Embed Size (px)
Citation preview
Avaya
Networking Rafael Rocha, Sales Engineer | Westcon Convergence
Programação
1. Introdução (02/set - 10:00)
2. Conceitos básicos I (16/set - 10:00)
3. Conceitos básicos II (07/out - 10:00)
4. Conhecimento aplicado (21/out - 10:00)
5. Switches empilháveis (11/nov - 10:00)
6. Switches modulares (25/nov - 10:00)
7. Gerenciamento e NAC (09/nov - 10:00)
8. Roteadores, VPN e WLAN (21/dez -15:00)
Premiação
Participe de todas as sessões de Dados (8 sessões) e responda aos
quizzes no final de cada sessão.
Acumule pontos e concorra a um Web Prêmio de R$ 500,00.
Quem acumular maior pontuação nos quizzes, será o vencedor!!!
Para participar da premiação é necessário:
- Preencher os quizzes a serem realizados ao término de cada sessão (Aprox. 15 minutos);
- Pontuação máxima por evento: 100 Pontos;
- Para concorrer ao prêmio é necessário ter atingido o mínimo de 85% de participação na série
de Webinars Westcon & Avaya.
Regras para Desempate:
1º. Número de presenças nos Treinamentos Online (quantidade de sessões assistidas);
2º. Pontuações máximas obtidas nos quizzes;
3º. Número de vendas (Avaya) em pedidos colocados na Westcon.
Link para Apresentações da Série
http://br.westcon.com/content/vendors/avaya-
nes/apresentacoes-e-documentos-treinamentos-
online-westcon-avaya
5
Soluções de Dados
Ethernet
Switching
Wireless
Networking
Unified
Branch
Access
Control
Unified
Management
Branch & Remote Enterprise
Campus
Data Center
Investimento agressivo no portifólio
Consolidação de Filial
6
Entrega a plataforma de sobrevivência de voz SIP para a filial
Consolida o networking da Filial em menor número de dispositivos altamente integrados
– Reduz a complexidade da rede & diminui os custos de CAPEX e OPEX
Fornece aos usuários uma experiência de alta qualidade
– Independentemente das aplicações ou serviços utilizados ao longo da rede
Wide Area Network
Secure Router
Data Centre
PBX / Call Server
Firewall
LAN Switch
VPN
High-performance traditional Routing
Consolidated functionality
IP Phones / Analogue Phones / PCs / Wireless APs / Legacy PBX
Resiliência de Voz & Dados para Filiais Remotas
7
Convergência de dados, voz e segurança em um único dispositivo de baixo custo
– Serviços integrados: roteamento IP, gateway PSTN, VPN & Firewall
Entrega de serviços de voz resilientes & “abertos”
– “Failover” para SR PSTN gateway quando a conexão com o Servidor SIP falhar
– Compatibilidade com servidores de chamada SIP e telefones Nortel e de terceiros
Assegura a qualidade dos serviços tanto de voz quanto dados
– QoS avançado, VRRP, dial back-up
Wide Area Network PSTN
Nortel Telset
Nortel Softphone
SIP Telset
Application Plug-Ins
SIP Call Server
SR 2330 / 4134
Secure Router
Branch
Central Site
Avaya AuraTM “Novo” Modelo para Filiais
8
System Manager MM
MX
VP
Aplicação
CM CM
CM App
PSTN
Filial
Avaya SR4134 Avaya AG2330
“Unified Networking” para Filiais & Escritórios
9
Consolida UC, Voz, Gateway & funções de Networking
– Em uma plataforma integrada, confiável e de alta performance
Entrega uma solução completa de comunicações para o SMB e filial
– Em uma preço competitivo
Aumento da produtividade e colaboração dos funcionários
– Suporta até 250 usuários com todas funcionalidades de UC
Diminuição dos custos operacionais
– 4-5X a confiabilidade de múltiplos dispositivos separados
– Diminuição dos custos de energia elétrica e facilities
Take the award-winning SIP-based Software Communications System…
…and add it to the SR 4134 with the SCS Server Module
Delivers on the promise of UC, in a complete, unified Voice & Data solution
10
Portfóllio Secure Router Portfólio de Roteadores Empresarias
Pri
ce/P
erf
orm
ance
Capacity / Density
SR4134
SR2330
Plataformas de Filial Convergente
Portfólio Secure Router
• 7 Slot chassis
• DS3/CT3/HSSI, Serial, BRI/PRI, T1/E1, ADSL
• Up to 76 ports 10/100-POE 58 ports 10/100/1000
• 2x1000BT, 2xSPF base
• Hosted server module
• SIP Gateway
• Survivable SIP Proxy/user agent, Registrar
• FXS/DID/FXO/ CAMA/BRI/ PRI interfaces
• CAS, BRI, PRI QSIG, E1 R2 signaling
• SIP trunks
• IPv4, RIP, OSPF, BGP, GRE, PBR, VLAN, Multicast
• PPP, MLPPP, FR, MLFR, BCP, HDLC
• IPv6, MPLS L2 VPN (SR4134, SR2330)
• 8-queue QoS
• Filters, ACL, Stateful Firewall
• NAT
• Denial of Service
• IPSec VPN (site-site, remote access)
• VRRP
• SNMP, CLI, PCAP, RMON, RADIUS
• 3 Slot chassis
• T1/E1/Sync/PRI/BRI
• 2x1000BT, 4x100BT, 2xSPF base
SR 4134
SR 2330
Secure Router SIP-VoIP Chassis and IO Data Features
12
Secure Routers para a Filial Convergente
Ideal como:
Roteador convergente para filiais pequenas / médias ou localidades remotas
Ambientes com necessidades de conectividade T1/E1, Serial, ADSL ou Ethernet WAN
Gateway de voz SIP resiliente de bom custo/benefício para localidades remotas
Ideal como:
Roteador convergente para filiais maiores ou localidades remotas
Ambientes com necessidades de conectividade de alta velocidade ou múltiplos enlaces WAN
Gateway de voz SIP resiliente de maior capacidade para localidades maiores
“Unified networking solution” combinando serviços de UC, Voice, & Data em um único dispositivo
SR 2330
SR 4134
• Three Small Module Slots (Compatible with SR4134)
• Two Optional Internal Modules (not hot-swappable)
• VPN HW Acceleration (SCIM)
• Packetized Voice Module (PVIM)
• Four Gigabit Ethernet Ports (two Copper and two Fiber)
• Four Fast Ethernet Ports
Vista Fontal e Traseira do SR2330 • External CF Slot
• Console Port
• 12VDC Input for optional External redundant Power Supply
• 1RU High
• LED Indicators
• All IO Interface Modules are Hot Swappable
• Removable top for field serviceability
3 x Small
Modules
4 x Fast
Ethernet
Ports
Redundant 12VDC
Power Input
4 x Gigabit Ethernet Ports
(2 1000BaseT and 2 SFP)
Power
Entry Console
Port
Compact
FLASH
Front
View
Rear View
13
WAN
SR 2330 – Resumo do Produto Detalhes da Plataforma
Software e serviços •IPv4, IPv6 and Multicast routing
•Frame relay (MLFR), PPP (MLPPP), HDLC
•MPLS L2-VPN (Ethernet, PPP, HDLC)
•L2/3 Ethernet Switching
•Security services (firewall, IPSec VPNs, NAT, hardware encryption)
•SIP Gateway and Survivability
Confiabilidade •Port Resiliency (MLPPP, MLFR, 802.1ad)
•Platform Resiliency (VRRP, BGP multi-homing)
•Platform Redundancy (power, cooling, hot-swap_
•MPLS Fast Reroute
•Survivable SIP Gateway
Rentabilidade •Cost effective as survivable SIP Gateway on existing data networks
•Extremely cost effective as converged branch with VoIP, routing, security, QoS and WAN
1xT1/E1/PRI
2xT1/E1/PRI
ADSL2+
1xSerial
2xSerial
1xT1/E1/PRI
2xT1/E1/PRI
PSTN
BRI
2xFXS
4xFXS
2xFXO
4xFXO
BRI
SR2330: Módulos Internos
15
•Opcional: Packetized Internal Voice Module (PVIM) • Para habilitar voz, a instalação é necessária !!!
•Opcional: Security Co-processor Internal Module for VPN acceleration and IPsec (SCIM) • Para habilitar VPN, a instalação é necessária !!!
PVIM SCIM
PVIM Habilita VOZ !
Sobrevivência SIP • SSM (SIP survivability module)
Media Gateway • SIP-PSTN
• Voz com custo/benefício para filiais • Provê serviços locais de PSTN/ voz quando a conectividade
para o servidor central SIP falhar • Provides local PSTN/voice services if connectivity lost to the
central SIP server • Preço competitivo para um upgrade de voz em roteador Cisco
Advanced Gateway 2330 Posicionamento e Funcionalidades Chave
Gateway custo / benefício para filiais em implementações centralizadas
de Avaya Aura™
Funcionalidades Chave
– Voice media gateway with FXO, PRI and FXS interface options
– SIP Survivable voice for up to 100 users
– Certified with Avaya Aura™, CS1K and other SIP servers
– Compatible with Avaya 9600 IP Deskphones and other Avaya and 3rd-party SIP devices
– Software upgrade option to full-function WAN router
Posicionamento
– Cost-effective “basic” survivable gateway solution for small to mid-size branches
– Best for enterprises who may want to later upgrade to a full-featured WAN router
Advanced Gateway 2330 Multiplos pacote
• Bundled options based on the Avaya Secure Router 2330 hardware
• Bundle includes chassis, voice gateway hardware and associated software licenses
• Separate bundles for FXO and PRI options
• Componentes de voz incluem: • Integrated packet voice module DSP module
(factory-installed)
• 25-user SIP user survivability license (upgradeable to 100)
• PSTN interface modules – AG2330-2FXO: 2xFXO and 2xFXS
– AG2330-4FXO: 4xFXO and 4xFXS
– AG2330-PRI: 1xPRI and 4xFXS
• 32 channel DSP license (for AG2330-PRI)
• Um slot livre para expansão
AG2330- 2FXO
AG2330- 4FXO
2x FXS
4xFXS
2xFXO
4xFXO
AG2330-PRI
4xFXS 1xT1/E1 PRI
Upgrade de software converte o Advanced Gateway em um
Secure Router 2330
18
> Sobrevivência SIP com
interaces modulares
PSTN
> Certificado com Avaya
Aura & telefones 9600
> Opção de filial SIP “thin
client” para
implementações
centralizadas Aura
> Também certificado com:
CS 1000 R6.0, CS 2100,
SCS, Microsoft OCS R2
e outros
> Fabricante único para
solução de UC central e
filial
> Também soluciona
necessidades de
roteamento da filial
Advanced Gateway 2330 para Aura e outros Call Servers
Highlights
AG 2330
Data Center
AG 2330
PSTN
SIP-based
UC/VoIP server
Aura, CS1K, CS2K/A2E, CS2100,
SCS, OCS R2, 3rd party
WAN
Certified with Aura CM/SM
5.2.1
Nas condições normais todos os telefones recebem suas funcionalidades do QG
Durante as falhas na WAN, o gateway SIP da filial prove conectividade PSTN (troncos analógicos) e chamadas interna à filial
Durante as falhas na WAN, o gateway SIP funciona como um proxy/registrar, possibilitando que os telefones se registrem nele
Overview de Solução – Gateway de Sobrevivência SIP
Com Avaya Aura™ Communication Manager / Session Manager
CM
MPLS WAN
PSTN
Caminho normal da sinalização
Caminho de falha na WAN
100’s of branches
Solução de baixo custo que habilita
as filiais a permanecerem
conectadas
HQ
SM
UC Apps Mobility Messaging
Application Conferencing
Advanced Gateway 2330
20
Proposta de Valor do SR 4134
• Plataforma modular de roteamento multi-serviço
• Integrates Routing, WAN, Voice Gateway, security and LAN Switching/ POE
• Server module that can host UC or other applications
• Diminuição de TCO – Consolidação
de filiais e localidades remotas • Cost savings through reduced
operational expense, maintenance and facilities
• Reduced WAN OPEX through bandwidth efficiency
• Solução de convergência de voz e
dados • Extend resilient SIP voice services to
the branch • All-in-one site solution for UC
deployments • Nortel SCS • Microsoft OCS Mediation services
3 x Medium Module Slots, or 1 x Large Slot (using 2 Medium)
2 x PSUs 4 x Gigabit Ethernet Ports
4 x Small Slots
21
Capacidade do SR 4134
4 x Small
Modules
3 x Medium Modules 1 x Large Module
(use 2 Medium Modules)
4 x Giga
Ethernet
WAN/LAN 31 x T1/ E1s (physical) 84 x T1 (logical) through CT3 3 x DS3 3 x HSSI 7 x serial (V.35/X.21) 72 = 3 x 24-port 10/100 with PoE 34 GbE ports = 3x10-port 10/100/1000 non-
blocking module + 4 onboard
Voice 64 FXO/FXS ports (w/ Voice
Carrier module) 128 DSP channels
WAN
Overview do Produto - SR 4134 Detalhes da Plataforma
Software e serviços •IPv4, IPv6 and Multicast routing
•Frame relay (MLFR), PPP (MLPPP), HDLC
•MPLS L2-VPN (Ethernet, PPP, HDLC)
•L2/3 Ethernet Switching (incl. POE)
•Security services (firewall, IPSec VPNs, NAT, hardware encryption)
•SIP Gateway and Survivability
Confiabilidade •Port Resiliency (MLPPP, MLFR, 802.1ad)
•Platform Resiliency (VRRP, BGP multi-homing)
•Platform Redundancy (power, cooling, hot-swap_
•MPLS Fast Reroute
•Survivable SIP Gateway
Application hosting •SCS for up to 250 users
8xT1/E1
1xT1/E1/PRI
2xT1/E1/PRI
1xDS3
1xCh DS3
ADSL2+
1xSerial
2xSerial
1xT1/E1/PRI
2xT1/E1/PRI
LAN PSTN
BRI
2xFXS
4xFXS
2xFXO
4xFXO
BRI
10x10/100/1000
24x10/100
24x10/100 POE SCS server module
SR4134 – Módulos Internos PVM e VPN Ipsec Module
Módulo PVM – Habilita Voz Para habilitar voz, a instalação é necessária !!!
Sobrevivência SIP • SSM (SIP survivability module)
Media Gateway • SIP-PSTN
Módulo interno de VPN Para habilitar VPN, a instalação é necessária !!!
• Capacidade de 1000 túneis
• Suporte ao VPN Client (Contivity)
• Versão 10.2
SR4134 – Power Supply
Power supplies are available in the following wattage:
• 250 W AC
• 660 W AC (410 W available for PoE)
• 250 W DC
Alternativas: • one or two standard AC input modules
• one or two Power over Ethernet (PoE) AC input modules
• one standard AC and one PoE AC input module
• one or two DC modules
• one AC (standard or PoE) and one DC module
25
SR 4134 com SCS integrado
• Challenge: Multiple discrete devices required to deploy a complete communications solution
• Solution: All-in-one UC, Voice & Data for SMB or Enterprise Branches in a single device
• Business Value:
• Complete SMB or Enterprise Branch solution for up to 250 users
• Reduced operational expenses
UC + Data + Voice +
Security solution in a single
cost effective platform
Fewer devices, less configuration, less maintenance, increased reliability
Reduced facilities costs, reduced power & cooling requirements
26
Gateway de Voz Integrado e Resiliente
• Integrated PSTN Gateway with Routing, WAN & Security services
• PSTN connectivity • T1/E1 PRI, BRI, FXS & FXO • Up to 64 DSP channels for SR 2330
& up to 128 DSP channels for SR 4134
• SIP Survivability
• Phone & call routing services maintained when SIP Call Server connectivity is lost
• Inbound & outbound calls through PSTN
• Intra-site calls with local services (e.g. conferencing, transfer)
• Supports Nortel & 3rd-party SIP Phones
• Avaya/Nortel 1120E/1140E, LG Nortel 6800/8800, Polycom 320
PSTN
Mobile
Avaya Communications Server 1000 or
3rd party SIP call servers
IP
PSTN Branch
Optional Office
Communications
Server 2007
Secure Router 2330 / 4134
WAN
Data Center
27
Mobilização da força de trabalho
Melhoria da Continuidade de Negócios & aumento da produtividade para trabalhadores móveis
– Acesso remoto customizável
Acesso simplificado às aplicações corporativas com a Aplicação Cliente pré-carregada
Aumento da segurança no Desktop com “lock-down” & wiping” – nenhum dado deixado para trás
Memória portátil flash segura sem risco para informação confidencial
– Autenticação de dois fatores de simples utilização
Secure Portable Office
Decouples location from productivity
User Access via SPO Token
Fast, simple, secure, network access
Leverages existing VPN & NAC infrastructure
Enterprise Network Data Centre
VPN
Internet
Transit iCafe
Home
Campus
Simplifies provision of Application access
Access from any PC & location
Integrates with acceleration technologies
Benefícios de um Gateway VPN
28
Extende o acesso remoto seguro a empregados e não-empregados
Entrega aplicações de serviço para usuários móveis e baseados em casa
Assegura a continuidade do negócio em casos de desastres naturais ou
acasionados pelo homem
Avaya Solution
• Client based and Clientless access
• Role based information isolation
• Malware protection
• Information loss prevention
• Strong 2-factor authentication
• Corporate, regulatory compliance
• Multiple device support – PC, Mac,
Mobile, Linux
• Secure Portable Office – USB flash
• Extended, secure Unified
Communications
Mix of End User and Security Requirements
Mobile Users
Teleworkers
Partners
Contractors
HR
Sales Finance
Information Security Mandates
CRM
Sharepoint
Thin Client
Unified Comm
Application Complexity
Multiple
Device Types
Multiple User
Communities
Avaya VPN Gateway
Mergers
Portfólio VPN
29
VP
N G
ate
ways
Virtual Appliance 3070
Virtual Appliance 3050
10 - 500 concurrent IPsec/SSL Sessions
10 - 250 concurrent IPsec/SSL Sessions
Appliance Virtual otimizado para Vmware
Carregável em qualquer hardware compatível
com VMware ESX or ESXi
Sem cobrança para o Virtual Appliance –
apenas faça o download do software
• Nota: por padrão o Virtual Appliance não
contem nenhuma licença, logo, o produto
precisa ser licenciado para habilitar as
funcionalidades
Simplesmente adquira as licenças desejadas
(SSL & Ipsec, SPO, etc) & habilite as
funcionalidades como em uma versão de
HW
Clientes podem instalar quantos Virtual
Appliances quantos necessários e utilizar
Cluster para atingir a capacidade necessária
Secure Portable Office
30
• Uses USB Drive for portable Client
environment to efficiently deliver personalized
suite of corporate applications on any PC
• Protects temporary work environment
• Leaves no trace or presence
• SPO is built around new functions of the VPN
Gateway
Secure access, Session Control VPN Gateway USB Remote PC
Intranet Web-mail
Voice,
Collaboration,
Multimedia
Corporate
Applications
Emergency Remote Access
• Solução de baixo custo para capacidade adicional de licenças de acesso VPN
para casos de emergência / calamidade
• Uma vez instalada, está pronta para uso, sem intervenção manual
• Quando a capacidade licenciada for excedida, as licenças ERA são acionadas
• Uma vez ativadas, permanecem válidas por 60 dias
• Necessário contato com Avaya para poder reinstalar as licenças para a
proxima emergência • Note 1: Must include a maintenance agreement in order to use the return authorization process for the
ERA license.
Licenciamento
32
• Licenças de acesso são compartilhadas entre um cluster
redundante
• Licenças são contabilizadas por acessos simultâneos • SSL / IPSEC
• Emergency Remote Access (ERA)
• Licenças de funcionalidade necessitam ser instaladas
em cada equipamentos • Secure Portable Office
• Necessário licença para habilitar a função
• Consome 1 licença SSL (IPSEC apenas não serve)
• Licenças por “seat”, não por acesso simultâneo
• Uma licença por pen-drive
• Licença de Application Virtualization (Ceedo).
33
Feature/Capabilities VPN 3050 Virtual Appliance VPN 3070 Virtual Appliance
Deployment Entry-level Virtual
Appliance for VM Systems
Expanded Virtual Appliance
for VM Systems
Copper Interfaces Supports 1-4 interfaces Supports 1-4 interfaces
Fiber Interfaces
Maximum concurrent VPN
Tunnels
250 500
SSL VPN Users 10 - 250 10 - 500
IPsec VPN Tunnels 10 - 250 10 - 500
SSL acceleration (tps) Depends on Server Depends on Server
VPN Gateway Summary
34
Funcionalidade/
Capacidade
VPN 3050
Virtual
Appliance
VPN 3070
Virtual
Appliance
SR 2K SR 4K
Maximum concurrent
VPN Tunnels
250 500 100 1.000
SSL VPN Users 10 - 250 10 - 500 0 0
IPsec VPN Tunnels 10 - 250 10 - 500 100 1.000
Site-Site VPN Sim Sim
Sim Sim
RAS VPN Sim Sim Básico Básico
Suporte a VPN Client
(ex-Contivity)
Sim Sim Sim Sim
Modo
Gratuito (*) Gratuito (*) Módulo Módulo
VPN Summary
* Licenças de acesso IPSec/SSL são pagas. Virtual Appliance não possui nenhuma.
35
Soluções de Dados
Ethernet
Switching
Wireless
Networking
Unified
Branch
Access
Control
Unified
Management
Branch & Remote Enterprise
Campus
Data Center
Investimento agressivo no portifólio
36 36
Wireless LAN em Transição V
alu
e/M
ark
et
Na direção da empresa totalmente sem fio
I II III
Wireless Hot Spot
• Occasional use
• Standalone AP‟s
Standalone
• Increased adoption
• Full Wi-Fi footprint
• Primarily data
On-site Mobility
Overlay
• True 802.11n bandwidth
and performance
• Support for all applications
• Unified infrastructure
including management.
• Universal mobility
• Unwired deployments
All Wireless Access
Unified
Convenience Productivity TCO/Transformation
2000+
2005+
2010+
37
Arquitetura WLAN Atual
Redes Separadas
– Cabeada & Wireless
Aquitetura Centralizada
– Thin Access Points
– Centralized Dual Function Wireless Controller
• Control Point (control traffic)
• Switching Point (data traffic)
Desafios
– Inefficiências
– Hardware não-otimizado
– Limitações em escalabildade
Phone Laptop PDA Phone
Wireless Controller
38
Descobrindo o potencial das redes Wireless
Alta capacidade de recuperação
– Controladores Wireless virtualizado, disponível e protegidos
Escalabilidade contínua
– Controler e switches escaláveis de forma independente e de diferentes formas
Redução de custos
– Controladores wireless virtualizado sem amarração a hardware
Arquitetura de Próxima Geração “Split Plane”
Aplicações, hosts e servidores
Rede de dados e controle crescendo independentemente
Controle com disponibilidade
Alta performance da rede e escalável
Controladores Virtualizados
Wireless virtualizado e escalável
Software de wireless nos switches
Switch de acesso
Controladores wireless virtualizados
Introduzindo WLAN 8100 Series
39
Uma nova geração de solução wireless LAN que combina os novos padrões 802.11n com uma nova arquitetura unificada wired/wireless
Atende às necessidades das nova época de “Empresas Sem Fio”, entregando resiliencia, eficiência e escalabilidades sem precedentes
Desenvolvido dentro da Avaya beneficiando-se da rica herança de voz e wireless
Caminho do futuro para as empresas procurando soluções de WLAN otimizadas para tráfego de dados e em tempo real como voz, UC e vídeo
WLAN 8100 Release 1
40
•802.11n
•Dual radio
WAP 8120
WC 8180
•Support for up to 256 APs
WC 8180 -16L
•Lower cost option for small branch deployments
•Support for 16 APs
WLAN Management Software 8100
Complete 802.11n solution
WLAN Access Point 8120
WLAN Controller 8180
WLAN Management Software 8100
Unified Management
Broad range of wireless application opportunities
Strong VoWLAN support
* Delivered via software in future release
Overview: WLAN 8100
• A solução WLAN 8100 inclui no mínimo os seguintes
componentes: • WC 8180, WLAN Controller available with 16AP or 64 AP licenses, upgradeable in
increments of 64.
• AP 8120, 2 Radio 802.11n Access Points
• WMS, WLAN Management System
41
• Escalável • Facilitates moving Data plane and/or
Control plane to Core/Edge switches
• Capacidades • Support for up to 512 802.11n APs
(256 in Release 1); 10 Gbps
• Lower cost option (WC 8180-16L) for smaller branch deployments (16 licenses)
• 12F and 12Cu GbE
• 32 Controllers /Cluster
• Dual-Redundant Power Supply
• FIPS 140-2 Ready
• 10Gbps add-on processor capable
• L2 & L3 secure seamless roaming
• RADIUS/LDAP Integration
• WebUI, CLI, SNMPv3
WLAN Controller 8180 Innovative Split Plane architecture
Redundant Power Supplies
Additional Module (data or control)
NPU
2 10G ports Copper/Fiber ports
42
• Performance • Industry leading VoWLAN performance
• Capabilities • 3 Antenna MIMO, 2 Spatial Streams,
up to 300 Mbps bandwidth
• 802.11n & Legacy 802.11a/bg
• Control plane encryption
• 802.11e, 802.11r, CAC, 802.1p, DSCP
• GigE interface with 802.3af POE
• WMM, UAPSD, TSPEC (802.11e) Certified
• 802.11i/WPA2 Security
• Internal & External MIMO Antenna arrays
• 2 Radio version
• FIPS 140-2 ready
• Capable of Distributed Forwarding
WLAN Access Point 8120 Dual Radio 802.11n AP
WLAN Access Point 8120
43
44
Aplicações: Guest Access Id Engines: Guest Manager
• Convenient network connectivity for guests and temporary users
• Front-desk personnel generate unique user ID/password for each visitor • Associated security profile • Time of day • Restricted locations
• Unified wireless and wired
guest access manager • Simplified operations
Muito Obrigado!
Rafael Rocha, Sales Engineer | Westcon Convergence
(+55 21) 3535-9314
(+55 21) 9640-3054
46
• Auto AP load
balancing
• AP & Controller
clustering
• Many to many
redundancy
• Hitless failover
• Wireless Controllers
virtualised
• Availability is
protected
Rock Solid Resiliency
47
Always Secure
• Authentication &
Encryption
• Supports today‟s
strongest security
standards
• Wireless Intrusion
Detection and
Protection
• Secure Network
Access
• Unauthorized AP
protection
AirTight Server
WMS Client
WLAN AP 8120 AirTight Sensor
Intranet
Alarms
Analysis
Location
Trending
48
• Enforced QoS over
wireless link
• Advanced Call
Admission Control
• Scalable
• Low latency & jitter
• Seamless Roaming
• High resiliency
• End to end Solution
Applications: Voice over WLAN
Avaya 3641
IP Wireless Phone
Avaya 3645
IP Wireless Phone
50
• Find & track assets in real time • People, Equipment,
Inventory, Wi-Fi devices
• Save money • Reduce loss/theft
• Overlay tracking application • Ekahau client/server
components communicate over WLAN 8100
• High resolution accuracy
Applications: Location Services
Laptop Asset Tag Asset Tag
WC 8180
Ekahau RTLS
Server
Application (eg. Locating/Tracking)
X
“ John is here”
X
Application (eg. Locating/Tracking)
X
“ Dr J. Smith
X
Infusion
pump
PDA
WAP 8120
51
802.11a,b/g & n Comparison
802.11n delivers better coverage, throughput and range
802.11b 802.11g 802.11a 802.11n (2H08)
Compatibility 802.11b 802.11b,g 802.11a 802.11a,b,g,n
Number of Channels
3 non-overlapping
3 non-overlapping
Up to 24 non-overlapping channels (country specific)
Same as 802.11 a/b/g using 20 MHz channels. Restricted to 1 in 2.4 GHz and 3 in 5GHz using 40 MHz channels
Typical Indoor Range
100 ft - 300 ft 30,48 mt – 91,44 mt
100 ft - 300 ft 30,48 mt – 91,44 mt
40 ft – 300 ft 12,19 mt – 91,44 mt
Expected to be 2X range of 802.11a/b/g
Typical Outdoor Range (Line of Sight)
400 ft - 1500 ft 121,92mt - 457,2 mt
400 ft - 1500 ft 121,92mt - 457,2 mt
100 ft - 1000 ft 30,48 mt – 304,8 mt
Farther than 802.11a,b/g
Data Rates 11, 5.5, 2 and 1 Mbps
54, 48, 36, 24, 18, 12, 9, and 6 Mbps
54, 48, 36, 24, 18, 12, 8, and 6 Mbps
Up to 600 Mbps 300 Mbps com 2 spatial stream – modo mais usado hoje
Wireless Medium
DSSS, 2.4 GHz
OFDM, 2.4 GHz OFDM, 5 GHz OFDM, MIMO in 2.4 and/or 5 GHz
52
Unified Branch Product Roadmap
52
SR 3120 SR 100x
Q1/10
J F M
Q2/10
A M J
Q3/10
J A S
Q4/10
O N D
Q1/11
J F M
Q2/11
A M J
Q3/11
J A S
Q4/11
O N D
2012
Plan of Record (POR) Plan of Intent (POI) Shipping
v9.4
AG 2330
SR 4134 SR 2330
• Enhanced IPSec VPN Security & Performance
V10.4
• Aura System Mgr integration
• IPFix, WCCP, VRF
• AG 2330 General Availability
AGv10.2.2
Avaya Confidential – NDA Required
AGv11.0
AGv10.3.1
• Next-gen AG platform • Integrated PoE/FXS
V9.4.1
• Re-branding • Maintenance fixes
SR4134 PVM – SR2330 PVIM
VPN Portfolio - EoS
70
VP
N R
ou
ters
V
PN
Ga
tew
ays
VPN Router 2700/2750
VPN Router 1700
5 - 2,000 IPsec Tunnels
5 - 500 IPsec Tunnels
VPN Gateway 3070
VPN Gateway 3050
50 - 50,000 concurrent IPsec/SSL Sessions
50 - 2,000 concurrent IPsec/SSL Sessions
VPN Router = Contivity VPN Router entra em EoS em 1/abril/2011
Único modelo na lista é VPN Router 2750 com
2000 túneis
VPN Gateway HW EoS em 1/dezembro/2010
VPN Router – MD - EOS
• Migration Strategy and Discontinued Order Codes
• Migration Strategy • Avaya offers the following alternative solution(s).
• The VPN Router supports two principal VPN applications: 1) secure branch-to-branch (branch office
tunneling) and 2) VPN remote access (or secure access) for VPN clients. Avaya recommends that
VPN Router customers consider the Avaya Secure Router for future secure branch-to-
branch deployments and the Avaya VPN Gateway for future VPN remote access requirements.
• For secure branch-to-branch deployments, the Secure Router 2330 and 4134 are the
recommended replacement options. The Secure Router 2330/4134 v10.2 feature set includes
interoperability with the VPN Router over routed branch-to-branch VPN connections, which can simplify
migration from an existing VPN Router deployment. The Secure Router 2330 and 4134 also can
terminate the Avaya (previously Contivity/Nortel) VPN Client – even though neither of these platforms is
recommended for large scale remote access applications. The Secure Router 2330 supports up to 100
IPSec VPN tunnels and the Secure Router 4134 supports up to 1000 IPSec VPN tunnels. The Secure
Router 2330 and 4134 VPN option ships with VPN Client v8.01 (XP) and v10.01 (Vista). VPN Client
v10.04 (XP, Vista, Windows 7) can be downloaded from the support portal.
• The Avaya VPN Gateway 3000 Series is the recommended replacement option for
VPN Router secure access deployments. The VPN Gateway portfolio can act as a secure
remote access concentrator for IPSec VPN clients using the Avaya VPN Client software, as well as
provide support for browser-based SSL connections. The VPN Gateway also supports Avaya Health
Agent (or Tunnel Guard).
71
Introducing VPN Client 10.04
• Version 10.04 is the industry‟s first unified VPN
Client that supports both IPSec and SSL, has the
ability to connect to many termination devices and
provides support for 32 and 64 bit Windows
operating systems (XP, Vista, Seven).
• General Availability Feb-8th, 2010
73
BCM
SR 2330
SR 4134
VPN Router
IPSec
IPSec
IPSec/SSL
IPSec
IPSec
VPN Gateway
Atenção: SR 1k e 3k não suportam
VPN Client
7
5
VPN Client 10.04 Features
32bit 64bit 32bit 64bit 32bit 64bit
NVC 7.x/8.x Yes No No No No No
NVC 10.01 No No Yes Yes Limited Limited
NVC 10.04
Windows XP through Windows 7 support
32-bit and 64-bit platform support
Single Installer
Automatic Proxy Detection
Windows XP – Tunnel and Authentication Seperation
Wireless Mobile Broadband Adapter support
76
Combined IPSec and SSL
• Create connection
profiles for both
IPSec and SSL VPN
services.
• Failover tunnel within
protocol or across
protocol (ex IPSec to
SSL).
• Client binaries
include necessary
drivers to support
IPSec and SSL.
80
SR 2330 Value Proposition
• Entry-level, modular converged Router
• Routing, Voice, Security, WAN and LAN in a single platform
• Compelling integration – lower TCO
• Extends resilient VoIP to the Branch Office
• PSTN connectivity
• SIP voice survivability
• Flexible deployment options • UC integrated Branch Router
• CPE device for Metro Ethernet/Ethernet WAN
• Access Router for Branch Office connectivity
3 x Small Module Slots
4 x Fast Ethernet Ports
4 x Gigabit Ethernet Ports
Interoperable with both
Avaya & 3rd party
Voice/Data equipment
SR2330 / SR 4134 Interface
Modules Small Modules
82
1xT1/E1
2xT1/E1
2xBRI S/T
1xSerial
2xSerial
2xFXS
4xFXS
2xFXO
4xFXO
1xADSL2+ (Annex A ou Annex B)
2xBRI U
SR 4134 – Slot 2 -
Atenção Small Modules
83
SR2330 / SR 4134 Interface
Modules Small Modules
84
1xT1/E1
2xT1/E1
2xBRI S/T
1xSerial
2xSerial
2xFXS
4xFXS
2xFXO
4xFXO
1xADSL2+ (Annex A ou Annex B)
2xBRI U
SR2330 / SR 4134 Interface
Modules Small Modules
85
SR4134 Interface
Modules Medium Modules
SR4134 Interface
Modules Medium Modules
8xT1/E1
10x10/100/Gig 2 portas SFP shared
24x10/100
24x10/100 POE
1xDS3
1xCT3
Mediation Services
Module
Carrier Voice Module
SCS Module Zero ou 50 User license
Mesmo custo usuário
Para expansão de portas analógicas
FXS, FXO
SR4134 Voice Modules Large Modules
EOS: 31/março/2011
SR4134 Interface
Modules Large Modules
44 x10/100/Gig 2 portas SFP shared
EOS: 31/março/2011
SIP Survivability Normal Mode – WAN UP
92
SIP
Phone A
Analog
Phone C
WAN Link
PSTN
Trunks
SIP
Phone B
Head Office
Call Server
SIP-PSTN
Gateway
SR4134/SR2330
10.2.0
SSM PSTNRemote
Branch
Office
SIP Survivability Survivable/Backup Mode – WAN DOWN
93
SIP
Phone A
Analog
Phone C
WAN Link
PSTN
Trunks
SIP
Phone B
Head Office
Call Server
SIP-PSTN
Gateway
SR4134/SR2330
10.2.0
SSMPSTN
Remote
Branch
Office
•SR 4134 – PVM
•Adiciona funcionalidades:
sobrevivência SIP e media
gateway
•Default
•Instala 8 licenças DSP (channel-
license)
•Instala 25 licenças SSM
(sobrevivência SIP)
•SR 2330 – PVIM
•Adiciona funcionalidades:
sobrevivência SIP e media
gateway
•Default
•Instala 8 licenças DSP (channel-
license)
•Instala 25 licenças SSM
(sobrevivência SIP)
SR4134 PVM – SR2330 PVIM
•SR 4134 – PVM
•Sobrevivência SIP - SSM
•Default
•Instala 25 licenças SSM
•Capacidade Máxima
•300 licenças SSM
•Alternativas
•SSM: 0, 25, 300
•Não existe soma de licenças
•Capacidade total é da última
licença
•SR 2330 – PVIM
•Sobrevivência SIP – SSM
•Default
•Instala 25 licenças SSM
•Capacidade Máxima
•100 licenças SSM
•Alternativas
•SSM: 0, 25, 100
•Não existe soma de licenças
•Capacidade total é da última
licença
SR4134 PVM – SR2330 PVIM
•SR 4134 – PVM
•Media Gateway
•Default
•Instala 8 licenças DSP
•Capacidade Máxima
•128 licenças DSP
•Alternativas
•DSP: 8, 16, 32, 64, 128
•Não existe soma de licenças
•Capacidade total é da última
licença
•SR 2330 – PVIM
•Media Gateway
•Default
•Instala 8 licenças DSP
•Capacidade Máxima
•64 licenças DSP
•Alternativas
•DSP: 8, 16, 32, 64
•Não existe soma de licenças
•Capacidade total é da última
licença
SR4134 PVM – SR2330 PVIM
New with Rel. 8.0 Starter Kits
•The new virtual appliance model enables the creation of very cost effective „Starter Kits‟ to allow customers to efficiently and cost effectively enable advanced VPN services.
•Includes everything you need to enable remote access with support for SSL, SSLVPN, IPSec and Secure Portable Office.
•Starter kits are discountable using WPP and VID just like other parts.
•First appearing on the December 2009 price book but orderable now are two new Starter Kits.
EB0016025 EB0016026
Description 10 User Starter Kit 50 User Starter Kit
MSRP USD $4,995 $8,995
Appliance Virtual Appliance (NVG-3050-VM or
NVG-3070-VM)
Virtual Appliance (NVG-3050-VM or
NVG-3070-VM)
SSL Users 10 50
IPSec Users 10 50
Secure Portable Office Users
10 50
101
• Provides Complete WLAN Management
• Off-box Element Management
• Provides WC Cluster management support
• RF Tools
– Monitoring, Visualization, Location
• Reports, Trending
• Debugging & Troubleshooting
• Basic Event management
• Standalone Mode or Integrated with UCM
• UCM Integration Features
• Discovery/Topology for both WLAN 2300 and WLAN 8100
• Alarms for both WLAN 2300 and WLAN 8100
• Single Sign On
• Punch through to WMS 2300 or WMS 8100
• Push WLAN 2300 configuration parameters to WLAN 8100 for simplified next-
gen expansion
Introducing WMS for 8100 Integrated into Avaya‟s UCM
102
SIP Unified
Communications
Core
SCS
Media Server
(Voicemail, IVR) Directory
Server
SIP Unified
Communications
Core
Conference
Server
Mobility /
FMC
Call
Center
Server
IM / Chat
Calendar
Speech
Recognition
SCS
Web page w/ VoIP
& presence
Corporate app w/ VoIP
& presence
VoIP, Video, Conf,
Web & email
Fully Featured IP sets
Fixed Mobile Convergence
Collaboration, VoIP, Presence, etc.
Multimedia Desktop Applications
Runs on off-the-shelf computing platforms
O que é “Software Communication System”? A Full Featured SIP Soft PBX + UC System..
“VPN-on-a-Stick”
103
SPO Client offers User Experience
• Plug the SPO USB Drive into any PC with Internet connectivity
• Authenticates User and secures the PC
• User accesses applications from a menu
• Pulling the SPO USB Drives exits sessions, & wipes web cache and encrypted file system
SMO
Session
cycle SPO Session
Simple, Secure, Portable Proven Back-Office
Integration
Active Directory / LDAP
SPO Session
VPN
Gateway (HA Cluster) USB Flash
Memory Client PKI
Application &
File Servers Local Apps
& Storage
Radius Server
SPO Session
104
Unleashing the potential of Wireless
Performance optimization
– Traffic no longer needs to terminate on Wireless Controllers
Improved resiliency
– Wireless Controllers virtualized & availability is protected
Seamlessly scalability
– Control & Data Planes scale independently & at different rates
Reduces costs
– Wireless Controllers become virtual applications & not linked to hardware
Next Generation Architecture ‘Split-Plane’
Application Hosts & V-Servers
Data & Control planes scale independently
Control plane leverages high-availability
Data plane leverages high-performance & high-
availability
Wireless Controller is virtualized & protected
Wireless scalability becomes virtualized
Distributed Wireless Switching software
Access Switch
Virtualized Wireless Controller
