This event had place on Thursday 28, May 2020 at 10hrs PDT
In this session, Abhishek demonstrates the ease with which an end user, that has no network expertise, can connect a WAN router to the network headquarters of their company from any remote location. The event provides a deep-dive into three use cases that detail step-by-step the device on-boarding process for each one. Once the routers are connected to the network, it is possible to explore the WiFi and security features of the ISR 1000 and how they are provisioned.
You can download the slides of the presentation in PDF format here.
A: When we go 5G ready they can swap out the PIM CAT18 module and add the 5G module.
A: Yes split tunnel is possible. This needs to be done as part of the device template that can be pushed down to the device for Day-0.
A:Yes our PIM CAT18 module supports Band 14 for FirstNet. We will go over that in this event.
A: Single image 17.2.1r CCO released image on the router and vManage version 20.1.
A: You do need a carrier. I believe the SIM card that we are using is from AT&T. DC is Data Center or HQ for Head Quarters.
A:If the ISR has a SmartNet contract, please open a TAC case to troubleshoot this issue. Refer to this link: https://www.cisco.com/c/en/us/td/docs/routers/access/interfaces/NIM/software/configuration/guide/4GLTENIM_SW.html there is troubleshooting section here / https://www.cisco.com/c/en/us/td/docs/routers/access/interfaces/software/feature/guide/ehwic-4g-ltesw-book.html and http://www.cisco.com/c/en/us/td/docs/routers/access/interfaces/NIM/software/configuration/guide/4GLTENIM_SW.html#pgfId-1447938.
A:Yes, we need the controllers spun up either on-prem or in the cloud (vBond, vManage and vSmart) and then onboard a WAN edge device. It is all fully automated - Zero Touch.
A: CAT18 1.2 G DL and 500 MB UL speed. As for utilization, I am not sure what you mean by it is included in the SIM.
A:Please, work with your local Cisco Account Team.
A:Router by default has PnP config. When it reaches out to devicehelper.cisco.com and if the router serial no is there and a PnP server or vBond IP is assinged for the serial number then, it will reach out to vBond. Abhi just did a recap verbally as well.
A: No. Manufacturing does not have to do anything. We handle all of that via PnP portal assigning vBond IP or PnP server such as NSO server IP on the PnP portal. Absolutely Zero Touch.
A:We have validated AT&T, Verizon, and T-Mobile.
A: Yes. For the situation that we are currently the solution goes over LTE but of course, WAN interface with DHCP will work perfectly as well.
A:Yes our SD-WAN controllers can be either on the cloud or on-prem.
A:So long as the LTE interfaces acquire and IP address, be able to resolve names, and reach devicehelper.cisco.com it can reach the PnP server or our vBond server.
A:Our PnP process enables DHCP off of one interface at a time and add a default route out that interface and see if it can reach devicehelper.cisco.com until it is successful and uses that interface.
A:Yes, we have customers all over the world.
A: Yes, we are working on it. Very soon!
A:Yes. We have Cisco, Digi Cert, Avnet root certs already on the box. We also make sure the device is an authentic Cisco device with SUDI cert.
A: CAPWAP mode AP configuration with DHCP option 43 has been validated with both SD-WAN as well as our NSO options. Both work perfectly fine.
A: Please, reach out to your local Cisco account team for pricing information.
A:The lead-time presently is about 4-6 weeks.
A:We are working on it. We might provide some lightweight options on vManage but not the entire EWC config and ME. That is just not possible.
A:If you handle routing, it is definitely possible. You will have NAT, FW, etc. care must be taken with routing.
A: Yes, we have validated a number of different LTE SIM cards. We have validated Verizon. In this demonstration, we're using at&t, but as part of a different demonstration we did use Verizon, it was just a case of upgrading to the latest firmware, that made it work for us. And you can find that firmware again on software.cisco.com, that will be upgrading your LTE pin module to the latest firmware.
A: Yes, absolutely. Anytime you provision, a device on the internet. We definitely need to be paranoid and implement a stateful firewall, that is natively available on our routing platform, any router that you take is 5G do or is on 4k or one K, we can implement firewall IPS URL filtering the entire stack with amp and threat grid in case of SDN and stateful firewall, the umbrella redirection, and IPS, in case of non-SD-WAN.
A: This would completely solve that problem. However, to go over the guides that I had said in the links, they also go over how we can use VPN technology to connect from our home devices to the routers as well. But yes, this can be leveraged, in place of that.
A: No we don't. We do not have any coax exports on that one. Usually, that cable modem has codecs and that goes in the wall, and it has an rz of 45, and on the other side, that feeds into the is an odd one gate out there.
A: Yes. 1109 is our 1109 routers that I went over, they do support dual active LTE. That's because we have to do LDA module slot in that chapter.
A: Yes, absolutely. We have also validated the solution to work in the DNA center, just the same as NSO as we showed in that demonstration.
A: There is only one specific model that does not support SDN, but all our routers are our 4k and one k that run iOS xe or in the single image. If it supports the controller mode image. Those routers can be onboarded onto our SDN fabric.