Sie sind auf Seite 1von 56

@Meraki #CMNA

Certified Meraki Networking


Technical Training Program, 2016
Associate

2016
2015 Cisco and/or its affiliates. All rights reserved.

About Cisco Meraki

2016
2015 Cisco and/or its affiliates. All rights reserved.

Our vision

IT should be
simpler to monitor
and manage

2016
2015 Cisco and/or its affiliates. All rights reserved.

Single pane of glass management for the


enterprise

Cloud Managed WiFi

Cloud Managed Network

Cloud Managed IT

(2006)

(2010)

(2015)

MR Wireless LAN
2016
2015 Cisco and/or its affiliates. All rights reserved.

MX Security
Appliances

MS Ethernet
Switches

SM EMM

MC
Communications
4

With the Meraki full stack you can


Deploy and grow networks at
branch locations or large
campuses easily and rapidly

Manage and monitor those


networks with robust analytics
from a single pane of glass

Reduce administrative overhead


with simple all-inclusive
licensing models and tools

2016
2015 Cisco and/or its affiliates. All rights reserved.

Cisco Meraki cloud


architecture

2016
2015 Cisco and/or its affiliates. All rights reserved.

Cloud-managed networking architecture


Network endpoints
securely connected to
the cloud
Cloud-hosted
centralized
management platform
Intuitive browser-based
dashboard

2016
2015 Cisco and/or its affiliates. All rights reserved.

Benefits of a cloud-based solution


Security
Reliability

Scalability

Future-proofing
2016
2015 Cisco and/or its affiliates. All rights reserved.

2014 2016

D
H

re
po
CP
rt
in
Se
g
by
rv
H
ot
er
ta
sp
a
g
nd
ot
2.
Fa
1:
0
ilo
fo
m
ve
r
an
W
r
L3
y
i-F
N
io
AT
St
f
an
oa
da
d
lo
ne
N
et
Si
w
te
or
Su
k
rv
T
op
O
ey
ne
ol
og
Sy
y
st
e
M
m
R3
s
M
2
an
80
ag
2.
VP
11
er
N
ac
ta
w
gg
ith
i
n
Po
BL
g
rt
E
Is
ol
at
io
N
et
n
fo
w
In
Sy
te
gr
st
em
at
io
s
n
M
Ph
an
ys
ag
ic
er
al
St
Se
IW
ac
nt
AN
ki
ry
ng
?
M
ak
e
a
w
is
h

N
et
w
or

Rapid feature velocity

JUL 2014

MX Security

2016
2015 Cisco and/or its affiliates. All rights reserved.

JAN 2016

MS
Switching
MR Wireless
Systems Manager MDM
9

Expanding product portfolio


2015

2016

MX Security
MX64

MX64W

MX84

MX65

MX65W

MS Switching
MS350

MS410

MS350-24X

MS425

MR Wireless
MR32

SM EMM

MR72

MR42

MR52

MR53

Systems
Manager

MC Communications
2016
2015 Cisco and/or its affiliates. All rights reserved.

MC74

10

Simple, all-inclusive licensing


A Meraki solution includes a 1:1 ratio of hardware and licenses
Licensing is required and includes:
Centralized management and networkwide visibility and control

Seamless firmware and security updates


hardware

license

24/7 Enterprise Support and lifetime


warranty

The cloud license represents the total cost of ownership for all of your Meraki
devices
2016
2015 Cisco and/or its affiliates. All rights reserved.

11

Cisco Meraki positioning

2016
2015 Cisco and/or its affiliates. All rights reserved.

12

Identifying a Cisco Meraki Opportunity


CUSTOMER REQUIREMENTS

CISCO MERAKI VALUE

Rapid network deployment

Single pane of glass management

End-to-end visibility

Robust analytics and usage


statistics

Network management at scale


High availability and redundancy

Fast and efficient guest access

Creating new value from the


network

Configuration templates

Managing endpoints
Reduced IT overhead

2016
2015 Cisco and/or its affiliates. All rights reserved.

All inclusive licensing


Integrated MDM
Integrated location analytics

13

Cisco On-Premises and Cisco Meraki positioning


Cisco On Premises

Flexible deployment and configuration


options
Highly customizable and advanced feature
sets
Advanced professional services, extended
support

Cisco Meraki

Easy to deploy and manage over the web


Out-of-the-box optimized feature sets
Ongoing managed upgrades and
enhancements
Optimized for lean IT and pulling value from
the network

Extensive integration capabilities

Both portfolios offer significant professional services opportunities

2016
2015 Cisco and/or its affiliates. All rights reserved.

14

A Cisco solution for every use case

Cisco On Premises

Hybrid

Cisco Cloud Managed

Aironet

MR

Catalyst

MS

ISR / ASA

MX

ISE / PRIME

Systems Manager

2016
2015 Cisco and/or its affiliates. All rights reserved.

15

Partnering with Cisco Meraki

2016
2015 Cisco and/or its affiliates. All rights reserved.

16

Professional services
Solid Meraki customer
deployments require partner
professional services

Wireless site surveys and network design


Cabling
Installation & deployment
Ongoing management

Highly scalable cloud architecture enables partners to deploy more efficiently

2016
2015 Cisco and/or its affiliates. All rights reserved.

17

Tools and resources built for our Partners


Cisco Meraki Partner Portal
A one-stop shop for Partner tools and
resources

merakipartners.com

Deal registration

Lead gen tools

Free trials

Ongoing training

Register an
opportunity for
additional margin
potential

Use your customized


referral link to refer a
customer to a
webinar qualified
attendees will
receive a free AP!

Get your customers


to fall in love with
Cisco Meraki by
starting them with a
free trial

Sign up for technical


webinars to stay up
to date on the
newest Meraki
releases and
competitive
positioning

In the US only, Meraki products are now sold through Cisco CCW/GPL.

2016
2015 Cisco and/or its affiliates. All rights reserved.

18

Cisco Meraki for the SMB

2016
2015 Cisco and/or its affiliates. All rights reserved.

19

Meraki for the SMB


Deploy inherently secure networks
utilizing cloud based services and
intuitive configurations
Fast and efficient guest access

UTM

Simple splash page deployment with billing


Cloud-based user authentication

Access

Cloud CMX analytics


Integrated MDM

Guest

PCI

Office

Customize security feature sets


Out-of-the box WIPS and Auto RF

2016
2015 Cisco and/or its affiliates. All rights reserved.

20

Cisco Meraki Product Portfolio

2016
2015 Cisco and/or its affiliates. All rights reserved.

21

Cisco Meraki MX Security Appliances


Product Overview

2016
2015 Cisco and/or its affiliates. All rights reserved.

22

MX Security Appliance
Feature
highlights
Security
NG Firewall, Client VPN,
Site to Site VPN, IDS/IPS
Networking
I-WAN, 3G/4G Cellular,
Static Routing, Link
Balancing
Application Control
Traffic Shaping, Content
Filtering, Geo Firewall
Rules

A complete unified threat management solution


9 models scaling from teleworker and small branch to campus / datacenter

2016
2015 Cisco and/or its affiliates. All rights reserved.

23

MX Security Appliances: Models


Users

Unique features

Firewall
throughpu
t
Teleworker

Small branch
MX64/W
MX65/W

~50

NEW

~50

- 802.11ac Wireless (MX64W)


- 802.11ac Wireless (MX65W)
- Built-in PoE+ (2 ports)

- 1-5 users
250 Mbps

MX100

NEW

- Dual-radio wireless
- FW throughput: 50 Mbps

Medium branch
MX84

Z1

250 Mbps

~200

- Gigabit uplinks

500 Mbps

~500

- Gigabit uplinks

750 Mbps

Large branch / campus


- High-speed uplinks
MX400

~2,000

- Built-in redundancy

1 Gbps

- Modular interface

MX600

2016
2015 Cisco and/or its affiliates. All rights reserved.

~10,00
0

- High-speed uplinks
- Built-in redundancy

1 Gbps

All devices support 3G/4G

- Modular interface
24

Licensing that fits the business needs


Enterprise License

Advanced Security
License

Stateful firewall

All enterprise features, plus

Site-to-site VPN

Content filtering (with Google SafeSearch)

IWAN

Cisco AMP for Malware protection & IDS / IPS

Link bonding and failover

Threat Grid integration*

Application control

Geo-based firewall rules

Web caching
Client VPN

*additional Threat Grid subscription required


2016
2015 Cisco and/or its affiliates. All rights reserved.

25

Cisco Meraki MS Switches


Product Overview

2016
2015 Cisco and/or its affiliates. All rights reserved.

26

MS Switches
Feature
highlights
Voice and video QoS
Layer 7 app visibility
Virtual and physical stacking
Dynamic routing
Enterprise security
Remote packet capture, cable
testing

13 models scaling from access to campus aggregation


Introducing cloud managed physical stacking, multigigabit performance, and UPoE
power to the campus network
2016
2015 Cisco and/or its affiliates. All rights reserved.

27

MS Switches: Models
Port
configurations

Power supplies & fans

Feature highlights

- Integrated power & fans

- Gigabit SFP uplinks

- Power redundancy w/ RPS 2300

- Virtual stacking

- Dual hot-swappable power


supplies

- 10 Gb SFP+ uplinks

Layer 2 Access
MS220 family

8, 24, 48 port models

Layer 3 Access

MS320 family

24, 48 port models

MS350 family NEW

24, 28 port models

- Fans integrated into power


supplies

- Virtual stacking

- Dual hot-swappable power


supplies

- Multigigabit

- Dual field-replaceable fans

- UPoE (60W)

- Dual hot-swappable power


supplies

- 10 Gb SFP+ uplinks

- Virtual and physical stacking

Layer 3 Aggregation
MS410 family

NEW

MS420 family

16, 32 port models

- Dual field-replaceable fans


24, 48 port models

- Dual hot swappable power


supplies
- Four field-replaceable fans

MS425 family NEW

16, 32 port models

- Dual hot swappable power


supplies
- Four field-replaceable fans

2016
2015 Cisco and/or its affiliates. All rights reserved.

- Virtual and physical stacking


- 10 Gb SFP+ interfaces
- Virtual and physical stacking
- Virtual and physical stacking
- 40 Gb QSFP+ uplinks
28

Cloud-managed physical stacking


Physical stacking
Worlds first cloud-managed physically
stackable switches

Exceptionally fast throughput

MS350
family

Spatial reuse provides up to 160Gb/s


aggregate stack bandwidth

Cross-stack LACP
Aggregate links across multiple switches for
up to 8x10Gb/s uplink to your core or
aggregation switch

Stacking Configuration

MS400
Series

Configure all stacking configurations from


Dashboard in a simple and intuitive interface

2016
2015 Cisco and/or its affiliates. All rights reserved.

29

Cisco Meraki MR Wireless Access Points


Product Overview

2016
2015 Cisco and/or its affiliates. All rights reserved.

30

MR Wireless Access Points


Feature
highlights
BYOD policies
Application traffic shaping
Guest access
Enterprise security
WIDS / WIPS
Location analytics

9 models including indoor / outdoor, high performance and value-priced


802.11ac Wave 2, multigigabit performance, and dedicated scanning and BLE radios
Lifetime warranty on indoor APs
2016
2015 Cisco and/or its affiliates. All rights reserved.

31

MR Wireless Access Points: Models


Entr
y

General
Purpose

MR18

MR32

MR42

MR52

2 Stream 3-Radio

MR34

3 Stream 3-Radio

MR53

802.11a/b/g/n

2 & 3 Stream 3-Radio

802.11ac Wave 2

4 Stream 4-Radio

802.11ac

80 MHz

802.11ac Wave 2

High
Performance

Future
Proof

Indoo
r

160 MHz
Multigigabit
(MR53)

Outdoor

MR62

MR66

MR72

Single-Radio

Dual-Radio

2 Stream 3-Radio

802.11b/g/n

802.11a/b/g/n

802.11ac

2016
2015 Cisco and/or its affiliates. All rights reserved.

32

MR 3rd radio tames hostile RF environments


Air Marshal
Full-time WIPS scanning
User-defined attack policies
Tweaked alarming system
Updated signatures pushed from cloud
Meraki Dashboard
Classify and filter attacks
Shoot down rogue APs
View forensic data

Auto RF
Meraki
802.11 APs

Rogue Other Malicious Packet


SSIDs SSIDs broadcasts foods

2016
2015 Cisco and/or its affiliates. All rights reserved.

Intelligently spread channel use across all


APs in the network
Reduce client stickiness and mobbed APs
Frequent Tx power adjustment enabled by
3rd radio
33

Cisco Meraki Systems Manager


Product Overview

2016
2015 Cisco and/or its affiliates. All rights reserved.

34

Systems Manager enterprise mobility


management
Feature
highlights
Device security
Mobile and desktop
management
Easy and Rapid provisioning
Backpack file sharing
Software inventory

Multi platform MDM support - OS X, iOS, Windows, Windows Mobile, Android, &
Chrome OS
Cloud-based - no on-site appliances or software, works with any vendors network
More information available at meraki.cisco.com/sm
2016
2015 Cisco and/or its affiliates. All rights reserved.

35

Systems Manager Licensing


A complete Enterprise feature set in a single product: SM
Network size

Annual cost
Complete feature set
with ongoing updates
24/7 phone and email
support

100 devices

>100 devices

Free

$40 / device

No change is required for existing free SM users with networks with 100 devices. They can continue to add
unlimited devices, and will continue not having access to new features or phone support.

2016
2015 Cisco and/or its affiliates. All rights reserved.

36

Cisco Meraki MC Communications


Product Overview

2016
2015 Cisco and/or its affiliates. All rights reserved.

37

The Meraki MC74


Hardware Feature
Highlights
Two USB Ports
One 3.5mm Headset Jack
Lock screen protection
Voice VLAN capable
High Resolution Touch Screen

Support for third party USB headsets from Plantronics and Jabra
2 year hardware replacement warranty
Meraki MC will launch May 17th in the US only with planned expansion to other regions and SIP
providers

2016
2015 Cisco and/or its affiliates. All rights reserved.

38

The Meraki MC74


UI Feature Highlights
Web Self Service portal
Call forwarding
Voicemail
Outbound calls
Contact photos for directory
entries
Directory Integration with Google
Apps

All configuration and call monitoring is done right from one central location in
Dashboard
2016
2015 Cisco and/or its affiliates. All rights reserved.

39

Telephony feature sets


Basic call features (hold, transfer, multiple simultaneous incoming calls, caller
ID)
Secure end to end calls via Secure SIP (TLS) for signaling and SRTP for media
streams
Phones
assigned extensions (4-6 digits) and DIDs (10 digits)
Visual Voicemail
Conferencing
Workgroups (beta)
Music On Hold
Automated attendant/IVR Menus

2016
2015 Cisco and/or its affiliates. All rights reserved.

40

Cisco Meraki for the Campus

2016
2015 Cisco and/or its affiliates. All rights reserved.

41

Meraki for the campus


Enterprise class features for the
campus with a single point of
configuration, management, and
troubleshooting

MX600
VPN Conc.

NGFW

Core

Core

Centralized management
Virtual stacking

MS425

MS425

Network topology
SM Sentry
AD Integration
Port NAC and WPA-2 Enterprise RADIUS
Syslog and Netfow exports

MS350

MS350

MS350

MR42

MR42

MR42

SM

Access Devices

ISE and Prime integration


2016
2015 Cisco and/or its affiliates. All rights reserved.

42

Virtual Stacking
Scalable management
architecture
Able to manage one or many
switches at once regardless of their
location

Flexible deployment
configurations
Manage all switches
simultaneously with no hidden cost

Zero- touch deployments


Leverage the power of centralized
cloud management to pre-stage
before they are even deployed

2016
2015 Cisco and/or its affiliates. All rights reserved.

43

Network Topology: Live end-to-end network


visibility
Dynamic discovery

CDP/LLDP support provides end to end


discovery including non-Meraki devices.

Intelligent updates
Hands free, live rendition of current
network topology.

Seamless network navigation


Directly navigate to devices and statistics.

Further customization
Download as an SVG for increased topology
fexibility in Visio or any SVG supported
program.

2016
2015 Cisco and/or its affiliates. All rights reserved.

44

Layer 3 Switching Functionality


OSPF
Dynamic routing with intuitive, browser-based configuration

IPv6 visibility and tracking


Usage statistics for IPv6 address now in Dashboard

DHCP server
Integrated DHCP service to help prevent single points of network failure

IPv4 Access Control Lists (ACLs)


Granular security boundaries configurable by subnet, protocol, port range, or host.

Switched Virtual Interfaces (SVIs)


Providing Inter-VLAN routing and eliminating potential single points of failure

Addressing evolving customer needs around redundancy, campus


connectivity, and reducing complexity
2016
2015 Cisco and/or its affiliates. All rights reserved.

45

Integration into existing environments

Cisco ISE &


Prime

RADIUS &
SNMP

CMX API

CMX analytics

Provisionin
g
API
Provisioning system
2016
2015 Cisco and/or its affiliates. All rights reserved.

Meraki
Dashboard

Syslog/Netfow

Logging
platform
46

Cisco ISE integration


SNMP & RADIUS
Leverage ISE for SNMP management and RADIUS authentication
of Meraki devices

Device posturing
Evaluate system security based on the applications and settings
that a particular system is using

Central Web Authentication (CWA)


Cisco ISE will act as the guest networks captive portal or splash
page

Wireless Change of Authorization (CoA)


Cisco ISE acting as a RADIUS server will control a devices
network access policy after authentication

2016
2015 Cisco and/or its affiliates. All rights reserved.

47

Cisco Meraki for the


Distributed Enterprise

2016
2015 Cisco and/or its affiliates. All rights reserved.

48

Meraki for the distributed enterprise


Efficient scalable services with tools
and features designed for distributed
enterprises

DC/HQ
VPN
VPN

Configuration templates
Automatic VPN/I-WAN

UTM

Intuitive Multi-site management


Single pane of glass visibility

Access

Simple security policy compliance


Automatic summary reports

Guest

PCI

Office

Robust alerting for remote sites


Network cloning
Zero touch deployment API
2016
2015 Cisco and/or its affiliates. All rights reserved.

49

Automation tools
Dashboard has a wealth of built-in automation tools to take large distributed
deployment times from weeks and months, to hours and days
Configuration Templates
Single source of configuration across
distributed networks

Bulk Network Creation


Dashboard will create networks
and add devices

Network and Device Cloning


Clone like configurations across entire
networks or individual devices

Provisioning API
Leverage the provisioning API for fast setup
and zero touch configuration

2016
2015 Cisco and/or its affiliates. All rights reserved.

50

Designed for High Availability and Redundancy


Redundancy &
availability
Uptime needs driving demand
for warm failover techniques and
management availability

I-WAN
Provide the security and
resiliency of an MPLS network
without the cost and complexity

Warm Spare Failover


Mitigating downtime in the
event of an MX or MS failure

2016
2015 Cisco and/or its affiliates. All rights reserved.

Multi-hub VPN and an always available


cloud management solution

Transport independence, application


optimization, intelligent path control, and
security connectivity

Gateway redundancy for continuous forwarding


in the event of a hardware failure

51

New IWAN features for the MX


Dual-active path:
Active-active VPN

Dynamic Path Selection


Ensures the best uplink is used based on
latency and loss metrics

WAN 2
Secure VPN tunnel (active)
Latency / loss < threshold

WAN 1
Secure VPN tunnel (active)
Latency / loss > threshold

Policy-based routing (PbR):


Allows uplinks to be intelligently assigned
based on traffic protocol, subnet, source,
destination, etc.

Data

2016
2015 Cisco and/or its affiliates. All rights reserved.

Based on L3 / L4 categorization, this


data normally travels out WAN 1
(PbR), but MX detects optimal path is
WAN 2 based on latency / loss on
WAN 1 (PfR).
52

Easy customer engagement


Connected Mobile Experience (CMX)
See how customers and clients are using your
network to better engage with them

Facebook Login
Create brand awareness while still providing
valuable services to customers

Bluetooth Low Energy (BLE)


The MR32, MR42, MR72, and the MR50 series APs
all come with a BLE radio at no extra cost

2016
2015 Cisco and/or its affiliates. All rights reserved.

53

Bluetooth beacons

Asset tracking
Keep track of BLE devices
within the wireless
environment

Free yoga
lessons!

Mobile App
Integration
Interact more personally
2016
2015 Cisco and/or its affiliates. All rights reserved.

54

Systems Manager enterprise mobility


management
Apply restrictions

Utilize the web portal or your AD infrastructure to apply


restrictions.

Deliver apps in bulk


Utilize tags to easily deploy apps to Apple and Android devices.

Sentry
Leverage the integrations between SM and the network full stack.

Track assets
Geofence devices and apply profiles based on location.

Android for work


Containerize apps for work/personal isolation

2016
2015 Cisco and/or its affiliates. All rights reserved.

55

IT should be simpler
to monitor and
manage

2016
2015 Cisco and/or its affiliates. All rights reserved.

56