In centralized Aruba WLAN deployments, the mobility controller is the heart of the network. The controller operates as a stand-alone master, or in a master-local cluster. Aruba provides several redundancy models for deploying mobility controllers. Each of these options, including the choice to forgo redundancy, must be understood so that the correct choice can be made for each deployment model.
To learn more, visit us at http://www.arubanetworks.com/wlan. Join the discussion at https://community.arubanetworks.com
This guide covers Aruba Mobility Controllers and is considered part of the foundation guides within the VRD core technologies series. This guide will help you understand the capabilities and options you have when deploying an Aruba Mobility Controller. This guide describes operating modes for the mobility controller, licensing, forwarding modes, logical and physical deployment, redundancy, and how to select the appropriate mobility controller based on scalability requirements. Version 9 includes information on the 7200 series controller.
This presentation will show you how to right size customer networks, take advantage of ARM, Band steering and Client Match. Check out the webinar recording where this presentation was used. https://attendee.gotowebinar.com/recording/4688596131469180162
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
For WLANs to be able to reliably support mission-critical, high-throughput, or time-sensitive applications, RF interference must be continuously monitored. The WLAN must automatically and dynamically adapt to mitigate the effects of any interference in the environment. WLAN infrastructure has to provide the administrators with real-time, historical, and proactive visibility into the air to diagnose and mitigate interference. In this application note we will look at some of the tools that Aruba offers as a part of its WLAN solution that enable administrators to ensure reliable, high performing RF.
To learn more, visit us at http://www.arubanetworks.com/wlan. Join the discussion at https://community.arubanetworks.com
Moving towards a new Wi-Fi technology does not have to be too much of an undertaking. Of course, that's assuming great deal of planning and attention to detail in terms of defining the clear steps on how to get there. In this session we will discuss 802.11ac placement, Wi-Fi coverage and capacity planning for 802.11ac devices and how to take advantage of 802.11ac transmit beamforming
To learn more, visit us at http://www.arubanetworks.com/wlan. Join the discussion at https://community.arubanetworks.com
In this presentation, we will cover an overview of ArubaOS 8.x Licensing from Supported/ Unsupported Topology to Server Failover behaviour and license generation and transfer.
Check out the webinar recording where this presentation was used: http://community.arubanetworks.com/t5/Wireless-Access/Technical-Webinar-Recording-Slides-How-Licensing-works-in/td-p/306162
Although Aruba makes it easy to choose the best WLAN architecture to fit your IT and business needs, it's vital to sort through some critical predeployment issues before you get started. Join us to review the latest product and architectural options from Aruba as well as validated WLAN design best practices. This session includes in-depth coverage of Aruba Instant and Aruba Mobility Controllers.
In this presentation, we will cover the IAP-VPN architecture which includes the following two components: IAPs at branch sites and controller at the data center. Check out the webinar recording where this presentation was used: https://community.arubanetworks.com/t5/Wireless-Access/Technical-Webinar-Recording-Slides-Aruba-Instant-AP-VPN/m-p/300742
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
This guide covers Aruba Mobility Controllers and is considered part of the foundation guides within the VRD core technologies series. This guide will help you understand the capabilities and options you have when deploying an Aruba Mobility Controller. This guide describes operating modes for the mobility controller, licensing, forwarding modes, logical and physical deployment, redundancy, and how to select the appropriate mobility controller based on scalability requirements. Version 9 includes information on the 7200 series controller.
This presentation will show you how to right size customer networks, take advantage of ARM, Band steering and Client Match. Check out the webinar recording where this presentation was used. https://attendee.gotowebinar.com/recording/4688596131469180162
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
For WLANs to be able to reliably support mission-critical, high-throughput, or time-sensitive applications, RF interference must be continuously monitored. The WLAN must automatically and dynamically adapt to mitigate the effects of any interference in the environment. WLAN infrastructure has to provide the administrators with real-time, historical, and proactive visibility into the air to diagnose and mitigate interference. In this application note we will look at some of the tools that Aruba offers as a part of its WLAN solution that enable administrators to ensure reliable, high performing RF.
To learn more, visit us at http://www.arubanetworks.com/wlan. Join the discussion at https://community.arubanetworks.com
Moving towards a new Wi-Fi technology does not have to be too much of an undertaking. Of course, that's assuming great deal of planning and attention to detail in terms of defining the clear steps on how to get there. In this session we will discuss 802.11ac placement, Wi-Fi coverage and capacity planning for 802.11ac devices and how to take advantage of 802.11ac transmit beamforming
To learn more, visit us at http://www.arubanetworks.com/wlan. Join the discussion at https://community.arubanetworks.com
In this presentation, we will cover an overview of ArubaOS 8.x Licensing from Supported/ Unsupported Topology to Server Failover behaviour and license generation and transfer.
Check out the webinar recording where this presentation was used: http://community.arubanetworks.com/t5/Wireless-Access/Technical-Webinar-Recording-Slides-How-Licensing-works-in/td-p/306162
Although Aruba makes it easy to choose the best WLAN architecture to fit your IT and business needs, it's vital to sort through some critical predeployment issues before you get started. Join us to review the latest product and architectural options from Aruba as well as validated WLAN design best practices. This session includes in-depth coverage of Aruba Instant and Aruba Mobility Controllers.
In this presentation, we will cover the IAP-VPN architecture which includes the following two components: IAPs at branch sites and controller at the data center. Check out the webinar recording where this presentation was used: https://community.arubanetworks.com/t5/Wireless-Access/Technical-Webinar-Recording-Slides-Aruba-Instant-AP-VPN/m-p/300742
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
Printing and projecting with smartphones and tablets on large scale Wi-Fi networks are not as easy as it sounds. Relying on technologies such as DLNA and Apple Bonjour, these tasks require policy control across many different locations, for different sets of users. For instance, what do you do when your guest user tries to access an Apple TV installed in your meeting room? Join us to answer more of these questions in this session.
To learn more, visit us at http://www.arubanetworks.com/wlan. Join the discussion at https://community.arubanetworks.com
This lab setup document emulates the recommended campus and remote access point networks discussed in the Aruba Campus Networks Validated Reference Design and the Aruba Remote Access Point (RAP) Networks Validated Reference Design. All the screenshots and command-line interface (CLI) configurations in the Aruba Campus Networks Validated Reference Design and the Aruba Remote Access Point (RAP) Networks Validated Reference Design are from this setup.
In this presentation, we will cover the Central platform which provides a standard Web-based interface that allows you to configure and monitor multiple Aruba Instant networks / Switches from anywhere with a connection to the Internet. Check out the webinar recording where this presentation was used: http://community.arubanetworks.com/t5/Cloud-Managed-Networks/Technical-Webinar-Aruba-Central-with-Instant-AP/td-p/429366
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
Clustering is a new feature introduced in AOS 8.0 that enables seamless roaming of clients between APs, hitless client failover and load balancing of users across Mobility Controllers in the cluster. This solution provides the configuration required to create a cluster of Mobility Controllers that are managed by the same Mobility Master.
Check out the webinar recording where this presentation was used:
https://community.arubanetworks.com/t5/Wired-Intelligent-Edge-Campus/Airheads-Tech-Talks-Advanced-Clustering-in-AOS-8-x/td-p/506441
In this presentation, we will discuss the L3 Redundancy Requirement which primarily comes from customers who want to handle the complete Data Center Failure during natural disasters or other catastrophic events. Check out the webinar recording where this presentation was used: http://community.arubanetworks.com/t5/Wireless-Access/Technical-Webinar-Layer-3-Redundancy-for-Mobility-Master-ArubaOS/td-p/382029
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
During this webinar, we will discuss how starting from ArubaOS 8.2.0.0, selected APs can run in both controller-based mode and controller-less mode and the implications tied to that. Check out the webinar recording where this presentation was used: http://community.arubanetworks.com/t5/Wireless-Access/Technical-Webinar-AP-Discovery-amp-Deployment-Policy-ArubaOS-8-x/m-p/394540/
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
The application note focuses on configuration and operation of guest access solutions on ArubaOS. The native guest access solution including configuration of the guest access and guest provisioning profiles, guest administration, and captive portal configuration.
To learn more, visit us at http://www.arubanetworks.com/wlan. Join the discussion at https://community.arubanetworks.com
This guide covers indoor 802.11n WLANs and is considered part of the foundation guides within the VRD core technologies series. This guide describes 802.11n, differences in 802.11n vs. 802.11a/b/g functionality, and Aruba-specific technologies and access points (APs) that make 802.11n-based WLANs a viable replacement for wired Ethernet in the majority of deployments.
To learn more, visit us at http://www.arubanetworks.com/wlan. Join the discussion at https://community.arubanetworks.com
Virtual Intranet Access (VIA) is part of the Aruba remote access solution that includes remote access points(RAPs), Aruba Instant (IAP),and the Remote Node solution. To address the demands of the current mobile workforce, which requires corporate access from hotspots such as those in airport, hotels, and coffee shops . The Aruba VIA solution is designed to provide secure corporate access to employee laptops and smartphones. This guide will walk through planning and deployment of the VIA solution.
In this presentation, we will run through some Rogue AP troubleshooting scenarios and best practices. The agenda covers Rogue AP Detection, classification techniques and containment, wired containment and wireless containment without Tarpit. Check out the webinar recording where this presentation was used:
http://community.arubanetworks.com/t5/Aruba-Instant-Cloud-Wi-Fi/Technical-Webinar-Recording-Slides-ArubaOS-Rogue-AP/m-p/289230
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
This guide details the advanced guest access features available to organizations through the combination of Aruba’s Amigopod and Mobility Controller solutions. This includes details of workflow management, RADIUS configuration, AAA configuration, and testing of the solution. This guide builds on the network defined in the Campus VRD.
To learn more, visit us at http://www.arubanetworks.com/wlan. Join the discussion at https://community.arubanetworks.com
In this presentation, we will be sharing a collection of several vital configuration tips and tricks which are widely implemented across mid-size to large enterprise WLAN. Our primary focus would be on Security as well as Performance characteristics of Aruba WLAN networks. Check out the webinar recording where this presentation was used: https://community.arubanetworks.com/t5/Wireless-Access/Airheads-Technical-Webinar-Recording-Slides-Aruba-OS/m-p/277294
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
In this presentation, we will cover ArubaOS’ AP Fast Failover feature, extended controller capacities, how to configure High Availability and several deployment models. Check out the webinar recording where this presentation was used: http://community.arubanetworks.com/t5/Wireless-Access/Technical-Webinar-Recording-Slides-ArubaOS-High-availability/td-p/286231
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
During this presentation, we will cover a deep dive into Aruba Central and its features. Check out the webinar recording where this presentation was used:
https://community.arubanetworks.com/t5/Cloud-Managed-Networks/Technical-Webinar-Advance-Aruba-Central/m-p/496064
In this presentation, we will be debugging Aruba RAP commands, run through troubleshooting and logs and tackle RAP clusters.
Check out the webinar recording where this presentation was used: http://community.arubanetworks.com/t5/Wireless-Access/Technical-Webinar-Recording-Slides-Aruba-Remote-Access-Point-RAP/td-p/310448
This guide covers the deployment of Aruba remote access points (RAP) in fixed telecommuter and micro branch office sites, and it is considered part of the base designs guides within the VRD core technologies series. This guide covers the design recommendations for remote network deployment and it explains the various configurations needed to implement a secure, high-performance virtual branch office (VBN) solution with Aruba RAPs.
This guide explains how to implement an Aruba 802.11n wireless network that must provide high-speed access to an auditorium-style room with 500 or more seats. Aruba Networks refers to such networks as high-density wireless LANs (HD WLANs). Lecture halls, hotel ballrooms, and convention centers are common examples of spaces with this requirement. Because the number of concurrent users on an AP is limited, to serve such a large number of devices requires access point (AP) densities well in excess of the usual AP per 2,500 – 5,000 ft2 (225 – 450 m2). Such coverage areas therefore have many special technical design challenges. This validated reference design provides the design principles, capacity planning methods, and physical installation knowledge needed to successfully deploy HD WLANs.
This guide presents a new wireless architecture to deliver a multimedia-grade experience to students living in residence halls. We will show that large numbers of low-power microcells located directly in the student rooms is the only effective solution to fully meet user expectations. We provide simple rules to determine the density of these microcells for different types of construction. We also provide migration options to enable many institutions to deploy this architecture without pulling additional cabling.
To learn more, visit us at http://www.arubanetworks.com/wlan. Join the discussion at https://community.arubanetworks.com
Printing and projecting with smartphones and tablets on large scale Wi-Fi networks are not as easy as it sounds. Relying on technologies such as DLNA and Apple Bonjour, these tasks require policy control across many different locations, for different sets of users. For instance, what do you do when your guest user tries to access an Apple TV installed in your meeting room? Join us to answer more of these questions in this session.
To learn more, visit us at http://www.arubanetworks.com/wlan. Join the discussion at https://community.arubanetworks.com
This lab setup document emulates the recommended campus and remote access point networks discussed in the Aruba Campus Networks Validated Reference Design and the Aruba Remote Access Point (RAP) Networks Validated Reference Design. All the screenshots and command-line interface (CLI) configurations in the Aruba Campus Networks Validated Reference Design and the Aruba Remote Access Point (RAP) Networks Validated Reference Design are from this setup.
In this presentation, we will cover the Central platform which provides a standard Web-based interface that allows you to configure and monitor multiple Aruba Instant networks / Switches from anywhere with a connection to the Internet. Check out the webinar recording where this presentation was used: http://community.arubanetworks.com/t5/Cloud-Managed-Networks/Technical-Webinar-Aruba-Central-with-Instant-AP/td-p/429366
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
Clustering is a new feature introduced in AOS 8.0 that enables seamless roaming of clients between APs, hitless client failover and load balancing of users across Mobility Controllers in the cluster. This solution provides the configuration required to create a cluster of Mobility Controllers that are managed by the same Mobility Master.
Check out the webinar recording where this presentation was used:
https://community.arubanetworks.com/t5/Wired-Intelligent-Edge-Campus/Airheads-Tech-Talks-Advanced-Clustering-in-AOS-8-x/td-p/506441
In this presentation, we will discuss the L3 Redundancy Requirement which primarily comes from customers who want to handle the complete Data Center Failure during natural disasters or other catastrophic events. Check out the webinar recording where this presentation was used: http://community.arubanetworks.com/t5/Wireless-Access/Technical-Webinar-Layer-3-Redundancy-for-Mobility-Master-ArubaOS/td-p/382029
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
During this webinar, we will discuss how starting from ArubaOS 8.2.0.0, selected APs can run in both controller-based mode and controller-less mode and the implications tied to that. Check out the webinar recording where this presentation was used: http://community.arubanetworks.com/t5/Wireless-Access/Technical-Webinar-AP-Discovery-amp-Deployment-Policy-ArubaOS-8-x/m-p/394540/
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
The application note focuses on configuration and operation of guest access solutions on ArubaOS. The native guest access solution including configuration of the guest access and guest provisioning profiles, guest administration, and captive portal configuration.
To learn more, visit us at http://www.arubanetworks.com/wlan. Join the discussion at https://community.arubanetworks.com
This guide covers indoor 802.11n WLANs and is considered part of the foundation guides within the VRD core technologies series. This guide describes 802.11n, differences in 802.11n vs. 802.11a/b/g functionality, and Aruba-specific technologies and access points (APs) that make 802.11n-based WLANs a viable replacement for wired Ethernet in the majority of deployments.
To learn more, visit us at http://www.arubanetworks.com/wlan. Join the discussion at https://community.arubanetworks.com
Virtual Intranet Access (VIA) is part of the Aruba remote access solution that includes remote access points(RAPs), Aruba Instant (IAP),and the Remote Node solution. To address the demands of the current mobile workforce, which requires corporate access from hotspots such as those in airport, hotels, and coffee shops . The Aruba VIA solution is designed to provide secure corporate access to employee laptops and smartphones. This guide will walk through planning and deployment of the VIA solution.
In this presentation, we will run through some Rogue AP troubleshooting scenarios and best practices. The agenda covers Rogue AP Detection, classification techniques and containment, wired containment and wireless containment without Tarpit. Check out the webinar recording where this presentation was used:
http://community.arubanetworks.com/t5/Aruba-Instant-Cloud-Wi-Fi/Technical-Webinar-Recording-Slides-ArubaOS-Rogue-AP/m-p/289230
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
This guide details the advanced guest access features available to organizations through the combination of Aruba’s Amigopod and Mobility Controller solutions. This includes details of workflow management, RADIUS configuration, AAA configuration, and testing of the solution. This guide builds on the network defined in the Campus VRD.
To learn more, visit us at http://www.arubanetworks.com/wlan. Join the discussion at https://community.arubanetworks.com
In this presentation, we will be sharing a collection of several vital configuration tips and tricks which are widely implemented across mid-size to large enterprise WLAN. Our primary focus would be on Security as well as Performance characteristics of Aruba WLAN networks. Check out the webinar recording where this presentation was used: https://community.arubanetworks.com/t5/Wireless-Access/Airheads-Technical-Webinar-Recording-Slides-Aruba-OS/m-p/277294
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
In this presentation, we will cover ArubaOS’ AP Fast Failover feature, extended controller capacities, how to configure High Availability and several deployment models. Check out the webinar recording where this presentation was used: http://community.arubanetworks.com/t5/Wireless-Access/Technical-Webinar-Recording-Slides-ArubaOS-High-availability/td-p/286231
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
During this presentation, we will cover a deep dive into Aruba Central and its features. Check out the webinar recording where this presentation was used:
https://community.arubanetworks.com/t5/Cloud-Managed-Networks/Technical-Webinar-Advance-Aruba-Central/m-p/496064
In this presentation, we will be debugging Aruba RAP commands, run through troubleshooting and logs and tackle RAP clusters.
Check out the webinar recording where this presentation was used: http://community.arubanetworks.com/t5/Wireless-Access/Technical-Webinar-Recording-Slides-Aruba-Remote-Access-Point-RAP/td-p/310448
This guide covers the deployment of Aruba remote access points (RAP) in fixed telecommuter and micro branch office sites, and it is considered part of the base designs guides within the VRD core technologies series. This guide covers the design recommendations for remote network deployment and it explains the various configurations needed to implement a secure, high-performance virtual branch office (VBN) solution with Aruba RAPs.
This guide explains how to implement an Aruba 802.11n wireless network that must provide high-speed access to an auditorium-style room with 500 or more seats. Aruba Networks refers to such networks as high-density wireless LANs (HD WLANs). Lecture halls, hotel ballrooms, and convention centers are common examples of spaces with this requirement. Because the number of concurrent users on an AP is limited, to serve such a large number of devices requires access point (AP) densities well in excess of the usual AP per 2,500 – 5,000 ft2 (225 – 450 m2). Such coverage areas therefore have many special technical design challenges. This validated reference design provides the design principles, capacity planning methods, and physical installation knowledge needed to successfully deploy HD WLANs.
This guide presents a new wireless architecture to deliver a multimedia-grade experience to students living in residence halls. We will show that large numbers of low-power microcells located directly in the student rooms is the only effective solution to fully meet user expectations. We provide simple rules to determine the density of these microcells for different types of construction. We also provide migration options to enable many institutions to deploy this architecture without pulling additional cabling.
To learn more, visit us at http://www.arubanetworks.com/wlan. Join the discussion at https://community.arubanetworks.com
The Aruba Network Rightsizing Best Practices Guide provides an overview of network rightsizing. Network rightsizing is a network capacity planning and cost optimization strategy based on the principle that wired and wireless LANs should be sized and structured to meet current and future demand. After explaining the principles of network rightsizing and how it can benefit your organization, the methodology for analyzing and planning a rightsized network will be discussed. Finally, you will learn how to implement a rightsized yet scalable Aruba 802.11n network.
To learn more, visit us at http://www.arubanetworks.com/wlan. Join the discussion at https://community.arubanetworks.com
This document describes the process for leveraging the ClearPass Guest captive portal to bypass the Captive Network Assistant (web sheet) that is displayed on iOS devices such as iPhone, iPad, and more recently, OS X machines running Lion (10.7) and above.
To learn more, visit us at http://www.arubanetworks.com/wlan. Join the discussion at https://community.arubanetworks.com
Point-to-point (PTP) wireless connections have many use cases including linking buildings on university campus, creating connections between offshore oil rigs, and eliminating the need to pull fiber cable between buildings on opposite sides of a busy road. This guide will help you select the right hardware platform (including both the AOS-based AP-175 and Aruba¹s new AirMesh products; Choose appropriate antennas and accessories; Identify and overcome some of the most common outdoor installation challenges; Set up and configure the Aruba solution.
To learn more, visit us at http://www.arubanetworks.com/wlan. Join the discussion at https://community.arubanetworks.com
This guide provides an overview of Aruba beacon technology, and describes the different types of Aruba beacons, beacon use cases and deployments, as well as predeployment configuration and testing workflows.
This Solution Guide describes best practices for implementing an Aruba 802.11 wireless network that supports thousands of highly mobile devices (HMDs) such as Wi-Fi phones, handheld scanning terminals, voice badges, and computers mounted to vehicles. It describes the design principles particular to keeping devices that are in constant motion connected to the network as well as best practices for configuring Aruba Networks controllers and the mobile devices. The comprehensive guide addresses six areas of network planning to ensure a high quality of service for roaming data and voice sessions: device configuration, airtime optimization, roaming optimization, IP mobility configuration, IP multicast configuration, and interference resistance. A detailed troubleshooting section covers common issues that arise with these types of WLANs.
To learn more, visit us at http://www.arubanetworks.com/wlan. Join the discussion at https://community.arubanetworks.com
This guide covers the deployment of Aruba remote access points (RAP) in fixed telecommuter and micro branch office sites, and it is considered part of the base designs guides within the VRD core technologies series. This guide covers the design recommendations for remote network deployment and it explains the various configurations needed to implement a secure, high-performance virtual branch office (VBN) solution with Aruba RAPs.
The purpose of this guide is to explain the enhancements in 802.11ac standard and provide guidance towards
migrating to 802.11ac with respect to network design, deployment, and configuration best practices for campus environments like offices, university campus, and dorm environments.
This guide covers the following topics in detail:
- Summary of Recommendations
- 802.11ac Features and Benefits
- 802.11ac Planning and Deployment Guidelines
- Best Practice Recommendations for Deploying 802.11ac WLANs
This guide is intended for those who are willing to learn about the 802.11ac standards and understand the best practices in deploying a high-performing 802.11ac
The Indoor 802.11n Site Survey and Planning guide covers the design and installation of an Aruba WLAN. It includes information on choosing the right AP, performing a virtual survey, and performing a physical survey. The guide also covers using the Aruba Instant AP for physical site surveys.
This guide covers the deployment of Aruba WLAN in a typical campus network, and it is considered part of the base designs guides within the VRD core technologies series. This guide covers the design recommendations for a campus deployment and it explains the various configurations needed to implement the Aruba secure, high-performance, multimedia grade WLAN solution in large campuses.
This guide provides a description of the various bandwidth reservation and quality of service (QoS) options for supporting voice traffic in an Aruba remote access point (RAP) telecommuter deployment scenario. The RAP solution is a key component of the Aruba virtual branch network (VBN) architecture. The Aruba RAP deployment model meets the needs of fixed telecommuter and small branch office deployments while maintaining simplicity and ease of deployment. Aruba RAPs extend the corporate LAN to any remote location by enabling seamless wired or wireless data and voice wherever a user finds an Internet-enabled Ethernet port or 3G cellular connection. RAPs are ideally suited for small remote offices, home offices, telecommuters, mobile executives, and for business continuity applications.
To learn more, visit us at http://www.arubanetworks.com/wlan. Join the discussion at https://community.arubanetworks.com
This guide focuses on configuration of DHCP fingerprinting, which is used in conjunction with user roles on the Aruba Mobility Controller. When a user authenticates, their device type is taken into account. Based on that device type, a new role can be assigned to the device, such as restricting access to certain protocols or completely blocking access.
To learn more, visit us at http://www.arubanetworks.com/wlan. Join the discussion at https://community.arubanetworks.com
The Aruba Mobility Access Switch family of products provides various features including voice VLAN, Link Layer Discovery Protocol – Media Endpoint Discovery (LLDP-MED), and Quality of Service (QoS) to enable successful deployment of VoIP in enterprise networks. This application note addresses traditional techniques and introduces new device-aware support to deploy VoIP phones. This document is intended for all system engineers and network administrators who are deploying a VoIP solution in an enterprise network.
To learn more, visit us at http://www.arubanetworks.com/wlan. Join the discussion at https://community.arubanetworks.com
Aruba, a Hewlett Packard Enterprise Company, is a leading provider of next-generation networking solutions for enterprises of all sizes worldwide. The company delivers IT solutions that empower organizations to serve #GenMobile – mobile-savy users who rely on cloud-based business apps for every aspect of their work and personal lives.
Interested in Understanding How Service Providers are Using Software-Defined Networking (SDN) to Solve Problems? This Presentation Explores Why Service Providers are Turning to SDN and What They are Doing With it...
Technology Primer: Software-Defined Networking and Its Impact on Infrastructu...CA Technologies
Software Defined Networking (SDN) and Network Function Virtualization (NFV) represent a major shift in the way networks will be designed, deployed and managed—requiring changes in infrastructure management tools and practices. This presentation illustrates our vision with use cases under consideration for CA Performance Management, which is designed for managing complex, highly-scaled networks and could be applied in the future to managing Software Defined Networks and integrating with SDN controllers and NFV elements.
For more information on DevOps solutions from CA Technologies, please visit: http://bit.ly/1wbjjqX
SoftLayer, an IBM CompanyIaaS provider offers load-balancing services powered by Array ADCs, and leverages Array
SSL VPNs to enable on-the-fly provisioning
and remote management for customer and
provider administrators.
Aruba Central user may need a centralized web-server to host captive portal page for their distributed networks across the globe like coffee shops, restaurant or hotels. Aruba central 2.0 has a new feature called Cloud Guest or Guest Management that allows administrator to create a splash page for guest users using Web server and radius server running in the cloud.
Check out the webinar recording where this presentation was used:
https://community.arubanetworks.com/t5/Cloud-Managed-Networks/Airheads-Tech-Talks-Cloud-Guest-SSID-on-Aruba-Central/td-p/524320
ClearPass OnGuard agents perform endpoint posture assessment and ensure that compliance is met before granting access to the network. This session will cover the ClearPass OnGuard Agent components and work-flow in detail.
Check out the webinar recording where this presentation was used:
https://community.arubanetworks.com/t5/Security/Airheads-Tech-Talks-Understanding-ClearPass-OnGuard-Agents/td-p/524288
During this webinar, we will cover AppRF - a suite of application visibility and control features that are part of Aruba's Policy Enforcement Firewall. AppRF is a PEF feature that is designed to give network administrators insight into the applications that are running on their network, and who is using them. Check out the webinar recording where this presentation was used:
https://community.arubanetworks.com/t5/Wireless-Access/Technical-Webinar-Aruba-AppRF-AOS-6-x-amp-8-x/td-p/490800
In this presentation, we will cover how the ArubaOS switch virtualization technologies can deliver high-performance and highly available switching while simplifying management and lowering costs. Check out the webinar recording where this presentation was used: https://community.arubanetworks.com/t5/Wired-Intelligent-Edge-Campus/Technical-Webinar-Switch-Stacking-ArubaOS-Switch/td-p/471348
In this presentation, we will discuss how IEEE standard 802.3ad and its implications allow third-party devices such as switches, servers, or any other networking device that supports trunking to interoperate with the distributed trunking switches (DTSs) seamlessly. Check out the webinar recording where this presentation was used: http://community.arubanetworks.com/t5/Wired-Intelligent-Edge-Campus/Technical-Webinar-LACP-and-distributed-LACP-ArubaOS-Switch/td-p/458170
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
In this presentation, e will discuss AirWave 10, a new software build that lets us streamline code, add performance, clustering. Check out the webinar recording where this presentation was used: http://community.arubanetworks.com/t5/Network-Management/Technical-Webinar-Introduction-to-AirWave-10/td-p/454762
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
In this presentation, we will discuss how Virtual Switching Framework (VSF) allows supported switches connected to each other through Ethernet connections (copper or fibre) to behave like a single chassis switch. Check out the webinar recording where this presentation was used: http://community.arubanetworks.com/t5/Controllerless-Networks/Technical-Webinar-Virtual-Switching-Framework-ArubaOS-Switch/td-p/445696
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
In this presentation, we will discuss how AirGroup configurations have changed to support hierarchical configuration in release 8.2. AirGroup configs will now be profile based and can be applied at any node. Check out the webinar recording where this presentation was used: http://community.arubanetworks.com/t5/Wireless-Access/Technical-Webinar-AirGroup-profiling-changes-across-8-1-amp-8-2/td-p/417153
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
In this presentation, we will explore the RESTApi as the ClearPass API integrations and further developments are more focused to RESTApi than the other existing API services like xml-rpc, SOAP, etc.Check out the webinar recording where this presentation was used: http://community.arubanetworks.com/t5/Security/Technical-Webinar-Getting-Started-with-the-ClearPass-REST-API/td-p/410214
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
In this presentation, we will discuss how branch controllers work and run through different deployments examples in 6.x and 8.x.
Check out the webinar recording where this presentation was used: http://community.arubanetworks.com/t5/Wireless-Access/Technical-Webinar-Recording-Slides-Manage-Devices-at-Branch/td-p/351983
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
The existing channel and power assignment functions in ARM support channel scanning, channel assignment and power adjustments, locally. Decisions are made locally at the AP without looking at the entire network. Thanks to the dynamic machine learning techniques, AirMatch centralises this function in the Mobility Master while dynamically learning the network and adapting the RF planning for the entire network. Check out the webinar recording where this presentation was used: http://community.arubanetworks.com/t5/Wireless-Access/Technical-Webinar-Recording-Slides-What-does-AirMatch-do/td-p/314413
These slides were used during our Airheads Meetup Event at Jaarbeurs Utrecht on October 27th 2017.
If you have ideas, new speaker topics and recommendations for the events, please help us to improve for next year’s event by commenting on the community page: http://community.arubanetworks.com/t5/Wireless-Access/Airheads-Technical-Event-The-Netherlands-October-27th-2017/m-p/313566#M75870
These slides were used during our Airheads Meetup Event at Jaarbeurs Utrecht on October 27th 2017.
If you have ideas, new speaker topics and recommendations for the events, please help us to improve for next year’s event by commenting on the community page: http://community.arubanetworks.com/t5/Wireless-Access/Airheads-Technical-Event-The-Netherlands-October-27th-2017/m-p/313566#M75870
These slides were used during our Airheads Meetup Event at Jaarbeurs Utrecht on October 27th 2017.
If you have ideas, new speaker topics and recommendations for the events, please help us to improve for next year’s event by commenting on the community page: http://community.arubanetworks.com/t5/Wireless-Access/Airheads-Technical-Event-The-Netherlands-October-27th-2017/m-p/313566#M75870
These slides were used during our Airheads Meetup Event at Jaarbeurs Utrecht on October 27th 2017.
If you have ideas, new speaker topics and recommendations for the events, please help us to improve for next year’s event by commenting on the community page: http://community.arubanetworks.com/t5/Wireless-Access/Airheads-Technical-Event-The-Netherlands-October-27th-2017/m-p/313566#M75870
In this presentation, we will run through different API types and cases: configuration APIs (REST API), context APIs (NBAPIs), SDN APIs and explain how to make API calls via CLI. Check out the webinar recording where this presentation was used: http://community.arubanetworks.com/t5/Wireless-Access/Technical-Webinar-Recording-Slides-Configuring-different-APIs-in/td-p/312011
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
In this presentation, we will cover basic requirements and supported topologies for Multizone AP, how to bring up APs in multi version and how the AP's image upgrade differs in 8.x
Check out the webinar recording where this presentation was used: http://community.arubanetworks.com/t5/Wireless-Access/Technical-Webinar-Recording-Slides-Multi-zone-AP-and-Centralized/td-p/308499
This webinar will cover how to bring up Aruba Mobility Master, Managed Device & Access Point and also go through some basic troubleshooting commands.Check out the webinar recording where this presentation was used: http://community.arubanetworks.com/t5/Wireless-Access/Technical-Webinar-Recording-Slides-Bringing-up-Aruba-Mobility/td-p/307599
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
In this presentation, we will run through the 8.x Architecture configuration model and share some UI navigation features such as managed controllers and spectrum monitoring, geolocation and maps.
Check out the webinar recording where this presentation was used: http://community.arubanetworks.com/t5/Wireless-Access/Technical-Webinar-Recording-Slides-Aruba-8-x-Architecture/td-p/302349
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
In this presentation, we will cover ArubaOS' Cluster Manager, a combination of multiple managed devices working together to provide high availability to all the clients and ensure service continuity when a failover occurs. Check out the webinar recording where this presentation was used:
http://community.arubanetworks.com/t5/Wireless-Access/Technical-Webinar-Recording-Slides-ArubaOS-Cluster-Manager/td-p/297761
Register for the upcoming webinars: https://community.arubanetworks.com/t5/Training-Certification-Career/EMEA-Airheads-Webinars-Jul-Dec-2017/td-p/271908
More from Aruba, a Hewlett Packard Enterprise company (20)
Threats to mobile devices are more prevalent and increasing in scope and complexity. Users of mobile devices desire to take full advantage of the features
available on those devices, but many of the features provide convenience and capability but sacrifice security. This best practices guide outlines steps the users can take to better protect personal devices and information.
Securing your Kubernetes cluster_ a step-by-step guide to success !KatiaHIMEUR1
Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster.
However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks.
In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdfPaige Cruz
Monitoring and observability aren’t traditionally found in software curriculums and many of us cobble this knowledge together from whatever vendor or ecosystem we were first introduced to and whatever is a part of your current company’s observability stack.
While the dev and ops silo continues to crumble….many organizations still relegate monitoring & observability as the purview of ops, infra and SRE teams. This is a mistake - achieving a highly observable system requires collaboration up and down the stack.
I, a former op, would like to extend an invitation to all application developers to join the observability party will share these foundational concepts to build on:
In his public lecture, Christian Timmerer provides insights into the fascinating history of video streaming, starting from its humble beginnings before YouTube to the groundbreaking technologies that now dominate platforms like Netflix and ORF ON. Timmerer also presents provocative contributions of his own that have significantly influenced the industry. He concludes by looking at future challenges and invites the audience to join in a discussion.
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
UiPath Test Automation using UiPath Test Suite series, part 6DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 6. In this session, we will cover Test Automation with generative AI and Open AI.
UiPath Test Automation with generative AI and Open AI webinar offers an in-depth exploration of leveraging cutting-edge technologies for test automation within the UiPath platform. Attendees will delve into the integration of generative AI, a test automation solution, with Open AI advanced natural language processing capabilities.
Throughout the session, participants will discover how this synergy empowers testers to automate repetitive tasks, enhance testing accuracy, and expedite the software testing life cycle. Topics covered include the seamless integration process, practical use cases, and the benefits of harnessing AI-driven automation for UiPath testing initiatives. By attending this webinar, testers, and automation professionals can gain valuable insights into harnessing the power of AI to optimize their test automation workflows within the UiPath ecosystem, ultimately driving efficiency and quality in software development processes.
What will you get from this session?
1. Insights into integrating generative AI.
2. Understanding how this integration enhances test automation within the UiPath platform
3. Practical demonstrations
4. Exploration of real-world use cases illustrating the benefits of AI-driven test automation for UiPath
Topics covered:
What is generative AI
Test Automation with generative AI and Open AI.
UiPath integration with generative AI
Speaker:
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...SOFTTECHHUB
The choice of an operating system plays a pivotal role in shaping our computing experience. For decades, Microsoft's Windows has dominated the market, offering a familiar and widely adopted platform for personal and professional use. However, as technological advancements continue to push the boundaries of innovation, alternative operating systems have emerged, challenging the status quo and offering users a fresh perspective on computing.
One such alternative that has garnered significant attention and acclaim is Nitrux Linux 3.5.0, a sleek, powerful, and user-friendly Linux distribution that promises to redefine the way we interact with our devices. With its focus on performance, security, and customization, Nitrux Linux presents a compelling case for those seeking to break free from the constraints of proprietary software and embrace the freedom and flexibility of open-source computing.
Climate Impact of Software Testing at Nordic Testing DaysKari Kakkonen
My slides at Nordic Testing Days 6.6.2024
Climate impact / sustainability of software testing discussed on the talk. ICT and testing must carry their part of global responsibility to help with the climat warming. We can minimize the carbon footprint but we can also have a carbon handprint, a positive impact on the climate. Quality characteristics can be added with sustainability, and then measured continuously. Test environments can be used less, and in smaller scale and on demand. Test techniques can be used in optimizing or minimizing number of tests. Test automation can be used to speed up testing.
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
zkStudyClub - Reef: Fast Succinct Non-Interactive Zero-Knowledge Regex ProofsAlex Pruden
This paper presents Reef, a system for generating publicly verifiable succinct non-interactive zero-knowledge proofs that a committed document matches or does not match a regular expression. We describe applications such as proving the strength of passwords, the provenance of email despite redactions, the validity of oblivious DNS queries, and the existence of mutations in DNA. Reef supports the Perl Compatible Regular Expression syntax, including wildcards, alternation, ranges, capture groups, Kleene star, negations, and lookarounds. Reef introduces a new type of automata, Skipping Alternating Finite Automata (SAFA), that skips irrelevant parts of a document when producing proofs without undermining soundness, and instantiates SAFA with a lookup argument. Our experimental evaluation confirms that Reef can generate proofs for documents with 32M characters; the proofs are small and cheap to verify (under a second).
Paper: https://eprint.iacr.org/2023/1886
GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...Neo4j
Leonard Jayamohan, Partner & Generative AI Lead, Deloitte
This keynote will reveal how Deloitte leverages Neo4j’s graph power for groundbreaking digital twin solutions, achieving a staggering 100x performance boost. Discover the essential role knowledge graphs play in successful generative AI implementations. Plus, get an exclusive look at an innovative Neo4j + Generative AI solution Deloitte is developing in-house.
Building RAG with self-deployed Milvus vector database and Snowpark Container...Zilliz
This talk will give hands-on advice on building RAG applications with an open-source Milvus database deployed as a docker container. We will also introduce the integration of Milvus with Snowpark Container Services.
How to Get CNIC Information System with Paksim Ga.pptxdanishmna97
Pakdata Cf is a groundbreaking system designed to streamline and facilitate access to CNIC information. This innovative platform leverages advanced technology to provide users with efficient and secure access to their CNIC details.
Enchancing adoption of Open Source Libraries. A case study on Albumentations.AIVladimir Iglovikov, Ph.D.
Presented by Vladimir Iglovikov:
- https://www.linkedin.com/in/iglovikov/
- https://x.com/viglovikov
- https://www.instagram.com/ternaus/
This presentation delves into the journey of Albumentations.ai, a highly successful open-source library for data augmentation.
Created out of a necessity for superior performance in Kaggle competitions, Albumentations has grown to become a widely used tool among data scientists and machine learning practitioners.
This case study covers various aspects, including:
People: The contributors and community that have supported Albumentations.
Metrics: The success indicators such as downloads, daily active users, GitHub stars, and financial contributions.
Challenges: The hurdles in monetizing open-source projects and measuring user engagement.
Development Practices: Best practices for creating, maintaining, and scaling open-source libraries, including code hygiene, CI/CD, and fast iteration.
Community Building: Strategies for making adoption easy, iterating quickly, and fostering a vibrant, engaged community.
Marketing: Both online and offline marketing tactics, focusing on real, impactful interactions and collaborations.
Mental Health: Maintaining balance and not feeling pressured by user demands.
Key insights include the importance of automation, making the adoption process seamless, and leveraging offline interactions for marketing. The presentation also emphasizes the need for continuous small improvements and building a friendly, inclusive community that contributes to the project's growth.
Vladimir Iglovikov brings his extensive experience as a Kaggle Grandmaster, ex-Staff ML Engineer at Lyft, sharing valuable lessons and practical advice for anyone looking to enhance the adoption of their open-source projects.
Explore more about Albumentations and join the community at:
GitHub: https://github.com/albumentations-team/albumentations
Website: https://albumentations.ai/
LinkedIn: https://www.linkedin.com/company/100504475
Twitter: https://x.com/albumentations
3. Aruba Networks, Inc. Table of Contents | 3
Campus Redundancy Models Application Note
Table of Contents
Chapter 1: About the Validated Reference Design Series 4
Chapter 2: Introduction 6
Additional Reference Material 7
Chapter 3: Master Redundancy 8
Master Active-Standby 8
Master – No Redundancy 9
Chapter 4: Local Redundancy 11
Active-Active (1:1) 12
“Salt-and-Pepper” Deployments 14
Active-Standby (1+1) 14
Many-to-One (N+1) 16
Local – No Redundancy 18
Comparison of Local Redundancy Models 18
Chapter 5: Data Center Redundancy 19
Data Center – No Redundancy 22
Chapter 6: Recommendations for Controller Redundancy 23
Appendix A: AP and Client Failover Times 24
Simulated Client Tests 25
Appendix B: Contacting Aruba Networks 26
Contacting Aruba Networks 26
4. Aruba Networks, Inc. About the Validated Reference Design Series | 4
Campus Redundancy Models Application Note
Chapter 1: About the Validated Reference Design Series
The Aruba Validated Reference Designs (VRDs) and application notes are a collection of technology
deployment guides that include descriptions of Aruba technology, recommendations for product
selections, network design decisions, configuration procedures, and best practices for deployment.
Together these guides comprise a reference model for understanding Aruba technology and network
designs for common customer deployment scenarios.
Each Aruba VRD and application note contains designs that are constructed in a lab environment and
thoroughly tested by Aruba engineers. Our partners and customers use these proven designs to
rapidly deploy Aruba solutions in production with the assurance that they will perform and scale as
expected. Each guide in the series fits into one of five categories defined in the following manner:
Fundamentals: These essential technology guides cover a broad range of Aruba products
including mobility controllers, access points (APs), and site surveys. This is the starting point for
new engineers to get familiar with Aruba products. All guides in the other categories build on the
information in the fundamental guides. The guide that you are reading is part of the fundamental
series.
Campus: These guides cover designs for large campuses networks, including enterprise and
education. Typically these networks are carpeted space deployments with hundreds of devices
spread over several buildings.
Distributed Enterprise: These guides focus on deployments that cover a wider geography,
typically with smaller user and device counts. These deployments include K-12 schools, retail
chains, branch offices, and remote workers.
Outdoor: These guides cover large scale outdoor networks. These networks can include
deployments such as metro-mesh, video surveillance, rail yards, point-to-point mesh links, and
shipping facilities.
Network Services: Guides in this section cover the operation of Aruba products including
ClearPass, AirWave, and APAS. The solutions delivered by these guides apply equally to
campus, distributed enterprise, and outdoor networks.
5. Aruba Networks, Inc. About the Validated Reference Design Series | 5
Campus Redundancy Models Application Note
Figure 1 Aruba technology deployment guides
Fundamentals
Distributed
Enterprise
Campus Outdoor
Network Services
arun_1072
6. Aruba Networks, Inc. Introduction | 6
Campus Redundancy Models Application Note
Chapter 2: Introduction
As the WLAN moves from a convenience network to mission-critical, the need for network availability
also increases. Redundancy in a mobility controller system is designed to keep the APs functioning
during an outage. To determine the network design, organizations must decide between the cost of
building redundancy layers and the risk of the network being unavailable. In some cases, multiple
types of redundancy are possible, and organizations must gauge their tolerance for risk given the pros
and cons of each redundancy model.
In centralized Aruba WLAN deployments, the mobility controller is the heart of the network. The
controller operates as a stand-alone master, or in a master-local cluster. Aruba provides several
redundancy models for deploying mobility controllers. Each of these options, including the choice to
forgo redundancy, must be understood so that the correct choice can be made for each deployment
model.
The scale of redundancy has different levels, as seen in Figure 2. A completely redundant network is
more resilient and costs more than the lower levels of the scale:
Having a completely redundant network
Having redundancy for aggregation-level mobility controllers (AP level)
Having redundancy between a set of mobility controllers (small deployments)
Having no redundancy at all
Figure 2 Scale of redundancy for mobility controllers
arun_0275
Master Standby
Master Local 1
Fully Redundant
Local n
Master
Local 1
Local 2
Local 2
Redundant Aggregation
Local n
Master
Local
Hot Standby
Master
Local
No Redundancy
7. Aruba Networks, Inc. Introduction | 7
Campus Redundancy Models Application Note
As a network moves up the scale, the cost and complexity increases. At the same time, the chance of
the network being unusable due to a network outage decreases. This guide discusses redundancy at
each level and what the consequences are of running a network without redundancy.
Appendix A provides failover testing times with the Aruba system. We have done extensive testing
with real clients and simulators in an effort to decrease our failover times. It has become very apparent
that client behaviors during an outage vary widely, and most of the outage time is related to clients
reassociating to the network.
Additional Reference Material
This guide assumes a working knowledge of Aruba products. Recommended reading for this
guide is the Aruba Mobility Controllers VRD. This guide and others in the series are available for
free at http://www.arubanetworks.com/vrd.
The complete suite of Aruba technical documentation is available for download from the Aruba
support site. These documents present complete, detailed feature and functionality explanations
outside the scope of the VRD series. The Aruba support site is located at:
https://support.arubanetworks.com/.
This site requires a user login and is for current Aruba customers with support contracts.
8. Aruba Networks, Inc. Master Redundancy | 8
Campus Redundancy Models Application Note
Chapter 3: Master Redundancy
The master mobility controller is the control plane in a centralized WLAN. The master controller
handles initial AP boot up in Layer 3 deployments, policy configuration and push to the local mobility
controllers, local database access, and services such as security coordination and location.
Additionally, if CPsec is enabled on the network, the master is responsible for certificate generation.
Master Active-Standby
To achieve high availability of the master mobility controller uses master redundancy (see Figure 3). In
this scenario, two controllers are used at the management layer: one controller is configured as an
active master and one is configured as a standby master. The two masters operate in a warm standby
redundancy model. One master is the active primary, and the second is a standby that receives
updates from the master about the state of the network.
Figure 3 Master redundancy using VRRP and database synchronization
The two masters synchronize databases at a designated interval, typically every 30 minutes. The two
controllers run a VRRP instance between them. The VRRP virtual IP (VIP) address is used by the local
mobility controllers, mobility access switches (MASs), and APs that attempt to discover a mobility
controller. The VIP address is also used for network administration.
When the primary master becomes unreachable for the timeout period, the backup master promotes
itself to be the primary master and uses the VIP address. All traffic from locals and APs to the master
automatically switches to the new primary as seen in Figure 4.
Figure 4 Master redundancy failure scenario for the local mobility controller
RNSG_043
arun_0262
Master
standby
VRRP
keepalives
Periodic database
synchronization
Master
active
arun_0263
Primary
master
Local
controller
Backup
master
9. Aruba Networks, Inc. Master Redundancy | 9
Campus Redundancy Models Application Note
While VRRP pre-emption is supported, Aruba does not recommend enabling it in the master
redundancy model. If preemption is disabled and a failover occurs, the new primary remains the
primary even when the original master comes back online. The new primary does not revert to a
backup unless an administrator forces it to do so. Disabling preemption prevents the master from
“flapping” between two controllers and it allows the administrator to investigate the cause of the
outage.
Master – No Redundancy
If the master fails without a backup, the following services stop working:
AP boot: During the AP boot cycle, the AP must discover and connect to a provisioning mobility
controller. In almost all deployments this is the master mobility controller, because that mobility
controller typically is not serving APs and is able to be a single source for AP provisioning. It is
also far easier to configure either DNS lookup or a single DHCP option to find a single mobility
controller than to manage multiple lookups or scopes. It is also possible to use Layer 2 discovery
mechanisms to find a local mobility controller, but this is not realistic in larger deployments. If the
master is unreachable, in certain cases the APs may not be able to reboot until the master is
restored or their boot process is modified:
In situations where DHCP option 43 is used, the APs are unable to boot until a new master is
in place or the DHCP scope option is modified to point at either a new master or to a local.
If DNS is used to locate the master, the APs are down unless a second IP
address is also returned in the DNS response that points to a local. Note that this
configuration results in a protracted outage, and the local must have AP capacity to bring up
and then redirect the APs as they fail to the backup DNS response. This outage is longer in
duration, with each AP taking approximately 4-5 minutes to fail to the backup. Depending on
the AP capacity on the backup, several attempts may be needed before the AP is able to
connect and be redirected properly.
APs that rely on Aruba Discovery Protocol (ADP) continue to operate as long as a local is
capable of answering their ADP request. These APs require Layer 2 connectivity to the local
for ADP to function.
In all cases, APs that are currently operating continue to do so in the event that the master
becomes unreachable until they are rebooted or power cycled.
Local policy configuration: Configuration, done either on the master or AirWave, requires that
the master is operational to push configurations to the locals. If the master is not available,
changes to the network policy configuration are not possible unless each mobility controller is
modified manually, though local configuration at the IP level is possible.
Local database access is lost: If the master becomes unreachable, guest access using the
local database, as well as when roaming between locals when machine authentication is
enabled, is lost.
Monitoring, heat maps, and location: If AirWave is not present in the network, centralized
network monitoring, heat map generation, and location services all are down.
Valid AP table: When the master is down, the valid AP table is no longer available for updates.
The locals continue to function with cached data until that ages out. After that time, other APs in
the network are seen as “unknown” instead of valid, interfering, or rogue. When this occurs,
10. Aruba Networks, Inc. Master Redundancy | 10
Campus Redundancy Models Application Note
Adaptive Radio Management (ARM) increases power to the edge APs on both sides in an
attempt to increase coverage and work around the now unknown AP. At AP border areas,
overlapping channels and power lead to increased interference.
RFProtect coordination: When the master is down, RFProtect security loses its coordination
capabilities between locals. Any new APs that show up are classified as “unknown,” which
prevents automatic containment from functioning. Existing data remains until it ages out, and
then all of the APs begin to be reclassified as “unknown.” If protection of valid stations is
enabled, clients are prevented from joining any AP that is not valid, which after some time will be
all APs that the mobility controller can see that are not directly attached.
AP white lists: The two varieties of white lists are the campus AP (CAP) and remote AP (RAP)
white lists. For the CAP white list, all mobility controllers share a copy of the white list, but
without the master, they lose the capability to synchronize the lists. The RAP white list must be
exported to the local manually to ensure that operations continue, but no additional APs can be
authorized while the master is unreachable.
CPsec: Failure to have a backup for CPsec results in the same failures as a master mobility
controller, with an additional problem. If the master physically must be replaced, as soon as it is
brought online, the entire network goes back through the recertification list. In addition, the AP
white list must be rebuilt.
11. Aruba Networks, Inc. Local Redundancy | 11
Campus Redundancy Models Application Note
Chapter 4: Local Redundancy
Three models of local redundancy are available. Each type of local redundancy is appropriate in a
particular scenario, and sometimes they operate together. In each redundancy method, the goal is to
provide the AP with a location where it can establish connectivity in the event of a mobility controller
failure. The two methods for doing this are the Virtual Router Redundancy Protocol (VRRP) and the
local management switch and backup local management switch (LMS / BLMS). These methods can
be combined to provide local and data center redundancy across the three available deployment
models. Table 1 describes the features and timings of each method.
VRRP tends to be faster than LMS redundancy, but it only works at Layer 2. Aruba recommends
running VRRP wherever possible, and reserving LMS redundancy where Layer 2 adjacency is not
available, such as between data centers.
Table 1 VRRP and LMS / BLMS Feature Comparison
Feature VRRP LMS / BLMS
Layer 2 or Layer 3 Operation Operates at Layer 2 Operates at Layer 3
AP Reconnection The AP radios rebootstrap on failover after
the heartbeat times out. This takes about
10 seconds.
The AP radios rebootstrap after the heartbeat times
out. The AP attempts to reestablish a connection to
the primary LMS before failing to the backup LMS.
This is takes approximately 1 min.
12. Aruba Networks, Inc. Local Redundancy | 12
Campus Redundancy Models Application Note
Active-Active (1:1)
In the Aruba active-active redundancy model, two locals share a set of APs, divide the load, and act as
a backup for each other. Aruba recommends the active-active method of deploying redundant locals
whenever they are Layer 2 adjacent. When two controllers operate together, they must run two
instances of VRRP with each controller acting as the primary for one instance and backup for the other
as shown in Figure 5.
Figure 5 Active-active redundancy, both mobility controllers reachable
arun_044
arun_0264
Air monitor
Keepalives
Active VIP
Standby VIP
Local
Active VIP
Standby VIP
Local
13. Aruba Networks, Inc. Local Redundancy | 13
Campus Redundancy Models Application Note
The controllers each terminate half of the APs in this redundancy cluster. The APs are configured in
two different AP groups, each with a different VIP as the LMS IP address for that AP group. When one
active local controller becomes unreachable, as in Figure 6, APs that are connected to the
unreachable controller fail over to the second local. That controller now terminates all of the APs in the
redundancy cluster. Therefore each controller must have sufficient processing power and licenses to
accommodate all of the APs that are served by the entire cluster.
Figure 6 Active-active redundancy, mobility controller unreachable
In this model, preemption should be disabled so that APs are not forced to fail back to the original
primary when it comes back online. APs will not fail back, so this model requires that the mobility
controller be sized appropriately to carry the entire planned failover AP capacity for an extended period
of time.
N O T E
When determining the AP load for active-active, give some thought (from a
capacity standpoint) to what will happen to the backup controller when the APs
fail over. If each mobility controller is at 50% of total capacity, when a failure
occurs, the mobility controller that the APs fail over to will now be at 100%
capacity. This leaves no room for future expansion of the system. Aruba
recommends that each mobility controller be planned to run at 40% capacity
(80% of total) to allow for future expansion.
arun_045
arun_0265
Air monitor
Local
Active VIP
Active VIP
Local
Unreachable
14. Aruba Networks, Inc. Local Redundancy | 14
Campus Redundancy Models Application Note
“Salt-and-Pepper” Deployments
Active-active designs should not be confused with or considered synonymous with so called “Salt-and-
Pepper” (SNP) designs. In an SNP design, APs are interspersed in the same RF coverage area, such
that every other AP goes to a different mobility controller. Aruba strongly recommends against this
design as it can have negative impacts on ARM operation and increases Layer 3 roaming events.
Part of what ARM does is to adjust AP channel and power settings to balance that AP with surrounding
APs. In an SNP each APs is surrounded by an AP that is homed to a different controller but is still
valid. ARM instances expect only to encounter this situation at the boundary of a controllers RF
domain. Channel changes will not be coordinated between the APs in the same RF neighborhood.
Aruba recommends each building be considered a single RF neighborhood for AP termination.
Layer 3 roaming is impacted because each time a device moves to a new AP, it either moves to a
foreign agent, which causes a tunnel to be constructed and authentication to occur, or back to its home
agent. This type of roaming is more disruptive to the client as opposed to roaming across APs on the
same controller.
Aruba recommends against deploying in a SNP model.
Active-Standby (1+1)
The active-standby model also has two controllers, but in this case, one controller sits idle while the
primary controller supports the full load of APs and users (see Figure 7).
Figure 7 Active-standby redundancy, primary mobility controller is reachable
arun_0266
Air monitor
Local
Active VIP
Local
Backup VIP
15. Aruba Networks, Inc. Local Redundancy | 15
Campus Redundancy Models Application Note
When a failure occurs in the active-standby model, all of the APs and users must fail over to the
backup controller. This model has a larger failure domain and will have some increased latency
because the full load of APs must fail over to the backup controller and users re-authenticate as shown
in Figure 8. This form of redundancy typically uses the LMS and backup LMS configuration for the AP
group because the controllers are usually in separate data centers. Alternatively, a single VRRP
instance could be run between the two controllers, and all APs for the pair would terminate against this
VRRP IP address.
Figure 8 Active-standby controller, primary mobility controller is unreachable
As with active-active, when the active local becomes unreachable, all of the APs that are connected to
the unreachable controller fail over to the standby local. That controller carries the full AP load duration
of the outage. Therefore each controller must have sufficient processing power and licenses to
accommodate all of the APs served by the entire cluster. arun_0267
arun_045
Air monitor
LocalLocal
Active VIPBackup VIP
16. Aruba Networks, Inc. Local Redundancy | 16
Campus Redundancy Models Application Note
Many-to-One (N+1)
The many-to-one model typically is used in remote networks where branch offices have local mobility
controllers but redundancy on site is not feasible. The store controllers are typically smaller models
with a limited numbers of APs, and a much larger controller is deployed as the +1 in the data center as
seen in Figure 9. This model requires that a secure connection is established between the sites that is
independent of the mobility controllers, and that the connection should have high bandwidth and low
latency.
It is possible to use N+1 on the campus as well, but here consideration should be given to the ratio and
likelihood that sections of the campus might become unreachable, which would cause a multiple
controller failover.
Figure 9 N+1 redundancy, local active
arun_0268
LocalLocal Local
Private WAN
or site-to-site VPN
N+1 redundancy N+1 redundancy N+1 redundancy
Data center
Backup
mobility
controller
17. Aruba Networks, Inc. Local Redundancy | 17
Campus Redundancy Models Application Note
When the local at the remote site fails, the APs fail back to the backup LMS that is configured for that
purpose, just as in the active-standby scenario (see Figure 10).
Figure 10 N+1 redundancy, local failed, AP connected across the WAN
The difference in the N+1 scenario is that this failure is typically across a WAN link, and the backup
controller should be large enough to handle multiple site failures at the same time. Though a typical
small site might have a handful of APs on a smaller mobility controller, the central site must have a
much larger mobility controller with increased licensing to handle the expected number of failures of
locals.
In typical campus designs, only a single failure is anticipated, but some organizations require more
resiliency against failure of multiple sites. Common cases include retail stores, where more than a
single store may have an outage at any one time due to the sheer number of sites and the fact that the
controller may be in user-accessible space.
Aruba strongly recommends that preemption be enabled in this scenario. Due to the limited capacity of
the redundant mobility controller and the possible delay introduced by failing over to a remote site, it is
recommended that APs be moved back to their original mobility controller as soon as service is
restored. In a campus deployment where the backup is often equal in capacity to the local, preemption
is even more critical. If a second controller becomes unreachable, the backup controller typically does
not have the capacity to accept the additional APs.
Some consideration should be given to the ratio of primary to backup controllers. If the backup mobility
controller is the same model and scale as all of the locals that it is backing up, a single local can
become unreachable in the network and the network still operates properly. If a second local becomes
unreachable, all APs that exceed the capacity of the backup mobility controller are listed as unlicensed
arun_0269
LocalLocal
Local
Data center
Backup
mobility
controller
Private WAN
or site-to-site VPN
N+1 redundancyN+1 redundancy N+1 redundancy
18. Aruba Networks, Inc. Local Redundancy | 18
Campus Redundancy Models Application Note
and do not operate. It is recommended that, where possible, the backup have the ability to terminate
multiple locals in the event that multiple mobility controllers go off line.
Local – No Redundancy
If a local becomes unreachable and has no backups configured for the APs, all APs that are assigned
to that mobility controller go down and no users can connect. Any AMs that are associated to the
controller are also down, which eliminates the capability to scan for threats and contain rogue devices.
This situation continues until the APs are reprovisioned and assigned to another mobility controller or
the original or replacement local becomes reachable again.
Comparison of Local Redundancy Models
Table 2 summarizes the pros and cons of each redundancy model, which allows network managers to
make the proper redundancy decision for their network.
Aruba recommends using active-active redundancy wherever possible. Active-active provides the
fastest recovery time in the event of a network outage with the least disruption to the end user. Aruba
also recommends in all models that mobility controllers not be loaded past the 80% mark. This load
level helps increase the stability of the network during prolonged outages and allows for future growth
of the network.
Table 2 Comparison of Redundancy Models
Redundancy Type Pro Con
Active-Active (1:1) The failure domain is smaller, because fewer
APs must fail over in the event of an outage.
The outage duration is smaller, because fewer
APs will take less time to recover, typically
about half as long as failing over a fully loaded
mobility controller.
All mobility controllers are in use at all times.
Each mobility controller has a reduced load.
More expensive than N+1, because all mobility
controllers must be licensed to handle the full
complement of APs in the failure domain.
Aruba recommends that this load be planned to
80% of the maximum capacity of each mobility
controller
Twice as many mobility controllers are required
vs. no redundancy.
Active-Standby (1+1) If APs fail to the backup controller, essentially
nothing has changed in the network except
where the APs and users are hosted.
Has the same cost structure as the active-
active redundancy model, with two sets of
mobility controllers and two sets of licenses.
The failure domain is larger, all APs must fail to
the backup mobility controller, which typically
takes twice as long as active-active.
The outage duration will be longer, because
more APs must be recovered.
Many-to-One (N+1) In this cost-optimized model, fewer redundant
mobility controllers are required, and they need
only be licensed and scaled to handle the
maximum number of failed mobility controllers.
Typically only one redundant mobility controller
is deployed.
Multiple failures can overwhelm the redundant
mobility controller, which causes a network
down scenario.
Preemption must be enabled to clear APs back
to the primary mobility controller as soon as it is
recovered, which results in a second
unplanned outage.
19. Aruba Networks, Inc. Data Center Redundancy | 19
Campus Redundancy Models Application Note
Chapter 5: Data Center Redundancy
The data center of an organization may experience an outage where all local mobility controllers at a
particular site are offline but the network continues to operate. The APs can fail over to a redundant set
of mobility controllers in another location as seen in Figure 11. The redundant controllers can be either
in the same data center but connected by discrete power and data connections, or in a remote data
center that is reachable by a private WAN or IPsec link.
Figure 11 Active-active plus LMS and standby backup LMS
When the data center is at a remote site, consider the link between sites. The primary concerns are
latency, overall bandwidth, and security. Latency affects authentication, such as 802.1X, and voice
calls. Overall bandwidth needs to consider AP control traffic and user traffic. Finally, the connection
should be secure between the sites, especially if decrypt tunnel is in use.
arun_0271
Primary A
Backup B
Controller
A
Controller
B
LMS A
Backup LMS C
LMS B
Backup LMS D
LMS A and B
Primary B
Backup A
Primary C
Backup D
Controller
C
Controller
D
Backup LMS C and D
Primary D
Backup C
20. Aruba Networks, Inc. Data Center Redundancy | 20
Campus Redundancy Models Application Note
Data center redundancy consists of two to four total controllers, and up to four instances of VRRP. The
APs can be set up either to split between two of the mobility controllers (active-active) with a pair in hot
standby, or spread evenly across all four mobility controllers. In this model, the APs are set up so that
they operate on the VIP address of their primary pair of mobility controllers (Figure 12), and their
backup is one of the two VIP addresses on the second pair of mobility controllers (Figure 13).
Figure 12 Failure of single primary mobility controllers in active-active
with LMS and backup LMS
Figure 13 Failure of primary the primary data center in active-active
with LMS and backup LMS
In a failure scenario, the failure of one mobility controller in a pair results in typical active-active
failover. If the second mobility controller in the pair fails, the APs fail over to their backup pair of
controllers and split between the two VIP instances. In either deployment model, all four mobility
controllers must be licensed and capable of supporting the full AP load.
arun_0272
Primary B
Backup A
Controller A
(unreachable)
Controller
B
LMS A
Backup LMS C
LMS B
Backup LMS D
LMS A and B
Primary B
Backup A
Primary C
Backup D
Controller
C
Controller
D
Backup LMS C and D
Primary D
Backup C
arun_0282
Primary A
Backup B
Controller A
(unreachable)
Controller B
(unreachable)
Primary B
Backup A
Primary C
Backup D
Controller
C
Controller
D
Primary D
Backup C
LMS A
Backup LMS C
LMS B
Backup LMS D
LMS A and B Backup LMS C and D
21. Aruba Networks, Inc. Data Center Redundancy | 21
Campus Redundancy Models Application Note
Figure 14 shows scenario 1:
1. 412 APs were split across two active M3 mobility controllers (206 APs each), with each group
active on one of the two VRRP instances in the first pair of locals and the two VRRP instances in
the second pair standing by to receive APs.
2. When the local A fails, the APs move to the active backup local B. This change results in 412
APs on the backup local B, and 0 APs on each local (C and D) in the second cluster.
3. When local B fails, the 412 APs from the failed cluster distribute themselves evenly across the
two locals C and D that are still active in the second cluster. This change results in 206 APs on
each local.
4. If local C fails, all 412 APs become active on the remaining local D.
5. As a result, each mobility controller must be licensed to support all 412 APs if three of the other
mobility controllers become unreachable.
Figure 14 Failure series, active-active with LMS and standby backup LMS
arun_0273
Primary A
Backup B
Controller A
(unreachable)
Controller B
(unreachable)
Primary B
Backup A
Primary C
Backup D
Controller
C
Controller
D
Primary D
Backup C
Primary A
Backup B
Controller A
(unreachable)
Controller B
(unreachable)
Controller C
(unreachable)
Primary B
Backup A
Primary C
Backup D
Controller
D
Primary D
Backup C
Primary A
Backup B
Controller
A
Controller
B
LMS A
Backup LMS C
LMS B
Backup LMS D
LMS A and B
Primary B
Backup A
Primary C
Backup D
Controller
C
Controller
D
Backup LMS C and D
Primary D
Backup C
Primary B
Backup A
Controller A
(unreachable)
Controller
B
LMS A
Backup LMS C
LMS B
Backup LMS D
LMS A and B
Primary B
Backup A
Primary C
Backup D
Controller
C
Controller
D
Backup LMS C and D
Primary D
Backup C
LMS A
Backup LMS C
LMS B
Backup LMS D
LMS A
Backup LMS C
LMS B
Backup LMS D
22. Aruba Networks, Inc. Data Center Redundancy | 22
Campus Redundancy Models Application Note
Figure 15 shows scenario 2:
1. 412 APs were split across four active M3 mobility controllers (103 APs each), and each group
was active on one VRRP.
2. When local A fails, the APs move to the active backup local B. This change results in 206 APs
on the backup local B, and 103 APs on each local (C and D) in the second cluster.
3. When the local B fails, the 206 APs from the failed cluster distribute themselves evenly across
the locals C and D that are still active in the second cluster. This change results in 206 APs on
each mobility controller.
4. If local C fails, all 412 APs become active on the remaining local D.
5. As a result, each mobility controller must be licensed to support all 412 APs if three of the other
mobility controllers become unreachable.
Figure 15 Failure series, active-active with LMS and backup LMS also in use
Data Center – No Redundancy
Commonly, data center redundancy is deployed only by organizations with extremely high availability
requirements and the ability to have the APs connect through a separate set of infrastructure to the
second set of controllers. Each organization must decide on the acceptable level of risk vs. cost
around this higher level of redundancy.
arun_0274
Primary A
Backup B
Controller
A
Controller
B
LMS A
Backup LMS C
LMS B
Backup LMS D
LMS C
Backup LMS A
LMS D
Backup LMS B
Primary B
Backup A
Primary C
Backup D
Controller
C
Controller
D
Primary D
Backup C
Primary A
Backup B
Controller A
(unreachable)
Controller
B
LMS A
Backup LMS C
LMS B
Backup LMS D
LMS C
Backup LMS A
LMS D
Backup LMS B
Primary B
Backup A
Primary C
Backup D
Controller
C
Controller
D
Primary D
Backup C
Primary A
Backup B
Controller A
(unreachable)
Controller B
(unreachable)
LMS A
Backup LMS C
LMS B
Backup LMS D
LMS C
Backup LMS A
LMS D
Backup LMS B
Primary B
Backup A
Primary C
Backup D
Controller C
(unreachable)
Controller
D
Primary D
Backup C
Primary A
Backup B
Controller A
(unreachable)
Controller B
(unreachable)
LMS A
Backup LMS C
LMS B
Backup LMS D
LMS C
Backup LMS A
LMS D
Backup LMS B
Primary B
Backup A
Primary C
Backup D
Controller
C
Controller
D
Primary D
Backup C
23. Aruba Networks, Inc. Recommendations for Controller Redundancy | 23
Campus Redundancy Models Application Note
Chapter 6: Recommendations for Controller Redundancy
Wireless networks are no longer convenience networks. They are now mission-critical components of
the network. As such, they need to be treated like any other mission-critical system. Aruba
recommends redundancy at all levels of the system to ensure a highly available network for users.
Table 3 Redundancy Recommendations
Controller Campus Branch Office
Remote Access
(DMZ)
Data Center
Master Master redundancy N/A Master redundancy Master redundancy
Local Active-active redundancy,
each mobility controller
loaded at 40% of capacity,
licensed to 80% of
capacity
Active-active redundancy
where possible, N+1
redundancy minimum
Active-active redundancy,
each mobility controller
loaded at 40% of capacity,
licensed to 80% of
capacity
Active-active redundancy,
each mobility controller
loaded at 40% of capacity,
licensed to 80% of
capacity
24. Aruba Networks, Inc. AP and Client Failover Times | 24
Campus Redundancy Models Application Note
Appendix A: AP and Client Failover Times
Table 4 and Table 5 show failover times for APs failing over in an active-active deployment. These
APs were tested in the Aruba labs using the VeriWave test tools to simulate clients. Aruba has also
done extensive over-the-air testing. These tables were developed using two test cases:
Test case 1: The test starts with APs distributed evenly between two mobility controllers. The
test ends when all APs have completed their transition from the disconnected mobility controller
to the remaining mobility controller.
Test case 2: This test takes the first test case and includes APs and clients failing over between
the two mobility controllers. Test case 2 represents a worst case scenario. This test starts with
APs and clients evenly distributed between two mobility controllers. The test ends when the last
client connection is re-established on the remaining mobility controller. Actual client experience
will vary between a few seconds and the maximum value stated.
The client reauthentication rate is affected by a variety of factors outside of the WLAN infrastructure. In
this scenario, the clients dominate the resultant failover times. Client reauthentication can vary
considerably based on these things:
Client supplicant: Problems with the client supplicant can include slow authentication and
noncached credentials.
Client driver: The client NIC card is slow to recognize that the network connection has been
interrupted and is again available. The NIC card takes longer than expected to attempt to
reconnect to the network.
Authentication type: Different authentication types have different speeds for reauthentication.
As an example 802.1X is more involved than an open network, and hence slightly slower.
Insufficient AAA infrastructure: When a large number of clients attempt to reconnect to the
network at the same time, the AAA infrastructure, such as RADIUS and LDAP servers, can
become overwhelmed. Using a virtual machine for AAA has proven particularly bad when large
numbers of clients attempt to re-associate.
Insufficient backend infrastructure: Bottlenecks in the internal infrastructure can lead to
longer response times and dropped packets, which create longer authentication times.
N O T E
These numbers are based on active-active redundancy, with half of the APs
and users active on each mobility controller. For active-standby or N+1
redundancy, expect that failover times and client authentication can take 25%
to 100% longer for each set of numbers. The longer times are caused by the
greater number of APs and clients that fail over to the backup controller. For
example, in the largest test case, 256 APs need to fail over. In the active-
standby model, 512 APs need to fail over.
25. Aruba Networks, Inc. AP and Client Failover Times | 25
Campus Redundancy Models Application Note
Simulated Client Tests
Table 4 AP Failover Times
Active-Active
Test Case 1 CPsec Off CPsec On Test Case 2 CPsec On
64 CAP<==>64 CAP 17s 26s 1K User+ 256 CAP<==>1K User + 256 CAP 2m:20s
128 CAP<==>128 CAP 22s 38s 2K User+ 256 CAP<==>2K User + 256 CAP 2m:55s
256 CAP<==>256 CAP 48s 52s 4K User+ 256 CAP<==>4K User + 256 CAP 5m:45
Table 5 RAP Failover Times
RAP Active-Standby RAP Active-Active
1K Users + 512 RAP<==>0 3m:00s 1K Users+ 256 RAP<==>1K Users + 256 RAP 2m:10s
1K Users + 1K RAP<==>0 4m:30s 1K Users+ 512 RAP<==>1K Users + 512 RAP 3m:15s
26. Aruba Networks, Inc. Contacting Aruba Networks | 26
Campus Redundancy Models Application Note
Appendix B: Contacting Aruba Networks
Contacting Aruba Networks
Web Site Support
Main Site http://www.arubanetworks.com
Support Site https://support.arubanetworks.com
Software Licensing Site https://licensing.arubanetworks.com/login.php
Wireless Security Incident
Response Team (WSIRT)
http://www.arubanetworks.com/support/wsirt.php
Support Emails
Americas and APAC support@arubanetworks.com
EMEA emea_support@arubanetworks.com
WSIRT Email
Please email details of any security
problem found in an Aruba product.
wsirt@arubanetworks.com
Validated Reference Design Contact and User Forum
Validated Reference Designs http://www.arubanetworks.com/vrd
VRD Contact Email referencedesign@arubanetworks.com
AirHeads Online User Forum http://community.arubanetworks.com
Telephone Support
Aruba Corporate +1 (408) 227-4500
FAX +1 (408) 227-4550
Support
United States +1-800-WI-FI-LAN (800-943-4526)
Universal Free Phone Service Numbers (UIFN):
Australia Reach: 1300 4 ARUBA (27822)
United States 1 800 9434526
1 650 3856589
Canada 1 800 9434526
1 650 3856589
United Kingdom BT: 0 825 494 34526
MCL: 0 825 494 34526
27. Aruba Networks, Inc. Contacting Aruba Networks | 27
Campus Redundancy Models Application Note
Universal Free Phone Service Numbers (UIFN):
Japan IDC: 10 810 494 34526 * Select fixed phones
IDC: 0061 010 812 494 34526 * Any fixed, mobile & payphone
KDD: 10 813 494 34526 * Select fixed phones
JT: 10 815 494 34526 * Select fixed phones
JT: 0041 010 816 494 34526 * Any fixed, mobile & payphone
Korea DACOM: 2 819 494 34526
KT: 1 820 494 34526
ONSE: 8 821 494 34526
Singapore Singapore Telecom: 1 822 494 34526
Taiwan (U) CHT-I: 0 824 494 34526
Belgium Belgacom: 0 827 494 34526
Israel Bezeq: 14 807 494 34526
Barack ITC: 13 808 494 34526
Ireland EIRCOM: 0 806 494 34526
Hong Kong HKTI: 1 805 494 34526
Germany Deutsche Telkom: 0 804 494 34526
France France Telecom: 0 803 494 34526
China (P) China Telecom South: 0 801 494 34526
China Netcom Group: 0 802 494 34526
Saudi Arabia 800 8445708
UAE 800 04416077
Egypt 2510-0200 8885177267 * within Cairo
02-2510-0200 8885177267 * outside Cairo
India 91 044 66768150
Telephone Support