BRKEWN-2027

Design & Deployment

Outdoor Wireless Networks

Ian Procyk, VE7HHS

Technical Solutions Architect
Agenda
• Use Cases For Outdoor
• Radio Hardware Review
• MESH
• Guidelines for use
• Convergence times & recent improvements
• Wireless Bridging with the WGB
• Zero packet loss roaming with PRP
• Dynamic Link Forwarding
• Recommendations for optimization
• Design Recommendations and Best Practices

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 3
Some background and rules to live by…
From your speaker…

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 4
The Bigger Antenna -> Is Always The Better Antenna…

• Licensed Amateur Radio Operator for last 22 years (VE7HHS)

• Special Interest In HF & High Speed Data on ISM Bands

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 5
Always Have Fun On The Job!

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 6
However, Your Not Having Enough Fun Unless …

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 7
 However,
Your Not Having Enough Fun
Unless …

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 8
The Police Show Up…

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 9
Outdoor Wireless
Use Cases…
Campus: Walkways / Bus & Trolley Loops

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 11
 Campus: Playing Fields & Concerts

Left: 1540 under beta test @ UBC – despite high installation, signals on 5GHz in playing field and walkway were good for “casual” coverage.

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 12
Campus: Emergency Phones with CCTV

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 13
Airport: Baggage Reconciliation & Location Tracking

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 14
Airport: Passenger Boarding Bridge

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 15
Airport: Location Data From Wireless Network…

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 16
1KM Below The Surface…

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 17
1KM Below The Surface…

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 18
In Your Production Facility…

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 19
 In A Hazardous Zone…

1552H 1552H

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 20
 “I Have Cellular, Why Do I Need Outdoor Wi-Fi?”
Campus Industrial Sites
Free, ubiquitous high-speed access
WirelessHART & ISA100.11a for controls
expected anywhere on campus
Co-Location with Cameras / CCTV
Digital Signage, Sensors, playing fields
Wireless Process Control
Asset tracking using DNA Spaces (laptop
theft recovery) Autonomous Guided Vehicles
Wireless Bridging for process & PLC
Portable HMI on private network
Mining Asset management
Autonomous Haul / Teleoperation
Underground Location tracking using CMX Sports & Entertainment
/ DNA Spaces Customer Engagement (50/50 etc)
Ventilation on demand Digital Admission / Ticketing
Wi-Fi calling Cisco Vision

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 21
But what about 802.11ax / Wi-Fi 6?

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 22
 What’s next? 802.11ax (6th Gen of Wi-Fi)
Goals
• Overall goals of standard: 4x average throughput in dense
environments
• Improving average per-station throughput and aggregate area/AP
capacity/throughput
• Support for 4K/8K video; augmented and virtual reality (AR/VR)
• Outdoor range and robustness improvements
• Increase capacity by reducing overhead.
• IoT for the enterprise customers.

When to Expect it?

• Expect early 802.11ax APs early 2019.
• IEEE ratification in end of 2019. Wi-Fi alliance certification in mid 2019
• Clients will come after APs.

Check out Cisco’s White Paper on 802.11ax

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 23
Benefits of 802.11ax for Outdoor
• ✔ OFDMA: 2MHz Resource Units = less power + more simultaneous transmissions
•
Single STA
packet
time

Subcarriers

Frequency

• With OFDMA (in 802.11ax), stations can transmits over a smaller subset of the channel
• Sub-channel allocated dynamically based on STA request (on-demand)
• Can be combined with DL/UL-MU-MIMO for increased capacity)

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 24
 Benefits of 802.11ax for IoT
• ✔ OFDMA: 375 kbps for Low Power, Low Throughput
•
Single STA
packet
time

Subcarriers

Frequency

• With a single 2 MHz RU, AP and client can exchange at 375 kbps
(low power consumption, low throughput, ideal for many IoT use cases)
• 802.11a/g allowed only 6 Mbps minimum, 802.11n/ac 6.5 Mbps
(higher power consumed, wasted bandwidth)

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 25
 Benefits of 802.11ax for IoT
• ✔ OFDMA: DCM for resiliency
•
Single STA
packet
time

Subcarriers

Frequency

• Signal can also use Dual Sub-Carrier Modulation (DCM), where symbol repeats in another subcarrier
(more chances to survive interferences, i.e. better signal quality and better ranges)

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 26
Benefits of 802.11ax for IoT Delay Spread

Signal echoes

Power
Arrives

• ✔ Outdoor / Longer range features Threshold

• Allowed GI: 0.8, 1.6 and 3.2 usec Time (ns)

• (802.11ac and before: 0.8 and 0.4 only)
• Guard Interval is interval between symbols (data in the wave)
• Longer GI is good for outdoor, leaves more time for reflections (on cars, buildings) between
symbols

• Multiple symbol durations

• (Symbol duration can be optimized for channel coherence / Doppler)

• Longer preamble (HE-SIG)

• (More time for the receiver to decode signal in interference prone environment)

• Narrower subcarrier BW reduces noise bandwidth

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 27
802.11ax Coverage At Lowest Speeds

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 28
 Benefits of 802.11ax for Battery-Powered IoT
• ✔ TWT and Long Sleep time allowed
•

STA1 Wake time All

Wake
AP beacon trigger beacon Frame
time
Sleep Sleep
Frame Frame
STA1

Sleep
Frame
STA2

• With Target Wake Time (TWT), AP can let STAs sleep for long durations (battery saved),
set per STA or group of STAs
• By using the same scaling factor as 802.11ah, 11ax allows STAs to sleep up to 5 years

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 29
Let’s get started..

1 2 3 4

Choose right
Design & Planning Deployment Day 1 & 2
products

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 30
Step 1: Choose the right products

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 31
Building Blocks of
Outdoor Wireless
Cisco Digital Network Architecture

DNA Center / Prime Infrastructure

DNA Spaces
DNA Center
(Formerly CMX)

Access Points Wireless Controllers

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 33
Wireless Access Points
AP Family Photo
1572IC 1572EAC
Note: 1572IC
has integrated
cable modem With GPS!
and is powered
via coax.
GPS RX built
Typically for
cable operators in, external
only! antenna
optional. Cool
feature for
mining
operators or
AP-IOS people who
AP-IOS move
RAPs/MAPs.

1540
AP-COS for 1562I
1562E All three
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 35
Cisco Aironet 802.11ac Outdoor Access Point
Portfolio
DNA Ready | RF Excellence | CMX

1570
1560 • 802.11ac Wave 1
• 4x4:3 80 MHz; 1.3 Gbps
• 802.11ac Wave 2, MU-MIMO • External antenna model (EAC)
• 3x3:3, 80MHz, 1.3Gbps (I) • Cable Modem model (IC/EC)
1540 • 2x2:2, 80MHz, 867Mbps (E/D) • SFP
• 802.11ac Wave 2, MU-MIMO • Internal or External antenna model (I/E) • GPS
• 2x2:2, 80MHz, 867 Mbps • Internal directional antenna model (D) • PoE Out 802.3at (Ext Ant. only)
• Ultra low profile • SFP • Flexible Antenna Ports
• Internal antenna model (I) • Flexible Antenna Ports • CleanAir and ClientLink
• Internal directional antenna model (D) • CleanAir and ClientLink • Modularity (Ext Ant. only)
• PoE (802.3af) power • Centralized, FlexConnect, Mesh and • Centralized, FlexConnect and Mesh
• Centralized, FlexConnect, Mesh* and Mobility Express Cable Modem Version Only (IC/EC)
Mobility Express • DOCSIS 3.0, 24x8
802.11ac Wave 2 • Internal or External antenna

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 36
 Access Point 1542I 1542D 1562I 1562D 1562E 1572EAC 1572IC/EC

List Price (USD) $995 $995 $1695 $1795 $1795 $4495 $5295 / $6695

Type 802.11ac W2 802.11ac W2 802.11ac W2 802.11ac W2 802.11ac W2 802.11ac W1 802.11ac W1

2.4G: 2x2:2 2.4G: 2x2:2 2.4G: 3x3:3 2.4G: 2x2:2 2.4G: 2x2:2 2.4G: 4x4:3 2.4G: 4x4:3
Radios
5G: 2x2:2 5G: 2x2:2 5G: 3x3:3 5G: 2x2:2 5G: 2x2:2 5G: 4x4:3 5G: 4x4:3
Tx Power / port 21 dBm 21 dBm 24 dBm 24 dBm 24 dBm 24 dBm 24 dBm
Flexible Antenna Flexible Antenna
Internal - Port Port IC: Internal
Antennas Internal (wide) Internal (narrow) Internal
Directional (dual or single (dual or single EC: External
band) band)
SPF Port n n n n n
PoE out n n (EC)
Cable modem n
UPoE/802.3at PoE+ (802.3at) PoE+ (802.3at) 40-90V cable plant
Power options 802.3af 802.3af AC, 12 VDC, PoE
48 VDC 48 VDC 48 VDC 12VDC

Data rate (2.4/5G) Mbps 144 /867 144 / 867 216 / 1300 144 / 867 144 / 867 216 / 1300 216 / 1300

Clients per radio 100 100 200 200 200 200 200
CleanAir n n n n n
ClientLink n n n n n
Wireless mesh n n n n n n n
Mobility Express n n n n n
Environment IP-65 IP-65 IP-67 IP-67 IP-67 IP-67 IP-67
Temp Range °C -40 to 65 -40 to 65 -40 to 65 -40 to 65 -40 to 65 -40 to 65 -40 to 65

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 37
The importance of the data sheet…

The 1572’s receiver is 13dB

more sensitive
on 2.4GHz @ MCS0 than the
radio on the right…

Better receiver performance = better link budget

Greater distance between client and AP

or
higher reliability at same signal strength

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 38
Industrial Wireless IW3700 Series Access Point
Optimized for Rail, Mining, Manufacturing, Oil & Gas
N-type antenna ports for 4x4 MIMO with
three spatial streams and support for up to
13 dBi gain antennas

Diecast aluminum Integrated

chassis with mounting ears
integrated heatsink
and heaters

10/100/1000Base-T, PoE and PoE+ in (M12) 10 to 60 VDC in (M12)

10/100/1000Base-T, PoE out (M12) Management console port (RJ-45
serial)
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 39
Indoor Access Points in a Outdoor Enclosure

• Outdoor rated NEMA enclosure

(NEMA-National Electrical Manufacturing Association)
• Professional rated APs deployed outdoors, it must be
enclosed
• Protects the AP against water, dust, extreme
temperatures

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 40
 Industry’s most comprehensive and innovative AP portfolio
Enterprise Class Mission Critical Best in Class
DNA Ready | RF Excellence | CMX | Centralized, FlexConnect or Mobility Express
Dual 5 GHz | Flexible Radio | HDX
Future Proof
Hyperlocation | Security

4800
3800 • 4 embedded radios
(3 Wi-Fi and 1 BLE)
1830/1850 2800 • 4x4:3SS 160 MHz
1815 • 5 Gbps Performance
• 4x4:3 SS 160 MHz
Indoor / High-powered Indoor • 4x4:3SS 160 MHz • 5 Gbps performance
Wall Plate / Teleworker • 3x3:2 SS 80 MHz/4x4:3 • 2.4 and 5GHz or • 2.4 and 5 GHz or
• 5 Gbps Performance Dual 5GHz
• 2x2:2SS 80 MHz SS 80 MHz dual 5 GHz
• 2.4 and 5GHz or • 2 GE Ports Uplink or
• 867 Mbps Performance • 867 Mbps or 1.7 Gbps • 2 GE ports uplink or
Dual 5GHz 1 GE + 1 mGig (5G)
performance
• Tx Beam Forming • 2 GE Ports Uplink
1 GE + 1 Multigigabit (5G)
• 1 or 2 GE ports uplink • CleanAir and ClientLink
• Integrated BLE Gateway • Embedded Hyperlocation
• CleanAir and ClientLink • StadiumVision
• Internal or external • Real-time analytics and
• Max Transmit Power (dBm) • Internal or External
antenna (1850) • Internal or External packet capture
per local regulations1 Antenna
• Tx beamforming Antenna
• 3 GE Local Ports, including • Smart Antenna • Cisco CleanAir and
1 PoE out2 • USB 2.0 • Smart Antenna ClientLink
Connector Connector
• Local ports 802.1x ready2 • USB 2.0 • Internal antenna
• USB 2.0
• Centralized, FlexConnect and Mobility Express
• USB 2.03
1 Available for High-powered only 2 Available for wall-plate and teleworker only 3 Available for teleworker only
• Investment Proof
© 2019
Modularity Cisco and/or its affiliates. All
• USB 2.0
• reserved.
rights Integrated BLE
Cisco Public 41
HDX AP Model Comparison
802.11ac Wave 1 802.11ac Wave 2

1570 3702E IW3700 1560 2800E

AP Model

4x4:3 4x4:3 4x4:3 3x3:3 4x4:3

Radio Design 802.11ac W1 802.11ac W1 802.11ac W1 802.11ac W2 802.11ac W2
External External External External External
Antenna Configuration Single or dual band Dual band Dual band Dual band Dual band
AC, DC, PoE
Power Options PoE out = 802.3at
PoE PoE, DC (M12) PoE+/UPoE PoE+

-20 to 43 °C -20 to 43 °C
Environment -40 to 65 °C NEMA enclosure -50 to +75°C -40 to 65 °C NEMA enclosure
required required

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 42
Cisco Wireless
Controllers
 Cisco Wireless Controller Portfolio (AireOS)
Large Enterprise, Branch
Control at Central Site
Mid-size Enterprise, Branch
Control at Central Site
Cisco 8540
Small Network Cisco vWLC 6000 APs
3000 APs 64,000 clients
32000 Clients 40 Gbps
Flexconnect mode

Mobility Express Cisco 3504 Cisco 5520

50 APs/1000 Clients AP 150 APs
18xx 1500 APs
3000 Clients 20,000 Clients
100 AP/2000 Clients: 4 Gbps
AP2/3K 20 Gbps
Flexconnect mode

1-100 APs 1-1500 APs 1-6000 APs

© 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 44
 Catalyst 9800 Series Wireless Controllers
Translate business intent into network policy and
DNA Center capture actionable insights with DNA Center

C9800-80 C9800-40

C9800 for Cloud C9800 on Cat 9k Switch

Aironet Access Works with Cisco Aironet 802.11ac

Points Wave 1 and Wave 2 Access Points G l o bal
* GCP EFT Only Sales Training
Cisco Network
Management
Prime Infrastructure and DNA Center

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 47
Location Services
How CMX works?

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 49
How Location Is Calculated Traditionally
Access points detect mobile
devices or tag signals and Derived D1
Measured strength:
measure RSSI from all
frames sent over Wi-Fi -33 dBm
D1

Controllers send an
RSSI information signal to the D2 Derived D2
Measured strength:
Cisco® MSE for
-40 dBm
location calculation

RF fingerprinting and D3
triangulation, based on signal Derived D3
strengths, are used to Measured strength:
calculate the device location -50 dBm

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 50
Connected Mobile Experience (CMX)

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 51
Aeroscout RTLS tag on hardhat for location tracking / ventilation on demand / smart blasting Ventis RTLS Tag
Gas Detection, Tilt Sensor, Man Down

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 52
CMX In Action…

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 53
Step 2: Designing & Planning

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 54
Design for These 3 Key RF Relationships

AP to Client  How clients hear AP’s

Client to AP  How AP’s hear clients

AP to AP  How AP’s hear each other

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 55
 Environment will influence approach…

Remote mining site Enterprise extension City Wi-Fi Cargo Dock

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 56
User Requirement

High Density Client Types Project • Type of Service

Experience • Phones budget • Coverage
• Tablets CAPEX & • System
OPEX resiliency
• Laptops
• IoT Devices

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 57
Resiliency at every level
For optimum high availability

RF Coverage Network Infrastructure Wireless Controller

Services Redundancy
Redundancy Redundancy Redundancy

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 58
 Regulatory Considerations

• 802.11 Standard
• Radio Emissions
• Transmit Power
• Dynamic Frequency Selection
(DFS) Certifications
• All this varies per country

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 59
2.4GHz vs. 5 GHz

Number of non-overlapping channels RF Spectrum

2.4 GHz 5 GHz (FCC) 2.4 GHz 5 GHz

3 23 Very
Crowded
Less
Congestion

5 GHz Advantage: 5 GHz Advantage:

• Over 6 times more channels • Less utilized spectrum
• Channel bonding 20/40/80/160 • Very few non-Wi Fi interfering devices
• More bandwidth for higher throughput • More channels will be available in future

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 60
Coverage Difference in 2.4GHz vs. 5GHz
Example of urban coverage

2.4 GHz Interferers

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 61
Omni vs. Directional Antennas
Omni Antennas

Directional Antennas

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 62
Dual Band vs. Single Band

5 GHz
 Antennas

2.4GHz + 5GHz
 Antennas 
2.4 GHz
 Antennas

Single Band/ Uni-band Dual Band

Separate 2.4GHz and 5GHz antennas Allow the radio to share the same physical
antennas
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 63
Channel Utilization is KEY!

Using Spectrum Analyzers

Monitoring via Cisco APs

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 64
 Maximizing the Spectrum
RSSI vs. SNR
Check your noise floor in
each band during peak
usage
– Packet captures with a NIC that
you trust (MacBook Pro, etc.)
– Fluke AirCheck
– Spectrum Expert
– Metageek Chanalyzer for Clean
Air

Sources of Noise:
• Non Wi-Fi Interferers
• Probing Clients, Rogue APs
• High Co-Channel Interference
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 65
Design and Planning
General consideration
Distance = 1 km
 In real world scenario you need to take in
MAP consideration obstacles  Add more APs to have
RAP Line of Sight (LOS)
 Client type (smart phones, tablets, etc): weakest link
typically would be the Uplink on a smart phone
 For backhaul set the data rate to auto
 The number of MAPs per RAP should be less than
32 but really depends on the application and
bandwidth you want
 Max hop count is 8. Less than Four hops
recommended
 Use the range and capacity calculator

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 66
Rate Vs. Range Testing @ UBC

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 68
 Range Estimates, AP to Client
Reg Frequency Ant Max Distance High Throughput Distance (2.4GHz:
Domain Gain (MCS0 LOS) MCS23, 5GHz: 80 MHz MCS9-3 LOS) to
iPhone

-A 2.4GHz 6 800m 140m

5GHz 8 160m 15m

-E 2.4GHz 6 280m 45m

5GHz 8 160m 15m

-A 2.4GHz 13 1.5km 250m

5GHz 13 275m 25m

-E 2.4GHz 13 320m 60m

5GHz 13 180m 20m

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 69
Coverage and Capacity Calculator

Click here to access capacity calculator

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 70
 Typical Throughput

 Typical Throughput loss: 30%-40% per hop

 Latency: 10 ms per Hop, 0.3-1 milliseconds typical
 Hops: Software supports 8 Hops but 3–4 Hops are
recommended
 Daisy-Chaining increased the supported hop count

Source: http://miercom.com/pdf/reports/20141212.pdf

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 71
Design and Planning
For Your
Reference
At what distance shall I place the MAPs?
• It all depends on the bandwidth you need. Need to consider Data rate vs SNR
• Need to find a compromise between coverage and throughput
MCS index Spatial Stream Media capacity (Mbps) ** Minimum LinkSNR * (dB)
MCS 0 1 15 9.3
MCS 1 1 30 11.3
MCS 2 1 45 13.3
MCS 3 1 60 17.3
MCS 4 1 90 21.3
MCS 5 1 120 24.3
MCS 6 1 135 26.3
MCS 7 1 157.5 27.3
MCS 8 2 30 12.3
MCS 9 2 60 14.3
MCS 10 2 90 16.3
MCS 11 2 120 20.3
MCS 12 2 180 24.3
MCS 13 2 240 27.3
MCS 14 2 270 29.3
MCS 15 2 300 30.3
© 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public
(**) Max data rate considering 5Ghz, 40 Mhz channel, 40ns GI
Design and Planning
How to check backhaul connected data rate?
• How do you see the actual backhaul rate? Is it 802.11n rate?

• (Cisco Controller) >show mesh neigh summary MAP_8c40

• AP Name/Radio Channel Rate Link-Snr Flags State
• ----------------- ------- ---- -------- ------- -----
• RAP_e380 136 m15 33 0x0 UPDATED NEIGH PARENT BEACON
• Or:
• Cisco Controller) >show mesh neigh detail MAP_8c40
• AP MAC : 1C:AA:07:5F:E3:80 AP Name: RAP_e380
• backhaul rate m15
• FLAGS : 86F UPDATED NEIGH PARENT BEACON
• Neighbor reported by slot: 1
• worstDv 0, Ant 0, channel 136, biters 0, ppiters 10
• Numroutes 1, snr 0, snrUp 40, snrDown 43, linkSnr 39
• adjustedEase 8648576, unadjustedEase 8648576
• […snip]
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 73
Site Survey
The importance of site surveys
• Given the nature of the outdoor environment and the lightly licensed spectrum being
used for Wi-Fi based outdoor MESH
• Site Survey’s are important
• Spectrum scans are equally important
• You may not be able to remove the interference source
• But you can design around it

• Remember to also survey at street level where clients will be operating

• If possible survey with either the client or “worst” client you expect to support

• Time based surveys may also be required n months after deployment

• Check for power availability

• Do you have the permits?

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 75
Tools – Active / Passive & Predictive Surveys

Ekahau Site Survey: https://www.ekahau.com/products/ekahau-site-survey/overview/

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 76
Tools – Spectrum Analysis with Sidekick

Ekahau Side Kick: https://www.ekahau.com/products/sidekick/overview/

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 77
Tools – Don’t have a Sidekick?

• Free download:
Cisco Spectrum Expert
• Connect via L3 to AP running in
“Sniffer” mode for full bandwidth
scans.
• Pro tip: Use an AP with directional
antenna for spectrum analysis if
you are trying to locate a signal
source.

Spectrum Expert: https://www.cisco.com/c/en/us/support/wireless/spectrum-expert/tsd-products-support-series-home.html

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 78
Which APs to use for an active site survey?

AP 1540
AP 1530
AP 1560
AP 1550
& Future Access
AP 1570
Points

Autonomous Mode Mobility Express Mode

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 79
Understanding Antenna Patterns

Omni directional antennas are not always

Omni directional…

Especially in the elevation plane.

AIR-ANT2547VG-N
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 80
 Understanding Antenna Patterns

• To the right is the elevation polar pattern for

the ANT2547VG, which is the default, gray
dual-band antenna included with a 1532e.

• Notice the 25-35dB null that occurs at a 14

degree incline. These nulls play havoc if you
are counting on this antenna to link to a
mountain top or “bench” repeater site
located above the radio.

AIR-ANT2547VG-N
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 81
 Understanding Antenna Patterns
Maximum
• Geometry is your friend. So lets take a look null @
498m /
at what a null @ 14 degrees looks like at two 1633 feet

distances away from the antenna. First at

300m / 1000 feet and then at 2km away. 14°
2km / 6561 feet

• Any signal coming from the truck at this 14

degree angle will be 0.08% as strong as the
largest signal coming from the truck
(typically anything less than 5 degrees). Maximum
Null @
74m
242 feet

14°
300m / 1000 feet

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 82
Understanding Antenna Patterns
In typical pit scenarios the challenge is
getting a signal down into the pit. This is
often accomplished by placing APs on AP with
patch
poles/towers/trailers up high around the pit antenna
edge with patch or sector style antennas
facing down into the pit.

While this method results in good TX

coverage down into the pit from the AP –
the challenge is that clients with moderate
gain Omni antennas aren’t getting their
signals back to the AP due to the elevation
issues and the null that’s typically present Client
with
in most higher gain Omni antennas. Omni

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 83
Mounting On Buildings…
• Mount the Root AP to have a good view of the area to be covered
• Understand RAP coverage. Use Directional Antennas for the RAPs on the Roof Tops.
• Max recommended height for MAPs is 30 feet/10 meters
• Recommend placing the APs at the same height
• Minimum recommendation is 20~25 dB of SNR, RSSI of -67 dBm for all data rates, 15% cell overlap
• Do not install the MAPs in an area where structures, trees, or hills obstruct radio signals to and from the access
point

Beyond RF Coverage Area;

Poor SNR

RF “Shadow” Close to Building; Poor SNR

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 84
Architecture to Deploy
Outdoor Wireless
There are multiple ways to achieve a robust outdoor wireless solution

• Deploying an outdoor network without proper planning can get expensive and time
consuming
• This part of the session will help provide information so you can:
• Plan networks around your end users needs
• Select the correct operating mode for your network
• Meet your business needs

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 86
 Supported Outdoor Modes
FlexConnect/
Autonomous Mobility Express Centralized
Flex+Bridge

C
WAN Intranet

Independent Traffic Centralized

Controller running on AP Traffic Distributed at AP
Access Points at Controller

Best suited for Small Small-Medium Branch Outdoors SP/Enterprise

• Simple and cost- • Simple and cost-effective for • Highly scalable for large • Simplified operations with
effective for small small-Medium networks number of remote branches centralized control for
networks • Simple wireless operations Wireless
Benefits with DC hosted controller • Wireless Traffic visibility at
the controller
• Bridge/Local modes
• Low scale • Moderate Scale • L2 roaming only • System throughput
• P2P • L2 roaming only • WAN BW and latency
Key Considerations • Functionality being requirements
replaced by ME ->

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 87
Outdoor Deployment
Autonomous APs
 Outdoor Autonomous APs (fading to black…)

Root Bridge Non-Root Bridge Workgroup Bridge

The root in a point to point (P2P) or Designed to connect to Root Designed to connect as a client to
point to multipoint (P2MP) deployment. Bridge mode autonomous the unified wireless architecture.
Designed to take on non-root bridges, access points. Allows wired Can bridge up to 20 wired clients.
but can also accept associations from and wireless clients on non- Recommended for mobile units.
clients on non-backhaul radio backhaul radio

Install Mode - Uses a series of LED flashes to measure link RSSI between bridges.
Allows installers to align access points
http://www.cisco.com/c/en/us/td/docs/wireless/access_point/15_2_4_JA/configuration/guide/scg15-2-4_book.html

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 89
Cisco Autonomous Deployment Overview
Bridging
L3/L2 switch
Root Bridge 5GHz/2.4 GHz Non Root Bridge L2 switch

Point To Point

L2 switch

Internet

Point To Multipoint

Bridging: basic LAN to LAN wireless connectivity

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 90
 Cisco Prime Management of Autonomous APs

Autonomous Management Capabilities:

• Access Point Heat maps
• Monitoring AP Status
• Monitoring Client Status
• Configuration Templates
• Reporting

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 91
Use Case: Bridging Buildings using Autonomous
• 1572/ 1532 Access Points
• Directional Antennas
• Autonomous Mode
• No need for a WLC

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 92
Outdoor Deployment
Cisco Mobility Express
Cisco Mobility Express: Simple by Design
Controller Function embedded into the access point

Runs WLAN Controller on

access point

Investment Protection - Add

controller without changing Mobile app/WebUI/PnP to
Access Point configure up to 100 access
points

Best Practices activated Simple UI monitors, manages and

by default troubleshoots your network

Simple, Fast IT Flexible Enterprise Class

© 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 95
Mobility Express WLAN Deployment
Mobile App or WebUI DNA Center

Policy Automation Assurance Security ISE CMX

Single Office Distributed Office Distributed Enterprise

Mobility Express Controller Based

Mobility Express Mobility Express in Branch in campus
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 96
Mobility Express Interoperability

DNA Center 1.2 EFT CMX Presence & Analytics

AireOS 8.7 ISE CMX Location
DNA Center 1.2.x GA
CMX Engage

DNA Ready for Small to Medium Size, Single or Multi site Deployments

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 97
Which Access Points can run Mobility Express?
50 1000 50 1000 100 2000
AIR-AP1815I-x-K9C AIR-AP1852-x-K9C AIR-AP3800-x-K9C

AIR-AP1815w-x-K9C AIR-AP1832-x-K9C AIR-AP2800-x-K9C AIR-AP1562-x-K9C

50 1000 50 1000 100 2000 50 1000

The C suffix in the Part Number denotes the Mobility Express image

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 98
 Mobility Express: Best dashboard for Wi-Fi
New software notification
icon
Troubleshooting alert

Make-a-wish to send email

feedback directly to Product
Rogues (Access
Management team:
points and
[email protected]
clients)

Switch between Standard

View and Expert View

Interferers
Higher scalability already
built-in the dashboard

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 99
Expert View
Introduces a wealth of options for wireless experts
Enable 2.4 GHz Band

Enable 5.0 GHz Band

Enable Auto FRA

Enable Optimized Roaming

Enable EDRRM

Enable CleanAir

Select Channel Width

Slider for enabling 2.4 and

5 GHz Data rates

Select DCA channels for

2.4 and 5 GHz

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 100
Outdoor Deployment
Centralized &
FlexConnect
 Controller Based Access Point Modes Overview
Cisco Access Points Support:
• Local mode
• Monitor mode W2 Indoor APs do not yet
• Flexconnect Mode support bridge mode
• Bridge Mode
(18xx, 28xx, 38xx)
• Flex + Bridge Mode (from 8.0 release)
• Sniffer Mode
• Rogue Detector Mode

Why use a outdoor AP15xx, not an indoor AP?

 Ruggedized AP (IP67 rated)
 Transmits at higher power levels (depending on Regulatory Domain)
 Meets outdoor regulatory constrains
 No expensive NEMA enclosure

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 102
 Local Mode vs. Bridge Mode
Local Mode Bridge Mode
+ 100% Client Access on both 2.4 - 5GHz for Backhaul, can be
and 5GHz shared for 5GHz client access

- Requires wired Ethernet drop per + Does not require wired Ethernet
AP including cabling and installation drop, only power
costs
Should be used for High Density Should be used to cover large
Deployments areas
Use Case: Large City deployment Use Case: Open Mining Facility
(Extension to indoor enterprise (Temporary deployments)
deployment outdoors)

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 103
Use Case: High Density City Deployment

WLC 8540
with HA

• At a distance of approx. 1 AP roughly every 250 SqMeters (2700 Sqft)

• Depending on client density APs can be spaced closer/farther
• Directional antennas / HDX features allow more additional APs
• APs should be in Local/Flexconnect mode
• RRM should be enabled with full HDX feature set
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 104
Bridge/ Mesh Mode
Typical Solar Trailer Used in Mining Mesh

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 106
 Cisco Outdoor Mesh architecture overview
From Bridging to Mesh 2.4 GHz Access
L3/L2 switch RAP MAP
(Root AP) Backhaul 5GHz (Mesh AP) L2 switch

WLC Backhaul 5GHz 5 GHz Access

CPI
WGB
Wired access MAP
MSE
5 GHz Access

Mesh Deployment Flexibility:

 LAN-to-LAN connectivity
 Multiple hop backhaul
 2.4 GHz and 5GHz wireless client access
 Ethernet Access to wired clients
 LAN-to-LAN in motion with Work Group Bridge (WGB)
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 107
 How does the Mesh converge?
Self-configuring, Self-healing Mesh
 Optimal parent selection selects the path
RAP Controller
“ease” across each available backhaul Neighbor
 Ease based on number of hops and link SNR Parent
(Signal Noise Ratio) MAP
 AWPP uses a “Parent Stickiness” value to
mitigate Route Flaps
 AWPP integrates 802.11h DFS (Dynamic
Frequency Selection) for radar detection and
avoidance
 Preferred parent can be manually configured if
needed

Adaptive Wireless Path Protocol (AWPP)

establishes the best path to the Root

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 108
 Adaptive Wireless Path Protocol (AWPP)
establishes the best path to the Root

How does AWPP Port-control flow work?

Blocked AWPP packets (Adj req, resp, beacon) – Parent not associated yet

parent selection

Authentication AWPP security packets (Encrypted Tunnel is established)

Authorized

Control DHCP, ARP, CAPWAP control (AP gets IP Address)

CAPWAP Authorized
Open ALL packets

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 109
Bridge Group Names
(BGN)
Determining how the mesh forms
General Mesh Deployment
recommendations include: Monitoring Mesh Links on Prime
• Placing Access Points where the
desired parent will have the
highest link SNR
• Setting Bridge Group Names
(BGN)
• Configuring a Preferred Parent

Mesh Links show color based on SNR

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 112
Bridge Groups
Sectorization (Bridge Group)
3 Hops 2 Hops
 Logically groups APs and controls the
association of the radios
1 Hop  For adding capacity we recommend that you
have more than one RAP in the same sector,
with the same BGN, but on different channels
 Having multiple RAPs with same BGN in an
area is good for redundancy: when a RAP goes
down its MAPs will join a different sector with
same name
RAP
 A factory default BGN is empty (NULL VALUE).
It allows the MAP to do the first association
MAP
MAP

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 113
 How to Configure Bridge Groups
Setting Bridge Group Name (BGN)
• config ap bridgegroupname set MESH-BGN AP_NAME

• Use bridge group names to logically group the mesh access points to avoid two networks on the same channel from
communicating with each other

• If BGN is mismatched, the AP will join a mesh network of another BGN, but after 15 mins, the AP will drop AWPP and
scan for its own BGN

• BGN misconfigurations will cause network instability

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 114
 Preferred Parent
Preferred Parent will be selected for the following conditions:
• P.P parent is the best parent
• P.P link SNR is at least 20dB (In this case, other parents,
however good, are ignored)
• P.P has link SNR between 12 and 20 dB, but no other
parent is significantly better (SNR more than 20% better).
For lower than 12dB SNR, P.P configuration is ignored
• P.P is not blacklisted
• P.P is not in silent mode due to DFS.
• P.P is in the same Bridge Group Name (BGN). If no other
parent available in the same BGN, the child will join the
P.P using the default BGN

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 115
 Strict BGN Matching
• Scan 10 times for finding the matched BGN
parent WLC GUI:
Wireless->AP_NAME->Mesh
• After 10 scans, if no parent with matched BGN,
connect to the non-matched BGN
• After 15 mins, break connection and scan again
• Adds a higher AWPP priority on BGN but does
not strand AP with mis-configured BGNs

Available from 8.0 Release

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 116
Mesh Traffic and
Convergence
 How does Traffic pass in a Bridge Mode
Deployment?
Deployment flexibility

WLAN
Controller

Intranet

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 118
 How does Traffic pass in a Bridge Mode
Deployment?
Deployment flexibility

WLAN
RAP
Controller

Intranet

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 119
 How does Traffic pass in a Bridge Mode
Deployment?
Deployment flexibility MAP

WLAN
RAP
Controller

Intranet

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 120
 How does Traffic pass in a Bridge Mode
Deployment?
Deployment flexibility MAP

WLAN
RAP
Controller

Intranet

MAPs dynamically build

a tree with the best path
to the RAP

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 121
 How does Traffic pass in a Bridge Mode
Deployment?
Deployment flexibility MAP

WLAN
RAP
Controller

Intranet

Mesh carries two types of traffic:

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 122
 How does Traffic pass in a Bridge Mode
Deployment?
Deployment flexibility MAP

WLAN
RAP
Controller

Intranet

Mesh carries two types of traffic:

Wired client traffic

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 123
 How does Traffic pass in a Bridge Mode
Deployment?
Deployment flexibility MAP
Ethernet in
mesh header

WLAN
RAP
Controller

Intranet

Mesh carries two types of traffic:

Wired client traffic

Mesh header
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 124
 How does Traffic pass in a Bridge Mode
Deployment?
Deployment flexibility MAP
Ethernet in
mesh header

WLAN
RAP
Controller

Intranet

Mesh carries two types of traffic:

Wired client traffic

Mesh header
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 125
 How does Traffic pass in a Bridge Mode
Deployment?
Deployment flexibility MAP
Ethernet in
mesh header

WLAN
RAP
Controller

Intranet

Mesh carries two types of traffic:

CAPWAP in
Wired client traffic
mesh header
Mesh header
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 126
 How does Traffic pass in a Bridge Mode
Deployment?
Deployment flexibility MAP
Ethernet in
mesh header

WLAN
RAP
Controller

Intranet

Mesh carries two types of traffic:

CAPWAP in
Wired client traffic
mesh header
Mesh header
© 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public
CAPWAP traffic
 How does Traffic pass in a Bridge Mode
Deployment?
Deployment flexibility MAP
Ethernet in
mesh header

WLAN
RAP
Controller

Intranet

Mesh carries two types of traffic:

CAPWAP in
Wired client traffic
mesh header
Wireless client traffic
Mesh header
© 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public
CAPWAP traffic
Mesh APs scanning - Before joining a RAP

Listens to Beacons on each domain channel

Identifies channels where neighbors are heard

MESH AP

Post initial scan, MAP goes to seek state to

identify the best RAP and initiate a connection

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 129
 Evolution of Wi-Fi Mesh –
Background Scanning for Fast Convergence

RAPs and RAP and

MAPs run
MAPs support MAPs support
convergence
802.11ac - MAPs run
802.1x and Fast with Back
More speed > RAPs and
MAC Faster MAPs run Convergence Ground Scan
authentication Convergence RRM 20 sec/hop 4-10 sec/hop

RAPs and MAPs MAP run MAPs run

MAPs support Authenticate Standard Very Fast
AWPP to WLC Convergence Convergence

WPA-PSK 50 sec/Hop 15 sec/hop

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 130
Mesh Fast Convergence
Parent Loss Detection / DHCP / CAPWAP
Channel Scan/Seek Time per hop (sec)
Keep Alive Timers Information

Scan/Seek all 2.4 & 5GHz Renew / Restart

Standard 21 / 3 sec 48.6*
channels CAPWAP

Scan/Seek only channels Maintain DHCP and

Fast 7 / 3 sec 20.5*
found in same bridge group CAPWAP

Maintain DHCP and

Scan/Seek only channels
Very Fast 4 / 1.5 sec CAPWAP 15.9*
found in same bridge group

4 sec / Off-Channel
CCN/BG Scan Scan/Seek only channels Maintain DHCP and
scan every 3 sec and 8-10sec
Fast/VF found in same bridge group CAPWAP
stay for 50ms
*Number are shown for same WLC, same channel, and same subnet. Times are longer if these variables are changed

WLC CLI Configuration only (Warning: Decreasing convergence time may lead to more parents changes)
• Mesh convergence configuration - (Cisco Controller) > config mesh convergence { standard | fast | very-fast } all
Background scanning configuration - (Cisco Controller) > config mesh background-scanning {enable | disable}

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 131
 Mesh Convergence - Building the Off-Channel
List

RAP1 – Ch 36 MAP1
WLC
Switch

RAP2 – Ch 44,48

RAP3 – Ch 40 MAP3 – Ch 40

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 133
 Mesh Convergence - Building the Off-Channel
List

1. MAP1 Scan for parents

RAP1 – Ch 36 MAP1
WLC
Switch

RAP2 – Ch 44,48

RAP3 – Ch 40 MAP3 – Ch 40

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 134
 Mesh Convergence - Building the Off-Channel
List

1. MAP1 Scan for parents

2. Finds and joins Best Parent

RAP1 – Ch 36 MAP1
WLC
Switch

RAP2 – Ch 44,48

RAP3 – Ch 40 MAP3 – Ch 40

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 135
 Mesh Convergence - Building the Off-Channel
List

1. MAP1 Scan for parents

2. Finds and joins Best Parent
3. Background scans all neighbors
RAP1 – Ch 36 MAP1
WLC
Switch

RAP2 – Ch 44,48

RAP3 – Ch 40 MAP3 – Ch 40

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 136
 Mesh Convergence - Building the Off-Channel
List

1. MAP1 Scan for parents

2. Finds and joins Best Parent
3. Background scans all neighbors
RAP1 – Ch 36 MAP1 4. Creates an Off-Channel Scanning List
WLC using channels with neighbors present

Switch Off-Channel Scanning List

Standard Fast/Very Fast

RAP2 – Ch 44,48 Scan channels heard

Scan channels heard
during initial full scan
during initial full scan
 then scan Off-
 then scan Off-
Channels found with
Channels found with
neighbors (44,40) 
neighbors (44,40) 
then scan all remaining
then scan just the
MAP3 – Ch 40 channels on domain
RAP3 – Ch 40 subset of the channels
(In US there are 25
(44,48,40)
channels)

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 137
 Mesh Convergence – Background Scan &
Messaging
RAP1
Ch 60
1. MAP1 Scan for parents

MAP1 MAP2
RAP2
Ch 100

RAP3
Ch 140

Available from 8.1 Release

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 138
 Mesh Convergence – Background Scan &
Messaging
RAP1
Ch 60
1. MAP1 Scan for parents
2. Finds Best Parent

MAP1 MAP2
RAP2
Ch 100

BGN RAP Channels

RAP3
BGN_1 60, 100, 140 Ch 140 Off-Channel Neighbor list (Example)
Channel AP Link SNR Ease
RAP1 35 3500
60
MAP2 30 1200
Available from 8.1 Release
100 RAP2 25 2500
140 RAP3 10 1000

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 139
 Mesh Convergence – Background Scan &
Messaging
RAP1
Ch 60
1. MAP1 Scan for parents
2. Finds Best Parent
3. Background Scans all parents
MAP1 MAP2
RAP2
Ch 100

BGN RAP Channels

RAP3
BGN_1 60, 100, 140 Ch 140 Off-Channel Neighbor list (Example)
Channel AP Link SNR Ease
RAP1 35 3500
60
Available from 8.1 Release MAP2 30 1200
100 RAP2 25 2500
140 RAP3 10 1000
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 140
 Mesh Convergence – Background Scan &
Messaging
RAP1
Ch 60
1. MAP1 Scan for parents
2. Finds Best Parent
3. Background Scans all parents
4. Parent Fails
MAP1 MAP2
RAP2
Ch 100

BGN RAP Channels

RAP3
BGN_1 60, 100, 140 Ch 140 Off-Channel Neighbor list (Example)
Channel AP Link SNR Ease
RAP1 35 3500
60
Available from 8.1 Release MAP2 30 1200
100 RAP2 25 2500
140 RAP3 10 1000
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 141
 Mesh Convergence – Background Scan &
Messaging
RAP1
Ch 60
1. MAP1 Scan for parents
2. Finds Best Parent
3. Background Scans all parents
4. Parent Fails
MAP1 MAP2
RAP2 5. Send CCN_WAIT to children
Ch 100

BGN RAP Channels CCN_WAIT

RAP3
BGN_1 60, 100, 140 Ch 140 Off-Channel Neighbor list (Example)
Channel AP Link SNR Ease
RAP1 35 3500
60
Available from 8.1 Release MAP2 30 1200
100 RAP2 25 2500
140 RAP3 10 1000
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 142
 Mesh Convergence – Background Scan &
Messaging
RAP1
Ch 60
1. MAP1 Scan for parents
2. Finds Best Parent
3. Background Scans all parents
4. Parent Fails
MAP1 MAP2
RAP2 5. Send CCN_WAIT to children
Ch 100 6. Join New Parent from list

BGN RAP Channels

RAP3
BGN_1 60, 100, 140 Ch 140 Off-Channel Neighbor list (Example)
Channel AP Link SNR Ease
RAP1 35 3500
60
Available from 8.1 Release MAP2 30 1200
100 RAP2 25 2500
140 RAP3 10 1000
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 143
 Mesh Convergence – Background Scan &
Messaging
RAP1
Ch 60
1. MAP1 Scan for parents
2. Finds Best Parent
3. Background Scans all parents
4. Parent Fails
MAP1 MAP2
RAP2 5. Send CCN_WAIT to children
Ch 100 6. Join New Parent from list
7. Notifies child of channel change

BGN RAP Channels CCN_CINFO

RAP3
BGN_1 60, 100, 140 Ch 140 Off-Channel Neighbor list (Example)
Channel AP Link SNR Ease
RAP1 35 3500
60
Available from 8.1 Release MAP2 30 1200
100 RAP2 25 2500
140 RAP3 10 1000
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 144
Daisy Chaining
 Daisy-chaining: Serial Backhaul Deployments
WLAN MAP AP
Controller RAP (Master) (Slave) MAP2

80MHz 80MHz

• Both 1532s and 1572s in Bridge Mode can utilize this configuration

• Master MAP & Slave MAP are operating on different 5GHz channels to maximize throughput across the
mesh link
• BGN configuration and the Preferred Parent command are recommended to maintain the mesh tree

• Slave MAP must be configured in RAP Mode

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 146
Daisy-Chaining: Mixing Access Points
WLAN MAP AP
Controller RAP (Master) (Slave)

80MHz

• Slave Access Point can be:

• 1530 / 1550 / 3700P
• With 1572, PoE-Out is 802.11at (25.5w), 1532E / 3702P can be powered directly!

• For PoE-Out, the 1572 power source must be AC / DC / or PoC

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 147
 Daisy-chaining: Dedicated Client Access Device
Deployments

WLAN MAP
Controller RAP (Master) Local AP

5GHz

• Local AP is dedicated for Client Access, while Master MAP will provide 2.4/5GHz
the mesh backhaul link
• In this configuration, LocalAP should be in local mode or flex-connect
mode
• The Master MAP must have Ethernet bridging enabled

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 148
 Configuring Daisy-chaining

• (Cisco Controller) >config ap daisy-chaining [enable/disable] <ap_name>

• AP#capwap ap daisy-chaining <enable/disable>

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 149
 Use Case: Roadside Video Surveillance
High Throughput over
RAP
Multiple Mesh Hops
Daisy-Chain Daisy-Chain Daisy-Chain

WLC 8540 with HA

• WLC8500 to support high number of access points

• Daisy-Chaining allows 5GHz backhaul to operate on different channels maximizing throughput over distance

• High throughput applications such as HD video can span up to 8 mesh hops

• 5GHz radios should use directional antennas to maximize distance

• 2.4GHz radios can serve clients

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 150
Outdoor Deployment
FlexConnect
(Flex+Bridge)
Flex + Bridge (Flex on Mesh) Central Site
WLCs

Centralized
• New AP mode that allows Flexconnect behavior Traffic
across mesh-enabled AP
• Control plane supports:
• Connected (WLC is reachable)
• Standalone (WLC not reachable)
• Data Plane supports:
• Centralized (split MAC) WAN
• Local (local MAC) Remote
Local
• Flexconnect Groups Traffic
Office
• Max 8 Mesh hops, Max 32 MAPs per RAP
• Local AAA support

• A WLC have a mix of Bridge and Flex + Bridge

• RAPs inherent VLANs from its connected MAP
Local Data WLAN
Central Data WLAN

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 152
 How does Traffic pass in a Flex + Bridge Mode
Deployment?

WLAN
Controller

WAN

Local
Intranet

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 153
 How does Traffic pass in a Flex + Bridge Mode
Deployment?
MAP

WLAN
RAP
Controller

WAN

Local
Intranet

Flex+Bridge carries the following traffic:

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 154
 How does Traffic pass in a Flex + Bridge Mode
Deployment?
MAP

WLAN
RAP
Controller

WAN

Local
Intranet

Flex+Bridge carries the following traffic:

Wired client traffic

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 155
 How does Traffic pass in a Flex + Bridge Mode
Deployment?
MAP
Ethernet in
mesh header

WLAN
RAP
Controller

WAN

Local
Intranet

Flex+Bridge carries the following traffic:

Wired client traffic Mesh header

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 156
 How does Traffic pass in a Flex + Bridge Mode
Deployment?
MAP
Ethernet in
mesh header

WLAN
RAP
Controller

WAN

Local
Intranet
Flexconnect WLAN

Flex+Bridge carries the following traffic:

Wired client traffic Mesh header

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 157
 How does Traffic pass in a Flex + Bridge Mode
Deployment?
MAP
Ethernet in
mesh header

WLAN
RAP
Controller

WAN

Local
Intranet
Flexconnect WLAN
Ethernet in
Flex+Bridge carries the following traffic: mesh header
Wired client traffic Mesh header
Local Wireless client traffic
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 158
 How does Traffic pass in a Flex + Bridge Mode
Deployment?
MAP
Ethernet in
mesh header

WLAN
RAP
Controller Central WLAN

WAN

Local
Intranet
Flexconnect WLAN
Ethernet in
Flex+Bridge carries the following traffic: mesh header
Wired client traffic Mesh header Central Wireless
Local Wireless client traffic CAPWAP client traffic
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 159
 How does Traffic pass in a Flex + Bridge Mode
Deployment?
MAP
Ethernet in
mesh header

WLAN
RAP
Controller Central WLAN

WAN

Local
Intranet
Flexconnect WLAN
Ethernet in
Flex+Bridge carries the following traffic: mesh header
Wired client traffic Mesh header Central Wireless
Local Wireless client traffic CAPWAP client traffic
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 160
 How does Traffic pass in a Flex + Bridge Mode
Deployment?
MAP
Ethernet in
mesh header

WLAN
RAP
Controller Central WLAN

WAN

Local
Intranet
Flexconnect WLAN
Ethernet in
Flex+Bridge carries the following traffic: mesh header
Wired client traffic Mesh header Central Wireless
Local Wireless client traffic CAPWAP client traffic
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 161
 How does Traffic pass in a Flex + Bridge Mode
Deployment?
MAP
Ethernet in
mesh header

WLAN
RAP
Controller Central WLAN

WAN

Local
Intranet
Flexconnect WLAN
Ethernet in
Flex+Bridge carries the following traffic: mesh header
Wired client traffic Mesh header Central Wireless
Local Wireless client traffic CAPWAP client traffic
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 162
Additional New Features
for Outdoor Mesh
 Native VLAN Support
• Pre 8.0, VLAN 1 assigned on all
backhaul links
• Now the native VLAN can be
assigned to match switchport

interface GigabitEthernet0/1
RAP MAP
switchport trunk encapsulation dot1q
switchport trunk native vlan 161
switchport mode trunk

Available from 8.0 Release

Note: Start configuration with your last Mesh hop

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 164
 Multi-country Domain Support on a WLC
• 8.1 Code allows multiple Country Codes
to be configured
• A Single WLC can now manage multiple
regions
• Best Practices: APs of different
regulatory domains should be deployed
if:
• Different Physical locations
-A Channel 165 -A Channel 165
• Different Bridge Group Names (BGNs) BGN_US BGN_US
• This will avoid stranding MAPs

Available from 8.1 Release

-E Channel 140 -E Channel 140
BGN_AT BGN_AT
© 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public
RRM on 5GHz when in Bridge Mode
• RRM Consists of:
• Transmit Power Control (TPC)
• Dynamic Channel Assignment (DCA)
• Coverage Hole Detection and Mitigation (CHDM)

• Bridge / Flex+Bridge Mode

• RRM on 2.4GHz already existed
• Now RRM on 5GHz if:
• AP is a RAP
• and RAP has a wired link (Ethernet/Fiber/Co-ax) to WLC
• and RAP is without Child MAP

• Local / Flex Mode

5GHz RRM is an optional feature. Enable manually if desired
• RRM on both bands

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 166
RRM on 5GHz when in Bridge Mode
RAP MAP

Channel 149

Power Level 3

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 167
RRM on 5GHz when in Bridge Mode
RAP

Channel 149
Power Level 3

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 168
RRM on 5GHz when in Bridge Mode
RAP

Channel 149
Power Level 3

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 169
RRM on 5GHz when in Bridge Mode
RAP

Channel 149
Power Level 1 (TPC)

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 170
RRM on 5GHz when in Bridge Mode
RAP

Channel 149
Power Level 1 (TPC)

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 171
RRM on 5GHz when in Bridge Mode
RAP

Channel 157 (DCA)

Power Level 1

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 172
 Cisco Outdoor Mesh 2.4 GHz and 5GHz Backhauls
Root AP Mesh AP
Backhaul 5 GHz
2.4 GHz Access
L3/L2 switch
Root AP Mesh AP
Backhaul 2.4GHz L2 switch

5 GHz Access
WLC Backhaul 2.4GHz
CPI
WGB
Wired access MAP
MSE
5 GHz Access

Mesh Deployment Flexibility:

LAN-to-LAN connectivity Backhaul 2.4GHz
 Multiple hop backhaul at 5 or 2.4 GHz
 2.4 GHz and 5GHz wireless client access Mesh AP
 Ethernet Access to wired clients
 LAN-to-LAN in motion with Work Group Bridge (WGB)

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 174
 High Availability anti-stranding features
Stranded: a MAP that is not able to associate and find a path to WLC
• DEFAULT BGN (Bridge Group Name): Mesh APs with incorrect BGN, can still
join a running network using BGN named “DEFAULT”. With “DEFAULT”
BGN:
• MAP associates clients, and forms mesh relationships
• After 15 minutes APs will go to SCAN state rather than rebooting
• Do not confuse an unassigned BGN (null value) with DEFAULT, which is a
mode that the access point uses to connect when it cannot find its own
BGN
• DHCP fall back: this features allow a MAP configured with a wrong static IP
address to fall back to DHCP and find a WLC. If even this fails, AP then
attempts to discover a controller in Layer 2 mode
• FULL SECTOR DFS: DFS functionality allows a MAP that detects a radar
signal to transmit that up to the RAP, which then acts as if it has
experienced radar and moves the sector

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 175
 Enable/disable mesh AP as leaf node
Mesh Leaf Node Support WLC CLI
(Cisco Controller) >config mesh block-child <ap_name>
{enable|disable}
• Mesh AP relationships
• Parent access point - Offers the best route
back to the RAP
• Child access point - Selects the parent access
point as its best route back to the RAP

• When APs in the mesh network have

different radio performance (i.e. 802.11n
and 802.11ac mixed), lower radio
performance mesh AP can be configured
to work only as leaf node, so that the
wireless backhaul performance will not be
downgraded.
• Mesh leaf node - Cannot be selected as
parent access point by other MAPs, only
work as a child MAP

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 176
Workgroup Bridge
(WGB)
 Mesh: Stationary Network
WGB: Roaming/Nomadic Network
• HSR aka Fast WGB Roaming
• WGB Roaming Coordination (8.4)
• 802.11r on WGB (8.6)
• Ethernet daisy chain
Workgroup Bridge • Wireless Bridge Auto-
/ Autonomous Negotiation (8.5)

Features • DLEP client (8.5)

• SSID prioritization in WGB
• Broadcast support for multiple
VLANs

BRKEWN-2027 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 178
IW3702 – Roaming Enhancements

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 179
 IW3702 – Where & Why Is It Used?
Where:
• Outdoor / Indoor APs
• Bridges

Why:
• Ruggedness
• Excellent RF performance
• Extend multiple L2 networks
to a vehicle
• Seamless handoff possible
• CCX Diagnostics
• Ability to Configure:
Data Rates,
Antennas,
Roaming Algorithms / Thresholds, Qos, Rate limiters

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 180
IoT Wireless WGB Roaming Evolution

PRP & DLF enhanced

Basic WGB roaming Fast WGB roaming
roaming

Low to moderate speed High speed (Tested up to Highest speed (Tested up to

• Limited Scanning of 100Km/h) 160Km/h)
channels • 802.11v BSS Fast Transition • PRP (Parallel Redundancy
on WGB Protocol) over wireless
• RSSI smoothing filter • Dual radios approach enables
always-best-connected at
• Optimized rate-shifting
speeds
algorithm
 Dual WGBs, dual radios
(parallel 5GHz) roaming
 Single WGB, dual radios
(parallel 2.4GHz and
5GHz) roaming
• Roaming coordination
prevents two radios from
roaming at the same time
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 181
What Problems We Are Trying To Resolve

Industrial Wireless Signal Strength Packet Loss

Challenges Dynamic Link Radio failover, maximize
Switch system availability
Unpredicted RF
Interference Roaming Consistent on-the-move
Constantly Aware connectivity
Learning
RF Shadowing
Optimal Path Instant adapt to changing
Selection RF environment
Frequent Handover Data Rate Retry Rates

By constantly learning the wireless link metrics (signal strength, data rate, packet loss/retry rates),
IW3702 as WGB can perform intelligent path selection and ensure reliable wireless transmission.

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 182
Seamless, Resilient Connectivity for Mobile
Assets
1. Fast WGB Roaming enables consistent throughput and stable rate-shifting at high speeds

• WGB support for 802.11v Fast

BSS Transition
• Enhanced RSSI filter algorithm

2. Roaming Coordination decouples roaming events on the 2.4 and 5 GHz interfaces

• WLAN interfaces coordinate roaming

sequence and utilize delay timer
Channel 11 Channel 48
• Single or Dual-WGB configurations

3. Traffic distribution using PRP over Wi-Fi effectively overcomes single channel handover or failure

• PRP stack integrated in WGB or

Bandwidth profile after discard of PRP duplicates using external PRP switch
• Also reduces packet delay variation

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 183
PRP in Action

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 184
 WGB Roaming Coordination
• When two radios that work under WGB mode are connected to each other, there is a
roaming coordination mechanism between the two radios to prevent them from
roaming at the same time
• Roaming coordination mechanism can be applied to two scenarios
• Two connected radios on two separate IW3702s in WGB mode
• Two radios on the single IW3702, both configured as WGB

• When a WGB, needs to roam, it sends an indication to the other WGB indicating it
wants to start roam, the other WGB shall wait for 100ms (configurable) by default if it
also needs to roam , once the roam event on the WGB is complete or if the timeout
expires, the other WGB is free to roam
• Roaming Coordination mechanism facilitates seamless connectivity when multiple RF
paths are involved such as in case of PRP or DLEP

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 185
PRP over Wireless Redundancy Options
Dual WGB, Dual Radio - WLC 8.4 Single WGB, Dual Radio - WLC 8.5

5GHz 5GHz

2.4GHz 5GHz
WGB WGB

PRP Switch as RedBox WGB as RedBox

• External PRP switch as RedBox (redundancy box) • WGB as RedBox (redundancy box) performs packet
performs packet duplication/duplication discard duplication/duplication discard function
function
• Redundant path available via 2.4GHz and 5GHz
• Redundant path available via two 5GHz radios on two radios on single WGB
WGBs
• Network infrastructure side PRP switch as RedBox
• Network infrastructure side PRP switch as RedBox
• Application examples: Autonomous vehicles and
• Application examples: Train to track side, industrial straddle carriers and mission critical application etc.
automation and amusement ride applications

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 186
 Guidelines for Single WGB PRP Configuration
• Redundant wireless path in the network
• Duplicated traffic is mapped to two SSID A and SSID B, each within specified VLAN
• Each radio on single WGB is configured to associate to either SSID A or SSID B
• Redundant 2.4GHz and 5GHz wireless paths are provided for wired clients behind the WGB, traffic
from/to the client are duplicated, MGMT frames and other traffic are not duplicated
• It is recommended that wired clients behind WGB use different VLAN from the VLANs assigned to
SSID A or SSID B
• Traffic between aggregate switch and APs are in QinQ format to identify which path they come from
• QinQ function on AP is enabled by PRP feature
• QinQ function on Aggregate switch is enabled by switch configuration

• Currently only FlexConnect mode (central authentication, local switching) is supported

• Supported platforms - Infrastructure side AP: IW3702, AP3700, AP2700, AP1572 series, WGB:
IW3702

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 187
 Guidelines for Dual WGB PRP Configuration
• Redundant path in the network
• Duplicated traffic is mapped to two SSID A and SSID B, each within specified VLAN
• Each WGB is configured to associate to either SSID A or SSID B
• Redundant 5GHz wireless paths are provided for wired clients behind the WGB, traffic from/to the client
are duplicated, MGMT frames and other traffic are not duplicated
• It is recommended that wired clients behind WGB use different VLAN from the VLANs assigned to
SSID A or SSID B
• Traffic between aggregate switch and APs are in QinQ format to identify which path they come from
• QinQ function on AP is enabled by PRP feature
• QinQ function on Aggregate switch is enabled by switch configuration

• Pair of WGBs support roaming coordination function by connection between their second Gigabit
Ethernet interface
• Currently only FlexConnect mode (central authentication, local switching) is supported
• Supported platforms - Infrastructure side AP: IW3702, AP1572 series, WGB: IW3702

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 188
Dynamic Link Forwarding Deployment Modes
Dual WGB, Dual Radio Single WGB, Dual Radio

5GHz 5GHz

Master Slave
2.4GHz 5GHz
WGB WGB

Layer2 tunnel

Switch WGB

• Intelligent link selection is based on two • Intelligent link selection is based on 2.4GHz and
2.4GHz/5GHz radios on two WGBs 5GHz radios on single WGB
• Master and slave roles are defined via CLI
• Layer 2 tunnel carries data traffic and control
messages between master and slave WGB

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 189
 How WGB Dynamic Link Forwarding Works
WLC

Switch
Client • Each WGB radio maintains its own association to APs
Traffic
respectively

CAPWAP CAPWAP
• Two radio (2.4GHz and 5GHz) metrics (signal strength, data
rate, packet loss/retry rates) are continually learn and
compared
AP
• WGB selects an optimal link as active link at a time to forward
2.4G 5G data traffic, the other radio is considered as inactive but radio
Active link
✗Inactive
Link down or about to roam
link association is maintained
Learning
metrics
• Whenever inactive link has better metrics, a switchover takes
WGB
place, data packet is forwarded to the better link accordingly

• Whenever active link is down/disassociated or about to

roaming, a switchover takes place
Switch

• WGB can be static or roaming

Client
Traffic

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 190
Step 3: Deployment

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 194
Making sure few things before installation…
• By default the following parameters are set
• AP Role: MAP
• Default 2.4GHz and 5GHz channels are selected
• Default Transmit Power is set: Power Level 1
• Default Mesh Distances estimation is set to 12000ft
• Default BGN
• Backhaul Client Access is enabled
• Default Mesh Encryption type is EAP

• Primary, Secondary, Tertiary Wireless LAN Controller should be set

• DCHP Sever
• Option 43 – IP addresses of Wireless LAN Controllers
• Option 60 – AP Type
• Option 82 – DHCP Relay Information

• MAC-Authentication must be performed

• At each Wireless LAN Controller
• Use an External AAA

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 195
AP Accessories

GPS Antenna Lightning Arrestors Grounding AP

Cisco AP Hardware Installation Guide: http://www.cisco.com/c/en/us/td/docs/wireless/access_point/1570/installation/guide/1570hig/1570_chinstallaccs.html

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 196
Don’t forget the powering requirements...

1540I 1540 1560I 1560E 1570I 1570E

PoE
PoE+
UPoE
DC Power
AC Power

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 197
Ensuring tight connections

•
•
•
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 198
Flexible Antenna Ports
Support for Uniband or Dualband Antennas
Top Ports: 5 GHz
• FlexPort can support either dual-band or
Top Ports: Not 30x30 30x30
Used º º single band antennas on the same
platform
SW Switch
• Configurable via a software command
• Dual-band ports, use the bottom 2
30x120º 30x30º

antenna ports to connect to dual-band

omni or directional antennas
Bottom Ports: 2 & 5 Bottom Ports: 2.4 GHz
GHz • Single-band ports, use two separate 2.4
GHz and two 5 GHz antenna ports

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 199
Step 4: Day 1 & Day 2

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 200
Best Practices
Infrastructure Apple
Enable High Availability (AP and Client SSO) FastLane
Enable AP Failover Priority
Enable AP Multicast Mode
AVC
Enable Multicast VLAN
Enable Pre-image download
Enable AVC AP
Enable NetFlow Groups
Enable Local Profiling (DHCP and HTTP)
Enable NTP
RF
Modify the AP Re-transmit Parameters
Groups
Enable Fast SSID change
Enable Per-user BW contracts
Client
Enable Multicast Mobility
SSO
Enable Client Load balancing
Disable Aironet IE
FlexConnect Groups and Smart AP Upgrade

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 202
Wireless/ RF Less than
4 SSIDs
Disable 802.11b data rates
Restrict number of WLAN below 4
RRM
Channel bonding – 40 or 80 MHz
Enable Band Select
Use RF Profiles and AP Groups CleanAir

Enable RRM (DCA & TPC) to be auto

Enable Auto-RF group leader selection RF
Groups
Enable Cisco CleanAir and EDRRM
Enable Noise &Rogue Monitoring on all channels Enable
Enable DFS channels DFS

Avoid Cisco AP Load

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 203
Mesh Set BGN

Set Bridge Group Name

Set Preferred Parent Set PP

Multiple Root APs in each BGN

Set Backhaul rate to "Auto" Multiple
RAP
Set Backhaul Channel Width to 40/80 MHz
Backhaul Link SNR > 25 dBm Backhaul
Link
Avoid DFS channels for Backhaul (FCC only) – If possible SNR>25
External RADIUS server for Mesh MAC Authentication
Backhaul
Enable IDS rate: Auto
Enable EAP Mesh Security Mode

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 204
Security dot1x
SSID
Enable 802.1x and WPA/WPA2 on WLAN
Enable 802.1x authentication for AP AP dot1x
Supplicant
Change advance EAP timers
Enable SSH and disable telnet
Disable Management Over Wireless Disable
Telnet
Disable WiFi Direct
Secure Web Access (HTTPS)
https web
Enable User Policies acces
Enable Client exclusion policies
Enable rogue policies and Rogue Detection RSSI User
Strong password Policies policies
Enable IDS
BYOD Timers

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 205
 Make it Easy Make
Makeit work
it Work Make
Make itit perform
Perform
Enable High Availability (AP and Client SSO)
Enable AP Failover Priority Enable 802.1x and WPA/WPA2 on WLAN
Enable AP Multicast Mode Enable 802.1x authentication for AP
Enable Multicast VLAN Change advance EAP timers
Enable SSH and disable telnet
INFRASTRUCTURE

SECURITY
Enable Pre-image download
Enable AVC Disable Management Over Wireless
Enable NetFlow Disable WiFi Direct
Enable Local Profiling (DHCP and HTTP) Secure Web Access (HTTPS)
Enable NTP Enable User Policies
Modify the AP Re-transmit Parameters Enable Client exclusion policies
Enable Fast SSID change Enable rogue policies and Rogue Detection RSSI
Enable Per-user BW contracts Strong password Policies
Enable Multicast Mobility Enable IDS
Enable Client Load balancing BYOD Timers
Disable Aironet IE
FlexConnect Groups and Smart AP Upgrade Disable 802.11b data rates
Restrict number of WLAN below 4
Set Bridge Group Name Enable channel bonding – 40 or 80 MHz

WIRELESS / RF
Set Preferred Parent Enable Band Select
Multiple Root APs in each BGN Use RF Profiles and AP Groups
Set Backhaul rate to "Auto"
MESH

Enable RRM (DCA & TPC) to be auto

Set Backhaul Channel Width to 40/80 MHz Enable Auto-RF group leader selection
Backhaul Link SNR > 25 dBm Enable Cisco CleanAir and EDRRM
Avoid DFS channels for Backhaul (FCC only) Enable Noise &Rogue Monitoring on all channels
External RADIUS server for Mesh MAC Authentication Enable DFS channels
Enable IDS Avoid Cisco AP Load
Enable EAP Mesh Security Mode
© 2019 Cisco and/or its affiliates. All rights reserved.
http://www.cisco.com/c/en/us/td/docs/wireless/technology/wlc/82463-wlc-config-best-practice.html Cisco Public 206
Mesh : Set Bridge Group Name ( BGN )
• Wireless  All APs  AP Name  Mesh  Bridge Group Name

Enables mesh APs to join pre-determined Bridge Groups using the BGN
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 207
Mesh : Set Preferred Parent
• Wireless  All APs  AP Name  Mesh  Preferred Parent

Ability to influence how the mesh network is created

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 208
Mesh : Multiple Root APs in each BGN
• Wireless  All APs  AP Name  Mesh

Provides redundancy if a Root AP goes offline

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 209
 Mesh : Set Backhaul Rate to “auto”
• Wireless  All APs  AP Name  Mesh  Bridge Data Rate

Allow the backhaul data rate to change dynamically as the quality of the link fluctuates
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 210
Mesh : Set Backhaul Channel width to 40/80
MHz

Wireless  Access Points  Radios  802.11a/n/ac  Configure

Maximize backhaul speeds

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 211
Mesh : Backhaul Link SNR > 25
‘show mesh path’ CLI states the Link-SNR

To avoid poor backhaul links that lead to poor overall mesh performance
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 212
Mesh : Avoid DFS channels for Backhaul
• Wireless  Access Points  Radios  802.11a/n/ac  Configure

Minimizes the number of backhaul channel changes due to radar events

Only applies to US Regulatory Domain
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 213
Mesh : External RADIUS server for Mesh MAC
Authentication
• Wireless  Mesh

Improves the ease of manageability and debugging

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 214
 Mesh : Enable Mesh IDS
• Wireless  Mesh

Additional security by monitoring the wireless network for un-wanted rogue

access points or potential wireless attackers
BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 215
Mesh : Enable EAP Mesh Security Mode
• Wireless  Mesh

More security method for encrypting wireless data

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 216
Important Links for Outdoor WLAN
• Cisco Wireless Best Practices:
https://www.cisco.com/c/en/us/td/docs/wireless/controller/technotes/8-
6/b_Cisco_Wireless_LAN_Controller_Configuration_Best_Practices.html

• Mesh Deployment Guide 8.8:

https://www.cisco.com/c/en/us/td/docs/wireless/controller/technotes/8-8/b_mesh_88.pdf

• WGB Roaming Basics:

https://www.cisco.com/c/en/us/support/docs/wireless/aironet-1130-ag-series/113198-wgb-
roam-config.html

• WGB PRP & DLF Config Guide:

https://www.cisco.com/c/en/us/td/docs/wireless/access_point/atnms-ap-8x/configuration/guide/cg-
book/cg-chap-misc-spec-APs.html#15804

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 217
 Cisco Webex Teams

Questions?
Use Cisco Webex Teams (formerly Cisco Spark)
to chat with the speaker after the session

How
1 Find this session in the Cisco Events Mobile App
2 Click “Join the Discussion”
3 Install Webex Teams or go directly to the team space
4 Enter messages/questions in the team space

cs.co/ciscolivebot#BRKEWN-2027

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 218
Complete your online
session survey
• Please complete your Online Session
Survey after each session
• Complete 4 Session Surveys & the Overall
Conference Survey (available from
Thursday) to receive your Cisco Live T-
shirt
• All surveys can be completed via the Cisco
Events Mobile App or the Communication
Stations

Don’t forget: Cisco Live sessions will be available for viewing

on demand after the event at ciscolive.cisco.com

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 219
Continue Your Education

Demos in Meet the Related

Walk-in
the Cisco engineer sessions
self-paced
Showcase labs 1:1
meetings

BRKEWN-2027 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 220
Thank you