Aruba Networks Product Overview
Award Winning Product Portfolio Aruba 200 Aruba 2400, 3000 Aruba 800 Aruba 6000 for Regional Locations for the Retail / Store Front for the Enterprise HQ for the Branch Office Aruba. OS Embedded Mobility Software Applications Aruba Access Points Single & Dual-Radio (a/b/g) Multi-Function CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved Mobility Management System RF, Service Creation, Network Management Applications
Aruba Product Family Single Radio APs § Software Configurable 802. 11 a or b/g § AP / Air Monitor / Remote AP § Ideal for Dense Office, Home Office and/or Air Monitor Deployments § Internal or External Antenna Options Dual Radio APs § Low Cost § Dual-Radio 802. 11 a/b/g § Ideal for Campus / Remote / Branch Office AP § High Availability Features (AP 70) § Wired and Wireless Security (AP 70) Controllers § Extensible USB Interface Port (AP 70) § 800 Mb - 8 Gb Capacity § 6 AP / 100 User to 2048 AP / 32, 768 User Capacity § Programmable Control & Data Planes, HW Crypto § Home Office / Branch Office / Regional Office / Campus / Data Center Optimized Solutions CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
The Aruba Product Portfolio Non-Disruptive Deployment Model Protects Fixed Edge Investments Enterprise Mobile Edge Corporate Campus Regional Offices AP-60 LAN Nomadic Offices Partners WAN Internet Customers ARUBA 6000 Regional Offices AP-80 Home Offices ARUBA 200 ARUBA 2400 AP-65 AP-70 Remote Offices ARUBA 800 Retail Outlets ARUBA 200 Hotels AP-2 E Enterprise Mobile Edge CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved Enterprise Mobile Edge
Mobility Controllers
Overlay (Indirect) / Direct DATA CENTER DEPLOYMENT (OVERLAY) FLOOR 1 WIRING CLOSET DEPLOYMENT (DIRECT) FLOOR 1 ARUBA 800 FLOOR 2 10/100 Mbps ARUBA 2400 DATA CENTER ARUBA 6000 BACKBONE CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved BACKBONE
Aruba Mobility Controller Family Same Value Proposition Across All Platforms Scalable and Flexible: - 200: 6 APs 800: 4 and 16 AP Options 2400: Support for 48 APs 3000: Scales from 32 to 128 APs 6000: Scales from 48 to 512 APs 6000+M 3: up to 2048 APs Performance & Capacity (800 MB – 8 GB full feature) 6 AP to 2048 AP Full Redundancy Options Single Mobility Network 6000 / M 3 3000 - Up to 32, 000 Access Points 2400 800 200 CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
Purpose-Built for Performance Unique Architecture Enables New Applications Control Processor Packet Processor Encryption Processor L 2/L 3 Switch with Serial & Power over Ethernet (SPOE) CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
Aruba 200 Mobility Controller Dedicated Network Processor § Capacity § 6 Access Points § 100 Users Dedicated Hardware-Accelerated Crypto FPGA § Performance § 1 Gbps Clear / 200 Mbps Crypto § Interfaces Dedicated Control Processor § 1 x WAN 10/100 Ethernet (RJ-45) § Auto-Sensing MDI/MDX § 1 x LAN 10/1000 Ethernet (RJ 45) § Auto-Sensing MDI/MDX Serial Console Port § 1 x RJ-45 Serial Console Port § Programmable Architecture § Control & Data Planes § Network Processor Core § Hardware-Accelerated Engine Status LEDs Sub 19” Desktop Form Factor 1 x 10/100 RJ-45 Ethernet LAN Port 1 x 10/1000 RJ -45 Ethernet WAN Port Small Office – Branch Office – Retail CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
Aruba 800 Series Mobility Controller Dedicated Network Processor § Capacity § 4 or 16 Access Points § 256 Users § Performance § 800 Mbps Clear / 200 Mbps Crypto § Interfaces Dedicated Hardware-Accelerated Crypto FPGA Dedicated Control Processor 802. 3 af Po. E 1 RU 19” Enclosure § 8 x 10/100 Ethernet (RJ-45) § Auto-Sensing MDI/MDX § 802. 3 af Po. E Support § 1 x Gigabit Ethernet (TX or SX options) § 1 x RJ-45 Serial Console Port § Programmable Architecture § Control & Data Planes § Network Processor Core § Hardware-Accelerated Engine Port Status LEDs 8 x 10/100 RJ-45 Ethernet Ports 1 x Gig. E Ethernet Port (TX or SX) Options Branch Office – Small/Medium Enterprise CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved Serial Console Port
Aruba 2400 Mobility Controller Dedicated Network Processor § Capacity § 48 Access Points § 768 Users § Performance § 2 Gbps Clear / 400 Mbps Crypto § Interfaces Dedicated Hardware-Accelerated Crypto FPGA Dedicated Control Processor 802. 3 af Po. E 1 RU 19” Enclosure § 24 x 10/100 Ethernet (RJ-45) § Auto-Sensing MDI/MDX § 802. 3 af Po. E Support § 2 x Gigabit Ethernet (GBIC) § 1 x RJ-45 Serial Console Port Status LEDs § Programmable Architecture § Control & Data Planes § Network Processor Core § Hardware-Accelerated Engine 24 x 10/100 RJ-45 Ethernet Ports Serial Console Port 2 x Gig. E (GBIC) Ports Campus – Regional Office – Medium/Large Enterprise CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
Aruba 3000 Series Mobility Controllers § Capacity § 3200 § § § 8 -32 Campus Connected APs Up to 128 Remote APs Up to 512 Users § 3400 § § § 32 -64 Campus Connected APs Up to 256 Remote APs Up to 1024 Users § 3600 § § § Dedicated Network Processors Dedicated Hardware Crypto Cores Multiple Dedicated Control Processors 1 RU 19” Enclosure 64 -128 Campus Connected APs Up to 512 Remote APs Up to 2048 Users § Performance § 1. 6 Gbps, 3. 4 Gbps and 6. 8 Gbps crypto performance (3 DES, AESCBC 256) § 800 Mbps, 1. 7 Gbps, 3. 4 Gbps crypto performance (AES-CCM) § 4 Gbps wired Non-encrypted Throughput Performance (full-duplex) § Interfaces § 4 x Dual personality ports 10/1000 Base -T (RJ-45) or 1000 Base-X (SFP) § 1 x RJ-45 Serial Console Port § Programmable Architecture § Multi-core, Multi-threaded Network Processor CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved § Dedicated Crypto cores Serial Console Port Status LEDs 4 x Dual personality ports 10/1000 Base-T (RJ-45) or 1000 Base-X (SFP)
3000 Series Platform Comparison 800 2400 3200 3400 3600 Campus Connected APs 16 48 32 64 128 Remote APs 16 48 128 256 512 256 768 512 1024 2048 4, 096 64, 000 64, 000 128, 000 256 768 512 1024 2048 1 Gbps 2 Gbps 3 Gbps 4 Gbps Encrypted throughput (3 DES) 200 Mbps 400 Mbps 1. 6 Gbps 4 Gbps 8 Gbps Encrypted throughput (AES-CCM) 200 Mbps 400 Mbps 800 Mbps 2 Gbps 4 Gbps Max Number users per controller MAC addresses Active Firewall Sessions Concurrent IPSec Tunnels Firewall Throughput CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
Aruba 6000 Modular Mobility Controller § Capacity § Up to 512 Access Points / 4, 096 Users § Supervisor Card I – 48 APs or 128 APs § Supervisor Card II – 256 APs § Performance § 8 Gbps Clear / 7 Gbps Crypto § Modular Supervisor Cards § Supervisor Card I – 4 Gbps/2 Gbps 3 DES § Supervisor Card II – 4 Gbps/3. 5 Gbps 3 DES § 1 x RJ-45 Serial Console Port § Modular Line Cards § 24 x 10/100 Ethernet (RJ-45) Line Card with 802. 3 af Po. E Support § 2 x Gig. E (GBIC) Line Card § Programmable Architecture § Control and Data Planes § Network Processor Core § Hardware-Accelerated Engine § All Components Modular and Hot-Swappable 4 RU 19” Enclosure Line Cards • Single or Dual Supported • 24 FE/2 GE SPOE (802. 3 af Po. E) • 2 GE (GBIC) Redundant PSUs Fan Tray Supervisor Cards I or II • Single or Dual Supported • Dedicated Control Processors • Dedicated Network Processors • Hardware Accelerated Crypto FPGAs Large Campus – HQ – Large Enterprise CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
Aruba Multi-Service Mobility Module Mark I § Capacity § Up to 512 Campus Connected APs § Up to 2048 Remote APs § 8, 192 Users Multi-Core, Multi-threaded Aruba Mobility Processor Network processor § Performance § Up to 8 Gbps crypto performance (3 DES, AESCBC 256) § Up to 4 Gbps crypto performance (AES-CCM) § Up to 10 Gbps wired Non-encrypted Throughput Performance (full-duplex) § Multi-Service Mobility Module (M 3) Interfaces § § 10 x 1000 Base-X (SFP) 2 x 10 GBase-X (XFP) 1 x 10/100 Base-T Management Port (RJ-45) 1 x Serial Console Port (RJ-45) § Programmable Architecture § Aruba Mobility Processor § Multi-Core, Multi-threaded Network Processor § Dedicated Crypto Cores CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved 10 x 1000 Base-X (SFP) 2 x 10 GBase-X (XFP) Serial Console Port 10/100 Base-T Management Port (RJ-45)
Aruba 6000 Modular Mobility Controller – With M 3 § Capacity 40 x 1000 Base-X (SFP) § Up to 2048 Campus Connected APs § Up to 8192 Remote APs § Up to 32, 768 Users 8 x 10 GBase-X (XFP) § Performance § 40 Gbps Clear (full-duplex) § 32 Gbps Crypto (3 DES, AESCBC 256) § 16 Gbps Crypto (AES-CCM) § Compatibility § Up to 4 M 3 s per 6000 chassis § Supports legacy Line cards § Requires 400 watt PSU § All Components Modular, Hot. Swappable CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved Fan Tray Redundant PSUs Up to 4 M 3 Mark I
M 3, Supervisor Comparison SC-128 C 1 SC-256 C 2 M 3 Campus Connected APs 128 256 512 Remote APs 128 256 2048 4, 096 8, 192 64, 000 256, 000 524, 300 4, 096 8, 192 4 Gbps 20 Gbps Encrypted throughput (3 DES) 1. 8 Gbps 3. 6 Gbps 8 Gbps Encrypted throughput (AES-CCM) 1. 8 Gbps 3. 6 Gbps 4 Gbps* Max Number users per controller MAC addresses Active Firewall Sessions Concurrent IPSec Tunnels Firewall Throughput *Software upgrade path to an estimated 10 Gbps Encrypted throughput CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
Access Points
Wireless Access Point Family Single Band (802. 11 a or b/g) Dual-Band (802. 11 a/b/g) Auto-Discovery (Plug’n’Play) Multi-Service - Multi-Band Wireless AP Remote AP Branch Office AP Air Monitor AP 80 M AP 70 Centrally Managed - RF Parameters Security Parameters Service Definition Version Management Regulatory Domain Low End / Low Cost High End / High Feature Integral / Detachable Antenna Versions AP 65 AP 60/61 AP 41 CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
Aruba Access Point Family Single Radio § Software Configurable 802. 11 a or b/g § AP / Air Monitor / Remote AP § Ideal for Dense Office, Home Office and/or Air Monitor Deployments § Internal or External Antenna Options Dual Radio § Low Cost § Dual-Radio 802. 11 a/b/g § Ideal for Campus / Remote / Branch Office AP § High Availability Features (AP 70) § Wired and Wireless Security (AP 70) § Extensible USB Interface Port (AP 70) Outdoor APs § Dual-Radio 802. 11 a/b/g § AP or WDS Bridge (Point-Point & Multi-Point) § Fully Environmentally-Hardened Design : Desert, Snow, Rain, Harsh Environment CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
Aruba 41 Integral Adjustable Tri-band Antenna Reset Button (Delete AP Config) Supported Applications § 802. 11 a or b/g Access Point § 802. 11 a/b/g Air Monitor § Dense AP Deployments § Remote / Home Office Deployment § Any Cost Sensitive, High-Density Application Single, Multi-mode 802. 11 a or b/g radio 10/100 RJ-45 Ethernet Port 802. 3 af Po. E (NO serial support) CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved Features § Software Configurable Radio § Multi-band 802. 11 a or b/g Operation § 10/100 Base-T RJ-45 Interface § 802. 3 af Po. E Power Sourcing § Integrated Mid-Gain, Tri-Band Omni- directional Antenna § EN 60601 Medical Directive Certified § No Frills Form Factor (Wall, Under Desk Deployable) § Low Cost
Aruba 60 & 61 Aruba 60 Detachable Antenna Interfaces Integral AC High-Gain, Omni. Power Directional Antenna 10/100 Ethernet Port with 802. 3 af Po. E Single, Multi-Mode 802. 11 a or b/g Radio Supported Applications § 802. 11 a or b/g Access Point § 802. 11 a/b/g Air Monitor § Dense AP Deployments § Remote / Home Office, Air Monitoring Features § Software Configurable Radio § Multi-band 802. 11 a or b/g Operation § Supports Radio Signal Diversity § 10/100 Base-T RJ-45 Interface § 802. 3 af Po. E Power Sourcing § Serial Console over Ethernet § 5 VDC Power Input (multi-region AC kits) § Detachable Antenna Interfaces (AP-60) § Integrated Omni-directional Antenna (AP-61) § UL 2043 Plenum & EN 60601 Medical Cert. § Small Form Factor (Wall, Under Desk, Pole, Plenum Deployable) Aruba 61 AC Power CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
Aruba 65 Integral Adjustable, Dual Tri-band Antenna Dual Radio, Simultaneous 802. 11 a/b/g 5 VDC Power Input Integrated 15/16” Ceiling Tile Rail Clips (Rear) 10/100 RJ-45 Ethernet Port Supports 802. 3 af Po. E & So. E (Rear) CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved Supported Applications § 802. 11 a/b/g Access Point § 802. 11 a/b/g Air Monitor § Remote / Branch Office Deployment § High Density, Typical Enterprise High. Performance Deployments Features § Software Configurable Radio § Multi-band 802. 11 a/b/g Operation § Supports Radio Signal Diversity § 10/100 Base-T RJ-45 Interface § 802. 3 af Po. E Power Sourcing § 5 VDC Power Input (multi-region AC kits) § Integrated Dual, High-Gain, Tri-Band Omni- directional Antenna § UL 2043 Plenum & EN 60601 Medical Cert. § Ultra Compact Form Factor (Wall, Ceiling Tile Rail, Cube, Plenum Deployable)
Aruba 70 Supported Applications § 802. 11 a/b/g Access Point § 802. 11 a/b/g Air Monitor § Remote / Branch Office Deployment § High Density, Advanced Enterprise High. Performance Deployments AC Power Two Dual-Mode 802. 11 a/b/g Radios Dual Ethernet Ports Integral Omni. Directional Antenna USB Port Detachable Antennas (2 sets) CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved Features § Software Configurable Radio § Multi-band 802. 11 a/b/g Operation § Supports Radio Signal Diversity § Dual (2 x) 10/100 Base-T RJ-45 Interface § USB 2. 0 Interface § 802. 3 af Po. E Power Sourcing § Redundant Ethernet & Po. E Interface § 5 VDC Power Input (multi-region AC kits) § Integrated High-Gain Antenna § Detachable Antenna Interfaces (2. 4/5 GHz) § UL 2043 Plenum & EN 60601 Medical Cert. § Small Form Factor (Wall, Under Desk, Pole, Plenum Deployable)
Aruba 80 M Dual Radio, Simultaneous 802. 11 a/b/g Aruba 80 M 5 GHz Detachable N-type Female Antenna Interface 2. 4 GHz Detachable N-type Female Antenna Interface Electrical Ground RSSI Level DC Output (Not used) 10/100 (8 Pin-Din) Ethernet Port (non-standard 802. 3 af) CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved Supported Applications § 802. 11 a/b/g Access Point § 802. 11 a/b/g Air Monitor § Harsh Environment Outdoor Deployments Features § Software Configurable Radio § Multi-band 802. 11 a/b/g Operation § PPPo. E Client (with ADP Fall-back) § 10/100 Base-T (8 pin-Din to RJ-45 Interface) § Non-802. 3 af High Power (30 W) Po. E § 1 x 2. 4 GHz N-type Antenna I/F § 1 x 5 GHz N-type Antenna I/F § Integral Lightening Arrester (Ethernet) § Electrical Ground Point § IP 68 Rated Design, Cast Alloy, Weather Hardened Design § -22°F to 131°F (-30°C to 55°C) § Pole / Mast Mount Hardware Included
Aruba 80 MB and 80 SB AP-80 SB Outdoor Fat AP / Bridge § § § § Dual Radio 802. 11 b/g Fat AP + 802. 11 a Wireless Backhaul Point-Point Suitable for Outdoor Deployments PPPo. E Client Turbo Mode for WDS AES Encryption with PSK STP & 802. 1 q tagging Aruba 80 SB Outdoor b/g Access Point or WDS Bridge AP-80 MB Outdoor Fat AP / Bridge § Dual Radio § 802. 11 a/b/g Fat AP § 802. 11 a/b/g Point-Point/Point-Multi Point Bridge (Aggregates up to 16 remote links) § Suitable for Outdoor Deployments § PPPo. E Client § Turbo Mode for WDS § AES Encryption with PSK § STP & 802. 1 q tagging CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved Aruba 80 MB Outdoor a/b/g Access Point or WDS Bridge
Aruba 80 SB Supported Applications § 802. 11 a/b/g Point-Point Bridge § 802. 11 b/g Fat AP + 802. 11 a WDS Backhaul § Point-Point or Point to Multi-Point (as slave) Features § Bridge 1 x WDS Link to another AP-80 SB or AP Dual Radio, Simultaneous 802. 11 a/b/g Integral 17 d. Bi 5 GHz Directional Antenna (Wireless Backhaul) 2. 4 GHz Detachable N-type Female Antenna Interfaces Electrical Ground RSSI Level DC Output (Antenna Alignment) 10/100 (8 Pin-Din) Ethernet Port (port does NOT support standards compliant 802. 3 af or Serial over Ethernet) CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved § § § -80 MB WEP / AES WDS Encryption PPPo. E Client 10/100 Base-T (8 pin-Din to RJ-45 Interface) Non-802. 3 af High Power (30 W) Po. E 2 x 2. 4 GHz N-type Antenna I/F (Diversity) 1 x 17 d. Bi 5 GHz Integral Antenna (for Backhaul use only) Integral Lightening Arrester (Ethernet) Electrical Ground Point IP 68 Rated Design, Cast Alloy, Weather Hardened Design -22°F to 131°F (-30°C to 55°C) Pole / Mast Mount Hardware Included
Aruba 80 MB Supported Applications § 802. 11 a/b/g Point-Point Bridge § 802. 11 a/b/g Point to Multi-Point Bridge § 802. 11 b/g Fat AP + 802. 11 a WDS Backhaul § Multi-Point host for 16 Slaves Features § Bridge 1 x WDS Link to another AP-80 SB or AP Dual Radio, Simultaneous 802. 11 a/b/g 5 GHz Detachable N-type Female Antenna Interface § 2. 4 GHz Detachable N-type Female Antenna Interface Electrical Ground RSSI Level DC Output (Antenna Alignment) 10/100 (8 Pin-Din) Ethernet Port (port does NOT support standards compliant 802. 3 af or Serial over Ethernet) CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved § § § -80 MB Host Bridge 16 x WDS Links to AP-80 SB or AP 80 MBs WEP / AES WDS Encryption PPPo. E Client 10/100 Base-T (8 pin-Din to RJ-45 Interface) Non-802. 3 af High Power (30 W) Po. E 1 x 2. 4 GHz N-type Antenna I/F 1 x 5 GHz N-type Antenna I/F Integral Lightening Arrester (Ethernet) Electrical Ground Point IP 68 Rated Design, Cast Alloy, Weather Hardened Design -22°F to 131°F (-30°C to 55°C) Pole / Mast Mount Hardware Included
Access Point Accessories AP 60 & AP 70 § Range of 2. 4 GHz and 5 GHz RP-SMA Interface Detachable Indoor Antennas § Country specific AC power adapter / cord kits § Range of wall / ceiling mounting kits § NEMA dust and moisture proof enclosures AP 80 M & AP 80 SB / MB § Range of 2. 4 GHz and 5 GHz N-type male interface detachable outdoor rated antennas § 2 GHz-6 GHz N-type lightening arresters § 80 meter Po. E adapter to AP ethernet cable § 10’ LMR-400 low-loss N-type male to N-type female antenna extension cable CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
Wired Access Ports / Multiplexers Supported Applications § Distributed Wired traffic collection § GRE tunnels for: § Control § Provisioning § Data traffic § Handles multiple authentication methods on each wired mux port § User space and wiring closet solutions Aruba 2 E Wall Mounted 2 -port wired access Point Aruba 800 -E Wiring closet 8 -port access mux Aruba 2400 -E Wiring closet 24 -port access mux CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
Wired & Wireless Security in Action 1. Protects Investments in Existing Network Infrastructure 2. Enables Policy Enforcement for Wired & Wireless Users Wireless Wired & Wireless Users Corporate Network Aruba Mobility Controller 2 E 800 -E Wired & Wireless Access Points/Multiplexers CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved “No Touch Zone” Policy ü ü ü ü Enforcement User Identity Machine State Resource Requested Application Used User Location Time-of-day Authentication Method
Aruba. OS Mobility Software
Aruba. OS Base Software Functionality BASE SOFTWARE FEATURES § WLAN Switching and RF Management L 2/L 3 switching, VLANs, termination of Aruba wired & wireless APs, RF Plan/RF Live, location tracking, triangulation § Policy Management Any-Any per SSID/VLAN, VLAN policy segregation § Automatic Radio Management (ARM) Calibration, coverage hole detection / correction, interference detection / correction, multi-band RF scanning § Authentication Wired and wireless 802. 1 x, Web-based captive portal, MAC address, Local user database, LDAP, RADIUS, TACACS+ § Encryption Open, Static and Dynamic WEP, WPA-TKIP, WPA-PSK-TKIP, WPA 2 -AES, WPA-PSK-AES, WPA Mixed mode § User Services Captive portal, SSID to VLAN mapping, AAA VLAN assignment § Mobility Services Roaming across APs, VLANs and controllers § Intrusion Detection Rogue AP detection, interfering APs / clients, classification, rogue AP containment CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
Aruba. OS Software Licensed Modules SWITCH LEVEL MODULES § Policy Enforcement Firewall Module § VPN Server Module § Wireless Intrusion Protection (WIP) Module § Client Integrity Module § External Services Interface Module § x. Sec Module § Voice Services Module INCREMENTAL CAPACITY BASED MODULES § Remote AP § Mesh AP CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
Policy Enforcement Firewall (PEF) Module PEF SOFTWARE FEATURES Policy Management Apply flexible policies on a per-user or per-group basis Security Services Firewall permit/deny/drop/log. ICSA certified to Version 4. 1 Corporate standard. User Services Full role based services for user class of service differentiation, bandwidth contracts Qo. S Priority traffic queues, Wi-Fi Voice prioritization (SIP, SKINNY, Vocera, SCP), ARM voice aware scanning Traffic Management Source NAT, destination NAT, redirect to tunnel, traffic mirroring CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
VPN Module VPN SOFTWARE FEATURES Client VPN Services PPTP, L 2 TP/IPSec, Cisco and Nortel Contivity client VPN termination, Aruba dialer Site-to-Site VPN Services IPSEC NAT-T transport mode tunnels between Aruba controllers or 3 rd-party VPN concentrators CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
Wireless Intrusion Protection (WIP) Module WIP SOFTWARE FEATURES Detection of Network Probing Netstumbler, Wellenreiter detection Impersonation Prevention AP impersonation, sequence number anomalies, client impersonation, reserved SSID Do. S Attack Detection Rate anomaly detection / checking, fake AP detection, spoofed deauth detection, Null SSID attacks Unauthorized Devices Ad-hoc prevention, Windows bridging detection, wireless bridge detection, MAC OUI checking, rogue device containment, prevention of clients roaming to unauthorized APs, misconfigured AP detection Attempted Intrusion ASLEAP detection, WEP re-injection attack detection CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
External Services Interface (ESI) Module ESI SOFTWARE FEATURES *Network-based NAC Network-based protection for clients using external anti-virus or other security servers *Host Integrity Checking Integration with Symantec On-Demand Protection (SODP) Integration with Bradford Networks *Server Load Balancing Support per session load-balancing across external servers / server grouping APIs for Client Control XML API for external captive portal Syslog API for security or network services RFC 3576 for RADIUS-managed user policy NOTE: *Policy Enforcement Module required in addition CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
x. SEC Module x. SEC SOFTWARE FEATURES Client Server x. Sec Termination of AES Layer 2 x. Secure VPN sessions (Juniper Odyssey client supplicant sold separately) Point-Point x. Sec Termination of AES Layer 2 x. Secure VPN switch port sessions (switch to switch x. Sec) CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
Voice Services Module (VSM) VSM SOFTWARE FEATURES Voice Scalability Stateful protocol support for SIP, SVP, SCCP, Vocera, Alcatel NOE Automatic prioritization Call Admission Control Voice Management Call detail records End-to-end delay computation R-value measurements CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
Remote AP (RAP) License RAP SOFTWARE FEATURES Remote Access Point Termination of remotely-deployed APs using IPSec NAT-T transport Local stateful firewall rules* Local Bridging Termination of data traffic at the local AP Split tunneling* Survivability Backup configuration for PSK encryption during WAN failure Backup controller list NOTES: *PEF license required on controller to enable split tunneling and firewall rules VPN server module NOT required for Remote AP services Licenses for RAP are cumulative - you may additional licenses as needed CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
Mesh AP License MESH SOFTWARE FEATURES LAN to LAN Bridging Bridge Ethernet to Ethernet across a wireless link Connect two buildings together for primary or backup network connections WLAN to WLAN Client-serving APs form thin-AP tunnels back to controller Client encryption performed centrally for better security Backup Profiles Mesh nodes revert to failure mode profile if unable to establish connectivity NOTES: Licenses for mesh are cumulative - you may additional licenses as needed CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
Mobility Management System
Aruba Mobility Management System Software § § § Dashboard view of entire network Monitoring with “drag and drop” Flexible reporting RF planning and visualization Location tracking Supported on Intel server running Red. Hat Linux MMS Software Mobility Management System Appliance MM-100 § § High Performance Dual Intel Xeon Processors Dual network interfaces High-availability RAID storage Mobility Management system Software pre-installed MM-100 Appliance centralized, scalable monitoring, data collection and reporting CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
Centralized Visibility of the Mobile Edge Key Benefits § Centralized, real-time view of mobile edge networks § Troubleshooting from a network operations center § Stores historical data for custom reporting § Facilitates network planning Data Center § Provides best-of-breed integration with API § Locates any Wi-Fi device, anywhere on the mobile edge LAN / WAN INTERNET Headquarters Home Office Regional Office CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved Branch Office
MMS Dashboard and Reports CONFIDENTIAL © Copyright 2007. Aruba Networks, Inc. All rights reserved
Thank You
Скачать презентацию Aruba Networks Product Overview Award Winning Product
76767f8ed7fcae3f895cb111c521b805.ppt