| Wireless Service Controller RFS4000 |
|
SpezifikationDatenblatt... (Herstellerlink)
LAN: Supports 24 WLANs; multi-ESS/BSSID traffic segmentation;VLAN to ESSID mapping; auto assignment of VLANs(on RADIUS authentication); power save protocolpolling; pre-emptive roaming; VLAN Pooling anddynamic VLAN adjustment; IGMP Snooping Bandwidth management: Congestion control per WLAN; per user based on usercount or bandwidth utilization; dynamic load balancingof AP300s and Adaptive APs in a cluster; bandwidthprovisioning via AAA server Layer 2 or Layer 3 deployment of thin access ports and Adaptive AP AP-51X1802.11a/b/g and AP-7131 802.11a/b/g/n access pointsLayer 3 Mobility (Inter-Subnet Roaming)IPv6 client supportThin Access Ports: Supports 6 “thin” 802.11a/b/g AP300 access pointsfor L2 or L3 deployment per RFS4000 Switch/controllerand 72 802.11a/b/g AP300s per cluster; Legacysupport: AP100 for L2 deployments only Adaptive AP: Supports adoption of 6 adaptive AP-51X1 802.11a/b/gand AP-7131 802.11a/b/g/n access points in adaptivemode per RFS4000 Switch/controller and 72 per cluster;multiple country configuration support; Legacy support: AP-4131 port conversion for L2 deployments only Power-over-Ethernet: Integrated; up to a maximum of 90 watts forsimultaneous operation Radio frequency automatic channel select (ACS); Transmit power controlmanagement (TPC); Country code-based RF configuration; 802.11b, 802.11g802.11a, and 802.11nNetwork SecurityRole-based wired/wireless firewall (L2-L7) with stateful inspection for wired andwireless traffic; Active firewall sessions — 50,000 per RFS4000 Switch/controllerand 600,000 per cluster; protects against IP Spoofing and ARP Cache PoisoningAccess Control Lists (ACLs): L2/L3/L4 ACLsWireless IDS/IPS: Multi-mode rogue AP detection, Rogue APContainment, 802.11n Rogue Detection, Ad-HocNetwork Detection, Denial of Service protectionagainst wireless attacks, client blacklisting, excessiveauthentication/association; excessive probes;excessive disassociation/deauthentication; excessivedecryption errors; excessive authentication failures;excessive 802.11 replay; excessive crypto IV failures(TKIP/CCMP replay); Suspicious AP, Authorized devicein ad-hoc mode, unauthorized AP using authorizedSSID, EAP Flood, Fake AP Flood, ID theft, ad-hocadvertising Authorized SSIDGeofencing: Add location of users as a parameter that definesaccess control to the networkWIPS sensor conversion: Supported on the AP300 and the Adaptive AP-5131and AP-7131Anomaly Analysis: Source Media Access Control (MAC) = Dest MAC;Illegal frame sizes; Source MAC is multicast; TKIPcountermeasures; all zero addressesAuthentication: Access Control Lists (ACLS); pre-shared keys (PSK);802.1x/EAP—transport layer security (TLS), tunneledtransport layer security (TTLS), protected EAP (PEAP);Kerberos Integrated AAA/RADIUS Server with nativesupport for EAP-TTLS, EAP-PEAP (includes a built inuser name/password database; supports LDAP), andEAP-SIMTransport encryption: WEP 40/128 (RC4), KeyGuard, WPA—TKIP, WPA2-CCMP (AES), WPA2-TKIP802.11w: Provides origin authentication, integrity, confidentialityand replay protection of management frames forMotorola’s AP300 access pointIPSec VPN gateway: Supports DES, 3DES and AES-128 and AES-256encryption, with site-to-site and client-to-siteVPN capabilitiesSecure guest Local Web based authentication; URL redirection foraccess (Hotspot user login; customizable login/welcome pages;provisioning): support for external authentication/billing systems,usage-based chargingWireless RADIUS User Based VLANs (Standard)Support (Standard and MAC Based Authentication (Standard)Motorola Vendor User Based QoS (Motorola VSA)Specific Attributes): Location Based Authentication (Motorola VSA)Allowed ESSIDs (Motorola VSA)NAC support with third party systems from Microsoft and SymantecReal Time Locationing System (RTLS)RSSI based triangulation for Wi-Fi assetsTags supported: Ekahau, Aeroscout, Gen 2 TagsRFID support: Compliant with LLRP protocol. Built-in support forthe following Motorola RFID readers: fixed (XR440,XR450, XR480; mobile (RD5000) and handheld(MC9090-G RFID)Optimized Wireless QoSRF priority: 802.11 traffic prioritization and precedenceWi-Fi Multimedia WMM-power save with TSPEC Admission Control;extensions: WMM U-APSDIGMP snooping: Optimizes network performance by preventing floodingof the broadcast domain SIP Call Admission Control: Controls the number of active SIP sessions initiatedby a wireless VoIP phone802.11k: Provides radio resource management to improve clientthroughput (11k client required)Classification Layer 1-4 packet classification; 802.1p VLAN priority;and marking: DiffServ/TOSSystem Resiliency and RedundancyActive:Standby; Active:Active and N+1 redundancy with access port and MU loadbalancing; Critical resource monitoringVirtual IP: Single virtual IP (per VLAN) for a switch/contoller cluster to use as thedefault gateway by mobile devices or wired infrastructureSMART RF: Network optimization to ensure user quality of experience at all timesby dynamic adjustments to channel and power (on detection of RF interference orloss of RF coverage/neighbor recovery)Dual Firmware bank supports Image Failover capabilitySystem ExtensibilityExpressCard™ Slot: Driver support for 3G wireless cards for WAN backhaul• AT&T (NALA) – Option GT Ultra Express• Verizon (NALA) – Verizon Wireless V740 Express Card• Vodaphone (EMEA) – Novatel Merlin XU870• Vodaphone (EMEA) – Vodaphone E3730 3G Expresscard• Telstra (Australia) – Telstra Turbo 7 series Expresscard (Aircard 880E)• General Use (NALA/APAC) – Novatel Merlin XU870ManagementCommand line interface (serial, telnet, SSH); secure Web-based GUI (SSL) forthe wireless switch and the cluster; SNMP v1/v2/v3; SNMP traps—40+ userconfigurable options; Syslog; TFTP Client; secure network time protocol (SNTP);text-based switch configuration files; DHCP (client/server/relay), switch autoconfigurationand firmware updates with DHCP options; multiple user roles (forswitch access); MIBs (MIB-II, Etherstats, wireless switch specific monitoring andconfiguration); Email notifications for critical alarms; MU naming capabilityPhysical Characteristics Form factor: 1U Rack Mount Kit available Dimensions: 1.75 in. H x 12 in. W x 10 in. D44.45 mm H x 304.8 mm W x 254.0 mm D Weight: 4.75 lbs./2.15 kg Physical interfaces:
MTBF: >65,000 Hours Power Requirements AC input voltage: 100-240 VACMax AC input current: 3A Input frequency: 47 Hz to 63 Hz User EnvironmentOperating temperature: 32° F to 104° F /0° C to 40° C Storage temperature: -40° F to 158° F/-40° C to 70° C Operating humidity: 5% to 85% (w/o condensation)Storage humidity: 5% to 85% (w/o condensation)Heat dissipation: 95 BTU per hour EigenschaftenDer RFS4000 ist die aktuelle Ergänzung zu Motorola’s Familie der high-performance multi-core processor-based Wireless LAN (WLAN) Switches, und ist geeignet, eine intelligente Lösung für kabellose Unternehmensstandorte zu realisieren. Der neue Integrated Services Controller beinhaltet fünf 802.3af und 802.3at (draft) PoE Ports für 802.11a/b/g/n, und managed bis zu 6 dependent, mesh und adaptive Access Points (APs) - ausreichend, die Netzwerk-Anforderungen kleiner bis mittlerer Niederlassungen für 1- 500 Benutzer zu erfüllen. Der RFS4000 soll in Niederlassungen und Büros eingesetzt werden, deren WLAN auf dem Standard 802.11n arbeitet.
Hardware Interfaces: 1x Uplink Port -10/100/1000 Cu/ Gigabit SFP interface5x 10/100/1000 Cu Ethernet Ports with PoE+1x USB 2.0 Host1x ExpressCard™ Slot (in USB mode) for Wireless WAN Backhaul or External Storage options1x Serial Port (RJ45 style) for Console AccessThe key features included in v4.1 of the RFS4000 are the cumulative Wi-NG feature set of WiNG v1.x as well as Wi-NG v4.0/4.1:A “Dashboard” view of key system performance statistics (including Temperature and Fan Speeds; system utilization; critical alerts; etc.)Mobility & Performance: L3 MobilityOpportunistic Key Caching and Pre-emptive RoamingWireless Bandwidth Management – per WLAN and per userMultiple VLANs per WLANUser Based VLANsClient LoadbalancingDefault Gateway MonitoringIPv6 Client SupportIGMP Snooping802.11kLink Aggregation ( enabled by default)Smart Scan/ Opportunistic Channel ScanSecurity: Standard Based Encryption: WEP 40/128 (RC4), KeyGuard, WPA-TKIP, WPA2-CCMP (AES), WPA2-TKIPAuthentication: 802.1x/EAP—transport layer security (TLS), tunneled transport layer security (TTLS), protected EAP (PEAP); Kerberos Integrated AAA/RADIUS Server with native support for EAP-TTLS, EAP-PEAP (includes a built in user name/password database; supports LDAP), and EAP-SIMWireless Firewall & IP filteringRole Based FirewallGeo-fencing – limiting access privileges at the time of wireless client associationIntegrated IDS/IPS capability (including prevention against several Denial Of Service Attacks)Over-the-air Rogue AP Detection and ContainmentWired Rogue AP Detection802.11wMU-to-MU Disallow; Secure Wireless Switch-AP Communication with WiSPeAd Hoc Network Detection.11n Rogue AP DetectionDetect de-authentication from broadcast source MACURL loggingUser Audit TrailNAC Support (External) with Microsoft and Sygate systemsConfiguration for Air Defense Sensor Conversion and sensor Image upgrade capabilityHigh Availability: Active: Active FailoverClustering for N+1 redundancy, SMART License sharing and Load BalancingSMART RF for Interference Avoidance and Neighbor RecoverySupport for Two(2) Boot ImagesVirtual IP in a cluster: MUs can use Virtual IP as the gateway IP if the wireless switch is being used as the default gateway.Wireless WAN Backhaul with Express Cards(only) from AT&T, Verizon, Vodafone and Telstra DriverWireless WAN cards supported include: NALAAT&T Option GT Ultra Express Tri-band HSDPA and quad-band EDGE AT&T (store/ website) or authorized resellerVerizon Verizon Wireless V740 Express card CDMA 1xEV–DO (Rev.A/0), 1xRTT (800/1900 MHz) Verizon website/ store or authorized resellerEMEA:Vodafone Novatel Merlin XU870 Tri-band HSDPA/UMTS and quad-band EDGE/GPRSVodafone Vodafone (Options) E3730 3G Broadband Express Card Tri-band HSDPA/ HSUPA and quad-band EDGEAPAC:Telstra (Australia) Telstra Turbo 7 Series Express Card (Aircard 880E) Tri-band HSPA/UMTS and quad-band EDGE/GPRSFor NALA & APAC: Novatel Merlin XU870 – driver is supported in RFS4000, card is available online, check with your local service provider if they support this card and have a plan for it.Networking Services and Convergence: On-board RADIUS ServerOn-board DHCP ServerOn-board IPSEC VPN GatewayOn-board Ethernet SwitchMultiple Spanning Tree Protocol ( disabled by default)Applications: VoWLAN & Video: Secure Guest Access with granular day of week and time of day access, as well as timer synchronization with actual Hotspot usage.WMM U-APSD (Unscheduled Power Save and Delivery with Admission Control)TSPEC Admission ControlSIP Call Admission ControlVoice Stats including:Number of successful callsAverage jitterAverage latencyAverage call quality – R factorAverage call quality – MOSS CQOn-board RTLS engine for RFID and RSSI locationThird party tag-based Locationing capabilities with Aeroscout and EkahauALG: SIP,FTP ,TFTP,HTTPServiceability & Deployment Options: L2/L3 Adoption with automatic Firmware UpgradeEmail Notification of critical alarmsStatic IP for AP/Adaptive AP adoptionFriendly nomenclature of APs and Wireless Users“Find-me” LEDs for APs, to locate AP installed in the ceiling, when troubleshootingCustomizable display of MUs and APs and associated attributesView the Signal, SNR and Average Data Rate as a summary table for all Mobile UnitsMulti-country deployment supportText Based Configuration FilesProcess monitoring and serviceability: RFS4000 supports process monitoring capabilities that automatically restart system processes to improve system uptime. RFS4000 supports the troubleshooting capabilities through built in packet capture tools, storage of debug logs, as well as a “copy tech support” command that consolidates all the system and debug information for further analysisLicensing: RFS4000 comes pre-licensed out-of-the-box with 6 licenses to adopt Access Ports or Adaptive APs or a combination thereof.As part of the introductory offer, the following licenses have also been bundled in the RFS4000:Advanced Security License to enable Role Based Configuration for the Wireless FirewallLocationing Application License for visualization of locationing date with 3rd party applications( not required for Aeroscout and Ekahau)Wireless WAN License for 3G BackhaulNetwork Management: Comprehensive Management with Motorola RFMS v3.3 with auto discoveryRFS4000 Wireless Switch LoginUsername: adminPassword: superuserMultiple User Roles for System Administration: RFS4000 supports multiple user roles to administer the system. These roles include:Monitor: This role provides read-only access to the switch.Helpdesk: This role will typically be used by support staff to troubleshoot and debug the problems reported by the customer. It can typically run troubleshooting utilities like Sniffer, execute service commands, view/retrieve logs, and reboot the switch.Network Admin: This roles provides ability to configure all wired and wireless parameters like IP config, VLANs, L2/L3 security, WLANs, radios, IDS, Hotspot, etc.System Admin: This role will allow configuring general settings like NTP, boot parameters, licenses, perform image upgrade, auto install, manager redundancy/clustering, control access to the switch.Web Admin: This role provides ability to add users for web authentication (hotspot).SuperUser: This role provides super user access to the switch. |
