Professional Documents
Culture Documents
0
The HiPath Wireless Controller is a high-performance platform that provides centralized intelligence for the HiPath Wireless enterprise solution, the world's first truly scalable routed wireless LAN (WLAN) solution. The Controller is a full-functioning router that aggregates and coordinates all access points into what appears to the rest of the network as individual, centrally managed, IP subnets. As a result, network management is greatly simplified, eliminating the need to ever physically visit the remote access points. Further, the Controller operates at wireline speed for maximum throughput. The HiPath Wireless Controller also manages user authentication and security, rogue detection, seamless user roaming across the wireless network, advanced radio frequency management, and user policy segmentation such as quality of service management and application permissions.
A VNS segment is like a virtual WLAN in itself and multiple VNS segments can run on each AP, creating a much more flexible and powerful solution than fixed VLANs. Variables such as time of day and the physical location of a given user can even be used to define specific services. The dynamic nature of WLANs themselves is thus optimized in venues such as convention centers, sports arenas, hotels, campus settings, hospitals, and multi-tier environments among others.
Management Features
High availability and self-healing Service continuity is assured against both Controller and network segment outages by deploying redundant HiPath Wireless Controllers, which can also run in load sharing mode. The C100 and C1000 models also provide standard redundant power supplies. The Controller servers as a full functioning router, able to route around network failures. The HiPath Wireless solution also supports dynamic RF management. Unassisted Access Point fault-tolerance is achieved by expanding radio coverage to fill in for outages of particular Access Points. Centralized configuration and monitoring
HiPath Wireless Controller The HiPath Wireless Convergence Software architecture offers convenient feature updates for serviceability and investment protection. For management efficiency, centralized auto configuration and software loading for Access Points is provided, along with statistics reporting, logging and tracing through the HiPath Wireless Convergence Software. Administrative access via the Web allows user policy, security and access control, both locally or centralized. Fast, secure roaming across Access Points for 'always on' voice and data mobility Fast, secure and seamless roaming is provided as users and devices move throughout the radio coverage range of each Access Point in your network. This roaming capability means no need to reconnect or re-authenticate mobile applications, and no more dropped Voiceover-WLAN calls as users move about the enterprise. Seamless roaming greatly improves productivity by providing user true mobility across the enterprise the HiPath Wireless Controller manages each hand-off transparent to users. Virtualization allows user segmentation with policy management and service definitions Through the use of Siemens' unique Virtual Network Services (VNS), specific users and mobile devices can be grouped by policy class to provide for levels of service, access permissions and device authorization. VNS provides the provisioning, monitoring, and control that allows a WLAN infrastructure to meet the needs of diverse constituencies with appropriate efficiency, performance, and security. Up to 50 virtual WLANs (via VNS) can be created and managed, each with its own user policies and services. Policies can be managed by packet filtering, individual user or group.
Security Features
User authentication and encryption The HiPath Wireless Controller supports comprehensive access authentication, encryption and intrusion detection capabilities. 802.11i standard WPA2 (Wireless Protected Access Version 2) 802.1x or PSK authentication and Advanced Encryption Standard (AES) for encryption of data ensure your network stays secure. To support Fast Secure Roaming, the WLAN client is already pre-authenticated by controller and is allowed to roam seamlessly without authentication latency. The VNS Captive Portal feature also provides Web-based authentication, and the system also supports the overlay of any IP-based VPN infrastructure. Data privacy features include management of WEP and Public Shared Key administration. Rogue AP detection for network privacy and control HiPath Wireless Access Points' Scan Task feature performs detection of rogue access points on the network by scanning the RF space at specific intervals. The scanned information is forwarded to the Controllers Analysis Engine, which processes the data centrally. Rogue detection data can be viewed from the management console, or send via intrusion alert messages.
The controller individually monitors and manages associated Access Points from a single interface. This interface makes it possible to separately configure, enable, or disable each AP, and also allows administrators to group APs into one of ten configurable profiles. Using profiles, configuration changes or software updates can be performed once, after which they are automatically deployed to each AP in the profile. The controller also collects SNMP and log information from each AP, which can then be processed by a third party network management application. Quality of Service (QoS) for real-time communications On the wireless side, support for 802.11e / WMM capabilities provides four priority queues per radio (with two radios per Access Point). When voice and data traffic share the same SSID on an Access Point, voice traffic can be prioritized to ensure minimal delay and jitter, while providing maximized voice quality. On the wired network, existing priority schemes (for example, TOS/DSCP) are supported. Traffic management The Controller enables the physical data ports to be configured to support either ingress (to and from the Access Points) or egress traffic (to or from the appropriate adjacent network), or both. This also provides per VNS segment traffic steering and routing control for unicast and broadcast traffic. System management capabilities Systems management capabilities include SNMP, FTP, NTP, Accounting, Statistics, and Syslog.
Centralized Management over Layer 3 (CAPWAP) Yes Branch Office Support over WAN Auto-discovery of new APs CDR/RADIUS Accounting Network Interfaces Yes Yes Yes 4x10/100 BaseT 30 512 8 Yes No
Capacity Performance
APs Supported per Controller Simultaneous Users per Controller Number of VNS User Segments per Controller Automatic Failover to Redundant Controller Dual, Hot Swappable Power Supply
Premium Radio Frequency Management Support Yes Roaming Between IP Subnets Roaming Between Multiple Controllers Enhanced 802.11i security with fast roaming Yes No Yes
Security
Mobility
Captive Portal (URL Redirect) and Walled Garden Yes (unauthenticated access to URL) HiPath Premium Voice Support Yes Yes 75
Voice
Enhanced 802.11e quality of service features Simultaneous Voice Calls per Controller (802.11b, G.711, R > 80)
www.siemens.com/hipath
Siemens AG 06/2005 Siemens Communications Hofmannstr. 51 D-81359 Mnchen Reference No.: A31002-W1000-A200-1-7629 The information provided in this document contains merely general descriptions or characteristics of performance which in case of actual use do not always apply as described or which may change as a result of further development of the products. An obligation to provide the respective characteristics shall only exist if expressly agreed in the terms of contract. The trademarks used are owned by Siemens AG or their respective owners. Availability and technical specifications are subject to change without notice.