Upload
hoangque
View
234
Download
0
Embed Size (px)
Citation preview
#ATM15ANZ | @ArubaANZ
UCC ON ARUBA WI-FI
CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved. 2 #ATM15ANZ | @ArubaANZ
Agenda
• Trends • UCC Challenges • UC over Aruba WLAN – ALG, Lync, Wi-Fi Calling, Jabber
@ArubaNetworks
3 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Transition Content
Current Trends
• Voice as a “standalone application” is going away
• SIP, SCCP, SVP, H323, Vocera, NoE
• UCC is the “new wave” in IT • Skype, Lync, FaceTime, Jabber, Hangouts etc. • Next “BYOD” problem
@ArubaNetworks
4 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Why Microsoft Lync?
• Integration with AD, Outlook, Office etc. • Unified mobile client for BYOD • Support for voice, video, desktop sharing, file sharing etc. • On-premise and Cloud based deployment models • Strategic partner and customer of Aruba
Challenges with UC over Wireless
@ArubaNetworks
6 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Challenges with UC over Wireless
• Diversity of Clients
• AV
• App incompatibility
@ArubaNetworks
• AP placement
• Channel Capacity
• AP Capacity
• Tx/Rx Characteristics
• Interference
• Mobility
• QoS on wireless
• QoS on wire
• Queue overflows/drops
• Routing/path changes
• WAN
• UC server monitoring
7 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Essentials to support Voice over Wi-Fi
• Classification & prioritization of Voice • Wi-Fi optimized for Voice • Real time and pro-active visibility
• Analytics
Lync
@ArubaNetworks
9 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Types of Lync Deployments
• Lync On-Prem • Lync server farm is hosted on premise
• Hosted Lync • Lync server farm is hosted on a private cloud
• Lync Online • Lync server farm is hosted by Microsoft
10 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Lync On-Prem/Hosted Lync
Exchange Server
QoE Server/ Monitoring
Active Directory
Lync Federated Partners
Reverse Proxy
Lync Edge Server Lync FE Server Pool/ Lync SDN API Dialog Listener
Lync SDN Manager
Internet
Wi-Fi Mobility Controller
• Benefits from all Lync Server functionalities
• Maximum flexibility
• Interoperate with other on-premise investments
• Works with Exchange and SharePoint
11 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Transition Content
Lync Online
@ArubaNetworks
• Uptime Assurance • Using corporate
directory • Reduced administration
12 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Transition Content
UC/Lync Call Type/Flow
@ArubaNetworks
Call Type Signaling Traffic Media Traffic
Peer-to-Peer Session
Lync server pool
UC endpoint <-> UC endpoint
Conference Session UC endpoint <-> Lync server pool
PSTN/Mediation session UC endpoint -> (Mediation server)* -> PSTN gateway/IP
PBX
Content Sharing UC endpoint <-> UC endpoint/Lync server pool
13 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Lync Network Bandwidth Requirements
Modality Description Max BW Typical BW
IM, Presence and signaling
Nonmedia elements 2 Kbps 1.6 Kbps
Voice RT Audio Wideband 62 Kbps
39 Kbps
Conference voice G722 100.6 Kbps
46.1 Kbps
Video - small H264 at 320x180 250 Kbps
200 Kbps
Video - medium H264 at 640x480 800 Kbps
640 Kbps
Video - high H264 at 1280x1080 4 Mbps 3.2 Mbps
UC/Voice Aware WLAN
@ArubaNetworks
15 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
ALGs
• SIP • SCCP • Vocera • H323 • NoE
16 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Lync Classification using Heuristics
• Leverages DPI to identify & prioritize real time voice and video traffic
• Ideal for Lync online deployments • On-Prem deployments without SDN API can
leverage heuristics
• AirWave aggregates network wide data for visibility
Lync
17 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Lync Classification using SDN API
• Lync server integrates with mobility controller using SDN API
• Real time call info is shared with mobility controller
• Controller leverages the info to apply QoS
• Ideal for On-Prem Lync deployments
• AirWave aggregates network wide data for visibility
Lync
18 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Call Details via SDN API
Lync
• CALL START • Caller/callee, device, session, BW, time etc.
• PERIODIC INTERVALS • Instantaneous Call quality
• CALL END • Avg. call quality, time etc.
19 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Wi-Fi Calling Detection
• Sequence of events • Gateway Learning Phase • IPSEC Tunnel
Establishment • Media flow and Call
Classification
• Future AOS will support automatic detection, classification for Wi-Fi calling
Carrier Core Network
IMS (SIP) RTP
ePDG (IPSEC)
P-GW (IP)
Authenticate
DNS discovers ePDG IP address
IKEv2 establishes keys for IPSec tunnel from SIM & AAA
SIP stack on handset registers with SIP server (IMS)
Call setup, RTP media session, call teardown
Inside IPSec tunnel
CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved. 20 #ATM15ANZ | @ArubaANZ
Jabber Aware Aruba WLAN
• Existing SIP ALG has been enhanced to support Jabber calls – Special characteristics of Jabber calls
tracked to provide visibility
• Ability to identify Voice, Video and Desktop Sharing
• Ability to apply QoS respectively
• Future AOS will support automatic detection, classification for Wi-Fi calling Jabber caller Jabber Callee
Signaling
Media
21 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
QoS on Aruba WLAN - Downstream
Internet
Wi-Fi access point
Corporate
firewall & NAT
Wi-Fi mobility controller
LAN
Operator core
Wi-Fi
5. Handset receives frame
4. AP transfers voice priority to WMM ‘voice’ priority, queues and transmits with priority.
3. LAN must be QoS-aware for L2 L3 QoS tags.
2. Firewall rules in mobility controller identify Wi-Fi calling traffic, tag packets with ‘voice’ priority on outside of GRE/IPSec tunnel to AP.
1. It must be assumed that packets received from the Internet are not priority-tagged.
Downstream QoS chain for Aruba networks carrying Wi-Fi Calling
Wireless LAN Edge LAN Core
22 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
QoS on Aruba WLAN - Upstream
Internet
Wi-Fi access point
Corporate
firewall & NAT
Wi-Fi mobility controller
LAN
Operator core
Wi-Fi
1. Handset transmits voice frames @ WMM priority 3 (VOI)
2. AP transfers voice priority to outer envelope of GRE/IPSec tunnel to controller (firewall rule can over-write original tag).
3. LAN must be QoS-aware for L2 L3 QoS tags.
4. Mobility controller maintains priority as it unpacks the voice packet.
5. QoS awareness should be supported as far as possible, especially on low-bandwidth access links.
Upstream QoS chain for Aruba networks carrying Wi-Fi Calling
Wireless LAN Edge LAN Core
CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved. 23 #ATM15ANZ | @ArubaANZ
Voice: handover challenges
Between WLAN and LTE § Inter-network handover § Entering/leaving the bldg
Within the WLAN § Inter-AP handover § Requires fast handover
with good quality
Wi-Fi Wi-Fi Wi-Fi
Wi-Fi LTE
How to tell the difference?
CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved. 24 #ATM15ANZ | @ArubaANZ
802.11k, v, r
• Many features, most important are: 802.11k § Neighbor report from AP to client
§ Channel report from AP to client § Beacon report from client to AP
802.11v BSS Transition Management from AP to client 802.11r Fast Transition by client
All rolled up in 802.11-2012 in 2015
CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved. 25 #ATM15ANZ | @ArubaANZ
802.11k, v, r features
B
C D
E
Neighbor report
AP chan secy key beacon scope offset B 6 WPA2 0 45 D 52 WPA2 0 12 E 161 WPA2 0 74
Information about other APs to help with handover candidate discovery
C
Beacon report Client reports how it hears (RSSI) the beacons of other APs
BSSID RSSI AP B -65 AP D -72 AP E -65
C
BSS Transition Management AP instructs client to move to another AP
Move to AP D…
E D B
D
C
Channel report AP informs client of channels used by the WLAN
Channel 6 52 161
Overlaps with neighbor report
CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved. 26 #ATM15ANZ | @ArubaANZ
Client Match Client Match forms a virtual Beacon Report:
1. APs measure RSSI from client
2. APs receive beacon reports from the client
3. Estimate the ‘best’ AP
4. If client is _far_ from ‘best’ AP…
5. Redirect (force handover) to ‘best’ AP
B
C D
E
A
track
-50 -60 -70 -80
A B E
Signal strength
distance
CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved. 27 #ATM15ANZ | @ArubaANZ
802.11r fast BSS transition
C D
R0 key
C
802.1X authenticator
R0 key
S0 key S1 key PTK
Initial Authentication establishes level 0 key
WLAN distributes level 1 keys
R1 key C D
On reassociation, client presents level 1 key to new AP
R1 key PTK
S0 key S1 key PTK
Mobility domain: A group of APs covered by a level 0 keyholder
Over-the-air reassociation widely adopted, over-the-DS reassociation (via the current AP) not used
Level 0 key (derived at initial authentication, never exposed OTA) Level 1 key (per-AP keys) used to derive… Pairwise temporal keys (to encrypt communication)
PTK R1 key
Differences between FT and OKC? … Not much
keyscope keyscope
CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved. 28 #ATM15ANZ | @ArubaANZ
Devices incorporating 802.11k, v, r features
• Early indications of support for key 802.11 features
• Ahead of Wi-Fi Alliance certifications, so beware of inconsistent behavior
Device OS 11r 11k 11v iPhone6, 5s, 5c, iPad2+ >= iOS8 Y Y Y iPhones <= iOS7 Y Y N Samsung Galaxy S5 Android 4.4 Y N Y PC / Intel 7260 <= Windows 8.1 N N N Surface Pro Windows N N N MacBook <= OS-X 10.9 N N N
Note: “11k” = Neighbor report “11v” = BSS Transition
CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved. 29 #ATM15ANZ | @ArubaANZ
Wi-Fi Calling: network edge indication mechanisms
Multiple Edges
Bldg 1
Bldg 2
Bldg 3
Within the WLAN § de-auth frame (ambiguous) § 802.11v BSS transition management
(defined in standards, implemented in recent handsets
Between the WLAN and LTE § de-auth frame (ambiguous) § Special 802.11v (BSS transition
management) frame (defined in standards, not implemented in handsets)
No way for the handset to determine type of transition autonomously
30 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Call Quality Analysis
• UCC Score • Calculated by analyzing the RTCP/RTP information for
related media flows over the wireless link • Delay, jitter and packet loss is also calculated • Computation performed for voice calls only
Lync on Aruba Architecture
@ArubaNetworks
32 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Lync SDN API for a Centralized Campus
Lync
SDN API
East Campus West Campus
33 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Lync SDN API for a Distributed Campus
America EMEA APJ
Lync Lync Lync
Lync Cluster Lync Cluster Lync Cluster
34 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Lync SDN API for a Branch
Lync
Store 1 Store 2 Store 3
UC Visualization on AirWave
@ArubaNetworks
CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved. 36 #ATM15ANZ | @ArubaANZ
UC Visualization
• UCC Dashboard • CDR • Visual RF Integration • Per-User Call Visibility • End-to-End View • Pro-active Alerting • Reporting
37 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
UCC Dashboard
38 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Call Detail Records(CDR)
39 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Per-User Call Records – Example 1
40 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Per-User Call Records – Example 1
41 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Per-User Call Records – Example 1
42 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Per-User Call Records – Example 1
43 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Per-User Call Records – Example 2
44 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Per-User Call Records – Example 2
45 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Per-User Call Records – Example 2
46 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Per-User Call Records – Example 2
47 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
Pro-active Alerts
48 #ATM15ANZ | @ ArubaANZ CONFIDENTIAL © Copyright 2015. Aruba, a Hewlett Packard Enterprise company. All rights reserved.
UCC Calls on Visual RF
THANK YOU
#ATM15ANZ | @ArubaANZ
THANK YOU