Konvergens AL-E hálózati megoldások Converged Edge esettanulmány

Konvergens AL-E hálózati megoldások Converged Edge esettanulmány Luky Gábor - Alcatel-Lucent Enterprise Pálinkás Péter Young Bts. 2015. május 1

Ügyfél profil bemutatás Ügyfél név Tevékenységi terület: UDS Alkalmazottak száma: 200 Telephelyek száma: Vállalat pénzügyi helyzete: Ügyfél igény: Jelenlegi állapot: gépkocsi alkatrészek gyártása és forgalmazása Egy összefüggő L2 hálózat különböző gyártók LAN eszközeiből Mindenütt FE hozzáférés FE és GE uplinkekkel, PoE támogatás nincs 1 telephely / 2 elkülönített épület (iroda épület, fejlesztési és gyártási épület) jó LAN rekonstrukció IP telefónia, IP kamera és vezeték nélküli csatlakozás támogatására Az IP telefónia az iroda épületben már pilot jelleggel működik, PoE táplálása és QoS biztosítása nélkül Szerverek GE sebességen csatlakoznak redundancia nélkül Egy VLAN az összes szolgáltatás számára (adat, hang, gyártás vezérlés) priorizálás nélkül problémák a gyártás vezérlési kommunikációban Nincs hálózati hozzáférés szabályozás nem kívánt felhasználói eszközök a hálózaton (wifi routerek, okostelefonok, stb.); a vendég felhasználók hálózatba engedése és hozzáférésük szabályozása nem megoldott Vezeték nélküli hozzáférés hivatalosan csak néhány tárgyalóban elérhető de igényelt a felhasználók részéről 2 COPYRIGHT 2011 ALCATEL-LUCENT ENTERPRISE. ALL RIGHTS RESERVED.

Projekt bemutatása Projekt neve: LAN rekonstrukció 2015 Kapcsolódó projektek: IP telefónia teljes körű bevezetése; IP kamera rendszer kiépítése; WLAN hálózati kialakítása az iroda épületben és a fejlesztési szinten Követelmények: Iroda épület Server farm: szerverek redundáns gigabites csatlakoztatása. Virtualizált szerver környezetek támogatása Access switchek: 3 szint 80 és 40-40 aktív GE végponttal, PoE táplálás IP telefonok és néhány IP kamera számára Teljes 802.11n Wifi lefedettség Fejlesztési és gyártási épület Access switchek: 2 szint 75 és 40 aktív végponttal, Fejlesztési szint GE portok, gyártási szint elég a FE sebesség is, PoE táplálás IP telefonok és az IP kamera számára (főleg gyártósor) Teljes 802.11n Wifi lefedettség a fejlesztési szinten, néhány kijelölt terület lefedése a gyártósori szinten 3 COPYRIGHT 2011 ALCATEL-LUCENT ENTERPRISE. ALL RIGHTS RESERVED.

Projekt bemutatása Általános követelmények: Access switchek redundánsan csatlakozzanak a központi switchekre QoS biztosítása a hang, CCTV és gyártás vezérlési forgalom számára Authentikáció minden hálózatra csatlakozó eszköz számára (PC-k, IP telefonok, vezeték nélküli készülékek), hozzáférés szabályozás a felhasználó/eszköz típus szerint (meglévő Active Directory szerver segítségével). Egyszerű, de azonosításhoz kötött vendég hozzáférés biztosítása Központilag menedzselt vezeték nélküli hálózat Központilag menedzselhető LAN megoldás 4 COPYRIGHT 2011 ALCATEL-LUCENT ENTERPRISE. ALL RIGHTS RESERVED.

Meglévő hálózati topológia Office/HQ Research & production 3rd floor 2nd floor 2nd floor 1st floor 1st floor Grand floor basement Server Farm Indoor optical cabling Outdoor optical cabling 5

STATE OF MANY ENTERPRISE NETWORKS TODAY LAN NMS WLAN NMS Employee Spaces Guest Area VPN Network Infrastructure Separate Security Policies for LAN, WLAN, and VPN LAN WiFi WLAN Access Separate QoS Policies Separate Management How about Voice? LAN Security LAN QoS WLAN QoS WLAN Security How about QoS + Security for Voice over Wi-Fi? NETWORKS NEED TO EVOLVE! 6

ALCATEL-LUCENT ENTERPRISE UNIFIED ACCESS

UNIFIED ACCESS SOLUTIONS FOR ENTERPRISE APPLICATION FLUENT NETWORK (AFN) FRAMEWORK ARCHITECTURE SIMPLE, SCALABLE, SECURE FOR NEXT GENERATION BYOD NETWORKS APPLICATION FLUENT NETWORK CONTROL UNIFIED SECURITY POLICIES FOR LAN + WLAN DYNAMIC, CONTEXT-AWARE QoS AND PERFORMANCE TUNING OPERATIONS UNIFIED ACCESS (ONE MANAGEMENT FOR LAN + WLAN) EASY and LOW-TOUCH PROVISIONING and MAINTENANCE 8

NEW NETWORK DESIGN PROPOSITIONS

3 AREAS OF POTENTIALLY HUGE SAVINGS CAPEX & OPEX CORRIDOR AP ACCESS ACCESS SWITCHES CORRIDOR AP DISTRIBUTION LAYER CORE LAYER CL SWITCHES DL SWITCHES IPTV Laptop IP Phones OFFICE ROOM TRADITIONAL NETWORKS ARE NOT OPTIMIZED FOR THE FUTURE OF UNIFIED ACCESS, VIRTUALIZATION, AND CLOUD-READY SERVICES 10

SAVINGS BETWEEN ACCESS AND DISTRIBUTION EACH OFFICE ROOM REQUIRES 4-5 PORTS IN THE IDF ACCESS SWITCH ONLY 1 PORT NEEDED HERE! DIST. SWITCH In-Room AP (w/built-in Switch) Laptop IPTV IP Phones Printer OFFICE/MEETING ROOM AP205H Wall Mount SUPERIOR IN-ROOM COVERAGE, INSTEAD OF 4-5 CABLE PULLS PER ROOM, ONLY 1 IS NEEDED, REDUCING COSTS Laptop 75% LESS PORTS REQUIRED AT IDF! IP Phones IPTV OFFICE/MEETING ROOM 11

802.11N vs. 802.11AC APs AP103 802.11n Dual radio 300 Mbps 2x2:2SS Entry Level AP103H 802.11n Dual radio 300 Mbps 2x2:2SS 3 port int. switch 30,000,000 25,000,000 Triple the speed of your wireless network 20,000,000 15,000,000 10,000,000 AC cleints are already here 5,000,000 0 2% WLAN ACCESS POINTS UNITS 18% 35% 65% 81% 88% AP204/205 802.11ac Dual radio 900 Mbps 2x2:2SSradio.11ac.11n.11a/b/g 90% 78% 64% 35% 8% 4% 19% 12% AP205H 2013 2014 2015 2016 2017 2018 802.11ac Dual radio 900 Mbps 2x2:2SS 4 port int. switch 12

OmniAccess WLAN The most scalable and modular WLAN access solution Autonomus APs Simple, ease to install Enterprise grade WLAN solution Intuitive WEB management Add some other APs (if required) Self organizing Virtual controller managed No need for hw controller & licenses Integrated WLAN security and Spectrum monitoring Integrated captive portal for guest access Add Controller and licenses (if required) Central security Advanced WLAN features Deployed and managed as an overlay Lower opex for large WLANs Add remote APs (if required) Creates secure VPN tunel to HQ and provide Ent. WLAN anywhere Ease to deploy home office solution Any AP can be used as remot AP Special remote APs with integrated wired switch 13

SAVINGS IN DISTRIBUTION AND CORE Floor 8 Floor 7 Office Building Access/Dist. Switches FOR EVERY 8 IDF SWITCHES, 16 PORTS CONSUMED AT THE CORE ADVANCED ACTIVE-ACTIVE 20 Gbps SELF-HEALING NETWORK NO SPANNING TREE, NO BLOCKED PORTS, NO LOOPS ONLY 2 PORTS NEEDED PER STACK! Floor 6 Floor 5 Floor 4 Floor 3 Floor 2 Floor 1 CORE SWITCHES CORE SWITCHES 88% LESS PORTS REQUIRED AT CORE! 14

FIBER PATCH PANEL ARE YOU WORRIED ABOUT YOUR EXISTING CABLING? YOUR PASSIVE INFRASTRUCTURE DOES NOT NEED TO CHANGE Floor 8 Floor 7 IDF Switches MDF ROOM ALL YOU NEED ARE FIBER PATCH CABLES Floor 6 Floor 5 Floor 4 TO ACHIEVE THIS! Floor 3 Floor 2 Floor 1 15

WINNING THE ACCESS INVESTMENT PROTECTION: 1G SW UPGRADABLE TO IN THE SAME SWITCH! Energy Efficient Ethernet (EEE) 802.3az OS6450 Up to 384 ports in a stack Simple Operation MAIN CHARACTERISTICS 24-port and 48-port models with two GigE or ige uplinks RJ-45, RJ45 & PoE+ and SFP port versions Up to eight switches in local or remote stack (up to 10km) Optional backup power, optional Metro Ethernet features license Soft upgrades: GigE to ige uplinks, Fast Ethernet to GigE access Basic L3 routing: IPv4 and IPv6 Universal Network Profiles: Policy based access, TYPICAL DEPLOYMENT Access switch in converged campus networks Carrier and Service Provider Ethernet Access Remote Stacking Investment Protection BPS 16

SPEAKING OF CORE...YOU NO LONGER NEED A LARGE CHASSIS! INTRODUCING THE OMNISWITCH 6900 COMPACT CORE VIRTUAL CHASSIS TECHNOLOGY OS6900 VIRTUAL CHASSIS OS6900 90% LESS RACKSPACE = LESS POWER CONSUMPTION, HEAT DISSIPATION AND COOLING COSTS = EXTREME TCO SAVINGS $$$ Newer small form factor core devices can enable network managers to reduce CAPEX by 30% to 70%, and save 30% or more on OPEX, compared with chassis-based switches 17 - Gartner, Feb. 2013

WINNING THE CORE MAIN CHARACTERISTICS Can be used as a core and/or DC switch OS6900 VIRTUAL CHASSIS Stackable ige LAN switch, 1.28 Tb/s switching capacity, sub-microsecond latency Redundant power,front to back or back to front cooling models 20-port and 40-port models with line card slots; 32 port 40G QSFP fixed modell BASE-T and SFP+ port models, BASE-T, SFP+, QSFP and Fiber Channel cards Advanced L3 routing: VRF, Multicast, IPv4 and IPv6 HIGH PERFORMANCE PAY AS YOU GROW (40G) LOWER CAPEX / OPEX Universal Network Profiles; Policy based VM movement, Fiber Channel Connecivity Automatic Fabric creation, In Service Software Upgrade, Shortest Path Bridging RESTful API and OpenFlow for SDN, Virtual chassis technology ISSU OS6860E Virtual Chassis BPS Multimedia Fluency Application Fingerprinting MAIN CHARACTERISTICS 24-port and 48-port models with four ige uplinks RJ-45, RJ45 & PoE+/++ and SFP port versions Advanced L3 routing: VRF, Multicast, IPv4 and IPv6 Up to eight switches in virtual chassis (links up to 100m) Optional choice of standard or advanced backup power Universal Network Profiles: Policy based access Network Analytics and Control with L2-L7 traffic inspection RESTful API and OpenFlow for SDN Can be used as a core switch for smaller networks 18

25 26 27 28 29 30 32 33 34 35 36 37 38 39 40 41 43 44 45 46 47 48 25 26 27 28 29 30 32 33 34 35 36 37 38 39 40 41 43 44 45 46 47 48 25 26 27 28 29 30 32 33 34 35 36 37 38 39 40 41 43 44 45 46 47 48 25 26 27 28 29 30 32 33 34 35 36 37 38 39 40 41 43 44 45 46 47 48 OK1 OS6860E-24 OK1 VC PS BPS GRN OK2 OS6860E-24 RS232 VC PS BPS GRN OK2 RS232 25 26 25 26 VFL/29 27 28 VFL/30 VFL/29 27 28 VFL/30 25 26 27 28 29 30 32 33 34 35 36 37 38 39 40 41 43 44 45 46 47 48 25 26 27 28 29 30 32 33 34 35 36 37 38 39 40 41 43 44 45 46 47 48 25 26 27 28 29 30 32 33 34 35 36 37 38 39 40 41 43 44 45 46 47 48 Offered solution - ver.1 Office buliding Virtual chassis with optical stacking Aggregated 2/4 GE core uplinks Compact Core stack with GE and some server ports Research & production building Cab: 3rd floor Cab: 2nd floor Cab: 1st floor 1G 1G MC-LAG OS6860E-24 OS6860E-24 MC-LAG Server Farm VFL MC-LAG 1G 1G Cab: 2nd floor Cab: 1st floor L Grand floor Cab: Basement 8% price difference with 802.11ac APs 19

25 26 27 28 29 30 32 33 34 35 36 37 38 39 40 41 43 44 45 46 47 48 25 26 27 28 29 30 32 33 34 35 36 37 38 39 40 41 43 44 45 46 47 48 25 26 27 28 29 30 32 33 34 35 36 37 38 39 40 41 43 44 45 46 47 48 25 26 27 28 29 30 32 33 34 35 36 37 38 39 40 41 43 44 45 46 47 48 OK1 OS6860E-24 OK1 VC PS BPS GRN OK2 OS6860E-24 RS232 VC PS BPS GRN OK2 RS232 25 26 25 26 VFL/29 27 28 VFL/30 VFL/29 27 28 VFL/30 25 26 27 28 29 30 32 33 34 35 36 37 38 39 40 41 43 44 45 46 47 48 25 26 27 28 29 30 32 33 34 35 36 37 38 39 40 41 43 44 45 46 47 48 25 26 27 28 29 30 32 33 34 35 36 37 38 39 40 41 43 44 45 46 47 48 Offered solution - ver.2 Office buliding 2 x core connections Only license upgrade and transceiver replacement Research & production building Cab: 3rd floor Cab: 2nd floor Cab: 1st floor MC-LAG OS6860E-24 OS6860E-24 MC-LAG Server Farm VFL MC-LAG Cab: 2nd floor Cab: 1st floor OS6450-48 L Grand floor Cab: Basement ONLY 15% price difference compared to aggregated GE core 20

25 26 27 28 29 30 32 33 34 35 36 37 38 39 40 41 43 44 45 46 47 48 25 26 27 28 29 30 32 33 34 35 36 37 38 39 40 41 43 44 45 46 47 48 25 26 27 28 29 30 32 33 34 35 36 37 38 39 40 41 43 44 45 46 47 48 25 26 27 28 29 30 32 33 34 35 36 37 38 39 40 41 43 44 45 46 47 48 E M F OK CONSOLE E M F PS OK E M F EMF CONSOLE PS E M F EMF CLASS 1 LASER PRODUCT CLASS 1 LASER PRODUCT OS-XNI-T8 1 2 OS-XNI-T8 1 2 4 4 6 8 6 8 7 7 25 26 27 28 29 30 32 33 34 35 36 37 38 39 40 41 43 44 45 46 47 48 25 26 27 28 29 30 32 33 34 35 36 37 38 39 40 41 43 44 45 46 47 48 25 26 27 28 29 30 32 33 34 35 36 37 38 39 40 41 43 44 45 46 47 48 Offered solution - ver.3 Office buliding Advance core solution with OS6900 DC solutoin ready for FCoE connections, native FC and 40G upgrade Research & production building Cab: 3rd floor Cab: 2nd floor Cab: 1st floor MC-LAG OS6900-X20 OS6900-X20 OS6900-X20 OS6900-X20 MC-LAG Server Farm VFL MC-LAG Cab: 2nd floor Cab: 1st floor OS6450-48 L Grand floor Cab: Basement ONLY 30% price difference with Compact Core-DC solution 21

UNIFIED ACCESS NETWORK SERVICES NETWORK SERVICES AND PREMIUM NETWORK SERVICES Corporate Directory Guest Management Corporate Directory User Profile: VLAN, ACL, QoS Static policies: user, app Pre-defined Guests only Mac authentication BYOD user authentication Secure Unified Access WLAN Directory Guest Management ClearPass Premium Network Services User Profile: VLAN, ACL, QoS Dynamic policies: user, app, time, device, location Advanced Guest management Device fingerprinting Comprehensive BYOD: device pre/post check, onboarding With or without corporate directory Anything you need for your customer s solution: Use the existing corporate directory for Unified Access 22 Satisfy customer s premium demands for BYOD and Guest management

ALCATEL-LUCENT ENTERPRISE UNIFIED NETWORK MANAGEMENT SYSTEM OMNIVISTA NETWORK MANAGEMENT PLATFORM For 10 x ALU devices + for 10 x 3rd party deivces + for 10 x Virtual Machines Unified Management of network services Cohesive visibility for wired and wireless Unified application fluency provisioning, security provisioning and troubleshooting Provision data center/server room to assist virtual machines deployment & automation Analytics User/device/application visibility Dashboard, SLA Monitoring 1 APPLICATION FLUENT ONE VENDOR LOWER OPEX PAY AS YOU GROW UNIFIED MANAGEMENT VM SUPPORT SECURITY PROVISION TROUBLE SHOOTING 23

FREE Hardware Lifetime Warranty Plus a Training Program! We Provide a Free Hardware Lifetime Warranty 6250, 6400, 6450, 6850, 6850e, 6855, 6860, WLAN APs and 6900! With this HW warranty we are the ONLY vendor to: Include the Power Supplies (where most failures occur) Offer it on a Core Switch (/40G) Include the WLAN APs What about my Cisco Certified Staff? I don t want to re-invest time and money in training! 3-Day Delta Training for Cisco, HP, Avaya/Nortel certified personnel! 24

THREE REASONS To choose Alcatel-Lucent Enterprise A DISTINCTIVE VISION Application Fluent Network with Unified Access A FULLY CONVERGED SOLUTION Compacat Core-DC, network, WLAN, NMS A COMPETITIVE ADVANTAGE Best price/performance for today and the future 25

LAN/WLAN INSTALLATION GUIDE FOR SMB ENJOY TRAINING AT YOUR OWN PACE! 27