Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
Controllers
Aruba 200
Aruba 800
Aruba 6000
ArubaOS
Controller Family
Performance & Capacity
0-64 AP 2 Gbps 0-32 AP 1 Gbps 0-128 AP 4 Gbps
0 - 2048 AP 10Gbps
6000
3600
3400
3200 65x
620
AP Count
We offer solutions everywhere
4x 10/100Base-T (RJ-45) 4x 10/100Base-T (RJ-45) PoE 1x 10/100/1000Base-T (RJ-45) 1x USB Express Card Slot
Performance
Serial Console Port 400 Mbps crypto (3DES, AESCBC256) 320 Mbps crypto (AES-CCM) 800 Mbps Firewall Throughput
Interfaces
4x 10/100Base-T (RJ-45) PoE+ 4x 10/100Base-T (RJ-45) 1x 10/100/1000Base-T (RJ-45) 1x USB 2.0 port 1x ExpressCard Slot 1 x RJ-45 Serial Console Port Integrated power Dedicated Control Processor Dedicated Hardware Crypto Core Dedicated Network Processor Status LEDs
Advanced Features
File server, print server, cellular uplink
Performance
1.6 Gbps crypto (3DES, AESCBC256) 800 Mbps crypto (AES-CCM) 2 Gbps Firewall Throughput
Control Processor
Interfaces
4x 10/100/1000Base-T (RJ-45) PoE+ 2x 10/100/1000Base-T (RJ-45) 2x 1000Base-X (SFP) 4x USB 2.0 ports 1x ExpressCard Slot Integrated single radio 802.11 a/b/g/n AP (651 only) 1 x RJ-45 Serial Console Port Serial Console Port 2x 1000Base-X (SFP)
Status LEDs
Advanced Features
File server, print server, cellular uplink
Capacity
3200
8-32 Campus Connected APs Up to 128 Remote APs Up to 2048 Users 32-64 Campus Connected APs Up to 256 Remote APs Up to 4096 Users 64-128 Campus Connected APs Up to 512 Remote APs Up to 8192 Users
3400
Dedicated Network Processors Dedicated Hardware Crypto Cores Multiple Dedicated Control Processors
1RU 19 Enclosure
3600
Performance
1.6 Gbps, 4 Gbps and 8 Gbps crypto performance (3DES, AESCBC256) 800 Mbps, 2 Gbps, 4 Gbps crypto performance (AES-CCM) 3, 4, and 4 Gbps wired Non-encrypted Throughput Status LEDs Performance (full-duplex) 4x Dual personality ports 10/100/1000Base-T (RJ45) or 1000Base-X (SFP) 1 x RJ-45 Serial Console Port Multi-core, Multi-threaded Network Processor Dedicated Crypto cores
Serial Console Port 4x Dual personality ports 10/100/1000Base-T (RJ-45) or 1000Base-X (SFP)
Interfaces
Programmable Architecture
4RU 19 Enclosure
Line Cards Single or Dual Supported 24FE/2GE 24FE/2GE SPOE (802.3af PoE) 2GE (GBIC)
Fan Tray
Redundant PSUs Supervisor Cards I or II Single or Dual Supported Dedicated Control Processors Dedicated Network Processors Hardware Accelerated Crypto FPGAs
Capacity
Up to 512 Campus Connected APs Up to 1024 Remote APs 8,192 Users
Multi-Core, Multi-threaded Network Processor Aruba Mobility Processor
Performance
Up to 8Gbps crypto performance (3DES) Up to 4Gbps crypto performance (AES-CCM) Up to 20Gbps wired Non-encrypted Throughput Performance (full-duplex)
Programmable Architecture
Aruba Mobility Processing Multi-Core, Multi-threaded Network Processor Dedicated Crypto Cores
600 Series
Up to 8 and 16 campus APs per controller Designed for branch office deployments USB 3G WAN, USB NAS, file and print server Gigabit Ethernet connections with 802.3at PoE Optional integrated 802.11n Wi-Fi
3000 Series
Up to 32, 64 and 128 campus APs per controller Designed for midsize to large deployments
6000 Series
80Gbps firewall performance, up to 2,048 campus APs Most scalable modular controller available in the industry Designed for corporate headquarters, large campus deployments Up to 8x 10-Gigabit Ethernet connections per chassis
M3 512
RAP to AP Ratio
Firewall Capacity Encryption Capacity Max Power Usage 10/100 Ethernet 1Gbps Ethernet 10Gbps Ethernet 802.3at PoE Ports IPSec Tunnels Redundant Power Redundant Fan USB Ports ExpressCard Slot Integrated Radio
4:1
0.8 Gbps 0.4 Gbps 115W 8x 1x 4x 256 1x 1x
4:1
2 Gbps 1.6 Gbps 126W 6x 4x 512 4x 1x 651
4:1
3 Gbps 0.8 Gbps 35W 4x 2,048
4:1
4 Gbps 2 Gbps 45W 4x 2,048
4:1
4 Gbps 4 Gbps 60W 4x 4,096
2:1
20 Gbps 4 Gbps 130W 10x 2x 4,096
2:1
80 Gbps 16 Gbps 520W 40x 8x 16,384
Software Licenses
SKU
LIC-(X)-AP Licensed Per AP Installed On MC Details
Number of physical APs supported on the MC. Can be installed in increments of 1,2,4,8,,512. Enables firewall enforcement, role based access control, per application QoS for wired and wireless users. Protects against advanced wireless attacks; rogue AP classification is offered in base ArubaOS. Enables xSec encryption (longer keys, FIPS validated algorithm, Layer 2 header encryption) on the MC. Enables firewall policy enforcement and role based access control for VPN users on the MC. Cloud based content security service: Standard bundle (anti-malware and URL filtering) Advanced bundle (+ advanced web security) Premium bundle (+ data leak prevention) 1/3 year subscriptions with 100/100 user increments Network wide configuration, monitoring, historical reporting, wireless security, inventory management. Location tracking, RF planning and visualization.
LIC-PEFNG-(X)
AP
MC
AP User MC
MC MC MC
CSS-(X)
User
Cloud Based
AWMS-(X)
AP + MC + Switch
AW
If the master controller is not terminating any APs, only single AP capacity for AP, PEFNG and WIP licenses, single user capacity for XSC license and per controller PEFV license are required on the master controller if any of these licenses are active on the local controllers.
Redundancy
Same type and capacity of licenses need to be active on both active and standby Mobility Controllers, and active and standby AirWave Management Servers.
Configuration of an access point as a mesh portal, mesh point, remote access point is left to IT administrators judgment. Each physically installed access point consumes an AP license on the mobility controller. Guidelines in terms of remote connected (across the WAN) and campus connected (across the LAN) access point capacity needs to be followed per mobility controller.
Has to be equal to licensed AP capacity on the MC. WIP not required for rogue AP classification, containment and tracking (available in baseOS). For wired firewalling, it is enough to install single AP PEFNG license. Available for download from Aruba mobility controller with base ArubaOS no software licensing is required. For firewall policy enforcement and role based access control, PEFV controller based licensing is required on the mobility controller.
VIA Deployment
$3K
Packet capture PoE Switch and terminal server LAN-speed Firewall Intrusion Prevention Mobile IP Router VPN Concentrator
$2K
$6K
$20K
$10K $15K $50K
$25K
(@ 4 Gbps)
Access Points
AP 90 series AP 60 series
Indoor
Outdoor
1x1 MIMO, up to 150Mbps Deployed on Wall or Ceiling 4 rubber feet for desk mount
802.11b/g/n Air Monitor 802.11 b/g/n WLAN AP No spectrum analysis No lifetime warranty
Entry-level
Single radio single band without compromising security and reliability Purpose built for customers upgrading from 802.11b/g
RP-SMA interface for high power and external antenna support (available only in China)
Status LEDs
Certifications
Enterprise Security
Status LEDs
Trusted Platform Module High Performance CPU Wireless IPS Policy Enforcement Firewall
Interfaces
Regulatory Compliance
Global (See Data Sheet) UL2043 Plenum Rated
Physical Specifications
4.7 x 5.1 x 1.4 (120mm x 130mm x 35mm) 13.2 ounces (385g)
Multi-Function Design
802.11a/b/g/n Air Monitor 802.11 a/n + b/g/n WLAN AP High-performance Wi-Fi for Branch Office AP, Power Users, Indoor Bridging Applications
Enterprise Class
Status LEDs
3x3 MIMO for maximum performance Adjustable for optimal RF Performance Deployed on Wall or Ceiling
Enterprise Class
100/1000Base-T RJ-45 (auto-sensing) Supports 802.3af, 802.3at or PoE+ Intelligent Power Management Redundancy - high availability operation Gigabit Secure-Jack
AP-92/93
Entry level, ideal for Wireless IPS and Spectrum Low-density deployments Ceiling mount optimized Affordable, high performance High-density deployments Ceiling mount optimized Maximum deployment flexibility Low-density environments Above ceiling or enclosure-based installations Maximum deployment flexibility High-density environments Above-ceiling or enclosure-based installations
AP-105
AP-120/121
AP-124/125
Dual Radio
Specification
Antennas Data rate per radio (Mbps) 802.11n spatial streams 802.11n MIMO 2.4 + 5GHz WIPS 2.4 + 5GHz spectrum analysis All ARM Features All Forwarding Modes All Access Point Modes Integrated TPM 2nd Ethernet Port Full Capacity w/ 802.3af Lifetime Warranty
AP-92/93
Ext/Int 300 2 2x2
AP-120/121
Ext/Int 300 2 3x3
AP-105
Int 300 2 2x2
AP-124/125
Ext/Int 300 2 3x3
* Interference classification, Real-Time FFT and Swept Spectogram are not supported.
Deployment Types Low Density Clients Point to Point Bridge Wireless IPS Spectrum Analysis High Density Clients Unified Communications High Definition Video Enterprise Mesh Wall Mount Wired Pass-Through
AP-92/93
AP-105
AP-124/125
Increased Coverage Area Improved Mesh Link Performance Software Configurable Both support a/b/g/n operation
Small Branches
Up to 30 Users
RAP-5
Home Offices
15 Users
RAP-5wn
5 secure ports 802.11a/b/g/n USB-WAN
RAP-2wg
2 secure ports 802.11b/g Wi-Fi
RAP-2WG
1 to 5 user, 5Mbps performance, 2.4GHz 802.11bg Wi-Fi Remote office, home office, remote learning, fixed telecommuter
RAP-5
1 to 30 user, >100Mbps performance, no Wi-Fi, wired Ethernet Remote branch office, fixed teleworker applications
RAP-5WN
1 to 30 user, >100Mbps performance, 2.4GHz or 5GHz 802.11n Wi-Fi Remote branch office, fixed teleworker applications, Wi-Fi compliance
RAP-2WG
Integrated 2.4GHz 802.11bg
RAP-5
RAP-5WN
Integrated 2.4GHz or 5GHz 802.11an or bgn
54Mbps
4x 10/100 1x 10/100/1000
300Mbps
2 3x3 2.4GHz + 5GHz
2.4GHz 2x 10/100
4x 10/100 1x 10/100/1000
Corporate HQ
DMZ
DSL Router
Mobility Controller
CORP
CORP
Remote AP
INTERNET Firewall/NAT
VOICE VOICE
Split Tunneling for Internet Traffic Built-in User-centric Firewall Integrated User Access Control HotelConnect Captive Portal PassThrough
We offer solutions everywhere
Corporate Backbone
We offer solutions everywhere
- Add software-based spectrum analysis to existing hardware - Preserve capital investments, leave the network undisturbed
- Add an analyzer card to all existing hardware - Incur labor costs, support expenses, new power supply (PoE) - Boosts running costs if always on
- Deploy new APs with hardware-based spectrum analysis - Incur AP and labor costs, write-off unamortized investment
Feature rich
FFT displays, spectrograms, interference classification Interference charts, channel quality and availability metrics, recording/playback for extended unattended data capture
Summary Dashboard
Azalea Networks
Point-toMultipoint
Mesh Networking
B
Wi-Fi
Wi-Fi
Wi-Fi Gateway
Layer 3, Routed Mesh Wi-Fi Dynamic, distributed routing Wi-Fi Full network intelligence Proven higher performance
Wired Backhaul
MSR4000
Capacity/Functionality
Two radio outdoor mesh router for network edge backhaul & access
MSR1200
Up to 2 radios that can each work in either AP mode or Backhaul mode Supports 802.11a/b/g/n and 4.9GHz Up to 4 BSSID for each radio Up to 16 SSID for each radio
2.400 2.483 GHz 4.940 4.99 GHz 5.150 5.35 GHz 5.470 5.725 GHz 5.725 5.85 GHz
4+1 10/100M Base T Ethernet interfaces 4 RP-SMA antenna connectors (50), diversity reception capacity (optional) Access: 100mW (20dBm) Backhaul: 100mW (20dBm) Operating temperature: 0 to 50 C (32 F to 122 F) Transportation: ISTA 2A
MST200
Single radio Supports 802.11 b/g/n and 2.42 483.5GHz
We offer solutions everywhere
One N type antenna connector (50) for extended antenna 2 autosensing 10/100M Base-T Ethernet interfaces (Optional support 802.3af-compliant PoE out)
400mW (26dBm)
Operating temperature: -40 to 55 C (-40 F to 131F) Transportation: ISTA 2A ETSI 300-19-2-4 spec T41.E class 4M3
MSR2000
We offer solutions everywhere
Up to 2 radios that can each work in either AP mode or Backhaul mode Supports 802.11a/b/g/n and 4.9GHz Up to 4 BSSID for each radio Up to 16 SSID for each radio
2.400 2.483 GHz 4.940 4.99 GHz 5.150 5.35 GHz 5.470 5.725 GHz 5.725 5.85 GHz
Autosensing 10/100M Base-T Ethernet interfaces (Optional support 802.3af-compliant PoE out) 2 N type antenna connectors (50) Access: 100mW (20dBm), 400mW (26dBm) Backhaul: 100mW (20dBm) Operating temperature: -40 to 55 C (-40 to 131 F) Humidity: 5% to 95% Weather rating: IP66 Wind survivability: up to 165 mph Shock & Vibration: ETSI 300-19-2-4 spec T41.E class 4M3 Transportation: ISTA 2A
MSR4000
Up to 4 radios that can each work in either AP mode or Backhaul mode Supports 802.11a/b/g/n and 4.9GHz Up to 4 BSSID for each radio Up to 16 SSID for each radio
2.400 2.483 GHz 4.940 4.99 GHz 5.150 5.35 GHz 5.470 5.725 GHz 5.725 5.85 GHz
2 Autosensing 10/100MBase-T Ethernet Optional support 802.3af-compliant PoE out 100~240 VAC 50/60Hz
Operating temperature: -40 to 55 C (-40 to 131 F) Humidity: 5% to 95% Weather rating: IP66 Wind survivability: up to 165 mph Shock & Vibration: ETSI 300-19-2-4 spec T41.E class 4M3 Transportation: ISTA 2A
Web-based Configuration
Introduction to AirWave 7
What Is AirWave 7?
Premier multi-vendor network operations solution Product line within Aruba Networks Supports leading wireless and wired networking equipment and mobile devices Integrates with industry-leading enterprise management systems More than 1,000 customers worldwide
Enterprise
Retail
Education
Healthcare
Service Providers
Government
Easy-to-use console
Compliance reports
AirWave Wireless Management: One Console for Your Entire Wireless Network
RAPIDS software module for rogue AP detection and threat VisualRF software module for mitigation Additional options location tracking and RF maps - Master Console for AirWave MDM for multi-server deployments over-theair management of business - Failover for high-availability critical environments wireless devices AirWave Management Platform core network management application
Easy-to-use interface
Role-based access Access by network segment
Measure network-wide port utilization and per-port bandwidth and error rates
Contain
Classify Threats
Wireline fingerprint scans Wireless rogue scans using existing infrastructure Router & switch polling Laptop client Attack signatures
AirWave 7 Benefits
HPs internal IT organization has been able to reduce their time to resolution by 75% for wireless related support issues.
AWMS has helped Texas A&Ms IT group to divide tasks more efficiently between network engineering, installation, and field services.
With the AWMS, I can be onsite in a few clicks of the mouse, and can usually resolve the problem without dispatching a technician.
Well be able to monitor those changes [usage patterns and overall usage levels] and make whatever adjustments are needed.
AirWave 7 Demo
AirWave 7 Appliance
- Faster deployment in your data center
AirWave OnDemand
Wired infrastructure management for faster, more effective troubleshooting and root-cause analysis New AirWave Mobile Device Manager (MDM) module provides over-the-air management of business-critical devices Improvements to open architecture eases integration with IT operations infrastructure Customizable user interface and dashboards deliver customized views for specific roles, such as service desk personnel or executives Support for state-of-the-art wireless infrastructure, including Arubas newest products and management capabilities
HTM L
Flash The AirWave product has exactly the kind of architecture we would have used if we had XML API the resources to build it ourselves. Thats a huge cost advantage for us, because it allows us to use our own and other open-source tools rather than having LAMP Open Source Stack Other to buy a high-priced, end-to-end solution.
Applications
Apache Web Server Network Manager at University of Minnesota Duluth Josh Richard, Linux OS SQL
Network Connectivity
SNMP v1, 2c, 3 SNMP v1, 2c, 3 SSH CLI
Monitoring
Configuration
Your Network
Arubas User-Centric Mobility Overlay: Seamless Integration Into Your Existing Network
Mobility Management
Mobility Controller
Existing Network
Access Points
Augments existing capabilities of Aruba controllers No changes to existing network Runs on standard PC hardware Scales to support installations with 100,000+ wireless access points and controllers
AirWave Adds:
Improved tracking accuracy for hundreds of clients, historical location information, and RFID tracking Centralized search for devices across the WLAN
On-demand reporting of global WLAN stats Reporting on usage stats across all SSIDs Monitoring of memory, CPU, Ethernet stats, AP connectivity performed per controller
AirWave Adds:
Storage of user and device statistics for up to 2 years Grouping of different sets of devices into folders Real time per SSID usage statistics and reporting Automated reporting with email, HTML, XML Customized reporting of network usage and stats Memory, CPU, port, device reports across the WLAN
Centralized management of around 3000 APs Each master controller domain managed separately Separate firmware and configuration management on master and local Aruba controllers
AirWave Adds:
Virtualized network management of different functions and hardware with role based administrator access Centralized management of more than 100K APs
Rogue AP containment over the wired and wireless Stateful firewall and role based access control for network infrastructure and user data security
AirWave Adds:
Automated historical reporting for security compliance
Automated configuration policy auditing of WLAN infrastructure supported with alerts and triggers
Rogue AP switch port identification and wired network rogue AP scans where WLAN is not present Policy and rule based wireless intrusion detection
HTML
Flash
XML API
Other Applications
Network Connectivity
SNMP v1, 2c, 3 SNMP v1, 2c, 3 SSH CLI
Monitoring
Configuration
For both Wireless and Wireline devices Wireless bandwidth has radio type conditions
AirWave 7: RAPIDS
Scan Network
Contain
Classify Threats
Wireline fingerprint scans Wireless rogue scans using existing infrastructure Router & switch polling Laptop client Attack signatures
AirWave 7: VisualRF
Displays accurate location information for all wireless users, rogues, and devices No separate location sensors or servers Up-to-date heat maps and channel maps for RF diagnostics Visual display of errors and alerts Historical user location playback Automatically plan AP locations Easy import of existing floor plans and building maps VisualRF Plan provides off-line planning capabilities
Education
Healthcare
Government
Telecom
Hospitality
Public Transport
Public Venues
Services
Retail
Manufacturing
Logistics
Temporary Facilities
Problem
We offer solutions everywhere
The Cost and Complexity to deploy and manage fully functional and secure Remote Networks
Remote AP architecture
A simpler thinner branch office
WAN
Plug-Play Client
LAN
Local Connectivity
Client VPN
To Datacenters
PEF
Distributed Policy Enforcement Firewall Engine Access Forwarding
LAN/WAN/Internet
But what happens when: User count in one office is a little more than allocated IP address?
When a new device class is added? Eg. VoIP, guest? ISR ISR Firewall policies need to be modified?
Subnet: FW policy: 172.16.1.0 /24 Subnet: FW policy: 172.16.2.0 /24 [172.16.1.0 /24] allowed for web-server1 Diallow everything else [172.16.1.0 /24] allowed for web-server1 Diallow everything else
Mobile Worker
Occasional Telecommuter
Work At home
Micro Branch
Small Branch
Medium Branch
Site-2-site VPN
VIA
IPSec VPN
SSL VPN
Optimal performance
Especially for m-media VoIP Video
Easy deployment
Works over any network
=
Aruba VIA
We offer solutions everywhere
Auto-upgrade image and configuration over existing or new connections Auto-configure Windows Zero Config for all wireless client configuration Performance ready for always-on connections Single point of policy enforcement across WLAN, Branch office and VPN on Aruba controller Standards based security protocols (IKE) for all key exchange, including SSL mode
Summary
Data Center
LAN
Branch
Hotspot
Network Management
Low Cost Centric Management System
MMS Software
MM-100 Appliance
Data Center
Home Office
Regional Office
Branch Office