Specifications HIS Department - mgims.ac.in fileSpecifications HIS Department ... 3 GB 12G SAS 10K RPM SFF HDD, ... c. Training to the HIS Staff also to be provided within the project

KASTURBA HEALTH SOCIETY'S MAHATMA GANDHI INSTITUTE OF MEDICAL SCIENCES,

P.O. SEVAGRAM, WARDHA (DISTT.) MAHARASHTRA STATE - 442 102

____________________________________________________________

Specifications

HIS Department

Designing, Developing & Maintaining Wi-Fi for the entire Campus, extended residential colonies and the peripheral healthcare centres by considering existing Wired & Wireless Infrastructure

BILL OF MATERIAL

Sn Description QTY Unit Price INR

Total INR

1 Wireless LAN Controller (Specification as per Annexure I) 2

2 Network Management Software with AP License (Specification as per Annexure I) 1

Single Mode SFP 10G Module 10

3 Multi-Mode SFP 10G Module 40

4 Wireless Access Point Wave1 (Specification as per Annexure II) 200

5 Wireless Access Point Wave2 (Specification as per Annexure III) 75

6 24 Port Access Switch (specification as per Annexure IV) 6

7 12 Port Access Switch (specification as per Annexure VI) 6

8

Intel Xeon E5-2630 V4, 2.2 Ghz/10-core/25MB/85W (Dual Processor Loaded ) or higher server with 128 GB RAM with 900 x 3 GB 12G SAS 10K RPM SFF HDD, Hot-plug retardant power supply, 10G SFP+ network adapter, MLOM blanking panel with Vmware Software (Specification as per Annexure VII)

1

9

Migration of existing wired and wireless setup with proposed new setup is included in the scope of work. Installation Commissioning and Maintenance of Active Directory, DHCP server, Network Management and Monitoring Software including 5 years onsite service from the date of successful installation.

1

** Products offered must include warranty and onsite support of 5 years from the date of supply / installation including existing setup.

SCOPE OF WORK

(To be submitted with technical bid duly signed)

The institute is establishing managed wireless network in campus. The scope of work includes as below:

Supply installation and commissioning of wired and wireless networking products as per tender. Configuration of the equipment as per the requirements and instructions of MGIMS HIS Department. The bidder shall also be responsible for deputing qualified personnel for installation, testing,

commissioning and other services under his scope of work as per this specification. All required tools for completing the scope of work as per the specification is also the responsibility of the bidder.

The bidder should ensure while installation of LAN, day-to-day functioning of official work and existing network setup/connectivity/internet connectivity should not get disrupted.

Vendors are required to quote for all items along with installation Vendor should quote for the entire BOQ; no part quote will be accepted. All LAN products must be

from same OEM. To facilitate centralized operation the successful bidders have to install and maintain Active Directory,

RADIOUS and DHCP server, the required material will be provided by the institute. The successful bidder have to install and maintain the Network Management and Monitoring Software,

the required material will be provided by the institute. The server should be preferably bundled with Vmware. The Vmware is to be used for creating four

client—Active directory, Network management, Network monitoring & DHCP server. The bidder must quote all license to meet the requirement.

The successful bidder must merge the existing network (HP) with the new network. The new network should not be a standalone network.

The proposed new setup will be under onsite warranty for 5 years from the completion of date of installation.

Delivery of material at site and installation including loading and unloading shall be the responsibility of supplier.

Project Duration: a. The entire work including Supply, Installation, Integration, Testing and Commissioning should

be completed within Six weeks of releasing the work order. b. The entire documentation and testing reports should be submitted within the project duration of

six weeks. c. Training to the HIS Staff also to be provided within the project duration. d. Final acceptance certificate will be issued by HIS only after completing point a, b & c mentioned

above.

OEM & BIDDER ELIGIBILITY CRITERIA

OEM CRITERIA S.No Criteria

1 The OEM should be in Gartner magic quadrant for LAN and WLAN in leaders quadrant in last 3 years

2 Active components and network management should be from the same OEM to have single TAC.

3 OEM should have presence in India at least from last 10 years.

4 OEM should have hardware spare depots in India covering major cities & Maharashtra specifically

BIDDER CRITERIA FOR LAN & WLAN PRODUCTS SN Criteria

1 The bidder must be an OEM or its authorized dealer and must submit enquiry / tender specific Manufacturer Authorization Certificate for offered products. Offer / quotation received without authorization will not be considered for further evaluation.

2 The bidder must provide compliance to the technical specification. 3 The bidder must submit datasheet of the products quoted.

4 The bidder must have successfully executed order of similar nature in Government, Semi-Government or Private organization. Purchase order copy must be enclosed with the bid.

5 Detailed Network Diagram / Solution document of the offered system should be attached in the technical bid.

6

Bidder should have experience in successfully implementing works of similar nature during the last 5 years ending 31st March, 2017. The work execution should be either of the following: i) One similar order costing not less than Rs 120 Lakhs. Or ii) Two similar orders each costing not less than Rs 60 Lakhs. Similar order means “Supply, installation, configuration and commissioning of Network Switches, Firewall and Wi Fi network and Network management/monitoring software” (Bidder to submit copy of PO/Completion Certificate from the Client).

ANNEXURE I SPECIFICATION OF WIRELESS LAN CONTROLLER WITH

NETWORK MANAGEMENT SOFTWARE Sr. NO. Specification Compliance

Y/N

A Hardware Specifications

1

Must be compliant with IEEE CAPWAP or equivalent for controller-based WLANs.

Should have at least 2 x 10 Gigabit SFP+ interface. Should support both centralized as well as distributed traffic forwarding architecture with L3 roaming support from day 1. Should have IPv6 ready from day one.

Controller should have hot-swappable redundant power supplies. Controller should support Solid State Drive (SSD) based storage Controller should be capable of supporting both 1G and 10 G SPFs on same Network I/O ports

WLC should support Trustsec SXP Controller should support minimum 20,000 users per chassis

WLAN Controller should support minimum of 1500 Access points in a single chassis. Proposed controller should support N+N redundancy from day one

Shall support WIPS, and spectral analysis from day 1. Should be rack-mountable. Required accessories for rack mounting to be provided. WLC should support AVC functionality on local switching architecture WLC should support AP License Migration from one WLC to another Should support minimum 4000 VLANs

B Wireless Controller Features

2

Must support stateful switchover between active and standby controller in a sub second time frame.

WLC should support L2 and L3 roaming for IPv4 and IPv6 clients WLC should support guest-access functionality for IPv6 clients. Should support IEEE 802.1p priority tag. Should ensure WLAN reliability by proactively determining and adjusting to changing RF conditions.

Should provide real-time radio power adjustments based on changing environmental conditions and signal coverage adjustments.

Should support automatic radio channel adjustments for intelligent channel switching and real-time interference detection.

Should support client load balancing to balance the number of clients across multiple APs to optimize AP and client throughput.

Should support policy based forwarding to classify data traffic based on ACLs

Sr. NO. Specification Compliance Y/N

2

WLC should support PMIPv6 and EoGRE tunnels on northboud interface Should support flexible DFS to prevent additional 20/40 Mhz channels from going unused

Should support minimum 500 WLANs Should support dynamic VLAN assignment Should support Hot Spot 2.0 To deliver optimal bandwidth usage, reliable multicast must use single session between AP and Wireless Controller.

Should able to do dynamic channel bonding based on interference detected on particular channel.

Must support coverage hole detection and correction that can be adjusted on a per WLAN basis.

Must support RF Management with 40 MHz and 80 Mhz channels with 802.11n & 802.11ac

Should provide visibility to Network airtime in order to set the airtime policy enforcement

Must support dynamic Airtime allocation on per WLAN, per AP, Per AP group basis.

Must be able to restrict the number of logins per user.

C Security

3

Should support web-based authentication to provide a browser-based environment to authenticate clients that do not support the IEEE 802.1X supplicant.

Should support port-based and SSID-based IEEE 802.1X authentication. Should support MAC authentication to provide simple authentication based on a user's MAC address.

WLC Should support Rogue AP detection, classification and standard WIPS signatures.

WLC should be able to exclude clients based on excessive/multiple authentication failure.

Shall support AES or TKIP encryption to secure the data integrity of wireless traffic

WLC Should support Rogue detection for Payment Card Industry (PCI) compliance and also Rogue access point detection & detection of denial-of-service attacks

Should support AP location-based user access to control the locations where a wireless user can access the network

Should support Public Key Infrastructure (PKI) to control access Must be able to set a maximum per-user bandwidth limit on a per-SSID basis.

D Management & QoS

4 Should support SNMPv3, SSHv2 and SSL for secure management.

Sr. NO. Specification Compliance Y/N

4

Should support encrypted mechanism to securely upload/download software image to and from Wireless controller.

Should provide visibility between a wired and wireless network using IEEE 802.1AB Link Layer Discovery Protocol (LLDP) and sFlow/equivalent.

Should support AP Plug and Play (PnP) deployment with zero-configuration capability

Should support AP grouping to enable administrator to easily apply AP-based or radio-based configurations to all the APs in the same group

Should support selective firmware upgrade APs, typically to a group of APs minimize the impact of up-gradation

Should have a suitable serial console port.

Should have Voice and Video Call Admission and Stream prioritization for preferential QOS

Controller should have Deep Packet Inspection for Layer 4-7 traffic for user for all traffic across the network to analyses information about applications usage and prioritization

Should be able to do application visibility for application running behind HTTP proxy.

Controller should have profiling of devices based on protocols like HTTP, DHCP and more to identify the end devices on the network.

Should support visibily and control based on the type of applications

E Software & Management LIC

5

Should have 300AP lic quoted on the controller using software bundle or individual AP lic from day1.

Should support Management System for WLAN solution/AP and should be part of the overall solution.

Should Support WLAN Software portability to various Models of Controllers for future use & investment protection

Should support basic AAA function through combined LIC on WLC LIC/Software Should support location based services basic feature of detection of client using the WLAN AP radius cell itself

Should have Management lic as part of the solution for all AP. WLAN Management system software can be separate tool. But lic needs to be part of the bunlde lic or part of the solution

F Support & Warranty Make & Model

1 8x5 replacement NBD warranty for 5 years

2 Make & Model

ANNEXURE II SPECIFICATION OF WAVE1 ACCESS POINT

Feature Specification Compliance Y/N

Hardware:

Access Points proposed must include radios for both 2.4 GHz and 5 GHz. Must have a robust design for durability, without visible vents Each radio has a dedicated memory and CPU apart from the shared Memory and CPU Access point must have two 10/100/1000BASE-T Ethernet, autosensing (RJ-45) interface Mounting kit should be standard from OEM directly.

802.11ac

Must support 3X3 multiple-input multiple-output (MIMO) with TWO spatial streams Must support simultaneous 802.11ac on 5 GHz radios and 802.11n on 2.4Ghz Radio. Must support data rates up to 860 Mbps throughput. Must support 40 and 80 MHz wide channels in 5 GHz. Must support up to 22dbm of transmit power in both 2.4Ghz and 5Ghz radios

RF

The Wireless AP should have the technology to improve downlink performance to all mobile devices including one and two spatial stream devices on 802.11n. The technology should use advanced signal processing techniques and multiple transmit paths to optimize the signal received by 802.11 clients in the downlink direction without requiring feedback and should work with all existing 802.11 clients. Should have capability to detect and classify non-Wi-Fi wireless transmissions while simultaneously serving network traffic Should support configuring the access point as network connected sensor to access any network location covered by the access point to get real-time Spectrum analysis data. Must support AP enforced load-balance between 2.4Ghz and 5Ghz band Must have -100 dB or better Receiver Sensitivity. Must Standards based Beam forming Must incorporate radio resource management for power, channel, coverage hole detection and performance optimization

Roaming Must support Proactive Key Caching and/or other methods for Fast Secure Roaming.

Security Must support Management Frame Protection. Must operate as a sensor for wireless IPS

Encryption Access Points must support a distributed encryption/decryption model.

Access Points must support Hardware-based DTLS encryption on CAPWAP Standard or eqivalent

Feature Specification Compliance Y/N

Monitoring

Must support the ability to serve clients and monitor the RF environment concurrently. Must support Spectrum analysis including @ 80 MHz Same model AP that serves clients must be able to be dedicated to monitoring the RF environment.

Flexibility:

AP model proposed must be able to be both a client-serving AP and a monitor-only AP for Intrusion Prevention services. Should support mesh capabilities for temporary connectivity in areas with no Ethernet cabling Must continue serving clients when WAN link to controller is down Mesh should support QoS for voice over wireless. Must be plenum-rated (UL2043). Must support Controller-based and standalone(autonomous) deployments Must support 16 WLANs per AP for SSID deployment flexibility.

Operational: Must support telnet and/or SSH login to APs directly for troubleshooting flexibility.

Power: Must support Power over Ethernet, power adaptor, and power injectors. 802.3af (15.4W) - The access point can can be powered by any 802.3af-compliant device

Quality of Service:

802.11e and WMM WiFi Alliance Certification for WMM and WMM power save Must support Reliable Multicast to Unicast conversion to maintain video quality at AP level Must support QoS and Video Call Admission Control capabilities.

Support & Warranty 8x5 replacement NBD warranty for 5 years

Make & Model

ANNEXURE III

SPECIFICATION OF WAVE2 ACCESS POINT Features Specification Compliance

Y/N

Hardware:

Access Points proposed must include radios for 2.4 GHz and 5 GHz with 802.11ac Wave 2

Must have a robust design for durability, without visible vents Mounting kit should be standard from OEM directly. Must have dedicated memory and CPU for each radio apart from the shared Memory and CPU of the access point

High-speed spectrum intelligence across 20-, 40-, and 80-MHz-wide channels to combat performance problems due to wireless interference

Must have atleast 1024 MB DRAM and 256 MB flash Must have 2x10/100/1000BASE-T autosensing (RJ-45) ports & management Console port RJ-45

Must have atleast 4 dBi Antenna gain on both radios

802.11ac Wave 1 &

Wave 2

Must support 4x4 multiple-input multiple-output (MIMO) with three spatial streams or higher

Must support simultaneous 802.11n on both the 2.4 GHz and 5 GHz radios.

Must support 802.11ac Wave 1 on the integrated 5-GHz radio Access Point shall be 802.11ac/Wave-2, supporting up to 40, 80 & if possible 160MHz 11ac channel bandwidth. 40 & 80 is must.

Access Point shall be able to detect and identify BLE Beacon without extra hardware or module

Access Point shall be able to support .3ad LCAP(LAG), MACSec

Access Point shall be able to support Dynamically change radio role of 2.4GHz radio between 2 5GHz client serving, Security scanning, and radio as a client to monitor network performance for high density deployments

Access Point shall be able to support Hardware-Accelerated Deep Packet Inspection (Application Visibility) and Control to increase overall access point performance

Access point should support USB port Must support up to 23dbm of transmit power on 5GHz Radio

RF

The Wireless AP should have the technology to improve downlink performance to all mobile devices including one-, two-, and three spatial stream devices on 802.11n and 802.11ac. The technology should work without requiring feedback from clients and should work with all existing 802.11 clients.

Should support detecting and classifying non-Wi-Fi wireless transmissions while simultaneously serving network traffic

Features Specification Compliance Y/N

RF

Should support configuring the access point as network connected sensor to access any network location covered by the access point to get real-time Spectrum analysis data.

Must support AP enforced load-balance between 2.4Ghz and 5Ghz band

Must incorporate radio resource management for power, channel, coverage hole detection and performance optimization

Should be able to detect at least 20 sources of non 802.11 interference within 30 seconds

Roaming Must support Proactive Key Caching and/or other methods for Fast Secure Roaming.

Security

Must support Management Frame Protection. Should support locally-significant certificates on the APs using a Public Key Infrastructure (PKI).

Must operate as a sensor for wireless IPS Should support non-Wi-Fi detection for off-channel rogues and Containment for both radio

Encryption Access Points must support a distributed encryption/decryption model.

Access Points must support Hardware-based DTLS encryption on CAPWAP Standard or equivalent

Monitoring

Must support the ability to serve clients and monitor the RF environment concurrently.

Same model AP that serves clients must be able to be dedicated to monitoring the RF environment

Flexibility:

AP model proposed must be able to be both a client-serving AP and a monitor-only AP for Intrusion Prevention services.

Mesh support should support QoS for voice over wireless. Must be plenum-rated (UL2043). Must support 16 WLANs per AP for SSID deployment flexibility. Must continue serving clients when WAN link to controller is back up again, should not reboot before joining

Must support Controller-based and standalone(autonomous) deployments

Must continue serving clients when WAN link to controller is down

Should support Local authentication at the AP level in case of WAN outage

Operational: Must support telnet and/or SSH login to APs directly for troubleshooting flexibility.

Power: Must support Power over Ethernet through power injectors or POE Switches

Must Support 802.3at /PoE+ as the source of power for POE through Switch or POE Injector

Features Specification Compliance Y/N

Quality of Service:

802.11e and WMM Must support Reliable Multicast to Unicast conversion to maintain video quality at AP level

Must support QoS and Video Call Admission Control capabilities. Access Point should 802.11 DFS certified


Make & Model

ANNEXURE V SPECIFICATION OF 24 PORT POE ACCESS SWITCH

Feature Specifications Compliance (Yes/No)

General / Physical

Requirements

Switch should have minimum 24 10/100/1000 Base-T ports with additional 2 Nos. of SFP+ (10G) Based ports and additional 2 dedicated stacking ports with all accessories for stacking purpose

Switch should support IEEE Standards of Ethernet: IEEE 802.1d, 802.1s, 802.1w, 802.3ad, 802.3x, 802.1D, 802.1p, 802.1Q, 802.3, 802.3u, 802.3ab, 802.3z, 1000BASE-T, 1000BASE-X (mini-GBIC/SFP), 1000BASE-SX, 1000BASE-LX/LH

Switch should support Auto MDI/MDIX All SFP based ports should be hot swappable Switch should be 1 RU rack mountable in nature, stackable with 80Gbps of throughput with minimum of 8 switches in a stack with single IP management

Shall support POE+ (802.3at) on all 24 # 10/100/1000 ports. Switch should support external/internal redundant power supply The switch should have IPV4 & IPv6 support from day one

Performance Requirements

Switch should have minimum 136 Gbps switching bandwidth capacity (Gbps) per switch

Switch should have minimum 65 Mpps throughput per switch Switch shall support IEEE 802.3ad Link Aggregation Control Protocol (LACP) with up to 8 links (ports) per trunk.

It shall support IEEE 802.1s Multiple Spanning Tree Protocol and provide legacy support for IEEE 802.1d STP and IEEE 802.1w RSTP and static routes.

Layer-2 Requirements

Switch should support minimum 8000 MAC address per switch It shall support Jumbo packets up to 9,216-byte frame size to improve performance of large data transfers.

Should support IEEE 802.1Q VLAN encapsulation and up to 1000 active VLANs per switch

Switch should support Voice VLAN Switch should support link aggregation for minimum 8 GE ports and minimum 24 LAG groups.

Should be able to discover the neighboring device of the same vendor giving the details about the platform, IP Address, Link connected through etc, thus helping in troubleshooting connectivity problems

Should support a mechanism to detect connectivity issues with both fiber and copper cabling. Ensures that a partially failed link is shut down on both sides, to avoid L2/L3 protocol convergence issues

Security Requirements

It shall support protected ports to isolate specified ports from all other ports on the switch.

It shall support port security, MAC lockdown and MAC lockout.

Feature Specifications Compliance (Yes/No)

Switch Should support VLAN Based, Port Based ACLs. It shall support IEEE 802.1X user authentication using an IEEE 802.1X supplicant in conjunction with a RADIUS server.

It shall support MAC-based authentication allowing client to be authenticated with the RADIUS server based on client’s MAC address.

It shall support BPDU port protection preventing forged BPDU attacks. It shall support TACACS+ or RADIUS authentication for secure switch CLI logon.

It shall support management access (CLI, Web, MIB) securely encrypted through SSHv2, SSL, and SNMPv3.

Per-port storm control for preventing broadcast, multicast, and unicast storms

Qos Requirements

It shall support IEEE 802.1AB Link Layer Discovery Protocol (LLDP) It shall support IEEE 802.1p traffic prioritization delivering data to devices based on the priority and type of traffic.

Shall have strict priority queuing or high strict priority queue Should Support for IGMP v1, v2 and v3, MLD V1, V2 & IGMP Snooping

Management Requirements

It shall support SNMPv1/v2c/v3. It shall support RMON providing advanced monitoring and reporting capabilities for statistics, history, alarms, and events.

IPv6 MLDv1 & v2 Snooping, IPv6 Host support (- IPv6 support: Addressing; IPv6: ICMPv6, TCP/UDP over IPv6; Applications: Ping/Trace route/VTY/SSH/TFTP, SNMP for IPv6 objects), HTTP and HTTP(s) over IPv6, SysLog over IPv6)

It shall have full-featured console port providing complete control of the switch with a familiar command-line interface (CLI).

Should support Port Mirroring based on port basis / vlan basis to support intrusion prevention system deployment in different VLANs. Should support port mirroring across the stack switches to remotely monitor ports in a Layer 2 switch network from any other switch in the same network.

Troubleshooting Requirements

Switch should support Debugging via cli via console, telnet, ssh Switch should support Traffic mirroring (port, vlan)


Make & Model

ANNEXURE VI SPECIFICATION OF 12 PORT POE ACCESS SWITCH

Feature Description Compliance Y/N

Managable Switch - Ethernet 12 x 10/100/1000 ports PoE+. Optional - uplink module switches are wire-speed and non-blocking, Switching Capacity in Gigabits per Second (Gbps) - 68 Gbps Capacity in Millions of Packets per Second (mpps) (64-byte packets) - 50.6 mpps Minimum DRAM : 512MB | Flash 128MB+

Managable Switch - Ethernet 12 x 10/100/1000 ports PoE+. Optional - uplink module switches are wire-speed and non-blocking, Switching Capacity in Gigabits per Second (Gbps) - 68Gbps Capacity in Millions of Packets per Second (mpps) (64-byte packets) - 50.6 mpps Minimum DRAM : 512MB | Flash 128MB+

switches are wire-speed and non-blocking, Switching Capacity in Gigabits per Second (Gbps) Capacity in Millions of Packets per Second (mpps) (64-byte packets) Web-based interface to simplify setup, security, and quality of service (QoS) traffic prioritization Support for advanced network security applications such as IEEE 802.1X port security to tightly limit access to specific segments Time based ACLs and Port Operation restrict access to the network during predesignated times, such as business hours Protection of management sessions using Radius, TACACS+ and local database authentication as well as secure management sessions over SSL, SSH, and SNMPv3 Security mechanisms such as, Bridge Protocol Data Unit (BPDU) Guard and broadcast/multicast/unknown unicast storm control, protect the network from invalid configurations or malicious intent.

Extensive access control lists (ACLs) to restrict sensitive portions of the network from unauthorized users and guard against network attacks. Power over Ethernet - support both IEEE 802.3af PoE and IEEE 802.3at PoE+ IP telephony support Support for up to 4096 VLANs simultaneously Port-based and 802.1Q tag-based VLANs MAC-based VLAN Management VLAN Private VLAN Edge (PVE), also known as protected ports, with multiple uplinks Guest VLAN Unauthenticated VLAN Dynamic VLAN assignment via Radius server along with 802.1x client authentication CPE VLAN -Port mirroring | VLAN mirroring (RMON (history, statistics, alarms, and events) for enhanced traffic management, monitoring, and analysis) - Active VLAN's 1023

Voice traffic is automatically assigned to a voice-specific VLAN and treated with appropriate levels of QoS. Auto voice capabilities deliver network-wide zero touch deployment of voice endpoints and call control devices.

VLANs transparently cross a service provider network while isolating traffic among customer Up to 9K (9216) bytes HOL blocking prevention

Feature Description Compliance Y/N

Bowser-based management GUI in the switch and Secure Shell (SSH) Protocol RADIUS/TACACS+ | RADIUS accounting | Login banner | Broadcast, multicast, and unknown unicast Support for up to 512 rules Drop or rate limit based on source and destination MAC, VLAN ID or IP address, protocol, port, differentiated services code point (DSCP)/IP precedence, TCP/UDP source and destination ports, 802.1p priority, Ethernet type, Internet Control Message Protocol (ICMP) packets, IGMP packets, TCP flag, Time-based ACLs supported.

Link up or down based on user-defined schedule (when the port is administratively up) Securely transfer files to and from the switch - Web browser upgrade (HTTP/HTTPS) and TFTP and upgrade over SCP running over SSH - Upgrade can be initiated through console port as well - Dual images for resilient firmware upgrades

Coexistence of both protocol stacks to ease migration Drop or rate limit IPv6 packets in hardware Configuration of layer 3 interface on physical port, LAG, VLAN interface or Loopback interface DHCP relay at Layer 3 Relay of broadcast information across Layer 3 domains for application discovery or relaying of Boot P/DHCP packets Switch functions as an IPv4 and IPv6 DHCP Server serving IP addresses for multiple DHCP pools/scopes Support for DHCP options

Wire speed routing of IPv4/IPv6 packets Up to 512 static routes and up to 128 IP interfaces 16K entries 3 Pin Indian standard power card Support to RPS (redundant power supply) Support & Warranty Make & Model

8x5 replacement NBD warranty for 5 years

Make & Model

ANNEXURE VII

SPECIFICATION OF SERVER

Item Description of requirement Compliance Chassis 2 or 3 U Rack Mountable

CPU Intel Xeon E5-2630 V4, 2.2 Ghz/10-core/25MB/85W ( Dual Processor Loaded )or higher

Motherboard Intel® C610 Series Chipset or higher

Memory Minimum 16DIMM slots , 128 GB RAM Should be capable of identifying and reporting whether genuine OEM memory is installed

Memory Protection Advanced ECC with multi-bit error protection, memory online spare mode and memory mirroring

HDD Bays Minimum 12 (All should be functional) Hard disk drive 3 X 600/900 GB , 12 G , 15 K RPM SAS

Controller

PCIe 3.0 based 12Gb/s Raid Controller with RAID 0/1/1+0/5/50/6/60/1 Advanced Data Mirroring/10 Advanced Data Mirroring with 2 GB battery backed write cache (on board or in a PCI Express slot)

Communication Ports Server should support the following:

1Gb 4-port network adaptor supporting advanced features such as TCP segmentation offload, VLAN tagging, MSI-X, Jumbo frames, IEEE 1588, and virtualization features such as VMDQ.

10G 2-port SFP+ adaptor supporting enterprise class features such as VLAN tagging, adaptive interrupt coalescing, MSIX, NIC teaming (bonding), Receive Side Scaling (RSS), jumbo frames, PXE boot and virtualization features such as Vmware NetQueue and Microsoft VMQ.Jumbo frames, IEEE 1588, and virtualization features such as VMDQ. +

Interfaces Video - 1 4 USB ports (standard) Micro SD slot - 1 Bus Slots Six PCI-Express 3.0 slots Power Supply Redundant hot plug power supply Power Supply. Fans Redundant hot-plug system fans

Graphics Integrated graphics controller supporting 1280 x 1024 (32 bpp), 1920 x 1200 (16 bpp)

Industry Standard Compliance ACPI 2.0b Compliant PCIe 3.0 Compliant PXE Support WOL Support Microsoft® Logo certifications USB 3.0 Support ASHRAE A3/A4

Embedded system management

Should support monitoring ongoing management, service alerting, reporting and remote management with embedded Gigabit out of band management port

Server should support configuring and booting securely with industry standard Unified Extensible Firmware

System should support RESTful API integration

System management should support provisioning servers by discovering and deploying 1 to few servers with Intelligent Provisioning

System should support embedded remote support to transmit hardware events directly to OEM or an authorized partner for automated phone home support

Security Power-on password , Serial interface control, Administrator's password, TPM 1.2, TPM 2.0, UEFI

Operating Systems and Virtualization Software Support Microsoft Windows Server Red Hat Enterprise Linux (RHEL) SUSE Linux Enterprise Server (SLES) Oracle Linux VMware

Secure encryption

System should support Encryption of the data on both the internal storage and cache module of the array controllers using encryption keys. Should support local key management for single server and remote key management for central management for enterprise-wide data encryption deployment.

Provisioning

Essential tools, drivers, agents to setup, deploy and maintain the server should be embedded inside the server. There should be a built - in Update manager that can update firmware of system by connecting online.

Remote Management

1. System remote management should support browser based graphical remote console along with Virtual Power button, remote boot using USB/CD/DVD Drive. It should be capable of offering upgrade of software and patches from a remote client using Media/image/folder; It should support server power capping and historical reporting and should have support for multifactor authentication.

2. Server should have dedicated 1Gbps remote management port. Remote management port should have 2GB NAND flash for keeping system logs and downloading firmware from HP website or internal repository

3. Server should support agentless management using the out-of-band remote management port.

4. The server should support monitoring and recording changes in the server hardware and system configuration. It assists in diagnosing problems and delivering rapid resolution when system failures occur.

5. Applications to access the server remotely using popular handheld devices based on Android or Apple IOS should be available.

6. Remote console sharing up to 6 users simultaneously during pre-OS and OS runtime operation, Console replay - Console Replay captures and stores for replay the console video during a server's last major fault or boot sequence. Microsoft Terminal Services Integration, 128 bit SSL encryption and Secure Shell Version 2 support. Should provide support for AES and 3DES on browser. Should provide remote firmware update functionality. Should provide support for Java free graphical remote console.

7. Should support managing multiple servers as one via Group Power Control Group Power Capping

Group Firmware Update Group Configuration Group Virtual Media Group License Activation

Server Management The Systems Management software should provide Role-based security

Should help provide proactive notification of actual or impending component failure alerts on critical components like CPU, Memory and HDD. Should support automatic event handling that allows configuring policies to notify failures via e-mail, pager, or SMS gateway or automatic execution of scripts. Should provide an online portal that can be accesible from anywhere. The portal should provide one stop, online access to the product, support information and provide information to track warranties, support contracts and status. The Portal should also provide a Personalized dashboard to monitor device heath, hardware events, contract and warranty status. Should provide a visual status of individual devices and device groups. The Portal should be accessible on premise (at customer location - console based) or off premise (using internet).

Should support scheduled execution of OS commands, batch files, scripts, and command line apps on remote nodes Should be able to perform comprehensive system data collection and enable users to quickly produce detailed inventory reports for managed devices. Should support the reports to be saved in HTML, CSV or XML format. Should help to proactively identify out-of-date BIOS, drivers, and Server Management agents and enable the remote update of system software/firmware components.

The Server Management Software should be of the same brand as of the server supplier.

Infra Platform /Infra Software to support a variety of different hypervisors, such as VMware, Microsoft Hyper-V, Red Hat KVM, and HP Integrity VM

Solution available to Deploy a fast and easy installation via software appliance delivery mode. With its own OS and Database to provide infra and lifecycle management

Management software should support integration with popular virtualization platform management software like vCenter, SCVMM and RedHat RHEV

Virtualization Software

Server should be bundled with Vmware. The Vmware is to be used for creating four client

Warranty 5/5/5/

Check List (to be submitted with Technical Bid)

The Vendor should submit following documents (duly attested) with Technical Bid (Please give Annexure No. for submitted Documents as mentioned below)

Name of Company: ____________________________________________________________

Sr. No. Name of the Document

Documents Submitted (Yes / No)

Annexure No.

Reason (for non submitted

documents)

1. FDA / BIS Approval

I

2.

CE Certification

II

3.

ISO Certification (ISO 9001 & ISO 13485)

III

4.

GST Registration Certificate

IV

5.

Manufacturing Certificate of Manufacturer Company

V

6.

Authorized Distributor Certificate (Current Year's)

VI

7.

Last 3 years Tax Assessment & Turn Over Certificates

VII

8.

User List (wherever Equipments / Instruments supplied & installed)

VIII

9.

PAN Card

IX

10.

Contact Person Name with Mobile No. & email id

X

Signature with Company Seal

Kasturba Health Society's Mahatma Gandhi Institute of Medical Sciences

Sevagram, Wardha (Dist), Maharashtra - 442 102

Terms and Conditions for the tenders

Any non compliance of the following will amount to disqualification of the tender

1. Sealed tender should be addressed to the DEAN, Mahatma Gandhi Institute of Medical Sciences, Sevagram, (P.O.) Wardha (Dist), Maharashtra - 442 102

2. Tender should be submitted on or before 15/01/2018 up to 3.00 P.M. Tender received after the last date will not be accepted.

Separate tenders are to be submitted for each instrument. Mention on the envelope "Tender for . (instrument name) of the Dept ...........(Dept name)".

3. Tender should be in two separate envelopes one for Technical Bid and other for Price Bid

4. The technical bid must contain the following (duly attested) along with Check List: a) Detailed technical specifications of equipment quoted (Catalogue / illustrated literature) and options /

other model. b) A soft copy (CD) in Microsoft Word / Excel Format showing compliance with our given Technical

Specifications (i.e. Compliance chart). c) Authorized dealer certificate (Current year's) from the Principal of manufacturing company for

supply and service d) List of users / institutional installations / Govt. supply orders / Reputed private hospitals and

copy of Manufacturing License from the manufacturer. e) Income Tax and annual returns of Last three years f) FDA Approval Certificate for the equipment / item & FDA Registration of the manufacturer. g) GST Registration Certificate h) PAN Card copy i) Country of Origin of the equipment j) If you are registered firm under Micro, Small Enterprises (MSEs), please submit a copy of the

Registration Certificate.

6. For equipment to be imported the prices should to be quoted in both

a) Foreign Currency - CIF Mumbai and also b) INR – Delivery at Sevagram including all taxes and levies

Note:

a) FOR CIF prices, the duty, transportation from Mumbai port to Sevagram, insurance will be borne by the buyer.

b) FOR INR prices-- no excise duty, GST, transportation, insurance will be paid by the buyer. c) MGIMS is holding a DSIR Certificate for Custom Duty concession and excise duty exemption. d) For ease of computation you may furnish the import duty structure of your equipment and classification

HSN code no of custom tariff. Import License and IEC code should also be submitted.

e) Kindly quote the prices strictly as per the scope of the supply written in the tender without offering your special features and accessories prices.

f) You have to provide Performance Bank Guarantee covering the Warranty period g) Penalty clause for delay in supplying will be applicable.

7. Payment terms:

a) For CIF: L/C will be opened by the buyer on the condition of payment on successful installation of the equipment.

b) For INR quote: Payment will be against successful installation of the equipment c) No advances are given with Purchase Order (PO).

8. Delivery period from date of Purchase Order (PO) to be written clearly in days. Penalty clause can be levied on case to case basis. Installation of the equipment should be free and to the satisfaction of the buyer.

9. Service and Guarantee conditions:

a) Equipment will be under guarantee of two years from the date of installation. On case to case basis Performance Bank Guarantee may be sought.

b) Mention the charges and terms of AMC & CMC (Labour + Part) applicable from 3rd year onwards.

c) Mention about the nearest facility/office where service personnel are available.

d) Mention about the facility for training of personnel safety and quality standards.

10. Dean M.G.I.M.S. reserves the right to reject all or any tender without assigning any reason.

KASTURBA HEALTH SOCIETY'S MAHATMA GANDHI INSTITUTE OF MEDICAL SCIENCES,

P.O. SEVAGRAM, WARDHA (DISTT.) – 442 102

Tender Notice – 18 (2017-18)

The Dean, Mahatma Gandhi Institute of Medical Sciences, Sevagram invites sealed tenders for the following items. The tenders in sealed envelope superscribed with name of the item and Department should be submitted in the office of “The Dean, Mahatma Gandhi Institute of Medical Sciences, Sevagram, Maharashtra 442102” latest by 15/01/2018 up to 3.00 PM. The Technical Bids will be open on the next day i.e. 16/01/2018 at 3.00 pm in the Committee Room, Dean Office. The tender fees of Rs. 1,000/- (nonrefundable) is to be paid through RTGS/NEFT favoring Kasturba Health Society payable at Wardha. (Details are as mentioned below). Receipt of payment should be attached with tender documents (in Technical Bid). Tender forms also can be obtained by sending email to ‘[email protected]’ or can be downloaded from the institute website (www.mgims.ac.in).

The Dean reserves the right to reject any or all the tenders without assigning any reason.

1. Name of the Account - The Kasturba Health Society 2. Name of the Bank - Axis Bank Ltd., Wardha 3. Bank Address - Indira Market Road, Wardha – 442001 4. Account Number - 917010025302943 5. IFSC Code - UTIB0000808 6. Branch Code - 808 7. Swift Code - AXISINBB048 8. MICR Code - 442211002 A) HIS Department: 1) Designing, Developing & Maintaining Wi-Fi for the entire Campus, extended residential colonies and the peripheral healthcare centres by considering existing Wired & Wireless Infrastructure B) Microbiology Department (2nd Call): 1) Water Bath / Cold Room

DEAN

Kasturba Health Society's Mahatma Gandhi Institute of Medical Sciences,

P.O. Sevagram, Wardha (Distt.) – 442 102 ______________________________________________________________________

CORRIGENDUM for Tender Notice - 16 (2017-18) & Tender Notice - 18 (2017-18)

With reference to Mahatma Gandhi Institute of Medical Sciences, Sevagram Tender Notice - 16 (2017-18) published on dated 8th December 2017 & Tender Notice -18 (2017-18) published on dated 24th December 2017 in Indian Express & Loksatta news papers, For Tender Notice - 16 (2017-18) the last date for the work mentioned may be read as 4th January, 2017 up to 3.00 pm. The Technical Bids will be opened on the next day i.e. 05/01/2017 at 3.00 pm in the Committee Room, Dean Office. And for Tender Notice - 18 (2017-18) the Item for Microbiology Department read as Cold Room instead of Water Bath. The Technical Bids will be opened on the next day i.e. 16/01/2018 at 3.00 pm in the Committee Room, Dean Office. The remaining terms of the tender will remain the same.

Dean