Security has become one of the greatest concerns for every company alike. The industry is moving towards a fast paced and customer-oriented network infrastructure which automatically increases the vulnerabilities a network is exposed to. As the industry today is driven by the customer and network administrator’s visibility and needs for their network infrastructure, security tops the charts when it comes to the major requirement. Let’s face it, everyone wants a robust and secure solution.
So, what are some of the major questions raised for any network by a customer when we talk about visibility and security.
Application visibility: How accurately can the system identify specific applications?
Flow tracking: Can the system accurately report on the specifics of a particular traffic flow?
Encrypted traffic visibility: Can the system identify threats in encrypted traffic without need to decrypt the traffic?
Miercom conducted an independent competitive analysis of leading wireless infrastructure packages – Wireless Controllers and their corresponding Access Points. Cisco Catalyst 9800 was competing against the latest offerings from HPE-Aruba, Ruckus Networks and Huawei Technologies. Cisco Catalyst 9800 Wireless Controller offers a blend of Cisco network leadership with Cisco RF innovation. Catalyst 9800 Wireless Controller is built on top of Cisco’s RF excellence & wireless innovations along with Cisco IOS XE-a modern, programmable and modular operating system which satisfies the requirements for next generation Wireless controller which is robust and secure. Miercom also reviewed aspects of security offered by different vendors. When comparing these products and the features they offer, they did take into consideration other, often optional, security-oriented packages that the vendor offers, which would run on servers elsewhere in the user’s network, typically in a secure, central data center.
When we look at different Vendors for Application identification, Cisco was consistently accurate. It could identify apps including Jabber, Netflix, Dropbox, and YouTube without a single glitch. Cisco was able to dive deeper into data packets with its DPI (Deep Packet Inspection). Only Cisco correctly identified WebEx as a separate audio-video application and CNN Live Video with Akamai as the actual video source, offering more granular control. Aruba was able to identify many applications too like Jabber, Netflix, Dropbox, and YouTube – as well as specific web sites but some applications like WebEx were incorrectly identified too. On the other hand, Ruckus had incorrect identification on many applications. Ruckus offers no DPI and application identification was hit or miss. Huawei has its own limitations when it comes to application identification and DPI.
Another security-based test Miercom conducted was to see whether the system could accurately track and report flows (e.g. large file movements). Cisco excelled in flow tracking as well. Applications were detected immediately with the accurate amount of data passed for that application. Contrarily, Aruba reported application activity long after transmission began and showed considerably less data transmitted than actually sent. Also, Ruckus reported application activity long after transmission began and the User Interface showed much less data transmitted than actually sent. On the other hand, Huawei seems to report application activity accurately, unless monitoring is started after the transfer already began which leads to delayed reporting of application activity.
Cisco is way ahead in the competition in terms of Encrypted Threat Analytics. Cisco Wireless Controller also successfully detected malware, trojans inside encrypted traffic. All the other vendors do not support detection of threats from encrypted traffic.
Cisco stands out as the only vendor which satisfies all visibility and security requirements. Cisco Effectively detected threats in encrypted traffic. Additionally, Cisco outperformed its competitors in tests for flow-tracking accuracy, application identification, multi-level segmentation and threat detection with encrypted traffic which clearly makes Cisco the winner of the security race.
Miercom is an independent third-party testing and certification company. Please download complete Miercom report here.
AP 1852 does not join vWLC virtual controllers I installed 2 new virtual controllers vWLC version 8.5.161. and configured the mobility group, activated Ap Fallback among othersetc.I'm trying to upload an AP model 1852 AIR-AP1852I-Z-K9 that is in vers...
hallo.Ich suche eine Möglichkeit mehrere Access Points gleichzeitig zu konfigurieren da ich für ein Projekt knapp 3000 AP konfigurieren muss die fast alle die selben einstellungen erhalten sollen.Es gibt von Zyxel ein Tool welches so etwas für deren AP er...
Dear Team, how to bind user device particular mac address in rfs7000 (ap 621 and ap6522) (need to connect only mac binded users, other users need to deny the connectivity ) please help. thanks in advance. in
Hi all,we have have deployed Meraki mx firewall,switch and Meraki mr20 and mr33.we are unable to view location analytics..below is the error we get.(Analytics data cannot be displayed for this network. Data is only available for wireless networks with the...