View
605Download
1
Embed Size (px)
So The Virtual Wireless LAN Controller (vWLC) runs on Virtualization infrastructure. It's ideal for small and mid−size deployments. Today i will explain The Basic installation of vWLC on ESXi server First need to download the OVA from Cisco web. We are going to install Cisco wireless virtual controller on Proxmox hypervisor and connect it to pfSense router. Prerequisites: pfSense router with required VLANS created and tagged to Proxmox (I. The vWLC software is available for downloaded at Cisco.com. In this video, I will explain how to install the Cisco Virtual Wireless LAN controller inside GNS3. The vWLC software is available for.
Cisco Wireless controller – vwlc. F5 BIG-IP LTM VE. Juniper Networks vMX router. Palo Alto VM-100 Firewall. A problem with Cisco 2700 AP not connecting with a newly installed Cisco vWLC controller turns out to be a DTLS handshake issue.
DESCRIPTION
Text of Возможности современных беспроводных сетей Cisco
- 1. Cisco 19/11/2012 REDCENTER
2. WLAN, . WiMesh: , . : WIPS rogue APs, . . 3. WLAN (, ) , Mesh 4. Outdoor-mesh outdoor : - / 21.04.2011 -R 5. vs : WLAN. ( ). . . . . Site Survey. standalone 6. : : - , 7. ( ): 2600, 1131 3600 3500 1260 1140 1040 600 1550, Mb 450300300300300300 300CleanAir ClientLink 2.0 Rougue Detection WIPS Office Extend FlexConnect 7.2Mesh 8. (): 2.0 dBi 2.2 dBi 5.2 dBI 12 dBi 6 dBi 6.5 dBi 9 dBi 13.5 dBi Yagi 14 dBi 21 dBi .. 3200 9. ( ):2106 (6,12,25) AP3750G (25-50)526 WiSMWireless Lan controller module (6,8,12,25 AP) 5500 10. ( ):4404-100WiSM 5508 2400 3600>7000 1500 (per chassis) 100300 12 - 250 /. 24 5 Modules per Chassis 12 Modules per Cluster Uplink 4 1000Base-X SFP Any Catalyst interfaces 8 1000Base-X SFP . 4 Gbps 8 Gbps8 Gbps (1 .) 4 Gbps Bus 6500 8 Gbps . () VPN 2 ESMCisco VPN Services Module Inside () -CiscoFirewallServices FirewallModule 11. : 5508-12, 25, 50, 100, 250 (LICENSE-BASED) 5508-12 5508-25 5508-50 5508-1005508-250WiSM-300Performance & Scale4404-1004402-12, 25, 50 3750G-25, 50 2106, 12, 25WLCME-6, 8, 12, 25 H-REAP1 6 122550100 250 300500 # of APs 12. 5508:8 Gigabit Ethernet Status Service Port (RJ45) Uplinks (SFP slots) LEDsSerial Console Port(Mini USB Type B) Redundant Power Supply 10-core Control CPUSerial Console Port (RJ45) 10-core Data CPU 13. :Enterprise, CampusBranch Mobile HREAP SO-Medium Office5500 SeriesWiSM2Flex 7500 Series+ 8500 AP 500 6000AP 12 500 64000 User-7000 10000 User- 2*10Ge8 10 GEth2500(4GEth) WLCM2AP 5/15/25/50 , 500 User- FlexConnect300 (. HREAP) Local mode AP is not supportedInter Controller mobility is not supportedLAG is not supported on WLC 7500 Data DTLS is not supportedClient and RFID Tag location is not supported Voice CAC is not supported7.3 Reliable multicast (Media Stream feature) is not supported WGB is not supportedWLC 7500 platform will not be certified with FIPS 14. , FlexConnect:Branch Mobile HREAP 128K, 300ms (100ms ) 15. , Virtual:vWLC / . VMWare :Hardware: Cisco UCS, UCS Express, HP and IBM serversVMware OS: ESX/ESXi 4.x/5.xFlexConnect Mode: central and local switchingMaximum APs: 200Maximum : 3000Throughput performance up to 500 Mbps per virtual controllerManagement with Cisco Prime Infrastructure 1.2 and above All 802.11n APs with required software version 7.3 are supported. APs will be operating in FlexConnect mode only. AP autoconvert to FlexConnect is supported on controller. New APs ordered will ship with 7.3 software from manufacturing. Existing APs must be upgraded to 7.3 software before joining a virtual controller. : Data DTLS, OEAP (no data DTLS),Rate Limiting,Internal DHCP server, Mobility/GuestAnchor, Multicast-Unicast mode, PMIPv6, Outdoor Mesh Access Points( an Outdoor AP withFlexConnect mode will work) 16. (): WCS Cisco Secure ACSCisco Prime NCS Mobility Service Engine 3355 (Loc.App+wIPS) 17. (): WCS, EOS..Cisco Prime NCS: WCS, MSE wIPS, CleanAir .. Cisco Identity Service Engine, Cisco Secure ACS NAC WCS=Prime NCS 18. ( WCS+Location Appliance): 19. : WCS ! 20. :WCS3 : GPS RF 21. : WCS 22. : , .SiSi MeshController 23. : VLANs 32 PAPs per RAPPoliceCityPublic 72 CntrlsTrafficper cluster 16 MBSSIDs8 Hops deep (3-4 recommended) WCS mesh 24. MESH + Google Earth :WCS + Google maps 25. 1524(a/g)Dual Radio Backhaul 1552 (n)ClientLink, CleanAir 6 Video SurveillanceDOCSIS (c) Hazardous (h)Internal ants (i)Fiber SFP1Gb Ethernet Fiber SFP Option Universal Access backhaul 5 ..Rugged, IndustrialInternal Battery EnclosureBackup Option -40 55 C , UPS Power overPaintable EnclosureEthernet IP .. 26. 1524Ch 165 Ch 1531524SB 1524SB1524SB Dual backhaul: upstream downstream , 5.8 , ! 8 ( 4 )In Russia, outdoors, you can use 5GHzchannels: 56 to 64 (3) at 20dBm 132 to 140 (3) at 22dBm 149 to 161 (4) at 28dBm 27. 1524 Wireless 9-16 cable nodes (RAP) 8-14 mesh nodes (MAP)----------------------------------17-30 1524 16 2-3 1242s WGB on 5 GHz AP on 2.4 GHzIn Russia, outdoors, you can use5GHz channels: 56 to 64 (3) at 20dBm 132 to 140 (3) at 22dBm 149 to 161 (4) at 28dBmconducted power from the AP 28. Enterprise Mesh : 300 300 300 4 5 6 60 60 1 2 3 29. Enterprise Mesh : ( , , ) , , , 1130AG 1242AG 15xx 5 , . 30. : ? WLAN 802.11b - 2 40 ! ? 31. : : , 32. Outdoor : 1400 350 152413101500 i . 33. : : ( ) ? 33 34. site survey site survey 35. : ( , ) 36. - ( ) - dB RP-TNC - C Cisco RP-TNC, N-type N Mesh 1500 1400 37. 3 6 4 3 6 12 3 - 6 * 38. Enterprise , 39. Cisco Spectrum Expert: 40. Cisco Spectrum Expert: 802.11 802.11 a or g 802.11 bOFDM DSSS 20 MHz 20 MHz 41. Cisco Spectrum Expert: 42. Cisco Spectrum Expert: Bluetooth 43. Cisco Spectrum Expert: = 44. Cisco Spectrum Expert: = 100% 45. Cisco Spectrum Expert + WCS 46. - - , - - Cisco 200 - - AP .- .- . , .- . 47. 802.11 : Site Survey , Wi Mesh 48. WLAN :AES (Advanced Encryption Standard) WPA2: 1. (10.2000) 2. DES- 28147-89 3. 128, 192, 256 bit (Wlan 128) 4. 5.Rijndael .. TKIP http://www.pcworld.com/businesscenter/article/153396/once_thought_safe_wpa_wifi_encryption_is_cracked.html ( ) AES (WPA2)Hole 196 MadWiFi driver Peer-to-Peer Blocking Mode 49. WLAN ? 50. WLAN AP LWAPP, LWAPP Tunnel (Ethertype 0xBBBB, UDP 12222 12223) - AES - LWAPP L2 L3 X.509 CAPWAP, WiFi (RFC5415) CAPWAP Tunnel (UDP 5246, 5247) - DTLS DTLS ( 6.0) CAPWAP L3 X.509 51. WLAN NAC in-band , .NAC Appliance 52. WLAN NAC Framework AccessClient PointRADIUSServerACS 4.x : - NAC ServerVendor - X 53. WLAN Spoof UnicastDeauthentication Spoof UnicastDeauthentication2 APAccess Point Containment Rogue APController 54. WLAN RLDPDHCP Access pointRogue APIP Address Connect (port 6352)Controller 55. WLAN : beacon . . switch-, . . . ( ) 56. WLAN : (Local), (monitor) . : Rogue Rule:Marked as SSID: tmobile Friendly RSSI: -80dBmRogue Rule:Detected as Marked asSSID: CorporateRogue MaliciousRSSI: -70dBm Rogues Marked as Matching No UnclassifiedRule 57. WLAN : : 58. WLAN : : 59. WLAN : : 60. WLAN : : Rogue AP Broadcast Deauth frames RogueAP Broadcast and Unicast Deauth 61. WLANIDS wIPS: 62. WLANIDS wIPS: IDS . IPS MSE !:- MSE WCS.- .- - - 63. WLANIDS wIPS: APAttackDetection 24x7 Scanning Over-the-Air DetectionWLC Configuration wIPS AP ManagementMSE Alarm Archival Capture StorageComplex Attack Analysis, Forensics, EventsWCS CentralizedMonitoring HistoricReportingMonitoring,Reporting 64. WLAN IDS wIPS: 1130 1040 1140 1260 3500 3600 65. : Internet Virtual Anchor Controller External ServicesSSID: GUEST External DNS serverRate Limit = 500KbpsWEB Server Internet RoutersWLCTunnel to Virtual Anchor External DMZExternal Firewall GGSSID Client Default Gateway G = GUEST 2= Internal 2WAN Remote Office Remote Office 1 = Internal 1 1 2SSID: Internal SSID: InternalSSID: GUEST 66. 802.11n, - 300+300 450300 (Turbo) : 20+20 . 802.11n11n + 5.1 5.7 200 (5, 2.4) 67. 802.11n, - 300+300 Cisco M-drive. : RRM + DFS + ClientLink + CleanAir Technology 802.11n ? - Beam Forming802.11a/g802.11n 11n + 5.1 5.7 200 (5, 2.4) 68. 802.11n: 802.11n ? - Beam Forming802.11a/g802.11n 69. 802.11n: 802.11n ? - Beam Forming802.11a/gBeam Forming802.11n 70. 802.11n:Beam Forming . , ! - . 71. 802.11n:Up to 65% Increase in Throughput 13.6%No Connection Throughput vs. Distance without87.7% ClientLink 70.4%89.5%Test: 802.11a/g device with 802.11n networkSource: Miercom 72. 802.11n: : - 802.11b - - 15 128 (2.0 AP3600) , ? : ! 6.0 73. 802.11ac: channel bonding, 40 MHz 802.11n, 80 160MHz ( 117% 333% ) 256 QAM, 802.11n 64QAM (33%) MIMO. 802.11n 4 , 802.11ac (100%). 2.4 802.11n1.3Gb 5Ghz 74. WCS 7.x , Clean Air 75. WCS 7.0 Client Walk ! . 76. WLC 7.3 !vWLC 8500 Local FLexConnect. 64000 users, 6000 APs ( SP) NBAR http ISE FLexConnect Flexconnect(DHCPextention,NAT,PPPoe)Direct-connect access points on the 2500 Series controller 2600 CleanAir WGB MSE: MSE CleanAirCisco Prime NCS: , , , -Cisco , (, RFC 1213( MIB) / Aruba Networks ) 77. :CCNA Wireless 1. IUWNE Wireless Network Essential 640-721CCNP Wireless 1. IUAWS Security. 642-736 2. CUWSS Site Survey. 642-731 3. IUWMS Mobility Services. 642-746 4. IUWVN - Voice. 642-741 CCIE Wireless 78. !: CCIE, CCSI, CQS, - sm@redcenter.ru.: +7 (495) 984-2764, , - ,REDLAB/REDCENTER
Cisco Virtual Wireless Controller, as its name described “Virtual”, is a controller in a virtual form factor. It enables flexible and cost-effective deployment for small, medium-sized, or large service provider deployments. Andit can be deployed on any x86 server that supports VMware ESXi 4.x, 5.x, or 6.x and Linux KVM systems.
The Cisco Virtual Wireless LAN Controller (vWLC) is available with two types of software images starting with the 8.2 release: small-scale image (supports up to 200 access points and 6000 clients) and large-scale image (supports up to 3000 access points and 32,000 clients).
A Cisco Virtual Wireless Controller can be positioned:
- Small and midsized deployments with a virtual infrastructure that requires an on-premises controller
- Distributed branch environments with a centralized controller supporting a maximum of 200 branches
In the following Part there are many fast questions and answers to help you know what the Cisco Virtual Wireless Controller is, know its capability and its bright features.
Cisco Virtual Wireless Controller FAQ 2016
Q. Does the Cisco Virtual Wireless Controller support local mode?
A. The Cisco Virtual Wireless Controller offers FlexConnect features in both central and local switching. FlexConnect central switching provides a feature set similar to that of local mode.
Q. Does the Cisco Virtual Wireless Controller support bring-your-own-device (BYOD) enhancements in conjunction with the Cisco Identity Services Engine (ISE)?
A. Yes. The Cisco Virtual Wireless Controller with FlexConnect technology supports device registration, supplicant provisioning, and provisioning and onboarding of personal devices.
Q. Does the Cisco Virtual Wireless Controller support context-aware services?
A. Yes. The Cisco Virtual Wireless Controller supports Cisco Mobility Services Engine (MSE) integration for location tracking of Wi-Fi clients, RFID tags, wired and wireless clients, and rogue devices.
Q. What security features does the Cisco Virtual Wireless Controller support?
A. A comprehensive matrix for FlexConnect security support is at https://www.cisco.com/c/en/us/support/docs/wireless/5500-series-wireless-controllers/112042-technote-wlc-00.html .
Q. When do I position a Cisco Flex7500 Series Controller versus a Virtual Wireless Controller?
A. Position a virtual controller if the customer’s deployment meets the following requirements and specifications:
- Virtual footprint based on VMware hypervisor ESXi 4.x, 5.x or 6.x and Linux KVM system
- Does not require Data Transport Layer Security (DTLS) support
- Maximum number of sites limited to 200
- Performance limited to 500 Mbps per controller
Q. How is the Cisco Virtual Wireless Controller purchased?
A. The Cisco Wireless Virtual Controller can be purchased directly from Cisco or from a reseller.
After purchase of a license, a product activation key (PAK) is delivered to the purchaser. The PAK needs to be provided to a Cisco License Server along with a unique device identifier (that is generated when the virtual controller VM boots up) in order for the server to provide the virtual controller with a license file. The license file then needs to be installed in the virtual controller and activated.
Q. What type of licensing does the virtual controller support?
A. Cisco Virtual Wireless Controllers provide right-to-use (with end-user license agreement [EULA] acceptance) license enablement for faster time to deployment, with flexibility to add additional access points as business needs grow.
- Additional access point capacity licenses can be added over time.
- Right-to-use licensing (with EULA acceptance) for faster and easier license enablement.
Starting with the 8.2 release, Cisco Virtual Wireless Controllers also provide an option to enable licensing using Cisco Smart Software Licensing, designed for easy monitoring and consumption of licenses.
- Manage license deployments with real-time visibility to ownership and consumption.
- Pools license entitlements in a single account. Licenses can be moved freely through the network to wherever they are needed.
Q. How is the Cisco Virtual Wireless Controller deployed?
A. The virtual controller software will be posted as a .ovf package in the Cisco software center. Customers can download the .ovf package and install it similarly to any other virtual application. Software comes with a free 60-day evaluation license. After the VM is started, the evaluation license can be activated, and later a purchased license can be automatically installed and activated.
Q. How is the Cisco Virtual Controller managed?
A. Similar to other Cisco Wireless Controllers, the virtual controller can be managed using the controller device GUI or using Cisco Prime infrastructure.
Q. Does the Cisco Virtual Controller support serial console for out-of-band access?
A. Yes. The administrator can use the vSphere client to configure the Cisco Virtual Controller. An alternate recommended option is to configure either a physical or virtual serial console. A physical console is bound to the physical ESXi server and can be connected to a terminal console server. A virtual serial port is accessible over the network and can be assigned to each virtual controller; more than one virtual serial console can be set up as required by the number of virtual controllers in each ESXi server. Only one console option (physical or virtual serial) can be used.
Q. What are the requirements for access points to join a virtual controller?
- The access points must be upgraded to 7.3 software before joining a virtual controller.
- Access points ordered starting September 2012 shipped with 7.3 software from manufacturing.
Cisco Vwlc Iso Download
If the access points are associated with a controller, use the current upgrade process using Cisco Prime or controller to upgrade the access points to 7.3 software.
Cisco Vwlc Download
…
The FAQ from https://www.cisco.com/c/en/us/products/collateral/wireless/virtual-wireless-controller/qa_c67-715130.html
There is also a video to show the overview of Cisco Virtual Wireless Controller
Wanna choose a Cisco wireless controller for your needs? How to find out the right one? Here we go: The Smart Cisco Wireless Selector.
Just answer a few simple questions to quickly identify the right Cisco wireless access points and controllers for you.
Wanna know the specifications of different Cisco wireless controller at the same time? It’s easy to check.
Cisco Vwlc Setup
Use this tool to compare the specifications of Cisco wireless access points and controllers.
More Related Cisco Wireless Topics