• Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Be the first to comment
    Be the first to like this
No Downloads

Views

Total Views
120
On Slideshare
0
From Embeds
0
Number of Embeds
1

Actions

Shares
Downloads
2
Comments
0
Likes
0

Embeds 0

No embeds

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
    No notes for slide

Transcript

  • 1. CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved 1
  • 2. CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved 2 CONVERGED WIRED & WIRELESS Abe Ankumah Aruba Networks March 2012
  • 3. 3 3 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved Gartner Magic Quadrant 2011 Wireless LAN 2012 ?UNIFIED ACCESS
  • 4. CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved 4 The trends of server and data center consolidation, hosted virtual desktops (HVDs), and cloud computing have altered the requirements for network services and how the LAN could be architected.
  • 5. CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved 5 Consistent policy and management increases security by making sure the same standards can be enforced for a user no matter how they try to get in.
  • 6. 6 6 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved Unified Role-based Access VPN
  • 7. 7 7 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved Roles & Policies in Action Corporate Services Guest Marketing Video Finance Exec - Tablet DMZ ClearPass Access Rights Secure Tunnel To DMZ Media Agnostic Access Control •  Policies determine Access Privileges •  Policies define performance (bandwidth contract, QoS) •  Policies define traffic forwarding options •  Single Infrastructure •  Differentiated Access •  By User, Device, App •  By Time, Location Guest Exec - Tablets Video Marketing Finance
  • 8. 8 8 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved What Customers Are Doing? Contractor Wired User Wireless User 802.11n Wireless APs Mobility Switch Stack Mobility Controller ü  Centralized Auth ü  Stateful firewall ü  Device fingerprinting Active Directory Core Switch Printer
  • 9. 9 9 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved Centralized Management Expanded MOVE Architecture AirWave Network Management DATA CENTER Mobility Controller Thin Access On-Ramps WIRELESS WIRED VPN REMOTE OFFICE OUTDOOR Any Device ClearPass Access Management Central configuration ü  Unified Policies ü  Single Management Pane ü  Template-based configuration ü  Define once, Assign many ü  Secure Config push Remote Node ü  Auto Discovery / RAP-like ü  Resilient – Error Recovery
  • 10. 10 10 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved Remote Node Configuration §  Whitelist Remote Nodes §  Secure IPSec VPN §  Redundancy Model
  • 11. 11 11 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved Remote Node Network Diagram
  • 12. 12 12 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved Aruba S2500 Mobility Switch Gigabit Ethernet Interface • 10/100/1000Base-T RJ-45 (auto-sensing) • Supports 802.3af & 802.3at (PoE/PoE+) • MACSec capable 4 x 10G/1G Uplink & Stacking Interface • Integrated uplinks with SFP/SFP+ support • Stacks up to 8 devices • Stacks with Aruba S3500 LCD Interface • User-friendly LCD Interface • Diagnostics & Management Tasks Integrated Power Supply • Fixed power supply • 400W of PoE budget available Integrated Fans • Built in fans for quiet operation • Ideal for branch deployments High Performance • Line-rate non-blocking architecture • 64-bit Dual Core CPU • 1G DRAM • L2 GRE Tunneling Management • USB and mini-USB interface • Console Interface • Out of band Ethernet Management Compact • Small form factor • 12” deep •  Secure Wired Role-based Access✔ •  Centralized Configuration✔ •  Enterprise-Grade L2/L3✔ •  Wired & Wireless Visibility✔ •  Wi-Fi Aware Switching – IAP Integration✔
  • 13. 13 13 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved Mobility Switch Options •  Aruba S3500 ①  Highly Available: redundant, modular power supplies, and fan ②  Complete PoE budget – up to 1440W (802.3at; 30W / port) ③  Modular uplink provides path to additional Mobility Services •  Aruba S2500 ①  Cost-effective platform with integrated 10G uplinks ②  Compact form factor – 12” depth ③  Optimized for quiet operation – Ideal for branch deployments
  • 14. 14 14 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved Enterprise-Grade Mobility Switching •  Tunneling to Mobility Controller •  Multiple Spanning Tree (MSTP) •  Link Aggregation / Port Channel •  Voice VLAN / LLDP & LLDP-MED •  Cisco Phone Support (CDP) •  Multicast support •  Quality of Service (granular QoS) Platform / Layer 2 Features Stacking •  Up to 8 devices per stack •  Resiliency / failover support •  Single IP management •  Automatic insertion & removal •  Optimizing data forwarding •  Chassis-like characteristics •  S2500 & S3500 inter-stacking Routing / Layer 3 •  Routed VLAN interface •  Static Routing •  Dynamic Routing – OSPFv2 •  Multicast Routing – PIM-SM •  OSPF (MD5) Security / Authentication •  Role derivation & policies •  ACLs – 5 Options: Standard, Extended, Stateless, MAC, EtherType •  Authentication – 802.1X & MAC •  AAA profiles – port, VLAN, user/roles •  External Authentication Servers
  • 15. 15 15 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved AirWave: Visibility & Compliance AirWave Zero-touch deployments Visibility Compliance WLAN Wired Remote RF Client Device App Network
  • 16. 16 16 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved AirWave & Mobility Switching Standard operations monitoring: •  Inventory •  Uptime •  Hardware resources •  All members of a stack User Tracking: •  Wireless & Wired •  Authentication monitoring •  User Location info •  Device History •  Search User History Interface monitoring: •  Physical & virtual •  Byte & error counters •  Historical operation stats •  Identify authenticated •  Connection History Compliance: •  Syslog & Trap logging •  Device config tracking •  Firmware tracking/upgrades •  E-mail triggers on traps
  • 17. 17 17 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved Wifi Aware Switching – Rouge AP Containment •  Rouge AP Containment –  PCI Requirements in Retail –  Secure cardholder data from Rouge APs •  IAP & Mobility Switch Integration –  Rouge AP detection & classification –  Messaging of Rouge AP MAC to MAS •  Wired Containment of Rouge AP –  Detection of compromised port on switch ü  Disable port to which Rouge is attached ü  Disable PoE on port for Rouge Hacker Rouge AP Instant APs
  • 18. CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved 1818 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved
  • 19. CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved 1919