Cisco8540 Kenya

 

Cisco8540 Wireless Controller Kenya

The Cisco8540 Wireless Controller Kenya provides centralized control, management, and troubleshooting for high-scale deployments in service provider and large campus deployments. It is optimized for 802.11ac Wave 2 performance

Category:

Description

Cisco8540 Wireless Controller Kenya

The Cisco8540 Wireless Controller Kenya provides centralized control, management, and troubleshooting for high-scale deployments in service provider and large campus deployments. It is optimized for 802.11ac Wave 2 performance offering flexibility to support multiple deployment modes in the same controller: for example, centralized mode for campus, Cisco FlexConnect mode for lean branches managed over the WAN, and mesh (bridge) mode for deployments where full Ethernet cabling is unavailable. As a component of the Cisco Unified Wireless network, Cisco8540 Wireless Controller Kenya provides real-time communications between Cisco Aironet APs and Cisco Catalyst APs, the Cisco Prime Infrastructure, and the Cisco Mobility Services Engines, and is interoperable with other Cisco controllers.

The Cisco Digital Network Architecture (Cisco DNA) is an open and extensible, software-driven architecture that accelerates and simplifies your enterprise network operations. The programmable architecture frees your IT staff from time-consuming, repetitive network configuration tasks so they can focus instead on innovation that positively transforms your business. SD-Access, as part of Cisco DNA, enables policy-based automation from edge to cloud with foundational capabilities. Cisco DNA Assurance, also part of Cisco DNA, provides a single source to monitor, modify, and manage your network and application data. Optimized for 802.11ac Wave 2 performance, the intent-driven Cisco DNA ready Cisco8540 Wireless Controller Kenya is a highly scalable, service-rich, resilient, and flexible platform that enables next-generation wireless networks for medium-sized to large enterprise and campus deployments

Features

  • Intent-driven programmability and streaming telemetry.
  • Subsecond access point and client failover for uninterrupted application availability.
  • Extraordinary visibility into application traffic, using Cisco Application Visibility and Control (AVC), the technology that includes the Network-Based Application Recognition 2 (NBAR2) engine, Cisco’s Deep Packet Inspection (DPI) capability. This allows to mark, prioritize, and block to conserve network bandwidth and enhance security. Customers can optionally export the flows to Cisco Prime Infrastructure or a third-party NetFlow collector.
  • Embedded wireless Bring-Your-Own-Device (BYOD) policy classification engine that allows classification of client devices and application of user group-based policies.
  • Deployment of guest access and Bonjour and Chromecast services in centralized deployments.
  • Software-defined segmentation with Cisco TrustSec® technology, reducing Access Control List (ACL) maintenance, complexity and overhead.
  • Integrated Cisco CleanAir® technology, providing the industry’s only self-healing and self-optimizing wireless network.
  • Wi-Fi Alliance Passpoint (Hotspot 2.0) for mobile data offload.
  • Network-based mobility management with Proxy Mobile IPv6 Mobility Access Gateway (MAG) and eGRE support for integration with cellular data networks.
  • Simplified GUI wizard for quick setup and intuitive dashboards for monitoring and troubleshooting.
  • Cisco DNA and SD-Access Wireless, as well as Cisco DNA Assurance.

SD-Access Wireless

SD-Access Wireless is Cisco’s next-generation architecture for enterprise networks. It is the industry’s first policy-based automation from the edge to the cloud. It enables network access in minutes for any user or device to any application without compromising on security. SD-Access Wireless enables policy-based automation for wired and wireless, automated provisioning of wired and wireless networks, group-based policy for users and connected devices, and a distributed wireless data plane for campus deployments. In addition, all clients roams are treated as Layer 2 roams across the network for distributed traffic

Cisco DNA Analytics

Cisco DNA Analytics and Assurance offers comprehensive network visibility. Cisco8540 Wireless Controller Kenya collects data from users, devices, and applications to proactively identify problems. Network analytics and automation help IT quickly resolve issues, so you can increase availability and deliver a better user experience

Scalability and performance

Cisco8540 Wireless Controller Kenya is optimized to enable 802.11ac Wave 2 next-generation networks. Consolidate multiple controllers into one controller with support for up to 6000 access points and 64,000 clients with a single point of touch

  • 40-Gbps throughput
  • 6000 access points
  • 64,000 clients
  • 4096 VLANs
  • 100 access points in up to 2000 Cisco FlexConnect groups

RF management

Proactively identifies and mitigates signal interference for better performance. Cisco8540 Wireless Controller Kenya provides both real-time and historical information about RF interference affecting network performance across controllers, through system-wide integration with Cisco CleanAir Technology

Multimode with indoor, outdoor mesh access points

  • Versatile controller with support for centralized, distributed, and mesh deployments to be used at different places in the network, offering maximum flexibility for medium-sized campus, enterprise, and large branch networks
  • Centralized control, management, and client troubleshooting
  • Seamless client access in the event of a WAN link failure (local data switching)
  • Highly secure guest access
  • Efficient access point upgrade that optimizes the WAN link utilization for downloading access point images
  • Cisco OfficeExtend technology that supports corporate wireless service for mobile and remote workers with secure wired tunnels to indoor Cisco Aironet access points supporting OfficeExtend mode

 Comprehensive end-to-end security

  • Offers Control and Provisioning of Wireless Access Points (CAPWAP)-compliant Datagram Transport Layer Security (DTLS) encryption on the control plane between access points and controllers across remote WAN links
  • Management frame protection detects malicious users and alerts network administrators
  • Rogue detection for Payment Card Industry (PCI) compliance
  • Rogue access point detection and detection of denial-of-service attacks

End-to-end voice

  • Supports unified Cisco Communication for improved collaboration through messaging, presence, and conferencing
  • Supports all Cisco Unified IP Phones for cost-effective, real-time voice services

Fault tolerance and high availability

  • Subsecond access point and client failover for uninterrupted application availability
  • Redundant 1 Gigabit Ethernet or 10 Gigabit Ethernet connectivity
  • Solid-state device-based storage – no moving parts
  • Optional redundant, hot-swappable power supply with no incremental system downtime
  • Enhanced system uptime with fast system restarts

Cisco Enterprise Wireless Mesh

Cisco8540 Wireless Controller Kenya allows access points to dynamically establish wireless connections without the need for a physical connection to the wired network. Available on select Cisco Aironet access points, Enterprise Wireless Mesh is ideal for warehouses, manufacturing floors, shopping centers, and any other location where extending a wired connection may prove difficult or aesthetically unappealing

WLAN express setup

Cisco8540 Wireless Controller Kenya packs simplified GUI wizard for quick setup and intuitive dashboards for monitoring and troubleshooting

High-performance video

Cisco Video-Stream technology optimizes the delivery of video applications across the WLAN

Mobility, security, and management for IPv6 and dual-stack clients

  • Highly secure, reliable wireless connectivity and consistent end-user experience
  • Increased network availability through proactive blocking of known threat s
  • Equips administrators for IPv6 planning, troubleshooting, and client traceability from Cisco Prime Infrastructure

Environmentally responsible

Organizations may choose to turn off access point radios to reduce power consumption during off-peak hours

Specifications

Wireless IEEE 802.11a, 802.11b, 802.11g, 802.11d, WMM/802.11e, 802.11h,802.11n , 802.11k, 802.11r, 802.11u, 802.11w, 802.11ac Wave1 and Wave2, Wi-Fi 6 (802.11ax)
Wired/switching/routing IEEE 802.3 10BASE-T, IEEE 802.3u 100BASE-TX specification, 1000BASE-T. 1000BASE-SX, 1000-BASE-LH, IEEE 802.1Q VLAN tagging, IEEE 802.1AX Link Aggregation
Data Request For Comments (RFC)
  • RFC 768 UDP
  • RFC 791 IP
  • RFC 2460 IPv6
  • RFC 792 ICMP
  • RFC 793 TCP
  • RFC 826 ARP
  • RFC 1122 Requirements for Internet Hosts
  • RFC 1519 CIDR
  • RFC 1542 BOOTP
  • RFC 2131 DHCP
  • RFC 5415 CAPWAP Protocol Specification
  • RFC 5416 CAPWAP Binding for 802.11
Security standards
  • Wi-Fi Protected Access (WPA)
  • IEEE 802.11i (WPA2, RSN)
  • RFC 1321 MD5 Message-Digest Algorithm
  • RFC 1851 ESP Triple DES Transform
  • RFC 2104 HMAC : Keyed Hashing for Message Authentication
  • RFC 2246 TLS Protocol Version 1.0
  • RFC 2401 Security Architecture for the Internet Protocol
  • RFC 2403 HMAC-MD5-96 within ESP and AH
  • RFC 2404 HMAC-SHA-1-96 within ESP and AH
  • RFC 2405 ESP DES-CBC Cipher Algorithm with Explicit IV
  • RFC 2407 Interpretation for ISAKMP
  • RFC 2408 ISAKMP
  • RFC 2409 IKE
  • RFC 2451 ESP CBC-Mode Cipher Algorithms
  • RFC 3280 Internet X.509 PKI Certificate and CRL Profile
  • RFC 4347 Datagram Transport Layer Security
  • RFC 5246 TLS Protocol Version 1.2
Encryption
  • Wired Equivalent Privacy (WEP) and Temporal Key Integrity Protocol-Message Integrity Check (TKIP-MIC) : RC4 40, 104 and 128 bits (both static and shared keys)
  • Advanced Encryption Standard (AES) : Cipher Block Chaining (CBC), Counter with CBC-MAC (CCM), Counter with Cipher Block Chaining Message Authentication Code Protocol (CCMP)
  • Data Encryption Standard (DES) : DES-CBC, 3DES
  • Secure Sockets Layer (SSL) and Transport Layer Security (TLS) : RC4 128-bit and RSA 1024- and 2048-bit
  • DTLS : AES-CBC
  • IPsec : DES-CBC, 3DES, AES-CBC
  • 802.1AE MACsec encryption
Authentication, Authorization, and Accounting (AAA)
  • IEEE 802.1X
  • RFC 2548 Microsoft Vendor-Specific RADIUS Attributes
  • RFC 2716 PPP EAP-TLS
  • RFC 2865 RADIUS Authentication
  • RFC 2866 RADIUS Accounting
  • RFC 2867 RADIUS Tunnel Accounting
  • RFC 2869 RADIUS Extensions
  • RFC 3576 Dynamic Authorization Extensions to RADIUS
  • RFC 5176 Dynamic Authorization Extensions to RADIUS
  • RFC 3579 RADIUS Support for EAP
  • RFC 3580 IEEE 802.1X RADIUS Guidelines
  • RFC 3748 Extensible Authentication Protocol (EAP)
  • Web-based authentication
  • TACACS support for management users
Management
  • Simple Network Management Protocol (SNMP) v1, v2c, v3
  • RFC 854 Telnet
  • RFC 1155 Management Information for TCP/IP-Based Internets
  • RFC 1156 MIB
  • RFC 1157 SNMP
  • RFC 1213 SNMP MIB II
  • RFC 1350 TFTP
  • RFC 1643 Ethernet MIB
  • RFC 2030 SNTP
  • RFC 2616 HTTP
  • RFC 2665 Ethernet-Like Interface types MIB
  • RFC 2674 Definitions of Managed Objects for Bridges with Traffic Classes, Multicast Filtering, and Virtual Extensions
  • RFC 2819 RMON MIB
  • RFC 2863 Interfaces Group MIB
  • RFC 3164 Syslog
  • RFC 3414 User-Based Security Model (USM) for SNMPv3
  • RFC 3418 MIB for SNMP
  • RFC 3636 Definitions of Managed Objects for IEEE 802.3 MAUs
  • Cisco private MIBs
Management Interfaces
  • Web-based : HTTP/HTTPS
  • Command-line interface : Telnet, Secure Shell (SSH) Protocol, serial port
  • Cisco Prime Infrastructure
Interfaces and Indicators
  • 4 x 10 Gigabit Ethernet interfaces or 4 x 1 Gigabit Ethernet interfaces
  • Small Form-Factor Pluggable Plus (SFP+) options (only Cisco SFP+s supported), including S-Class Optics
  • Small Form-Factor Pluggable (SFP) options (only Cisco SFPs supported), including S-Class Optics
  • 1 x service port : 1 Gigabit Ethernet port (RJ-45)
  • 1 x redundancy port : 1 Gigabit Ethernet port (RJ-45)
  • 1 x Cisco Integrated Management Controller port : 1 10/100/1000 Ethernet (RJ-45)
  • 1 x console port : Serial port (RJ-45)
  • LED indicators : Network Link, Diagnostics
Physical dimensions
  • Dimensions (WxDxH) : 18.96 x 30.18 x 3.43 in. (48.2 x 76.6 x 8.70 cm) including handles
  • Weight : 44 lb (19.9 kg) with 2 power supplies
Environmental conditions Air temperature :

  • Appliance operating : 41° to 104°F (5° to 40°C), derate the maximum temperature by 1.0°C per every 1000 ft. (305m) of altitude above sea level
  • Appliance non-operating : -40° to 149°F (-40° to 65°C)

Humidity :

  • Appliance operating : 10% to 90%; noncondensing at 82°F (28°C)
  • Appliance non-operating : 5% to 93% at 82°F (28°C)

Altitude :

  • Appliance operating : 0 to 3,000m (0 to 10,000 ft.)
  • Appliance non-operating : 0 to 12,192 m (0 to 40,000 ft.)

Electrical input :

  • AC input frequency range : 47 to 63 Hz
  • Input voltage range :
    • Minimum : 90 VAC
    • Maximum : 264 VAC
  • Maximum power :  538W
  • Heat dissipation : 1836 BTU/hr

Sound power level measure :

A-weighted per ISO 7779 LpAm (dBA), operation at 77°F (25°C) : 59.4

Regulatory compliance CE Markings per directives 2004/108/EC and 2006/95/EC

Safety :

  • UL 60950-1 Second Edition
  • CAN/CSA-C22.2 No. 60950-1 Second Edition
  • EN 60950-1 Second Edition
  • IEC 60950-1 Second Edition
  • AS/NZS 60950-1
  • GB4943 2001

EMC – Emissions :

  • 47CFR Part 15 (CFR 47) Class A
  • AS/NZS CISPR22 Class A
  • EN55022 Class A
  • ICES003 Class A VCCI Class A
  • EN61000-3-2 EN61000-3-3 KN22 Class A
  • CNS13438 Class A

EMC – Immunity :

  • EN55024
  • CISPR24
  • EN300386
  • KN24

 

Yealink CP960 Conference Phone Kenya