1 / 29

Deploying WLANs in K-12 Schools

Deploying WLANs in K-12 Schools. Computers and Internet used daily across curriculum Ubiquitous network access anywhere on campus One computer for every child Phone in every classroom More secure environment Personalized learning programs. Goal: 21st Century Learning Environment.

remedy
Télécharger la présentation

Deploying WLANs in K-12 Schools

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Deploying WLANs in K-12 Schools

  2. Computers and Internet used daily across curriculum Ubiquitous network access anywhere on campus One computer for every child Phone in every classroom More secure environment Personalized learning programs Goal: 21st Century Learning Environment

  3. Reality: Compelling Drivers for WLANs • Wiring plant limited to Lab and administration • Classrooms rarely have more than 3 or 4 LAN ports • Old buildings, temporary classrooms, open spaces • Space shortage in Computer Lab and classrooms • Desktops and carts not practical, expensive, consume space • 4:1 students per 2.5 year old desktop (80%) • 70% classrooms don’t have phone

  4. WLANs break the Cost Barrier • 1/3 the deployment cost of wired LAN • No wiring and construction materials • Dramatically reduced labor costs • Overcome physical restrictions and reach • No drilling or special permits required • Reach remote buildings via un-tethered mesh • Rapid deployment with ubiquitous coverage • Deployment in days, no disruption to class schedule • Higher density per class, not just 3-4 ports • Wireless laptops now within price range • Sub $1000 wireless enabled laptops readily available • Sub $200 laptops becoming available (OLPC initiative) • Leverages growing pool of student-owned laptops

  5. New teaching methods Distance learning, Podcasts, Blogs… Teach anywhere, even outside Not dependent on lab availability Improved teacher productivity Grading, attendance curriculum development Professional development Internal communication Improved security and safety Wireless voice services low cost mobility phone in every classroom Video surveillance over IP Affordable, indoor and outdoor Wiring problems eliminated Location tracking reduce / prevent theft find people/things fast, e911 WLANs enable New Services

  6. WLAN Key Requirements in K-12 • Low deployment and operations costs • Minimal IT and RF expertise required • Simple to deploy indoors or outdoors • Secure access and user segregation • Satisfy regulatory requirements (e.g. SOX), E911 • Separate students, teachers, admin, guests • Extended operational life-span • Must last 5-6 years, and handle traffic growth • Immunity to evolving standards and higher rates • Ability to support new applications over time • Voice, Streaming video, Surveillance, Location

  7. Lowest Operational Cost Non-disruptive deployment Easiest to manage and deploy Same solution indoor / outdoor Campus & Network Security Secure network access Easiest guest management Video surveillance ready Advanced location tracking Best Investment Protection 30% Lower TCO than Cisco No WLAN controller upgrades Optimized for Voice and Video Smoothest migration to 802.11 Leverages existing POE 600 mbps out-of-the-box Cluster-based load balancing Trapeze Value Proposition

  8. Lowest Operational Cost

  9. Painless Deployment on Your Network Mobility Wireless Network Wired Network • Non-disruptive overlay • Same security model • Same L2 / L3 topology • Same VLANs / Subnets • Zero changes required • Industry standard security • Same directory / AAA • Active Directory, LDAP • All major RADIUS servers • 802.1X authentication • WPA, WPA2 certified • AES CCMP encryption • NOC operational model • Don't need MX in branches

  10. Same Solution Indoor and Outdoor Disparate WLANs for Outdoor and Indoor Smart Mobile Integrated Indoor/Outdoor WLAN Common Feature Set Indoor / Outdoor • Wireless bridge and mesh are low speed alternatives to fiber or WAN • Bandwidth utilization is paramount • Centralized switching architecture is poor fit for outdoor mesh applications • Dual vendors adds more problems • Roaming, Management, QoS • Self-optimizing and load balancing • distributed policy enforcement • Single management platform • Seamless indoor/outdoor roaming • Best performance, lowest Opex

  11. Flexible Deployment Options • Untethered access points • Great for outdoor and temporary buildings • MXR2; MX-8 for small schools • Great for starter kits and smallest sites • Failover to NOC-based controllers • Controller-less schools with Smart Mobile • Makes sense with big WAN pipes • Non-stop, Self-Optimizing, Self-Healing • Completely remote management

  12. Life-Cycle Management for Mortals • Planning and Deployment • Predictive planning tool • Creates network plan • Configuration and Verification • Complete offline configuration • System and service wizards • Pushes configuration to MXs • Monitoring and Reporting • By user, radio, AP, MX, VLAN • Present location, roaming history • 30 day history aids compliance • SOX, JCAHO, PCI-DSS, CALEA … • WIDS/WIPS integration • Advanced Location tracking • Sophisticated tool saves 50% OpEx

  13. Wizards Simplify Deployment Easy as 1,2,3

  14. Competitive Education Pricing • Trapeze has special pricing for Education • Separate price list for Educational Institutions • Offered through all Trapeze-branded channels • Significant discounts on all hardware, software and services. • ~14% on Controllers, Software, Services, 23% on Access Points • Accredited K-12, Higher Ed, or Trade Schools w/ NCES ID • http://nces.ed.gov/globallocator/ • Trapeze single radio MP-371 is targeted at Education • New product 08/2007 cost reduced for Education market • Single radio a/b/g, two * 10/100 ports, No AirDefense support • Aggressively priced at $349 • Trapeze Networks E-Rate SPIN is 143031734

  15. Campus Safety and Security

  16. Trapeze Multi-Tiered WLAN Security X • Intrusion Protection • Core WIDS/WIPS: scan, detect, locate, disable Rogues • Full integration with AirDefense (Market Leader WIDS/WIPS) • NIAP Common Criteria Certification • Defense against 250 attack types Endpoint Integrity Check AirDefense IPS server AAA Server 802.1X Authentication RingMaster Intrusion Protection X Untrusted Client Rogue AP Encrypted Trusted Client Rogue User • Authentication & • Encryption • 802.1X, EAP-TLS, PEAP, TTLS, MAC, Web, ... • 802.11i, WPA2, WPA, AES, CCMP … • DODD 8100.2 and FIPS 140-2 compliant • Application Firewall • Per user, per station, per group policy enforcement • Application-aware QoS scheduling, location and security filtering • Policy enforced closest to the end station • Endpoint Integrity • Trusted Network Connect (Trusted Computing Group) • Microsoft Network Access Protection (NAP) • Symantec On-demand Endpoint Protection • Juniper Networks Unified Access Control (UAC)

  17. No audit trail of guest privileges Threat to network integrity Cause for IT support calls Centralized and auditable No changes to infrastructure Low IT support overhead Safest and Most Scaleable Guest Access Smart Pass – Centralized Architecture Controller 2 Controller 1 Others - Decentralized Architecture Centralized Guest Access Database Controller 1 Controller 2 Controller N

  18. WLAN Security Comparison Trapeze Meru Aruba Differentiator Cisco Support highest standards for Authentication & Encryption Scalable Crpytography Model Industry Standard Endpoint Integrity Verification Voice-aware Application Firewall Policies Proprietary Proprietary Sub 25ms Secure Handoff (PMK cached fast roam) 24 20 40 230 WIDS/WIPS: Protection Against Attack Types Safe, Scalable Guest Access

  19. 2004 /2005 reported crime stats 863,000 thefts (3%), 476,000 violent crimes (2%) 107,000 serious violent crimes (.5%) 24% have presence of gang at school 36% in urban schools 25% grades 9-12 been offered drugs 6% carried weapon on school property IP Video Surveillance has come of age Wi-Fi Cameras make it affordable Growing Demand for Video Surveillance • Trapeze Smart Mobile • value for video surveillance • Local Switching enables more efficient streaming video, without wasting backbone bandwidth • Continuous monitoring requires ~250Kbps video stream per camera

  20. Video Surveillance - Approaches CCTV System Overlay High Op Ex, Local Management Converged Wireless IP Network Low Opex, Remote management PC Monitor DVR Time-Lapse VCR TV Monitor WAN remote Location Outdoor Location Unwired Area • Leverages converged network(s) • Easy adds, moves, changes • Allows remote monitoring • Separate video and data networks • Difficult adds, moves, changes • Requires local monitoring

  21. Per-user bandwidth limiting Strict limiting based on QoS profiles Optional QoS priority “demotion” for traffic exceeding BW limits Per-SSID bandwidth limiting Strict limiting of traffic through SSID Granular control in units of Kbs SSID bandwidth weighting SSIDs assigned a percentage of available “air time” Enables guaranteed minimum service Elastic utilization – use 100% if other SSIDs on same AP are idle Granular QoS and Bandwidth Mgmt 2 Mbps 1 Mbps SSID Voice1 2 Mbps SSID Data1 6 Mbps SSID Voice1 20% available medium SSID Data1 80% available medium

  22. Fastest, Most Precise Location Tracking • Emergency response, E-911 • Tracking assets and people • Prevent theft and catch culprit • Location dashboard and API • Asset tracking applications

  23. Best Investment Protection

  24. Best Long Term Investment • Smart Mobile reduces LAN/WAN bandwidth waste • Load balancing uses WLAN resources better • Capable of best in class voice services today • Scales easily to 11n with no controller upgrades • Easiest to manage school district from one point • Fully standards compliant from RF to Voice

  25. Local Switching Maximizes Scalability Centralized-Only Switching Breaks Down Under Increased Load from 802.11n Smart Mobile Handles 802.11n without Breaking Down X Offered load exceeds controller capacity Offered load increases by up to 10x Offered load increases by up to 10x .11n .11n .11n .11n .11n .11n • All traffic gets forwarded by controller • 802.11n increases load up to 10x • Can't scale without expensive upgrades • Twice the traffic through network core • Traffic can be forwarded by the AP • 802.11n has no impact on controller • Scales in place without upgrades

  26. Band Steering Balances Resources • Most Wi-Fi devices default to 2.4Ghz (better range) • Increases contention for spectrum, while 5Ghz virtually unused • We steer 5Ghz-capable clients (802.11a/n) to 5Ghz • Completely transparent - No duplication of SSID, VLAN required • 30-40% better bandwidth utilization with no cost 802.11b/g 802.11a

  27. Optimal Voice over Wi-Fi Architecture Centralized Switching Distributed Switching • Longer path, more latency and jitter • Aruba 1000% more latency • Vulnerable to controller congestion • Not optimized for voice or video • Most direct path, optimal flows • Lowest latency in industry • Optimized for voice—SIP-like • Toll-quality, no dropped calls

  28. Commitment to VoWi-Fi Leadership Investors and Strategic Partners Extensive Wi-Fi Handset Support All SpectraLink VIEW certified handsets incl: Nortel 2210, 2211 Netlink e340, i640, h340 PolyCom Netlink 8000 series Avaya 3616, 3626 Ascom i75 Nokia E60, E61, E61i, E65 Nokia N80i NEC 9000i, 900iL, 902iL Dlink DPH-540/541 Vocera Communications Badge Zyxel P-2000W UTStarcom F1000 Industry Standard Trapeze Cisco Prioritize and Queue Traffic (WMM) Delivered Proprietary CCX Based Preserve Voice Priority (802.11i PMK Cache, WMM) Delivered Proprietary CCX Based Proprietary— Maybe CCXv5 Control Bandwidth for Voice (TSPEC) Delivered Maximize Handset Battery Life (U-APSD/WMM Powersave) Proprietary CCX Based Delivered Proprietary— Maybe CCXv5 Neighbor Report Assisted Roaming (802.11k) Delivered Regulate Call Load (802.11v) Delivered

  29. Lowest Operational Cost Non-disruptive deployment Easiest to manage and deploy Same solution indoor / outdoor Campus & Network Security Secure network access Easiest guest management Video surveillance ready Advanced location tracking Best Investment Protection 30% Lower TCO than Cisco No WLAN controller upgrades Optimized for Voice and Video Smoothest migration to 802.11 Leverages existing POE 600 mbps out-of-the-box Cluster-based load balancing Trapeze Value Proposition

More Related