Академический Документы
Профессиональный Документы
Культура Документы
Cisco Confidential
Reduce Costs
Flexible ways of working boosts productivity
Cisco Confidential
Cisco Confidential
SBNF provides a secure and flexible network infrastructure to deploy other services:
Cisco Unified Communications
IP telephony and related voice services SBNF is designed for seamless addition of Cisco Unified Communications
Wireless LAN
Integrated in the SBNF solution
Optionally - Can be deployed later
Cisco Confidential
Main office
Primary location, provides most of the shared data resources (files, databases, business servers, web servers, and e-mail servers) as well as centralized networking resources
Remote office
Offices other than the main office are called remote offices
Home office
A home office is located at an employees residence
Mobile worker
An employee who securely accesses the main office through the Internet by establishing a VPN connection from a laptop or other device
Cisco Confidential
Based on Cisco Small Business Series products Covers wired and wireless LAN deployment
options
Ideal for price-sensitive customers who need full
Cisco Confidential
Small Business Network Foundation (SBNF) Scalability Network products used Up to 100 users, 5 remote offices Small Business Series products
Secure Network Foundation (SNF) Up to 100 users, 5 remote offices Cisco Catalyst 2960, 3560/ 3560-X, 3750/3750-X switches, Cisco 800/1900/2900/3900 ISRs
Advanced Secure Network Foundation (ADVSNF) Up to 250 users, 20 remote offices Cisco Catalyst 2960, 3560/3560-X, 3750/3750-X switches, Cisco 800/1900/2900/3900 ISRs, Cisco ASA 5500 Series
Main Office, Remote Office, Home Office, and Mobile Worker On WAN router Site-to-site IPsec SSL VPN No Yes No n/a Part of SBNF design On WAN router Site-to-site IPsec VPN, IPsec/GRE, Easy VPN, SSL VPN Yes Yes No n/a Integrated security or dedicated security appliance DMVPN Easy VPN, SSL VPN Yes Yes Yes Yes (optional)
LAN high availability using switch stacks Dual WAN links option for load sharing, failover Dual WAN routers for load sharing, high availability Dual security appliances for high availability Wireless LAN
Cisco Confidential
Cisco Confidential
Cisco Confidential
Cisco Confidential
10
Multiple switches
Traffic from multiple access switches is aggregated by an aggregation switch Higher LAN scalability and performance Reduces cabling if users are located in different areas of the office Enables the router to focus on secure routing functions
Cisco Confidential
12
Cisco Confidential
13
Cisco Confidential
14
Up to 4 DMZ links
Configure up to 4 Configurable 10/100/1000 ports as DMZ ports
Cisco Confidential
15
Firewall protection
Prevents unauthorized access to network connected devices Helps maximize network uptime by mitigating DoS attacks
security
Network Infrastructure Protection
Prevents unauthorized access to network devices
LAN Security
Helps protect from inside the network Port Security limits the number of end user devices that can be connected to a switch port BPDU Guard prevents a malicious user from attaching a real or simulated switches to the LAN Storm Control limits the effect of broadcast, multicast, or unknown unicast traffic storms in the LAN 802.1x Authenticated Access only authenticated users are connected to the LAN (Optional) IP Source Guard, and Dynamic Arp Inspection to ensure that only valid users are sending traffic to the LAN (Optional)
Cisco Confidential
16
Cisco Confidential
17
classes of traffic
SBNF enables QoS on each network device
Cisco Confidential
18
Home Office
Remote IPSec VPN, SSL VPN (AnyConnect)
Mobile Worker
SSL VPN (AnyConnect) on laptop Traffic is encrypted and routed through the Internet Main office router acts as the VPN gateway
Cisco Confidential
19
Wireless LAN, as part of SBNF, can be built seamlessly over SBNF wired infrastructure
Uses small business specific wireless products Covers main office, remote office, home office Supports data and voice Wireless router with integrated access point (AP)
Ideal for small deployments when the routers area of wireless coverage is sufficient
Cisco Confidential
20
ISA5xxW
ISR1941W
Cisco Confidential
21
coverage is adequate)
Security
First line of defense is encryption: WPA2 with AES Appropriate level of authentication per business requirements
Cisco Confidential
22
Suitable for small deployments Cost effective, no WLAN controller Multiple APs placed in coverage area Router may have an integrated AP as well All standalone AP deployments use single data
is adequate
Cisco Confidential
23
physically moves so that its radio associates with a different AP with a stronger signal
Layer 2 roaming requires each AP to have
Cisco Confidential
24
Cisco Confidential
25
Spend more time managing business and less time managing technology
Employees are more productive and happy
Pre-sales assets
Solution bill of materials and product selection guide Solution profile Overview presentation
www.cisco.com/go/smartdesigns/sbnf
2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 27
Thank you.
Cisco Confidential
28