Delivering Real Time User Experiences Everywhere with Secure Mobile Access 1
Delivering Real Time User Experiences Everywhere with Secure Mobile Access Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 1 Borderless Networks Services MediaNet What can Borderless Networks do for your business? Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 2 Video Changes Everything Consumer Video Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Business Video New Business Models 3 Cisco Medianet Transform Video Experiences No Resource Reservation, Degraded Video Context-Aware, Prioritized, High Quality Video Global Business, WW Offices CEO Meeting M&A Sports Negotiation Event CEO Meeting M&A Sports Negotiation Event Can My Network Deliver Real-Time Collaboration Experiences? Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 4 Cisco Medianet Release 2.1 Simplification of deployment and maintenance of video and improved QoE Capability and Features Benefits Products Autoconfiguration: • Auto Smartports Helps simplify the deployment and reduce the ongoing operational costs of rich-media applications and endpoints Cisco Catalyst 3K and 4K Switches • Location • Cisco AutoQoS • Media Services Interface Cisco ISR & ISRG2 Cisco Digital Media Player 4310G Cisco Video Surveillance IP Cameras Cisco VideoStream Presentation_ID Extends IEEE 802.11n support to enable enterpriseclass, wireless Cisco Video Surveillance IP Cameras and other live video streams © 2009 Cisco Systems, Inc. All rights reserved. Cisco 5508 Wireless LAN Controller Cisco Aironet Access Points 5 Cisco Medianet – Autoconfiguration Simplify deployment Automate network configuration – Auto Smartports and QoS Location integration – Automate location configuration How many IP cameras do I have installed in Bldg 24 Camera Camera registers with MSI: it‘s location info send ‗device type‘ = with its manager ‗Camera‘ via CDP Switch provides civic & geo location info to endpoint – CDP: location Assign to VLAN 10 & = bldg 24/room 5 apply QoS policy x MSE provides geo location info to switches CiscoWorks LMS Cisco Mobility Service Engine WAN IP Surveillance Manager Automated configuration and deployment reduce cost of deployment and ongoing moves, adds and changes Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 6 Streaming Video Challenges over Wireless Radio Frequency Limitations Can‘t deliver multicast video at scale Video overloads network and degrades other application performance Unable to deliver business quality video Video Streaming Without Reliable Multicast WLC AP Poor Performance Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. AP AP Switch AP Poor Performance 7 Streaming Video Challenges Poor Wired to Wireless Network Integration Reliability at WLC improves quality but NOT overall scale No identification of respective priority Inefficient use of overall network Inefficient use of bandwidth on the wired port Wireless Controller AP Good Performance Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. AP Good Performance Switch AP AP Good Performance Poor Performance 8 Media Ready WLAN with VideoStream Wireless Investment Optimized for Video Improves quality and scale of streaming content : Solved challenges associated with RF and wired / wireless integration Brings wired video quality to wireless Stream prioritization protects important content precedence Prioritization Criticality Level: High WLC Reliable Multicast RRC AP Great Performance Presentation_ID Switch © 2009 Cisco Systems, Inc. All rights reserved. AP Great Performance AP AP Great Performance Admission Control Video Not Available 9 Borderless Networks Services Cisco ISR G2 What can Borderless Networks do for your business? Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 10 Borderless Branch—WAN Evolution Integrated Services A Few Years Ago Integrated Applications On Demand Services Virtualized Services Custom Apps Operational Efficiency Mobility Security Business Apps Network Analysis and Monitoring Routing Voice Management Tools Integrated Routing + Switching+ Unified Communications + Wan Optimization + Mobility Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Network Consolidation Centralized Management Converged systems and services Vertical Apps Hardware Software Decouple hardware & software WAN Optimization Overlay Products Integrated Compute and Storage Application and Server Consolidation Virtualized Services 11 Cisco Integrated Services Router Generation 2 3925E*, 3945E* 1921 887*, 887V*, 888E* Performance, Scalability, Availability 2901, 2911, 2921, 2951 3925, 3945 1941, 1941W 860, 880, 890 Virtual Office Secure Mobility Customizable Applications Secure Collaboration Scalable RichMedia Services Enhancing the Borderless Experience * New Platforms Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 12 The New Branch Experience Integrated Services Routers Generation 2 Service Virtualization Services on demand Customized services Cloud extension Business Innovation Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Video-Ready Rich media applications High performance Application optimization Customer Experience Operational Excellence Greener technology Operational simplicity Investment protection Lowest TCO 13 What‘s New with Cisco ISR G2? Making the best …even better! Cisco ISR Cisco ISR G2 Up to 45 Mbps with Services WAN Performance Up to 350 Mbps with Services Single Network processor Multi-core Up to 160GB storage Service Module Performance and Capacity Up to 7X with Dual Core and 1TB storage Voice Only Onboard DSPs Voice + Video Fast Ethernet with PoE. Based on Catalyst 3560/3750 Switch Modules FE/GE Ethernet with EPoE Based on Catalyst 3560–E/2960 Multiple Hardware Coupled Single Motherboard EnergyWise IOS Images Service Delivery Redundancy Energy Efficiency Single Universal IOS Image Virtual Services ―On-demand‖ Redundant power supplies. Field-upgradeable motherboard EnergyWise with slot based controls. Up to 7x the Performance Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 14 ISR G2 Performance Positioning Line Rate FE + 150 Mb VDSL2+/Su b-rate FE 75 Mb T1/E1 EFM WAN Access Speed With Services WAN Access and Collaboration 3945 100 Mb 3925 2951 50 Mb 2921 35 Mb 2911 25 Mb 1941/2901 25 35 50 75 100 150 Concurrent Rich-media Collaboration Sessions Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 15 Service Modules and Interface Cards Interface Cards (WAN or LAN) Internal Module for Running Services That Don‘t Require Interface Ports, Dedicated CPU and Memory Independent CPU and Memory for Hosting Services or High Density Interface Ports. EHWIC ISM SM PVDM3 Enhanced High Speed WAN Interface Card Internal Service Module Service Module Packet Voice/ Data Module Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. High Density Rich-Media Voice and Video DSP Modules Examples: Wireless LAN Controller, WAN Optimization, Etherswitch Module 16 Platform Module Slot Evolution WIC HWIC EHWIC Supports VIC, VWIC Supports WIC, VWIC, VIC Supports HWIC WIC, VIC & VWIC NM NME,EVM Supports NM, NME-X,NME-XD AIM NME-X NME SM Supports NM, NME & EVM via Adapter card AIM ISM PVDM2 PVDM3 Supports PVDM2 Via Adapter Card Pre-ISR Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. ISR ISR G2 17 ISR Generation 2 Services Ready Engines (SRE) Internal Service Module (ISM) Service Module (SM) Single Core x86 512MB RAM, 4GB Flash Available on 1941 & above—Selected Services Dual Core High Performance x86 2–4GB RAM, 500GB-1TB HDD Available on 2911 and above—Full Range of Services Up to 7x Performance Improvement Compared to Previous Generation Support for EnergyWise®—Reduces Power Consumption, High Capacity Storage, RAID Capable and FRU Disks—Enable HA Deployments Integrated Management, Troubleshooting, on-board HW Diagnostics Tool Flexible ―Service Ready‖ Deployment Model o Deploy HW with router—SW can be deployed remotely saving truck roll costs o Services: Application eXtension Platform, Cisco Unity Express, WAAS, Video Surveillance, Wireless LAN Controller, Network Analysis, Server Virtualization, Windows Server Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 18 ISR G2 Services Portfolio Network and Security Services Network Services Branch IT Infrastructure and Management o Cisco Wide Area Application Services (WAAS) o Cisco Wireless LAN Controller (WLC) Network and Physical Security Secure, Protect, Compliance o Cisco Video Surveillance o Cisco Intrusion Prevention System o Cisco Network Analysis Module o Infoblox core network services on AXP Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Collaboration Services Unified Communications High-performance Communication and Collaboration Compute Services and Applications Application Infrastructure Consolidate Branch Servers and Applications o Cisco Unity® Express (Voicemail, IVR) o Cisco Application Extension Platform (AXP) o NICE Voice Recording on AXP o Cisco Integrated Storage System o Sagem Interstar Fax over IP on AXP o Industry standard virtualization o SingleWire Informacast on AXP o Windows Server Industry Applications Customized Vertical Solutions o Tiani Medical Data Exchange on AXP o Global Protocols Skipware on AXP 19 Security for the Borderless Branch Secure collaboration with video integration o Integrated IPsec acceleration o One touch PSIRT update o Advanced Management and Instrumentation o Hardened Foundational security, Compliance o Up to 7X performance increase over the ISRs Comprehensive, Secure Services for the Borderless Branch Cisco TrustSec Secure Cloud Computing Architecture Presentation_ID Secure Unified Mobile Architecture © 2009 Cisco Systems, Inc. All rights reserved. Secure Connectivity with Cisco TrustSec Advanced Security Services 20 Operational Excellence o o o o o o Operational Efficiency through Innovation Remote deployment, management and monitoring Gibabit Ethernet Switching Modules with Enhanced POE EnergyWise Support with configurable slot controls Field upgradeable motherboard for performance growth Increased redundancy across portfolio Single Universal IOS Image with Cisco IOS 15.0(1)M New Business Innovations Drive Lowest TCO Operational Simplicity–No Truck Rolls! Presentation_ID Energy Efficiency and Savings © 2009 Cisco Systems, Inc. All rights reserved. Hardware Re-usability with Investment Protection Business Uptime 21 Operational Excellence Improving Carbon Footprint with ISR G2 EnergyWise Policy: Power off at 7 p.m. Cisco EnergyWise NEW Real-time Energy Power Consumption reporting System-wide EnergyWise Verdiem Orchestrator PC control ISR G2 Module power Up/Down EnergyWise Policy: Power on at 7 a.m. Hardware Re-Usability Integrated Switching Environmentally Friendly 90% of service modules and Up to 48 ports of FE/GE RoHS compliant WAN interface cards supported Investment protection Green Engineering switching No additional power supply required Industry leading ePoE motherboards—no lead! Recyclable packaging Power Boost mode on 3900 series High-efficiency power supplies (85%) Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 22 Energy Efficiency = Real Results 5 Year Results PM AM Total Devices kWh Saved $$ Saved 1—Cisco 3945 50 0% 0% 4 —Wireless AP 200 66% 66% 20 —IP Phones 1000 66% 66% Per Site/Year - 50 Sites 1 —SRE 1—EtherSwitch 3 —SRE 54% Savings in Energy 451 Tons of CO2 300 66% 66% 83 Cars Removed 1—PVDM3 Total Presentation_ID $ 87 K in Savings © 2009 Cisco Systems, Inc. All rights reserved. 54% 54% 23 Evolution of Software Packaging and Activation 2010+ 2004+ 1990s Licensed IOS Reformation Ease Of Ordering Operational Simplicity IOS Many Images, Feature Upgrades Introduced with ISRs Services On Demand Reduced Complexity/Images Some SW Licensing Complex to Support Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 24 IOS Software Activation Software Activation After Product Order Customer purchases product activation keys (PAKs) for desired feature set and obtains Unique Device Identifier (Product ID + Serial Number), for the device he wants to upgrade These steps are the same for additional feature sets System Administrator Unique Device Identifier Previously Purchased Router CUBE 4. Serial Number UC License is installed and activated using Cisco License Manager, Router Call-Home, or manual copy and install SSL IPS URLF 3. Product ID SECURITY Using the Cisco website, the customer can purchase and generate a license for a feature set on that specific device SNA 2. PAK DATA 1. Product ID Serial Number Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 25 The New Branch Experience Integrated Services Routers Generation 2 Service Virtualization Services on demand Customized services Cloud extension Business Innovation Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Video-Ready Rich media applications High performance Application optimization Customer Experience Operational Excellence Greener technology Operational simplicity Investment protection Lowest TCO 27 Borderless Networks Services CleanAir What can Borderless Networks do for your business? Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 28 Motion Technology to Deliver the Experience Mobility User Services CleanAir Technology ClientLink Context/Location Client Troubleshooting Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Motion Network Services Mobile Collaboration AnyConnect Borderless Access 802.11n Intelligent Switching Remote Access/VPN 29 Enterprise Wireless Evolution From Best-Effort to Mission-Critical Casual Pervasive Media Rich Applications Mission Critical Performance Protection for 802.11n Networks Hotspot System Management Capacity Self Healing and Optimizing Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 30 Challenges with Spectrum System Overload! Performance Limited Spectrum 802.11n Performance Decrease Support Cost $ $ $ $ Increase in Support Costs Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 31 Detect and Mitigate RF Interference Cisco Spectrum Expert Interference Item: Classifying… Send Microwave Alert! detected Spectrum Expert Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 32 Introducing CleanAir Detect and Classify Locate Mitigate Cisco CleanAir Presentation_ID A system-wide feature that uses silicon-level intelligence to automatically mitigate the impact of wireless interference, optimize network performance and reduce troubleshooting costs © 2009 Cisco Systems, Inc. All rights reserved. 33 High Resolution Spectral Advantage Industry‘s ONLY in-line high-resolution spectrum analyzer Typical Wi-Fi chipset Spectral Resolution at 5 MHz Microwave oven Power ? Power Microwave oven Cisco CleanAir Wi-Fi chipset Spectral Resolution at 78 to 156 KHz BlueTooth BlueTooth ‗Chip View Visualization‘ of Microwave oven and BlueTooth Interference Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 34 Benefits of CleanAir Self Healing and Optimizing GOOD POOR Maintain Air Quality Forensics for Troubleshooting Wireless Security IP and Application Attacks & Exploits WiFi Protocol Attacks & Exploits RF Signaling Attacks & Exploits Traditional IDS/IPS wIPS CleanAir Layer 3-7 Layer 2 Layer 1 Monitors Exploits Invisible to existing Systems Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Policy Enforcement 35 Best of Interop 2010 Wireless & Mobility ―Cisco‘s Aironet 3500 Series with CleanAir technology tackles [interference] head on and represents the next phase in the evolution of enterprise wireless networks: self healing, missioncritical WLANs.‖ Mike Brandenburg Best of Interop judge © 2010 Cisco and/or its affiliates. All rights reserved. Aironet 3500 Series Access Point with CleanAir Technology 36 Technology Differentiation and Innovation Cisco Benefit Alternative Specialized chipset design Enables collection of rich RF data, monitor/serve traffic simultaneously Standard chips limited to basic Wi-Fi data only, in monitor OR traffic mode High Resolution Information Spectrum intelligence on non-Wi-Fi interference with impact severity and unique device tracking Wi-Fi data only, very limited ―best guess‖ data System Integration Auto-Optimization, location, history, RF forensics, reporting No automatic action or system-wide correlation Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 37 Borderless Networks Services Cisco AnyConnect What can Borderless Networks do for your business? Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 38 Mobility Challenges Improved Remote Access Experience Unifying In-Office and Out-of-Office User Experience Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Always-On Security and Protection Extending In-Office Security and Policy to Mobile Users Consumerization Mandate for User Choice in Device 39 Future of Work: Work Is an Activity, Not a Place Real-Time Collaboration Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Workforce Flexibility Anywhere Productivity 40 Cisco AnyConnect Secure Mobility Unmanaged Devices, Risk of Data Loss, and Lack of Access Seamless, Persistent Services for Flexible Security Policy Acceptable Use Access Control Data Loss Prevention Mobile Business Executive Can Mobile Devices Access My Network Transparently and Securely? Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 41 Traditional Remote Access VPN Limited Predominantly PC-based Client Support Manual Numerous ―clicks‖ Non-persistent Connection No Security or Visibility Security Intranet Rarely-On Only connected if / when absolutely necessary Corporate File Sharing Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 42 Traditional Mobile Web Security Limited Clients Predominantly PC-based Client Support Data Loss Prevention Acceptable Use Limited Security Threat Prevention Access Control URL-filtering client unable to address key use cases Access No Access No Access Intranet Corporate File Sharing Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Not integrated, requires separate VPN client 43 Cisco AnyConnect Secure Mobility Web Security with Next Generation Remote Access Choice Diverse Endpoint Support for Greater Flexibility Data Loss Prevention Acceptable Use Security Threat Prevention Access Control Rich, Granular Security Integrated Into the network WSA ASA Experience Access Granted Intranet Corporate File Sharing Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Always-on Intelligent Connection for Seamless Experience and Performance 44 Widest Support for Enterprise Mobility Windows, Mac and Linux Apple iOS 4 iPhone 3G/3GS/4, iPod touch 2nd and 3rd generation, upcoming iPad support Windows Mobile 6.x Touch screen devices Secure remote access to enterprise applications from Apple iOS 4 and Windows Mobile 6.x Support planned for additional enterprise mobility platforms Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 45 Profile Import SCEP Enrollment Connect on Demand Network Roaming DTLS Support Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 46 Cisco AnyConnect – One Client Secure Services Client VPN Client AnyConnect VPN Client 802.1X Connection Manager IPsec VPN SSL VPN Wired switches & Wireless controllers Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. ASA Remote Access ISRs ScanSafe Anywhere+ Web Security Web Security Appliances 47 Delivering Real Time User Experiences Everywhere with Secure Mobile Access Summary Cisco Medianet improves users' quality of experience while at the same time reducing operating costs by simplifying the deployment and operation of the network. Cisco ISR G2 delivers a superior customer experience and delivers the lowest TCO in the industry with green credentials. Cisco CleanAir provides the tools you need to support a truly mission-critical wireless network while simplifying ongoing operations. Cisco AnyConnect provides mobile employees on laptops or smartphones with an always-protected experience while enabling IT administrators to deliver comprehensive policy enforcement. Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 48 Be Sure To Complete An Evaluation For a Chance to Win a Flip Mino HD Camera Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 49 Borderless Networks Track Agenda TIME SESSION 9:30-10:30am Borderless Networks: Delivering Real Time User Experiences Everywhere with Secure Mobile Access Collaboration: The New Workspace Data Center: Journey to a Service-Centric IT Environment 10:30 - 10:45am Break Borderless Networks: Using the Network to Optimize TCO and Business Agility 10:45-12pm Collaboration: Virtualization Data Center: Virtual Desktop Experience 12 - 1pm Lunch and Networking 1:00-2:00pm Borderless Networks: Extending Virtualization Beyond the Cloud Collaboration: Video Interoperability, TelePresence, Tandberg, WebEx…and the World Data Center: Real World Applications: 2-2:15pm Break Borderless Networks:Emailand Web Security in a World Without Borders 2:15-3:15pm Collaboration: An architectural roadmap for Avaya/Nortel PBXs to Cisco Unified Communications and Collaboration Data Center: Unified Computing with Unified Fabric 3:15-3:30pm Presentation_ID CLOSE – Please hand your Evaluation forms in at the Tech Days Registration Desk. © 2009 Cisco Systems, Inc. All rights reserved. 50 Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. 51
© Copyright 2024