Wireless - What Lies Ahead: Looking at LWAPP and Mobile Handset Develpment

Wireless – What lies
ahead
Looking at LWAPP and Mobile
Handset Develpment
Aybala C.S. Tut

Systems Engineer
acelebi@cisco.com
Presentation_ID © 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential 1
Agenda
 Distributed vs. Centralized WLAN Architecture
 Centralized Architecture and Infrastructure
 Mobile Handsets
 Q&A
Distributed vs.
Centralized WLAN
Architecture
Cisco Wireless LAN Portfolio
Distributed - Centralized
Distributed Solution Centralized Solution
Cisco Wireless
Management Control System
CiscoWorks CiscoWorks (WCS)
WLSE WLSE Express
Control
Catalyst 6500
Cisco WLAN
Series WLSM
Controllers
Cisco 1100, 1130, 1200, Cisco 1000, 1130, 1200,

1230, 1240, 1300 Access Access 1230, 1240 Access
Points Points
Autonomous Lightweight (LWAPP)
Applications
Cisco Compatible Extensions
and Wi-Fi Client Devices
Centralized Architecture
and Infrastructure
The Centralized Architecture
Cisco WLAN Controller
LW
A
Switch/Routed
PP
Network
Lightweight
Access Points
Understanding WLAN Controllers—1st/2nd
Generation vs. 3rd Generation Approach
 1st/2nd generation— 1st/2nd Generation
APs act as 802.1Q
translational bridge, putting
client traffic on local
VLANs
 3rd generation—Controller
bridges client traffic
centrally
3rd Generation
Understanding WLAN Controllers—The
WLAN Controller as a Network Device
 WLAN Controller
For wireless end-user devices, the controller is a 802.1Q bridge that
takes traffic of the air and puts it on a VLAN
From the perspective of the AP, the controller is an LWAPP Tunnel end-point
with an IP address
From the perspective of the network, it’s a Layer-2 device connected via one or
more 802.1Q trunk interfaces
 The AP connects to an access port—no concept of VLANs at the
AP
Centralized Solution Architecture
“Split-MAC” Approach
 Security policies
Wireless Controller  QoS policies
 RF management
 Mobility management
LWAPP
Division of Labor
Split MAC
 Remote RF interface
 MAC layer encryption
Lightweight
Access Points
Split – MAC
AP MAC Functions
 802.11: Beacons, probe response, authentication (if

open)
 802.11 control: Packet acknowledgement and
retransmission (latency)
 802.11e: Frame queuing and packet prioritization
(access to RF)
 802.11i: Encryption in AP
Split- MAC
Controller MAC Functions
 802.11 MAC mgmt:
(Re)association requests and
action frames
 802.11 Data: Encapsulate and
sent to AP
 802.11e resource reservation: Control protocol
carried to AP in 802.11 mgmt frames—signaling
done in the controller
 802.11i authentication and key exchange
Real-Time RF Management
Dynamic RF channel “1”
Channel
RF channel “6”
Assignment
RF channel “11”
Dynamic
Power
Optimization
• Eliminate coverage holes • Avoid interference/Improve performance

• Optimize coverage area • Reduce “hands on” WLAN mgmt
No Single Point of Failure
AP Redundancy
Cisco WLAN Controller
Ethernet Switch
Cisco
Access Point
No Single Point of Failure
WLC Redundancy
Primary WLCM Secondary WLCM
Primary and secondary controllers can be configured
Better Network Performance
Dynamic Load Sharing
Solving Performance & Capacity problems in high density

areas (e.g. conference rooms, cafeteria)…
16

17

18
Wireless LAN Controller Family
Wireless LAN Controllers
4400 2000
Catalyst 6500 Series Wireless

Services Module (WiSM)
WiSM
Switch and Router Platforms
Wireless LAN
Catalyst 3750
Controller Module
Switch
(WLCM) for ISR
Proven Platform for Mobile Access
Indoor Access Points
1130AG 1000
Indoor Rugged Access Points
1240AG 1230AG
Outdoor Access Points/Bridges
1500 1300
Cisco Wireless Control System (WCS)
World-Class Network Management
Features
 Client troubleshooting (via CCX)
 Planning, configuration, monitoring, location,
IDS/IPS, and troubleshooting
 Hierarchical maps
 Intuitive GUI and templates
 Policy based networking (QoS, security, RRM,
etc.)
Benefits
 Lower OPEX and CAPEX
 Better visibility and control of the air space
 Consolidate functionality into a single
management system
 Determines location and voice readiness
WCS Dashboards
Network Monitor
Location Tracking Services
 1st integrated location solution
 Real-time location services
 Advanced RF fingerprinting
 Simultaneous real-time tracking
10,000+ devices
 API Third Party Applications
 RF capacity management
 Intuitive management GUI
Cisco 2700 Series Wireless Location Appliance
Lightweight Access
Point Protocol (LWAPP)
What is LWAPP?
 The Light Weight Access Point Protocol (LWAPP) is

used between an AP and a WLAN Controller.
 Why is this critical to a scalable network deployment?
Customers want to manage a network, not individual network
elements
LWAPP allows a controller to manage the APs
LWAPP Tunnel
LWAPP involves...
 Low overhead communication between Wireless LAN
Controllers and Access Points
 1-4 kbps overhead with associated clients
 Data traffic encapsulation in:
UDP source port 1024
Destination port 12222
 Control traffic encapsulation in:
UDP source port 1024
Destination port 12223
 AES encryption for control traffic ONLY
 For data traffic encrpytion use security protocol like
WPA2 with AES encryption
Cisco Centralized WLAN Model
LWAPP defines control messaging and
data encapsulation between access
points and centralized WLAN controller
Switched/Routed Wired Network
Lightweight Wireless LAN

Access Point Controller
LWAPP Tunnel
Control Messages
Data Encapsulation
Ingress/Egress point
from/to upstream
switched/routed wired
network (802.1Q trunk)
Access Points are Much of the traditional

“lightweight”—controlled by WLAN functionality moved
a centralized WLAN from access points to
controller centralized WLAN controller
Cisco Centralized WLAN Model
LWAPP carries all communication between access
point and controller Radio resource management
L2 or L3 transport Mobility management
Mutual authentication—X.509 certificate based
LWAPP control AES-CCM encrypted
Data encapsulation
Switched/Routed Wired Network
Lightweight Wireless LAN

Access Point Controller
LWAPP Tunnel
Control Messages
Data Encapsulation
Ingress/Egress point
from/to upstream
switched/routed wired
network (802.1Q trunk)
Remote RF interface
Real-time 802.11 MAC
RF spectral analysis Security management
WLAN IDS Signature analysis QoS policies enforcement
Centralized configuration, firmware management
Northbound management interfaces
Centralized Solution Architecture
LWAPP discovery process
The LWAPP discovery process provides
• Ease of AP installation
• Automatic redundancy in case of controller Wireless Controller
failure (self healing)
Layer2 and Layer3

1. LWAPP Layer 2 broadcast (FF.FF.FF.FF)
• Controller on same subnet can answer request
LWAPP
2. LWAPP Layer 3 broadcast (255.255.255.255)
• Controller on same subnet can answer request
• Use Cisco ‘ip-helper’ and ‘forward protocol’ to get to the
controller
3. LWAPP Layer 3 with DHCP option 43
• Vendor option 60 ‘Airespace.AP1200’
• Vendor option 43 ‘controller IP address’
4. LWAPP Layer 3 with DNS
• Host ‘CISCO-LWAPP-CONTROLLER’
Lightweight
5. Over The Air Provisioning (OTAP) Access Points
After the initial controller discovery phase the AP can be configured with a primary, secondary or
tertiary controller. Use ‘Master’ controller for newly added AP’s
Why LWAPP ?
 Longterm goal: vendor interoperability
 Secure, zero touch – configuration
 Scalability throught centrlized management and configuration
 Visibility to networkwide attacks and interference across a system
 Management
Dynamic, systemwide RF management, including a host of features for smooth wireless operations, such as dynamic
channel assignment, transmit power control, and load balancing.
Single graphical interface for enterprise-wide policies, including VLANs, security, and QoS.
 Security
Enterprise-wide security policies that encompass all layers of a wireless network, from the radio layer through the MAC
layer, and into the network layer. This makes it easier to provide uniformly enforced security and QoS or user policies that
can address the particular capabilities of different classes of devices, such as handheld scanners, PDAs, or notebook
computers.
 Mobility
Cellular-like fast handoffs.
Excellent support for real-time, mobile applications such as voice over WLAN .
LWAPP Architecture
Security Benefits Physical
 Configuration not maintained on AP

Configuration are automatically downloaded
from WLC over AES encrypted link
 APs with console ports can have IP address
and WLC address configured
 APs authenticated to WLC by X.509
certificate
The WLC can also MAC authenticate
 WLC authenticated to AP by X.509 certificate
 WLC certificate is installed at manufacture
LWAPP Architecture
Security Benefits Network
 AP Communication with WLC via well known

UDP ports
UDP Ports
 APs only communicate with WLC
management and ap-management interfaces
 The APs have no remote management
interface
No SNMP
No Telnet, SSH
…
Mobile Handset
Development –
Nokia E-Series Dual – Mode
Phone
Top 4 Reasons Every CXO Needs a
Pervasively Deployed Wireless System
Security Guest Access
Hacker
Rogue APs—Employees create opening

to enterprise network unknowingly
FTC FINES
Voice Location
 WiFi enabled voice

 7920, Blackberry, Treo
 Better coverage
 Reduced Cost
 Integrated with IP PBX
The way we work is changing …
 41% of US workers can be
considered “mobile” spending
20% of more of their time away
from their primary workspace1
 Dual Mode (WiFi/Cellular)

handsets expected to reach over
29m units by 20093
1
Yankee Group (2007), 2
Vision Gain, 3 Infonetics
Mobile Business Solutions from
Cisco and Nokia
Mobile
Endpoints Nokia Eseries Cisco Unified
Dual Mode Phones Wireless IP Phone
7921G
Media
Control
Cisco Unified Communications Cisco Unified Communications
Manager Manager Express
Voice-Ready
Wireless LAN
Infrastructure WLAN Aironet Access
WCS
QoS
Controller Points Services
Dual – Mode Phone – Overview
 Delivered in partnership with Nokia through the SolutionsPlus
partner program
 Nokia Eseries dual mode handset with Skinny Client Call
Control Protocol (SCCP) client works on GSM networks and
Cisco VoWLAN campus networks
 In Cisco VoWLAN campus network, Nokia Eseries handsets
operates as an IP Phone with Cisco Unified Communications
Manager or Cisco Unified Communications Manager Express
 In public GSM network, operates as a GSM phone
Nokia Eseries Dual-Mode Handsets
Supported
 S60 3.0 Nokia mobile
handsets supported are:
Nokia E60
Nokia E61
Nokia E61i
Nokia E65
Nokia E61i
Nokia E61
Nokia E65
Solution Architecture
Mobile Business Solution Architecture
Business
PSTN 3
Trunk
Cisco Unified
Wireless
Network Enterprise Network Cellular Network
WLAN
Controller IP Phones
WLAN AP
1
CCX
v3 Cellular Mode
1
Nokia WiFi Mode (Skinny Client Control
SCCP
Mobile
2 2 Protocol SSCP Client) via Cisco
Unified Wireless Network
Client
Cisco Unified Communications
Operates as 802.11 Phone 3 Manager or Cisco Unified
Communications Manager Express
Route incoming calls to Nokia Eseries
handset within campus WLAN network
Manager or Cisco Unified
Communications Manager Express
OUTSIDE
INSIDE
SCCP Cisco
Cellular Network SCCP Wireless
Controller
PSTN
Gateway Access
Switch Points
802.11
802.11
Shared
line DN
Nokia Cisco Unified

Eseries Wireless IP
Phone 7921G
Handset
Least cost routing for outgoing calls
placed from campus WLAN network
Communications Manager
Express
OUTSIDE
INSIDE
Cellular Network
SCCP
PSTN Cisco
SCCP Wireless
Controller
Gateway
Switch Access
Points
802.11
Nokia
Eseries
Handset Cisco Unified
Wireless IP
Phone 7921G
Least cost routing of internal calls
placed from campus WLAN network
Communications Manager
Express
OUTSIDE
INSIDE
Cellular Network
SCCP
PSTN Cisco
SCCP Wireless
Controller
Gateway
Access
Points
Switch
802.11
Nokia
Eseries
Handset
Cisco Unified
Wireless IP
Phone 7921G
Cisco VoWLAN Network Characteristics
 802.11b/g
 Cisco Compatible Extensions
(CCX) Version 3
 No seamless handoff
between cellular and WLAN
networks
 Requires Intellisync Call
Connect Version 1.0
 QoS is marked by Nokia
Q&A

Wireless - What Lies Ahead: Looking at LWAPP and Mobile Handset Develpment

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Wireless - What Lies Ahead: Looking at LWAPP and Mobile Handset Develpment

Uploaded by

Copyright:

Available Formats

Wireless – What lies

Aybala C.S. Tut

 Distributed vs. Centralized WLAN Architecture

 Centralized Architecture and Infrastructure

Cisco 1100, 1130, 1200, Cisco 1000, 1130, 1200,

Cisco WLAN Controller

 802.11: Beacons, probe response, authentication (if

• Eliminate coverage holes • Avoid interference/Improve performance

Cisco WLAN Controller

Primary WLCM Secondary WLCM

Primary and secondary controllers can be configured

Solving Performance & Capacity problems in high density

Solving Performance & Capacity problems in high density

Solving Performance & Capacity problems in high density

Catalyst 6500 Series Wireless

Switch and Router Platforms

Indoor Access Points

Indoor Rugged Access Points

Outdoor Access Points/Bridges

Cisco 2700 Series Wireless Location Appliance

 The Light Weight Access Point Protocol (LWAPP) is

Switched/Routed Wired Network

Lightweight Wireless LAN

Access Points are Much of the traditional

Lightweight Wireless LAN

Layer2 and Layer3

 Configuration not maintained on AP

 AP Communication with WLC via well known

Rogue APs—Employees create opening

 WiFi enabled voice

 Dual Mode (WiFi/Cellular)

Nokia Cisco Unified

You might also like