Professional Documents
Culture Documents
Prime Recording
Prime Recording
Cisco
Customer
Education
Cisco Prime: Transform
Your Network with
Cisco
This session was recorded via Cisco WebEx! You can watch
the live session recording via the following URL:
https://acecloud.webex.com/acecloud/lsr.php?RCID=1cd1928b
b30445e5ba2bdd5712a74975
Thanks for your interest and participation!
Cisco
Customer
Education
Cisco Prime: Transform
Your Network with
Cisco
2.
3.
One Policy
One Management
Brian J Avery
Territory Business Manager
Florida Territory Commercial
bravery@cisco.com
Priors:
Cisco Sales and Channels (10 yrs)
President and CEO (6 yrs)
Cisco Premier Partner
Network as Enforcer
Who Is Cisco?
1984
Computer scientists,
Len Bosack and Sandy Lerner
found Cisco Systems
Cisco Confidential
Who Is Cisco?
Dow Jones Industrial Average
Chuck Robbins,
CEO, Cisco
Cisco Confidential
No. 1
Routing
No. 1
No. 1
Edge/Core/
Access
TelePresence
Wireless LAN
Modular/Fixed
Voice
45%
43%
50%
64%
39%
Switching
No. 1
No. 1
No. 2
No. 1
Web
Conferencing
x86 Blade
Servers
Storage Area
Networks
Security
41%
27%
47%
33%
No. 1
Q1CY14
A Brief History
of Networking
Who Remembers When?
20 Years Ago:
Wired Ethernet
and
Dedicated Phone
Lines
2013-2014 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
10
15 Years Ago:
Cisco Confidential
11
10 Years Ago:
Trusted Wireless
Enabled Mobility
Cisco Confidential
12
5 Years Ago:
BYOD
Maximized
Flexibility
Cisco Confidential
13
Today:
Next Generation
Workspace and New
Services enabled by
the Network
Cisco Confidential
14
78%
New Connected
Experiences
2013-2014 Cisco and/or its affiliates. All rights reserved.
Optimal
Application
Experience
The network is
increasingly critical.
BYOD and
Mobility
Managed Cloud
Services
IT Simplicity and
Programmability
Cisco Confidential
15
50%
41%
38%
Cisco Confidential
16
Cisco
Unified Access
The Intelligent Platform for a Connected World
Calling all
Autobots!
Cisco Confidential
18
One Policy
Simple
Secure
One Management
Lower
TCO
One Network
2013-2014 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
19
One Network
Catalyst 3850/3650
Catalyst 4500E
with SUP8-E
Catalyst 2960
Advanced fixed
switching with
Unified Access
Smart, simple,
green & secure
wired access
LOWER
TCO
END-TO-END
SECURITY
Catalyst 6500/6800
Flexible, scalable,
feature-rich
modular access
APPLICATION
VISIBILITY
INVESTMENT
PROTECTION
Enterprise
backbone
optimized for
10/40/100G
PERFORMANCE
21
Cisco Confidential
& SCALE
BYOD
Video
Mobility
Features
Application Visibility
Cisco TrustSec
Scale
Cisco Confidential
22
Advanced Functionality
Access points
supported
Base Stackable Switch
Stacking bandwidth
25 access points
160G stacking bandwidth
Fixed uplink
Modular uplinks
MODULAR SWITCHES
Highly Adopted Switching Platform
Bandwidth
(928 Gbps)
Modular 8 x 1 and 10
Gigabit Ethernet Uplinks
Cisco Confidential
23
Optimized Performance
CAPWAP encapsulation/de-capsulation,
Flexible Netflow, QoS happens in ASIC for
line rate performance
Cisco Confidential
24
One Network
Corporate
Network
Cisco
Access Point
Internet
Cisco Firewall
Catalyst
Switch
C o n v e rge d A c c e s s M o d e
2013-2014
Integrated wireless
controller
LAN Mgmt
Distributed wired/wireless
Solution
data plane (CAPWAP
Wireless
Identity
OneControl
Policy ISE
termination
Cisco and/or its affiliates.
All rights reserved. on switch)
System
Mgmt
Access Control
Server
Guest
NAC
One Management
Prime
Cisco Confidential
Server
Profiler
25
Flexibility in Deployment
Nbase-T, Copper/Fiber,
Standalone or Instant Access
Mode, PnP with APIC-EM
Cisco Confidential
26
Security
Aggregation Layer
Data Tag
Supplier Tag
Guest Tag
Destination
Source
HR Database
Prod HRMS
Exec BYOD
Exec PC
HR Database
Storage
Quarantine Tag
Access Layer
X
X
Voice
Data
Suppliers
Quarantine
GuestCisco Confidential
27
Smart Operations
APIC EM
Lower TCO
Sleep
Easy Configurations
for endpoints
Sleep
Proactive diagnostics
Real time Alerts
Web-based reports
Routed to TAC team
Sleep
EEE ready
Energyw ise Time of the
day policy based on/off of
access devices
0 $ SKUs for energy
management
Cisco Confidential
28
High Availability
FlexStack+
Stateful SwitchOver
Physical Redundancy
Stateful Switchover
Network Resiliency
Redundant Pow er
Supplies
StackPow er w ith 3850
Redundant Fan Trays for
Chassis Systems
Redundant Supervisors
for Chassis Systems
Stackable Support:
3850 and 3650
Intra-chassis support:
6800, 6500 and 4500
Inter-Chassis support:
w ith VSS
VSS
Instant Access
Multi-chassis
EtherChannel (MEC)
provides hardw are-based
failover
VSS Quad-Sup SSO w ith
Sup2T
Cisco Confidential
29
POE/POE+/UPOE
Cisco Innovation over 10GT Standard to support high end point power needs
Standards Compliant
1G and 10G BaseT IEEE standards, intermediate speeds WIP
Cisco Confidential
30
Cable Type
1G
2.5G
5G
10G
Cat5e
100m
100m
100m *
N/A
Cat6
100m
100m
100m
55m
Cat6a
100m
100m
100m
100m
0-55m: no restrictions
55-100m: based on customer cabling infrastructure and configuration, there are some corner cases in which customers
will experience less than 100m support. In these cases, the system will automatically default to 2.5G (post-FCS SW
release support)
Cisco Confidential
31
This MUST be
Autobot
technology.
Cisco Confidential
32
Wi-Fi as Primary
Ethernet as Fallback
Connectivity
2 AVI Research
Wi-Fi Speed
6900**
6900**
8
Spatial
Streams
3500**
4
Spatial
Streams
2340**
1300*
1730**
2
Spatial
Stream
870*
600
450
300
430*
802.11
1997
24
3X the Performance
802.11b
802.11a/g
over 802.11n
1999
2003
2 Gigabit
Ethernet Uplinks
Gigabit
Ethernet Uplink
54
11
Desktops
3SS
Desktops / Laptops
2SS
Laptops / Tablets
1SS
Tablets / Smartphones
1
Spatial
Stream
65
430*
4SS
2X the802.11ac
Battery Life
802.11ac
over
802.11n
Wave
1
Wave 2
802.11n
2007
2013
2016
SS = Spatial Streams
No Price
Premium
*Assuming 80 MHz
overand
802.11n
suitable
channel is available
Increase Sales
Increase Production
36
OF STUDENTS
OF EMPLOYEES
Cisco Confidential
37
Changing People
OF COLLEGE
STUDENTS
Air
Water
Food
Shelter
WiFi/Internet
CONSIDER THE INTERNET TO BE A FUNDAMENTAL
HUMAN RESOURCE
AND
OF YOUNG
EMPLOYEES
38
Only AP manufacturer
that built their own
Radio ASIC
2.4GHZ Radio
DRAM (128)
5GHZ Radio
CPU
DRAM (128)
DRAM (512)
CPU
Cisco Confidential
40
Turbo Performance
Improves the efficiency of airtime
utilization and channel capacity
Optimized Roaming
Intelligently determines the
optimum time to roam
Noise Reduction*
Enables Dense Access Point
Coexistence / implementation
*Future
Mission Critical
High-Performance
Fixed
Fixed
802.11ac with HDX
M R34
802.11ac
ON-PREMISE
CLOUD MANAGED
DETECT
CONNECT
ENGAGE
GUEST PRESENCE
GUEST ACCESS
GUEST EXPERIENCE
credentials identified
LOCATION ANALYTICS
Insights into Customer Online and Onsite Behavior, Traffic Paths, Dwell Times, Location Density, etc.
HOSPITALITY
RETAIL
Context-rich
notifications
Use of loyalty app
encouraged
In-venue high-value
shopper engagement
CONNECTED
TRAVELERS
CONNECTED
GUESTS
CONNECTED
CONSUMERS
TRANSPORTATION
CONNECTED
PATIENTS
EDUCATION
HEALTHCARE
CONNECTED
STUDENTS
Campus maps and
directions
Stadium sales and
athletic event
experience
Real-time bus maps
Wi-Fi Stats:
Associated vs. Nonassociated Devices
All Gigabit
Wi-Fi
Vendors
802.11ac
Transform Your
Network!
Cisco Confidential
47
Guest
WiFi
Omni-channel
Apps
SaaS Enterprise
Apps
HD
Video
MORE
APPS
Online
Training
80%
Of employee and
customers are served in
branch offices*
20-50%
Increase in Enterprise
bandwidth per year
through 2018**
BRANCH
Social
Media
OS
Updates
Mobile
Apps
MORE
THREATS
30%
Of advanced threats will
target branch offices by
2016 (up from 5%) **
Cisco Confidential
49
LAN
Users
WAN
BRANCH
Data Centers/
Cloud
Cisco ACI
Automation, Orchestration,
Programmability
Cisco Confidential
50
LAN
WAN
Users
BRANCH
Data Centers/
Cloud
Cisco ACI
Automation, Orchestration,
Programmability
Cisco Confidential
51
Any
User
Private
Cloud
Hybrid
Cloud
Any
Application
Public
Cloud
Secure
Access
Lower
Costs
IT
Simplicity
Cisco Confidential
52
Secure Direct
Internet Access
Automate
WAN Provisioning
Internet
MPLS
3G/4
G
APP
Public
Cloud
365
Threat-centric services
elevate branch defense
NEW
Sourcefire IDS
CloudWeb Security
Cisco Confidential
53
Application-Aware Services
Akamai Connect
NEW
Now Shipping
Now Shipping
Internet
MPLS
3G/4G
ISR-AX
Enabling New
Digital Experiences
Cisco Confidential
54
Threat-Aware Services
NEW
Limited Availability
2HCY2014
Available 1HCY15
Cisco Confidential
55
Virtualized Services
Framework
Flexible virtualized application services
Converged Branch
with UCS E-Series
Pay-as-You-Grow
Performance and services on demand
Cisco Confidential
56
One Policy
Who
INTEGRATED PARTNER
ECOSYSTEM
What
When Where
How
Access Policy
Guest
Visitor
BYOD
Employee
User
CXO Level
Secure
Access
Compromised
Device
58
CiscoCONTROL
Confidential
ENFORCE THE RIGHT LEVEL OF ACCESS
CONTAIN MALICIOUS NETWORK THREATS
Confidential
Patient Records
Who: Doctor
What: Laptop
Where: Office
Internal Employee
Intranet
Who: Doctor
What: iPad
Where: Office
Internet
Who: Guest
What: iPad
Where: Office
EMM
Secures Actual Device
SOLUTION
Cisco ISE
Secures Network Access
ISE + EMM
Together
Cisco Confidential
60
One Management
Cisco
Prime!
Cisco Confidential
62
Data Center
Assurance
Simplified operations
management
Campus Branch to DC
2013-2014 Cisco and/or its affiliates. All rights reserved.
End-to-end application
experience and visibility
Day 0 to Day N
Application-Centric
Cisco Confidential
63
Wireless Management
Network Health
Troubleshooting
End-user troubleshooting
authentication and access
Client tracking
Integration with
ISE
Cisco
MSE and
Cisco Confidential
64
Lifecycle
Management
Discovery
and
Inventory
Configura
tion
Archive
and SWIM
Platforms
Supported
Managem
ent
(Syslog
and Trap
Processing
)
CAT2960
EEM
Trustsec
Work
Center
Wireshark
Quality of
Service
CAT
3560,
3650,
3750,
3850
Performa
nce
Managem
ent
CAT4500
User
Tracking
Configura
tion
(Features:
ACL,
VLAN,
etc)
CAT
6500,
CAT6800
EoL/EoS
Reports
Cisco Confidential
65
Plug and
Play (New
device in
network)
Discovery
and
Inventory
ISR
800
Series
Platforms
Supported
IWAN
Management
Configurati
on Archive
and SWIM
DM-VPN
AVC
Visibility
and
Performanc
e
Performanc
e Routing
Fault
Manageme
nt (Syslog
and Trap
Processing)
ISR G1
Series
Quality of
Service
Configurati
on
(Features:
VPN, ACL,
VLAN, etc)
Performanc
e
Manageme
nt
ISR G2
1900
2900
3900
ISR
4300
4400
Zone based
firewall
ASR
1000
Series
WAAS
Cisco Confidential
66
Guided Workflow to
help design and deploy
IWAN on your branch
or hub
Cisco Confidential
67
Cisco Confidential
68
Network as Enforcer
0101
0100
1011
0101
0100
1011
0101
0100
1011
0101
0100
1011
Cisco Confidential
70
Botnet Detection
Denial of Service
Fragmentation Attack
Worm Propagation
Worm Infected Host Scans and Connects to the Same Port Across
Multiple Subnets, Other Hosts Imitate the Same Above Behavior
Data Exfiltration
Large Outbound File Transfer VS. Baseline
2013-2014 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
71
Collects and analyzes NetFlow data and brings it together with user
information, application awareness, and other security context to provide
pervasive visibility and security intelligence across the network.
1/30/2
Cisco Confidential
72
72
Perimeter
(Inbound)
Infiltration and
Backdoor establishm ent
Reconnaissance and
Netw ork Traversal
enterprise network
C2 Server
Attacker
Data
Exfiltration
Admin Node
Perimeter
(Outbound)
2013-2014 Cisco and/or its affiliates. All rights reserved.
Exploitation and
Privilege Elevation
Staging and
Persistence (Repeat 2,3,4)
Cisco Confidential
73
e.g. Communication with Malicious Hosts, Internal Malware Propagation, Data Exfiltration
Cisco Confidential
74
Conclusion
One Network
Co ntrollers and Converged Access Switches: Common OS, UADP ASIC
MDM
SIEM
S ta ckable Switches
2960X/XR
4500-E w/Sup. 8 -E
Access P oints
One Management
Cis co Prime Infrastructure
3650
38 50
S witching P latform
S ma ll to Midsize
En terprise
1600
Fe a ture-Optimized
En terprise
2600
M idsize to Large
En terprise
3600
H igh-Density
En terprise
Lo w
P rofile
La r ger
D e ployments
3700 w/HDX
1530
1550
Conclusion
https://tools.cisco.com/WWChannel
s/LOCATR/performBasicSearch.do
Brian Avery
bravery@cisco.com
Learn more at:
http://www.cisco.com/go/unifiedaccess