Case study
A customer needs a wireless network upgrade for 802.11ac and possibly an upgrade to the wired network. The customer requires dual-radio 802.11ac APs, each radio of which can support 4x4 MIMO at full feature set.
The customer has given architects this information about their wireless devices:
The architect also has collected information about the existing wired network.
The existing access layer switches support these features:
10/100/1000 edge ports
PoE (802.3af)
1GbE fiber uplinks
The existing aggregation switches support these features:
1/10GbE fiber ports
ARP tables up to 62,000
The customer has provided this figure that shows the existing cabling between floors and between buildings:
Each floor is about 100 feet (30 m) by 140 feet (43 m) with a 10 foot (3 m) ceiling. Interior walls are drywall. The layout for each floor is similar to that shown below. CAT5e cable is extended to all areas.
What is one piece of additional information architects should obtain from the customer before they design the wireless solution?
Case study
A customer needs a wireless network upgrade for 802.11ac and possibly an upgrade to the wired network. The customer requires dual-radio 802.11ac APs, each radio of which can support 4x4 MIMO at full feature set.
The customer has given architects this information about their wireless devices:
2700 IoT devices which will have only wireless connections; they support WPA2 with 802.1X
300 on each floor in 3 buildings with 3 floors each
5,400 users, who use devices such as laptops and smartphones
600 users on each floor in 3 buildings with 3 floors each
24 security cameras which will have only wireless connections; they support WPA2 with 802.1X and have a local power source
4 on floor 1 of each of the 3 buildings
2 on the other 6 floors
The architect also has collected information about the existing wired network.
The existing access layer switches support these features:
10/100/1000 edge ports
PoE (802.3af)
1GbE fiber uplinks
The existing aggregation switches support these features:
1/10GbE fiber ports
ARP tables up to 62,000
The customer has provided this figure that shows the existing cabling between floors and between buildings:
Each floor is about 100 feet (30 m) by 140 feet (43 m) with a 10 foot (3 m) ceiling. Interior walls are drywall. The layout for each floor is similar to that shown below. CAT5e cable is extended to all areas.
What is one change to the existing network that the architect should recommend to meet the new customer requirements?
A writing closet needs to support 20 APs and 110 wired endpoints. It has four strands of OM3 fiber to the network core 150 feet (45 m) away. The customer wants the links to the network core to support at least 10GbE. The customer also requires no loss in connectivity for the switches in the closet, even with the loss of one link.
The architect plans to recommend three 2930M 40G 8SR PoE+ switches, two 4-port SFP+ modules, and two SFP+ SR transceivers.
What should the architect change about the plan?
A customer has an Aruba wireless network, which includes two MC 7205s and an MM at the network core. The company now wants to accommodate 50 mobile trainers. These trainers travel around the world and run training events. The trainers often need to access materials in the company data center, but cannot reach materials when they are on the road.
The company wants to give the mobile workforce a secure way to reach the materials they need no matter where they are, including in public spaces like the hotels where they often teach. The customer also requires that the solution be as cost effective as possible while meeting the requirements.
Which plan meets the needs of the mobile trainers?
Case study
A retailer needs a wireless and wired network upgrade, as well as an authentication and access control solution for a network that includes a main office with a three-floor building and six branch sites. The branch users all use resources at the main corporate office. Branch office employees will use wireless connections. At the main office, employees use wired and wireless connections.
The customer wants the strongest authentication for employee wireless connections. It is also important that the MC role-based firewall can implement consistent access controls on employee connections no matter where the employees connect and no matter how they connect (wirelessly or, at the main site, wired).
The customer also needs to provide complimentary wireless access for guests. Guest should be redirected to a portal, through which they can register and login.
The customer would like two SSIDs, CompanyXEmployee and CompanyXGuest. The company wants to divide employees in two groups, managers and staff. In the corporate network, managers should only have access to Server Group Managers and staff should only have access to Server Group Staff. Each server group includes necessary services such as domain and DHCP, as well as servers that the employees access to do their jobs. All employees should also have access to the Internet. Guests should only have HTTP and HTTPS access, and only to the Internet.
The customer has:
*a maximum of 1000 employee devices
*a maximum of 100 guest devices at the same time
*500 devices on wired ports at the main site, which will be supported by 12 new AOS-Switches (mostly employee laptops, as well as a few non-802.1X capable printers, which should just communicate with print servers)
The devices used by employees include 450 company-issued laptops, which the company wants to screen for security issues and violations of security policies. All authentications are assumed to be concurrent.
To fulfill the requirements for the wireless network upgrade, the architect plans to propose:
*5 RAPs at each of 6 branch sites
*60 APs at the main site
The architect will also propose an MM and ClearPass.
The architect still needs to plan the Mobility Controllers (MCs). The customer requires high availability for wireless services and redundancy for the MCs. If a single MC fails, the network must continue to function without impact. If an MC fails, the customer must also receive a replacement component for the failed component by the next business day so that their IT staff can install it and get the network back to normal operation as soon as possible.
Software upgrades must also be seamless, without the introduction of any downtime for wireless services, and the customer needs to be able to obtain the latest software over the lifetime of the solution for the next several years.
Which plan for the VLANs assigned to users at the main site follows the best practices? (Note that the infrastructure could have additional VLANs in various locations; this plan refers only to user VLANs.)