Wireless – What`s coming next?

Wireless – What lies ahead

Looking at LWAPP and Mobile

Handset Develpment

Aybala C.S. Tut

Systems Engineer acelebi@cisco.com

Presentation_ID © 2006 Cisco Systems, Inc. All rights reserved.

Cisco Confidential

1

Agenda

 Distributed vs. Centralized WLAN Architecture

 Centralized Architecture and Infrastructure

 Mobile Handsets

 Q&A


Cisco Confidential

2

Distributed vs.

Centralized WLAN

Architecture


Cisco Confidential

3

Cisco Wireless LAN Portfolio

Distributed - Centralized

Distributed Solution

CiscoWorks

WLSE

CiscoWorks

WLSE Express

Management

Centralized Solution

Cisco Wireless

Control System

(WCS)

Presentation_ID

Control

Catalyst 6500

Series WLSM

Cisco 1100, 1130, 1200,

1230, 1240, 1300 Access

Points

Autonomous

Access

Applications

Cisco Compatible Extensions and Wi-Fi Client Devices

Cisco WLAN

Controllers

Cisco 1000, 1130, 1200,

1230, 1240 Access

Points

Lightweight (LWAPP)

© 2006 Cisco Systems, Inc. All rights reserved.

Cisco Confidential

4

Centralized Architecture and Infrastructure


Cisco Confidential

5

The Centralized Architecture

Cisco WLAN Controller

Switch/Routed

Network

Lightweight

Access Points


Cisco Confidential

6

Understanding WLAN Controllers —1st/2nd

Generation vs. 3rd Generation Approach

 1st/2nd generation —

APs act as 802.1Q translational bridge, putting client traffic on local

VLANs



3rd generation

—Controller bridges client traffic centrally

1 st /2 nd Generation

3 rd Generation

7


Cisco Confidential

Understanding WLAN Controllers —The

WLAN Controller as a Network Device

 WLAN Controller

For wireless end-user devices, the controller is a 802.1Q bridge that takes traffic of the air and puts it on a VLAN

From the perspective of the AP, the controller is an LWAPP Tunnel end-point with an IP address

From the perspective of the network, it’s a Layer-2 device connected via one or more 802.1Q trunk interfaces

 The AP connects to an access port —no concept of VLANs at the

AP


Cisco Confidential Presentation_ID

8

Centralized Solution Architecture

“Split-MAC” Approach

Wireless Controller

 Security policies

 QoS policies

 RF management

 Mobility management

Division of Labor

Split MAC

 Remote RF interface

 MAC layer encryption

Lightweight

Access Points


Cisco Confidential

10

Split – MAC

AP MAC Functions

 802.11: Beacons, probe response, authentication (if open)

 802.11 control: Packet acknowledgement and retransmission (latency)

 802.11e: Frame queuing and packet prioritization

(access to RF)

 802.11i: Encryption in AP


Cisco Confidential

11

Split- MAC

Controller MAC Functions

 802.11 MAC mgmt:

(Re)association requests and action frames

 802.11 Data: Encapsulate and sent to AP

 802.11e resource reservation: Control protocol carried to AP in 802.11 mgmt frames —signaling done in the controller

 802.11i authentication and key exchange


Cisco Confidential

12

Real-Time RF Management

Dynamic

Channel

Assignment

Dynamic

Power

Optimization

RF channel “1”



•

Eliminate coverage holes

•

Optimize coverage area

•

Avoid interference/Improve performance

•

Reduce “hands on” WLAN mgmt


Cisco Confidential

13

No Single Point of Failure

AP Redundancy

Cisco WLAN Controller

Ethernet Switch

Cisco

Access Point


Cisco Confidential

14

No Single Point of Failure

WLC Redundancy

Primary WLCM Secondary WLCM

Primary and secondary controllers can be configured


Cisco Confidential

15

Better Network Performance

Dynamic Load Sharing

Solving Performance & Capacity problems in high density areas (e.g. conference rooms, cafeteria)…

16


Cisco Confidential

16




17


Cisco Confidential

17




18


Cisco Confidential

18

Wireless LAN Controller Family

Wireless LAN Controllers

4400 2000

Catalyst 6500 Series Wireless

Services Module (WiSM)

WiSM

Switch and Router Platforms

Presentation_ID

Wireless LAN

Controller Module

(WLCM) for ISR


Cisco Confidential

Catalyst 3750

Switch

19

Proven Platform for Mobile Access

Indoor Access Points

1130AG 1000

Indoor Rugged Access Points

1240AG 1230AG

Outdoor Access Points/Bridges

1500


Cisco Confidential

1300

20

Cisco Wireless Control System (WCS)

World-Class Network Management

Features

 Client troubleshooting (via CCX)

 Planning, configuration, monitoring, location, IDS/IPS, and troubleshooting

 Hierarchical maps

 Intuitive GUI and templates

 Policy based networking (QoS, security,

RRM, etc.)

Benefits

 Lower OPEX and CAPEX

 Better visibility and control of the air space

 Consolidate functionality into a single management system

 Determines location and voice readiness

21


Cisco Confidential

WCS Dashboards

Network Monitor


Cisco Confidential

22

Location Tracking Services

 1st integrated location solution

 Real-time location services

 Advanced RF fingerprinting

 Simultaneous real-time tracking

10,000+ devices

 API Third Party Applications

 RF capacity management

 Intuitive management GUI

Cisco 2700 Series Wireless Location Appliance


Cisco Confidential

23

Lightweight Access

Point Protocol (LWAPP)


Cisco Confidential

24

What is LWAPP?

 The Light Weight Access Point Protocol (LWAPP) is used between an AP and a WLAN Controller .

 Why is this critical to a scalable network deployment?

Customers want to manage a network, not individual network elements

LWAPP allows a controller to manage the APs

LWAPP Tunnel


Cisco Confidential

25

LWAPP involves...

 Low overhead communication between Wireless LAN

Controllers and Access Points

 1-4 kbps overhead with associated clients

 Data traffic encapsulation in:

UDP source port 1024

Destination port 12222

 Control traffic encapsulation in:

UDP source port 1024

Destination port 12223

 AES encryption for control traffic ONLY

 For data traffic encrpytion use security protocol like

WPA2 with AES encryption


Cisco Confidential

26

Cisco Centralized WLAN Model

LWAPP defines control messaging and data encapsulation between access points and centralized WLAN controller

Lightweight

Access Point

Switched/Routed Wired Network

LWAPP Tunnel

Control Messages

Data Encapsulation

Ingress/Egress point from/to upstream switched/routed wired network (802.1Q trunk)

Wireless LAN

Controller

Access Points are

“lightweight”—controlled by a centralized WLAN controller


Cisco Confidential

Much of the traditional

WLAN functionality moved from access points to centralized WLAN controller

27

Cisco Centralized WLAN Model

LWAPP carries all communication between access point and controller

L2 or L3 transport

Mutual authentication —X.509 certificate based

LWAPP control AES-CCM encrypted

Data encapsulation

Radio resource management

Mobility management

Switched/Routed Wired Network

Lightweight

Access Point

Wireless LAN

Controller

LWAPP Tunnel

Control Messages

Data Encapsulation

Ingress/Egress point from/to upstream switched/routed wired network (802.1Q trunk)

Remote RF interface

Real-time 802.11 MAC

RF spectral analysis

WLAN IDS Signature analysis

Security management

QoS policies enforcement

Centralized configuration, firmware management

Northbound management interfaces

28


Cisco Confidential

Centralized Solution Architecture

LWAPP discovery process

The LWAPP discovery process provides

• Ease of AP installation

• Automatic redundancy in case of controller failure (self healing)

Wireless Controller

1.

LWAPP Layer 2 broadcast (FF.FF.FF.FF)

• Controller on same subnet can answer request

2.

LWAPP Layer 3 broadcast (255.255.255.255)

•

•

Controller on same subnet can answer request

Use Cisco ‘ip-helper’ and ‘forward protocol’ to get to the controller

3.

LWAPP Layer 3 with DHCP option 43

•

• Vendor option 60 ‘Airespace.AP1200’

Vendor option 43 ‘controller IP address’

4.

LWAPP Layer 3 with DNS

• Host ‘CISCO-LWAPP-CONTROLLER’

5.

Over The Air Provisioning (OTAP)

Lightweight

Access Points

After the initial controller discovery phase the AP can be configured with a primary, secondary or tertiary controller. Use ‘Master’ controller for newly added AP’s


Cisco Confidential

29

Why LWAPP ?

 Longterm goal: vendor interoperability



Secure, zero touch

– configuration



Scalability throught centrlized management and configuration

 Visibility to networkwide attacks and interference across a system

 Management

Dynamic, systemwide RF management, including a host of features for smooth wireless operations, such as dynamic channel assignment, transmit power control, and load balancing.

Single graphical interface for enterprise-wide policies, including VLANs, security, and QoS.

 Security

Enterprise-wide security policies that encompass all layers of a wireless network, from the radio layer through the MAC layer, and into the network layer. This makes it easier to provide uniformly enforced security and QoS or user policies that can address the particular capabilities of different classes of devices, such as handheld scanners, PDAs, or notebook computers.

 Mobility

Cellular-like fast handoffs.

Excellent support for real-time, mobile applications such as voice over WLAN .


Cisco Confidential

30

LWAPP Architecture

Security Benefits Physical

 Configuration not maintained on AP

Configuration are automatically downloaded from WLC over AES encrypted link

 APs with console ports can have IP address and WLC address configured

 APs authenticated to WLC by X.509 certificate

The WLC can also MAC authenticate

 WLC authenticated to AP by X.509 certificate

 WLC certificate is installed at manufacture


Cisco Confidential

31

LWAPP Architecture

Security Benefits Network

 AP Communication with WLC via well known

UDP ports

UDP Ports

 APs only communicate with WLC management and ap-management interfaces

 The APs have no remote management interface

No SNMP

No Telnet, SSH

…


Cisco Confidential

32

Mobile Handset

Development –

Nokia E-Series Dual – Mode

Phone


Cisco Confidential

33

Top 4 Reasons Every CXO Needs a

Pervasively Deployed Wireless System

Security Guest Access

Hacker

Rogue APs —Employees create opening to enterprise network unknowingly

FTC FINES

Voice

 WiFi enabled voice

 7920, Blackberry, Treo

 Better coverage

 Reduced Cost

 Integrated with IP PBX


Cisco Confidential

Location

34

The way we work is changing …

 41% of US workers can be considered “mobile” spending

20% of more of their time away from their primary workspace 1

 Dual Mode (WiFi/Cellular) handsets expected to reach over

29m units by 2009 3

1 Yankee Group (2007), 2 Vision Gain, 3 Infonetics


Cisco Confidential

35

Mobile Business Solutions from

Cisco and Nokia

Mobile

Endpoints

Nokia Eseries

Dual Mode Phones

Cisco Unified

Wireless IP Phone

7921G

Media

Control

Cisco Unified Communications

Manager


Manager Express

Voice-Ready

Wireless LAN

Infrastructure

WLAN

Controller

Aironet Access

Points

WCS

QoS

Services


Cisco Confidential

36

Dual – Mode Phone – Overview

 Delivered in partnership with Nokia through the

SolutionsPlus partner program

 Nokia Eseries dual mode handset with Skinny Client

Call Control Protocol (SCCP) client works on GSM networks and Cisco VoWLAN campus networks

 In Cisco VoWLAN campus network, Nokia Eseries handsets operates as an IP Phone with Cisco Unified

Communications Manager or Cisco Unified

Communications Manager Express

 In public GSM network, operates as a GSM phone


Cisco Confidential

37

Nokia Eseries Dual-Mode Handsets

Supported

 S60 3.0 Nokia mobile handsets supported are:

Nokia E60

Nokia E61

Nokia E61i

Nokia E65

Nokia E61i

Nokia E61

Nokia E65


Cisco Confidential

38

Solution Architecture


Cisco Confidential

39

Mobile Business Solution Architecture

Business

PSTN

Trunk

3

Cisco Unified

Wireless

Network

Enterprise Network Cellular Network

WLAN

Controller

WLAN AP

CCX v3

Nokia

SCCP

Mobile

Client

Operates as 802.11 Phone

2


Cisco Confidential

IP Phones

1

1

2

3

Cellular Mode

WiFi Mode (Skinny Client Control

Protocol SSCP Client) via Cisco

Unified Wireless Network


Manager or Cisco Unified

Communications Manager Express

40

Route incoming calls to Nokia Eseries handset within campus WLAN network



Communications Manager Express

Cellular Network

PSTN

Gateway


Cisco Confidential

SCCP

Switch

SCCP

Cisco

Wireless

Controller

802.11

802.11

Access

Points

Shared line DN

Nokia

Eseries

Handset

Cisco Unified

Wireless IP

Phone 7921G

41

Least cost routing for outgoing calls placed from campus WLAN network



Communications Manager

Express


PSTN

Gateway


Cisco Confidential

SCCP

Switch

802.11

Nokia

Eseries

Handset

SCCP

Access

Points

Cisco

Wireless

Controller

Cisco Unified

Wireless IP

Phone 7921G

42

Least cost routing of internal calls placed from campus WLAN network



Communications Manager

Express


PSTN

Gateway


Cisco Confidential

SCCP

Switch

802.11

Nokia

Eseries

Handset

SCCP

Access

Points

Cisco

Wireless

Controller

Cisco Unified

Wireless IP

Phone 7921G

43

Cisco VoWLAN Network Characteristics

 802.11b/g

 Cisco Compatible Extensions

(CCX) Version 3

 No seamless handoff between cellular and WLAN networks

 Requires Intellisync Call

Connect Version 1.0

 QoS is marked by Nokia


Cisco Confidential

44

Q & A


Cisco Confidential

45


Cisco Confidential

46

Wireless – What`s coming next?

Agenda

Cisco Wireless LAN Portfolio

Distributed - Centralized

The Centralized Architecture

Centralized Solution Architecture

Split – MAC

Split- MAC

Real-Time RF Management

No Single Point of Failure

Better Network Performance

Better Network Performance

Better Network Performance

Proven Platform for Mobile Access

Cisco Wireless Control System (WCS)

WCS Dashboards

Network Monitor

Location Tracking Services

What is LWAPP?

LWAPP involves...

Cisco Centralized WLAN Model

Cisco Centralized WLAN Model

Centralized Solution Architecture

LWAPP discovery process

Why LWAPP ?

LWAPP Architecture

LWAPP Architecture

Top 4 Reasons Every CXO Needs a

Pervasively Deployed Wireless System

The way we work is changing …

Mobile Business Solutions from

Cisco and Nokia

Dual – Mode Phone – Overview

Nokia Eseries Dual-Mode Handsets

Supported

Mobile Business Solution Architecture

Route incoming calls to Nokia Eseries handset within campus WLAN network

Least cost routing for outgoing calls placed from campus WLAN network

Least cost routing of internal calls placed from campus WLAN network

Cisco VoWLAN Network Characteristics

Related documents

Add this document to collection(s)

Add this document to saved

Suggest us how to improve StudyLib