Cisco Prime NCS – A New Way of Managing “Access”

Posted on December 15, 2011 by Lennert Van Wayenberg

As mentioned in previous blogs regarding “enabling Bring Your Own device” or “New Ways of Working”, people will access the network  in more and more different and variable ways. Starting with Home Working in the morning, connecting on the road, working at a virtual desk in the office and returning to the home office. The end user is therefore continuously changing between VPN, LAN and WLAN. Within that changing scope, the user is connecting with corporate devices as well as own private devices.

And then suddenly the user cannot access the data he wants, and he calls the IT support and says : “I don’t have access – can you solve this ?”.

Today, IT support will need to dive into a myriad of management tools, connecting the LAN, WLAN, VPN and Security dots to find the cause of the problem. This is where NCS jumps in by delivering you that Unified Access View !!

With Cisco Prime Network Control System you can see every user in your network regardless of whether he is connected through a wire or wireless and get all the information you need for identity management. You also get complete visibility into endpoint connectivity ,no matter where or what that endpoint is and how it is connected.
As mentioned above, this speeds troubleshooting for the most reported customer pain point – network problems related to client devices.

Cisco Prime NCS also provides monitoring of endpoint security policy through integration with Cisco Identity Services Engine (ISE) to deliver visibility into compliance based on real-time contextual information from the network, users and devices across the entire wired and wireless access network.

Built on the WCS, Cisco Prime NCS includes complete lifecycle management of 802.11n and 802.11a/b/g, enterprise-class, indoor and outdoor wireless networks. You get immediate access to the tools you need, when you need them, so that you can more efficiently implement and maintain secure wireless LANs, monitor wired and wireless LANs, and view users and endpoints across both networks – all from a centralized location.
Operational costs are significantly reduced as well through the platform’s workflow-oriented, simplified, and intuitive user experience. Unlike overlay management tools, Cisco NCS incorporates the full breadth of management requirements – from radio frequency, to controllers, switches, endpoints, and users on wired and wireless networks, and to mobility and identity services.

For an nice overview , have a look at below video:

Still having doubts ?
Well the best way to be sure is to test Cisco Prime NCS
Demo licenses are available and should be issued within 15-minutes. Remember, you need your own server (VMware ESX and ESXi) to install the .ova:
https://tools.cisco.com/SWIFT/Licensing/PrivateRegistrationServlet?FormId=3999

For more information, please visit: www.cisco.com/go/ncs

Lennert

Filed under: Borderless Networks | Tagged: | Leave a Comment »

Trusted Relay Point configuration

Posted on December 14, 2011 by jderidde

The Cisco Unified Communications system can be deployed in a network virtualization environment. Cisco Unified Communications Manager enables the insertion of trusted relay points (TRPs). The insertion of TRPs into the media path constitutes a first step toward VoIP deployment within a virtual network.

The underlying network infrastructure comprises one of the key shared assets in an overall network design. A number of customer use cases require support for network infrastructure virtualization, such as the following examples:

-Guest internet access

-Partner access

-Departmental or divisional separation

-Subsidiaries/mergers and acquisitions

-Application segregation (data/voice)

All these applications include a requirement to maintain traffic separation on the network device as well as between network devices.

Traffic separation translates into concepts such as Virtual Routing and Forwarding (VRF). VRF allows multiple instances of a routing table to co-exist within the same router at the same time. In a virtualized network, these different routing domains, or VRFs, typically cannot communicate directly without transiting through the data center.

This situation challenges applications such as Cisco Unified Communications, where devices in the data VRF domain, such as software endpoints running on PCs, need to communicate directly with hard phones in the voice VRF domain without hairpinning media in the data center and without directly exposing the voice and data VRFs to each other.

Below a sample configuration off TRP.  This sample setup will force softclient RTP streams (voice or video) through the MTP control point in the router. In this router you might want to add additional security settings (FW, ACL, QOS,…). We will focus here on the basic TRP configuration in the  Cisco callmanager and  ISRG2 router.

Basic Principle:

Setup:

As you can see in this setup we make a direct call between a Cisco EX90 and the CUPC client. Both devices are registered to the Callmanager 8.6.

 

Configurations: 

Read more »

Filed under: Collaboration | Tagged: , , , , | Leave a Comment »

CiscoLive 2012 – Join Us In London

Posted on December 7, 2011 by frankdereymaeker

Filed under: General | Tagged: | Leave a Comment »

Datanews 2/12/2011: « Helft van Belgische bedrijven wil iPad – La moitié des entreprises belges veulent utiliser l’iPad »

Posted on December 2, 2011 by frankdereymaeker

Datanews’ yearly survey amongst 300 telecom- and IT-responsibles of Belgian companies (http://t.co/gnsy0DNF) is very clear : around half of the companies plan to use an iPad or another tablet for mobile data services (up from 21% last year). Impressive is that 41% of the companies mentioned that employees could use their own smartphone. Priority for the surveyed companies was : 1. Mobile Data, 2. Security and 3. Standardization. This survey confirms that the evolution to consumer devices entering the network (“Consumerization”) and people bringing in their own devices (“BYOD – Bring Your Own device”) is really breaking through.

More then 1 year ago, Cisco IT moved from an environment where all devices were corporate-owned and controlled, towards an environment allowing end users to choose from a broad catalog of devices as well as use their own devices. One year later, the result is spectacular: in 1 year mobile device count grew 59% up to more then 43.000 devices. iPhones take up 40% of those devices, BlackBerry 32% and Cisco IT now sees a rapidly growing community of Tablet users (15%), as well as Android device users (10%).


Can you block/ignore this evolution ?

No, difficult, as many customers mentioned us their upper management were the first to bring in the iPhone, iPad and other devices. Difficult to say “no” to them, although they might carry the most sensitive data and therefore carry the greatest potential security risk. So, how as an IT department can you accept and guide this evolution, taking into account the security risks ?

What happens when you say “yes” ?

First of all, it answers a real demand from the end users and leads to a more satisfied and productive end user community. As IT, you are addressing what Peter Hinssen mentions : “Work being that moment in time when you use old technology” (see Peter Hinssen : “The New Normal”). As mentioned above, at Cisco it led to an enormous growth in mobile devices, and a broad spectrum of new operating systems accessing the network. The times of the desktop with the single operating system are clearly behind us. Often, this evolution will also go hand in hand with enabling new ways of working : allowing the employees to work from home, on the road or in the office (behind a desk, virtual desk, flex desk, in meeting rooms or meeting corners – (wired or wireless).

How will mobile data usage evolve ?

An additional measurement of Cisco IT showed that the increased capabilities of the new generations of smartphones and tablets make data- and application access seamless, leading to a 40x increased data usage versus previous BlackBerry data usage. Therefore, it will be important to offload the devices wherever possible from 3G to a corporate wireless network for higher bandwidth and lower costs.

In fact, we need to move beyond looking at the access methods as such, and create an environment that allows the end user to connect seamlessly and transparently from anywhere to enable him to work in new ways : home working, working on the road, working behind one’s office desk, working in flexible desk environments, going wireless in meeting rooms and meeting corners, … This will require a going together of LAN, WLAN and VPN technologies into a seamless solution.

So, how can I start the journey ? How can Cisco help ?

First of all, as users access with new types of devices, you need to have the capability to discover which device they are using. Cisco’s Identity Services Engine with its unique profiling capability will give IT visibility on which devices access the network.

Secondly, you need to provide a strong standardized infrastructure to allow access from wherever needed : Cisco Virtual Office at home, mobile data services while on the road, a full wired and wireless LAN deployment in the corporate buildings.

Thirdly, as the end user wants access from different environments (without needing to be an IT expert), you need to provide him a uniform way of  access. Here, Cisco has unique capabilities to gradually evolve your LAN and WLAN environment towards a secure 802.1x environment. Cisco’s AnyConnect end device client can then incorporate VPN and 802.1x connectivity to deliver a seamless Access Experience, whether at home, on the road or in the office.

Finally, an adequate Security Policy environment is needed. As people can and will access the network with multiple devices – some controlled, some private – an evolution is required towards Context-Aware Security with Cisco’s Identity Services Engine as policy engine. This will allow IT to define the right security policies dependent on who accesses, as well as with what device, from where, at what time, …

In upcoming blogs, we will go deeper on each of the different above mentioned elements of the total solution.

Let’s start the journey !

Filed under: Borderless Networks | Tagged: , , , , | Leave a Comment »

CiscoLive! 2012 – Learn, Connect and Collaborate Together

Posted on November 30, 2011 by frankdereymaeker

Are you using, deploying or designing Cisco solutions ? Or are you interested in networking and communication technologies ?

Then there is only 1 place to be : Cisco Live! (Jan 30 – Feb 3, 2012).

Here, in 4 days, you can update yourself with the latest information on the newest technologies and solutions, as well as discuss your own specific challenges and projects with top experts.

To Register, go to : www.ciscolive.com/europe.

CiscoLive! is Cisco’s flagship annual technical education, technology evaluation, networking and thought leadership event for IT, networking and communications professionals. And what better location for such an event then London, host city of the London 2012 Olympic and Paralympic Games.

What can CiscoLive! bring you :

- Networkers Technical Program : a world-class curriculum of education and training opportunities, from basic to intermediate to expert level, on the latest technologies and concepts. If you are working at a Service Provider, you can take advantage of a specific tailored Service Provider Program. For developers of third-party solutions, there is also a specific Developer Network Program.

- NEW THIS YEAR : The IT Management Program (separate 3 day agenda) around the theme : “Creating Value Through Innovation”

- Discuss your specific technical challenges through scheduled face-to-face meetings with the Cisco experts (Meet The Engineer) or through informal whiteboard discussions (Technical Solutions Design Clinics)

- World of Solutions : over 100 Cisco partners join Cisco’s own experts to showcase the latest networking and communications technologies and to answer your specific questions

- Cisco Keynote session providing a strategic overview on the direction of Cisco and the Industry

- Guest Keynote : a visionary and inspiring view of the world of innovation

- Full-day technical tutorial seminar (pre-conference, on Monday Jan 30th 2012) around specific topics

- Lively and Interactive Technology Panel discussions on the hottest technology topics

- Case Studies, Labs, …

- Cisco certification and Testing

- Social Events and Social networking

In other words, a unique event to boost your knowledge and insight on the latest technologies, solutions and strategic directions as well as an opportunity to meet the top experts to address your specific technical challenges.

Take the opportunity to LEARN, CONNECT and COLLABORATE , together !
See you in London !!

Filed under: General | Tagged: , | 1 Comment »

Wide Area Application Services

Posted on November 25, 2011 by bvanhoec

Network World has provided an independent review of the new WAVE appliances after conducting extensive lab testing of the appliances. The report’s executive summary says it all – “The latest release of Cisco’s WAN optimization product line — Wide Area Application Services (WAAS) 4.4 — proves that the company famous for routing packets can also shape, optimize and accelerate them”. For customers, this report backed by hands-on testing, provides an independent source of product evaluation that goes beyond analyst or blogger speculation.

Cisco WAAS shows pizzazz by By Keith Schultz, Network World, November 21, 2011. Link and noteworthy quotes below:
http://www.networkworld.com/reviews/2011/112111-cisco-waas-252854.html

Performance: The top-end WAVE-8541 is an absolute speed demon and its ability to handle 150,000 connections and pass 2Gbps optimized traffic over the WAN is impressive…That represents some of the best performance we’ve seen based on previous testing of WAN optimization gear.
Reporting and Monitoring: The reporting and monitoring engine is top notch and overall, we found the system easy to navigate and use. There are a number of reports included in Central Manager, such as traffic and optimization summary, HTTP, HTTPS, video, SSL, MAPI and NFS acceleration reports, and also an overall acceleration summary.
Context-aware DRE: Cisco’s new context-aware DRE (Data Reduction Engine) does away with the segmented cache, opting for a single large unified cache that all appliances can participate in. Cisco’s DRE adapts to changing conditions in traffic and applications.
Video, VDI optimization: What’s interesting is that DRE can also function in a uni-directional mode for specific traffic types, like streaming audio and video, and VDI… take advantage of any cached byte segments in the branch appliance without filling up the data center cach
Manageability: We found the browser-based management UI is well laid out and very intuitive to use…WAAS covers just about all possible scenarios. We were able to create custom policies quickly in just minutes and easily deploy them to specific device groups… WAAS provides TCP optimization, data compression, application specific optimization and intelligent caching, all controlled from a single browser-based management console.
Breadth of Portfolio: WAAS comes in a variety of form factors and deployment methods — a data center appliance, branch office box, virtual WAAS for cloud-ready installations, and a mobile client for Windows operating systems… overall, Cisco has designed a consistent user interface and feature set across platforms
Maturity and Scalability : Cisco’s latest release of WAAS is a very mature and highly scalable platform for speeding up TCP traffic in the enterprise… the TCP support covers just about every conceivable situation.

The report also calls out WAAS optimizations for Citrix Virtual Desktops and Microsoft RDP which can be deployed with Microsoft and VMWare desktop virtualization solutions. The report points out that WAAS does not optimize UDP based traffic today, which could be an option if PCoIP is deployed on the WAN (instead of RDP). Cisco WAAS provides up to 90%+ optimization for Video delivered when using PCoIP with MMR. What we have seen is that Video is the bandwidth culprit in many cases and WAAS Video optimizations benefit PCoIP environments too.

Also, like other leading vendors, Cisco charges for the WAAS Central Manager. However, we provide the integration with Cisco Prime, NAM at no additional cost. As the article points out, this integration is very powerful – “We like that Cisco includes Cisco Prime, its Network Analysis Module, as part of Central Manager. Where Central Manager’s reporting is unique to WAAS devices, Cisco Prime will collect network statistics from all across the network, including non-WAAS appliances. This allows IT to get a complete picture of network traffic from end to end and not be limited to WAAS-only information.”

Pleas have a look at the new appliances on:
www.cisco.com/go/waas

Filed under: Borderless Networks | Leave a Comment »

Webinar on Design & Implementation of SIP Trunking using Cisco’s SBC – CUBE

Posted on November 3, 2011 by Rudy De Keninck

A recording of last week’s webinar on designing and implementing SIP trunking using Cisco’s SBC- CUBE solution is now available.

Many enterprises are looking at SIP trunk implementation because of cost savings, network efficiency, rich business to business collaboration and end-to-end Unified Communications deployment. Due to the challenges around security, interoperability, session management and performance, it is becoming a best practice to deploy a session border controller (SBC) to ensure these challenges are addressed.

This session will provide an in-depth understanding of how to design and implement Cisco’s Enterprise SBC – Cisco Unified Border Element (CUBE). It will include an in-depth procedural approach on how to connect to SIP trunks in five easy steps using CUBE. The session will also identify some of the monitoring and troubleshooting tools and how to utilize them to quickly isolate most commonly seen problems.

Register and watch a playback of this great session on the link below:

http://tools.cisco.com/gems/cust/customerSite.do?METHOD=E&LANGUAGE_ID=E&PRIORITY_CODE=4&SEMINAR_CODE=S15366

Filed under: Collaboration | Tagged: , , , | Leave a Comment »

Cisco ISR G2 Video Conferencing Services

Posted on October 31, 2011 by Rudy De Keninck

The Cisco Integrated Services Routers Generation 2 (ISR G2) routers with the packet voice and video digital signal processor 3 (PVDM3) have introduced the ability to do multipoint video conferencing for Ad Hoc and Meet-Me video conferences with Cisco Unified Communications Manager (Unified UCM) or Cisco Unified Communications Manager Express (Unified CME) as call agents. The Cisco IOS Software integrated video conferencing services on the ISR G2 extend the long-supported audio conference feature with its digital-signal-processor (DSP) resources to include a broad portfolio of video endpoints for video conferences to meet customers’ visual communication needs.

This an ideal MCU solution for Cisco 89XX and 99XX video-enabled ip phones, the Cisco desktop video clients (CSFand CUVA) as well as the TelePresence E20, EX60 and EX90 video devices. It offers a great way of providing a local multipoint video service at branch sites, limiting the video bandwidth usage over WAN links.

Find out more about this enhanced ISR-G2 functionality on the following url:

http://www.cisco.com/en/US/partner/prod/collateral/voicesw/ps6790/gatecont/ps4952/data_sheet_c78-649427.html

and

http://www.cisco.com/en/US/partner/prod/collateral/voicesw/ps6790/gatecont/ps4952/qa_c67-649850.html

Filed under: Collaboration | Tagged: , , , , , , , , , | Leave a Comment »

Announcing Availability of Cisco Jabber for Mac

Posted on October 23, 2011 by Rudy De Keninck

Since this month customers will be able to enjoy the industry’s richest UC experience for the Mac platform.

WebEx Connect customers will be able to use the service on Macs for the first time, while Cisco Unified Personal Communicator Mac users will find a tremendously enhanced client built and designed specifically for the Mac.

Cisco Jabber for Mac delivers presence, instant messaging, voice, voice messaging, desktop sharing, and conferencing capabilities securely into one client on your desktop and can be deployed as an on-premises or cloud-based solution.  HD video with interoperability across standards based endpoints will be added via the Cisco Precision Video Engine and is targeted for a Q1 CY12 release.

This release is an important step in delivering on the complete Jabber vision of enabling rich UC capabilities with a consistent user experience across a broad set of platforms and devices that will include Windows on the desktop, Android devices, the iPhone and iPad, and Nokia and RIM smartphones.

For additional information and resources regarding Cisco Jabber for Mac, please see the below links.

Cisco Jabber page on Cisco.com http://www.cisco.com/go/jabber

Ordering Guide http://www.cisco.com/web/partners/downloads/partner/WWChannels/technology/ipc/downloads/ucbu_uc_og.pdf

Filed under: Collaboration | Tagged: , , , | Leave a Comment »

Specifications-Based Hardware Support – VMware considerations

Posted on October 19, 2011 by Rudy De Keninck

Since a while we support UC virtualization on Cisco, HP and IBM servers apart from the Cisco validated UCS configurations (Tested Reference Configurations or TRCs). This is referred to as “specs-based” hardware support. For these configurations we will not provide sizing guidelines as we do with the TRCs.  The configuration is supported as long as the requirements in term of CPU (vCPU and CPU type), memory and storage capacity and performance are respected. Although this looks very interesting, there are some considerations you should be aware of when going for a specs-based deployment over a Cisco TRC-based installation. In order to be able to support such a deployment that has not been thoroughly tested, TAC will need to be able to use some advanced VMware management tools to debug and analyze the virtual environment. This requires VMware vCenter, which is therefore mandatory for specs-based systems. This has an important influence on the cost of the VMware licenses.  In any doubt about the sizing of the WMware hosts and the number of application they can run, or whenever the pricing of the required VMware licenses is a potential issue, we recommend using the Cisco validated UCS TRCs.  In terms of VMware you are even allowed to use the free edition of vSphere as the hypervisor for them.  For any information on UC on UCS please visit www.cisco.com/go/uc-virtualized.

Filed under: Collaboration | Tagged: , , , | Leave a Comment »

« Previous PageNext Page »
Follow

Get every new post delivered to your Inbox.