Cisco Unified Access · will originate on Wi-Fi by 2017 (Cisco VNI) • 50% of all new Wi-Fi...
Transcript of Cisco Unified Access · will originate on Wi-Fi by 2017 (Cisco VNI) • 50% of all new Wi-Fi...
Cisco Unified Access
December 2014
Wireless LAN Portfolio Update
Cisco Confidential 2 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Single Plane of Glass Management with Cisco
Prime Infrastructure
ONE MANAGEMENT
Cisco Unified Access Converged Solutions for Enterprise Campus Networks
ONE NETWORK
Simplified, Unified Policy Management
with Cisco ISE
ONE POLICY
CISCO UNIFIED ACCESS
Integrated Wired and Wireless in ONE Physical Infrastructure,
with ONE Operating System & Open APIs
Cisco Confidential 3 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential 4 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Unified Access
Unified Access
LAN/WLAN
LAN/WLAN
LAN/WLAN
802.3ba 802.11r 802.11s 802.11u 802.11w 802.11v
802.11ae 802.11af 802.11ah
802.3ab 802.11a 802.11b
802.3ae 802.3af 802.11c 802.11d 802.11g
802.3at 802.3az 802.11e 802.11h 802.11i 802.11k 802.11n
802.3bj 802.11ai 802.11aq 802.11ak
802.11aa 802.11ac 802.11ad
1X Network Devices than People
2X Network Devices Than
People
5.0 GHz 2.4 GHz
2015 1997 2012
Cisco Confidential 5 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Unified Access
Unified Access
LAN/WLAN
LAN/WLAN
LAN/WLAN
BYOD, Unified Policy & Network
Management
Flow Visibility, Location Accuracy,
Advanced Segmentation,
Pervasive PoE+
802.3 Gigabit Ethernet
802.11b Autonomous
Access Points
802.3 10 Gigabit
Ethernet and 13 Watt PoE 802.11abg, Controller-
Coordinated Access Points
802.3 25 Watt PoE and Energy Efficient
Ethernet 802.11abgn,
Advanced RF Spectrum Mgt
802.3 100 Gigabit
Ethernet Internet of Things, Software-Defined
Networks
1X Network Devices than People
2X Network Devices Than
People
5.0 GHz 2.4 GHz
802.3 40 Gigabit Ethernet
Gigabit WLAN, Application
Density, Client Density
2015 1997 2012
Compiled from multiple sources: Gartner, ABI, IDC, VNI
Cisco Confidential 6 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
10Base-T
1990 1995
100Base-T
2000 2005 2010
802.11
802.11g
802.11n
1000Base-T
2015
802.11ac
Ado
ptio
n
• >50% of enterprise traffic will originate on Wi-Fi by 2017 (Cisco VNI)
• 50% of all new Wi-Fi devices in 2014 will be 802.11ac capable (ABI Research)
• Wave 1 802.11ac has 5+ years of affectivity for Smartphones and Tablets
• Wave 1 802.11ac improves battery efficiency by 2X for Smartphones, Tablets, and Laptops
Compiled from multiple sources: Gartner, ABI, IDC, VNI
Cisco Confidential 7 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
2000
Mobile Devices were a privilege…
2010
Everyone had at least one Mobile Device…
3 or more Mobile Devices are commonplace…
2015
Compiled from multiple sources: Gartner, ABI, IDC, VNI
Cisco Confidential 8 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Corporate Applications only on the network
Corporate and Personal Applications started to
share the network
Corporate Applications are competing with Personal
Applications for the network
2000 2010
2015
Compiled from multiple sources: Gartner, ABI, IDC, VNI
Cisco Confidential 12 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential 13 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Recent Unified Access Innovations Benefit
1st with Built-for-Purpose Gigabit Wi-Fi / 802.11ac Access Points Speed and Capacity
1st with optimized High Density Experience Access Points Performance at Scale
1st with Connected Mobile Experience Location and Analytics Platform Operational Intelligence
1st with Access Point and Client Stateful Switchover Non-stop Client Session
1st with Application Visibility & Control / Flexible NetFlow Improved Characterization
1st with WLAN Controller based Device Profiling & Onboarding Simplified BYOD
1st with Access Point hosted Small Cell solution for Enterprise Improved Coverage
1st with Application Policy Infrastructure Controller Flexibility and Control
1st with Native IPv6 across entire LAN and WLAN portfolio Flexibility and Capacity
Cisco Confidential 14 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
802.11ac interference detection and mitigation
PREDICTABLITY
Beamforming for 802.11a/g/n/ac
UNMATCHED SCALE
Optimized for high speed scheduling and packet
processing
n
n
AP
ac
ac
n
ac
CLEAN AIR CLIENTLINK TURBO BOOST
BATTERY SAVINGS
INTELLIGENT ROAMING RELIABILITY
Unstick clients as they roam between AP’s or to cellular
Reduce co-channel interference in dense AP
installations
OPTIMIZED ROAMING
RF NOISE SUPPRESION
HDX
Cisco Confidential 15 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
Port Level Visibility
HTTP = 75% SMTP = 15% FTP = 2% Telnet = 1% SNMP = 3%
L4 Port Session Visibility and Control
View, Control and Troubleshoot – End User Application Experience
NBAR2 LIBRARY Deep Packet inspection
Traffic
Real Time Interactive Non-Real Time Background
POLICY Packet Mark and
Drop
Wireless LAN Controller Visibility to the port level interaction but not the applications running within the port
• NBAR2 accurately classifies many more apps vs URL & Port based competitors e.g. Youtube, FileZilla, Facetime, Skype, Bonjour • Only Cisco supports dynamic protocol pack updates to support ever-growing library of apps • Rich per-user, per-app policy and history on all controllers in the portfolio without ANY additional licenses
Before Application View and Control Based On L4 Port Sessions
After Network Based Application Recognition—NBAR2
Deep Packet Inspection and App ID
Improved Visibility and Control
Cisco Confidential 16 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
User and Device specific Application Policies
ROLE BASED APPLICATION POLICY • Alice(User) and Bob(IT Admin) are both employees • Both Alice and connected to same SSID. • Bob can access certain applications (for e.g. YouTube), Alice cannot
ROLE BASED + DEVICE TYPE APPLICATION POLICY • Alice can access inventory info on an IT provisioned Windows Laptop • Alice cannot access inventory info on her personal iPAD
ROLE BASED + DEVICE TYPE + APPLICATION SPECIFIC POLICY • Alice has limited access (rate limit) to Skype on her iPhone
7.4 AVC
7.5 Dynamic protocol
pack update
7.6 Ability to classify Jabber,
Lync 2013, etc.
8.0 User and device
aware policy tie-in
Cisco Confidential 17 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential 18 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
100% Cloud-Managed Network Edge Converged Wired, Wireless
Context-Aware Policy Centralized Management
Network-as-a-Platform Network-as-a-Service
Cisco Enterprise Portfolio Cisco Meraki Cloud Managed Portfolio
Cisco Confidential 19 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Autonomous
Standalone Access Points
FlexConnect
Traffic Distributed at Access Point
WAN
Centralized
Traffic Centralized at Controller
Converged Access
Traffic Distributed at Switch
Target Deployment Small Wireless Network Branch Campus Branch and Campus
Scope Wireless only Wireless only Wireless only Wired and wireless
Benefits
• Simple and cost-effective for small networks
• Highly scalable for large number of remote branches
• Simple wireless operations with data center hosted controller
• Simplified operations with centralized control for wireless
• Wireless traffic visibility at the controller
• Wired and wireless common operations
• One enforcement point • One OS (Cisco IOS®) • Traffic visibility at every network layer • Performance optimized for 802.11ac
Key considerations
• Limited radio resource management (RRM), no rogue detection
• Layer 2 roaming only • WAN bandwidth and
latency requirements
• System throughput • Cisco® Catalyst® 3850 in the access layer
Cisco Confidential 20 © 2013-2014 Cisco and/or its affiliates. All rights reserved. * Roamdap, Q4 CY14
2500 Virtual WLC e.g. UCS-E on ISR G2
Flex 7500
8500 5760 5508 WISM2
Catalyst 3850
Catalyst 3850
Virtual Controller
• 1-50 AP/switch per stack (Directly connected APs) • 2000 clients/stack • 40 Gbps/switch
• 12 to 500 APs • 7000 clients • 8 Gbps
• 100 to 1000 APs • 15,000 clients • 20 Gbps
• 25 to 1000 APs • 12,000 clients • 60 Gbps
• 300 to 6000 APs • 64,000 clients • 10 Gbps
Large Campus Service Provider
Small Campus / Branch (Controller On-Premise) Branch (Controller in DC)
• 5 to 75 APs • 1000 clients • 1 Gbps
• 5 to 200 APs • 3000 clients • 500 Mbps
• 1-50 APs per switch/stack (Directly connected APs) • 1000 clients per stack • 40 Gbps per switch
• 5 to 200 APs • 3000 clients • 500 Mbps
• 300 to 6000 APs • 64,000 clients • 1 Gbps
Catalyst 4500-E Sup8E*
• 1 to 50 APs • 2000 clients • 888 Gbps/stack
• 1-25 APs per switch/stack (Directly connected APs) • 2000 clients per stack • 40 Gbps per switch
Catalyst 3650
IOS XE IOS XE IOS XE
Cisco Confidential 21 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Mission Specific
600 & 700
Enterprise Class
1700 Mission Critical
2700 Best in Class
3700
Enterprise Best In Class Mission Specific Mission Critical
• Up to 600 Mbps, 802.11n
• 702w: Wall Plate AP ideal for Hospitality, Dorm Rooms, MDUs
• 702i: Compact Mid-market AP
• 600: Teleworker AP
• Up to 1 Gbps, 802.11ac
• 3x3 MIMO : 2 SS
• CleanAir Express*
• Transmit Beamforming
• Over 1 Gbps, 802.11ac • 3x4 MIMO : 3 SS • HDX Technology • CleanAir 80 MHz,
ClientLink 3.0, VideoStream
• Over 1 Gbps, 802.11ac • 4x4 MIMO : 3SS • HDX Technology • CleanAir 80 MHz,
ClientLink 3.0, VideoStream • Future proof modularity: Security,
3G Small Cell, Location Accuracy or Wave 2 802.11ac
802.11n 802.11ac
802.11ac
802.11n
802.11ac
NEW
Cisco Confidential 22 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
DSP CPU 512 MHz
DRAM (128MB)
DSP
Customized AP Design
DRAM (512MB)
Dual-Core* CPU
800 MHz
ASIC design allows on-radio CPU and memory for distributed packet processing and
throughput maximizing. Architecture also allows unique 4x4 MIMO antenna design.
Radio – 5GHz
CPU 384 MHz
DRAM (128MB)
Radio – 2.4GHz
Traditional AP Design
DRAM (512MB)
Dual-Core CPU
800MHz
Radio – 2.4GHz
Radio – 5GHz
Merchant silicon architecture is heavily dependent on the single CPU for all functions.
1x Dual Core
Processors
6x Total (1x Dual Core,
2x Radio, 2x DSP)
512 MB
Memory
768 MB
*1 Core Enabled Today, 1 Reserved for Future Use
Merchant Silicon Cisco AP3700 and AP2700
Competition Merchant Silicon
ASIC-driven RF Architecture
Cisco Confidential 23 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Module 802.11ac Wave 1
(for AP3600 only)
Security 3G Small Cell Hyper Location Accuracy
802.11ac Wave 2
Benefits • Support 802.11ac data clients and mobile devices without replacing 802.11n AP
• 1 Gbps+ wireless speeds
• Most comprehensive wireless security posture with off-channel scan for WIPS, Rogue Detection, CleanAir, Context Aware, RRM
• Ideal for Financials, Health Care, Manuftg
• Avoids costly overlay network deployment
• Extend 3G cellular coverage where cell tower signals cannot go
• Ideal for high rises, MDUs, large bldgs
• Avoids costly overlay network (DAS)
• Provides sub- 1 meter location accuracy
• Fast location of the “blue dot” with 5 sec refresh rate
• Tx BLE capabilities for tag management
• Enhances 802.11ac support for MU-MIMO and “switch like” behavior, up to 2.5 Gbps wireless speeds
LIMITED EARLY 2015 FUTURE
Cisco Confidential 24 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
RF Interference, Detection and Mitigation CleanAir Express for
80Mhz
Improved Performance of 802.11ac Devices
Transmit Beamforming
Cisco RF Excellence Bandselect and
VideoStream
No Cost Premium for 802.11ac
Better Coverage, Same Price-Closest Competitor
3X Performance of 802.11n
• Only Entry-Level 802.11ac with 3x3 MIMO, 2 Spatial Streams
• Dual Radio :2.4GHz & 5.0GHz • 2.4Ghz @ 300Mbps, 5Ghz @ 876Mbps
Max Data Rate $695 List
NEW
Cisco Confidential 25 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
• 802.11n, 2G: 3x3:3; 5G: 2x3:2
• Low profile, competitive price • 1x GigE port • Power: PoE or VDC • Int/External Antennas
• 802.11n, 2x3 MIMO : 2 SS • Multiple models and options • Enterprise, Carriers, MSOs • DOCSIS 3.0 8x4 • Int/External Antennas
• 802.11ac, 4x4 MIMO : 3 SS • HDX Technology • CleanAir, ClientLink, Optimized Roaming for Outdoors
• Carrier and Enterprise-class • NG Cable: DOCSIS 3.0 24x8 • Int/External Antennas • Modular: Future Proof
NOV 2014
Base
1530 High Functionality
1550 Best in Class
1570
Cisco Confidential 26 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Introducing Cisco Aironet 1570 Series
3X Performance of 802.11n
• 4X4 Transmit & Receive • 3 Spatial Streams • Max. Allowable Transmit Power* • Flex + Mesh (Bridge) Mode • Future Proof: Plug-in Module via POE • Stateful Switch Over
HIGH DENSITY EXPERIENCE RF Interference,
Detection and Mitigation CleanAir for 80MHz
Increase Performance and Range
ClientLink 3.0
Intelligent Handoff in High Density
Optimized Roaming
More 802.11ac Clients per AP
Turbo Performance *Meets Highest Power allowed by FCC
Cisco Confidential 27 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
§ 40-50% Price Drop for AP1530 Series: AIR-CAP1532I-x-K9 $1,295 AIR-CAP1532E-x-K9 $1,495
§ Competitive with Aruba & Ruckus’ entry level outdoor APs
§ Price effective date: Nov 8, 2014
NEW Pricing Action on AP1530
Cisco Confidential 28 © 2013-2014 Cisco and/or its affiliates. All rights reserved.
Current state .. • LAN as primary connectivity
• 2.4 GHz centric WLAN for convenience
• Dual Gigabit Ethernet closet uplinks
• 10 Gigabit Ethernet backbone
• 802.3af Power over Ethernet
• Disparate LAN & WLAN network management
• Disparate LAN and WLAN policy management
• User and Device VLAN segmentation
• Nominal use of flows to protect the network
• Nominal visibility of personal & business apps
• Nominal visibility of user and device location
• Ad hoc Guest Access and Management
Future state .. ü WLAN as primary connectivity
ü 5.0 GHz WLAN for BYOD
ü 10 Gigabit Ethernet uplinks
ü 40/100 Gigabit Ethernet backbone
ü 802.3at or Universal Power over Ethernet
ü Common LAN & WLAN policy management
ü Common LAN & WLAN network management
ü Business and / or operational segmentation
ü Constantly monitor flows to protect the network
ü Granular visibility of all application usage
ü Highly accurate location of users and devices
ü Accounted for Guest Access and Management
Thank you.