Software Defined Networking Solutions And Services
Software Defined Networking Solutions And Services—Extreme Networks OneFabric Connect SDN

Networks are built using switches, routers, and other devices in a distributed fashion to scale and provide reliability. In this distributed environment, it has become more complex to provide new end—to—end services and applications in a seamless and cost—effective manner. To address the simultaneous needs for security, virtualization, manageability, mobility and agility in today’s networks—the concept of SDNs Software Defined Networks—are gaining attention as a viable solution. The provisioning of new services and the reliable application delivery in a dynamic IT infrastructure can be achieved with such an architecture. Extreme Networks OneFabric Connect™ integration service—it is a professional service delivered through a combination of middleware and integration services that interact with the OneFabric Control Center™ (leveraging the Netsight Management Suite) from Extreme Networks™. It provides APIs to integrate OneFabric Control Center™ (Netsight, Mobile IAM and NAC) with other IT solutions, management systems and databases, MDM solutions, NG Firewalls, web filtering solutions etc.

It provides automation and control—device identification and location tracking, reporting back to other IT systems and automatically assign policies managed by IT systems inside or outside the network management domain. It provides deep integration with the customers‘ existing IT and management systems and leads to improved processes, decreased troubleshooting times, and lower OPEX. The Service is the next logical step in the evolution for Extreme Networks OneFabric Control Center™. Extreme Networks Data Center Manager™ manages virtual data centers, Networks OneFabric Control Center™ manages devices and users at the access layer. The value of SDN in the enterprise lies specifically in the ability to provide network virtualization and automation of configuration across the entire network/fabric so new services and endsystems can be deployed rapidly and operational cost can be minimized. As enterprises embrace the new world of tablets, smartphones and laptops, a BYOD policy enables employees and guests to be more mobile and productive while the enterprise is secure and compliant.

Next–Gen Firewalls, Content Filters And Security Appliances

The new security appliances usually provide features like user—based content security rules, application level visibility into the traffic, and advanced filtering engines up to layer 7. If threats are detected by the NGFW, users at the LAN / Campus Edge or in the data center can be automatically quarantined to contain threats. These features may become important for enterprises in specific verticals like government or healthcare that require a more strict management of their security and fine—grained security rules that better adapt to the ever—changing BYOD environment. Sitting at the core of the BYOD environment, Mobile IAM can provide unvaluable information to these appliances and allow the full development of their capabilities by adding user and location information. In exchange the network management system can integrate visibility from the new security appliances like visibility into application use per user. As the business demands more agile and flexible IT services this has become a focal point for innovation and also for differentiation by vendors that have solved that challenge.

Extreme Networks Mobile Identity And Access Management

What then are the real technical challenges and costs to your network deployment brought on by BYOD? A sudden influx of new and ever—growing types and numbers of devices, a mix of operating systems, the immediate demand of personal and enterprise apps, and the increase usage of video, voice and data over the air and on the wire will have a dramatic impact on the security, bandwidth, access control and end—user experience for all of your trusted users and guests. The Extreme Networks Mobile Identity and Access Management (Mobile IAM) solution delivers a uniquely comprehensive approach for deploying and managing the world of BYOD and the mobile With this SDN integration, the solution can be extended to include an ecosystem of systems to provide granular visibility and enforcement of network policies as it is done for unmanaged devices (and other devices and users) in a BYOD environment as well. With the rapid growth of smartphones and tablets, largely spurred on by Apple’s iPhone™ and iPad™ devices, and the use of multiple devices by the same user at any given time, the challenges presented to IT have exploded.

Extreme  Networks OneFabric Connect Integration Service

It is a professional service delivered through a combination of middleware and integration services that interact with the OneFabric Control Center™ from Extreme Networks™. It provides APIs to integrate OneFabric Control Center™ (Netsight, Mobile IAM and NAC) with other IT solutions, management systems and databases, MDM solutions, NG firewalls, web filtering solutions etc. It enhances the value of OneFabric Control Center with deeper visibility into device data—augmented with asset and contact info, device details, phone number etc. It provides automation and control: device identification and location tracking, reporting back to other IT systems and automatically assign policies managed by IT systems inside or outside the network management domain. It provides integration with the existing IT and management systems and leads to improved processes, decreased troubleshooting, and lower OPEX. The Service is the next step in the evolution for OneFabric Control Center™: Data Center Manager™ manages virtual data centers; OneFabric Connect™ manages devices and users at the access layer.

Features And Benefits

Ability to share user information between the NGFW and Extreme Networks OneFabric Control Center™. Using the built—in notification engine of Extreme Networks™ NAC, user information can be transmitted to the Palo Alto™ User—ID agent which updates username/IP Address mappings within the NGFW. The information collected will provide the ability to determine when a user connects/disconnects to the network. The integration of top application information that is provided from the Palo Alto Next—Gen Firewall™—NGFW. The results of the report will then be pushed into a custom field in Netsight/NAC for further visibility. The NGFW can have firewall policies created based on username information to provide enhanced security at the WAN while NAC provides additional security at the LAN / Campus Edge. It allows the NGFW to both build a mapping as well as tear down the mappings so that stale entries are avoided. If threats are detected by the NGFW, users at the LAN/Campus Edge or in the data center can be automatically quarantined to contain threats. Application usage information provided by the NGFW is used to provide a quick insight into what types of applications are being utilized by a device and user.