V-Family Summary
Design Center• The V-Family is designed to meet the wired switching, wireless, and WAN networking needs of small businesses (<100 nodes)
• Customer: Do it yourself/non-technical small business
Key Product Attributes
Device Management
• Single-Device management
• Web GUI• No centralized
management• Limited CLI/SNMP
support
Design Center
• SW is bug fix only• HW is merchant
silicon• Rapid TTM• No guaranteed
feature roadmap
Warranty
• Mix of 3-year and Lifetime
• Enterprise-class phone support
45
Unmanaged
V-Family Smart Managed/Unmanaged Switches
Smart Managed
V1910 Series• 16, 24 and 48-port Gig
switches• Static routing; PoE and
HPoE
V1900 Series• 8-port Gig switch• 802.1x, Spanning Tree &
SNMP
V1905 Series• 8, 24, 48-port 10/100 & 10-
port Gig switches• ACLs; PoE and non-PoE
V1405 Series• 5, 8, & 16-port compact Gig
& FE switches• 16 & 24-port rack-mount Gig
& FE switches
V1810 Series• 8 and 24-port Gig web
managed switches• 8-port is fanless & can be
powered via PoE
V408 Series• 8-port fanless 10/100
switch
V2124 Series• 24-port 10/100 switch• with 100-FX transceiver
slot
V1400 Series• 8-port (fanless) & 24-port
Gigabit switches
V1700 Series• 8 and 24-port 10/100
switches• Web managed
46
WIR
ELE
SS
V-Family WLAN / WANW
IRELE
SS R
OU
TE
RS
V110• Wireless 802.11n routers• Multiple ADSL options• Four 10/100 LAN ports
V10ag• 802.11a/g Access Point• Can be powered by PoE
V-M200• 802.11a/g/n Access Point• Can be powered by PoE
47
©2010 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice
S Series
48
HP TippingPoint S-Series Products
TippingPoint S10
20Mbps • 2 Segments
TippingPoint S110
100Mbps • 4 Segments
TippingPoint S330
300Mbps • 4 Segments
TippingPoint S660N
750Mbps • 10 Segments
TippingPoint S1400N
1.5Gbps • 10 Segments
TippingPoint S2500N
3Gbps • 11 Segments
TippingPoint S5100N
5Gbps • 11 Segments
Core Controller
20Gbps • 3x10GbE
Security Management System (SMS)
Manage Multiple Units • Central Dashboard
Digital Vaccine
Broadest Coverage • Evergreen Protection
Web App DV and Scanning
Web Scan• Custom Filters • PCI Report
ThreatLinQ
Real Time Threat Intelligence
IPS Platform Solutions Security Intelligence
Reputation DV
IP Reputation • DNS Reputation
ROBO, Perimeter, Zone isolation, MSPs…
10GE Networks, Core, Data Center, Service
Providers…
Management, Accessories
DVLabs Services
SSL Appliance S1500
Transparent SSL Bridging and Off-Loading
vController and VMC
Virtual Data Center Security & Visibility
AvailableJune 7th, 2010
49
Designed for future security demands and services
Proactive
• In-line reliability
• In-line performance (throughput/latency)
• Filter accuracy
Security
• Leading security research
• Fastest coverage
• Broadest coverage
Costs
• Quick to deploy
• Automated threat blocking
• Easy to manage
Automated, Scalable Threat Protection
IPS Platform Introduction
Dirty TrafficGoes In
Clean TrafficComes Out
IPS Platform
Security Management System
50
TippingPoint IPS Platform
DVLabs Services:› Digital Vaccine› Web App DV &
Scanning› Reputation DV› Custom DV› ThreatLinQ › Lighthouse Program
DVLabsLeading security research
and filter development
Partners
SANS, CERT, NIST, etc.Software & Reputation Vendors
ThreatLinQ Monitoring
2,000+ Customers Participating
DVLabs Research & QA
30+ Dedicated Researchers
Zero-Day Initiative
1,000+ Independent Researchers
LEADING SECURITY RESEARCH – DVLABSIPS Platform is Only as Good as its Security Intelligence
51
Discovers 8-10 Times More Software Vulnerabilities
Leading Security Research – DVLabs
0
50
100
150
200
250
300
350
400
TippingPoint ISS Xforce McAfee Avert Labs
Juniper Sourcefire
Vuln
erab
ility
Dis
cove
ries
Cumulative Vulnerability Discoveries(Sep 2005 to Dec 2009)
391
46 43
8 4
0
20
40
60
80
100
120
TippingPoint ISS Xforce McAfee Avert Labs
Juniper Sourcefire
Vuln
erab
ility
Dis
cove
ries
2009 Vulnerability Discoveries
116
100 0 2
52
The HP Network-Embedded IPS Platform– TippingPoint IPS module in A7500:
Full TippingPoint IPS Solution with Reputation Service and Digital Vaccine
– Flexible Deployment Scenarios to secure traffic between network segments directly from the chassis
– A unified network and security management framework based on TippingPoint’s Security Management System (SMS) and HP’s Intelligent Management Center (IMC)
– 1.3 Gbps Inspected per blade
– Multiple blades per chassis (up to 10) for scalability and HA
HP A7500 Switch Series
HP TippingPoint S1200N IPSModule
53
Access Management
IMC EAD IMC GAM IMC UAM
SecPathUTM
U200-S U200-M U200-A
SecBlade Integrated Security
SSL VPNFW IPS Load BalanceNetStream
SecPathFirewall/VPN
F5000-AF1000-AF1000-S F1000-EF100-A
Defense in Depth Security Portfolio
54
©2010 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice
Network Management
55
Our Network Management Vision– An integrated approach to management
• Management & monitoring of not just the network but also the services, applications & users which depend on it
• Intelligence through application layer monitoring & behavioural analysis
• Integrated solutions for all infrastructure technologies
– Driving the adoption of secure, real-time services• Enabling next-generation network applications
– True multi-vendor networking• Provide genuine choice rather than proprietary ‘lock-in’• End the proliferation of vendor-specific tools
– User Centric• Creating user-specific network environments • Integration of the network with business applications to allow user management rather than device management
56
IMC - Single Pane Management for the Entire Network– Supports HP and 3rd party devices
• Includes comprehensive support for Cisco devices
– Fully integrated, comprehensive Management platform• Based on a Resources, Services and Users model
• Delivers full FCAPS solution
• Designed to support ITIL initiatives
– Rich Enterprise class functionality• Data Centre Orchestration
• User Access Management (UAM) & Endpoint Admission Defence (EAD)
• MPLS, VPLS, MPLS VPN & Wireless Management
– Client Server & Service Orientated Architecture (SOA)• Enables highly integrated modules to deliver new functionality
57
Comprehensive Management of Cisco Devices– IMC provides comprehensive management of Cisco devices
• Discovery & Topology
• Monitoring & Performance Management
• Data Center Orchestration
• Events & Traps
• Configuration Backup & Restore− Configuration comparison
− Base-lining and change notification
• Bulk Configuration
– Single management solution for mixed HP & Cisco networks• Simplifies Cisco / HP interworking & transitions
• Support for >2000 3rd party devices
• New device can be added in <1 week
58
I PS
Platforms
Endpoint Admission Defense (EAD)
Guest Access Module (GAM)
User Access Management
(UAM)
Technology Modules
Tools
IMC Portfolio
Network Traffic Analyzer (NTA)
Voice Services Manager (VSM)
IMC Enterprise IMC Standard
IMC Integration Kit
MPLS/VPN ModuleData Center Orchestration
QoS/SLA Module Wireless Services Manager (WSM)
59
HP
A-Family & E-Family Management
E-FamilyA-Family
HP Network Node Manager (NNMi)
Enterprise network managementHighly scalable multi-vendor
solutionPlug-ins: Performance, Routing,
Advanced Diagnostics
HP Network Automation (NA)Enterprise device configuration
managementHighly scalable multi-vendor
solution
Intelligent Management Center (IMC)
Provides topology views, config inventory, device management
Performance management using in-depth correlation analysis, real-time alarms,
troubleshooting and experience capture
Voice Services Manager
iNode Client Manager
Endpoint Admissions Defense
MPLS / VPN Manager
Wireless Services Manager
User Authentication Manager
Quality of Service Manager
Network Traffic Analyzer
ProCurve Manager Plus (PCM+)
Configure, update, monitor and troubleshoot devicesPolicy-based and multi-
device managementAdvanced traffic-monitoring
Network Immunity Manager
Identity Driven Manager
Mobility Manager
60
©2010 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice
Competitors overview
61
Switching Portfolio vs Other vendors
10 G
ig E
ther
net
Gig
Eth
ern
etF
ast
Eth
ern
et
EX3200
EX4200
S9500E
S7500E / 7900E
S5500Ei / 4800G
S5500Si / 4510G
S3610Ei /S3600EI
S3100Ei/4220
3Com 5500G
S5820X
S12500
S7500E
Dat
a C
ente
rEX8200
S5800
S3600Si / 4500
S3100Si / 4210
EX2500
3Com 4200G
6500E
6500E
4500E
3750E Series
3750G/3760G
3750G/3760G
3750G/3760G
3750/3560-EI
3750v2/3560E
3560
2960
CE500
4948-10GE
Nexus 7000
Nexus 5000/4900M
FastIron SuperX
FastIron SuperX
FastIron Edge
FastIron Edge X
FastIron GS/LS
FastIron WS
FastIron Edge
FastIron WS
FastIron CX
BigIron RX32
TurboIron
S5820X
BigIron RX16
S5810 Nexus 2148T
S5120EI/4210G
S5120SI/BL2900
2350
2350 / 2960G
62
Routing Portfolio vs Other vendors
Ch
assi
sM
od
ula
rS
OH
O
MSR50-G2 40/60
J6350MSR50-40/60
J4350MSR-30-40
MSR900
MSR920
MX SR6604 + FIP100SR6602
MSR20-1x
J2320MSR20-40
J2350MSR30-20
MSR-30-60
SR6608 + FIP200
Co
re
62
SR8800 M/MX
MX 7200
ISR 3845/39xx
ISR 29xx
ISR 1841/800
ISR 2801
7302/7301
ISR 2811
ISR 2851/2821
ISR 2851/1941
ISR 29xx
ASR1000-ESP10
7600 + Sup720
SR6604 + FIP200 ASR1000-ESP5
M/MX
M/MX
63
Performance (kpps)
C1841
13,000
3,000
5,000
7,000
1,000
List
Pric
e ($
)
75 90120
220170
130 350 500
9,000
110 180 600
HP MSR Price/Performance over Cisco ISR
2,000
11,000
1,500
C2801
C2821
MSR 50-40
MSR 50-60
C2811
C2851
MSR 20-40
MSR 30-20MSR 30-40
MSR 30-60
C3845
C3825
MSR 20-21MSR 20-20
MSR 30-16
64
NA
CU
TM
VP
N F
irew
all
IMC NAC
U200-A
U200-M
U200-S
F1000-E
F1000-A
F1000-S
64
F100-A
SecBlade VPN FW, SSL VPN (S7500E,S9500)
Mg
mt
Sec Center
IPS
F5000-A
SBR / SXR / UAC
SSG 550
SSG 140
SRX 3600
SSG 320
NSM/STRM
Netscreen 5200
SSG 550
SSG 550
SSG 140
Security Portfolio: HP vs Other vendors
TippingPoint IDS/IPS all platforms
U200-CS SSG 20
64
Cisco NAC
ASA5540
ASA5510
ASA5580-40
ASA5520
MARS
ASA5580-20
ASA5550
ASA5550
ASA5505
Cisco IPS
65
Pla
tfo
rms
Mo
du
les
3Com Confidential
VSM
Network Traffic Analyzer
WSM
IMC Standard
IMC Professional
UBA
MPLS/VPN
Endpoint Admission Defense
User Access Management
Qos/SLA
Steel Belted Radius
Odyssey Client
Junoscope (FCAPS)
CiscoWorks
CiscoWorks
CiscoWorks
CiscoWorks
CiscoWorks
CiscoWorks
CiscoWorks
CiscoWorks
CiscoWorks IronView (FCAPS)
Network Management Portfolio: HP vs Other vendors
66
Outcomes that matter.
67
Superior technology deployed around the world
Media, Internet Software
Telecom Health Care Government Education
Financial Services
Transportation and Logistics
Manufacturing Oil and Gas Retail Hospitality
TORINO
68
Thank You!