AVAYA

The Avaya Vision Avayas vision for the Enterprise Plug & Play Communications calls for a new level of synergy between People, the collaborative real-time Applications that they use, and the underlying, enabling Network. The goal is to deliver a consistent Enterprise-class experience, one that supports context-aware collaboration that is always-on, simplified and virtualised.

A key building block for this vision is the foundational network. As real-time communications continue the evolution to IP the data network becomes totally integrated into the delivery of Communications-enabled Business Services and mission critical business applications. So then, the question becomes, what defines a successful network? What IT Executives Say As the Business becomes fully dependant on these new enablers it immediately and directly translates into a set of challenges and priorities for the infrastructure. Gartner has surveyed Enterprises on their top challenges and they are listed by priority. Top of the list is Availability, and not simply individual node or element uptime but real, business-empowering end-to-end application availability. Following right on the heels of availability is ensuring that this new corporate lifeblood is robust, that it can survive a disaster and that their particular Business will not become a casualty. Of course the pressure to do more with less rates high on everyones hit list. Todays economic realities mean that every line item must translate into tangible business benefit; just like free credit the days of unlimited budgets are long gone

The key to delivering an effective network starts with delivering an efficient one. You will see from the list that this encompasses a multitude of aspects: energyefficiency, flexibility and versatility embracing virtualisation where this can provide advantage (particularly in time-to-market scenarios), and fully maximising all resources and assets. In many ways the best network closely resembles the best organisational structure: lean and mean, and without the drag of bloated and inefficient surplus that adds nothing to delivering the core business yet consumes resources and distracts from the primary goal. Networking Requirements Summarised We can quite easily summarise these indicators into three key focus areas: The absolute need for a network that is first-and-foremost dependable A network that is highly-tuned for the efficient delivery of a versatile set of services And one that seamlessly supports the relentless demand for growth and evolution The objective is clear and simply, if we can deliver strongly and consistently in these three key areas then the network will be successful and by virtue of a successful underlying network the enabling Communications-enabled Business Services can be leveraged to their maximum. This is Avayas strategy for Data Networking: focussing on those elements that are crucial to the Enterprise, and executing on them better than any other Vendor..! Avayas Unique Value Proposition How does Avaya uniquely address the most crucial requirements of the Enterprise? First, intelligent components and designs are at the heart of Avayas reputation for delivering the most distinguished resiliency model in the industry. Besides being fully scalable across the Enterprise, it has been 3rd party tested to deliver up to 7 times better resiliency than the market share

leader and provides uncompromising end-to-end availability for real-time applications such as IP Telephony.

Second, providing dependability and performance only goes so far if the network is not efficient in its service delivery. An efficient network is a better performing network. Avayas network is designed with architectures that maximise all resources and investments, doing away with idle or under-utilised links, equipment, and even entire architectural tiers delivering up to 20X better performance and 1/3 less equipment.

And, a network that is deterministic and optimised also needs to have the embedded flexibility to seamlessly scale as business demands evolve and grow. Through genuine innovation Avaya provides Industry-leading solutions that maximise capacity utilization, easily accommodate incremental growth, and therefore avoid unnecessary and costly fork-lift upgrades

In summary, while Avaya addresses each characteristic uniquely, the most impressive advantage is that Avaya excels at all three simultaneously. Well now talk at a high level how we intend to get the message out Avayas Always-On Networking The bedrock of our Dependable Networking is delivering genuine missioncritical reliability the sort of reliability that you need when the success of your core business is directly linked to the availability of information resources and applications. Avaya pioneered a technology and architecture called, Switch Clustering that essentially virtualizes the network core and provides the most effective resiliency model in the market. Sub-Second Failover is a key benefit of this design and ensures that user sessions do not fail and applications do not hang.

The next key aspect is that we deliver solutions that scale across the breadth of the Enterprise environment, and this ensures that the same consistent level of service can be delivered to the Branch as well as the Head Office; its no longer a case of compromising either on service or value, or both. Weve also spent considerable effort to engineer safety mechanisms in to our products to provide automatic protection against outages caused misconfiguration; a surprisingly major contributor to the total number of outages experienced by Enterprises And finally a major focus for us is to provide opportunities for in-service maintenance and repair, and zero-down-time servicing; appreciating that changes windows are becoming increasingly scarce and precious. Rock solid dependability is imperative, but only partially impressive if not married with efficiency, which well look at next. Avayas Efficient Networking One of the powerful benefits of Avayas Switch Clustering is that it offers a network state, called, Active-Active, that delivers a significant efficiency advantage relative to every other Vendor. Our innovative technology allows us to make every network resource concurrently available and user sessions are automatically load-shared; no expensive connections remain idle for the 1% of the time that they might be needed In much the same way that a good business is run just this side of lean and mean the network also benefits from avoiding any temptation to overengineer keeping the designs simple saves money, improves stability, and reduces time-to-diagnose & repair. Our proven Industry-leading energy-efficiency delivers immediate operations savings by reducing the amount of power that is used to directly run a given set of equipment, and also indirectly due to the savings realized for reduced cooling requirements.

Where is makes sense, for example in the Branch Office and the Data Centre, were consolidating services. The Secure Router 4134 is a good example of where we have integrated a Microsoft OCS Mediation Server, and recently also the Unified Communication suite from SCS, a full featured software-based communication system. The Secure router 2330 features an integrated Survivable SIP Gateway for the Branch. This all plays to the message of reducing the total number of devices required, and improving the overall efficiency of the total solution. Our unique approach to networking enables us to deliver solutions that require fewer devices, yet provide consistently higher levels of reliability, performance, and efficiency. The most obvious advantage of a reduced hardware footprint a simpler more streamlined network is a saving on Capital costs; however what should not be ignored is the corresponding knockon effects of reduced operational costs. Avayas Scalable Networking Another aspect to Clustering apart from resiliency and efficiency is the fact that it enhances scalability: quite simply a virtualized multi-device platform provides higher levels of capacity and throughput than an equivalent number of basic devices that just connected together. Clustering adds flexibility and scalability options that minimize network disruption, delivering the optimized solution for network growth. Avaya currently utilizes Clustering as part of our Ethernet Switching, Wireless Networking, and Access Control solutions. Avaya has a proud history of innovation; Switch Clustering and Appliance Clustering are two obvious examples. We continue this tradition with ongoing development of the technology necessary to deliver genuine cost-effective scalability: Stacking architectures that scale beyond 1Tbps and deliver a fullyresilient low-touch hot-swap capability, the Split-Plane concept for optimization of next-generation Wireless delivering on the scalability potential of 802.11n, and the all-important evolution within the Data Center where capacity will need to be able to scale to previously unimagined levels.

The key to delivering true Enterprise-class scalability is to have the foresight to build in future-readiness; no individual product can ever be cost-effectively future-proofed, but a high degree of future-readiness will prolong the useful life and avoid costly and untimely additional upgrade cycles. Increasingly we are moving more and more of the specialized functionality away from separate, dedicated platforms and onto what are becoming multipurpose hosts and as virtualized services running on generic server platforms. This improves the efficiency and scalability (and stability) of the network by having common processes more tightly integrated, and not requiring multiple systems to be interconnected and interoperable. Theres also the added benefit of reducing the hardware footprint and bill; new implementations are now simply software upgrades which can be loaded onto a generic platform and the cost of premium mission-specific hardware is avoided. And finally our open and Standards-based approach to interoperability ensures a flexible, versatile, and adaptable networking infrastructure that can easily accommodate a dynamic business environment. Were now going to have a detail look at a couple of networking examples to demonstrate our clear TCO advantage And Now for The Bottom Line Avaya commissioned independent research to determine the extent of our cost-effective value proposition; covering a series of Campus LAN and Branch Office WAN scenarios, ranging from small through to large. The results are stark: taking into consideration the costs typically associated with deploying and operating a network (including purchasing, maintenance, and operations) Avaya consistently delivers exceptional value when compared side-by-side to our main rival. The Avaya advantage ranges from 43% for a large Campus LAN (and 37% for a mid-sized LAN) to 50% for a Branch Office WAN environment. Further savings will also be realised by virtue of Avayas proven energyefficiency advantage which has been measured at up to 40% across the full range of products and devices, from Data Centre through to Desktop.

Global Customers Trust Avaya Perhaps the fact that we are most proud of is the mass of loyal Customers that continue to supplement and refresh with Avaya Data Networking products. These Customers span the full breadth of industry verticals, and stand as testament to our claims as being the provider of truly cost-effective solutions that deliver Industry-leading reliability and efficiency. Our Customer-base spans the globe and is backed-up by an innovative support and maintenance organisation, ready to assist with ongoing operations and expansion plans. Serving Our Market Avayas unique product and value offering allows Avaya the ability to serve the entire Enterprise market from campus to data centre to branch. Avayas data networking portfolio is grouped into five broad areas: Ethernet Switching a range of Modular & Stackable Chassis LAN Switches for Data centre, Core, Edge, and Branch applications Wireless Networking a complete solution enabling Enterprises to deploy Wireless coverage with a secure, cost-effective and highly scalable infrastructure Unified Branch a range of Routers and VPN Appliances that provide secure remote connectivity and application support for Branches and individuals Access Control solutions that integrate with current network infrastructures to provide the central policy decision to enforce role-based Access Control to the network

 Unified Management providing support for data and voice networks as well as heterogeneous network infrastructures, simplifying the requirements associated with managing faults, configuration, accounting, performance and security A key element of our portfolio is the ability of our products and solutions to scale across the Enterprise delivering a consistent set of services to the business regardless of size or geography. high level tour of each of the portfolio areas Ethernet Switching Avayas Ethernet Switching product line provides complete coverage, ranging from entry-level Branch Office, to high-performance Wiring closet and Data Centre Server aggregation, through to Network Core applications. The range has been progressively refreshed with new hardware options and software functionality constantly developed; most recently weve supplemented with the ERS 5600 models that deliver the Industrys first and only Terabit-capable Stacking solution. As mentioned earlier, a key feature is Switch Clustering, the capability pioneered by Avaya to virtualised the network Core and provide our unique combination of sub-second high availability with optimised performance. Despite attempts by our rivals to imitate, we continue to enjoy clear leadership due to a wealth of experience (hard-earned over the last 6 or 7 years) and our ability to cost-effectively deploy resilient solutions for small, medium and large network sizes. Complementing this is our Industry-leading range of advanced Stackable Chassis fixed-format Switches: delivering all of the advantages typically associated with a Modular Chassis Switch, but without the high price. Further background: Avayas Switch Clustering capability is built using technology that is unique to our products (Split Multi-Link Trucking), yet it is fully interoperable with 3rd

Party Switches, Servers, Appliances, and Routers. What this delivers is a series of benefits that are genuinely differentiated; whilst it may be possible to simulate certain individual elements, there is no competitive offering that can rival the combined capabilities, particularly in terms of simplicity and efficiency. Delivers end-to-end application availability Non-proprietary solution that extends beyond Switches to Servers, etc. This means that the high-availability is not limited to only the Switching network (the Switches themselves and their direct links), but to the total network; importantly also extended to attached Servers, Appliances, and WAN Routers, etc. All competing offers are based on interaction within the Switch domain, and crucially do not extend to the application hosts themselves. Technically-speaking: almost every other rival offering is based around variations of the Spanning Tree Protocol; however this is limited to the actual Switches and is not supported by other devices (Servers, etc). By excluding Servers from the active resiliency technology, these solutions cannot extend availability to the applications themselves. Avayas Switch Clustering is independent of STP and extends to support any device that utilises Link Aggregation, a technology that is both basic and ubiquitous. Devices that attach to the Switch Cluster create a virtual connection using multiple physical links, this provides resiliency together with additional capacity. Solutions that scales Enterprise-wide Cost-effective solutions for every network size; Not limited to top-of-therange product Business processes that demand high-availability are typically also deployed company-wide; therefore it is imperative to deliver consistent levels of resiliency across the entire network. Avaya is uniquely positioned in being able to offer the same capability, built using the same technology, in a broad range of platforms that scale in both price and performance matching various

requirements across the network. This enables the consistent delivery of a network that is itself consistently delivering end-to-end application availability, regardless of location or size. Technically-speaking: Avayas Switch Clustering to built on the basis of the Split Multi-Link Trunking protocol, and with only minor implementation variations it is a available on four different product families: ERS 1600 Series fixed-format standalone Switches, ERS 5000 Series fixed-format Stackable Switches, ERS 8300 mid-tier Modular Switch, and ERS 8600 premium Modular Switch. The only technology to rival Switch Clustering (Ciscos Virtual Switching System, which is a direct copy of the underlying philosophy) is only available on the topof-the-range version of the top-of-the-range Modular Switch, making it economically unfeasible to deploy network-wide. Simplified solution; hardware, software, configuration, & maintenance A capability that is not easily replicated, that is simple to deploy, & does not require complex and/or expensive products The various capabilities and benefits that Switch Clustering provides are delivered without complexity, without the need for expensive hardware or software, and without the need for complex configuration or on-going maintenance. This ensures that the business benefits are not purchased at any price; indeed Switch Clustering uniquely combines both simplicity with cost-effectiveness. While some of the individual capabilities can be simulated using other techniques and/or a myriad of additional products, this approach only adds cost and complexity. Technically-speaking: just one example, Switch Clustering delivers User presession load-sharing access all Uplinks from the Access Switch to the Core; this capability is automatically enabled without the need for any additional hardware, software, or configuration. To attempt to replicate this level of capability in a STP-based network, it would need to have multiple VLANs with MSTP/RSTP configured, a Layer 3-enabled Switch with Routing and ECMP

configured, any even then this solution would be limited to pre-VLAN loadsharing only (not pre-session). Sub-second failover & recovery Delivers the necessary availability plus facilitates in-service maintenance and optimised performance Switch Clustering is probably best known for delivering sub-second failover and recovery, and whilst this remains an extremely important and valid feature its not necessarily a feature that is unique to us. What Avaya continues to deliver in this area is a degree of network recovery which also facilitates in-service maintenance. The deterministic nature of Switch Clustering empowers network operators to compartmentalise the network, making essential services even more resilient, and allowing for individual failures to be repaired in real time, without service restoration work impacting on collateral components or applications. Technically-speaking: enhancements to STP namely Rapid Reconfiguration can be aggressively configured to deliver similar levels of failover performance. However all flavours of STP remain tied to the concept of detecting and acting upon changes to the network topology. This makes a network extremely sensitive to the reliability and availability of particular devices (Root Bridges, etc). Avayas Switch Clustering is built around the concept of mirrored devices and virtualised capabilities, such that an entire Switch can be removed (through failure, or for emergence or routine maintenance) without any loss of overall application availability. Stackable Ethernet Switches have become increasingly popular in the Wiring Closet, and are often selected in preference to Chassis-based alternatives. Price will often have a significant influence on decisions, especially when the multiplying factor of numerous Closets translates into the potential for a very large delta. However not all Stackable Switches are created equal. Not all provide a genuine alternative option to the Chassis, and not all deliver the

performance, resiliency, and ease of operations crucial in an Enterprise environment; some are not even truly Stackable. Avayas portfolio of Stackable Switches is the result of the progressive evolution of a number of historically innovative products. A common thread that links the portfolio is a truly resilient, high-performance Stacking architecture Flexible Advanced Stacking Technology (FAST) this is what makes Avaya genuinely unique, and genuinely different to competitive offerings. Virtual hot-swap capability Enables in-service maintenance & restoration This crucial serviceability and operability feature ensures that any unit failure can be quickly and easily rectified. It is a hot-swap capability pioneered in Modular Switches, and now also available on Avayas Stackable Switches, made possible by virtue of intelligent virtualisation of the Stacking connections. Enabling immediate like-for-like unit replacement without impacting the remaining Stack functionality and traffic, and without complex engineering intervention empowers Operators to deploy our Stackable solutions just as they would a Chassis. Technically-speaking: When a failure occurs the neighbouring Switches will automatically wrap their Stack connections ensuring that collateral Users are not impacted. The failed unit is simply disconnected from the Stack and a like unit without any pre-staging of software or configuration can be inserted, cabled, and powered-up. The Automatic Unit Replacement (AUR) process then self-manages any necessary downloads to the new Switch and then brings it online; all of this without the need for an Engineer to configure or manage a thing. No single point-of-failure Distributed power and forwarding

With a Chassis solution this has meant N+1 Power Supplies and even redundant Switching Fabrics. With our Stackables it is much the same but without the cost penalty: each unit has an independent Switching Fabric, and as each Switching Module has an independent power supply it means that there is no one single point-of-failure. Adding a Redundant Power option further enhances the overall resiliency of the solution. Any individual element failure is equivalent to the failure of a single Module within a Chassis. Technically-speaking: Frame Forwarding decisions are distributed across each independent Switching Fabric. When a frame forwarding decision results in the need to forward the frame to another Switch in the Stack, the Stack forwarding algorithm determines whether the frame will traverse the up or down Stack link, or possibly both. More general Stack management functions are performed by a Base Unit (BU), which selected as part of initialising the Stack. Once normal operations have been established, if the BU (Unit 1) fails or is rebooted, the next Switch (Unit 2) will take over as Temporary BU (TBU) and remain as such until either it is reset or the entire Stack is reset. If only Unit 2, as TBU, fails or is reset (but entire Stack is not reset), then the TBU status will transfer to the Unit 3, the next downstream unit in the cascade. High-capacity virtual backplane Industry-leading, pay-as-you-grow scalable capacity With a Chassis solution its been a given that performance comes as a natural function of design and price. With our Stackables weve been able to combine non-blocking internal switching fabrics with high-speed stacking architectures to deliver a truly high performance solution. The Avaya FAST architecture is not bound by the limitations and constraints facing other Vendors (such as Token Sharing/Passing systems, or basic Cascading), and has been specifically designed to scale proportionally as new member Switches are added to the Stack; as more ports are added and the requirement for more bandwidth grows.

Technically-speaking: A Di-Directional Shortest-Path Traffic Forwarding capability is at the heart of our resilient Stacking architecture, ensuring that the shortest, most optimal forwarding path is selectively chosen for each unique data flow. There is none of the unwieldy logical Ring or Token technology that Competitors use, but a star-based distributed forwarding topology that allows traffic to flow either upstream or downstream simultaneously from every Switch in the Stack, optimising both performance and resiliency. The various implementations of FAST scale capacity according to the market positioning of the different product lines. Ranging from 4Gbps per Switch and up to 32Gbps per Stack for the entry-level ERS 2500 Series, and on up to 144Gbps / 1.152Tbps for the premium ERS 5600 Series. Avaya delivers Industry-leading Stacking capacity in all market segments. Simplified implementation & management Automatic software & configuration control, and centralised management With a Chassis solution it is simply a case of adding a new Module, adding configuration, and connecting devices. With our Stackables it is much the same: simply cable-in a new Stack member, extend the appropriate configuration the Stack is managed as a single network entity. Technically-speaking: The Automatic Unit Replacement (AUR) feature is the process that delivers the Agent Image software, the Configuration file, and the Diagnostic Image software to any additional or replacement Switch; it selfmanages any necessary downloads to the new Switches and then brings it online. The entire Stack operates, appears, and is managed as a single network entity, with specific Stack IP and MAC Addresses. Recommendations for the Ethernet Switching product line VSP 9000 Data Center and large Campus Core ERS 8800 (10-/6-/3-slot) Core Switch for Campus & Data Center

ERS 8300 (10-/6-slot) Core Switch for mid-sized Campus, and/or as a traditional Modular Access Switch ERS 5000 Series Server Aggregation or Wiring Closet 5600 Models new deployments & highest performance 5500 Models existing 5500 deployments ERS 4500 Series Wiring Closet for the Campus Gigabit Ethernet Models better performance, more strategic Fast Ethernet Models good value, non-intensive environments ERS 2500 Series Wiring Closet for the Branch Office Investment Strategy for Ethernet Switching Avayas award winning Ethernet Switching product line has been progressively refreshed with new hardware and software functionality and most recently introduced the ERS 5600 series that delivers the Industrys first and only Terabit-capable Stacking solution. This is an important industry inflection point at the network edge where customers can realize the performance of a Modular Switch, but enjoy the pay-as-you-grow benefits of the Stackable form-factor. Avaya calls this solution a Stackable Chassis. Avaya will complement this investment direction by embedding PoE+ into its edge portfolio. Today: PoE for IP Phones & WLAN Access Points this utilise the normal 802.3af PoE Standard, and we typically see new deployments configured as an IP Phone directly connected to the PoE-capable Wiring Closet Switch, and a PC connecting downstream

 Stackable Chassis model for edge this is an Avaya key differentiator: our FAST (Flexible Advanced Stacking Technology) Switches offer the advantages typically associated with higher-priced Modular Switches Introduction of next generation core platform: VSP 9000 the new VSP 9000 will redefine capacity and scalability for the high-end Data Center: up to 27Tbps and 240 10GbE ports per Chassis (up to 720 per Rack) Tomorrow: Introduction of PoE+ Standard the new 802.3at PoE+ Standard will provide the additional power required for devices such as 802.11n Wireless Access Points Introduction of a new, VSP-class Top-of-Rack Switch for high density 10GbE with uplinks options for multiple 10GbE, 40Gbe, and 100GbE Continued shift of R&D to Stackable Chassis at the Edge well see further transition away from Modular Chassis; it simply makes much more sense to leverage our FAST-enabled Stackable Chassis solution rather than a classic Modular Switch Beyond: PoE+ at the Edge there could be further use made of PoE+ at the edge beyond just 802.11n Access Points and well have the power budget to support this increase Application VPN and integrated Wireless Services into VSP 9000 the VSP (the Virtual Service Platform) will provide a highly-efficient platform for advanced services. Introduction 40G & 100G the next evolution of Ethernet will be 40G and 100G interfaces, and this is the rationale behind the huge scalability that has been built into the VSP (as 240 x 10GbE only requires 2.4Tbps, but 240 x 100GbE requires 24Tbps)

 Interface with Security, CCTV, & Environmental systems - there is a drive to port Security and Facilities systems from proprietary infrastructure to IP/Ethernet, and therefore these will increasingly be directly connected to the Wiring Closet Switch; there are obvious advantages in this, but also certain responsibilities that we will take on.

Wireless networking.
Wireless Networking obviously, this is an exciting time for us. The Avaya WLAN 8100 Series is a high-performance business grade 802.11n system. It delivers enhanced user performance (supports wireless access at speeds three to six times faster than today's 802.11 a/b/g rates with 802.11n) and is optimized for the support of real time applications such as voice, UC and video. It offers an innovative, truly integrated wired/wireless architecture (splitplane) that allows for imbedding the wireless data plane into the switching infrastructure, enabling common hardware reuse, fewer components, and optimized scalability.This is something that weve shared with many analysts and which they see as huge and a way that we can really set ourselves apart. This is not just for the sake of the technology, but important for what it can provide to our customers. It lets our customers future-proof their networks. It lets them deploy a VSP or a WLAN infrastructure that can last for the next 10 years. Its important that customers can continue to run all the services and applications across their networks over future. So, being able to increase the performance of their wireless LAN and reduce the latency because the data is being forwarded by an Ethernet switch only means that customers can better run their applications across the network. Applications like VoIP or video streaming or videoconferencing. Applications that we see as ultimately being run

across the wireless infrastructure. Its not a question of if, its just a question of when customers expect to run these applications over the Wireless network.

Recommendations for the Wireless networking product line WC-8180 highest capacity WLAN Controller for large 802.11n Enterprise deployments (up to 256 802.11n APs today; 512 APs in future) WC-8180 -16L Smaller WLAN controller that offers support up to 16 licenses WAP 8120 - High performance indoor, 802.11n, Dual Radio, Two Spatial Stream, Multiple Input / Multiple Output (MIMO) access point . Investment Strategy for Wireless Networking Avayas wireless strategy is focussed on delivering Wireless LAN solutions that meet the challenges of today, tomorrow, and into the future. Today 802.11a/b/g makes up the majority of WLAN networks however 802.11n is where the growth is. Systems are deployed as a simple overlay scaling can be an issue in environments that are seeking to use Wireless extensively.

Unified Branch
Avayas Unified Branch product line provides a comprehensive range of products designed to deliver exceptional performance together with a high degree of service consolidation. Delivering 4-5X reliability & 2X performance advantage over the market leader, and offering tighter integration between traditional Branch devices WAN Router, LAN Switch, Firewall, and VPN

Gateway they also feature innovative integration of Unified Communications functionality with support for 3rd-party compatibility with SIP Call Servers & IP Phones, and a survivable SIP Voice platform for the Branch. In addition to the advanced Unified Branch products we also offer traditional WAN Core Routers for highly-scaled Enterprise applications. Recommendations for the Unified Branch product line SR 8000 Series Core Routers for: SR 8012 & 8008, 8004 Central sites, Data Centres, & SR 8002 as traditional WAN routers in the Branch SR 4134 Converged multi-service Router for large Branch or Campus SR 3120 Traditional WAN access Router for mid-sized Branch and Regional sites SR 2330 Converged access Router for small and medium Branches SR 1000 Series traditional WAN access Routers for small to mid-sized Branches Investment Strategy for the Unified Branch Avayas Unified Branch product line, based on Secure Router, provides a comprehensive range of products designed to deliver exceptional performance and resiliency, together with a high degree of service consolidation for the branch. Unified branch capabilities include SIP Gateway and survivability, robust IPv4/IPv6 routing, Firewall and VPN security, breadth of WAN, LAN and PSTN connectivity, and integration of Unified Communications applications including SCS and OCS.

Avayas investment strategy is to continue push this innovative integration into smaller scale devices. In addition, Avaya will offer software based VPNs as a

virtual appliance option. As split plane WLAN is introduced, data forwarding can reside at the branch while centralised control can be maintained at headquarters locations. Today: Survivable SIP gateway capability for Secure Routers 2330 and 4134. These platforms provide SIP Gateway capability including PSTN connectivity (FXO, FXS, PRI, BRI), breadth of signalling (including SIP Trunking), Call Admission Control, and SIP Survivability for branch offices. The SR 2330 supports up to 100 users for survivability, while the SR 4134 supports up to 300. Both are currently certified with CS 1000, CS 2100, and SCS, as well as other 3rd party servers. Enterprise Routing and Security. The Secure Routers support IPv4 and IPv6 routing, including RIP, OSPF, BGP, Multicast, and MPLS protocols. They support Stateful Firewalls and IPSec VPN for security, and a breadth of WAN interfaces and Layer 2 protocols. Secure Routes support industry leading Quality of Service capabilities, allowing them to deliver toll quality voice over heavily loaded IP networks, which makes them ideal for deployment in Unified Communication networks. Integrated SCS & OCS. Secure Router 4134 also supports an integrated server module, and can support either the Avaya Software Communications System (SCS) solution, or Microsoft OCS for branch offices. The SR4134 enables SCS and OCS to be delivered on a high performance, highly reliable platform with integrated SIP Gateway capability and PSTN connectivity. SR 4134 with SCS or OCS can be deployed on existing data networks as a UC appliance, or as a truly unified branch platform which also provides the routing and security features needed it the branch office. Tomorrow: Enhanced OCS support. SR 4134 will support new releases of OCS, along with delivering a higher performance server module to enhance support for branch services related to centralized OCS deployments. SR 4134 is the

only platform in the industry that provides integrated OCS support on an enterprise-grade WAN router, providing a differentiated offer for OCSbased networks. Enhanced SIP support. SR 2330 and SR 4134 will continue to evolve their SIP capabilities, including certification of new phones and clients, integration with additional servers, and addition of new features. Enhanced Security and VPN support. Secure Routers will continue to improve their security capabilities to meet compliance needs of our customers. SR 2330 and SR 4134 will also deliver additional VPN capabilities aligned with VPN Routers, to ease migration of the VPN Router installed base to Secure Routers. Beyond New Platforms. Additional Secure Router platforms will be delivered, including lower cost and fixed-configuration models, to expand the priceperformance capabilities of the portfolio. Enhanced Routing, SIP and Security. Additional features will continue to be delivered to evolve and extend Secure Router capabilities to meet the demands of Enterprise networks and keep pace with evolving network requirements and standards. Additional applications will also be delivered on the Secure Router Server Module, which can support Linux and Windows applications and reduce the need for Servers in the branch. Centralised WLAN Controller the Split-Plane development of the WLAN 8100 Series enables further advancements for the Branch; improving the efficiency of Wireless traffic by de-coupling the Data and Control Planes and leveraging the line-rate performance of our Ethernet Switches

Access Control
Avayas Unified Branch Access Control provides Endpoint security innovation that ensures end-to-end integrated security in an Open, Standards-based

approach. Being device-agnostic it is deployable into virtually any existing environment, and offers health scans that are integrated into LAN (and Wireless LAN) and VPN infrastructures. We offer award-winning security solutions that pave the way for dramatically improved security with fully granular control and Role-based control & network compartmentalisation. We currently offer an Appliance-based solution Secure Network Access that is optimised for Avayas LAN products (the Ethernet Routing Switches) and also a suite of software-based products Identity Engines which has been built from the ground-up as an open and fully interoperable solution based on the Standard 802.1X protocol. An advantage of ID Engines is that, in addition to following the trend from proprietary to open solutions, it also parallels the transition from hardware to software and virtualised delivery. Further Background: Avaya delivers proven security solutions including a second-generation network access control solution, with Standards-based support that allows Enterprises to not only securely control who uses the network, but where, when, how and with what type of device. The Avaya NAC portfolio is about providing a wide range of role-based access options that enhance the security of your network, including a Standardsbased solution that integrates with existing network infrastructure, and leverages investment. It centralizes, and thus simplifies, policy decisionmaking throughout your network, then expresses policies in simple language, removing technology from the equation. Improve security with fully granular control Role-based access control & compartmentalization of the network The key is to access control is in providing only as much access as each user requires, to ensure that user devices are healthy and in compliance with the chosen security policy, and to provide that access in real time. Avayas solutions facilitate effective NAC by creating a simple-to-deploy multi-

dimensional access policy; security is enhanced by the granular nature of access control flexibility. Reduced costs Supporting existing infrastructure & identity stores, virtual appliance option Avayas solutions allow networks to leverage their existing investment, saving costs and enable additional deployment flexibility. Providing a consistent, centralized access policy eliminates the potential for administrative errors. By putting user information and policy in a single location, policies can be created on a full network-wide basis, supporting LAN, WLAN and VPN consistently. Solutions such as Identity Engines are easy to deploy, connecting with existing identity system and switching infrastructure. It provides a central policy decision point that streamlines access management, improves security and satisfies reporting requirements. It connects to complex store environments and offers centralized editing of network access policies. Its also a virtualized solution; no new hardware is required, especially as many organizations have already invested in VMware environments. Simplicity Centralized policy decision, defined in plain language Avayas NAC solutions are easy to deploy, residing in the Data Centre, providing centralized authentication and authorization for wired, wireless and VPN network devices. They provide centralized integrated security services for Avaya and also third-party Ethernet switching, WLAN and VPN products. And what clearly separates the Identity Engines solution from rivals is its ability to express policies in plain language. Enhanced Regulatory compliance Partitioning of access, & comprehensive reporting & analytics Many environments are now seeking to apply strict governance to information access, and this can only be enforced and demonstrated through intelligent effective NAC. Avayas solutions provide the powerful reporting that allows operators to perform in-depth analysis of network activity including ingress

and usage. Reporting data is provided by the Avaya Identity Engines Ignition Server, and Ignition Analytics allows for automated data retrieval and report generation.

Recommendations for the Access Control product line SNAS 4070 For existing Secure Network Access engagements, captive portal requirements, Microsoft NAP Integration requirements (large enterprises scales to over 22,000 concurrent endpoints per Switch Cluster of up to 4 units)

SNAS 4050 For existing Secure Network Access engagements, captive portal requirements, Microsoft NAP Integration requirements (small, medium and large enterprises - scales to 12,000 concurrent endpoints per Switch Cluster of up to 4 units)

Identity Engines For all new NAC engagements for any NAC requirement with Avaya and non-Avaya environments Ignition Server centralized policy engine that performs user and contextbased authentication and authorization for clients attempting network access Ignition Posture performs device health assessments to ensure that endpoints comply with security policies

 Ignition Analytics delivers at-a-glance reports highlighting user info, failed authentications, usage summaries, etc. Ignition Guest Manager allows Front Desk staff to create temporary Guest User accounts

Investment Strategy for Access Control Avayas Network Access Control portfolio provides secure Remote Access and Endpoint security innovation that ensures end-to-end integrated security in an Open, Standards-based approach. Being device-agnostic it is deployable into virtually any existing environment, and offers health scans that are integrated into LAN (and Wireless LAN) and VPN infrastructures.

Avayas investment strategy is focused on the continued delivery of open rolebased solutions while developing compliance solutions embedded into the Desktop OS and integrating MAC layer encryption for end-to-end privacy. Today: 802.1X-based Access Control matures the native, initial 802.1X capability was not really enterprise-class and did not facilitate real-world deployments; were the much more mature capability of our Identity Engines product line enables precision, role-based and granular access control Secure Remote Access for teleworkers and partners based on SSL and IPSec VPN. Virtualized software deployment for both ID Engines and VPN Gateway solutions, enabling deployment in VMWare server networks without the need for dedicated hardware. Virtualized deployment, combined with differentiated clustering capabilities, allow both cost effective deployment

on COTS servers as well as massive scalability across multiple highperformance servers. Tomorrow: Universal network visibility IP flow Information Export (IPFIX) capabilities will be further developed to provide holistic visibility across the network Enhanced security and policy management, including support for Microsoft NAP as well as ongoing evolution of security capabilities to meet customer needs.

Beyond: MAC Layer encryption provides end-to-end privacy a towards embedded end-to-end encryption within the LAN will have appeal for certain Industry verticals, although the need for a complete change in hardware (this being an ASIC-based capability) will delay this being brought into the mainstream as a commoditized capability Compliance embedded Desktop OS integration with popular Enterprise operating systems, and interaction with our Enterprise-class Access Control will advance the level of protections offered at the network entry point.

Unified Communications Management

Avaya has recently undertaken a complete refresh of the Management applications to deliver a versatile solution that allows Customers to selectively implement those components that are relevant to their specific environment. From a common base, different task-specific modules are added to enhance overall capability and productivity; a key aspect being the common logon, database, and look and feel, all of which are designed to reduce unnecessary duplication and cross-training burden. Investment Strategy for Unified Management

Avayas investment strategy is focussed on delivering Unified Management solutions that meet the challenges of today, tomorrow, and into the future. We see a number of realities and possibilities. Today: Introduced single unified management domain Unified Communication Management and the Common Orchestration & Management applications being significant efficiencies to the Management scenario; avoiding repetitive data entry and sign-on Tomorrow: Increased integration further integration of functionality and applications will follow Increased multi-vendor support we will reach out beyond our own inhouse products to further enhance the value proposition Beyond: Evolving into a SOA architecture the mesh of software services which is at the core of SOA, the virtualisation of Applications (and Servers) will drive a similar virtualisation of the Management domain Fewer, more versatile applications this will reduce the overall training and competency burden

What defines a successful network? Clearly, as business systems become more sophisticated and pervasive the role that the network plays in the day-to-day success of the Business correspondingly grows. And this grows is no longer linear, as we no longer follow the one network for one application model its one network for every application: from ERP and CRM, to Unified communications and Contact Centre, and now also Security and Building Facilities. With the network being totally entwined and embedded with the Business the importance of a network that is highly-reliable and highly-efficient has gone from the highly-desirable rating to that of absolutely mandatory. The pinnacle of achievement would be that the Business actually forgets about the network, forgets because the network delivers constantly and without complication. It doesnt inhibit growth or cause loss of advantage, but is seen as a positive enabler that can be genuinely relied upon day in and day out