© 2007 Cisco Systems, Inc. All rights reserved.DESGN v Designing Remote Connectivity Designing the Enterprise Branch
© 2007 Cisco Systems, Inc. All rights reserved.DESGN v Enterprise Branch Services
© 2007 Cisco Systems, Inc. All rights reserved.DESGN v Enterprise Branch Architecture
© 2007 Cisco Systems, Inc. All rights reserved.DESGN v Characterizing the Branch Number of locations Number of existing devices Scalability needed High-availability requirements Security concerns Management concerns Wireless services needed Approximate budget
© 2007 Cisco Systems, Inc. All rights reserved.DESGN v Enterprise Branch Profiles
© 2007 Cisco Systems, Inc. All rights reserved.DESGN v Small Branch Office Design Infrastructure components –Access router –Layer 2 Switching (integrated or external stackable) –Laptops, phones, printers WAN services and backup –Internet deployment model –T1 primary link –ADSL secondary link Network fundamentals –EIGRP –High availabilityfloating statics, T1 with aDSL –QoSshaping, policing, scavenger class (applied to both switch and router)
© 2007 Cisco Systems, Inc. All rights reserved.DESGN v Medium Branch Office Design Infrastructure components –Dual access routers –External stackable switch (Layer 2 or Layer 3) –Laptops, phones, printers WAN services –Private WAN deployment –Dual Frame Relay links Network fundamentals –EIGRP –High availabilitydual routers, HSRP –QoSshaping, policing, scavenger class (applied to both switch and router)
© 2007 Cisco Systems, Inc. All rights reserved.DESGN v Large Branch Office Design Infrastructure components –Dual access routers for WAN edge –Dual ASAs for firewalls –Dual multilayer switching (stackable or modular) –Laptops, phones, printers WAN services –MPLS deployment model –Dual links to WAN cloud Network fundamentals –EIGRP –High availabilitydual routers at every layer, HSRP –Object tracking, ASA failover –QoSshaping, policing, scavenger class (applied to all routers and switches)
© 2007 Cisco Systems, Inc. All rights reserved.DESGN v Occasional Users Comparison of Teleworking Options Occasional Remote Worker Branch of One Yes Web-based applicationsYes Mission-critical applicationsBest effortPrioritized Real-time collaborationBest effortPrioritized Voice over IPBest effortHigh quality Video on demand, Cisco IP/TVUnlikelyHigh quality Video conferencingUnlikelyHigh quality Remote configuration and managementNoYes Integrated securityBasicFull Resiliency and availabilityNoYes Part-Time or Full-Time and Day Extenders
© 2007 Cisco Systems, Inc. All rights reserved.DESGN v Branch of One Architecture Centralized management IT managed security policies Advanced applications support (voice, video) Integrated Security and Identity Services Corporate Phone, Toll Bypass, Centralized Voice Mail Corporate-Pushed Security Policies (Not User-Managed)
© 2007 Cisco Systems, Inc. All rights reserved.DESGN v Summary The Cisco Enterprise Branch Architecture provides enterprise services to remote users. You should characterize each branch location to develop a suitable design: –Small branch office design typically uses a single WAN access router with one or two access switches to support up to 50 users. –Medium branch office design typically uses two WAN access routers with multiple access switches to support up to 100 users. –Large branch office design typically uses two WAN access routers, one or more multilayer distribution switches, and multiple access switches to support up to 100 to 1000 users. An enterprise teleworker design can use a small ISR with integrated switch ports and an always on VPN to support one teleworker.
© 2007 Cisco Systems, Inc. All rights reserved.DESGN v