Better Understand Enterprise Wi-Fi Technologies

Aruba wireless solution

Better Understand Enterprise Wi-Fi Technologies

Aruba wireless solution

Aruba wireless solution provides network access for employees, internet access for guests, and IoT devices’ connectivity. Regardless of the location within the premises, clients have the same connection quality.

Advantages of this solution are:

  • Employee productivity increases via high-quality connection independent of their location and movement.
  • Easy connectivity for hard to wire locations.
  • Centralized control and easy wireless network management.
  • Reliable connection and easy spectrum management.

A contemporary mobile environment requires high throughput and connection quality. Clients can use their credentials to connect via multiple devices from any location within the site, which provides small latency during roaming and good network adaptation during routine access point maintenance or unexpected downtime. Higher access point density can support a larger number of client devices and greater reliability.

Aruba Instant

Aruba wireless network solution has two basic models – networks with and without a controller. Aruba Instant is a network architecture without a controller appropriate for smaller environments. Automatic spectrum management provides better environment organization and protection. Aruba Instant cluster distributes certain functions to the access points (AP). It performs election to choose one AP to serve as a virtual controller for the remaining management and control functions.

The network could be managed through a built-in GUI, Aruba AirWave, appliance or virtual solution, or Aruba Central, a cloud management platform.

Management

Aruba ARM and ClientMatch technologies are software functionalities created for enterprise wireless networks. AppRF Technology, together with Intelligent Application Identification, provides exceptional insight into applications present within a wireless network.

Aruba Adaptive Radio Management (ARM) is a technology intended for radiofrequency (RF) management and optimization of WLAN performances even during the highest traffic peaks. It dynamically and intelligently chooses optimal 802.11 channels and signals power levels for each AP and its surrounding. ARM is compatible with all standard users and operative systems and follows IEEE 802.11 standard. It does not require proprietary user software for the best performances. ARM provides roaming with small latency, consistently high performance, and maximum client compatibility in a multi-channel environment. With good spectrum management, ARM achieves appropriate delegation of network resources to data transfer and voice and video applications at any moment. Clients who support different standards (802.11a, 802.11b, 802.11g, 802.11n, i 802.11ac) can function with the highest performances.

ARM functionalities:

  • Voice Aware Scanning functionality prevents AP, supporting active voice session, to scan other channels until that session is over. It significantly increases session quality and allows automatic spectrum management functions.
  • Load Aware Scanning function dynamically adjusts spectrum scanning to maintain constant data transfer in a system with demanding resources when traffic crosses a defined threshold.
  • Network monitoring with ARM system – When ARM is enabled, AP dynamically scans all 802.11 channels regularly and sends network coverage, interference, and intrusion reports to the virtual controller.
  • ARM metrics – ARM calculates coverage and interference for every channel and chooses the one with the best performances and signal strength. Every AP collects other metric data about the channels where ARM is activated to get a proper insight into its health state.

 

ClientMatch technology continually monitors the client RF environment to provide the best band steering, load balancing, and optimal roaming for mobile clients. This function is recommended compared to the legacy band steering technologies that were not performing a transfer of the already connected client from one AP to another. If the client walks out of the AP range or an unexpected interference appears, ClientMatch starts the transfer of the client connection to another AP.

Providing all clients with the appropriate level of service is challenging since modern mobile devices, like smartphones and tablets, tend to choose by themselves the SSID they will connect to regardless of the network quality it is capable of offering. That could have a significant impact on the client experience and general network health. Consequence could be low signal quality, connection to the oversubscribed AP, or a client that is persistently connected to the same AP while moving through space where other APs are present with higher quality connection (sticky client issue).

Aruba worked on improving its roaming techniques to solve such problems, like band steering and 802.11k/v/r, and created the ClientMatch function. This patented RF optimization technology significantly improves performances and allows predictable and consistent connection through the whole WLAN. As a part of the Aruba AI-powered Mobility Solution, ClientMatch continually monitors the state of all client connections and intelligently groups clients for APs optimized for their traffic transport – a special user software is not needed.

Client behavior significantly impacts the WLAN performance. These are some of the contributing factors:

  • Client-based decision-making – Clients usually decide which AP they will connect to, what speed they are going to use, and if they are going to use roaming. Since they do not have an insight into the environment on a system level, they can stay connected to the oversubscribed network. However, there is another one available with a smaller number of users, which can cause lower performance quality.
  • Unpredictable performances – Lower level of system performance decreases user experience quality and increases the number of calls to the IT department asking for support.
  • Client Diversity – Increased number and diversity of mobile and IoT devices using applications that demand larger bandwidth impacts the network’s performance.
  • Sticky client problems and bad roaming algorithms – These problems are visible when clients stay connected to the same AP during roaming, even if they are far away. That leads to performance degradation for every connected client due to the weakening signal caused by large distances and lower data transfer speed.
  • Clients connect to the AP based on signal strength, not load. Besides sticky client issues, devices usually connect to an AP with the strongest signal present in their area, creating a disbalance in network resource usage.

ClientMatch is different from other technologies developed for solving similar issues because it uses the network’s system-level insight to monitor all connected clients continuously, dynamically gathering client data (signal strength, used channel) for every AP without any additional client software. Client data is collected and exchanged between APs for coordination and better decision making in real-time, following changes in the environment. For example, ClientMatch can identify when the user is connected to the oversubscribed AP and steer it to another with a smaller number of connected clients placed in the vicinity.

Advanced capabilities:

  • Video & voice-awarenessClientMatch has insight into active video and voice sessions in their network. That means that the clients who have active Skype calls will stay connected to minimize their activities.
  • Band Steering – Client with dual-band capabilities will be steered from 2.4GHz to 5GHz band with the better signal strength to improve the number of available channels, signal-to-noise ratio, and data transfer speed.
  • Client steering – Clients and AP performances are continually monitored to achieve supervision and control functions for support to all user devices.
  • Standard compatibility ClientMatch is operational with all Aruba 802.11n, 802.11ac (W1/W2), and wi-fi 6 APs.

 

Security

WPA3 – Basic WPA standard was issued in 2003. to replace WEP, and the next WPA2 got published a year later. WPA3 was released in 2018. in two basic forms: WPA3-Personal and WPA3-Enterprise. WPA3 brings improvements in general usage of encryption during wireless transfer of data thanks to the Simultaneous Authentication of Equals (SAE) protocol that replaced the Pre-Shared Key (PSK) authentication used in previous WPA versions. That provides better protection for the WPA3-Personal network that uses simpler access passwords. Clients in the network cannot see each other’s traffic even if they all use the same password. Passive surveillance is not possible if a malicious actor monitors exchange and determines the used session keys. Also, it is not possible to decrypt or alter previously recorded communication. WPA3-Enterprise has additional 192-bit protection intended for the organizations that consider data protection particularly important.

Enhanced OpenAruba Opportunistic Wireless Encryption (OWE). OWE is an alternative for Open network. It is based on the same principles and client requirements. Only a click on the network is practically needed for a client to establish a connection. OWE appears as a standard Open network from the client’s perspective since it has an icon without a lock but has encryption built-in. When the client is authenticated to the AP, OWE applies a non-authenticated Diffie-Hellman key exchange.

AppRF TechnologyAruba AppRF has insight into the application level’s environment, differentiating thousands of individual applications, including GoToMeeting, Box, Skype for Business, SharePoint, Salesforce.com. Also, it performs web filtering, including client activity control while they are searching the Internet. AppRF uses a cloud database updated in real-time on the reputation of million web pages protecting users from malicious attacks before they cause unwanted consequences.

Intelligent Application Identification – Aruba uses Deep Packet Inspection (DPI) on the fourth and seventh OSI level. It allows the AppRF function to monitor mobile application usage and performances and optimize the bandwidth, priority, and network routes in real-time, even for encrypted traffic applications. DPI is significant for understanding behavioral patterns that would require a change in network design and capacity during new app identification.

  • Business applications like Box are different from other applications that clients use for personal needs, like Apple Face-Time, even on the same device.
  • IP multicast video traffic and network services like Apple AirPrint and AirPlay are automatically prioritized with additional controls.
  • DPI resolves destination addresses for web traffic to identify individual applications like Facebook, Twitter, Box, WebEx, and thousands of others.
  • For encrypted traffic, Aruba AppRF technology uses heuristics for identification.
  • For applications that are not of a greater purpose for the business environment, AppRF can limit the bandwidth and prevent congestion in a particular location.

 

Quality of Service

Quality of service (QoS) determines priority for different traffic types to form equal distribution of network resources between applications. Since the end user device connection is basic network access, it is essential to make it the first point for traffic control policy application. Traffic needs to be classified and tagged based on previously defined parameters of the corporative network.

 

Guest Wireless Network

Organizations often have a large number of guest users that need network access. That could be clients, partners, vendors, and depending on their needs, they could use different types of devices and spend time in other business space locations. To support the productivity of such a diverse spectrum of users and their specific roles, an appropriate connection through the corporative network is necessary, often in spaces other than lobbies and conference rooms.

The Aruba wireless network’s flexibility provides the formation of appropriate access for employees and guest users through the same infrastructure without reducing environmental security. Guest user traffic is, after passage through APs, placed in a separate VLAN with a strictly defined internet connection, while on firewall level access to all internal recourses can be disabled.

Access control is provided by redirecting guest users to the captive portal, where clients can enter their credentials. Portal could be hosted on Aruba virtual controller or an external device.

Guest wireless network functionalities are:

  • Internet access for guest users with strict control.
  • WPA3 Enhanced Open characteristics are an encrypted alternative to open networks.
  • Segmentation of AP’s traffic.
  • Support of ephemeral credentials for guest users.

Пре него што наставите…
Претплатите се на наш месечни билтен и будите у току са свим што се дешава у индустрији!

Storageless Data – agility at its finest

Detach your data from bare-metal machines with a global file system from Hammerspace.

Storageless Data – agility at its finest

Detach your data from bare-metal machines with a global file system from Hammerspace.

We should write the word agility everywhere to remind ourselves how crucial it is for businesses these days. It is tough to build a big and powerful organization; it takes time to find people you trust with the skillset, knowledge, and experience that you need. But even if you do it, constant market changes force you to react fast to succeed! The road to success is built on a good team and a fast, precise reaction.
IT can always help with the speed of things if the approach is correct. It can be a jet engine speeding up your business if you choose the right way to attach it. With the right approach, IT can deliver the agility that your business needs to answer the market’s demands. We always think what the one thing that slows us down the most is. For data, the machine is the culprit that holds data down, making it attached to the bare-metal storage machine, trapping it on the specific location. Moving the from If we could imagine data without storage, detach it from bare-metal devices, we could imagine sky-high speed and agility for your business.

 

Of course, we are far from having data stored on anything other than bare-metal storage drives, but a new term, storageless data, is something the industry has recently started to use. There is a lot of ambiguity in the term; some consider it a marketing hype while others consider it a real thing. The contradiction in terms originates from the inability of the data to exist outside of the storage. So the question is: what is storageless data then?
Using the term storageless doesn’t mean that your data doesn’t live on storage. Ultimately, compute must run on servers, and data must live on a bare-metal storage device. As far as serverless computing goes, the term’s contradiction emphasizes that we do not need to care about the mapping-to-server if we want to get our jobs done. In the same way, the term storageless data is a slap in a face contradiction that tells that even if I need to work with my data, I don’t want to think about the underlying storage infrastructure. It is a consumer-centric approach because it puts in front the perspective of the users who works with the data, rather than the perspective of the IT operative who works with infrastructure. With Hammerspace, you will get your job done without the need to think about mapping to storage and the underlying infrastructure. Essentially, this concept can be described as data as a service.

Of course, there is a lot more to Hammerspace than ultimate data agility. It overcomes the siloed nature of hybrid cloud storage and delivers global data access, enables the use of any storage in hybrid cloud infrastructures, and is built for high performance. Hammerspace is a global file system that grants you access to your data from any cloud and across any infrastructure. It serves, manages, and protects data on any infrastructure… anywhere. Ultimately, Hammerspace is modernizing data workflows so they can move from IT-centric to business-centric data.

The HAMMERSPACE advantage

1. Cost profiling

Hammerspace platform constantly monitors available storage infrastructure and data behavior to predict the cost of different tiering scenarios, whether on-premises or in the cloud. It provides you with valuable and accurate information that allows you to concentrate on your infrastructure costs, allowing you to make informed business decisions.

 

2. Business objectives oriented automation

Now it is possible to teach your infrastructure about the nature of your business. With Hammerspace, you can define your business objectives, and the software will create extensible user-defined metadata that will help the machine learning mechanism to tier and automate the data across storage, sites, and clouds in the best way for your business.

 

3. Multi-site, multi-cloud

Universal global namespace, virtualized and replicated at a file-level granularity, enables active-active data accessibility across all sites. It allows access to your data from any cloud and across any infrastructure.

 

4. Data management at a file-level

Hammerspace enables you to manage your data to the level of a particular file. But the real benefit of this technology is that file granular data management is the only way to efficiently scale across complex mixed infrastructure without making unnecessary copies of entire data-volumes.

 

5. No disruptions

There are two aspects of the non-disruptiveness of Hammerspace. Zero-downtime assimilation that quickly brings data online and live data mobility technology that eliminates migration disruptions. Those two technologies combined make your data highly accessible and secure at any time.

 

6. High performance

Hammerspace delivers high-performance across hybrid clouds by simplifying performance and capacity planning. The planning is simplified through parallel and scale-out filesystem with direct data access.

 

Aside from mentioned features and advantages, Hammerspace offers a long list of useful features:

1. Native Kubernetes Support
2. Share-level snapshots
3. Undelete
4. Data replication
5. Real-time analytics
6. Support for NFS, SMB, and S3
7. Global dedupe & compression
8. WORM data-lock
9. Data-in-place assimilation
10. Data virtualization
11. Programmable REST API
12. Kubernetes CSI driver
13. Third-party KMS integration, etc.,…

We recommend you to check out this awesome video of Hammerspce CEO David Flynn explaining the concept of storageless data. Braineeing engineers are happy to work directly with Hammersapce to ensure that the infrastructure you receive is custom-tailored for your business. If you have any additional questions, want our engineers to estimate the state of your infrastructure and its compatibility with Hammerspace technology, or just want to chat, feel free to call us!

Пре него што наставите…
Претплатите се на наш месечни билтен и будите у току са свим што се дешава у индустрији!