Delivering Real Time User Experiences Everywhere with Secure … · motherboards—no lead! ... Evolution of Software Packaging and Activation 2010+ 2004+ 1990s Introduced with ISRs

© 2009 Cisco Systems, Inc. All rights reserved.Presentation_ID 1

Delivering Real Time User Experiences Everywhere with Secure Mobile Access


Borderless Networks Services

MediaNet

2

What can Borderless Networks do for your business?


Video Changes Everything

Consumer Video New Business ModelsBusiness Video


Cisco MedianetTransform Video Experiences

Context-Aware, Prioritized, High Quality Video

Can My Network Deliver Real-Time Collaboration Experiences?

No Resource Reservation, Degraded Video

CEO Meeting

M&A Negotiation

CEO Meeting

M&A Negotiation

Sports Event

Sports Event

Global Business, WW Offices


Cisco Medianet Release 2.1Simplification of deployment and maintenance of video and improved QoE

Capability and

Features

Benefits Products

Autoconfiguration:

• Auto Smartports

• Location

• Cisco AutoQoS

• Media Services

Interface

Helps simplify the

deployment and

reduce the ongoing

operational costs of

rich-media

applications and

endpoints

Cisco Catalyst

3K and 4K Switches

Cisco ISR &

ISRG2

Cisco Digital Media

Player 4310G

Cisco Video Surveillance IP Cameras

Cisco VideoStream Extends IEEE

802.11n support to

enable enterprise-

class, wireless Cisco

Video Surveillance IP

Cameras and other

live video streams

Cisco 5508

Wireless LAN

Controller

Cisco Aironet

Access Points


WAN

Automate network configuration – Auto Smartports and QoS

Location integration – Automate location configuration

Cisco Mobility

Service Engine

IP Surveillance

Manager

MSE provides geo location info to switches

Camera registers it‘s location info with its manager

Assign to VLAN 10 & apply QoS policy x

Switch provides civic & geo location info to endpoint – CDP: location = bldg 24/room 5

Camera with MSI: send ‗device type‘ = ‗Camera‘ via CDP

CiscoWorks

LMS

How many IP cameras do I have installed in Bldg 24

Automated configuration and deployment reduce cost of

deployment and ongoing moves, adds and changes

Cisco Medianet – AutoconfigurationSimplify deployment


Streaming Video Challenges over WirelessRadio Frequency Limitations

Can‘t deliver multicast video at scale

Video overloads network and degrades other application performance

Video Streaming Without Reliable Multicast

AP APAP AP

Poor PerformancePoor Performance

WLC Switch

Unable to deliver business quality video


Streaming Video ChallengesPoor Wired to Wireless Network Integration

No identification of respective priority

Good

Performance

Good

Performance

Good

Performance

APAP APAP

Wireless

Controller

Reliability at WLC improves quality but NOT overall scale

Inefficient use of overall network

Poor

Performance

Inefficient use of bandwidth

on the wired port

Switch


Admission

Control

VideoNotAvailable

Media Ready WLAN with VideoStreamWireless Investment Optimized for Video

Solved challenges associated with RF and wired / wireless integration Brings wired video quality to wireless

Improves quality and scale of streaming content :

Criticality Level:

High

Great

Performance

Great

Performance

Great

Performance

APAP APAP

WLC Switch

Stream prioritization protects important content precedence

Reliable

Multicast

Prioritization

RRC



Cisco ISR G2

10



A FewYears Ago

Network Consolidation

Overlay Products

Application and Server Consolidation

Mobility

WAN Optimization

Voice

Network Analysisand Monitoring

Security

Routing

Integrated Services

Integrated

Applications

Hardware Software

On Demand

Services

Virtualized Services

Business Apps

Custom Apps

Vertical Apps

Management Tools

Op

era

tio

na

l Effic

ien

cy

Borderless Branch—WAN Evolution

Integrated

Routing +

Switching+

Unified

Communications +

Wan Optimization +

MobilityDecouple

hardware &

software

Virtualized

Services

Integrated

Compute and

Storage

Centralized

Management

Converged

systems and

services


Cisco Integrated Services Router Generation 2

Pe

rfo

rma

nce

, S

ca

lab

ility

, A

va

ilab

ility

3925E*, 3945E*

3925, 3945

Enhancing the Borderless Experience

Virtual Office

SecureMobility

SecureCollaboration

Scalable Rich-Media Services

2901, 2911, 2921, 2951

860, 880, 890

1941, 1941W

Customizable Applications

887*, 887V*, 888E*

* New Platforms

1921


The New Branch ExperienceIntegrated Services Routers Generation 2

Service Virtualization

Operational Excellence

Video-Ready

Customer Experience

Business Innovation

LowestTCO

Services on demand

Customized services

Cloud extension

Rich media applications

High performance

Application optimization

Greener technology

Operational simplicity

Investment protection


What‘s New with Cisco ISR G2?Making the best …even better!

Up to 7x the Performance

Cisco ISR Cisco ISR G2

Up to 45 Mbps with Services WAN Performance Up to 350 Mbps with Services

Single Network processor Multi-core

Up to 160GB storage Service Module

Performance and Capacity

Up to 7X with Dual Core and 1TB

storage

Voice Only Onboard DSPs Voice + Video

Fast Ethernet with PoE. Based

on Catalyst 3560/3750 Switch ModulesFE/GE Ethernet with EPoE Based

on Catalyst 3560–E/2960

Multiple IOS Images Single Universal IOS Image

Hardware Coupled Service Delivery Virtual Services ―On-demand‖

Single MotherboardRedundancy

Redundant power supplies.

Field-upgradeable motherboard

EnergyWiseEnergy Efficiency

EnergyWise with slot based

controls.


ISR G2 Performance Positioning

Concurrent Rich-media Collaboration Sessions

WAN

Access S

peed W

ith S

erv

ices

1941/2901

2911

2921

2951

3925

3945

150 Mb

100 Mb

75 Mb

50 Mb

35 Mb

15010075503525

T1

/E1

EF

MV

DS

L2+

/Su

b-r

ate

FE

Lin

e R

ate

F

E +

25 Mb

WAN Access and Collaboration


Service Modules and Interface Cards

EHWICEnhanced High Speed WAN Interface Card

ISMInternal Service

Module

SMServiceModule

PVDM3Packet Voice/Data Module

Interface Cards (WAN or LAN)

Internal Module for Running Services That Don‘t Require Interface Ports, Dedicated CPU and Memory

Independent CPU and Memory for Hosting Services orHigh Density Interface Ports.

Examples: Wireless LAN Controller, WAN Optimization, Etherswitch Module

High Density Rich-Media Voice and Video DSP Modules


Platform Module Slot Evolution

Pre-ISR ISR ISR G2

EHWICSupports HWICWIC, VIC & VWIC

SMSupports NM, NME& EVM via Adapter card

ISM

PVDM3Supports PVDM2 Via Adapter Card

NME-X

NME

HWICSupports WIC, VWIC, VIC

NME,EVMSupports NM,NME-X,NME-XD

AIM

PVDM2

WICSupports VIC, VWIC

NM

AIM


ISR Generation 2Services Ready Engines (SRE)

Internal Service Module (ISM)Single Core x86

512MB RAM, 4GB FlashAvailable on 1941 & above—Selected Services

Service Module (SM)Dual Core High Performance x86

2–4GB RAM, 500GB-1TB HDDAvailable on 2911 and above—Full Range of Services

Support for EnergyWise®—Reduces Power Consumption,

High Capacity Storage, RAID Capable and FRU Disks—Enable HA Deployments

Up to 7x Performance Improvement Compared to Previous Generation

Integrated Management, Troubleshooting, on-board HW Diagnostics Tool

Flexible ―Service Ready‖ Deployment Model

o Deploy HW with router—SW can be deployed remotely saving truck roll costso Services: Application eXtension Platform, Cisco Unity Express, WAAS, Video

Surveillance, Wireless LAN Controller, Network Analysis, Server Virtualization, Windows Server


ISR G2 Services Portfolio

Network and Security ServicesCompute Servicesand Applications

Collaboration Services

Network Services

Network and Physical Security

Unified Communications

Application Infrastructure

Industry Applications

Branch IT Infrastructure and

Management

High-performance Communication and

Collaboration

Secure, Protect, Compliance

Customized Vertical Solutions

Consolidate Branch Servers and Applications

o Cisco Wide Area Application Services (WAAS)

o Cisco Wireless LAN Controller (WLC)

o Cisco Network Analysis Module

o Infoblox core network services on AXP

o Cisco Unity®

Express (Voicemail, IVR)

o NICE Voice Recording on AXP

o Sagem InterstarFax over IP on AXP

o SingleWireInformacast on AXP

o Cisco Video Surveillance

o Cisco Intrusion Prevention System

o Tiani Medical Data Exchange on AXP

o Global Protocols Skipware on AXP

o Cisco Application Extension Platform (AXP)

o Cisco Integrated Storage System

o Industry standard virtualization

o Windows Server


Secure Cloud ComputingArchitecture

Secure Unified Mobile

Architecture

Advanced Security Services

Comprehensive, Secure Services for the Borderless Branch

Security for the Borderless Branch Secure collaboration with video integration

o Integrated IPsec acceleration

o One touch PSIRT update

o Advanced Management and Instrumentation

o Hardened Foundational security, Compliance

o Up to 7X performance increase over the ISRs

Secure Connectivity with Cisco TrustSec

CiscoTrustSec



Operational Efficiency through Innovation o Remote deployment, management and monitoring

o Gibabit Ethernet Switching Modules with Enhanced POE

o EnergyWise Support with configurable slot controls

o Field upgradeable motherboard for performance growth

o Increased redundancy across portfolio

o Single Universal IOS Image with Cisco IOS 15.0(1)M

New Business Innovations Drive Lowest TCO

Operational

Simplicity–No

Truck Rolls!

Energy Efficiency

and Savings

Hardware Re-usability

with Investment

Protection

Business

Uptime


Environmentally Friendly

RoHS compliant motherboards—no lead!

Recyclable packaging

Hardware Re-Usability

90% of service modules and WAN interface cards supported


Green Engineering

Power Boost mode on 3900 series

High-efficiency power supplies (85%)

Cisco EnergyWise

Integrated Switching

Up to 48 ports of FE/GE switching

No additional power supply required

Industry leading ePoE

Real-time Energy Power Consumption reporting

System-wide EnergyWise

Verdiem Orchestrator PC control

ISR G2 Module power Up/Down

Operational ExcellenceImproving Carbon Footprint with ISR G2

NEW

EnergyWise Policy: Power off at 7 p.m.

EnergyWise Policy: Power on at 7 a.m.


Energy Efficiency = Real Results

AM PM

5 Year Results

54% Savings in Energy

451 Tons of CO2

83 Cars Removed

$ 87 K in Savings

Per Site/Year - 50 SitesTotal

DeviceskWh

Saved$$

Saved

1—Cisco 3945 50 0% 0%

4 —Wireless AP 200 66% 66%

20 —IP Phones 1000 66% 66%

1 —SRE

1—EtherSwitch

3 —SRE

1—PVDM3

300 66% 66%

Total 54% 54%


Evolution of Software Packaging and Activation

2010+

2004+

1990s

Introduced with ISRs

Reduced Complexity/Images

Some SW Licensing

Ease Of Ordering

Operational Simplicity

Services On Demand

Licensed

IOS Reformation

IOS

Many Images,Feature Upgrades

Complex to Support


Product ID

Serial Number

SystemAdministrator

IOS Software ActivationSoftware Activation After Product Order

DA

TA

SE

CU

RIT

Y

UC

CU

BE

SN

A

UR

LF

SS

LIP

S

1. Customer purchases product activation keys (PAKs) for desired feature set and obtains Unique Device Identifier (Product ID + Serial Number), for the device he wants to upgrade

2. Using the Cisco website, the customer can purchase and generate a license for a feature set on that specific device

3. License is installed and activated using Cisco License Manager, Router Call-Home, or manual copy and install

4. These steps are the same for additional feature sets

Product ID

Serial

Number

PAK

Unique

Device

Identifier

Previously

Purchased

Router


The New Branch ExperienceIntegrated Services Routers Generation 2

Service Virtualization


Video-Ready

Customer Experience

Business Innovation

LowestTCO

Services on demand

Customized services

Cloud extension

Rich media applications

High performance

Application optimization

Greener technology

Operational simplicity




CleanAir

28



MotionTechnology to Deliver the Experience

Mobility User

Services

Motion Network Services

Borderless Access

802.11n

Intelligent Switching

Remote Access/VPN

CleanAir Technology

ClientLink

Context/Location

Client Troubleshooting

Mobile Collaboration

AnyConnect


Enterprise Wireless EvolutionFrom Best-Effort to Mission-Critical

System Management

Capacity

Self Healing and Optimizing

Hotspot

Casual PervasiveMedia RichApplications

Mission Critical

Performance Protection for

802.11n Networks


Challenges with Spectrum

System Overload!

Limited SpectrumPerformance

Support Cost$ $$$

802.11n Performance Decrease

Increase in Support Costs


Detect and Mitigate RF InterferenceCisco Spectrum Expert

Interferencedetected Classifying… Item: Microwave Send Alert!

Spectrum

Expert


Introducing CleanAir

Detect and Classify

Mitigate

Locate

Cisco

CleanAir

A system-wide feature that uses silicon-level

intelligence to automatically mitigate the impact of

wireless interference, optimize network performance

and reduce troubleshooting costs


High Resolution Spectral AdvantageIndustry‘s ONLY in-line high-resolution spectrum analyzer

Typical Wi-Fi chipset

Spectral Resolution at 5 MHzCisco CleanAir Wi-Fi chipset

Spectral Resolution at 78 to 156 KHz

‗Chip View Visualization‘ of Microwave oven and BlueTooth Interference

Microwave oven

BlueTooth

Microwave oven

BlueTooth

Pow

er

Pow

er

?


Benefits of CleanAir

Self Healing and Optimizing

Forensics for Troubleshooting

Wireless Security

Policy Enforcement

Maintain Air Quality

GOODPOOR

IP and Application

Attacks & Exploits

WiFi Protocol

Attacks & Exploits

RF Signaling

Attacks & Exploits

Traditional IDS/IPSLayer 3-7

wIPSLayer 2

CleanAirLayer 1

Monitors Exploits Invisible to existing Systems

© 2010 Cisco and/or its affiliates. All rights reserved. 36

―Cisco‘s Aironet 3500 Series with CleanAir technology tackles [interference] head on and represents the next phase in the evolution of enterprise wireless networks: self healing, mission-critical WLANs.‖

Mike Brandenburg

Best of Interop judgeAironet 3500 Series Access Point

with CleanAir Technology

Best of Interop 2010 Wireless & Mobility


Technology Differentiation and Innovation

Cisco Alternative

Specialized chipset

design

High Resolution

Information

System

Integration

Standard chips limited to

basic Wi-Fi data only, in

monitor OR traffic mode

No automatic action or

system-wide

correlation

Wi-Fi data only,

very limited ―best

guess‖ data

Benefit

Enables collection of rich

RF data, monitor/serve

traffic simultaneously

Auto-Optimization,

location, history,

RF forensics, reporting

Spectrum intelligence on

non-Wi-Fi interference

with impact severity and

unique device tracking



Cisco AnyConnect

38



Improved Remote Access Experience

Always-On Security and Protection

Consumerization

Mobility Challenges

Unifying In-Office and

Out-of-Office User Experience

Extending In-Office Security

and Policy to Mobile Users

Mandate for User Choice in

Device


Future of Work: Work Is an Activity, Not a Place

Workforce

Flexibility

Anywhere

Productivity

Real-Time

Collaboration


Can Mobile Devices Access My Network

Transparently and Securely?

Seamless, Persistent Services for Flexible Security Policy

Unmanaged Devices, Risk ofData Loss, and Lack of Access

Mobile Business Executive

Cisco AnyConnect Secure Mobility

AcceptableUse

Access Control

Data Loss Prevention


No Security or Visibility Security

Intranet

Corporate File Sharing

Traditional Remote Access VPN

Rarely-OnOnly connected if / when

absolutely necessary

LimitedPredominantly PC-based

Client Support

ManualNumerous ―clicks‖

Non-persistent Connection


Traditional Mobile Web Security

Limited ClientsPredominantly PC-based

Client Support

Limited SecurityURL-filtering client unable to address key use cases

No AccessNot integrated, requires

separate VPN client


Threat Prevention

Acceptable Use

Access Control

No AccessAccess

Intranet



ChoiceDiverse Endpoint

Support for Greater Flexibility

SecurityRich, Granular Security

Integrated Into the network

ExperienceAlways-on Intelligent

Connection for SeamlessExperience and

Performance

Cisco AnyConnect Secure Mobility Web Security with Next Generation Remote Access

Acceptable Use

Access Control

Intranet


Access Granted


Threat Prevention

WSA ASA


Windows, Mac and Linux

Apple iOS 4

iPhone 3G/3GS/4, iPod touch2nd and 3rd generation, upcoming iPad support

Windows Mobile 6.x

Touch screen devices

Secure remote accessto enterprise applicationsfrom Apple iOS 4 and Windows Mobile 6.x

Support planned for additional enterprisemobility platforms

Widest Support for Enterprise Mobility


Profile Import

SCEP Enrollment

Connect on Demand

Network Roaming

DTLS Support


Cisco AnyConnect – One Client

ASA Remote AccessISRs

SSL VPNIPsec VPN

VPN Client AnyConnect VPN Client ScanSafe Anywhere+

Wired switches & Wireless controllers

802.1XConnection

Manager

Secure Services Client

Web Security

Web SecurityAppliances


Delivering Real Time User Experiences Everywhere with Secure Mobile Access

Cisco Medianet improves users' quality of experience while at the same time reducing operating costs by simplifying the deployment and operation of the network.

Cisco ISR G2 delivers a superior customer experience and delivers the lowest TCO in the industry with green credentials.

Cisco CleanAir provides the tools you need to support a truly mission-critical wireless network while simplifying ongoing operations.

Cisco AnyConnect provides mobile employees on laptops or smartphones with an always-protected experience while enabling IT administrators to deliver comprehensive policy enforcement.

Summary


Be Sure To CompleteAn Evaluation For a Chance to Win a Flip Mino HD Camera


TIME SESSION

9:30-10:30amBorderless Networks: Delivering Real Time User Experiences Everywhere with Secure Mobile Access

Collaboration: The New Workspace

Data Center: Journey to a Service-Centric IT Environment

10:30 - 10:45am Break

10:45-12pmBorderless Networks: Using the Network to Optimize TCO and Business Agility

Collaboration: Virtualization

Data Center: Virtual Desktop Experience

12 - 1pm Lunch and Networking

1:00-2:00pmBorderless Networks: Extending Virtualization Beyond the Cloud

Collaboration: Video Interoperability, TelePresence, Tandberg, WebEx…and the World

Data Center: Real World Applications:

2-2:15pm Break

2:15-3:15pm

Borderless Networks:Emailand Web Security in a World Without Borders

Collaboration: An architectural roadmap for Avaya/Nortel PBXs to Cisco Unified Communications and

Collaboration

Data Center: Unified Computing with Unified Fabric

3:15-3:30pm CLOSE – Please hand your Evaluation forms in at the Tech Days Registration Desk.

Borderless Networks Track Agenda


Documents

Delivering Real Time User Experiences Everywhere with Secure … · motherboards—no lead! ... Evolution of Software Packaging and Activation 2010+ 2004+ 1990s Introduced with ISRs