CLASS 12

1
CLASS 12

• Presentation
• Enterprise APs

2
Cisco Aironet 350 Series
3
Overview of 350 series

• Solutions for the enterprise and small and medium
  sized business
• Offers scalable, centralized security and inline
  power
• integrates seamlessly into an existing network as
  a wireless overlay
• All Cisco Aironet 350 Series client adapters and
  access points are IEEE 802.11b compliant

4
Products of Aironet 350 Series

• Client Adapters
• Access Points
• Multifunction Bridge
• Workgroup Bridge
• Antennas
• Secure Access Control Server V.2.6

5
Client Adapters

• Wireless client adapters connect a variety of
  devices to a wireless network either in ad hoc
  peer-to-peer mode or in infrastructure mode with
  APs.
• Available in PC Card (PCMCIA) and Peripheral
  Component Interconnect (PCI) form factors

6
Features of Client Adapter

• Superior range and throughput
• Secure network communications
• World mode for international roaming
• Full-featured utilities for easy configuration
  and management
• Compliance with the IEEE 802.11b high-rate
  standard
• Support for all popular operating systems

7
Client Adapter Specifications

• Data Rates Supported 1, 2, 5.5, and 11 Mbps
• Network Standard IEEE 802.11b
• Frequency Band 2.4 to 2.4897 GHz
• Wireless Medium Direct Sequence
  Spread
• 
  Spectrum (DSSS)
• Media Access Protocol Carrier sense multiple
  
  
• access with collision avoidance
  (CSMA/CA)
• Modulation
• DBPSK _at_1 Mbps
• DQPSK _at_ 2 Mbps
• CCK _at_ 5.5 and 11 Mbps

8
Client Adapter Specifications(cont)

• Operating Channels North America 11
• Range (typical)
• Indoor
• 130 ft (40 m) _at_ 11 Mbps
• 350 ft (107 m) _at_ 1 Mbps
• Outdoor
• 800 ft (244 m) _at_ 11 Mbps
• 2000 ft (610 m) _at_ 1 Mbps
• Input Power Requirements 5 VDC /- 5
• Typical Power Consumption (at 100 mW transmit
  power setting)
• Transmit 450 mA
• Receive 270 mA
• Sleep mode 15 mA

9
Access Point

• An AP is the center point in an all-wireless
  network or a connection point between a wired and
  wireless network.

10
Multiple APs Deployment
11
Features of AP

• The Cisco Aironet 350 Series AP supports data
  rates up to 11 Mbps, is IEEE 802.11b compliant
• Support for inline power over Ethernet,
  simplifying and reducing the total cost of
  installation and ownership
• High-performance 100 Milliwatt (mW) radio design,
  with power management capabilities
• Future-proof(Funny)architecture that can support
  additional software features for investment
  protection

12
Software Features of AP

• 802.1x-based Extensible Authentication Protocol
  (EAP) services that provide centralized,
  user-based authentication for hassle-free
  security administration and user-based privacy
• Automatic channel selection, Cisco Discovery
  Protocol (CDP), Dynamic Host Configuration
  Protocol (DHCP), and BOOTP services to simplify
  installation and management of WLAN infrastructure
  s

13
Software Features of AP (cont)

• High-availability services, such as load
  balancing and hot-standby redundancy, for
  dependable, performance, and reliability
• Rich filtering options on both the Ethernet
  and radio side to provide performance and
  application tuning to meet specific business
  requirements

14
Load Balancing of AP

• Up to three APs, configured for different
  channels, can be colocated to achieve aggregate
  peak capacity of 33 Mbps for a single coverage
  area.
• Load-balancing policies based on number of users,
  error rates, or signal strengths redistribute
  users to deliver more balanced collision domains
• Another scalability enhancement is the addition
  of broadcast and multicast filtering. This
  enables administrators to select the amount of
  such frames that enter the WLAN, conserving the
  shared bandwidth.

15
Security of AP

• Cisco Aironet APs interoperate with EAP-enabled
  Remote Access Dial-In User Service (RADIUS)
  servers such as the Cisco Access Control Server
  2000 Version 2.6 and EAP-enabled client adapters
  such as Cisco Aironet Series clients providing
  user-level authentication over an encrypted link.
• After successful mutual authentication with the
  RADIUS server, the user derives a dynamic WEP
  encryption key that uniquely encrypts that users
  traffic over the air, ensuring security from both
  outside sources and inside network users.

16
specifications of AP

• Uplink Auto-sensing 10/100BaseT Ethernet
• Range (typical _at_ 100-mW transmit power setting
  with 2.2 dBi diversity dipole antenna)
• Indoor
• 130 ft (39.6 m) _at_ 11 Mbps
• 350 ft (107 m) _at_ 1 Mbps
• Outdoor
• 800 ft (244 m) _at_ 11 Mbps
• 2000 ft (610 m) _at_ 1 Mbps

17
Specifications of AP (cont)

• Automatic Configuration Support BOOTP and DHCP
• Remote Configuration Support
• Telnet, HTTP, FTP, TFTP, and SNMP
• Input Power Requirements
• 24 /- 10 to 60 VDC (Ethernet line power)
• Local Configuration
• Direct console port (with supplied serial
  cable)

18
Multifunction Bridge

• The Cisco Aironet 350 Series Multifunction
• Bridge is a dual-purpose wireless device.
• In bridge mode, the Cisco Aironet 350Series
  Multifunction Bridge provides for high-speed
  long-range outdoor links between buildings.
• When configured as an access point (AP), the
  Cisco Aironet 350 Series Multifunction Bridge is
  the ideal wireless infrastructure device for
  installations subject to plenum rating and harsh
  environments such as warehouses, factories,
• and the outdoors.

19
Point-to-point Wireless bridge Solution
20
Point-to-Multipoint Wireless Bridge Solution
21
Multifunction Bridge features

• High-speed (11-Mbps) high-power (100-mW)
• radios delivering building-to-building links
  of
• up to 18 miles (28.9 km)
• Metal case for durability and plenum rating
  Extended operating temperature rating for harsh
  environments
• Simplified installation, improved performance,
  and investment protection
• Full user-selectable AP functionality Upgradable
  architecture, ensuring investment protection

22
Workgroup Bridge Specificatoins

• Range (typical)
• Bridge mode outdoors
• 18 miles (28.9 km) _at_ 11 Mbps
• Up to 25 miles (40.2 km) _at_ 1 Mbps
• AP mode indoors
• 130 ft (39.6 m) _at_ 11 Mbps
• 350 ft (107.0 m) _at_ 1 Mbps
• AP outdoors
• 800 ft (244 m) _at_ 11 Mbps
• 2000 ft (610 m) _at_ 1 Mbps

23
Workgroup Bridge

• Designed to meet the needs of remote
• workgroups, satellite offices, and mobile
  users,
• The workgroup bridge quickly connects up to
• eight Ethernet-enabled laptops or other
  portable computers to a wireless LAN (WLAN),
  providing
• the link from these devices to any Cisco
  Aironet
• Access Point (AP) or Multifunction Bridge. The

24
A Remote Workgroup
25
Workgroup Bridge Features

• Driverless installation of up to eight
  Ethernet-enabled devices
• Optimum wireless performance and range
• Standards-based centralized security
• Two versions for a range of application
  requirements
• Full-featured utilities and robust management

26
Workgroup Bridge Specifications

• Client Interface 10BaseT Ethernet
• Clients Supported
• Direct One
• Via hub Eight
• Range (typical)
• Indoor
• 130 ft (40 m) _at_ 11 Mbps
• 350 ft (107 m) _at_ 1 Mbps
• Outdoor
• 800 ft (244 m) _at_ 11 Mbps
• 2000 ft (610 m) _at_ 1 Mbps

27
Antenna

• 350 Series includes a complete range of antennas
  for client adapter, access point, and bridge
  equipment that enable a customized wireless
  solution for almost any

28
Optional, Higher-Gain Antennas Can be Used to
Extend the Range of Access Points
29
With Cisco Aironet Bridge Antennas, Wireless
Links over Great Distances and Obstacles are
Possible
30
Secure Access Control Server V.2.6 (ACS)

• To support the growing population of users that
  connect to your network from all types of devices
  and services VPNs, remote access, broadband,
  voice, and wireless solutionsCisco introduces
  Cisco Secure Access Control Server (ACS) V.2.6
  for Windows 2000 and NT.
• Cisco Secure ACS is a highly scalable, high
  performance access control server that operates
  as a centralized RADIUS or TACACS server system
  and controls the authentication, authorization,
  and accounting (AAA) of users accessing corporate
  resources through the network.

31
ACS Administration

• Who can log in to the network from wired or
  wireless connections
• What privileges each user has in the network
• What accounting information is recorded in terms
  of security audits or account billing
• What access and command controls are enabled for
  each administrator configuring Cisco IOS
  routers, Catalyst switches, or any TACACS
  enabled network device

32
802.16a

• Still relatively new to me
• Will be best for large organizations.
• We are looking into implementing this.

33
IEEE 802.16The Next Wireless Revolution
34
General Overview

• Standard for wireless metropolitan area networks
  (WirelessMAN)
• Supports a variety of services such as IP, voice
  over IP, and streaming video
• Protocol independent supporting ATM packet
  based protocols

35
Applications

• Economically bridges the last mile
• Buildings equipped with subscriber and base
  stations, SS BS
• Users connect to SS via conventional network
  technologies (e.g. 802.3, 802.11)
• BSs connected directly to backbone
• Lowers barriers to entry for new ISPs increasing
  competition
• Provides broadband to rural communities and
  developing nations

36
802.16 Characteristics

• Point-to-multipoint broadband wireless access
• Operates in 10-66 GHz spectrum
• Data rates up to 134 Mbps
• Requires directional line-of-sight (LOS)
  propagation
• 802.16a adopted to address these concerns
• Operates in 2-11 GHz spectrum
• Eliminates need for directional LOS propagation
• Greater range but lower data rates

37
802.16 MAC

• WirelessMAN operates at MAC sub-layer of Data
  Link Layer
• MAC layer is further subdivided into three layers
• Convergence sub-layer (CS)
• Common part sub-layer (CPS)
• Privacy sub-layer

38
802.16 MAC CS Layer

• Interoperability requires convergence sub-layer
  to be service specific
• Separate CS layers for ATM packet protocols
• CS Layer
• Receives data from higher layers
• Classifies data as ATM cell or packet
• Forwards frames to CPS layer

39
802.16 MAC CPS Layer

• Performs typical MAC functions such as addressing
• Each SS assigned 48-bit MAC address
• Connection Identifiers used as primary address
  after initialization
• MAC policy determined by direction of
  transmission
• Uplink is DAMA-TDMA
• Downlink is TDM
• Data encapsulated in a common format facilitating
  interoperability
• Fragment or pack frames as needed
• Changes transparent to receiver

40
802.16 MAC Privacy Sub-Layer

• Provides secure communication
• Data encrypted with cipher clock chaining mode of
  DES
• Prevents theft of service
• SSs authenticated by BS using key management
  protocol

41
802.16 Physical Layer

• Variety of services supported requires support
  for continuous and bursty traffic
• Burst profiles associated with every frame
• Profiles describe transmission properties such as
  encoding modulation schemes
• Modulation encoding schemes dynamically
  adjusted to account for changing link conditions

42
802.16 Physical Layer

• Data rates determined by exact modulation and
  encoding schemes
• TDD and FDD supported in 802.16 to accommodate
  burst profiling
• 802.16a adds OFDM and OFDMA to support NLOS
  multipath propagation

43
Alternatives

• Mobile Broadband Wireless Access
• IEEE standard 802.20
• Extends broadband wireless to mobile users
• Data rates in excess of 1 Mbps
• Optimized for IP transport
• Supports vehicular mobility at 250 km/h

44
802.16e vs. 802.20

• IEEE commissioned 802.16e working group to extend
  WirelessMAN to mobile end users
• 802.16 has greater interoperability
• 802.20s data rates will likely exclude bandwidth
  intensive applications
• 802.20 must be built from scratch
• 802.16 enjoys strong industry support

45
Homework

• Read AntennaAlignmentTool.pdf
• ½ Page bullets
• 5 Questions and Answers
• Due 04-26-04

46
Quiz

• Whats the the default SSID for a Cisco AP?
• What is Ciscos version of RADIUS?
• How much can a Cisco client card put out?
• What is the advertised outdoor range of a Cisco
  AP?
• Whats muticast filtering?
• How many digits in a 128 bit hex key?