• Home

    • Welcome to the next step of Collaboration within the Cisco technical community in Belgium and Luxembourg
  • Categories

  • Archives

  • Cisco Belgium Tweets

IPv6 – the next generation challenge for Service Providers

John Chambers on IPv6 at Google Conference :

As we near 2012 when the last IPv4 address is assigned to a new subscriber, SPs must maintain and continue to accelerate growth. Billions of new devices such as mobile phones, portable multimedia devices, sensors, and controllers will demand Internet connectivity in the next five years. SPs need a solution that supports unconstrained global accessibility.

CGv6 is designed to help SPs deal with these challenges. With CGv6, SPs can:

  • Preserve investments in IPv4 infrastructure, assets, and delivery models through the use of Large-Scale Network Address Translation, along with private IP addressing.
  • Prepare for the smooth, incremental transition to IPv6 services that are interoperable with IPv4 using high-performance Tunneling technologies, combined with Large-Scale Address Family Translation.
  • Prosper through accelerated subscriber, device, and service growth enabled by private IP and IPv6.

CGv6 extends the already wide array of IPv6 platforms, solutions, and services. We’re introducing a Carrier-Grade Services Engine (CGSE) for the CRS-1 family, as well as supporting new features for the ASR family. Cisco CGv6 helps you build a bridge to the future of the Internet with IPv6.

For more IPv6 related information, make sure to visit :

http://www.cisco.com/go/ipv6

John Chambers on IPv6 at Google Conference

It’s lab time

When you receive your phone bill today and are surprised by the amount you have to pay. You immediately start inspecting the details about your telephone conversations. In there you can find all kinds of interesting information: telephone number called, duration of call, start and end time, cost,… After a thorough analysis you realise that you should be calling more from your IP phone and stop taking your cellular for making those long distance calls. But that is not the main point of todays topic.

If you think about it, the same principle applies to your network utilization. Consumption of network resourses costs money and it is sometimes difficult to do capacity planning. The same information that is on your telephone bill is available through Flexible Netflow on traffic flowing over your network infrastructure. It gives you detailed information on the packets travelling from source to destination.

Are you ever wondering what kind of traffic is running on your network, what applications are consuming more bandwidth, who are the top talkers?

Take a look at this video, enable Flexible Netflow and find out.

More information on:
Cisco IOS Flexible Netflow Technology White Paper

Borderless Power Management with Cisco EnergyWise

Cisco EnergyWise was first introduced in February 2009 (Best of InterOp 2009 Green Award) and is basically a response to the very high demand from businesses to monitor, control and manage energy.

“Green” is a hot topic nowadays. Not only will it save businesses a lot of money instantly but having a green image as a business is also of not to be underestimated value in terms of marketing.

Think about the environmental concerns and government directives, there is an increased need for sustainable and “green” business IT operations.
Methods to measure power consumption and control energy output are now the focus of businesses worldwide, with customers looking for consolidated energy management across different device and communications media.

So what exactly is Cisco EnergyWise ?

Cisco EnergyWise is an innovative architecture, available “free of charge” in our existing Cisco Catalyst switches and Integrated Services Routers.

EnergyWise enables companies to measure the power consumption of their network infrastructure and network-attached devices, and to manage the power consumption using specific policies leading to reduced power consumption and important cost savings, and this potentially for any powered device.

How does it all work? Well I can’t explain it better then Robb Boyd:
Fundamentals of Cisco EnergyWise


Cisco’s vision for EnergyWise consists out of 3 phases:

Phase 1: ‘Network Control’, is the management of the energy consumption of IP enabled Power over Ethernet devices like IP-phones, physical security cameras and wireless access points through EnergyWise.

In my next blog I’ll talk more about Phase 2!

Learn more: http://www.cisco.com/en/US/products/ps10195/index.html

Estimate your potential savings with this green calculator: http://www.cisco.com/assets/cdc_content_elements/flash/netsys/calc/demo.html Continue reading

The Power of Participation

Today, Cisco launched the “Power of Participation”, an important extension to both Cisco’s Borderless Networks architecture and Cisco’s Data Center Business Advantage architectural framework.

Why the “Power of Participation”? Because we are right in front of the third wave of the Internet Evolution. Wave 1 (1990s) was all about connectivity and transforming transactions (E-commerce, B2B, B2C). Wave 2 (2000s) was about driving inclusion and transforming interactions through social media and the consumerization of IT. Last week, in this blog, I mentioned some future trends: mobility, internet of things, cloud and collaboration/video. As these trends take full scale, they will fundamentally transform organizations and we will be entering Wave 3 of the Internet Evolution: an era of changed business interactions and new user expectations. In this era, end users will expect their collaborative, video-rich work environment virtually and securely Anywhere, Anytime on Any Device of their choice (the New Normal). They will demand a Borderless Experience giving them the Power to Participate optimally to business. In this new era, businesses will also demand to IT the Power to Participate and transform in an agile way into new and changing business models.

How will we enable this Borderless Experience and these new business models? Through an architectural Borderless Networks approach delivering uniform network services. In previous Borderless Networks launches, we already delivered network services such as Motion (driving Anywhere mobility capabilities); Medianet (supporting media-rich video collaboration), EnergyWise (driving energy control and building management) and TrustSec (driving secure support for Any Device and controlled access for Anyone).

In today’s announcement, we take an important next step in delivering Anywhere – Any Device capability with the launch of AnyConnect 3.0. The Cisco AnyConnect Secure Mobility Client provides a single 802.1x authentication framework, allowing smooth and transparent wired or wireless access and delivering a seamless Always-On secure (IPSec VPN, SSLVPN, MacSec, …) borderless connectivity experience  across a broad set of PC- and Smartphone-based mobile devices (windows, Apple iPhone, …) (http://www.cisco.com/en/US/prod/collateral/vpndevc/ps6032/ps6094/ps6120/data_sheet_c78-527494_ps10884_Products_Data_Sheet.html). Advantage for the end user: the ability to access and use his business applications seamlessly and securely – without any technology complexity – whether on the wired network at work, on the wireless network in a meeting room, on a wireless guest net, on the road or at home. Advantage for the IT department: being able to open up the access policy to a broad set of devices while still guaranteeing security compliance. This solution also allows to take advantage of cloud-based services while maintaining consistent security policies towards the applications, whether in the on-premise datacenter or in the cloud (www.cisco.com/go/anyconnect).

A Borderless Experience also requires a perfect end-to-end application experience. To enable this, Cisco announced the Application Velocity network service. This network service delivers a network that is application aware, has application visibility and monitoring capabilities, can accelerate applications (WAAS express, WAAS on the Integrated Services Routers ISR-G2’ Services Ready Engine (SRE) (www.cisco.com/go/appvelocity) and can deliver application agility and extend application virtualization up to the branch office (Unified Computing System (UCS) on the ISR-G2 Services Ready Engine (www.cisco.com/go/ucse)).

The launch also considerably expands the network infrastructure in terms of high density and high performance through new announcements in the wireless offering (1040 access points), the Catalyst 4500 platform, the high-end ASR routing platform, the new high-end ASA5585 firewall, the LMS4.0 management platform and EnergyWise.

To enable you to take a fast start in this important network transformation to a Borderless Networks architecture, Cisco has created detailed Validated Design Guides that can help you on your journey: the Smart Business Architecture for mid-sized networks and enterprises  (http://www.cisco.com/en/US/solutions/ns340/ns414/ns742/ns982/landing_sBus_archit.html).

So, who is the person on the picture above? Well, meet Ike Theodore (IT) Willis and follow him towards the Borderless Networks challenge, Oct 5th – Oct 8th and take the chance to win a trip to see Your Wonder of the World: www.cisco.com/go/challenge.

For more info on the announcements, please go to www.cisco.com/go/borderless.

Oh Crystal Ball …

As an IT department, you are asked to be ready to enable future business directions and related changing end user requirements, enabling productivity increases and efficiency improvements.  But what are those upcoming requirements? What do you need to prepare your IT infrastructure for? When asking the question to your business departments, it might appear that they also have difficulties answering this.

Still, there are already some tendencies appearing that will underpin these business direction changes and, in one way or another, will fundamentally change the IT infrastructure you need to provide. These tendencies all have a direct impact on either or both Cost Reduction/Productivity Improvement or driving Innovation/increasing Differentiation, fundamental forces that will always keep on driving change in companies.

Mobility for sure is one of them. Your company’s workforce is only sitting a low amount of their time behind a fixed desk. They spend more time in meeting rooms, in a virtual desk environment, in flexible workspaces within changing project teams, on the road or even increasingly from their home office. Your companies’ workforce might even go beyond the corporate borders due to increased collaboration with external teams and partners. So, you will need to be able to provide an IT experience wherever the end user would like to connect. The border of location, previously tied to the fixed desk, has disappeared and you will need to provide the end user with a Borderless experience.

Cloud computing is entering the IT landscape. Companies are still figuring out up to what level they need to integrate and take advantage of cloud based applications and business models. Whatever the outcome, IT departments will need to enable high quality and secure access to both applications in the datacenter and applications out in the cloud. So, the location border, both of the end user AND of the application that he wants to access, has gone. IT departments even need to check whether they are still in the path between the end user and the application, especially since the IT department will still be requested to guarantee security and data integrity.

More and more devices of different types will connect onto the network: The Internet of things. Where once an IT department needed to foresee a standard corporate desktop PC and a mobile telephone, it is now faced with an increasing amount of diverse devices connected to the network. Sometimes, these devices are controlled by IT; sometimes they are brought in by the end user and are less IT controlled. The Blackberry was one of the first devices requested directly by end users, imposing IT to support it on their network. This user-driven evolution only increased with the rising popularity of the iPhone, Blackberry devices, Symbian devices, Android devices, the iPad, the Cisco CIUS, … Cisco’s IT, for example, acknowledged that a standard desktop and mobile was not maintainable anymore, and moved to the support of a full catalogue of devices, allowing people to use devices that optimally support their personal business requirements. Beyond that, new non-user based devices are becoming IP based: access control devices, physical security camera’s, building management sensors. In short, the device border is disappearing. IT needs to adapt to these increasing demands in supported devices and non-user devices on the network, while of course maintaining a coherent and uniform network access control policy.

Finally, after decades of productivity improvement through process optimization, companies are now seeking the next wave of productivity improvement through increased collaboration. Being able to flexibly bring the right people and specialists together to solve problems or accelerate innovative ideas, being able to take advantage of the knowledge in a globalised world, drive richer interaction with customers to increase their customer experience, satisfaction and loyalty will all be important drivers behind collaboration. So, IT departments need to be ready to support the next wave of collaboration tools. Where today this translates into the movement from telephony to IP telephony to Unified Collaboration, this will increasingly mean the usage of rich video to increase the impact. Get the expert – from wherever in the world – in front of your customer in a High Definition real live experience, bring teams dispersed worldwide together in a seemingly same meeting room, drive video rich messages to your customers, … The result : a much higher level of impact and interaction. Based upon my own experience with several collaboration tools, I can only confirm that the level of attention and efficiency of a video based Telepresence meeting approaches the one of a live meeting, and is way above the impact of a voice-based conference call. The IT impact: an important increase in bandwidth requirements (video is already more than 50% of the bandwidth on Cisco’s network), and a network that needs to be aware and be able to cope with rich media and video.

Can we see into a Crystal Ball … not really. However, you will have recognized several of the above mentioned changes starting to play into your IT environment. We can help you to move forward in this challenging journey through our Borderless Networks architecture. This architectural approach goes beyond switch ports, access points, speeds and feeds; but will combine these network infrastructure building blocks to interoperate together to drive infrastructure functionality that addresses above mentioned IT challenges :

– Mobility: Cisco Motion & CleanAir, Cisco AnyConnect and Cisco TrustSec

– Cloud: Cisco AnyConnect and Cisco Application Velocity

– Internet of Things: Cisco TrustSec and Cisco EnergyWise

– Unfied Collaboration and Video: Cisco Medianet

For more details on each of these functionalities, please visit: http://www.cisco.com/en/US/solutions/ns1015/solutions.html

Let’s confidently start the journey …

Automate your Network Operation

In this blog article I would like to introduce you to Network Automation, available on several Cisco platforms. Network Automation is a general name for a group of functionalities, helping automate how your network behaves, how you perform daily network operations or even create your own features. The Nework Automation consists of two general parts: Device Manageability Instrumentation (DMI) and Embedded Automation Systems (EASy), each again with a complete range of functionalities.

To understand the Network Automation you could compare the network to an airplane. An airplane consists for example out of 21000 sensors sending their information to the instrumentation board. Within the network the sensors would become the Object Identifiers (OIDs) in the Management Information Bases (MIBs). The instruments are the ‘Embedded Automations’. As a pilot can’t read 21000 different sensors, he needs a system in the airplane to consolidate this information and analyse if values are normal or if the pilot needs to perform an action.

Airplane Router
Instruments Embedded Automations
21000 sensors OIDs in MIBs

With this analogy in mind we see today that an airplane could take control itself to avoid for example a mid-air collision. The same starts to happen in the networks today as well. It is of a great benefit if you can build in smarter logic and decision capabilities in your network so it can react on its own to events. Wouldn’t it for example be great if you could transform a server only having a ‘cold standby’ backup functionality into a system with a sort of ‘hot standby’? Well, the Network Automation could detect a link down from your primary server and react to it to enable the interface of your ‘cold standby’ backup server automatically. It may look scary at first to let your network take decisions but it gives a lot of benefits and saves you a lot of management hours.

Let’s take 2 simple examples to give you a first glimpse of what’s possible. This is actually the beauty of the Network Automation. You can create from very simple things up to real complex automations.

To perform the two following examples you would need a Cisco switch or router with an IOS containing Embedded Event Manager v3.1. For a Cisco router this would be 15.0(1)M or later.

Note: EEM is also available on L3 cisco switches, Catalyst 4500 and Catalyst 6500. Please check your IOS release notes to know the exact support.

c1812-easy# conf t
Enter configuration commands, one per line. End with CNTL/Z.
c1812-easy(config)# event manager applet hello-world
c1812-easy(config-applet)# description “My first EEM 3.x applet”
c1812-easy(config-applet)# event none
c1812-easy(config-applet)# action 000 puts “Hello,”
c1812-easy(config-applet)# end
c1812-easy#

The above example will print the word ‘Hello,’ to the Command Line Interface (CLI). To achieve this, you first use the command ‘event manager applet <name>’ in the configuration mode to create and name your applet. As you don’t have an event to trigger this upon you can use ‘Event none’ so the application only runs when you manually launch it. On the third line you use the general command ‘action’ which executes the general command ‘puts’ to write some text to the CLI. The ‘000’ after the ‘action’ is a line number which you are free to chose and which defines the position in the script. It’s a best practice to increment each line with 10. If for any reason you would like to insert a line afterwards in-between your script you can do this using for example line 002 which will be inserted between line 000 and 010.

To run your first application you go back to the ‘enable’ mode and type the below command.

c1812-easy# event manager run hello-world
Hello,

Another more advanced option could be for example the extraction of some specific information from a show command. In the next example I’m looking for a single line reporting for the uptime of my system.

c1812-easy# conf t
Enter configuration commands, one per line. End with CNTL/Z.
c1812-easy(config)# event manager applet hello-world
c1812-easy(config-applet)# action 100 cli command “show version | include ptime”
c1812-easy(config-applet)# action 110 regexp “ptime is ([0-9]+.*inutes)” $_cli_result ignore myuptime
c1812-easy(config-applet)# action 120 puts “… my uptime is: $myuptime”

With the above example I will add some additional lines to my previous script. First of all, I would need to collect my information from the ‘show version | include ptime’ command which will return only the line with the uptime from my show command. The result of this action will be stored in the global argument $_cli_result which I can use later in my script. On the next line I will use a regular expression to get only the part of the information I’m interested in.  I will also tell regexp to store my result in the variable ‘myuptime’. In the last line I use the general command ‘puts’ again to write my output to the CLI. Within this output I now use the variable ‘$myuptime’ to insert the variable information I extracted before from my show command.

When I run my application hello-world again you will get an output comparable to the one below.

c1812-easy# event manager run hello-world
Hello,
… my uptime is: 5 weeks, 5 days, 2 hours, 15 minutes

This last example concludes my first article in a series to unleash to you the capabilities of our Network Automation. As closing I would like to show you as well this demo twitter page http://twitter.com/EASyDMI where a router is regularly posting its operation data like fan status, board temperature etc. This is something else that you could achieve using Network Automation.

Virtually the Network Automation capabilities stop where your creativity and imagination ends.

Read more:

Easy: http://www.cisco.com/go/easy

EEM: http://www.cisco.com/go/eem

Regular Expression: http://www.cisco.com/en/US/docs/ios/netmgmt/command/reference/nm_01.html#wp1139025

The impact of video on your network

Last week Cisco held its annual Global Sales Meeting with nearly 1.100 conference rooms in 162 locations around the world.  What used to be around 20.000 people flying towards the United States and to the event location, has now been transformed into a worldwide virtual experience. Needless to say the enormous cost reduction achieved through this, as well as the enormous challenge to support such an event. Making usage of all available Web2.0 technologies such as extensive Telepresence usage, High Quality video streaming and interactive Webex-sessions for collaboration and discussions. In short, full rich media session enablement to all participants.

This is just an example that shows the potential of video to transform internal collaboration in the company. Video is becoming central to how we work, how we live and how we communicate and if you have a look at the expected evolution of traffic, you can clearly see the increase of video usage and overall bandwidth growth. Given the impact on quality of interaction and collaboration as well as on cost reduction, IT department’s will be challenged with the daunting task to be ready to serve these media demands and rapidly growing content volume. Cisco’s Borderless Networks architecture, incorporating Medianet, can help IT departments to address this challenge.

TB = Terabyte (1000 GB)
PB = Petabyte (1000 TB)
EB = Exabyte (1000 PB)

A Medianet-ready network is an intelligent network that understands the specific requirements and has been optimized for video traffic and rich media traffic. With medianet, your borderless network optimizes traffic flow and bandwidth utilization, while reducing the effect of network congestion. And it does all this while lowering the complexity and risk associated with video rollouts.

The medianet approach gives you unprecedented quality, scalability and efficiency, allowing you to:

–          Deliver all types of media over a single end-to-end IP architecture.

–          Provide reliable extraordinary customer experiences.

–          Increase revenues and reduce operating expenses.

The Medianet will make the required bandwidths available (Gbps to the desktop, 10Gbps in the backbone, 100Gbps in SP backbone) but will also ensure a constant rich-media user experience, independent of where you are (wired or wireless) or on which device you want to view the content (thanks to the Media Exchange Engine). The Medianet will also make the network understand video devices and their requirements, through build-in end-to-end functionalities such as Auto Smartports, Quality Of Service, RSVP (Resource Reservation Protocol), Performance Routing (PfR), …

Let’s take a look at Performance Routing (PfR). It complements traditional routing technologies in order to improve application performance and availability. This technology can select the best path for each application based upon advanced criteria such as, reachability, delay, loss, jitter, and Mean Opinion Score (MOS).

And probably, we are only still at the beginning of the video era. Maybe the STAR WARS holographic virtual meetings are not that futuristic anymore …. Cisco Telepresence Magic

Is Your network ready for it ?

SAF: Service Advetisement Framework

Service Advetisement Framework (SAF) is a method to transport discovery information that would typically resides locally across Wide Area Networks. A SAF-enabled network will transport encapsulated messages and distribute those as it they were part of an IP routing protocol.

Current Cisco implementation leverage EIGRP as a transport medium, independent of the actual routing protocol; could be a BGP, OSPF or IS-IS routed network.

The first application I want to spend a bit more time on is Call-Control Discovery.

Problematic with a large number Call-agent is to have them inter-working and in particular adjusting dial-plan amongst and between them. Previous to SAF, two options were offered as depicted below:

Fully meshed network of h.323 or SIP trunks

Centralized SIP proxy or h.323 gatekeeper

You’ll note that in both case the operational overhead and technical complexity can ramp up pretty quickly as the number of call-agents to inter-work is growing.

Cisco Unified Communications is using a new service, CCD, that leverages SAF to exchange call routing information, automatically, between multiple SAF-enabled call control systems (like CUCM, CUCME, CUBE). This permits those systems to update their call routing table dynamically.

SAF enabled network

The call-control, being a SAF-client, is sending CCD information to the first connected SAF-forwarder, a router in this case. CCD is contained in a SAF Advertisement, itself having a header and ‘service data’ payload.

Terminology:

SAF Client: any application wishing to advertise a service to the network or request a service from the network or both
SAF Forwarder: router feature – provides relationship between client and framework, stores service information and propagates it to other forwarders
Service: any information that a SAF client wishes to advertise and “consume” (e.g., dial plans for CCD)
SAF Advertisement: carries service information, consists of SAF Header and Service Data
Non-SAF Node: any router that does not run the SAF protocols

How does it work ?

In the following example, you have the San Jose site updating, via the SAF-enabled  network, the New-York office with its call routing information.

Then New-York office is also sending its CCD to the SAF-enabled network, and by which San Jose call-control also gets updated call routing information.

Now a third call-control, London, is added to the scheme, the CCD does not need to be re-send by the call-control as it’s the SAF-agent that will update the new call-control, without other intervention. In the meantime, London’s CCD will be propagated across the SAF-enabled network.

If for any reason the IP path becomes unavailable to a specific call agent, the network will update itself the call routing information, alerting the other call-control to use the PSTN path to reach those location.

And the beauty of this, it all happened without any administrative actions with regards to the call-routing…. great isn’t it  🙂

Stay tuned to an upcoming post on how to configure CUCM to use SAF.

Borderless Collaboration #3: Cisco VPN Phone

Hello,

In this third article about Borderless Collaboration, we will discuss about the Cisco VPN Phone solution, one of the new feature of the Cisco UC Manager 8.0 release.

Cisco VPN Phone is a cost-effective solution for extending the reach of your UC environment outside the perimeter of your Firewall. It permits to establish a Secure connection from any location to your Intranet. It adds an other option for the teleworkers or small branches office communications needs and complements the existing teleworkers offering  like CVO, AnyConnect or  OfficeExtend.

Cisco VPN Phone is a fully enabled VPN connection between remote locations and HQ. It is, unlike its predecessor Phone Proxy, encapsulating all the traffic from the phone. Permitting the use of phone xml apps (like Extension Mobility)  ontop of secure signaling and VoIP.

How it helps your business ?

Cisco VPN Client for IP Phones is easy to install, to use and to manage. No more headaches when providing Unified Communications to teleworkers, remoter contact center agents, small branches, temporary deployment, sales events or disaster recovery plants.

You will be able to implement remote connectivity without extra hardware then an IP Phone !

Let’s take the example of road winter maintenance keeping role; a group of people have to wait for the GO from HQ before staring spreading salt on the road. now if those people can wait, truck loaded, at home instead of staying in a regional dispatch station…

What do you get ?

Happier employees, diverse location for quicker and more efficient actions and lower costs from keeping the employees at home !

How to implement it ?

With only a few simple configuration steps you will activate the VPN client on IP Phones (and #1 being already covered for you data VPN needs)

Step 1: Configure Anyconnect VPN access on ASA to provide network access. This can be achieve using CLI or ASDM GUI

Step 2: Upload VPN certificates to UC Manager: from OS admin page, choose Security > Certificate Management.

Step 3: Configure the VPN gatway in UC Manager: in CUCM admin page, under Advanced Features > VPN VPN Gateway.

Step 4: Create a VPN group in Advanced Features > VPN VPN Group.

Step5: Configure the (optional) VPN Profile under Advanced Features > VPN VPN Profile.

Step 6: Assign VPN group and profile into common phone profile. this is done under Device > Device Settings > Common Phone Profile

Then apply the configuration on your IP Phone

You can use your Cisco IP Phone to establish a VPN connection.

VPN client is supported on 7942G, 7945G, 7962G, 7965G, 7975G and 99xx/89xx IP Phones. Require UC Manager 8.0.1 and Phone firmware equal or above 9.0(2)SR1S.

More information can be found at:

http://www.cisco.com/en/US/docs/voice_ip_comm/cucm/security/8_0_2/secugd/secuvpn.html

https://supportforums.cisco.com/docs/DOC-9124

WLAN – Get your company Wireless Network at home: Extend-Office Solution!

What is Cisco OfficeExtend Solution:

The Cisco OfficeExtend is a secure, simple, and cost-effective solution that extends the corporate wireless network to remote sites. It provides mobile connectivity to workers at temporary work spaces or locations outside of the traditional corporate office, including teleworkers, full- and part-time home-office workers, and mobile contractors.

No more need to add a dedicated AP for personal use and one for professional use, you can combine both in 1.

Solution Elements

  • 5508 Wireless Controller
  • 1130 AP; 1140 AP
  • Management through WCS

Solution Design:

On OfficeExtend AP, you will work creating an AP that can be used at home to access office wireless network.

It is a special type of Hybrid Remote Edge Access Point (HREAP) which combines the best of central management and local data switching in an AP.

Keep IT to control Corporate network and enforce policy everywhere at anytime.

Keep non-employee (family) to access the internet wirelessly without adding devices and that they can control! They will create their own SSID which will be routed locally, directly to the internet.

You will work with NAT, QoS, SIP, encryption and data forwarding technologies on both the AP and the Controller. In addition you will work on common remote access technologies such as data forwarding, 802.11, Client Management, Authentication and VLAN technologies among others.

Easy to install:

  • A user is given an access point that has been ‘primed’ with the IP address (or addresses) of controllers that have public IP addresses on them
  • The user plugs the AP into their home router
  • The AP gets an IP address from their home router, joins the primed controller and creates a secured tunnel to it
  • The AP advertises corporate SSID
  • The same security methods and services are thereby extended across the WAN to the user’s home

Controller Configuration:

  1. Prime the AP to the WLC as it get its IP address
  2. Set the selected AP in HREAP mode
  3. Enable the OfficeExtend option:


Home SSID configuration:

  1. Connect on the AP via its local IP address:
  2. Create your own SSIDusing Open, WPA or WPA2/PSK or 104 bit WEP key

More technical detail:

  • 5508 Controller is installed in a DMZ and reachable through a firewall/NAT (NAT to be enable on the WLC)
  • Voice (7921G/7925G) over Cisco ExtendOffice is supported

More information can be found at:

http://www.cisco.com/en/US/solutions/collateral/ns340/ns517/ns430/solution_overview_c22-523307.html

%d bloggers like this: