Click here to load reader

Cisco Meraki Cloud-Managed Networking - BRINEL...Cisco Meraki hardware integration through sentry and group policies Wireless & VPN access through sentry policies Integrates with Cisco

  • View
    4

  • Download
    0

Embed Size (px)

Text of Cisco Meraki Cloud-Managed Networking - BRINEL...Cisco Meraki hardware integration through sentry...

  • Cisco Meraki – Cloud-Managed Networking

    George Carlan

  • © 2014 Cisco and/or its affiliates. All rights reserved. 4

    Ease of UseUnparalleled Deployment Flexibility

    Cisco Enterprise Portfolio Cisco Cloud Managed

    Prime ISE

    Catalyst 2K/3K/4K/6K

    ASA - Firewall

    ISR - Routing

    MS Switch

    MX Series Security

    Appliances

    Aironet Access Points

    Cloud Management & Policy

    Cisco Networking Portfolio

    MR AP’s

    Systems ManagerSystems Manager

    Catalyst 3850 with integrated controller

    Cloud ControllerWLAN Controllers

  • Cloud Managed WiFi

    (2006)

    Cloud Managed Network

    (2010)

    Cloud Managed IT

    (2016)

    MS Ethernet Switches MX Security Appliances MC CommunicationsSystems Manager EMMMR Wireless LAN MV Security Cameras

    Cisco Acquisition

    (2012)

  • Licensing is required and includes:

    Centralized management and network-wide visibility and control

    Seamless firmware and security updates

    24/7 Enterprise Support and lifetime warranty

    Zero-touch device provisioning

    A Meraki solution includes a 1:1 ratio of hardware and licenses

    hardware license

    +

    The cloud license represents the total cost of ownership for all of your Meraki devices

  • Deployments without the need for local IT

    INSTANT IT

    Monitoring of locations, users, devices, and apps

    FULL BUSINESS VISIBILITY

    Consistentexperience across

    all locations

    ON-DEMAND SCALABILITY

    Fewer IT resources and greater manageability –up to 67% cost savings

    LOWER IT COST

    BETTER BUSINESS OUTCOMES

    The strength of a complete cloud-managed network

  • Application Control

    Geo-based IP FW rules, Traffic

    Shaping, Content Filtering

    Security

    NG Firewall, Client VPN,

    Site-to-Site VPN, IDS/IPS,

    AMP with Threat Grid ,

    Security Center

    Networking

    NAT/DHCP, 3G/4G Cellular,

    Static Routing, OSPF, BGP,

    Link Balancing, HA & Failover,

    SD-WAN

  • MX64/64W

    MX84

    MX100

    MX400

    MX600

    Z1

    Small branch

    (~50 users)

    Where FW Throughput

    250 Mbps

    Campus/

    VPN Concentration

    (~10,000 users)

    Large

    branch/campus

    (~2,000 users)

    Mid-size branch

    (~200 users)

    Mid-size branch/

    Small campus

    (~500 users)

    Notable Features

    11ac wireless (MX64W)

    Power redundancy

    Modular interface

    SFP or SFP+ (with modules)

    500 MbpsSFP Ports

    750 MbpsSFP Ports

    1 Gbps

    1 Gbps

    Power redundancy

    Modular interface

    SFP or SFP+ (with modules)

    For teleworkers

    (1-5 users)

    Dual-radio wireless

    FW throughput: 50 Mbps

    All devices support 3G/4G

    MX65/65W

    Small branch

    (~50 users)PoE+, dual WAN, 802.11ac 250 Mbps

  • Stateful Firewall L3, L7 (NGFW)

    IPS/IDS Snort

    Content Filtering4+ billions URLs (Webroot BrightCloud)

    Geo-based security Geo-filtering (Max Mind)

    Malware ProtectionCisco AMP

    AMP Threat Grid

    Client authentication AD, Radius, 802.1x

    SOC Single pane of glass security center

    Firmware freshness Continuous security updates

    PCI compliancePCI 3.1 certified cloud-based management

  • Single cloud management interface for Security, SD-

    WAN, Wireless, Switching, VoIP, EMM, and Security

    Cameras

    Cisco Security Technologies(IPS/IDS, AMP, AMP

    Threatgrid)

    Integrated SD-WAN functionality (left)

    Auto-VPN

    Built-in Wireless with Social Login and

    Analytics(MX64W & MX65W models)

    Templates & Network Cloning

    True Plug & Play Behaviour (MX deployment in 10.000

    US locations in 4 months)

    Dynamic policy application via EMM

    WAN 1Secure VPN tunnel (active)

    Latency / loss > threshold

    WAN 2Secure VPN tunnel (active)

    Latency / loss < threshold

    Data Based on L3 / L4 / L7 categorization, this data normally travels out WAN 1

    (PbR), but MX detects optimal path is

    WAN 2 based on latency / loss on

    WAN 1

    SD-WAN

  • Retail Education Hospitality Healthcare Corporate Offices

    MX

    Appliance

    SD-WAN

    Auto-VPN

    Plug & Play Behavior

    Built-in Wireless with

    CMX Analytics

    Built-in customizable

    Wireless Welcome

    Page & FB Login

    3G / 4G Failover

    Open APIs

    Templates

    Integration with ISE

    Content Filtering

    Cisco Security

    Technologies (AMP,

    IPS)

    Simplicity in

    configuration

    Content Filtering

    Cisco Security

    Technologies (AMP,

    IPS)

    Built-in customizable

    Wireless Welcome

    Page & FB Login

    Templates

    Content Filtering

    Site-to-Site VPN

    Cisco Security

    Technologies (AMP,

    IPS)

    Traffic Shaping

    Segmented network

    Templates

    Integration with 802.1X,

    ISE

    Cisco Security

    Technologies (AMP,

    IPS)

    Content Filtering

    Meraki Dashboard:

    Visibility, Central Management, Ease of configuration and administration, Monitoring, Alerts & Reporting

  • Centralized Management

    Full Feature Set

    CMX Analytics

    Built-in Security with L3/L7 firewall rules

    Traffic Shaping

    Posture & ISE Integration

    Templates & Network Cloning

    True Plug&Play Behavior

    Dynamic policy application via EMM

    Lifetime warranty on indoor APs

    - We don’t upsell customers to give them

    more functionality!!

  • 17

    MR66

    Dual-Radio

    802.11a/b/g/n

    2 Stream 4 Radio

    802.11ac Wave 2

    Bluetooth LE

    MR30H

    2 Stream Triple-Radio

    802.11ac

    Bluetooth LE

    MR72MR62

    Single-Radio

    802.11b/g/n

    3 Stream Triple-Radio

    802.11ac Wave 2

    Bluetooth LE

    MR42

    4 Stream 4 Radio

    802.11ac Wave 2

    Bluetooth LE

    MR52

    4 Stream 4 Radio

    802.11ac Wave 2

    Bluetooth LE

    1 × 2.5Gbps Multigigabit Ethernet Port

    MR53

    4 Stream 4 Radio

    802.11ac

    Bluetooth LE

    1 × 2.5Gbps Multigigabit Ethernet Port

    MR82

    Indoor APs

    Outdoor APs

    MR33

    2 Stream 4 Radio

    802.11ac Wave 2

    Bluetooth LE

    Integrated 4-port SW

  • RF optimization and

    application-aware QoS for high-

    throughput, high-density WLAN

    Layer 7 application

    traffic shaping

    Throttle, block, or prioritize application traffic with DPI-based fingerprinting; set user

    and group-based shaping rules

    Cloud-base RF

    optimization

    Dynamically avoid interference, optimizing channel selection and power levels

    Density-optimized

    WLAN

    RF platform tuned for airtime fairness and performance in dense performance-

    critical environments

  • Out-of-the-box security,

    management, and capacity for

    BYOD-ready deployments

    Device-aware security Device-aware firewall and access control; Antivirus scan; LAN isolation;

    Bonjour Gateway; Content and security filtering

    Integrated MDM Enforce encryption, passcodes, and device restrictions; Deploy enterprise

    applications; Remotely lock or wipe devices

    Simplified onboarding Flexible authentication with AD integration, SMS authentication, hosted splash

    pages, and automatic MDM enrollment

  • Built-in location

    analytics dashboard

    Optimize marketing and

    business operations

    Analyze capture rate, dwell time, and new / repeat visitors to measure advertising,

    promotions, site utilization, etc.

    Built-in analytics Integrated into WLAN, no extra sensors, appliances, or software

    Extensible API Integrate location data with CRM, loyalty programs, and custom applications for

    targeted real-time offers

  • Retail Education Hospitality Healthcare Corporate Offices

    MR

    Access

    Points

    High Density

    Plug & Play Behavior

    CMX Analytics

    Customizable Welcome

    Page & FB Login

    Open APIs

    Templates

    Built-in Security

    Monitoring and Email

    Alerts

    High Density

    Content Filtering(Adult

    Content)

    Built-in Security

    Simplicity in

    configuration

    Dynamic policy

    application via EMM

    ISE Integration

    Content Filtering(Adult

    Content)

    Customizable Welcome

    Page & FB Login

    Open APIs

    Templates

    Built-in Security

    Monitoring and Email

    Alerts

    Simplicity in

    configuration

    Content Filtering(Adult

    Content)

    Wireless traffic shaping

    Segmented network

    Templates

    Integration with 802.1X

    and ISE

    Dedicated 3rd Radio

    Content Filtering(Adult

    Content)

    Wireless traffic shaping

    Dynamic Policy

    application via EMM

    Segmented network

    Meraki Dashboard:

    Visibility, Central Management, Ease of configuration and administration, Monitoring, Alerts & Reporting

  • Centralized Management

    Templates & Cloning Network Configuration

    True Plug & Play Behavior

    Dynamic policy application via EMM

    Built-in troubleshooting & diagnostic tools

    SaaS feature delivery, quarterly updates

    Feature velocity future-proofs hardware investment

    - We don’t upsell customers to give them

    more functionality!!

  • Access

    MS220 MS225 MS250 MS350

    Features

    • 8 port models

    • Layer 2

    • Gigabit SFP uplinks

    • 24, 48 port models

    • Layer 2

    • 10Gb SFP+ uplinks

    • 80Gb Stacking

    • 24, 48 port models

    • Physical stacking

    (80Gbps)

    • Layer 3

    • 10Gb SFP+ uplinks

    • Hot-swappable, field-

    replaceable fans and

    power supplies

    • 24, 48 port models

    • Physical stacking

    (160Gbps)

    • High performance Layer

    3

    • 10Gb SFP+ uplinks

    • Multi Gigabit

    • Hot-swappable, field-

    replaceable fans and

    power supplies

    Positioning

    • Branch access

    switching ( Compact L2)

    • Branch access

    switching(L2)

    • Stackable Branch and

    Campus access

    switching (L3)

    • Stackable Branch and

    Campus access

    switching (L3)

    Available Models & Options

  • MS410 – Affordable 1G fiber distribution

    Ideal for Large Branch and Small Campus

    16 & 32-port options

    L3 capable

    Ideal for MS220 access customers

    Stackable

    MS425 – Powerful 10G fiber distribution

    Ideal for Medium to large Branch & Campus

    16 & 32 - port options

    L3 capable

    Ideal for MS350/320 access customers

    Stackable - 480Gbps switching capacity

    Meraki Aggregation & Distribution

  • Virtual stacking— Single pane of glass visibility into all

    switches and ports

    — Configure ports in minutes, regardless of

    model or location

    Easy to deploy & manage— Zero-touch site provisioning

    — Switch cloning in 3 clicks

    — Seamless updates from the cloud

    — Network-wide monitoring and alerts

    Built-in troubleshooting & diagnostic tools— Remote packet capture

    — Local config page switch.meraki.com

    — Cable test tool

  • Or

  • Retail Education Hospitality Healthcare Corporate Offices

    MR

    Switches

    Plug & Play Behavior

    Templates

    Cloning Network

    Configuration

    Monitoring and Email

    Alerts

    Simplicity in

    configuration (hundreds

    of ports in minutes)

    Plug & Play Behavior

    Templates

    Cloning Network

    Configuration

    Monitoring and Email

    Alerts

    Simplicity in

    configuration( hundreds

    of ports in minutes)

    Plug & Play Behavior

    Templates

    Cloning Network

    Configuration

    Monitoring and Email

    Alerts

    Simplicity in

    configuration( hundreds

    of ports in minutes)

    Plug & Play Behavior

    Templates

    Cloning Network

    Configuration

    Monitoring and Email

    Alerts

    Simplicity in

    configuration( hundreds

    of ports in minutes)

    Integration with 802.1X

    and ISE

    Templates

    Cloning Network

    Configuration

    Monitoring and Email

    Alerts

    Simplicity in

    configuration( hundreds

    of ports in minutes)

    Segmented network

    Meraki Dashboard:

    Visibility, Central Management, Ease of configuration and administration, Monitoring, Alerts & Reporting

  • - We don’t upsell customers to give them

    more functionality!!

    Mobile & Desktop Management

    Multi Platform EMM Support:

    Application management

    Dynamic provisioning

    Active Directory enrollment integration

    Network integration via Sentry policies:

    Cisco Meraki hardware integration through sentry

    and group policies

    Wireless & VPN access through sentry policies

    Integrates with Cisco ISE for enrollment and

    posture assessment

  • Retail Education Hospitality Healthcare Corporate Offices

    Meraki SM

    Sentry Policies

    Device Management

    Application

    Management

    Cellular Management

    Remote Wipe

    Sentry Policies

    Device

    Management(Students

    & Teachers)

    Application

    Management

    Remote Wipe

    Profiles (Wireless,

    VPN)

    Sentry Policies

    Device Management

    Application

    Management

    Remote Wipe

    Sentry Policies

    Device Management

    Application

    Management

    Remote Wipe

    Sentry Policies

    Application

    management

    Dynamic provisioning

    Enterprise wipe

    Active Directory

    enrollment integration

    Integrates with Cisco

    ISE for enrollment and

    posture assessment

    Meraki Dashboard:

    Visibility, Central Management, Ease of configuration and administration, Monitoring, Alerts & Reporting

  • Centralized Management with Video wall, Motion

    Search

    128GB of solid state storage on each camera

    Up to 20 days of 24/7 continuous recording

    Night Mode

    Less than 50kbps upstream bandwidth per camera

    SaaS feature delivery, quarterly updates

    Feature velocity future-proofs hardware investment

    - We don’t upsell customers to give them

    more functionality!!

    MV21 Indoor Camera

    MV71 Outdoor Camera

  • Video wall

    Resize, reorder, and monitor video streams on the

    fly

    Drag-and-drop functionality

    Motion search

    Automatically isolate key motion events and find

    out who stole that laptop

    Easily export important video segments

    Granular access controls

    Choose who can view, export, and change the

    layout of your videos

    - We don’t upsell customers to give them

    more functionality!!

  • Licensing is required and includes:

    Centralized management and network-wide visibility and control

    Seamless firmware and security updates

    24/7 Enterprise Support and lifetime warranty

    Zero-touch device provisioning

    A Meraki solution includes a 1:1 ratio of hardware and licenses

    hardware license

    +

    The cloud license represents the total cost of ownership for all of your Meraki devices

  • Meraki MR

    Wireless LAN

    Meraki MX

    Security

    Appliances

    Meraki MS

    Ethernet Switches

    Meraki SM

    Mobile Device

    Management

  • A complete, powerful, and intuitive cloud-managed IT solution.

    Wireless | Security | Switching | Communications | Enterprise Mobility | Security Cameras

    NETWORKING IS COMPLICATED.

    MERAKI IS MAKING IT EASIER, FASTER, AND SMARTER.

    _____

    Better networking means that businesses run more smoothly, and more

    people have reliable access to the information they need.

    Manage your networks from anywhere you have internet connectivity using an intuitive, web-based dashboard or a mobile app.

  • Free AP Program Try => BuyDashboard / Dcloud

    Demo

    1 2 3

  • Thank you!

    Parteneri media

    Radu-George Carlan

    Meraki Consultant

    [email protected]

    Mobile: +40 723 304 070