Upload
others
View
37
Download
0
Embed Size (px)
Citation preview
Cisco Meraki – Cloud-Managed Networking
George Carlan
© 2014 Cisco and/or its affiliates. All rights reserved. 4
Ease of UseUnparalleled Deployment Flexibility
Cisco Enterprise Portfolio Cisco Cloud Managed
Prime ISE
Catalyst 2K/3K/4K/6K
ASA - Firewall
ISR - Routing
MS Switch
MX Series Security
Appliances
Aironet Access Points
Cloud Management & Policy
Cisco Networking Portfolio
MR AP’s
Systems ManagerSystems Manager
Catalyst 3850 with integrated controller
Cloud ControllerWLAN Controllers
Cloud Managed WiFi
(2006)
Cloud Managed Network
(2010)
Cloud Managed IT
(2016)
MS Ethernet Switches MX Security Appliances MC CommunicationsSystems Manager EMMMR Wireless LAN MV Security Cameras
Cisco Acquisition
(2012)
Licensing is required and includes:
Centralized management and network-wide visibility and control
Seamless firmware and security updates
24/7 Enterprise Support and lifetime warranty
Zero-touch device provisioning
A Meraki solution includes a 1:1 ratio of hardware and licenses
hardware license
+
The cloud license represents the total cost of ownership for all of your Meraki devices
Deployments without the need for local IT
INSTANT IT
Monitoring of locations, users, devices, and apps
FULL BUSINESS VISIBILITY
Consistentexperience across
all locations
ON-DEMAND SCALABILITY
Fewer IT resources and greater manageability –up to 67% cost savings
LOWER IT COST
BETTER BUSINESS OUTCOMES
The strength of a complete cloud-managed network
Application Control
Geo-based IP FW rules, Traffic
Shaping, Content Filtering
Security
NG Firewall, Client VPN,
Site-to-Site VPN, IDS/IPS,
AMP with Threat Grid ,
Security Center
Networking
NAT/DHCP, 3G/4G Cellular,
Static Routing, OSPF, BGP,
Link Balancing, HA & Failover,
SD-WAN
MX64/64W
MX84
MX100
MX400
MX600
Z1
Small branch
(~50 users)
Where FW Throughput
250 Mbps
Campus/
VPN Concentration
(~10,000 users)
Large
branch/campus
(~2,000 users)
Mid-size branch
(~200 users)
Mid-size branch/
Small campus
(~500 users)
Notable Features
11ac wireless (MX64W)
Power redundancy
Modular interface
SFP or SFP+ (with modules)
500 MbpsSFP Ports
750 MbpsSFP Ports
1 Gbps
1 Gbps
Power redundancy
Modular interface
SFP or SFP+ (with modules)
For teleworkers
(1-5 users)
Dual-radio wireless
FW throughput: 50 Mbps
All devices support 3G/4G
MX65/65W
Small branch
(~50 users)PoE+, dual WAN, 802.11ac 250 Mbps
Stateful Firewall L3, L7 (NGFW)
IPS/IDS Snort
Content Filtering4+ billions URLs (Webroot BrightCloud)
Geo-based security Geo-filtering (Max Mind)
Malware ProtectionCisco AMP
AMP Threat Grid
Client authentication AD, Radius, 802.1x
SOC Single pane of glass security center
Firmware freshness Continuous security updates
PCI compliancePCI 3.1 certified cloud-based management
Single cloud management interface for Security, SD-
WAN, Wireless, Switching, VoIP, EMM, and Security
Cameras
Cisco Security Technologies(IPS/IDS, AMP, AMP
Threatgrid)
Integrated SD-WAN functionality (left)
Auto-VPN
Built-in Wireless with Social Login and
Analytics(MX64W & MX65W models)
Templates & Network Cloning
True Plug & Play Behaviour (MX deployment in 10.000
US locations in 4 months)
Dynamic policy application via EMM
WAN 1Secure VPN tunnel (active)
Latency / loss > threshold
WAN 2Secure VPN tunnel (active)
Latency / loss < threshold
Data Based on L3 / L4 / L7 categorization,
this data normally travels out WAN 1
(PbR), but MX detects optimal path is
WAN 2 based on latency / loss on
WAN 1
SD-WAN
Retail Education Hospitality Healthcare Corporate Offices
MX
Appliance
SD-WAN
Auto-VPN
Plug & Play Behavior
Built-in Wireless with
CMX Analytics
Built-in customizable
Wireless Welcome
Page & FB Login
3G / 4G Failover
Open APIs
Templates
Integration with ISE
Content Filtering
Cisco Security
Technologies (AMP,
IPS)
Simplicity in
configuration
Content Filtering
Cisco Security
Technologies (AMP,
IPS)
Built-in customizable
Wireless Welcome
Page & FB Login
Templates
Content Filtering
Site-to-Site VPN
Cisco Security
Technologies (AMP,
IPS)
Traffic Shaping
Segmented network
Templates
Integration with 802.1X,
ISE
Cisco Security
Technologies (AMP,
IPS)
Content Filtering
Meraki Dashboard:
Visibility, Central Management, Ease of configuration and administration, Monitoring, Alerts & Reporting
Centralized Management
Full Feature Set
CMX Analytics
Built-in Security with L3/L7 firewall rules
Traffic Shaping
Posture & ISE Integration
Templates & Network Cloning
True Plug&Play Behavior
Dynamic policy application via EMM
Lifetime warranty on indoor APs
- We don’t upsell customers to give them
more functionality!!
17
MR66
Dual-Radio
802.11a/b/g/n
2 Stream 4 Radio
802.11ac Wave 2
Bluetooth LE
MR30H
2 Stream Triple-Radio
802.11ac
Bluetooth LE
MR72MR62
Single-Radio
802.11b/g/n
3 Stream Triple-Radio
802.11ac Wave 2
Bluetooth LE
MR42
4 Stream 4 Radio
802.11ac Wave 2
Bluetooth LE
MR52
4 Stream 4 Radio
802.11ac Wave 2
Bluetooth LE
1 × 2.5Gbps Multigigabit Ethernet Port
MR53
4 Stream 4 Radio
802.11ac
Bluetooth LE
1 × 2.5Gbps Multigigabit Ethernet Port
MR82
Indoor APs
Outdoor APs
MR33
2 Stream 4 Radio
802.11ac Wave 2
Bluetooth LE
Integrated 4-port SW
RF optimization and
application-aware QoS for high-
throughput, high-density WLAN
Layer 7 application
traffic shaping
Throttle, block, or prioritize application traffic with DPI-based fingerprinting; set user
and group-based shaping rules
Cloud-base RF
optimization
Dynamically avoid interference, optimizing channel selection and power levels
Density-optimized
WLAN
RF platform tuned for airtime fairness and performance in dense performance-
critical environments
Out-of-the-box security,
management, and capacity for
BYOD-ready deployments
Device-aware security Device-aware firewall and access control; Antivirus scan; LAN isolation;
Bonjour Gateway; Content and security filtering
Integrated MDM Enforce encryption, passcodes, and device restrictions; Deploy enterprise
applications; Remotely lock or wipe devices
Simplified onboarding Flexible authentication with AD integration, SMS authentication, hosted splash
pages, and automatic MDM enrollment
Built-in location
analytics dashboard
Optimize marketing and
business operations
Analyze capture rate, dwell time, and new / repeat visitors to measure advertising,
promotions, site utilization, etc.
Built-in analytics Integrated into WLAN, no extra sensors, appliances, or software
Extensible API Integrate location data with CRM, loyalty programs, and custom applications for
targeted real-time offers
Retail Education Hospitality Healthcare Corporate Offices
MR
Access
Points
High Density
Plug & Play Behavior
CMX Analytics
Customizable Welcome
Page & FB Login
Open APIs
Templates
Built-in Security
Monitoring and Email
Alerts
High Density
Content Filtering(Adult
Content)
Built-in Security
Simplicity in
configuration
Dynamic policy
application via EMM
ISE Integration
Content Filtering(Adult
Content)
Customizable Welcome
Page & FB Login
Open APIs
Templates
Built-in Security
Monitoring and Email
Alerts
Simplicity in
configuration
Content Filtering(Adult
Content)
Wireless traffic shaping
Segmented network
Templates
Integration with 802.1X
and ISE
Dedicated 3rd Radio
Content Filtering(Adult
Content)
Wireless traffic shaping
Dynamic Policy
application via EMM
Segmented network
Meraki Dashboard:
Visibility, Central Management, Ease of configuration and administration, Monitoring, Alerts & Reporting
Centralized Management
Templates & Cloning Network Configuration
True Plug & Play Behavior
Dynamic policy application via EMM
Built-in troubleshooting & diagnostic tools
SaaS feature delivery, quarterly updates
Feature velocity future-proofs hardware investment
- We don’t upsell customers to give them
more functionality!!
Access
MS220 MS225 MS250 MS350
Features
• 8 port models
• Layer 2
• Gigabit SFP uplinks
• 24, 48 port models
• Layer 2
• 10Gb SFP+ uplinks
• 80Gb Stacking
• 24, 48 port models
• Physical stacking
(80Gbps)
• Layer 3
• 10Gb SFP+ uplinks
• Hot-swappable, field-
replaceable fans and
power supplies
• 24, 48 port models
• Physical stacking
(160Gbps)
• High performance Layer
3
• 10Gb SFP+ uplinks
• Multi Gigabit
• Hot-swappable, field-
replaceable fans and
power supplies
Positioning
• Branch access
switching ( Compact L2)
• Branch access
switching(L2)
• Stackable Branch and
Campus access
switching (L3)
• Stackable Branch and
Campus access
switching (L3)
Available Models & Options
MS410 – Affordable 1G fiber distribution
Ideal for Large Branch and Small Campus
16 & 32-port options
L3 capable
Ideal for MS220 access customers
Stackable
MS425 – Powerful 10G fiber distribution
Ideal for Medium to large Branch & Campus
16 & 32 - port options
L3 capable
Ideal for MS350/320 access customers
Stackable - 480Gbps switching capacity
Meraki Aggregation & Distribution
Virtual stacking— Single pane of glass visibility into all
switches and ports
— Configure ports in minutes, regardless of
model or location
Easy to deploy & manage— Zero-touch site provisioning
— Switch cloning in 3 clicks
— Seamless updates from the cloud
— Network-wide monitoring and alerts
Built-in troubleshooting & diagnostic tools— Remote packet capture
— Local config page switch.meraki.com
— Cable test tool
Or
Retail Education Hospitality Healthcare Corporate Offices
MR
Switches
Plug & Play Behavior
Templates
Cloning Network
Configuration
Monitoring and Email
Alerts
Simplicity in
configuration (hundreds
of ports in minutes)
Plug & Play Behavior
Templates
Cloning Network
Configuration
Monitoring and Email
Alerts
Simplicity in
configuration( hundreds
of ports in minutes)
Plug & Play Behavior
Templates
Cloning Network
Configuration
Monitoring and Email
Alerts
Simplicity in
configuration( hundreds
of ports in minutes)
Plug & Play Behavior
Templates
Cloning Network
Configuration
Monitoring and Email
Alerts
Simplicity in
configuration( hundreds
of ports in minutes)
Integration with 802.1X
and ISE
Templates
Cloning Network
Configuration
Monitoring and Email
Alerts
Simplicity in
configuration( hundreds
of ports in minutes)
Segmented network
Meraki Dashboard:
Visibility, Central Management, Ease of configuration and administration, Monitoring, Alerts & Reporting
- We don’t upsell customers to give them
more functionality!!
Mobile & Desktop Management
Multi Platform EMM Support:
Application management
Dynamic provisioning
Active Directory enrollment integration
Network integration via Sentry policies:
Cisco Meraki hardware integration through sentry
and group policies
Wireless & VPN access through sentry policies
Integrates with Cisco ISE for enrollment and
posture assessment
Retail Education Hospitality Healthcare Corporate Offices
Meraki SM
Sentry Policies
Device Management
Application
Management
Cellular Management
Remote Wipe
Sentry Policies
Device
Management(Students
& Teachers)
Application
Management
Remote Wipe
Profiles (Wireless,
VPN)
Sentry Policies
Device Management
Application
Management
Remote Wipe
Sentry Policies
Device Management
Application
Management
Remote Wipe
Sentry Policies
Application
management
Dynamic provisioning
Enterprise wipe
Active Directory
enrollment integration
Integrates with Cisco
ISE for enrollment and
posture assessment
Meraki Dashboard:
Visibility, Central Management, Ease of configuration and administration, Monitoring, Alerts & Reporting
Centralized Management with Video wall, Motion
Search
128GB of solid state storage on each camera
Up to 20 days of 24/7 continuous recording
Night Mode
Less than 50kbps upstream bandwidth per camera
SaaS feature delivery, quarterly updates
Feature velocity future-proofs hardware investment
- We don’t upsell customers to give them
more functionality!!
MV21 Indoor Camera
MV71 Outdoor Camera
Video wall
Resize, reorder, and monitor video streams on the
fly
Drag-and-drop functionality
Motion search
Automatically isolate key motion events and find
out who stole that laptop
Easily export important video segments
Granular access controls
Choose who can view, export, and change the
layout of your videos
- We don’t upsell customers to give them
more functionality!!
Licensing is required and includes:
Centralized management and network-wide visibility and control
Seamless firmware and security updates
24/7 Enterprise Support and lifetime warranty
Zero-touch device provisioning
A Meraki solution includes a 1:1 ratio of hardware and licenses
hardware license
+
The cloud license represents the total cost of ownership for all of your Meraki devices
Meraki MR
Wireless LAN
Meraki MX
Security
Appliances
Meraki MS
Ethernet Switches
Meraki SM
Mobile Device
Management
A complete, powerful, and intuitive cloud-managed IT solution.
Wireless | Security | Switching | Communications | Enterprise Mobility | Security Cameras
NETWORKING IS COMPLICATED.
MERAKI IS MAKING IT EASIER, FASTER, AND SMARTER.
_____
Better networking means that businesses run more smoothly, and more
people have reliable access to the information they need.
Manage your networks from anywhere you have internet connectivity using an intuitive, web-based dashboard or a mobile app.
Free AP Program Try => BuyDashboard / Dcloud
Demo
1 2 3
Thank you!
Parteneri media
Radu-George Carlan
Meraki Consultant
Mobile: +40 723 304 070