Embed Size (px)
Citation preview
Aruba Switching
Intelligent Edge Experiences
December 2018
2
Topics for Today’s Discussion
Switching in a Mobile First world
Access switching highlights
Introducing the Aruba core
Aruba in the Data Center
HPE’s Intelligent Edge Business Unit
Intelligent Edge Networking for the Mobile, Cloud, and
IoT Era
“Customer First, Customer Last” Dedicated Sales
and Support
Innovation Pioneers Leader in Wired and Wireless Networking
Innovation Hubs Santa Clara, CA -HQ, Portland, Roseville,
Canada, China, Costa Rica, India
4
Modern Design Philosophy: Aruba’s Heritage and Vision
BORN IN THE MOBILE-CLOUD AND IOT ERA
SOFTWARE-DEFINED, API-FIRST
OPEN, MULTI-VENDOR
SECURITY DRIVEN
5
Digital Disruption… Creating New Pressures on IT
IOT Growth in connections,
different protocols, new traffic patterns,
more exposure
DATA Too many data sources, integration challenges, difficult to gain insights
MOBILE AND CLOUD More business and mobile apps are business critical,
prioritization and segmentation required
The Network Never Sleeps Connectivity Needs to Adapt to New Requirements to easily accommodate
new mobile and IoT use-cases with the necessary controls
Smart Workplace Smart Store
Smart Hospitals
Smart Manufacturing
7
Old Infrastructure Is Not Ready
PROPRIETARY INFLEXIBLE MONOLITHIC HARD-CODED MANUAL
Mobile workplace is mission critical
Multiple tools and inconsistent
policies
More capacity demanded at edge
8
New Requirements for Switching
Traditional Wired Connectivity +
Wireless Aggregation +
Wired IoT
Unified Policy and Security
Wireless Optimization
Manageability
Cloud-based Management
Automation
Investment Protection
9
Towards an Intelligent Edge Architecture
10
This graphic was published by Gartner, Inc. as part of a larger research document and should be evaluated in the context of the entire document. The Gartner document is available upon request from Aruba, a Hewlett Packard Enterprise company. Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties or merchantability or fitness for a particular purpose.
Gartner has named HPE (Aruba) a Leader for Wired and WLAN Access Infrastructure based on its ability to execute and completeness of vision.
Source: Gartner Magic Quadrant for the Wired and Wireless LAN Access Infrastructure July 2018 – Bill Menezes, Christian Canales, Tim Zimmerman, Mike Toussaint ID Number: G00316060
Strengths “For campus aggregation and core switching, the 8400/8320 chassis switches include network analytics and policy-based integration with monitoring and security tools.”
11
This graphic was published by Gartner, Inc. as part of a larger research document and should be evaluated in the context of the entire document. The Gartner document is available upon request from Aruba, a Hewlett Packard Enterprise company. Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties or merchantability or fitness for a particular purpose.
HPE (Aruba) Receives the Highest Score in 5
out of 6 Gartner Critical Capabilities Use Cases
Source: Gartner Critical Capabilities for Wired and Wireless LAN Access Infrastructure August 2018 – Christian Canales, Tim Zimmerman, Bill Menezes, Mike Toussaint ID Number: G00316060
“The 8400 and 8320 aggregation/core switches have made its end-to-end solution more complete, on capabilities including automation, network analytics and security.”
12
Aruba Switching Portfolio: Campus and Data Center
Aruba 5400R Aruba 3810
Aruba 2930M Aruba 2930F
Aruba 2540
Aruba 2530
Aruba 8320
Aruba 8400
Acc
ess
Ag
gre
gat
ion
Co
re
Dat
a C
ente
r Aruba 8325
13
Topics for Today’s Discussion
Switching in a Mobile First world
Access switching highlights
Introducing the Aruba core
Aruba in the Data Center
Aruba Switching Innovation
Secure Connectivity
Simplified IT Experience
Best User Experience
15
Simplify Secure Network Access For Users and Devices
TODAY • Separate Wired and Wireless
Policy
• Static Configuration of Wired LAN
• Segmentation is VLANs
GOAL • Unified, Role Based Policies
• Simplify Configurations
• Improve Segmentation
SEPARATE, MANUAL
TIME CONSUMING, SECURITY RISK
BETTER USER EXPERIENCE AND SECURITY POSTURE,
FASTER, DYNAMIC
16
Dynamic Segmentation Simplifies and Secures
Centralizes and Unifies Role-based Policy enforcement
Enhances security with traffic separated by tunnels
Uses Aruba controller’s security features such as Firewall, packet inspection and finger printing
17
Use Cases - Deploy with No New Technology Pain
Critical client protection Secure IoT Devices
Unified policy and visibility Better, consistent user experience
No Rip and Replace Hardware Co-exist with Existing VLAN Segmentation
No New Networking Skills Required
18
Dynamic Segmentation: 6 Reasons Why
1. Secure IoT Devices Dynamically segment IoT traffic in secure tunnels to protect the IoT traffic and protect critical clients’ traffic.
2. Better, Consistent User Experience Centralized, unified role-based policy and authentication and enforcement delivers same policy and consistent user experience wherever user or IOT device is and however they connect (wireless or wired).
3. Simplify Operations Save time and reduce configuration errors by eliminating manual, static configurations of VLANs and ACLs on switches by dynamically applying unified wired and wireless policies and advanced services anywhere in the network. No new networking skills required!
4. Ensure Branch Security Utilize ZTP for switches and tunnel specific wired (per port) traffic to controller with Firewall - great for retail PCI compliance, remote education satellite research campuses or healthcare facilities.
5. Use Built-in Controller Security Services Take advantage of Aruba mobility controller and branch gateway’s built-in security features such as Firewall, packet inspection and finger printing for wired and wireless traffic.
6. Overlay Architecture Solution Enables smooth integration with existing segmentation such as VLANs means no ripping and replacing entire switching infrastructure, co-exist with existing VLAN segmentation
Solution Requirements: Aruba 2930F, 2930M, 3810 and 5400R Campus Switches (Requires ArubaOS-Switch 16.04 or later) Aruba Mobility Controllers with AOS 8.1 Aruba Branch Gateways with ArubaOS 8.4 and Aruba Central 2.4.3 Aruba ClearPass Policy Manager
19
Downloadable User Roles
Single point of policy management
• Dynamically assigned by ClearPass at the time of authentication
Builds on top of existing local User Roles
• Every user/device is assigned a User Role
• User Role policies include QoS, VLAN, ACL, Rate Limits
Consistent wired/wireless policy management
• Same as WLAN AP, simplify policy configuration and management
AP Aruba ClearPass Policy Manager
(CPPM)
Mobility Controller
ArubaOS-Switch
2. CPPM returns Role & Policy
1. Wired or wireless user provides
credentials
PC/Laptop
BYOD
3. Role & Policy push to the Mobility Controller or Aruba
Switches *Requires ArubaOS-Switch 16.04 software release
20
Future Proof With More Speed Over Existing Cabling
Be prepared for tomorrow with HPE Smart Rate Multi-gigabit Ethernet (IEEE 802.3bz)
40GbE
High Performance
APs
1, 2.5, 5, 10 GbE (varies by device)
Faster Simple Future proof
IoT
Power Users
10GbE
Up to 30 or 60W of PoE per port
21
New Higher Power PoE Devices Drives New IEEE Standard
Why? More power without an electrical outlet. Devices: Security cameras - New APs with power forwarding – Lighting
2003 2009 New higher power standard (in 2018)
Standard IEEE 802.3af IEEE 802.3at IEEE 802.3bt
Acronym PoE PoE+
Classes
Type 1 Type 2 Type 3 Type 4
2 pairs 4 pairs 4 pairs 4 pairs
Power 15.4 W 30 W 15.4 W 30 W 60 W 100 W
No consistent acronym Proprietary implementations:
UPoE, PoE++
22
Use Cases for High Power PoE
Security
New Wireless Technologies
PTZ, Heater, Analytics
802.11ax
Smart Buildings
Retail
Emerging Today
Entertainment
Medical
Access Control
Access Layer
Today Emerging
Lighting
Telepresence
Video and Flat Panels
23
Aruba 2930M Switch Series
New Aruba 2930M models with up to 60W PoE per port: – Aruba 2930M 40G 8 Smart Rate PoE Class 6 1-slot Switch (R0M67A)
– 36 1GbE ports; 8 Smart Rate ports (1, 2.5, 5, 10GbE); 4 dual personality ports (1SFP, 1G BASE-T – includes PoE)
– Aruba 2930M 24 Smart Rate PoE Class 6 1-slot Switch (R0M68A) – 24 Smart Rate ports (1, 2.5, 5GbE)
2930M is a layer 3 switch series that is easy to deploy, manage, and secure with consistent wired/wireless experience and ideal for enterprise edge, midsize and branch offices. 2930M switches provides modular stacking, modular 10GbE, 40GbE, or Smart Rate multi-gigabit ports, and hot-swappable power supplies for redundancy, up to 60W PoE per port (up to 1440W PoE total) for powering APs, cameras and IoT devices.
HPE/Aruba Confidential – Share Under NDA ONLY
New high power PoE switches All front panel ports are able push up to 60W of PoE per port**
* Back of all 2930M switches include 2 modular power supply slots, 1 stacking module slot and 1 modular uplink slot ** For 1440W PoE, 2x JL087A Aruba X372 54VDC 1050W 110-240VAC Power Supplies must be installed
24
Unique Architecture Provides Investment Protection Flexibility to change management with same access switch
AirWave
Unified multi-vendor wired + wireless
network management
Central
Cloud-based wired + wireless
network management
Web GUI
Web interface for single switch management
25
Simple And Fast Network Deployment for APs and Switches
Network configured & running
4 Plug in Aruba Instant AP or Aruba Switch
1
Secure connection (HTTPS) 2
Central* sends config details to AP/Switch 3
ZERO-TOUCH PROVISIONING
NO ON-SITE EXPERT NEEDED
26
Automation with Pervasive REST API’s Across Portfolio Use case example: Turn off APs in closed branch offices
Arm Security System
Orchestration
1
23
Jim
4
1.Branch office user Jim arms the security system for the weekend
2 The security system sends a
notification network, indicating branch office is armed
3 Network orchestration,
queries switches for AP ports 4.Network orchestration turns
off power to AP ports
27
ArubaOS-Switch 16.07 and 16.08 Software Release
Management Aruba AirWave
Policy Aruba ClearPass
Zero Touch Provisioning
Cloud Mgmt. Aruba Central
Wireless Optimized & Integrated
16.01 - 16.02 16.03 – 16.04
Server-initiated Captive Portal Port Bounce via CoA Local User Roles MAC auth user visibility
Configuration, management, and monitoring Firmware Upgrade, Template based config management
Zero Touch Provisioning (ZTP) with AirWave using DHCP ZTP with Aruba Activate** IPSec for mgmt traffic**
Support for 2540 Partial Config (CLI Window) Topology View ++
Activate firmware upgrade IPsec for Private Cloud ZTP for 2930F VSF
Static IP User Visibility Downloadable User Roles
Support for 2920 and 2930F Config. & management from the cloud
Rogue AP detection with IAP Device Profile: auto configure VLAN, PoE priority/power etc. Per-port Tunneled Node ** Trust QoS
Support for 2530, 2540, 2930M and 3810M Custom Certificates
16.05 – 16.06
Config push without reboot Topology View with LACP and MSTP ++ v6 ZTP with AirWave
Advanced Threat Detection PUTN + DUR Enhancements Device Fingerprinting Net-destination & Net-services with DUR
Config push and rollback without reboot Support for 5400R VSF and 2930M Stacking
Per-user Tunneled Node Device Profile with 3rd party devices
Better ZTP using HTP HTTP Proxy support for Central
Aruba APs on Tunneled Node IPSec Tunnel to Secondary Controller
16.07 – 16.08
v4 & v6 ZTP with AirWave on OOBM Simplified onboarding to Central on Web GUI
Support for 2930F & 3810M stacks GUI Config – LACP, STP, Routing, Port Security Monitoring – Faceplate, PoE & VLAN
Auto CA certificate download Device Attributes for DUR
sFlow support Dynamic Segmentation Visibility Enhancements
** Activate is not supported in 2620; IPsec is not supported in 2530, 2620; Dynamic Segmentation is not supported on 2530, 2620 or 2540 ++ No changes needed on switch software to support this feature – shows alignment of switch software with AirWave releases
Dynamic Segmentation Enhancements Dynamic Segmentation over v6
28
Aruba Portfolio is Better Together
Enforce All Users and Devices
Manage All Devices Together
AirWave Central
Aruba Mobility Controller
Wireless LAN & BLE
Access and Core Switching
Authenticate With Single Source
29
Cloud manageable
• Entry level Layer 2/2+ access switches optimized for mobile users that are easy to deploy and manage; Robust feature set with ACLs, sFlow, and IPv6
• Right size deployment with choice of 8, 24, 48 port 10/100 and Gigabit switches
• AirWave and ClearPass Policy Manager integration
• Ready for the software defined network with REST APIs
• Energy savings with Energy Efficient Ethernet, quiet fan-less models and low power mode settings
• 2530: Fast Ethernet and Gig
• 2540: Convenient built-in 10GbE uplinks and static/RIP
Up to 370W PoE+ for IoT, APs and cameras
Zero Touch Provisioning
Aruba 2530 and 2540 Switch Series
Aruba 2540
Aruba 2530
30
• Powerful Layer 3 access switches optimized for digital workplace with enterprise features - static, RIP and Access OSPF routing, ACLs, sFlow, IPv6. No software licensing required
• Zero Touch Deployment
• AirWave and ClearPass Policy Manager integration
• Scalable and resilient stacking
• Ready for the software defined network with REST APIs
• 2930M: Smart Rate multigig, High Power IEEE 802.3bt (up to 60W per port) , modular uplinks (10/40GbE)
• 2930F: Fixed 1/10GbE uplinks, up to 740W fixed PoE+
10GbE uplinks for better backhaul capacity Cloud manageable with
Aruba Central Smart Rate multi-gig
Future proof with more speed Up to 1440W PoE+ power for IoT, APs and cameras
Aruba 2930F and 2930M Switch Series
Aruba 2930F
Aruba 2930M
31
Aruba 3810 and 5400R Switch Series
• High performance advanced Layer 3 switches ideal for wireless aggregation with low latency and fast 10/40GbE uplinks
• Scalable and resilient stacking
• Redundant and resilient with hot swappable power, redundant mgmt.
• AirWave and ClearPass Policy Manager integration
• Ready for the software defined network with REST APIs
• Smart Rate for future proof high speed multi-gigabit capacity
• 3810: Hot swappable modular power, modular uplinks
• 5400R: High resiliency with modular chassis with redundant management and power. Flexible connectivity modules
Full 30W PoE on all ports for IoT, APs and cameras
Fast 10GbE and 40GbE uplinks for more capacity
Cloud manageable with Aruba Central
Aruba 5400R
Aruba 3810M
32
Topics for Today’s Discussion
Switching in a Mobile First world
Access switching highlights
Introducing the Aruba core
Aruba in the Data Center
33
Game Changing Network Agility Operating Through Change and Complexity
Improved Network
Assurance
Carrier-grade reliability to support growing traffic demands
Eliminate bottlenecks with multi-terabit performance and high
speed, high port density
Faster and Advanced Visibility
On-box, time series database for event and correlation history
Real-time access to network insights
Easier Automation and
Integration
Business policy-based automation to simplify
network functions
Easily programmable with modern tools and languages
(e.g. Python)
Faster Time to Detect,
Diagnose, and Resolve
Rules-based, real-time monitoring and notifications
Intelligent notifications with automatic correlation to
config changes
34
Extending the Mobile First Architecture to Campus Core and Agg
Aruba Network Analytics Engine
Flexible troubleshooting and automated root cause analytics
simplify and enhance visibility and control
ArubaOS-CX Fully programmable OS for analytics and automation
Aruba 8400 Carrier class high availability, 19.2 Tbps system with high
speed, high density interfaces
Aruba 8320 High availability, 2.5 Tbps
system with high speed, high density interfaces
35
Staying Ahead of Always-On Demands from Core to Edge
Aruba Network Analytics Engine
ArubaOS-CX
Aruba 8400
Aruba 8320
• Automated visibility for early detection of issues
• Faster resolution with network insights
• Programmability simplified to help IT scale and customize processes
• Less time spent on network maintenance and management, with time to focus on other critical activities
• Seamless upgrades to scale as bandwidth needs increase
36
Modernizing Campus Core, Aggregation and Data Center
Aruba 8000 Series with ArubaOS-CX
Aruba 8400 • Highest reliability, flexibility,
performance, port density
• 19 Tbps system, 8-slot chassis
• Redundancy everywhere: Mgmt. Module, Fabric, Power, Fans
• Up to 512 10GbE, 128 40GbE, 96 100GbE in a 2-chassis pair
Aruba 8320 • Workhorse for mid-size core/
aggregation use cases
• 2.5 Tbps system, 1RU
• N+1 redundant hot swappable power supplies, fans
• Three models: 48 x 10GbE, 48 x 10GBASE-T, 32 x 40GbE
Aruba 8325 • Mid-size core/aggregation use cases and DC ToR or EoR
• 6.4 Tbps system, 1RU
• N+1 redundant hot swappable power supplies, fans
• 32 ports of 40/100 GbE or
• 48 ports of 10/25 GbE and 8 ports of 40//100 GbE
• Front to back or back to front airflow
37
Insights
Programmability
Manageability
Usability
Performance
Time-series database: Built-in network record
Network Analytics Engine
App
licat
ions
APIs Simple UI
LXC Container
App
licat
ions
App
licat
ions
ArubaOS-CX
ArubaOS-CX Brings Modern Resiliency and Programmability
38
Aruba Network Analytics Engine Automates Troubleshooting
MANUAL
BEFORE
Results: needle in a haystack
investigation
AUTOMATED
AFTER
Results: faster
resolution
Aruba NAE
39
Use Case Example: Troubleshooting Voice and Video
MANUAL Alert, then manual step-
by-step ”show commands”
BEFORE
Results: Needle in a haystack
investigation
AUTOMATED Policy-based active
monitoring with automatic event correlation and config. check pointing
AFTER
Results: Proactive
monitoring and fast resolution
Aruba Network Analytics Engine
“Was it a top-talker issue? Nope.”
“Is there a memory leak? Nope.”
“Is QoS misbehaving? Nope.”
… &*$% !
“Ah, so it was a misconfiguration.”
“Revert to prior config.? Yep.”
“Analytics post-mortem? Yep.”
DONE.
40
Aruba Network Analytics Engine Automates Troubleshooting
REST API
Configuration and State
Time Series Data
Network Analytics Engine
NAE Agents
‘It’s like having a 24/7 network technician as part of the network’
Automated service impact and root cause analysis
Intelligent monitoring agents ‘always on’
Relevant historical data correlated with
configuration changes
Complete telemetry for all system information
Can capture info from neighbor infrastructure
Notification with automatic diagnostics
41
8400/8320 Switch
REST API
Configuration and State
Time Series Data
Aruba Network Analytic Engine (NAE)
NAE Agents – Built-in – ASE – Custom
Wide Monitoring Capabilities Configuration • Protocol and System State ASIC Counters • ACL’s • Baseline Monitoring • Traffic Monitoring
Real Time Network Visibility Synchronization every 5 seconds Realistic model of network behavior
Intelligence and Automation Full power of Python Parameters for customization Variables for persistent policy state
Sandbox Isolation Low system overhead
Flexible Actions Alert Level • CLI command execution • CLI command output capture • Configuration checkpoint diff capture • Syslog generation • Script function callback
Simplify Network Operations Programmability and Predictability with Aruba Network Analytics Engine
42
Aruba NAE Addresses Wide Range of Use Cases
System Health
• Monitor system statistics
Network Analytics
• Monitor network statistics to assist with issues
• Track the state to collect insight on change
Security Analytics
• Analyze network traffic learn about anomalies
Application Visibility
• Discover anomalies in application performance, cloud or on-prem.
Network Optimization
• Dynamically insert policies for optimization.
• Redirect traffic
43
Aruba Network Analytics Engine at Work
44
Community Participation: Easy to Access and Built to Scale
Primary Hub • Primary Script Portal
• Designed for Network Engineers
• Public Solutions Integrate Directly with NAE UI
• Community Can Create Custom NAE Solutions
Developer Community • All Aruba NAE Scripts will be
Posted to GitHub
• Community can Fork and Enhance Aruba Scripts
• Embrace NAE Development in a Forum Familiar with Developers
Airheads • Community to Glue
Components Together
• NAE, Aruba Solutions Exchange and GitHub
• Dedicated Aruba Development Resources
45
Aruba Virtual Switching Extension (VSX)
• Built for Aggregation & Core
• Redundancy in both hardware and software • High Availability during upgrades
• Flexibility for network designs
• Operational simplicity
High Availability for Aruba Core and Aggregation
46
Aruba Virtualization (and HA) Solutions For Access and Core
• Chassis 1 • Chassis 2
Management Control Routing
Ethernet Links
Shared
Chassis 1 Chassis 2
SYNC
Management Management Control Control
Routing Routing Ethernet Links
Shared
Aruba VSF for access
Aruba VSX for core/agg
Deployment
47
Network Changes and Remediation
Device to device verification
Did I miss something?
Not easy to quickly rollback
changes
48
Top 10 Causes of Outages
1. Faults, errors or discards in network devices
2. Device configuration changes
3. Operational human errors and mismanagement of devices
4. Link failure caused due to fiber cable cuts
5. Power outages
6. Server hardware failure
7. Security attacks such as denial of service (DoS)
8. Failed software and firmware upgrade or patches
9. Incompatibility between firmware and hardware device
10. Unprecedented natural disasters and ad hoc mishaps on the network such as a minor accidents, or even as unrelated as a rodent chewing through a network line, etc.
49
Introducing Aruba NetEdit Orchestration Using The CLI
• No knowledge of scripting required
• Easily track changes
• Searchable configuration
• Tagging devices based on location or role
• Configuration consistency across the network
50
Conformance Keeping Configuration Consistent
• Customizable rules rule tailored to each network
• Monitor devices that follow the company policy
• Audit changes fit the policy
“Regulatory compliance requires all switches configured according to FIPS approved mode of operation”
“Legal requires the login banner have specific wording, make sure that all switches have that banner”
51
Plans Orchestration using the CLI
• View edit multiple configurations at the same time
• Contextual insights
• Command completion
• Syntax checking
“Configure an ACL blocking port 16387 on all access switches” “What is the
command to turn on adjacency logging?”
“I need to set the NTP server address, what are we using in other all configurations?”
52
Change Validation Verifying Network Changes
• Quickly verify changes had the desired effect on the network
• Verify connectivity of devices
• Check that 3rd party devices didn’t lose connectivity
“I’m making a route Change make sure I can still ping the Closet 1.” “I’m adding ports
to Switch01’s LAG; lets make sure the LAG doesn’t go down.”
53
NetEdit Value Summary
Better Firmware Management
Firmware management is centralized in one place within
NetEdit
Simpler Device Orchestration
Configuration changes can be pushed to multiple devices at
the same time without any knowledge of API’s
Reduced Outage Window
Large configuration changes can be easily rolled back with
the click of a button
Improved Configuration Consistency
Configurations can be easily unified using conformance rules
54
Faster Network, Application, and Security Insights
+
Automated Workflows and Integrations
Aruba Mobile First
Platform
3rd Party Tools
Simple Programmability and Performance Capacity for Growth
Beyond Network Assurance to New Business Value
55
Aruba 8400 Delivers Visibility, Analytics and ROI of 166%
“We were looking for a supplier with a proven track and a clear roadmap. This is a strategic network investment which we plan to build upon over the next 10 years. Innovation is important, but so too is the means to deliver. Aruba was the clear choice.”
FOEKE HOEKSTRA,AUTOMATION TEAM LEADER, FRIESLAND COLLEGE
h"p://idcdocserv.com/US43756318
56
Aruba 8400 Switch
High performance 19.2Tbps switching (up to 1.2Tbps per slot)
High speed 32-port 10GbE
8-port 40GbE module 6-port 40/100G module
Convenient bundles simplify ordering
Redundant management, fabric and power supplies
Redundant Power supplies N+N for hot swappable, redundant
power supplies,Energy efficient 80 Plus Gold certification
Compact 8 slot chassis (8U)
Management OOBM, console management ports
Status LEDs for fans, power supplies and modules
57
Aruba 8320 Switch Series
High performance 2.3Tbps switching
3 models with high speed connectivity 48p 10G SFP/SFP+ and 6p 40G QSFP+ Switch (JL479A) 32p 40G QSFP+ (JL579A) 48p 1G/10GBASE-T and 6p 40G QSFP+ (JL581A )
Convenient bundles to simplify ordering
includes 2 power supplies and 5 fans
Management OOBM and serial console management ports
USB port for file management Status LEDs for fans, power supplies
Redundant Fans & Power supplies
N+1 for hot swappable, redundant power supplies
Compact 1U form factor
58
Topics for Today’s Discussion
Switching in a Mobile First world
Access switching highlights
Introducing the Aruba core
Aruba in the Data Center
59
Extending the Intelligent Edge to the Data Center
Aruba Intelligent Edge covers Traditional Wired Connectivity + Wireless Aggregation + IoT Convergence and Data Center
Private Compute on Prem
Cloud Data Center
60
Aruba 8320
Aruba 8400
Cam
pu
s N
etw
ork
ing
C
ore
Sp
ine
/ Lea
f
Future proof wired infrastructure, WLAN and IoT enabling
Highly scalable, programmable automated Data Center solution
User, device, server aware – ZTP ease of deployment
Aruba Core and Datacenter Switching: Powered by CX Innovations
Aruba 8325
61
ARUBA 8320 SWITCH SERIES High performance 6.4Tbps switching
High speed connectivity 48-port 1/10/25G with 8-port of 40/100G and
32-port 40/100G
Compact 1U form factor
Aruba 8325 Series Switch
6.4Tbps switching capacity in compact
1U form factor
VSX for High Availability
Advanced Layer 3 including OSPF and
BGP
High hardware scale, including full
Internet routing
High speed, line rate 10G, 25G, 40G
and 100G
N+1 redundant, hot swappable power
supplies
All bundles include hot-swappable,
removable fan and power supplies
REST for distributed or centralized orchestration
Database-driven ArubsOS-CX
architecture for HA and
fault tolerance
48 ports of 10/25G with 8 ports of
40/100G, and 32 ports 40/100G
Redundant Fan and Power Supplies N+1 for hot swappable, redundant
power supplies and F-to-B (and B-to-F) bundles
Management OOBM, console management ports
Status LEDs for fans, power supplies
Aruba 8325-32C
Aruba 8325-48Y8C
Public/GA – Dec. 3, 2018 Availability – Q1 2019
Convenient Bundles Aruba 8325-48Y8C 48p 25G SFP/+/28 8p 100G QSFP+/28 Front-to-Back 6 Fans and 2 PSU Bundle (JL624A)
Aruba 8325-48Y8C 48p 25G SFP/+/28 8p 100G QSFP+/28 Back-to-Front 6 Fans and 2 PSU Bundle (JL625A)
Aruba 8325-32C 32-port 100G QSFP+/QSFP28 Front-to-Back 6 Fans and 2 PSU Bundle (JL626A)
Aruba 8325-32C 32-port 100G QSFP+/QSFP28 Back-to-Front 6 Fans and 2 PSU Bundle (JL627A)
62
FlexFabric Portfolio: For the traditional DC Deployments
Spi
ne
Leaf
12900E Series: 4, 8, 16 slots
12901E Series
5710 Series 1/10GbE – 40GbE up ToR / server iLO
594x fixed/modular 10/40GbE
5950 fixed/modular 10/25/50/100GbE
1/10GbE ToR, price/perf 1-100GbE fixed and modular ToR flexibility
Compact & cost effective (small core/spine) Highest density, 25/100GbE flexibility and features
5980 advanced 10/100GbE Storage/HPC ToR
5980 advanced 10/100GbE 5950 32 * 100G
12902E Series
FlexFabric Portfolio
Built for 10/25/40G Built for 10G
63
High Level Selection Considerations
Consistency with Campus Analytics, Automation, and Simplicity
CX Innovations
Traditional DC Requirements Software Feature Depth Advanced Integrations
Aruba FlexFabric
64
Data Center Architectures
Collapsed 1-Tier IRF/VSX/ MLAG
Optimized L2 Fabric IRF/VSX MLAG
Optimized L3 Fabric IRF/VSX MLAG
L3 Fabric
Spine&Leaf L3 ECMP VXLAN* & EVPN
VMs VMs vSwitch vSwitch
…
…
#Servers: 50-100 ~ 100 - 500 ~500 – 2000 ~ 2000+ VM Scale: 5000+ 25,000 – 50,000+ 100,000 – 500,000 + 750,000 +
Features: L2, MCLAG, VSX, DCB, L2, VSX (MCLAG + Config Sync), ECMP, L3 Routing, IPv6, VSX, VXLAN with MP-BGP EVPN, ECMP, API Integration DCB, API Integration DCB, NSX, API Integration L3, VSX, DCB, NSX, API Integration*
Aruba Innovation
65
Management and Orchestration
AirWave
Unified multi-vendor wired + wireless
network management
Core, Aggregation and Data Center
NAE
Flexible troubleshooting and automated root
cause analytics simplify and enhance visibility
and control
NetEdit
Scalable, Simple CLI-based
Orchestration
IMC
Advanced wired management
Aruba Innovation
66
Bullish on Aruba
“Tom Black and his team clearly demonstrated the competitive advantages of product testing, namely in regards to improved overall quality and quicker time-to-market. Many companies pay lip service to quality, but HPE Aruba considers it a core principle of its stated mission: to design, develop, and test products to achieve a near-zero defect while delivering innovations fast and at scale. Aruba’s continued growth is outpacing the industry at large—I would conclude this philosophy seems to be working.” - Forbes
“Given our positive experiences with the 8400, we intend to move forward with our plans to deploy a second switch for redundancy. In fact, the ability to easily run the 8400 in a dual-core network environment was part of our solution selection process. Upon finishing that deployment, we’ll have complete redundancy, even in the event of a catastrophic failure.” –Mid-South Synergy
“Aruba is focusing more and more on density, IoT, security of IoT, and data analytics. I’m amazed at their attention to detail and the products they’re coming out with right now.” – Grove City College
67
Aruba 8400 Product Chief On Bea7ng Cisco On An 'Industry 4.0' Blockbuster Deal Michael Dickman, vice president of switching at Aruba, says a recent large manufacturing deal win versus Cisco shows the power of Aruba's mobile- and cloud-first core network switch.
One Year Later: Aruba 8400 Grabbing Share From Cisco In Core Network BaJle, Making IoT Gains Aruba is doubling down on its 8400 core network switch with plans for new hardware and software releases after making US revenue share gains versus Cisco in the Ethernet switching market.
This Just In! Channel Reseller News, November 2018
68
Zero Touch Provisioning Auto-config for VLAN, QoS, PoE priority Full, open REST APIs Aruba Network Analytics Engine at the core
Aruba Switching Advantages
Automated and Simple
Secure and Unified
Dynamic Segmentation secures with Aruba Controllers, Services and ClearPass Unified Policy with Unique Aruba ClearPass Integration with User Role and Captive Portal
Flexible Single View
Multi-vendor Aruba AirWave for configuration, mgmt. and monitoring Cloud-based Aruba Central for single view of WLAN and switching Flexible management choice with same hardware
Industry leading TCO with no software licensing
Thank you
Thank you
71
Strategic Testing Investments Deliver Quality and Faster TTM
Large Scale for Higher Quality Simulate environments and ensure multi-vendor interoperability
Round the Clock Testing to Speed Availability Software-based test bed allows engineers across five locations in Roseville, Santa Clara, Bangalore, Singapore and Costa Rica to continuously test regardless of time zon
Meeting Global Regulatory Requirements Forbes article "HPE Aruba and Its Secret Competitive Weapon"
72
Pervasive Automation
Pillars of Quality
Comprehensive Early Testing
Rigorous Testing Framework Built to Scale Quality in
Development Support Processes
Quality as a core principle - Design, development and test methodologies centered around getting to near zero defect, while delivering innovations fast and at scale
• Software and HW design to aid testing and quality
• Early systematic design review
• Code Coverage
• Comprehensive test requirements by feature area and architecture
• Supports multiple software trains
• Feature velocity (50+ NPI)
• Supportability & Debug-ability..
• Feature & system tests automation (> 85% of all features)
• 6 Million Lines of test code
• 500K+ test cases executed per quarter
• 1000+ new cases added every quarter
• Conformance automation on over 30 protocols
• Qualys & VTN weekly runs for code security
• Early visibility to defects using Coverity, covering ~11m lines of code
• Extensive CIT automation coverage
• Multiple levels of commits providing feedback and early exposure to problems.
• Multi-phase testing optimized for risk areas to uncover issues early and completely
• Software stress and system stability testing
• Full feature and regression tests
• Customer and Solution testing
• Full suite of industry standard test cases.
• Verification of max scale limits
• HALT – Highly Accelerated Lifetime Tests.
• 17 Product Families
• 38 Classes of Switches
• 130+ SKU’s
• 14 Active Release Trains
• Industry leading comprehensive internal dashboard
• Code re-factoring in handful of ‘hot spots’
• Defect tool for customer visibility
• Parallel testing for CPE releases
• Use hybrid agile & waterfall model to drive feature velocity
• Rigorous exit criteria.
Winner of HPE President’s Award
for Quality
73
What We’re Doing Results We Get Comprehensive customer test cases • QIP for top 10 customer-impacting modules • Added ~1,000 new test cases to improve legacy features • Added customer scenario testing for large deployment • Added extensive solution testing
Automation • Feature & system test case automation
(> 85% of all features) • Extensive CIT automation coverage • Conformance automation on over 30 protocols • Coverity and Fortify for code static-security analysis • Qualys and Nessus weekly runs for code security
…and much more • Code re-factoring in handful of ‘hot spots’ • Supportability & Debug-ability • Defect tool for customer visibility • Parallel testing for CPE releases
Quality in ArubaOS-Switch
0
5
10
15
20
25
30
2017 Aug
2017 Sep
2017 Oct
2017 Nov
2017 Dec
2018 Jan
2018 Feb
2018 Mar
2018 Apr
2018 May
2018 Jun
2018 Jul
2018 Aug
2018 Sep
Monthly Incoming CFD's - ArubaOS Switching
0
10
20
30
40
50
60
2017 Aug
2017 Sep
2017 Oct
2017 Nov
2017 Dec
2018 Jan
2018 Feb
2018 Mar
2018 Apr
2018 May
2018 Jun
2018 Jul
2018 Aug
2018 Sep
2018 Oct
Open CFD Backlog - ArubaOS Switching
74
hpe.com/networking/warrantysummary
ARUBA ACCESS SWITCHES Hardware Warranty
Original Owner Lifetime Replacements
NBD Shipment Software Updates
Posted Releases Phone Support (Best Effort, Product Conformance)
24x7 for 90 Days 8x5 for Lifetime
ARUBA CORE SWITCHES Hardware Warranty
5 year Replacements
10 day shipment Software Updates
Posted Releases Phone Support (Best Effort, Product Conformance)
8x5 for 90 days
Leverage Our Industry Leading Warranty
No software licensing required
75
Gigabit Access
PoE/PoE+
Smart Rate Multi-Gig Ports
AirWave, ClearPass, Central
Stacking
REST APIs
Switching
Aruba 2530
L2
Aruba 2540
L2 + RIP/static
Aruba 2930F L3 + RIP, Access
OSPF
Aruba 5400R
Advanced L3
Aruba 2930M L3 + RIP, Access
OSPF
VSF VSF
Aruba 3810
Advanced L3
Modular Power & Uplinks
Multi-Gig Access
Aruba Campus Access Switch portfolio
PoE Class 6 (60W)
76
Access Stacking Helps Grow Your Network
Why? ü Simplify network operations ü Scalable performance ü Increases resiliency
Two technology methods VSF stacking for Aruba 5400R and 2930F • Uses Ethernet ports (longer distances) • 5400R – 2 chassis stacking • 2930F – 8 chassis stacking Backplane stacking for Aruba 2920, 2930M, 3810 • Dedicated modules/ports • 3810 – 10 chassis stacking (5 with mesh) • 2930M – 10 chassis stacking
77
Deploying the Aruba Campus Switches
Campus
APs
Access Switches
Agg. Switches
Core Switches
Controllers
Network and Policy
Management
Building
Floor
Ceiling
Aruba 5400R Aruba 3810
Aruba 8400
Aruba 2930M Aruba 2930M
Aruba 8400 Aruba 8400
Aruba 8320 Aruba 8320
Aruba 8400
78
Use Case: Smart Manufacturing with IoT
Aruba Solution Benefits • Future proof with Smart Rate • Unified & Simplified Management • Reliable and fast Wi-Fi
79
Use Case: Healthcare/Govt. at Sunnycrest Manor
Aruba Solution Benefits • Reduced resident healthcare recordkeeping time by a third.
• Raised video camera security and resident quarters mobile connectivity from none to fully covered.
• Decreased Wi-Fi help desk calls by 95% and switch troubleshooting – from dozens of hours to zero.
• Eliminated network downtime due to switch licensing issues.
80
“Aruba is focusing more and more on density, IoT, security of IoT, and data analytics. I’m amazed at their attention to detail and the products they’re coming out with right now.” – Grove City College
Use Case – Higher Education
ENHANCING DIGITAL ENGAGEMENT FOR SHOPPERS
Wi-Fi analytics to monitor shopper engagement and in-store dwell times
Stable, secure Wi-Fi access for employees and customers
82
60,000 mobile devices to pilots, flight attendants,
gate agents and maintenance crews
Gigabit Wi-Fi for guest services
HPE Smart Rate Multi-gig wired for gate modernization
Reduced flight delays and and lost baggage
IMPROVING PASSENGER EXPERIENCE WITH
MOBILE OPERATIONS
Use Case: Smart Digital Workplace
83
Use Case: Midsize / Retail Aruba Helps BLUE DOG RV Work Faster, Smarter, More Efficiently
Aruba Solution Benefits ü Easier to manage
ü Faster and more reliable
ü Accessible anywhere
Aruba 2920, 2930, 3810 Switches – Indoor and outdoor Aruba APs – Aruba Central
Blue Dog RV video
Challenge Lost orders due to poor connectivity
One IT resource to manage 1,000+ devices
84
School District Enjoys Simplicity Now and Later with the Aruba 8400
Challenge Aging infrastructure Reliable access to instructional technologies Lean IT staff
Aruba Solution Benefits ü Simplified operations with intuitive GUI ü Faster Core deployments - from 2 weeks to 2 days ü Faster troubleshooting with Network Analytics Engine ü HA for all campuses and centralized WLAN controllers ü Investment protection with 40G ready for future use
Aruba 8400, 5400R, 2930M, 2920 Switches – Aruba ClearPass – Aruba AirWave
Texas City ISD Blog
85
School District Modernized and Saves with Aruba
Challenge Under fiscal distress Unable to meet growth demands Unable to deliver 1:1 computing
Aruba Solution Benefits ü Saved $800K – no longer in fiscal distress ü Increased concurrent testing capacity from 100 to
500 ü Solution compatible with E-Rate requirements ü Ready to scale for future demands
Aruba 5400R Switches
