1 / 45

Wireless – What lies ahead

Wireless – What lies ahead. Looking at LWAPP and Mobile Handset Develpment. Aybala C.S. Tut Systems Engineer acelebi@cisco.com. Agenda. Distributed vs. Centralized WLAN Architecture Centralized Architecture and Infrastructure Mobile Handsets Q&A.

cullen-head
Download Presentation

Wireless – What lies ahead

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Wireless – What lies ahead Looking at LWAPP and Mobile Handset Develpment Aybala C.S. Tut Systems Engineer acelebi@cisco.com

  2. Agenda • Distributed vs. Centralized WLAN Architecture • Centralized Architecture and Infrastructure • Mobile Handsets • Q&A

  3. Distributed vs. Centralized WLAN Architecture

  4. Cisco Wireless LAN PortfolioDistributed - Centralized Centralized Solution Distributed Solution Cisco Wireless Control System (WCS) Management CiscoWorks WLSE CiscoWorks WLSE Express Control Catalyst 6500 Series WLSM Cisco WLAN Controllers Cisco 1000, 1130, 1200, 1230, 1240 Access Points Lightweight (LWAPP) Cisco 1100, 1130, 1200, 1230, 1240, 1300 Access Points Autonomous Access Applications Cisco Compatible Extensionsand Wi-Fi Client Devices

  5. Centralized Architecture and Infrastructure

  6. The Centralized Architecture Cisco WLAN Controller LWAPP Switch/Routed Network Lightweight Access Points

  7. Understanding WLAN Controllers—1st/2nd Generation vs. 3rd Generation Approach • 1st/2nd generation—APs act as 802.1Q translational bridge, putting client traffic on local VLANs • 3rd generation—Controller bridges client traffic centrally 1st/2nd Generation 3rd Generation

  8. Understanding WLAN Controllers—The WLAN Controller as a Network Device • WLAN Controller • For wireless end-user devices, the controller is a 802.1Q bridge that takes traffic of the air and puts it on a VLAN • From the perspective of the AP, the controller is an LWAPP Tunnel end-point with an IP address • From the perspective of the network, it’s a Layer-2 device connected via one or more 802.1Q trunk interfaces • The AP connects to an access port—no concept of VLANs at the AP

  9. Remote RF interface MAC layer encryption Centralized Solution Architecture“Split-MAC” Approach • Security policies • QoS policies • RF management • Mobility management Wireless Controller Division of LaborSplit MAC LWAPP Lightweight Access Points

  10. Split – MACAP MAC Functions • 802.11: Beacons, probe response, authentication (if open) • 802.11 control: Packet acknowledgement and retransmission (latency) • 802.11e: Frame queuing and packet prioritization (access to RF) • 802.11i: Encryption in AP

  11. Split- MACController MAC Functions • 802.11 MAC mgmt:(Re)association requests and action frames • 802.11 Data: Encapsulate and sent to AP • 802.11e resource reservation: Control protocol carried to AP in 802.11 mgmt frames—signaling done in the controller • 802.11i authentication and key exchange

  12. Real-Time RF Management DynamicChannelAssignment RF channel “1” RF channel “6” RF channel “11” DynamicPowerOptimization • Eliminate coverage holes • Optimize coverage area • Avoid interference/Improve performance • Reduce “hands on” WLAN mgmt

  13. No Single Point of FailureAP Redundancy Cisco WLAN Controller Ethernet Switch CiscoAccess Point

  14. No Single Point of FailureWLC Redundancy Primary WLCM Secondary WLCM Primary and secondary controllers can be configured

  15. Better Network PerformanceDynamic Load Sharing Solving Performance & Capacity problems in high density areas (e.g. conference rooms, cafeteria)… 16

  16. Better Network PerformanceDynamic Load Sharing Solving Performance & Capacity problems in high density areas (e.g. conference rooms, cafeteria)… 17

  17. Better Network PerformanceDynamic Load Sharing Solving Performance & Capacity problems in high density areas (e.g. conference rooms, cafeteria)… 18

  18. Wireless LAN Controller Family Wireless LAN Controllers 2000 4400 Catalyst 6500 Series Wireless Services Module (WiSM) WiSM Switch and Router Platforms Wireless LAN Controller Module (WLCM) for ISR Catalyst 3750 Switch

  19. Proven Platform for Mobile Access Indoor Access Points 1130AG 1000 Indoor Rugged Access Points 1240AG 1230AG Outdoor Access Points/Bridges 1500 1300

  20. Cisco Wireless Control System (WCS) World-Class Network Management Features • Client troubleshooting (via CCX) • Planning, configuration, monitoring, location, IDS/IPS, and troubleshooting • Hierarchical maps • Intuitive GUI and templates • Policy based networking (QoS, security, RRM, etc.) Benefits • Lower OPEX and CAPEX • Better visibility and control of the air space • Consolidate functionality into a single management system • Determines location and voice readiness

  21. WCS DashboardsNetwork Monitor

  22. Location Tracking Services • 1st integrated location solution • Real-time location services • Advanced RF fingerprinting • Simultaneous real-time tracking 10,000+ devices • API Third Party Applications • RF capacity management • Intuitive management GUI Cisco 2700 Series Wireless Location Appliance

  23. Lightweight Access Point Protocol (LWAPP)

  24. What is LWAPP? • The Light Weight Access Point Protocol (LWAPP) is used between an AP and a WLAN Controller. • Why is this critical to a scalable network deployment? • Customers want to manage a network, not individual network elements • LWAPP allows a controller to manage the APs LWAPP Tunnel

  25. LWAPP involves... • Low overhead communication between Wireless LAN Controllers and Access Points • 1-4 kbps overhead with associated clients • Data traffic encapsulation in: • UDP source port 1024 • Destination port 12222 • Control traffic encapsulation in: • UDP source port 1024 • Destination port 12223 • AES encryption for control traffic ONLY • For data traffic encrpytion use security protocol like WPA2 with AES encryption

  26. Control Messages Data Encapsulation Cisco Centralized WLAN Model LWAPP defines control messaging and data encapsulation between access points and centralized WLAN controller Switched/Routed Wired Network Lightweight Access Point Wireless LAN Controller LWAPP Tunnel Ingress/Egress point from/to upstream switched/routed wired network (802.1Q trunk) Access Points are “lightweight”—controlled by a centralized WLAN controller Much of the traditional WLAN functionality moved from access points to centralized WLAN controller

  27. Switched/Routed Wired Network Lightweight Access Point Wireless LAN Controller LWAPP Tunnel Control Messages Ingress/Egress point from/to upstream switched/routed wired network (802.1Q trunk) Data Encapsulation Cisco Centralized WLAN Model LWAPP carries all communication between access point and controller L2 or L3 transport Mutual authentication—X.509 certificate based LWAPP control AES-CCM encrypted Data encapsulation Radio resource management Mobility management Remote RF interface Real-time 802.11 MAC RF spectral analysis WLAN IDS Signature analysis Security management QoS policies enforcement Centralized configuration, firmware management Northbound management interfaces

  28. Centralized Solution Architecture LWAPP discovery process • The LWAPP discovery process provides • Ease of AP installation • Automatic redundancy in case of controller failure (self healing) Wireless Controller • LWAPP Layer 2 broadcast (FF.FF.FF.FF) • Controller on same subnet can answer request • LWAPP Layer 3 broadcast (255.255.255.255) • Controller on same subnet can answer request • Use Cisco ‘ip-helper’ and ‘forward protocol’ to get to the controller • LWAPP Layer 3 with DHCP option 43 • Vendor option 60 ‘Airespace.AP1200’ • Vendor option 43 ‘controller IP address’ • LWAPP Layer 3 with DNS • Host ‘CISCO-LWAPP-CONTROLLER’ • Over The AirProvisioning (OTAP) LWAPP Layer2 and Layer3 Lightweight Access Points After the initial controller discovery phase the AP can be configured with a primary, secondary or tertiary controller. Use ‘Master’ controller for newly added AP’s

  29. Why LWAPP ? • Longterm goal: vendor interoperability • Secure, zero touch – configuration • Scalability throught centrlized management and configuration • Visibility to networkwide attacks and interference across a system • Management • Dynamic, systemwide RF management, including a host of features for smooth wireless operations, such as dynamic channel assignment, transmit power control, and load balancing. • Single graphical interface for enterprise-wide policies, including VLANs, security, and QoS. • Security • Enterprise-wide security policies that encompass all layers of a wireless network, from the radio layer through the MAC layer, and into the network layer. This makes it easier to provide uniformly enforced security and QoS or user policies that can address the particular capabilities of different classes of devices, such as handheld scanners, PDAs, or notebook computers. • Mobility • Cellular-like fast handoffs. • Excellent support for real-time, mobile applications such as voice over WLAN.

  30. LWAPP ArchitectureSecurity Benefits Physical • Configuration not maintained on AP • Configuration are automatically downloaded from WLC over AES encrypted link • APs with console ports can have IP address and WLC address configured • APs authenticated to WLC by X.509 certificate • The WLC can also MAC authenticate • WLC authenticated to AP by X.509 certificate • WLC certificate is installed at manufacture

  31. LWAPP ArchitectureSecurity Benefits Network • AP Communication with WLC via well known UDP ports • UDP Ports • APs only communicate with WLC management and ap-management interfaces • The APs have no remote management interface • No SNMP • No Telnet, SSH • …

  32. Mobile Handset Development – Nokia E-Series Dual – Mode Phone

  33. Security Guest Access Hacker Rogue APs—Employees create opening to enterprise network unknowingly FTC FINES Voice Location • WiFi enabled voice • 7920, Blackberry, Treo • Better coverage • Reduced Cost • Integrated with IP PBX Top 4 Reasons Every CXO Needs a Pervasively Deployed Wireless System

  34. The way we work is changing … • 41% of US workers can be considered “mobile” spending 20% of more of their time away from their primary workspace1 • Dual Mode (WiFi/Cellular) handsets expected to reach over 29m units by 20093 1Yankee Group (2007), 2 Vision Gain, 3 Infonetics

  35. Cisco Unified Communications Manager Express Cisco Unified Communications Manager WLAN Controller Aironet Access Points Mobile Business Solutions from Cisco and Nokia Mobile Endpoints Cisco Unified Wireless IP Phone 7921G Nokia Eseries Dual Mode Phones Media Control Voice-Ready Wireless LAN Infrastructure QoS Services WCS

  36. Dual – Mode Phone – Overview • Delivered in partnership with Nokia through the SolutionsPlus partner program • Nokia Eseries dual mode handset with Skinny Client Call Control Protocol (SCCP) client works on GSM networks and Cisco VoWLAN campus networks • In Cisco VoWLAN campus network, Nokia Eseries handsets operates as an IP Phone with Cisco Unified Communications Manager or Cisco Unified Communications Manager Express • In public GSM network, operates as a GSM phone

  37. Nokia Eseries Dual-Mode Handsets Supported • S60 3.0 Nokia mobile handsets supported are: • Nokia E60 • Nokia E61 • Nokia E61i • Nokia E65 Nokia E61i Nokia E61 Nokia E65

  38. Solution Architecture

  39. Mobile Business Solution Architecture Business 3 PSTN Trunk Enterprise Network Cisco Unified Wireless Network Cellular Network WLANController IP Phones 1 WLAN AP CCX v3 1 Cellular Mode WiFi Mode (Skinny Client Control Protocol SSCP Client) via Cisco Unified Wireless Network Nokia SCCP Mobile Client 2 2 Cisco Unified Communications Manager or Cisco Unified Communications Manager Express 3 Operates as 802.11 Phone

  40. Route incoming calls to Nokia Eseries handset within campus WLAN network Cisco Unified Communications Manager or Cisco Unified Communications Manager Express INSIDE OUTSIDE SCCP Cisco WirelessController SCCP Cellular Network PSTN Access Points Gateway Switch 802.11 802.11 Shared line DN Nokia Eseries Handset Cisco Unified Wireless IP Phone 7921G

  41. Least cost routing for outgoing calls placed from campus WLAN network Cisco Unified Communications Manager or Cisco Unified Communications Manager Express INSIDE OUTSIDE Cellular Network PSTN SCCP Cisco WirelessController SCCP Gateway Access Points Switch 802.11 Nokia Eseries Handset Cisco Unified Wireless IP Phone 7921G

  42. Least cost routing of internal calls placed from campus WLAN network Cisco Unified Communications Manager or Cisco Unified Communications Manager Express INSIDE OUTSIDE Cellular Network PSTN SCCP Cisco WirelessController SCCP Gateway Access Points Switch 802.11 Nokia Eseries Handset Cisco Unified Wireless IP Phone 7921G

  43. Cisco VoWLAN Network Characteristics • 802.11b/g • Cisco Compatible Extensions (CCX) Version 3 • No seamless handoff between cellular and WLAN networks • Requires Intellisync Call Connect Version 1.0 • QoS is marked by Nokia

  44. Q & A

More Related