Campus Network - Integrated Networking Solution

Demand background

1. Network architecture

Wired and wireless access: The network offered by the office premises not only provides employees with network access but also provides visitors with wireless network access. The office network and visitor network are logically separated (physically isolated). In addition to PCs, the wired terminals include printers, IP phones, and other dumb terminals, which require PoE. Wireless access mainly involves portable computers, PADs, and smartphones.

VPN interconnection among branches: Branch sites must be able to communicate with the enterprise headquarters, mainly to access enterprise resources, OA systems, and some key data. The access channel must be encrypted, and the branches interconnect with the headquarters via IPSec VPN.

Traffic control: To guarantee good network experience, different traffic control policies can be applied for different applications for enterprise office business and visitor network access.

2. Terminal access

The access terminals of enterprise branches are divided into several categories, such as employees, visitors, office terminals, and monitoring terminals.

Enterprise employees: Through both wired and wireless access, employees can access the network resources of the headquarters, the internal network resources of the enterprise, and the Internet. When accessing internal resources, portal authentication is supported.

Visitors: Visitors generally use wireless access terminals to access the Internet. As a best practice, use an SMS or WeChat official account for authentication.

Office terminals: Office terminals mainly include printers, POS machines, and IP phones with wired access as the main access method. As a best practice, use MAC authentication.

Monitoring terminals: Monitoring terminals mainly include monitoring cameras and PoE power supplies. As a best practice, use MAC authentication.

3. O&M management

Instantly available cloud management network system: The system is available after users create an account without installing a professional network management system, which saves time and cost.

Instantly available network system: With the cloud management system, the network on the user side achieves plug-and-play, which significantly saves the labor costs for users.

Channel providers and integrators can provide convenient network O&M services for users based on the cloud management network system, saving labor input for users and maintaining continuous O&M incomes for channel providers and integrators. Compared with traditional O&M methods, the cloud management network solution significantly cuts the labor costs of O&M for channel providers and integrators.

Solution

H3C Oasis platform is a free cloud network platform provided by H3C for small- and medium-sized enterprises. It eliminates the need for a dedicated network management system which is costly and heavy. You can log in and use the platform without installation. Oasis has now managed hundreds of thousands of network devices.

Oasis Cloudnet is an H3C enterprise cloud network management solution based on the Oasis platform. It is designed to centrally manage wireless and wired network devices of small- and medium-sized enterprises.

Benefits of Cloudnet for small- and medium-sized enterprises:

The Cloudnet solution is ready for use.

The Cloudnet solution enables plug-and-play networks, which greatly simplifies network deployment and enables users to complete network deployment in minutes.

The service configuration of the Cloudnet solution is not a traditional configuration based on device features (such as VLANs), but a de-specialized configuration based on user intentions. Professional concepts such as VLAN are shielded from O&M personnel, and the service configuration is simple and easy to use.

The Cloudnet solution allows multi-branch/chain enterprises to construct their VPNs quickly, enabling a quick connection between branches/stores and the headquarters.

The Cloudnet solution only collects information of users' network devices for configuration and O&M, and does not collect any service data of users.

The Oasis Cloudnet solution contains the following component roles:

Oasis Platform: Users can manage the network on the platform. After a device goes online, Oasis Platform will deploy the relevant offline configuration to the device to manage the device.

Gateway device: At present, both the MSR router and MSG wireless converged gateway can be used as a gateway device. The gateway device is also used as DHCP server in each scene, and the MSG device functions as the AC device at the same time. The gateway device accepts the address pool configuration and VLAN configuration deployed by the Oasis platform after going online. The intranet devices can be connected with these configurations.

Intranet devices include switches, ACs, APs (Fit APs), and cloud APs. After an intranet device is powered on, it obtains the Oasis domain name and the address of the device management VLAN from the gateway through the DHCP option. Then, the intranet device can register on the Oasis platform by using the obtained domain name and VLAN address so that it is managed by the Oasis Platform.

Cloudnet app: It is mainly used to add the serial number of the device to the site without scanning the code, and configure the connectivity on the WAN side of the gateway.

Simple VPN networking:

Solution highlights

Cloudnet is a cloud management network solution oriented to business chains, multi-branch enterprises, and small- and medium-sized enterprises based on the Oasis Cloud platform. The solution is a new management and O&M model for customers and enterprises, with the following highlights:

Plug and play for all devices across the entire network with zero O&M on site: The devices are automatically deployed and achieve plug and play without scanning the code of branch site networks. The network is deployed with one click.

Plug and play for device failure with fast service recovery: When a branch site device is failed, a similar device in the same or different model can be used to achieve rapid service recovery.

Intent-based network configuration with de-specialized management: With the unified web configuration platform, non-professionals can complete the upgrade and configuration of devices, as well as the network monitoring and management based on a graphical operation guide.

Cloud-based management and centralized monitoring to significantly reduce enterprise OPEX: All operations can be performed remotely for scenarios of multi-branch and a large number of stores, and technical personnel do not need to take business trips, thus cutting O&M costs.

Master the network status anytime and anywhere with the Cloudnet app: Cloudnet app enables users to monitor network status and optimize network parameters anytime on a smartphone. The lightweight management model delivers better user experience.

AI-based intelligent analysis with network fault prediction and accurate positioning: The Cloudnet platform incorporates big data analysis and AI capabilities to locate the causes of network failure and poor terminal experience in a timely and accurate manner.

Diverse authentication capabilities: Multiple methods of authentication are supported, including SMS, WeChat, and QR code, to meet the needs of different users and endpoints to access the network.

Open API and value-added applications: The Cloud-Net platform provides standard open Restful API interfaces. Based on the data operation, it achieves tailor-made development. It can be combined with customer industries to provide user portraits, customer traffic analysis, precision marketing, and other value-added applications to accelerate business operations.