Design and Deployment of Enterprise Wireless

Aleksandar Stepančev, [email protected] EN PSS SEE

11/2015

Design and Deployment of Enterprise Wireless

nified Access: Wireless Deployment Options

AUTONOMOUS CLOUD MANAGED FLEX CONNECT CENTRALIZED CONVERGED

Common OS Lean IT Mid-Market / Distributed Enterprise

•  Intended for static installations •  SP Hotspots

•  Data center hosted controller •  Distributed enterprises

•  Premise-based controller •  Traditional Overlay Model •  Highly Scalable

•  Common OS •  Consistent Wired/Wireless•  Highest performance

MR Access Points MS switches MX security Dashboard

•  Aironet Access Points •  11ac: 3700 / 2700 •  11n: 1600 / 700

•  Catalyst Switches •  3850 / 3650 •  2960-X

•  Controllers •  N / A


•  Catalyst Switches •  6800/4500/3850/3650 •  4500-X / 2960-X

•  Controllers •  8510 / 7510


•  Catalyst Switches •  6800/4500/3850/3650 •  4500-X / 2960-X

•  Controllers •  8510 / 5760 / 5508 /

WiSM2 / 2504 / vWLC


•  Catalyst Switches •  6800/4500*/3850/365•  4500-X

•  Controllers •  Integrated •  5760 external MC*

Dashboard

WAN Intranet

Cisco Unified Access: 1 Architecture, 4 Deployment Modes Cisco Cloud Networking

****

AUTONOMOUS FLEX CONNECT CENTRALIZED CONVERGED

• Intended for static installations • SP Hotspots

• Data center hosted controller • Distributed enterprises

• Premise-based controller • Traditional Overlay Model• Highly Scalable

• Common OS• Consistent Wired/Wirelessss• Highest performance

LEX CONNE CENTRALIZE

• Aironet Access Points • 11ac: 3700 / 2700 • 11n: 1600 / 700

• Catalyst Switches • 3850 / 3650 • 2960-X

• Controllers • N / A

• Aironet Access Points • 11ac: 3700 / 2700 • 11n: 1600 / 700

• Catalyst Switches• 6800/4500/3850/3650 • 4500-X / 2960-X

• Controllers• 8510 / 7510

• Aironet Access Points• 11ac: 3700 / 2700 • 11n: 1600 / 700

• Catalyst Switches • 6800/4500/3850/3650 • 4500-X / 2960-X

• Controllers • 8510 / 5760 / 5508 /

WiSM2 / 2504 / vWLC

• Aironet Access Points• 11ac: 3700 / 2700 • 11n: 1600 / 700

• Catalyst Switches • 6800/4500*/3850/36555• 4500-X

• Controllers • Integrated• 5760 external MC*

WAN AWANA Intranet aI t t

Cisco Unified Access: 1 Architecture, 4 Deployment Modes

C97-734426-00 © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential

Expanded WLAN Controller Portfolio Large Campus and Service Provider

8510 WISM2 5508 5760 5520 8540 NEW NEW

•  300 to 1000 APs •  15,000 clients •  20 Gbps



•  10-1500 APs •  20,000 clients •  20 Gbps

2 to 500 APs 000 clients Gbps


Small Campus and Branch (Controller on Premise) Catalyst 4500-E SUP Catalyst 3650 obility

xpress 2500 Catalyst 3850 Virtual

WLC

•  1-50 APs per switch/stack Directly connected APs

•  1000 clients per stack •  40 Gbps per switch

•  5 to 75 APs •  1000 clients •  1 Gbps

•  5 to 200 APs •  6000 clients •  500 Mbps

•  1-100 APs per stack Directly connected APs


to 25 APs clients

ual WLC bedded in AP

•  1-100 APs per SUP Indirectly connected APs


Flex 75

•  300 to 600•  64,000 clie•  1 Gbps

1 100 AP SUP

Branch (Controller iy NEW

apture the 802.11ac Transition: mprove Wireless Performance Everywhere

Indoor

MR34 & MR32802.11ac

Outdoor

1570 802.11ac | HDX 1700

802.11ac

Indoor Indoor

2700 802.11ac | HDX

Indoor

3700 802.11ac | HDX | Modular

3600 802.11n w/ 802.11ac Module

On-Premise Cloud-Managed

3x3:2 | MDR: 867

3x4:3 | MDR:1.3Gbps. 3x4:3 | MDR: 1.3Gbps.

3x4:3 | MDR: 1.3Gbps.

3x3:3 | MDR: 1.75Gbps

Same Price as ompetitors Entry 2.11ac with Better

Coverage

Enterprise & SP Models – Most

Power allowed by the ETSI for Range

and Coverage

MR72 802.11ac

3x3:3 | MDR: 1.75Gbps

How 802.11ac Wave 2 Works



Multi-User MIMO (MU-MIMO)

Wider RF Channels Four Spatial Streams

speed boost compared to Wave 1, thanks to: 80%



Clients get on and off the network quicker, allowing more clients to be served.

Multi-User MIMO (MU-MIMO)


How 802.11ac Wave 2 Works BW

(MHz) # Spatial Streams

MCS (QAMr5/6)

PHY Rate (Mbps)

MAC Throughput

(Mbps)*

80 3 256 1300 845

80 4 256 1733 1126

160 1 64 650 422

160 1 256 780 507

160 1 256 866 563

160 2 64 1300 845

160 2 256 1560 1014

160 2 256 1732 1126

160 3 64 1950 1268

160 3 256 2340 1521

160 3 256 2600 1690

Data rates introduced with 802.11ac Wave 2

Potential throughput at 160-MHz channel widths:

•  Multi-user MIMO (MU-MIMO) •  Wider RF channels

* Based on 65% MAC utilization



•  Multi-user MIMO (MU-MIMO) •  Wider RF channels

•  Four spatial streams

Object

def

Access point transmits “abcdefghijkl”

to client

Wi-Fi client receives“abcdefghijkl”

through four streams of

Four spatial streams support using single-user MIMO

Wall

Ceiling


Next-Generation Wave 2 802.11ac Access Point

Cisco Aironet® 1850

* Planning

•  Next-generation 4x4 MIMO:4 spatial streams (SS) Wave 2 802.11ac access points

•  Dual radio, 802.11ac Wave 2, 80 MHz •  5 GHz: 4x4 supporting

-  3 SS MU-MIMO -  4 SS SU-MIMO -  1.7 Gbps Max 5-GHz PHY -  2.0 Gbps Max Aggregate PHY

•  2 times Gigabit Ethernet and USB 2.0 •  Internal and external antenna models

Gigabit Wi-Fi has fully arrived

isco Aironet® 1®

New


Cisco Aironet® 1830 Series

•  Next-generation 3x3 MIMO:2 spatial streams (SS) Wave 2 802.11ac access points

•  Dual radio, 802.11ac Wave 2, 80 MHz •  5 GHz: 3x3 supporting

-  2 SS SU/MU-MIMO -  870 Mbps Max 5-GHz PHY

-  1 Gbps Max Aggregate PHY

•  1 x Gigabit Ethernet and USB 2.0 •  Internal antenna model

802.11ac Wave 2 MU-MIMO

New

1830 Series with 802.11ac Wave 2 MU-MIMO


mple 3-step over-the-air setup

Simple clustered management

802.11ac

Wave 2

Cisco® Aironet® 1830 an1850 Series

802.11ac Wave 2

Simple by Design: Mobility Express Optimized for Small Scale Wi-Fi implementations

1 2 3


Mobility Express: Fast IT Deploy in Minutes

Connect Via Any Wireless Device

Access Management Dashboard: Operate, Monito

and Troubleshoot

Fast IT

Enable Multiple APs Simultaneously with

Setup Wizard


Analytics Dashboard Better decisions with Access Point, Client, and Application Visibility

Optimized Wi-Fi Environment Streamline deployments with out of the box best practice configuration

Cisco Advanced Functionality Cisco Large Enterprise DNA applied to enhance Small Scale implementations

Zero Compromise

x

Mobility Express: Zero Compromise Large Enterprise Features optimized for Small Scale implementations


Mobility Express: Investment Protection Same Access Point hardware regardless of where the WLAN Controller function is located – Access Point, Appliance, Switch, Router, Virtual Machine, etc.

Management Point Wireless Controller

Hardware Protection Flexible Migration Feature Protection

Investment Protection


Simple By Design: Deploy in Minutes

WLAN Express Setup Wizard

mplified User Interface ver-The-Air no cable needed asic Employee and a Guest WLAN

sco’s Best Practices ON by default

adio Resource Management ternet only Guest Access Controls pplication Visibility ean Air and intrusion detection and Select ient Profiling est practice default settings

Built-in Analytics Dashboard


Simple By Design: Highly Intuitive

Simple Screens

Large Icons/Fonts

cus on Basic Features Guided/Intuitive


Simple By Design: Mobile Application Configure Wireless, View Key Performance Indicators & Analytics

ACCESS POINT DETAILS

ROGUE DETECTION

CLIENT & APPLICATVISIBILITY

INTERFERENCE DETECTION

ACCESS POINT HEALTH

APPLICATION VISIBILITY AND LOCCLIENT PROFILING


co Aironet Indoor Access Points Portfolio ustry’s Best 802.11ac Series Access Points Best in Class

3700

• 802.11ac W1, 1.3 Gbps PHY • 4x4:3SS • HDX: High Density Experienc• CleanAir 80 MHz • ClientLink 3.0 • StadiumVision • Modularity: Security, 3G Smaor Wave 2 802.11ac

terprise Class

1700

802.11ac W1 870 Mbps PHY 3x3:2SS CleanAir Express Tx Beam Forming 2 GbE Ports

Mission Critical

2700

• 802.11ac W1, • 1.3 Gbps PHY • 3x4:3SS • HDX: High Density Experience • CleanAir 80 MHz • ClientLink 3.0 • 2 GbE Ports

Enterprise Best In Class Mission Critical

802 11ac W1 1 3 Gbps PHY

802.11ac W1 870 Mbps PHY

• 802.11ac W1, • 1 3 Gbps PHY

Enterprise Class

1830/50

• 802.11ac W2 • 2.0 Gbps PHY • 4x4:4SS • Spectrum Analysis* • Tx Beam Forming • 2 GbE Ports, USB 2.0

EEEEEnterprEnterpr

New

© 2© 2015015 CCiscisco ao and/nd/or or itsits afaffilfiliatiates.es. AlAll r righights ts resreserverved.ed CisC co Partnetners s

Cisco Innovation update High Density Experience (HDX) ables full use of Gigabit speed with excellent user experience

Cisco CleanAir® 80Mhz Mitigates radio interference

Optimized Roaming Improved client and network performance

Turbo Performance Improved client experience

Cisco ClientLink 3.0 Improves Client throughput/even for legacy devices

Enhanced Air Time Fairness Air time allocated per SSID. Better control over how air time is shared

sco is the ONLY SOLUTION with High-Density Experience (HDX)

© 2015 Cisco and/or its affiliates. AlAll rl righi ts resservrverved.ed.ededed CisCiscoco co co co ParParPP tnetners rsrsrs

Cisco Innovation update Introducing the Hyperlocation module

Improved security coverage

BLE and Wi-Fi visibility

Faster refresh rates

High accuracy

Reduced BLE deployment size


How CMX Works Built on Cisco Unified Access

Ana

lytic

s D

ata

Controller (Virtual/Physical)

MSE (Virtual/Phys( y

Analytics UI

Location Data

Device-based Discovery

Application Data

Mobile Application Server

Depending on ApplicLayer

Access Points


CMX Connect : Guest Access made easy Location specific custom guest access Portal and post-auth URL on per site basis

Multiple access methods Web passthrough, social media or SMS

Customized access and promotion Proximity-based landing pages and video

Understand who is in your location Enhanced analytics

Multi-language support User-friendly

rian purchases the g Buy app

rian walks into e venue

resence detected

rian is greeted ccepts pt-in service pp launches

H D T V

rian onboarded oncierge ervices offered earches r product

C97C -73734242544 9-9-9-0--000000 ©0 0 ©0 ©0 ©©©©©0 ©0 ©© 2202020000115 11 CCiCCCC s

H D T V

elects product

scoo ananannd/od/od/odd r ir its ts ts affafffffiliiliililiilililiatateaateateaates.s. AlAllAllllA rririrrighthtghtghghtghtghtssssssss ss s rs s rrrrrrsss r rrsssssssssssssss rrrrs rrsss rs rrsssssss rssss eseeseeseeseeseeseeseeseesseseeeseseeseeseeseeseeseseesesseseeeeseessessee rrrrrvevverveveerrvevevevervevveerverververrrveervevrvr errveeeddddddddddddddddd.dd.dd.ddd.d.d.d.d.ddd.ddddddd CCCCCCCCCCCCCCCCCCCCCCCCCCisisisisisiscisisiscsciscscscsciscisciscscciscisisccccsccccss o Co Co Co Co Co Co Coo Co CCo CCo CCo Cononfonfononooooonfonfononfonfonffnfonfnffo fono ideideideideideidedeideideidedeidedeidd ntintntintintintinntintialalalalalalaaa

C97C9777-73-----7-73------------------- All rve eentntntititit aalalallall

entifies necessary omponents

rovides indoor map

34254259-09-00-00 ©0 ©0 ©0 © 20202222222222222222222222222222222222222 1111115 15 15151111155115111111115111115 CiCiCCiCiCiCCiCiiCCissssscosscocoscossscosscco ananannnnnndd/dd/od/od/o/ooood ooood/ r ir irr iir r ir tsts ts ts ts affaaffaffafffffffffaaa iliiliiliiililliataatateteteeeeeat s.s.ss.ss.s.s.ss AllAllAlllAlAlAllAAll riiriririrrr ghtghtgghtghtghghhghthghgghtts rs rs rs rss rs ss eseeseeeseeseeseeseseeservervrververveedd..dd...d CCisiscscco Coo Co o o Coo Coo o onononfonfnfidididee

C97C9777-73----7-73--------------------- 4254259-09-00-00 ©0 ©0 ©0 © 20222222222022222222222222222222222222222222 15 15 CiCiscsco anannddddd/od/oddddddddddddddddddddddddd r ir itsts affa iliiateateeeeteatess.sssssssss All ririghghghgh

nds nearby ventory

ompletes purchase rough app

hhththtss reseeseseseseesesessesesesesessses rved.d.d..d CCCCCCCCCCCCCCCCCCCCCiscisciscscccscsscoo o o Co CCCo o o o o CCCCCo ononfonfonfonfnn ididdedededdeedididdi ntntintintintitnntntnnntt alalalalal

C97C97C97C97C9C9C97C9C97C97C97979797979797999997777777777C97C97CC97C97C97C9797979979977777C97C97977C97C9C97C99777C97C97C9C97797C9C97C979977C97C9CC977C97C97C97C97C9777C97CC97C9797C97C97977C97C97C9799C97C97C977C99C9C9 ----7-7-73-737-7377373333-7377-73-733-77373373--73-7737337- 334254242542424444442 9-09-000 ©0 ©0 ©©©© 222222222202020220222 15 15 15 5 CiCiCCiC scoscooooscooooocooooooo anananananananannannnnnnannaaannannnnnnaannnnnnannnnnaaaannnnnanaaaaaaaaaaaannnd/od/od/d/dddddddddddd r ir itsts

entifies omotional items

ased on profile/story

s s affaffiliiliaateateteteateaateaateaaaaaaaaaataaaaaaaaaaaaaaa ss.s.s.s..sss AAAAAAAAlAllAllllllAAllllllAAllAAAA l rirririrrrr ggghghtghtg thttttttsss rs rs rrrrrs rrrs eeeeeeseseseseseeeseseeee eee eervervrrvrvveveveveveeeverr ed.ddd.d.d.dd. CCCCCCCCCCCCCCCiscisciscscisisisssisi cs o Co Co CCCo o Co ononnfonfonfonoonfideidedei ntntintintintitialalalaa

CCC9C9CCC97C97C9777CCCC 77CCC -73-73-73-73773- 4444424225254442225559-09-09-099 0 ©0 ©0 2202002201555 515 CiCiiCiCCiC scscscscococooscs oco ananaanand/od/od/od/or ir ir ir itststs ts affffaffaa ililiiliateateatee

ompletes purchase hows partner dvertising

eeees.sss. AAll riighgghghghthththhtghghghtghgghghghghgghghghghgghghhtgggghhhttgghg sss rs rrrrrs s rrrrreseeseeeeseseeesee rvrvrvevvververvevrverr eer d.d.d.d.d.. CCCCCCCCCisciscsisscscsciscssi o Co CCCCCCCo CCo Coonononnfnfffffonffo fidiidedededdeidd ntntntitintin ialalala

isco Meraki: Bringing the cloud to Enterprise Networks

Meraki MS Ethernet Switches

Meraki SM Mobile Device Management

Meraki MR Wireless LAN

Meraki MX Security

Appliances

ntralized Management -  Rapid Deployment with Self-Provisioning -  Control Applications, Users, Devices -  Automatic Monitoring and Alerts

Application Visibility and Control -  Deep Packet Inspection -  Traffic Shaping -  Cloud-Based Application Signatures

nterprise security and guest access -  Air Marshal™ wireless intrusion prevention -  Secure guest access -  802.1x / Active Directory integration -  Dedicated Security Radio

Automatic RF optimization -  AutoRF™ cloud-based performance tunin-  High performance mesh routing -  Dedicated Radio for Monitoring

BYOD control

-  CMX Location Analytics -  Built in MDM -  Automatic device identification -  Bonjour Gateway

Cisco and/or its affiliates. All rights reserved.

Outdoor APs

3 Stream Triple-Radio 802.11ac 1.75 Gbit/s

MR18 MR26 2 Stream Triple-Radio 802.11a/b/g/n 600 Mbit/s

3 Stream Triple-Radio 802.11a/b/g/n 900 Mbit/s

MR62 Single-Radio 802.11b/g/n 300 Mbit/s

MR342 Stream Triple-Radio 802.11ac 1.2 Gbit/s

MR32

2 Stream Triple-Radio 802.11ac 1.2 Gbit/s

MR72

NEW

NEW

Indoor APs

MR66

Dual-Radio 802.11a/b/g/n 600 Mbit/s


Bluetooth Low Energy (BLE) is a form of Bluetooth designed for very low power - Found in many consumer devices: smartphones,

headsets, fitness trackers, etc.

Beacons use BLE for location services like asset tracking, mobile commerce, and in-building navigation - iBeacon is Apple’s BLE trademark

Fast becoming the opt-in alternative to WiFi or location services

MR32, MR72: Integrated Bluetooth to drive location trends


802.11ac with Application QoS

For increased throughput and density

Dedicated Security Radio 3rd radio for Air Marshal and RF

management

Built for Cloud Management Seamless deployment, fully

integrated features

The most advanced cloud-managed access point


 3 stream, dual concurrent radios with 1.75 Gbps aggregate radio rate for high throughput and density

 Layer 7 application fingerprinting classifies and controevasive, encrypted, and P2P traffic - Inspects packets and applies policies at full .11ac

speed - Prioritize business apps, real-time traffic - Limit recreational, bandwidth-hungry apps

 User and device fingerprinting for identity-based QoS policies

 Airtime fairness algorithms for high-density networks

 Cloud-based signature updates respond to new apps

802.11g 802.11n 802.11ac


 Radio dedicated to scanning and protecting RF environment - Instantly detects and mitigates interference, vulnerabilities, and attacks

on all channels - 3rd radio enables full-time scanning with full-performance client access

on 2.4 GHz and 5 GHz radios

 Deeply-integrated with cloud-based software solutions: Air Marshal (security), Auto RF (performance)

 No added cost or complexity - Typical deployments: radio operates in background (zero-config) - Power users: rich tools available for security and RF management - No added cost: no extra hardware, software, or licenses


 Protect network with dedicated scanning radiolinked to powerful cloud-based software

 Detects and classifies nearby APs using rich heuristics

 Identifies vulnerabilities and attacks: - Unmanaged / insecure APs plugged into LAN - Malicious rogues spoofing WLAN - Packet floods, malicious broadcasts

 Contains rogue APs, blocking clients from associating


 Scans all channels for interference, tuning performance with cloud intelligence

 Optimized for mixed 802.11ac and 802.11n environments

 Cloud-based engine analyzes RF data, optimizes channels and power across network

 Responds automatically to challengingor dynamic RF environments

ualize interference with high-resolution ectrum analyzer


ug-and-play deployment: MR34 automatically connects to Meraki cloud, appears in shboard, downloads configuration, and self-optimizes

nified cloud management across 802.11ac and mixed 802.11ac / 802.11n networks Consistent policies and tools across all Meraki APs Seamless client roaming between .11ac and .11n access points Easily supplement 802.11n networks with MR34s in high-density or performance critical areas Upgrade legacy APs with zero configuration Deploy at remote sites without on-site IT

2.11ac features with legacy 802.3af PoE 3rd radio deactivated under 802.3af; Air Marshal & Auto RF operate in background opportunistic modeCPU clock speed lowered, 2.4 GHz client-serving radio uses two spatial streams (5 GHz still uses three) Full 3rd radio functionality with 802.3at PoE+ (standard on all Cisco Meraki PoE switches)


Multi-site management

User ngerprints

ApplicationQoS

Instant search

Location analytics

Real-time control

Same out-of-the-box feature set as other Meraki MR wireless APs

Design and Deployment of Enterprise Wireless

Documents

Transcript of Design and Deployment of Enterprise Wireless