收藏
下载资源 加入VIP免费专享

教育行业解决方案.ppt

上传人:本田雅阁 文档编号:2547097 上传时间:2019-04-06 格式:PPT 页数:55 大小:5.68MB
返回 下载 相关 举报
教育行业解决方案.ppt_第1页
第1页 / 共55页
教育行业解决方案.ppt_第2页
第2页 / 共55页
教育行业解决方案.ppt_第3页
第3页 / 共55页
亲,该文档总共55页,到这儿已超出免费预览范围,如果喜欢就下载吧!
资源描述

《教育行业解决方案.ppt》由会员分享,可在线阅读,更多相关《教育行业解决方案.ppt(55页珍藏版)》请在三一文库上搜索。

1、教育行业,魏衡 System Engineer,教育行业,高校 普教(教育城域网、中小学、幼儿园) 外国学校,Traditional Deployment Models and Costs,Internet,PSTN,PBX,MCM,ISDN,Router,Data,Voice,CCTV / Cable TV,Video Conferencing,Clocks & Bells,Physical Security,Surveillance,Energy Management,Overhead Paging,Fire,The Power of Convergence,Data,Voice,Vide

2、o Streaming,Video Conferencing,PA (Intercom),Video Monitoring,Building Controls,Clocks and Bells,IP Network,Overview of SCCP and SIP Phone Models in CCM 5.0,1,外国学校,外国学校发展趋势,One students one MacBook Every students using WLAN to access network Application including: Video Streaming, File sharing, Hand

3、outs Distribution, Podcast, Photo Sharing, etc.,SAS 浦西校区 (Core-Distribution-Access),10/100/1000M POE Access Switch,LWAP,Rising Firewall /Anti Spam/ IPS,汇聚层,IP Phone,PC,WLAN Controller,NAC Manager,NAC Appliance,1000Mbps Single Mode Fiber,PSTN,Pudong Campus,语音网关,Call Manager,核心交换机,1000Mbps CAT6,1000Mb

4、ps CAT6,10Gbps Single Mode Fiber,1000Mbps CAT6,1000Mbps CAT6,30Mbps ATM,To Pu dong Campus,语音电话,小学、初中、高中、其他,Laptop with IP SoftPhone,WiFi IP Phone,WiFi PDA/PPC,10/100/1000M POE 接入交换机,Multi media Device,WiFi Cell Phone,Telepresence LiveMeeting,出口区,Cisco Works CLWMS,IP Phone Extension Mobility,EMAIL,Em

5、ergency Response (Optional),WLAN WCS,IP电话服务器区,Network Management Area,Internet,1000Mbps Single Mode Fiber,LDAP,网管区,SAS 浦东校区 (Core-istribution-Access),10/100/1000M POE Access Switch,LWAP,Firewall/SSL VPN,Distribution Layer Switch,IP Phone,PC,WLAN Controller,NAC Manager,NAC Appliance,1000Mbps Single M

6、ode Fiber,Call Manager,Core Layer Switch,1000Mbps CAT6,10Gbps Single Mode Fiber,1000Mbps CAT6,30 Mbps ATM,To Puxi Campus,Elementary , Middle , High School, and Others,Laptop with IP SoftPhone,WiFi IP Phone,WiFi PDA/PPC,10/100/1000M POE Access Switch,Multi media Device,WiFi Cell Phone,Telepresence Li

7、veMeeting,Faculty out of Campus,IP Phone Extension Mobility,Emergency Response (Optional),UC/IP Telephony Server Area,Network Management Area,Internet,1000Mbps Single Mode Fiber,Puxi Campus,分布层交换机 Catalyst4900M,冗余电源 支持组播, IPv6, 基于硬件的ACL 交换容量:320 Gbps 转发能力: 250Mpps 最大支持24个万兆、40个千兆+8个万兆 Superior Quali

8、ty of Service, Advanced Security,接入交换机- 带 POE 供电 Catalyst3560E-24PD,所有端口支持802.3af的15.4W PoE 第一个支持802.3at 的交换机 , 可以支持最大到24W 支持组播, IPv6, 基于硬件的ACL 交换容量68-Gbps线速 包转发能力: 90 Mpps Superior Quality of Service, Advanced Security 128 MB Dram,64M Flash Flexlink (Link Redundancy with Convergence Time less than

9、100ms),Catalyst 3560E-24PD,SAS Wireless Topolgoy,WiSM,FTP Server,Catalyst6509,Catalyst4900,Catalyst4900,Catalyst3560E,Catalyst3560E,AP1140,802.11BG(11n draft2.0),802.11BG(11n draft2.0),WiSM,AP1140,Cisco Aironet1140 接入点,集成天线 2.4 GHz (b/g/n) 10/100/1000 以太网口 Console 口 安全锁 金属包塑料壳的设计 支持802.3af PoE,企业级设计

10、,Aruba,Motorola,Cisco,802.11n 技术原理,Voice over 802.11n 802.11abg Performance Still Benefits from 802.11n,11g,VoWi-Fi with 11g,FLOOR PLAN,5,0,MOS Score,11n,VoWi-Fi with 11n,FLOOR PLAN,5,0,MOS Score,Proposed SAS IP Telephony/ UC System Topology,ATM/ Intranet,New Core Layer Switch Cat6509,Cisco Voice Ga

11、teway,PuXi Campus,PuDong Campus,E1 Trunk,PSTN,Analog Trunk Line,30M,30M,New Core Layer Switch Cat6509,Call Manager Server-A,Unity Connection Server,Groupwise7.0 Email,LDAP,Laptop with IP SoftPhone,WiFi IP Phone,WiFi PDA/PPC,WiFi Cell Phone,Laptop with IP SoftPhone,Wi-Fi IP Phone,WiFi PDA/PPC,WiFi Ce

12、ll Phone,Emergency Responder/Presence or Other UC Application (Optional),Call Manager Server-B,Tele presence LiveMeeting(Optional),Tele presence (Optional),555”,Call Manager7.0,316”,Cisco Unity Connection,300”,Cisco Unified Presence,326”,Tele presence,Recommended IP Phone,广播系统: Berbee InformaCast,和已

13、有的广播系统集成,通过IP系统统一管理广播系统 IP电话机可以作为一个广播系统的终端 可以部署在室内、室外,可以根据不同的情况,向不同的区域广播 系统管理员只需要管理一套系统即可 InformaCast Demonstration,http:/ InformaCast 与IP电话系统的集成,Physical Security,IP Cameras,Analog,Video Surveillance Manager Multiservices Platforms,Access Control,Integrated Comms,Policy Engine,Web Client,Legacy Int

14、egration,G,Capture,Store,View,Respond,Video & Device Capture,Response,3rd Party Analog and IP Cameras,Video Surveillance, Access Control and Incident Management,Safety & Security,Cisco Physical Security: Video Surveillance, Access Control, Incident Response,Cisco Video Surveillance Manager (VSM),Des

15、ktop,Integrated Services Router Video Media Management and Storage,Cisco IP Cameras,Analog,Digital Media Signage,Radios, Mobile Phones, IP Phones,Cisco Access Control,Physical Access Manager Multiservices Platform,IPICS Multiservices Platform,Overview of SCCP and SIP Phone Models in CCM 5.0,2,普教,CNC

16、,市教委,Cernet2,10G,GE,Catalyst6509,Catalyst6509,Catalyst6509,Catalyst6509,Catalyst3750,Catalyst3750,Catalyst3750,Catalyst3750,Catalyst3750,Cisco7604,CiscoASA5550,CiscoASA5550,CiscoASA5550,学校区域 2,学校区域 3,学校区域 1,信息中心局域网,xx区教育局数据中心,图例:,FE,XX区教育城域网网络拓扑图,网管,xx,xx,xx汇聚中心,xx镇汇聚中心,XX教育局网络中心,接入层,汇聚层,核心层,xx汇聚中心,

17、xx镇汇聚中心,100MBase-TX,1000MBase,Cisco6500系列,Cisco3560系列,Cisco 7206 (原有设备),F5 2400 (原有设备),中软 4120 (原有设备),教育网出口,电信网出口,10000MBase,xx镇汇聚中心,Overview of SCCP and SIP Phone Models in CCM 5.0,3,高校,高校的机会,多校区互联 核心、汇聚网络升级 汇聚层增加业务功能 有线接入 无线接入 出口限制,四校区全网状互联,校区互联方案-网状结构,Virtual Switch System Introduction,Virtual Sw

18、itch System is a new technology break through for the Catalyst 6500 family,Catalyst 6500 Virtual Switch,校区互联方案-采用虚拟交换机技术简化网络结构,教科网,校校通,电信,xx校区,xx校区,核心层设备,汇聚层设备,接入层设备,出口层设备,SCE,ASR1002,DR.,Catalyst6500,Catalyst6500,教科网,校校通,电信,xx校区,xx校区,MPLS/VPN (L2/L3),L2 VPN,学生宿舍连接 一卡通备份 数据中心,教科网,校校通,电信,徐汇校区,奉贤校区,硬件

19、IPv6 (双栈、TUNNEL、6VPE,与MPLS同时支持),IPV6双栈 6VPE,主要采用双栈的方式 有MPLS/VPN的地方可以采用6VPE将双栈节点连接起来,组播-电视直播、视频监控,T1,WAN,Router-D,Receiver Group 2,Receiver Group 1,Video Server,4MB MPEG Video Streams,Router A,Router B,Router C,DHCP Option 82 Operation,DHCP Client,DHCP Client,DHCP Server,1,Clients Broadcast for DHCP

20、Requests,IP Helper Takes DHCP requests and unicast to DHCP Server,2,Option 82 Append Remote ID + Circuit ID,3,DHCP Server If Option 82 aware, use appended information,4,Based on appended information, return IP Address, and policies,5,Strip-off option 82, implement policy and forward IP address assig

21、nment,接入交换机把交换机的MAC地址和交换机端口插入到DHCP请求中,发送到DHCP服务器,DHCP服务器根据这些信息给客户端分配地址,动态ARP 检测,我的网关是 10.1.1.1,IP: 10.1.1.1,10.1.1.2,我是你的网关: 10.1.1.1,未经请求的 ARP 会改变终端设备的MAC 到 ARP 表,作用: 保持一个包含IP和MAC地址关联的捆绑表 在开启了DAI的环境中,擅自静态配置地址的用户不能上网,只有DHCP获得地址的用户才能上网,MAC: 0000.0000.0001,部署方式,DHCP服务器,DAI ACL DHCP Snooping Local Prox

22、y ARP,PVLAN BC、MC DHCP Snooping DHCP Option82,CAT3560,CAT2950,Internet Cernet,流量控制 WEB认证 QoS策略,MAC地址管理,Wired Ethernet End Points,Catalyst Switch Ethernet Port,802.1X Client,Valid MAC Address,Guest User,ACS/AAA,NAC WebAuth,EAP,MAB,URL,Employee,Contractor,Valid Asset,EAP,MAB,URL,One configuration: all

23、 use cases Concurrent Auth: highly desired behavior,802.1X Timer,MAB Timer,Flexible Authentication,Multi Authentication,Today One user and one phone may authenticate to a port Allows a set of users to authenticate to a switch port This includes authentication by various methods including MAC Auth By

24、pass, 802.1x, Web Auth Downloadable per-user ACL support,802.1x,WEB Auth,MAB,xx大学无线网络建设时间轴,覆盖范围-xx校区,2004年,覆盖范围-xx校区,2006年,覆盖范围-xx校区,2007年,网络拓扑图,多种覆盖方式相结合,传统室内蜂窝式布点 高带宽需求、高用户密度区域(教学楼,会场) 室外覆盖 定向覆盖室外(广场,草坪) 定向覆盖室内(计算机系,第三教学楼) “3G/GSM/PHS+WLAN” 合路天馈系统 用于低用户密度、高覆盖难度室内区域 (光华楼、新闻学院、经济学院等),特色需求,特定AP只允许特定用

25、户接入 LDAP用户信息 用户带宽限制 定制化的认证页面(添加验证码),广域网出口优化,Branch Office,Headquarters/Data Centers,ISP1/WAN1,ISP2/WAN2,BR,MC/BR,MC/BR,MC,ISP1/WAN1,ISP2/WAN2,BR,BR,Components BRBorder Router (Forwarding Path) MCMaster Controller (Decision Maker),Small Office,ISP1,WAN,内嵌和只接收配置,只接收配置 千兆位以太网: 利用分光器/端口映射 快速以太网:端口映射 只限流量监视,内嵌配置 引擎安装在数据路径中 监视和控制流量,分光器,分光器,用户,网络,总体流量情况,TCP,BT,P2P,E-Donkey,WEB,UDP,前十位网站,

展开阅读全文
相关资源
猜你喜欢
相关搜索

当前位置:首页 > 其他


经营许可证编号:宁ICP备18001539号-1