D-Link Webinar

Wireless Switch
 Wireless Switching

Contents
 Challenges of Legacy WLAN Management
 Trend of Convergence
 D-Link Unified Access System Solution
 Deployment modes
 Standalone and centrally managed Aps
 Self healing wireless network
 Fast roaming
 Captive portal
 Projects
 Challenges of Legacy WLAN
Management

Connectivity Security
How do I guarantee the coverage? How to authenticate 100~1000+ wireless users?
Consistence of security policy?
Rogue AP?

Settings on each AP
SSID
RF/Channel
Security
QoS
……

VoIP
Management Roaming across L2/L3 network?
AP configuration/Firmware upgrade? Performance?
Change management?
 Invisible WLAN

Channel overlap causes

performance down 50%

Channel 1
Channel 1

Channel 6


Channel 6 Channel 6

Coverage hole
Rogue AP –
Power level is too weak RF interference
Security breach
 Trend of Convergence

 Customers are looking for:

• Cutting-edge Technology
• Unified Wired & Wireless Access System
• United Management & Security
• Centralized AP & Client Management
• Rogue AP Detection/ Mitigation
• Better Connectivity
• Auto Channel/Power adjustment
• VoIP Application
• Seamless Roaming
 D-Link Unified Access System

 D-Link Unified Access System Solution Provides:

 Unified Switching (=Wireless Controller + L2+ Switch)
 Centralized Policy Management
 Automatic Power/Channel Adjustment
 AP Load Balancing
 Fast L2/L3 Roaming
 Rogue AP Management
 Logging for Dynamic RF Status
Switch DWS-3024L / 3024 DWS-4026
24-port Gigabit L2+ PoE Unified Switch
Description 24-port Gigabit L2+ PoE Unified Switch
and 2 10GE Slots
DWL-3500AP / DWL-8500AP
Access Point DWL-8600AP
DWL-8600AP

24 / 48 per switch 64 per switch

Max # of AP 96/192 per Peer Group 256 per Peer Group
Note PoE Capable
Hardware Basis

DWL-3500AP DWL-8500AP
• Support 802.11g • Support 802.11 a/g dual
Wireless LAN band Wireless LAN
• Two 5dbi antennas • Two 5dbi a/g dual band
• Support 8 SSIDs antennas
• Support 802.3af PoE • Support 16 SSIDs
• Support 802.3af PoE

DWL-8600AP
• Support 802.11n Wireless LAN
• Up to 300Mbps wireless throughput
• Four-antenna design using MIMO Technology
• Support up to 32 SSIDs
• Support 802.3af Power over Ethernet
 Deployment Modes

 Overlay Solution – Wireless Controller Deployment

• Deploy deeper into existing network infrastructure to protect current investment in
network infrastructure
 Deployment Modes

 Unified Solution – Converged Edge Deployment

 Deploy at the network edge for greatest scalability, and with all the benefits of Unified
Switching
 Full GbE speed for 802.11n
 Centralized Access Point
Management
 Central Policy Control
 The Profile configuration is applied to a managed AP on the event such as when an AP initially
transitions to managed mode, or when AP is reset. Users hence can enjoy the convenience of one-
time configuration.
 The security is ensured owing to the applied configuration won’t be saved when AP is power off.
Radius Server
(Optional)

L2 or L3
Network
Firmware dispatch
Profile dispatch
• RADIUS server settings
• Security settings
• Radio configuration
• SSIDs, VLAN & Tunnel setting
• QOS configuration
 Centralized Access Point
Management & Roaming

4 1
AP-1 3 Unified
Switch
2
5
AP-2

Management Process
1. AP-1 is attached to a switch port and switch will discover AP-1 automatically
2. Network admin can determine whether AP-1 is a rogue or a legal AP to be management.
3. Network admin can perform central management of AP, including configuration /
firmware download, security and RF control.
4. All clients are authenticated by the Central Policy Control on switch.
5. Roaming from AP-1 to AP-2 without re-allocate IP and re-authentication to keep
connection alive
 Unified AP – Standalone mode

 Start from Standalone mode

LAN
 L2 Manually set up the following
- SSIDs
Switch
- User Authentication
- Power level
- QoS
- etc

 Unified AP –
Can work in both standalone and managed mode
Provides upgrade /deployment flexibility
 Unified AP – Standalone mode

Access Point web user interface in stand-alone mode

 Unified AP – Centrally Managed

 Start from Standalone mode

 Migrate to Managed mode with Unified Switch
LAN

 Unified Switch
L2 Switch Manually set up the following
- SSIDs
- User Authentication
- Power level
- QoS
- etc

Centralized AP profile dispatch

Centralized security policy enforcement
Centralized wired/wireless VLAN/QoS/ACL control
Auto Power/Channel adjustment
AP Self healing & Fail-over
Fast Roaming
 Unified AP – Centrally Managed

Discovering the Aps on the Wireless Switch

 Unified AP – Centrally Managed

Access Points already managed by the Wireless Switch

AP Discovery

Requirements for discovery

• IP address
• Route between devices
• Hardware and software must be compatible.
Multiple discovery methods
Optional Authentication
• Configure a pass phrase on the AP and on the switch so that
only authenticated APs can associate with the switch.
• Configure RADIUS authentication
 Automatic Channel/Power Adjustment

• Channels and Power will automatically be adjusted on any new event in the system such as an
AP being added or being removed, or the switch can be programmed to automatically readjust
channels and power at certain times (i.e. 2:00am each day) of the day or upon a certain interval
(i.e. every 6 hours)

Channel 48
Channel 24
3. Changes to
Channel 18 2. Rogue AP
Or Radio interference
Channel 48

New AP
Channel 36
Channel 52

1. When inserting new AP, the AP scans the RF area for occupied channels and selects
a channel from the available non-interfering, or clear channels.
 Automatic Channel/Power Adjustment

• Automatic power uses a proprietary algorithm to automatically adjust the RF

signal to broadcast far enough to reach wireless clients, but not so far that it
interferes with RF signals broadcast by other APs.
 Self-Healing Wireless Network

 Fail-Safe
• When a Managed AP is powered down, the power of its neighboring AP(s) managed by
the same switch is immediately increased by 20%.
• The power level will adjust every pre-configured Interval by sensing neighboring AP
power status.

Failed

 Load Balancing
• Unified switch performs load balancing across the switch-managed access points on
per radio basis. If the bandwidth utilization reaches a configured threshold then the new
client associations are rejected.
 Self-Healing Wireless Network

• Load Balancing
 Unified Switch performs load utilization across the switch-managed access points on per radio
basis based on AP’s utilization rate.
 The APs report bandwidth utilization to the Unified Switch regularly
 If the bandwidth utilization reaches a configured threshold then the new client associations are
rejected. The new client will be forced to connect to an overlapped neighbor AP with lower
utilization. Default
Utilization rate increased Unified Switch bandwidth
utilization: 60%
Reach utilization threshold!!!
User4 rejected Utilization rate for
Force to
AP-2: 10%
connect to Ap-2 AP-2
AP-1

user4
User4 connect to AP-2

user4Attempt to connect AP-1

 Automatic Power and Channel mgmt –
RF Management

RF Configuration: Channel Plan and Power Adjustment

 Automatic Power and Channel mgmt –
Profile Settings

Load balancing and initial power configuration on each different profile.

 Virtual Access Points - MSSID

V1 V2 V3 V4

SSID_1 SSID_4
V1 V4

SSID_2 SSID_3
V2 V3

• By utilizing VLAN setting, clients on different SSID

can access different resources
 Virtual Access Points - MSSID

VLAN, security and QoS definition per SSID

 Multiple profiles

 Multiple SSIDs can be configured on an AP.

 A different profile can be assigned to each AP.

SSID: SSID: SSID: SSID:

Sales Sales Technical Technical
VoIP VoIP VoIP VoIP

SSID: SSID: SSID: SSID:

Sales Sales Technical Technical
VoIP VoIP VoIP VoIP

Sales Department Network Technical Department Network

VoIP Network
 Multiple profiles

Each profile can have assigned different SSIDs.

 Multiple profiles

Each profile can have assigned different SSIDs.

 Applying Profiles

Changes sent to APs only after updated profile is manually re-applied

to all Aps belonging to the profile
 Fast Roaming

 Ideal for VoIP Application

 Fast L2/L3 Roaming
 D-Link’s Unified Switch can support fast roaming across the APs.
 This fast roaming can be supported with in a subnet (Layer 2) or across
subnet boundaries (Layer 3).
Unified Switch

Subnet A Subnet B

AP-1 AP-2 AP-3

L2 Roaming
L3 Roaming
 Fast Roaming

• Inter-Switch Roaming
 For DWS-3024, 4 Peer Switches in the same Roaming group
 For DWS-4026, 8 Peer Switches in the same Roaming group
 Not only can DWS Series support fast roaming between APs being managed by a
particular switch, but can support roaming between switches
 DWS-3024 cluster supports up to 192 APs
 DWS-4026 cluster supports up to 256 APs

L2 or L3 Inter-Switch Roaming

Note: The maximum number of managed AP only applies on APs in THE SAME ROAMING GROUP.
There is no constraint for the number of managed APs at a site if not for roaming. Still, each DWS-3024
can manage up to 48 APs and each DWS-4026 up to 64 APs
 Captive Portal

For hospitality projects which need captive portal welcome page.

• Authentication through web interface

• Local or Radius user database
• Multiple captive portals (up to 8)
• Each captive portal can be assigned to one or more SSID

• Users does not have any local or internet resource access until has
passed web authentication.
 Captive Portal

Easy captive portal definition

Captive Portal
Comprehensive Statistics

Associated
Client Status
on Web GUI
 Enhanced Security Enforcement

Complete Security Features

 Wireless
 Managed AP MAC list
 Wireless Client MAC list
 WEP (Static/Dynamic)
 WPA Enterprise/Personal
 WPA2 Enterprise/Personal
 Wired
 ACL
 802.1X
 DoS Control
 Broadcast Storm Control
 Port Security
 Radius / TACACS+
 Complete Switching Features

L2 QoS
• IGMP Snooping • 802.1p
• 8021.D/802.1w/802.1s Spanning • DSCP
Tree • CoS based on Switch
• 802.3ad Link Aggregation Port/VLAN/TCP UDP
• Port mirroring port/TOS/MAC/IP
• 802.1Q VLAN
• GVRP Security
• ACL
L3 • 802.1X
• Floating Static Route • Port Security
• VLAN Routing
• VRRP Management
• DHCP Server
• Etc…
 Key Points

 Cutting-edge Technology
 Unified Switch = Wireless Controller + Powerful Switching capability
 Unified AP
 24 Gigabit ports
Ready for future 802.11n upgrade
Replace current 10/100 switch with wireless management capability
PoE support
 Ease of Management / Flexible deployment
 Self-Healing Wireless Network
 Medium to Large WLAN deployment is possible
 Up to 192/254 APs, 8000 users in a roaming group
 Per switch - 1024 tunneled users, 2048 non-tunneled users
 Up to 8192 users on 4 peer switches
 VoIP Application
 Fast L2/L3 Roaming

 D-Link – Years of number 1 in Wireless industry

Target Customers

 University / Schools

 Hospitals & distributed clinics

 Manufacturing floors / Warehouse

 Airport

 Business and Convention Centers

 Any enterprises who need centralized WLAN management

or VoIP application.
 Successful Stories: 1x1 eduCAT

1x1 eduCAT project (included on “School 2.0” project) has three main
objectives:

1. Provide a laptop to every student for doing academic tasks.

2. Equipping all classrooms with wireless infrastructure in order to
provide connectivity to students/professors, as well as other
peripherals like WiFi digital blackboards.
3. With the aim of gradually replace students’ paper textbooks by
electronic textbooks
Other Projects

Centro Sanitario
Borbón
Gracias