“Del Cuaderno al iPad Wi-Fi en entornos docentes · · 2011-12-02Aruba Networks, Inc. 5 All rights reserved Trend#2: ... Aruba Networks, Inc. 8 All rights reserved ... 12/1/2011

CONFIDENTIAL

© Copyright 2011. Aruba Networks, Inc.

All rights reserved

CONFIDENTIAL


All rights reserved

“Del Cuaderno al iPad” Wi-Fi en entornos docentes

[email protected]

Presented by

Aruba Networks

November 2011

CONFIDENTIAL


All rights reserved

CONFIDENTIAL


All rights reserved 2

The Way We Learn Has Changed

Source: ECAR, 2010 Research Study 6, 2010

Evaluation of Evidence-Based Practices in Online Learning 2010

Mobile Devices:

Over 2/3rds of

students own an

internet-capable

device

Learning Apps:

60% increase in

interactive video

based curriculum

over the last 2 years

Multimedia Apps on

Mobile Devices

CONFIDENTIAL



Creating a New Network Imperative

Mobility in Classrooms,

Dorms, Public Venues,

Outdoor, etc

Device Proliferation &

Bring your own device

Heavy multimedia use

Seamless Access Across

from Campus to Remote

Predominately Data

Traffic

School Sanctioned

Devices

Mobility in Common

Areas Only

Disparate Networks

CONFIDENTIAL



Trend#1: Evolution of the Access Device

Ethernet

No need for QoS

One per user

IT sanctioned

Security per port

Ethernet and Wi-Fi

Data QoS

One per user

IT sanctioned

Security per user

Wi-Fi only

Multimedia QoS

Many per user

Employee owned

Security per context

CONFIDENTIAL



Trend#2: Converge Wireless with Wired

Wireless

Wired

2002-8

Wireless

Wired

2009-11

• Primary access: Wired

• WLAN overlay

• Different policies for

Wired & Wireless

• Proliferation of mobile devices

• Wired and wireless still

managed separately

• Lots of network devices:

switches, controllers, FW, NAC

2011

• Primary access:

Wireless

• Wired network for fixed

devices

• Single management and

security

Unified

CONFIDENTIAL



Need for a NEW Access Architecture

WIRELESS WIRED VPN REMOTE

OFFICE OUTDOOR

Aruba MOVETM

Context-based Policies User, Device, Location and Application Aware

Allow blackberry, but not

Android phones

Control Network Usage

Only allow email & internet

on smartphones

Control Applications

Block certain websites

when tablets are on LAN

Control Content

Exec floor has higher

bandwidth for iPads

Control Bandwidth

Inventory type of devices on

the LAN

Device Visibility

Quarantine un-provisioned

devices for configuration

Device Provisioning

CONFIDENTIAL


All rights reserved

CONFIDENTIAL


All rights reserved

The Context: The key element enabling mobility

CONFIDENTIAL



Classify Users

Role of user is assigned per authentication credentials

Allows zero touch installation of network access policies

Prevents multiple networks for different user groups

× VLAN assignment for access control performed per SSID

× Each network access policy is manually configured per VLAN

× Different network configuration for different user groups

User Aware Port, VLAN Aware

vs. Marketing IT

Executives

“E

mp

loyee N

etw

ork

”

“IT

Netw

ork

”

“Mark

eting

Netw

ork

”

“Executive Network”

CONFIDENTIAL



Classify Devices

DHCP and HTTP signature

matching within ArubaOS

identifies device type and model

Enables per user and per device

access control, enrollment,

authentication and management

vs.

× All devices and users assigned to same network access policy, increasing risk

× Network operations costs increase due to manual troubleshooting and monitoring

Device Aware Port, VLAN Aware

CONFIDENTIAL



Classify Applications

Stateful QoS for all applications, optimizes Wi-Fi bandwidth

Supports high density of users

Enables use of multiple applications on a single device

× Demands separate network configuration for different apps

× Limited user density

× Cannot support multiple applications on a single device

Application Aware Port, VLAN Aware

vs.

CONFIDENTIAL



Heat maps, data rates, and sensor coverage

provides network-wide visibility of devices,

APs, Rogues, and more

Classify Location

• Centralized Visibility Dashboard

– Displays accurate location information for all wireless users, rogues, and devices

– Up-to-date heat maps and channel maps for RF diagnostics

– Historical user location playback

– Easy import of existing floor plans and building maps

– VisualRF Plan provides off-line planning capabilities

– Multi-floor & Channel utilization

Historical Location Tracking by User Device

CONFIDENTIAL



Port and VLAN Aware

⊗ Limited policy enforcement

⊗ Hard to scale at large sites

⊗ Too costly to manage

Legacy Access

Device Aware

Auto enrollment

Per device policies

Aruba MOVE

User Aware

Role based policies

Per user visibility

Application Aware

Per application QoS

High density of devices

Date, Location Aware

Virtualized policy

configuration

The Context: Key Requirement for Mobility

CONFIDENTIAL



Only Context-Aware Access Network

VIA Agent Remote Nodes,

Remote & Instant APs Indoor and

Outdoor APs

Mobility Access

Switches

Mobility Services in Enterprise Cloud

Mobility

Controller

ClearPass

AirWave

Thin Access Devices

Introducing Aruba MOVE™: Access Network Architecture for Mobility

CONFIDENTIAL


All rights reserved

CONFIDENTIAL


All rights reserved

MOVE: Mobility Access Devices

CONFIDENTIAL



Aruba MOVE™ Access Devices

Aruba S3500 Series

Industry’s only mobility access switch, truly

unifying wireless and wired

Aruba AP-134/135

Industry’s only Gigabit AP with

firewall and spectrum analysis

Aruba Remote APs

Industry’s first Remote AP solution,

extending corporate services seamlessly

Aruba VIA on Mobility Controllers

Now available for MAC OS X

Aruba AP-175 Series

Aruba’s industry-leading 802.11n

technology – now available outdoors

WIRELESS

WIRED

VPN

CONFIDENTIAL



S3500: Zero-Touch Configuration

1. Assign Management IP

7. Configure QoS per

VLAN

8. Repeat with 2nd switch

9. Repeat with 3rd switch

and so on …

6. Configure 802.1X per

interface

5. Set Spanning Tree

priority

4. Assign ports to the

VLANs

1. Policies, VLANs,

Authentication

configured on Mobility

Controller

2. Connect switch to

LAN- DHCP or ADP finds

controller, image and

config pushed to S3500

Typical Layer 2 Switch Configuration Aruba Zero-Touch Configuration

3. Assign VLANs to the

access switch

2. Configure the trunk

port

Reduce managed points by 500x

S3500

CONFIDENTIAL



1

2

3

1

2

3

Wired VLANs

S3500: No VLANs on Edge Ports

Mobility VLANs

11

12

10

11

12

Guest VLANs

10

• Uniform security policy

across wired and wireless

• Visibility and control

over ALL users, independent of medium

• Simplified network provisioning- no VLANs, no ACLs at access switch

1

2

3

Wired AP

builds tunnel

to controller

Access security

services are

centralized

Provisioning is

simplified

CONFIDENTIAL


All rights reserved

CONFIDENTIAL


All rights reserved

MOVE: Mobility Services

CONFIDENTIAL



AirWave: Industry’s first WLAN NMS

Mobility

Controllers

Aruba

Cisco

Juniper/Trapeze

Motorola

Wired

Infrastructure

Aruba

Any MIB-II

compliant

device

Access

Points

Aruba

Cisco

Motorola

HP

more

Users &

Devices

Classification &

reporting for

Aruba MDAC

Integration with

MDM

Monitor

network activity

Outdoor /

Mesh

Aruba

AirMesh

Aruba AP175

The industry’s only platform with a single view of

the entire Access Network

CONFIDENTIAL



Aruba ClearPass SecureConnect

ClearPass

SecureConnect

Active

Directory

Access Network

Protected

Network

Access

Access

Policy

Impact to IT

Enforce Policy Across:

Any Access Network

Any User

Any Device

Minimize Device Risk: Ongoing posture

assessment & remediation

User Experience

Consistent network experience everywhere

CONFIDENTIAL



Aruba ClearPass SecureConnect

ClearPass

SecureConnect

Active

Directory

Access Network

Protected

Network

Access

Access

Policy

Impact to IT

Enforce Policy Across:

Any Access Network

Any User

Any Device

Minimize Device Risk: Ongoing posture

assessment & remediation

User Experience

Consistent network experience everywhere

Any Access Network

CONFIDENTIAL



Access Network

ClearPass

QuickConnect

OR

1. 2. Provision

credentials

& 802.1x

configuration

Protected

Network

Access 3.

Aruba ClearPass QuickConnect

User Experience

Simple self-service connectivity

Any Platform

Impact to IT

Eliminate the time to provision new devices

Protect users and the network with strong security

CONFIDENTIAL



Aruba ClearPass GuestConnect

Guest Experience

Maintain security/ compliance

Quickly integrates with leading network vendors

Doesn’t overburden IT staff

Impact to IT

Self-registration with SMS notification

Customized interface for phones, tablets and laptops

Advertising and branding

CONFIDENTIAL



Aruba AirWave Intelliview

User Experience

Impact to IT

Take back control with detailed security monitoring:

• Quickly isolate and resolve authentication issues

• Maximize network uptime

Network is always up & problems are quickly addressed

CONFIDENTIAL



CONFIDENTIAL


All rights reserved

CONFIDENTIAL


All rights reserved

MOVE in Action

CONFIDENTIAL



Adaptive Network for Smart Classrooms

Smart Classrooms are Stressing Campus Networks

Shared Wired Devices

1:1 Computing

Move & share

wired classroom

peripherals

without re-

provisioning ports

Accelerate 1:1

student computing

by securely and

easily provisioning

personal devices for

Wi-Fi access

Enhance curriculum

with eLearning where

multimedia is

identified and

prioritized over Wi-Fi

http://www1.us.dell.com/content/products/productdetails.aspx/print_1700n?c=us&cs=19&l=en&s=dhs

CONFIDENTIAL



Ottawa University: 100 iPad Test

Airwave Management

S3500 Mobility Access Switch

AP-135s

6000 Mobility Controller

Video Server

Video Transcoder

HD Video Source

Network Projector

100

iPads

WAN/Internet

Cloud Services

Apple TV

Electronic Assessment

Learning Management

Video-Based Curriculum

IPTV Video Distribution

Dynamic Presentation

Video Conferencing

Each Application Run Simultaneously over 100 iPads

CONFIDENTIAL



Broadcast

TV

Live Video

Feeds Stored

Content

Video

Server

Multicast

Router

Mobility

Controller

802.11n AP

15 HD + SD video

channels over 802.11n

campus wide

HD Quality Video

Optimized for Multicast

• IGMP proxy and intelligent forwarding

on Mobility Controller

• Multi-channel design and Spectrum

Load Balancing on APs

Guaranteed QoS

• Dynamic Multicast Optimization (DMO)

enables 802.11n rates and QoS for IP

multicast over the air

Customer Example

CONFIDENTIAL



Internet2 Ready with IPv6 Support

Integrates in a pure IPv6

environment

Role-based access with IPv6-

capable stateful firewall

More Clients = IP Depletion

v6: fe80::200:1/96

fe80::200:10/96

2001::200:10/96

2001::200:5e/96

GRE

Internet2 is now all IPv6

New

CONFIDENTIAL


All rights reserved

CONFIDENTIAL


All rights reserved

Thank You

CONFIDENTIAL



Cuadrante Mágico del Gartner Infraestructura WLAN

Copyright © Gartner, Inc. "Magic Quadrant for Wireless LAN Infrastructure, 2009" by Michael J. King and Timothy Zimmerman, 12 February 2009 . The Magic Quadrant is copyrighted 2009 by Gartner, Inc. and is reused with permission. The Magic Quadrant is a

graphical representation of a marketplace at and for a specific time period. It depicts Gartner’s analysis of how certain vendors measure against criteria for that marketplace, as defined by Gartner. Gartner does not endorse any vendor, product or service depicted

in the Magic Quadrant, and does not advise technology users to select only those vendors placed in the “Leaders” quadrant. The Magic Quadrant is intended solely as a research tool, and is not meant to be a specific guide to action. Gartner disclaims all

warranties, express or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

CONFIDENTIAL



Referencias en Educación

http://www.caib.es/root/index.do?lang=es

http://www.google.es/imgres?imgurl=https://arco.esi.uclm.es/svn/public/doc/logos/logouclm_3_bn.jpg&imgrefurl=http://arco.esi.uclm.es/&usg=__yNs1fyGL9S6u5LXiCad71cT2yFk=&h=707&w=1132&sz=124&hl=es&start=5&um=1&itbs=1&tbnid=MzgBoGAQrC3_pM:&tbnh=94&tbnw=150&prev=/images?q=universidad+castilla+la+mancha&um=1&hl=es&sa=N&rls=com.microsoft:en-us:IE-SearchBox&rlz=1I7SKPB_en&tbs=isch:1

http://www.google.es/imgres?imgurl=http://www.gusano.org/contingut/imatges/telefonicaB.jpg&imgrefurl=http://www.gusano.org/index.php?section=2&typework=4&usg=__esxGPdKvzvxuey_46fNNhNIoCLE=&h=350&w=438&sz=86&hl=es&start=4&um=1&itbs=1&tbnid=TgYg8fo7xL5RcM:&tbnh=101&tbnw=127&prev=/images?q=universidad+telefonica+barcelona&um=1&hl=es&sa=N&rls=com.microsoft:en-us:IE-SearchBox&rlz=1I7SKPB_en&tbs=isch:1

http://www.edu.xunta.es/web/

Documents

“Del Cuaderno al iPad Wi-Fi en entornos docentes · · 2011-12-02Aruba Networks, Inc. 5 All rights reserved Trend#2: ... Aruba Networks, Inc. 8 All rights reserved ... 12/1/2011