Alcatel-Lucent OmniAccess 4604, OmniAccess 4704, OmniAccess 4504 User Manual

OmniAccess 4504, OmniAccess 4604, OmniAccess 4704

W I R E L E S S L A N S W I T C H E S

The Alcatel-Lucent OmniAccess™ 4504, 4604 and 4704 (OAW-4504, OAW-4604, OAW-4704) switches are high

performance, fully-featured WLAN switches that are able to aggregate up to 32, 64 and 128 campus connected access

points (APs) respectively. These WLAN switches provide a true user-centric network experience, delivering follow-me

connectivity, identity-based access, and application continuity services.

B E N E F I T SF E A T U R E S

• High performance

• Scalable architecture

• Centralized WLAN switching

• Dynamic RF management

• Integrated wireless intrusion prevention

• Platforms designed from the ground
up to support IEEE 802.11n high
performance networks.

• Supports pay as you grow capability
through software licensing model.
WLAN switch AP capacity can grow
by adding SW licenses.

• Allows for overlay deployments
without disruption to the existing
wireline infrastructure. Simplifies
management task by minimizing the
number of network elements.

• Provides analysis of the RF environment
to facilitate deployment with self
tuning access points and facilitates
operation of the network with virtual
real time site survey.

• Integrates both wireless networking
and wireless intrusion detection and
prevention thus reducing the cost of
wireless infrastructure and cost of
operating the wireless network.

• User- centr ic se curit y wit h
stateful firewall

• Prevents unauthenticated users
from accessing the corporate wire­less network while safely support­ing guest users, contractors as
well as corporate users. Decreases
management burden of security
through role-based security.

B E N E F I T SF E A T U R E S

• Real time location tracking

• Allows for the real time location tracking of wireless users to enrich presence
information. Also supports location tracking of wireless asset tags throughout

he enterprise.

t

• Quality of service, extended battery
capabilities, application layer gateway
(ALG) for voice protocols

• Improves voice quality through support of QoS mechanisms such as WMM, DSCP
marking and prioritization, and connection admission control. Also improves
voice end user experience by maximizing battery lifer with protocols such as
U-APSD. Provides un-matched voice security through embedded stateful firewall.

The OAW-4504 is designed for small businesses and branch offices, while the OAW-4604 and OAW-4704 are
designed for medium to large enterprise or dense office deployments. These three WLAN switches can be easily
deployed as an overlay without any disruption to the existing wired network.

Advanced voice-over-WLAN features such as Call Admission Control (CAC), voice-aware RF management and strict
over-the-air quality of service (QoS) allow the OAW-4504, OAW-4604, and OAW-4704 to deliver mobile VoIP capabilities.
These switches are managed via the integrated management capability of the Alcatel-Lucent OmniAccess Wireless Operating
System or the Alcatel-Lucent OmniVista™ Mobility Manager.

Additionally, the OAW-4504, OAW-4604, OAW-4704 offer best in class, user-centric security framework to authenticate
wireless users, enforce role-based access control policies and quarantine unsafe endpoints from accessing the corporate
wireless network. Guest users can be easily and safely supported with the built-in captive portal server and advanced
network services.

The OAW-4504, OAW-4604, OAW-4704 can create a secure networking environment without requiring additional
VPN/firewall devices using integrated site-to-site VPN and NAT capabilities, split-tunneling and stateful firewall.
Site-to-site VPN support can be integrated with all leading VPN concentrators to provide seamless integration into
existing corporate VPNs

T E C H N I C A L S P E C I F I C A T I O N S

Performance and capacity
(OAW-4504 / OAW-4604 /
OAW-4704)

• Campus-connected APs: Up to 32/64/128

• Remote APs: Up to 128/256/512

• Users: Up to 512/1024/2048

• MAC addresses: Up to 64,000

• VLAN IP interfaces: 128

• Gigabit Ethernet ports (RJ-45 or SFP): 4

• Active firewall sessions: Up to 128,000

• Concurrent IPSec tunnels: Up to 512/1024/2048

• Firewall throughput: 3/4/4 Gbps

• Encrypted throughput (3DES, AESCBC256):

1.6/4/8 Gbps

• Encrypted throughput (AES-CCM): 0.8/2/4 Gbps

Wireless LAN security and
control features

• 802.11i security (WFA certified WPA2 and WPA)

• 802.1X user and machine authentication

• EAP-PEAP, EAP-TLS, EAP-TTLS support

• Centralized AES-CCM, TKIP and WEP encryption

• 802.11i PMK caching for fast roaming applications

• EAP offload for AAA server scalability and
survivability

• Stateful 802.1X authentication for standalone APs

• MAC address, SSID a nd l oc at ion-based
authentication Multi-SSID support for operation
of multiple WLANs

• SSID-based RADIUS server selection

• Secure AP control and management over IPSec
or GRE

• CAPWAP compatible and upgradeable

• Distributed WLAN mode for remoteAP deployments

• Simul ta ne ous centralized and distributed
WLAN support

Identity based security features

• Capti ve portal, 80 2. 1X a nd MAC address
authentication

• Usern am e, IP address, MAC ad dr es s an d
encryp ti on key bi nd ing for strong n etwork
identity creation

• Pe r-packe t id en ti ty v er if ic ation to p re vent
impersonation

• RADIUS and LDAP-based AAA server support

• Internal user database for AAA server failover
protection

• Role- ba se d au thorization for eliminating
excess privilege

• Robus t po li cy enf or ce me nt w it h st at eful
packet inspection

• Per-user session accounting for usage auditing

• Web-based guest enrollment

• Confi gu ra ble acceptable use polici es for
guest access

• XML-b as ed AP I fo r external c aptive
portal integration

• xSec option for wired LAN authentication and
encrypti on (802.1X authentication, 256-bit
AES-CBC encryption)

2 Alcatel-Lucent OmniAccess 4504, OmniAccess 4604, OmniAccess 4704