Converged Intelligent Edge

Foundry Team:================================

Mike Henson/Rob Gregory-RSMTim Davis/Rob Plante-SE

Mark Thompson-CAM

Agenda

• Foundry Key Differentiators

• Business Value

• Product Overview

• Questions

Power over Ethernet (PoE) IEEE 802.3af - Approved June, 2003

• Powering the enterprise• VoIP phones• IEEE 802.11 Access Points• Security cameras• Environmental sensors

• Power delivered over Ethernet copper pairs• 0 – 12.95 watts (350 milliamps max)

• Power options• Operator configured• Automatic electrical detection to determine device requirements• Control plane negotiation

• Powering equipment periodically transmits “Test” voltage• Used to determine when a device is attached• PoE device “reflects” test voltage back • Non-PoE devices do not “reflect” test voltage

Data + PowerData + PowerConvergence Switch

The Importance of Class 3 PoE Capacity

• Class 3 PoE output at switch => 12.95W + 2.5W = 15.4 watts • VoIP phones are getting more complex, requiring more power• Class 3 PoE capacity & power redundancy are important considerations

for converged switch selection

Wattage over 100m Category 5 = 2.5W

PoE Output Power Requirements:

- Complex IP phone = 11W + 2.5W = 13.5W

- Simple IP phone = 7W + 2.5W = 9.5W

Powered Device (PD) Power Sourcing Equipment (PSE)

11 watts

7 watts

VoIP Endpoint Configuration and Management

• DHCP method• Phone contacts DHCP server for IP address

• DHCP scope includes option for VLAN ID

• Phone recognizes options and reboots

• Phone contacts DHCP server with tagged packet and gets IP address on voice VLAN

• CDP method• Phone boots and sends untagged CDP message

• CDP reply from network includes VLAN ID

• Phone reboots to contact DHCP server with tagged request from voice VLAN

• LLDP – Link Layer Discovery Protocol (IEEE 802.1AB)• Superset of CDP functionality

• LLDP supports endpoint identity & access security

LLDPLink Layer Discovery Protocol

IEEE Standard 802.1AB • Superset of proprietary solutions

(e.g., CDP, FDP, NDP, EDP, XDP, …)• One-way periodic advertisement between switches &

routers• System and port description and configuration• Inventory information (serial number, model number, ….)• Configured VLAN information• Auto-negotiation and link aggregation information

• Receiver stores and ages information in MIB

April 2006 | © 2006 Foundry Networks, Inc.

LLDP Device Discovery

April 2006 | © 2006 Foundry Networks, Inc.

PSTN

I’m an IP-Phone

I’m an IP-Phone

I’m an IP-Phone

I’m an IP-PBX

I’m a PC

I’m a switch

I’m a switch

I’m a switch

I’m a switch

I’m a switch

I’m a switch

I’m a switch

Discovery MIB

Discovery MIB

LLDP-MEDLink Layer Discovery Protocol - MED

LLDP - Media Endpoint Discovery (MED)• ANSI/TIA enhancements to LLDP to support VoIP endpoints• Auto-configuration of VoIP policy

• VLAN, Layer 2 Priority, Diffserv codepoint, etc.

• Auto-configuration of POE power• Identification of device location

• allows creation of location databases used for E911

• Inventory management• manufacturer, software and hardware versions, serial / asset number

April 2006 | © 2006 Foundry Networks, Inc. 9

LLDP & LLDP-MED Benefits• Lowers operational costs

• Simplified management and maintenance

• Plug-and-play provisioning• Dynamic VLAN and QoS configuration• PoE configuration

• Open standard enables multi-vendor solutions• Enables best-of-breed multi-vendor solutions

• No vendor “lock-in”

• Increased network security• Endpoint access control

• E911 support

• Simplified configuration troubleshooting• QoS, VLAN and PoE auditing

• Discover misconfigured or unreachable IP addresses

• Detect speed and duplex mismatch (IEEE 802.3 extension)

10

Dynamic, policy-driven

user access control and

IronShield 360 closed-

loop threat mitigation

deliver a secure

enterprise edge

FastIron Intelligent

Edge Solutions

Open and standards-

based architecture with

extensible PoE design

and simplified VoIP

deployment enables

total convergence with

reduced TCO

Full range of fixed, stackable and modular

solutions provide maximum flexibility for

building best of breed enterprise-class

networks from edge to core

Foundry’s FastIron SolutionAdvancing the Intelligent Edge

Flexibility, Extensibility

and Performance

Scalable & Unified

Convergence

Security and Reliability

August 2007 | © 2007 Foundry Networks, Inc. 11

Key Value-Add Features

Simplified Management

Unified Communications

Embedded Security

Resilience & Advanced L2/L3

– Plug-and-play style deployment using DHCP-client based auto-configuration

– Interactive web GUI for remote manageability

– Manageability via Foundry’s IronView Network Manager (INM): common network manager for all Foundry products

– Dynamic Layer 3 routing such as OSPF and RIP

– VRRP, VSRP and MRP for high availability and scalability

– Q-in-Q and SAV for advanced switching

– Low Power Consumption - less than 35W for 24 port solution. Less Cooling and Power requirements

– Automatic honoring for QoS, Dynamic Voice VLAN and PoE power management

– Standards-based LLDP-MED for policy deployment and e911 support

– Man-in-the-Middle and DOS attack prevention via DHCP snooping and Dynamic ARP inspection

– ACLs, MAC-based VLANs and Dynamic user-based policy deploying using 802.1x

– IronShield 360° via sFlow and INM

Advancing the Intelligent EdgeCoreAggregationEnterprise Edge

FastIron WS, LS, GS Series

NetIron / BigIron Family

FastIron SX Series

Low Power Consumption – Low cooling and power requirements

4 Uplink ports (100/1000 SFP or 10/100/1000 RJ45) for dual homing

LLDP-MED for vendor agnostic VoIP and QoS policy deployment, power management and E911

Intelligent Fault Detection for reliable network deployments

Source Specific multicast support in hardware to support cutting edge multicast application needs

High availability via VRRP, VSRP and MRP

Convergence-ready SwitchesFoundation for the Converged Network

• Power over Ethernet

• Access control and authentication

• Automatic phone discovery and QoS

• Policy-based configuration

• 802.1p and DSCP honoring

• QoS marking & remarking

• Consistent low latency

• DoS and Threat protection

L2 Convergence Switch

• Power over Ethernet

• Access control and authentication

• Automatic phone discovery and QoS

• Policy-based configuration

• 802.1p and DSCP honoring

• QoS marking & remarking

• Consistent low latency

• DoS and Threat protection

LLDP-MED

L2/L3 Edge and Distribution

L2 Edge LLDP-MED

L2/L3 Convergence Switch

FastIron Series Edge Layer 3 (EPREM)

• EPREM versions of all FWS models• Field upgradeable to EPREM• EdgePrem features on the FWS models include:

• RIP v1,v2• OSPF v1, v2• Support for ECMP• Up to 1000 IP Routes max (Shared with ACLs, MAC filters etc.)• Support for VSRP, VRRP• Existing Base L3 features from FGS/FLS

Enabling Best-in-Breed IP Telephony Solutions

Avaya Mitel Nortel Cisco Siemens

FastIron X424-POE

FastIron SuperX/SXFastIron Edge

2402/4802-POE

FastIron WS/GS624 / WS/GS648

LLDP

LLDP-MED

• LLDP +• PoE config• QoS• Voice VLAN

• Equipment info• IP address• Link and port info• VLAN membership

Enterprise Backbone

Embedded Monitoring & Threat Mitigation to Secure Converged Infrastructure

• Hardware and Advanced ACLs• Rate Limiting • Advanced DoS Attack Prevention• CPU rate protection• Protocol Protection• DHCP snooping, DAI, IP Src Guard• Rogue AP Detection & Suppression• Embedded Monitoring (sFlow)

CallManager

App & Web Servers

Multi-device MAC and 802.1X authentication

Radius, DNS, DHCP

Wired & Wireless Infrastructure

Integrated and Embedded

Security Features

April 2007 | © 2007 Foundry Networks, Inc.

Industry’s highest POE density in a stackable

Up to 48 10/100/1000 Class 3 POE ports Up to 31 10/100/1000 Class 3 POE ports

with redundant power

Greatest Flexibility Features models that are POE upgradeable All models are field upgradeable to 10GbE All models support 100/1000 fiber uplinks Redundant, removable and load sharing

AC/DC power supplies

Complete VoIP software features Power management including power priority Dynamic Voice VLAN configuration sFlow for detailed network traffic accounting Support for Cisco’s legacy IP phones and

802.3af devices including IP phones, Access Points

The FastIron GS Series Industry’s Highest POE Density in a Stackable

FGS624P-POE

(2) ports Modular 10GbE

(4) Combo ports (10/100/1000 or 100/1000 Fiber)

FGS624P

FGS648P FGS648P-POE

(2) ports Modular 10GbE

(4) Combo ports (10/100/1000 or 100/1000 Fiber)

(2) ports Modular 10GbE

(4) Combo ports (10/100/1000 or 100/1000 Fiber)

(2) ports Modular 10GbE

(4) Combo ports (10/100/1000 or 100/1000 Fiber)

(4) Combo ports (10/100/1000 or 100/1000 Fiber)

FGS624XGP

(2) ports Modular 10GbE

(4) Combo ports (10/100/1000 or 100/1000 Fiber)

FGS624XGP-POE

(2) ports Modular 10GbE

April 2007 | © 2007 Foundry Networks, Inc.

Foundry’s FastIron Super X Family Total Enterprise Solutions – Chassis Based

Advanced L2 & Full L3 for 10/100/1000, 10/100/1000 with POE, 100/1000 Fiber, and 10GbE

SX8SX800

SX1600

Same Line Cards, Same POE and System Power Supplies

High Availability

Rich Feature Set

Cost Effective with

Rich Feature Set

April 2007 | © 2007 Foundry Networks, Inc.

Foundry’s Open Voice Over IP Solutions Integrated, Redundant, Hot-Swappable Power

Internal, hot-swappable, load sharing power supplies(AC and DC)

Redundant PoE Powersupplies

Redundant System Power supplies

Internal, redundant, hot-swappable

AC and DC power supplies

eliminate the need for external power devices

and additional management elements

Hot Swappable Power

Can start without PoE and easily

add it without system impact in both

Stackable and Chassis Solutions

Complete PoE Scalability

Automatic detection of legacy power

and standard (802.3af)

PoE devices makes IP handset

installation & configuration easy

Ease of Management

April 2007 | © 2007 Foundry Networks, Inc. 20

Foundry’s Open Voice Over IP Solutions Features and Benefits

Foundry Features Benefits

Chassis & Stackable, High-Performance, Voice Ready Switches & RoutersAutomatic, dynamic IP phone discovery, Voice VLAN, and QoS support

Integrated support for Power-over-Ethernet and wireless mobility

Simultaneous Voice and Data security on same switch port

Certified and interoperable with industry leading best-of-breed phones

Choose appropriate density, performance, cost without compromising VoIP flexibility

Rapid deployment and reduced TCO by eliminating manual network reconfiguration

Facilitate IP phone & wireless AP deployment; enable user mobility

IP Phone and PC can share same switch port, reducing total network upgrade cost

Allows users flexibility to choose their preferred VOIP solution

Summary• Your Ethernet LAN is the foundation for successful VoIP

deployment

• When evaluating your convergence solutions look for the key technologies and capabilities

• Power over Ethernet, access control and embedded security, low latency switching, high-reliability switch design, resilient protocols

• Convergence solutions should be open and standards-based

• Successful wireless VoIP deployment depends on important design considerations and solution capabilities

• VoIP solutions are ready and proven, but it’s important to pay attention to the details –

A successful VoIP roll-out will not happen without careful planning

http://www.lpsintegration.com/index.php