Transcript L2/L3 AP Auto-Discovery and Centralized Management - D-Link

D-Link Unified Switch
DWS-3160 Sales Guide
August 2011
DHQ
Agenda
Enterprise Wireless Market Update
Product Overview
Target Market and Applications
Key Feature Introduction
Competitive Comparison & Analysis
• Positioning Highlight
• Key Comparison
• Art of the War
3rd Party Application
Appendix
Enterprise Wireless Market Update
Enterprise WLAN Market Keeps Growing
• The Enterprise WLAN market in 2012 is expected to grow 20.2%
Thin/Unified AP with 802.11n is Main Stream Now
• With a strong CAGR 44.6%, 11n thin/ unified AP rise dramatically up to 11.8
million units by Y2015, replace 11 a/g AP in the market.
New Standard 802.11ac Show Up in Market by Y2013
Shipments of WLAN Access Points, Enterprise Market, Worldwide, 2006-2015 (Thousands of Units)
2009
2010
CAGR
(Actual) (Actual)
2011
2012
2013
2014
2015 2010-2015
Stand-Alone Access Points
2,434.3
2,426.5
2,168.1
1,949.2
1,787.7
1,660.2
1,615.6
-7.8%
802.11g
1,655.8
1,381.4
880.6
463.6
169.1
802.11a/g
571.0
377.4
228.7
124.2
62.4
802.11n
207.5
667.8
1,058.8
1,361.4
1,519.7
1,584.6
1,502.0
17.6%
1
802.11ac
36.5
75.6
113.6
Coordinated Access Points
2,289.3
3,118.2
4,772.0
6,393.2
8,128.3
9,939.7 11,849.2
30.6%
802.11a/g2
1,494.3
1,352.0
960.1
392.9
802.11n
794.9
1,766.2
3,811.8
6,000.3
8,003.7
9,599.5 11,158.2
44.6%
1
802.11ac
124.6
340.2
691.0
Total
4,723.5
5,544.7
6,940.1
8,342.4
9,915.9 11,599.9 13,464.8
19.4%
Shipment Growth
-0.1%
17.4%
25.2%
20.2%
18.9%
17.0%
16.1%
Note 1: The 802.11ac standard is currently under development stage. IEEE ratification is expected for late 2012.
Note 2: 802.11a/g estimates include coordinated access points that support 802.11g only. These represent a small fraction of the overall
unit shipments (e.g. 3.0% in 2010 and 3.2% in 2009).
Source: Gartner (May 2011)
Enterprise Wireless Market Update
(Cont.)
Wireless Control Appliance Market Continuing Growth
• Upon the growth of thin/unified AP, wireless control appliances rise dramatically
with CAGR 20.8%.
WLAN Software License is Booming
• The revenue of WLAN enhancement products is booming with CAGR 29.6%. The
majority in this category is software license, which revenue in 2011 is double than
its forecast in the report last year shows the market toward “add-on” and
“selectable” for wireless management product.
Shipments of Enterprise WLAN Equipment, by Product Segment, Worldwide, 2006-2015
2009
2010
(Actual) (Actual)
2011
2012
2013
2014
2015
By Shipment (Thousands of Units)
Coordinated Access Points
2,289.3 3,118.2 4,772.0 6,393.2 8,128.3 9,939.7 11,849.2
WLAN Controllers
115.4
134.4
168.9
209.0
251.8
299.6
345.4
By Revenue (Millions of Dollars)
Coordinated Access Points
$887.9 $1,248.5 $1,590.8 $1,890.9 $2,202.7 $2,557.7 $2,916.5
WLAN Controllers
$601.8
$643.9
$740.7
$825.0
$894.5
$977.6 $1,059.9
WLAN Enhancement Products
$130.4
$274.3
$382.2
$504.1
$657.0
$813.3 $1,003.7
Source: Gartner (May 2011)
CAGR
2010-2015
30.6%
20.8%
18.5%
10.5%
29.6%
Agenda
Enterprise Wireless Market Update
Product Overview
Target Market and Applications
Key Feature Introduction
Competitive Comparison & Analysis
• Positioning Highlight
• Key Comparison
• Art of the War
3rd Party Application
Appendix
WLAN Mgmt for Unified Wireless
Products
D-View
Wireless Mgt.
Module
When to use
Selling model
Applied model
•Large
•
Management Module on
D-View
•
•
Unified Switches/ Wireless
Controllers Bundle with
Unified APs
License Upgrade
•
•
•
Enterprise
Manage Multiple Unified
Switches/ Wireless Controllers1
Manage Unified / Standalone
APs3
•
Enterprise/ SMB/ SME
Manage 12~512 Unified APs per
Unified Switch
• Fast L2/ L3 Roaming
• Auto RF Management
• Intrusion Detection and Prevention
• Location Tracking
•
Unified Switch
Wireless Controller
•
SMB/SME
Up to 16 Unified APs in a AP
Clustering Group
•Centralized Dispatch
Configuration
•Centralized Monitor
•
AP Clustering
•
•
Unified APs
All Unified APs2
• Standalone APs3
• All Unified Switch1
• All Wireless Controller1
All Unified APs
•
All Unified APs
Note1 : Auto RF management and Fast roaming features are only supported in Unified Switch/ Wireless Controller product group
Note2 : If unified APs are managed directly (not via Unified Switch, nor Wireless Controller), “RF Visualization”, “Auto RF management”,
“Fast L2/L3 roaming”, “Intrusion detection and mitigation”, and “Location tracking” features are not supported
Note3 : Support DAP-2553/2690/3520 AP in WMM1.1; Support DWC-1000/ DWS-3160/ DWL-3600AP/DWL-6600AP in WMM1.2; Don’t
support the “RF Visualization”, “Auto RF management”, “Fast roaming”, “Intrusion detection and mitigation”, and “Location tracking”
features
DWS-3160 vs. DWS-3000
DWS-3160 Series
Feature
Lower Cost!
PoE
PoE+
• Full D-link 802.11n Unified AP Support
(DWL-8600AP/6600AP/3600AP)
• 16K MAC Address Table
• SD card slot for portable configurations and firmware images
• On Demand Location Tracking
• Radio Protection
• IPv4/v6 Static Route (Up to 512 routing entries)
• IEEE802.11e/WMM power saving/ U-APSD
• sFlow
• 802.3af/at support
• Green
- Time-based PoE
- Smart Fan Design
- Power Saving by Link Status/ Cable Length
DWS-3000 Series
PoE
•
•
•
•
Unified AP Support: DWL-3500/8500/8600AP
8K MAC Address Table
IPv4 Static Route (Up to 128 routing entries)
802.3af PoE support
P r i c e
Model and License Description
Model
DWS-3160-24TC
DWS-3160-24PC
H/W Configuration
20 10/100/1000Base-T + 4
combo 10/100/1000Base-T/SFP
20 10/100/1000Base-T PoE + 4
combo 10/100/1000Base-T
PoE/SFP
Power
AC Power
AC Power
Product Image
License Pack
Description
DWS-3160-AP12
(Physical Pack)
•Software Upgrade License for 12 APs
•Increases number of supported APs by 12
DWS-3160-AP24
(Physical Pack)
•Software Upgrade License for 24 APs
•Increases number of supported APs by 24
DWS-3160-AP12-LIC*
(Virtual Pack)
•Software Upgrade License for 12 APs
•Increases number of supported APs by 12
DWS-3160-AP24-LIC*
(Virtual Pack)
•Software Upgrade License for 24 APs
•Increases number of supported APs by 24
*Remark: 1.
2.
DLMS, D-Link License Management System , an on-line system integrating ERP and
e-Biz, delivers virtual package of appliance’s add-on services, instead of physical
one.
Launch time frame round 1H 2012.
License Combination Examples
DWS-3160
DWS-3160-AP12
DWS
License
Pack
Manage12 APs (Default)
DWS-3160
Manage 24 APs
Add 12 APs Support
DWS-3160
DWS-3160-AP24
DWS
License
Pack
Add 24 APs Support
Manage12 APs (Default)
DWS-3160
Manage12 APs (Default)
DWS-3160
Manage 36 APs
DWS-3160-AP12
DWS-3160-AP24
DWS
License
Pack
DWS
License
Pack
Add 12 APs Support
Add 24 APs Support
DWS-3160
Manage 48 APs
11n Unified AP Support
Model
Model
Description
Antenna Type
Power
Product
Image
DWL-8600AP
802.11n concurrent dual
band
DWL-6600AP
802.11n concurrent dual
band
DWL-3600AP
802.11n 2.4GHz single
band
External Antenna
Internal PIFA antennas
w/ external antenna
connectors
Internal omni-directional
antenna
AC Power/ PoE (802.3af)
AC Power/ PoE (802.3af)
AC Power/ PoE (802.3af)
Agenda
Enterprise Wireless Market Update
Product Overview
Target Market and Applications
Key Feature Introduction
Competitive Comparison & Analysis
• Positioning Highlight
• Key Comparison
• Art of the War
3rd Party Application
Appendix
Deployment Scenario : SMB
Servers
PC
L3 Switch
L2 Switch
DWS-3160
Application:
• Use WiFi phone in the whole building
Benefits:
• Seamless roaming at/between every floor
• AP configuration dispatch & centralized management
• Automatic Power/Channel adjustment
Deployment Scenario: Campus/Enterprise
Application:
• Overlay Deployment: Deploy at the central of existing
network infrastructure to manage unified APs remotely
• Edge Deployment: Deploy at the network edge
• Switch Clustering
• N+1 Switch Redundancy
• Automatic Power/Channel adjustment
• WIDS/WIPS
Benefits:
• Protect current investment in network
infrastructure
• Great scalability and reliability
•AP configuration dispatch & centralized
management
• Great wireless threat detection and mitigation
Computer Center
L3 Switch
• Replace existing
old L2 switch
• Provide wired &
wireless connections
• Manage remote
APs across L2 or
L3 network
Overlay Deployment Building A
DWS-3160
Edge Deployment
• PoE ports to
provide power
directly
L2/ L3 Switch
Deployment Scenario : Factory
Application:
• Extend the network coverage to Lab
• Retrieve/transmit data from/to Lab
immediately via WLAN & VPN
• Centralized AP management
Benefits:
• Leverage existing infrastructure
• Cost effective Unified architecture
Lab
Wireless
Equipments
L2 Switch
Desktop/Server
VPN
DWS-3160
DWS-3160
Headquarters
Wireless
Equipments
Agenda
Enterprise Wireless Market Update
Product Overview
Target Market and Applications
Key Feature Introduction
Competitive Comparison & Analysis
• Positioning Highlight
• Key Comparison
• Art of the War
3rd Party Application
Appendix
L2/L3 AP Auto-Discovery and Centralized
Management
Auto-discovery feature allows unified switch and AP to discover each other
automatically in L2/L3 network
•
•
•
•
L2 auto-discovery –
L3 auto-discovery –
L3 auto-discovery –
Auto-discovery with
Switch discovers AP
Switch discovers AP
AP discovers switch
DHCP option 43
Centralized policy control
• The profile configuration is applied to a managed AP on the event such as
when an AP initially transitions to managed mode, or when AP is reset.
Customers hence can enjoy the convenience of one-time configuration
L2 or L3
Network
Firmware dispatch
Profile dispatch
Page is Animated
Switch Clustering
Peer Switches can form a Cluster Group
• Up to 4 DWS-3160 could be a Cluster Group
• All wireless configuration & management can be done from one switch
• One Master Switch gathers all statistics and status from peer switches, APs and clients
in the group
• Provides single point of management
Similar to D-Link Single IP Management (SIM)
Wireless Management & Configuration
Master Switch
Peer Switches
Admin
N+1/ N+N Switch Redundancy
N+1 Unified Switch Redundancy
• One extra switch works only as backup
• Allow each switch manages its maximum number of APs
Primary:
Unified Switch 1
Secondary:
Unified Switch BKP
Unified Switch 1
L2 or L3
Network
Unified Switch BKP
Primary:
Unified Switch 2
Secondary:
Unified Switch BKP
Unified Switch 2
N+N Unified Switch Redundancy
• Each switch backup its peer switches
• In order to backup peer switches, the switch needs to reserve some space for peer
switch managed APs. Therefore, it cannot manage its maximum number of APs
Fast L2/L3 Roaming
Ideal for VoIP application
Fast roaming can be supported within a subnet (Layer 2) or across subnet
boundaries (Layer 3) without changing IP address of client
Intra-switch roaming
• Fast roaming between APs which are managed by the same switch
Inter-switch roaming
• Fast Roaming between switches in a roaming group
• Up to 4 DWS-3160 can form a Roaming group
DWS-3160 I
Clustering
DWS-3160 II
AP-B1
Intra-Switch
L2 Roaming
Associate with AP-B1
AP-C1
AP-A2
AP-A1
Associate with AP-A2
Associate with AP-A1
Intra-Switch
L3 Roaming
Associate with AP-A2
Handover from AP-A1 to AP-A2
Inter-Switch
L3 Roaming
Associate with AP-C1
Fast Roaming Enhancement: AP-AP
Tunnel
AP-AP Tunnel mode is used to support L3 roaming without forwarding any traffic to
the Unified SwitchThe APs will create tunnel and forward traffic with each other
When clients roam to another AP which is not in the same network subnet, the
traffic from roamed clients is tunneled to the originally associated AP of the client
Roamed client remains on the same VLAN and has the same IP address
Benefit
• Reduce network resources because traffic is forwarded locally
• Reduce Unified Switch loading
DWS-3160
L3 Switch
AP-AP Tunnel
192.168.1.0
Page is Animated
172.17.3.0
10.10.10.0
Auto Channel Adjustment
Auto select proper channel and assign to managed APs
• In a clustering group, adjust the channels for new event in the system,
such as an AP be added, the unified switches readjust channels by
schedule (ex. at certain time, upon a certain interval)
• Change channels by experiencing the influences from environment
Channel 24
Channel 48
3. Changes to
Channel 18
Channel 36
2. Rogue AP
Or Radio interference
Channel 48
New AP
Channel 54
1. When inserting new AP, the AP scans the RF area for occupied channels and selects
a channel from the available non-interfering, or clear channels.
Auto RF Management
Auto Power Adjustment
• In a clustering group, automatically adjust the power according to the strength changes
of RF signals broadcasting by other APs, the unified switches readjust power by
schedule (ex. upon a certain interval)
RF Self-Healing
• When a Managed AP is powered down, the power of its neighboring AP(s) managed by
the same switch is immediately increased by 20%
• The power level will readjust again every pre-configured interval by sensing
neighboring AP power status
Channel Plan
Period Power Adjustment
Clustering
50%
90%
Power
60%
90%
Power
50%
Power
90%
Power
RFAuto
Self-Healing
AP Fail
Adjustment
Power
Auto Power
90%
Adjustment
50% 70%
Power
30%
Power
Advanced RF Feature: Radio Protection
Advanced “Radio Protection” design to guarantee that 802.11
transmissions do not cause interference with legacy stations or
applications
• It is great feature to sustain 11n client throughput on mixed
wireless clients environment (11n, 11g and 11b wireless clients
work together)
• Without Radio Protection, the 11n wireless clients will run at 11g or
11b wireless speed in mixed environment.
Customers won’t need to replace all legacy wireless clients to get the
benefit on 11n transmission (High throughput , High reliability)
With Radio Protection Enabled
802.11n
client
802.11n
client
RunRun
at 802.11
n Transmission
rate rate
at 802.11
b/g Transmission
802.11 b/g client
Run at 802.11 b/g Transmission rate
802.11 b/g client
Run at 802.11 b/g Transmission rate
802.11n client
802.11n client
Run at Run
802.11
n Transmission
rate
at 802.11
b/g Transmission
rate
AP Traffic Load Balancing
Balance traffic load of each Managed APs
• Based on the percentage of bandwidth utilization
• Based on the Max. Wireless Clients
Force a new client associating to an overlapped neighbor AP which has lower
unitization while the nearest one exceed the threshold
Periodically update APs utilization reports
Utilization
Threshold: 60%
AP-B
Utilization
Threshold: 60%
AP-A
Reject association from AP-A
AP Traffic Load Balancing
Force the association to AP-B
Request connection to AP-A
AP-A checks its utilization
AP-A reaches the utilization threshold value
Centralized User Access Control
SSID Based Access Control
• Define Different VLANs and SSIDs for different user group (ex. Sales, RD…)
• With ACL configuration on VLAN, administrator can define particular access policy for
specific user group
• The users belong to different groups need to connect with different SSIDs to get proper
access right after authentication successfully
Identity Based Access Control
• Support Dynamic VLAN Assignment with WPA/WPA2-Enterprise, MAC and 802.1X
authentication
• In a SSID, the clients could be assigned to different VLANs that are preconfigured in the
external RADIUS server
• With ACL configuration on VLAN, administrator can define particular access policy for
specific user/ user group
V V V
1 2 3
Single
SSID
User 1 (ex. RD)
Server, Internet
Access
AP-A
RADIUS
Server
User 2 ( ex. Guest)
Internet Access Only
User1 go to V2
User2 go to V3
Wireless Intrusion Detection System
(WIDS)
AP detection and classification
• Periodically scan and detect the AP per device or per clustered group
• Four classes for AP: Managed, Standalone, Unknown, and Rogue
Wireless client detection and classification
• Monitor disassociated, pre-authenticated, and authenticated wireless clients
• Three classes for authenticated wireless client: Authenticated, Black-listed, Rogue
-Fake managed AP
-Fake managed SSID
-AP using illegal channel
-AP using invalid channel
-Incorrect security config
-Invalid SSID
-Unexpected WDS device
-Etc…
-Not in client database
-Probe attack
-Flooding network
-Too many failed auth
-Authenticated with
Unknown AP
-Etc…
AP Classification
?
MANAGED
?
STANDALONE
UNKNOWN
ROGUE
Client Classification
Hacker
RF
Scanning
B
Infect
AUTHENTICATED
B
BLACKLISTED
ROUGE
Wireless Intrusion Prevention System
(WIPS)
AP & Wireless Client Threat Mitigation
• Protect wireless clients away from threats by sending fake de-authentication
messages to de-associate the connection with rogue APs
• Inform to every managed AP the list of BSSIDs and channels on which rogue APs are
operating
• Lock down the location of rogue AP via WLAN Visualization Tool for security
adjustment
Visualized Alive Site Map
Detect rogue AP
Send
de-authentication
message
De-association
with rogue AP
Lock down location
AP Classification
Client Classification
MANAGED
STANDALONE ? UNKNOWN
AUTHENTICATED B BLACKLISTED
ROGUE
ROUGE
WLAN Visualization
Graphically shows information about the wireless network
WLAN Visualization example
• A floor plan and network with a D-Link Unified Switch that manages two
APs
• Show a peer switch and a rogue AP in the network
Device Locator: On Demand Location
Tracking
Automatically determine probable location of specific AP or
client
When the device has been located, a green target appears
on the graph to indicate the probable location of the device
Agenda
Enterprise Wireless Market Update
Product Overview
Target Market and Applications
Key Feature Introduction
Competitive Comparison & Analysis
• Positioning Highlight
• Key Comparison
• Art of the War
3rd Party Application
Appendix
Agenda
Enterprise Wireless Market Update
Product Overview
Target Market and Applications
Key Feature Introduction
Competitive Comparison & Analysis
• Positioning Highlight
• Key Comparison
• Art of the War
3rd Party Application
Appendix
AirMaganet: Visualized Site Survey
Tool
Working with AirMagnet, customer can directly select D-Link managed AP
from AirMagnet application
The visualized site planning tool assists administrator to find the optimal
quantity, AP location and configurations before deploying
Source: Automated WLAN Modeling, AirMagent
AeroScout: RTLS* and Unified Asset
Visibility Solution
AeroScout RTLS Solution
•
•
•
•
Turns a wireless network into a complete, full-featured visibility solution
Delivers full asset visibility at a low total cost of ownership
Locates any asset or Wi-Fi client
Interoperability with multiple location modes, environments, sensors and
other visibility technologies
• Offers a complete visibility platform (AeroScout MobileView) for automating
business processes and driving context-aware applications
• No negative impact or security concern for wireless networks
• Increased return on investment for WLAN
*RTLS: Real-time Location System
AeroScout RTLS and Unified Asset
Visibility Solution (Cont.)
Integration to Enterprise Applications:
Integration
ORIS, CMMS, EDIS, Security, EHR, Nurse Call,
MES, WMS, SAP, ERP, HR, … etc.
Visibility
Software
AeroScout MobileView
Track-Alert-Manage-Integrate
Location
Determination
Location Engine
(Indoors/Outdoors, Active/Passive RFID)
Wi-Fi Network
Infrastructure
(D-link Unified Solution Integrate with
AeroScout RTLS Successfully)
Tags
Wi-Fi Tags
and Clients
Wi-Fi + Sensors
Wi-Fi + GPS
Wi-Fi +
Ultrasound
Passive
Tags