K12 Reference Architecture

Converged Wired +Wireless Access

Mobility AgentMobility Controller

Wireless IPS (WIPS)

Application Visibilityand Control (AVC)

High DensityExperience (HDX)

ClientLink 3.0

Optimized APRoaming

Cross AP NoiseReduction

Highly secure web-basedvideo surveillance control system

Scalable camera count in a single manager

Distributedprocessing of allvideo/audio

Standard videocodecs in singlemedia server

Integration with advanced video analytics

View live secure video from mobile devices, inside or outside school

Next-generationintrustion protection

Before, During, andAfter Attack solutions

Detect and blockexploit attempts

Correlate discreteevents intocoordinated attacks

Cisco Talos threatintelligence

Data LossPrevention (DLP)

Track malware'sspread andcommunication

Roaming laptopuser protection

Cisco TrustSEC

Content Filtering

Identity-based Filtering and Access Control

Block Encrypted Search

Auto VPN

Cisco PrimeInfrastructure

Converged Wired & WirelessManagement

User accessvisibility, inventory

Radio frequencyplanning

End-to-Endapplication andservice assurancevisibility

Medianetperformancemonitor

Prime 360Experience

Cisco PrimeAssurance Manager

Network ControlSystem + LANManagement

Policy Management

WAN bandwidthsavings, lower costto upgrade

Scale applicationusage to availablebandwidth

Akamai Connectintelligent objectcaching

WAN compressionand optimization

SWITCHING, WIRELESSConverged WiredPlus WirelessAccess

Mobility AgentMobility Controller

Modular QoS(per AP, radio,SSID, user)

AutoQoS

Policy Names from ISE

RSPAN

RMON Agent

Application Visibilityand Control (AVC)

Flexible Net�ow v9

Medianet

Catalyst SmartOperations

UADP ASIC hierarchical bandwidth management at line rate

Virtual Desktop

Consolidate desktopcompute resourcesto data center

Lightweight desktopclient or remoteview software

Access powerfuldesktop computeresources fromanywhere

Simplify softwarelicensing

Centralize softwareupgrades

Run fully virtualizedapplications inscalable data center

FlexPod

Uni�ed voice andvideo capabilities, with IM and Presence

URI dialing

Extension mobility

IP MultimediaSubsystem (IMS)

Cisco Jabberintegration (instant messaging)

CUCM virtualmachine

Cisco VirtualizationExperience clients

Cisco TelePresence

Conductor integration

UCS compute blademodule inside schoolrouter for remotecompute services

Processors, storage,network interfaces,memory on-board

Host network, UC,security, WAAS, andcompatible schoolapplications

ISR 4400 and 4500platforms

Services Ready Engine(SRE) module for ISRG2 platforms

Full classroom immersive video

Screen sharing with tablets and laptops using proximity

Desktop video endpoint

1080p video bridging

Video services in VM (virtual machine)

WebEx content sharing

Mobile device collaboration (Spark)

Speaker Track (dual-camera tracking)

Persistent chat

E911 support

Cisco CollaborationPrime Standard

Cisco CollaborationPrime Advanced

Cisco MediaSensecall recordingintegration

IP Phones, wiredand wireless

Cisco Jabber mobileuni�ed client

Remote video connections without VPN

Optimized AP Roaming

DFS Support

Cross AP Noise Reduction

Historical Interference Information

Spectrum Expert Connect

IWANIWAN TransportDMVPN

Application Visibilityand Control (AVC)

NBAR2

QoS

PfR (PerformanceRouting)Path Optimization

PKI Automation

PnP Provisioning

Intelligent PathControl

ApplicationExperience

SWITCHINGChassis: 1+1redundantsupervisor, NSF/SSO, ISSU

Cisco TrustSEC

IPv6

Per-port powermanagement

IOSModular OpenApplicationPlatform

Networkvirtualizationthrough Multi-VRF

Embedded Events

Manager (EEM)

Smart Call Home

AutoQOS

Auto SmartPorts

Flexible NetFlow

Mediatrace

IP SLA Agent

Cisco Energywise

District Internet Edge

ISR 4400 Series44514451-AX

ASR 9900 SeriesASR 9904

ASR 1000 SeriesASR 1001XASR 1002ASR 1006

Network Security

ASA 5500 SeriesASA 5545ASA 5585-S40ASA 5585-S60ASA with FirePOWER

Identity ManagementIdentity Services Engine ISE 3355Secure Access Control System

Advanced Malware Protection (AMP)AMP for EndpointsAMP for NetworksAMP for Content SecurityAMP Threat Grid

Email Security Virtual Appliance (ESAV)

Web Security Virtual Appliance (WSAV)

Cisco AnyConnect Secure Mobility (VPN)

Meraki MX SeriesMX400-HWMX600-HW

Cisco Cloud Services

Metro-AreaProvider Network

Catalyst 4500 Series

District O�ceor RegionalData Center

Compute, Services, Management

Catalyst 6807XL

Nexus 9500 SeriesNexus 9504Nexus 9508

Nexus 7700 SeriesNexus 7706Nexus 7710

Wireless Management5760 Controller8510 Controller7510 Controller

Uni�ed Computing System (UCS)UCS C-SeriesUCS B-SeriesCisco Desktop Virtualization Solutions

Uni�ed CommunicationsUni�ed Communications ManagerBusiness Edition 6000Business Edition 7000Jabber

TelePresenceTelePresence ServerMultiparty Media 310/320Multiparty Media 400vTelePresence Content Server (TCS)TelePresence ConductorTelePresence Management Suite (TMS)Expressway-EExpressway-C

ISR 4400 Series44514451-AX

ASR 1000 SeriesASR 1001ASR 1002

ASR 1006 ASR 9900 SeriesASR 9904

Metro Ethernet SeriesME 3600-XME 3800-X

WAN OptimizationWAVE 7541, WAVE 7571, WAAS Central Manager with Akamai Connect

District MAN Edge

SchoolBuilding

ISR 4300 Series43314331-AX43514351-AX

Building Edge ISR 4400 Series44314431-AX4451-X4451-AS

ASR 1000 SeriesASR 1001

Metro Ethernet SeriesME 2600-XME 3600-X

WAN OptimizationWAVE 594WAVE 694vWAAS on UCS-E bladeAkamai ConnectWAAS on Service Ready Engine (SRE)

Catalyst 3850 Series Catalyst 4500-X Series Meraki MS SeriesMS-320MS-420

Catalyst 4500 Series Catalyst 6800 Series68076880

Catalyst 3850 SeriesCatalyst 3650 Series

Catalyst 2960-X Series Meraki MS SeriesMS-220

Aironet 3700 SeriesAironet 2700 SeriesAironet 1700 Series

Meraki MR34Meraki MR32

IP Phones7800 Series8800 Series8900 Series9300 Series

Collaboration Desk EndpointsDX650DX70DX80

Collaboration Room EndpointsSX 10/20/80 SeriesMX 200/300/700/800 SeriesIX 5000 SeriesTX 9000 Series

Nexus 9300 Series

Building Backbone(MDF Closet)

Building Closet(IDF Closet)

Classroom& BuildingWireless

Mobile Device ManagementMeraki Systems Managerwith Enterprise Mobile Management

Compact Switches3650-CX2960-CS

Noti�-ED SecuritySchoolMessengerSinglewire InformaCastObjectVideoProximexAugusta Systems

Video SurveillanceIP Video CamerasVideo Surveillance ManagerVideo Analytics

Incident ResponseIPICS

Meraki MR72

Aironet 1570 Series

OutdoorWireless

Mobile Device Management (MDM)

Auto RF

Air Marshall

Integrated Bluetooth Low-Energy

Asset monitoring and tracking

Active Directory enrollment integration

BYOD Self-deployment

IP Source Guard

Unicast RPF

Bi-directional SPANfor IDS

802.1Xauthentication

Dynamic ARP inspection

Port security based upon MAC address

Limited MAC address learning to prevent �ooding

VLAN ACLs

Private VLAN edge

Port-based ACLs for Layer 2

Wireless end-to-end security through DTLS encryption

School-wide alertsystems throughSinglewirepartnership

IP-based HD videocameras, singleinfrastructure

Wired and wirelesscameras

Provider-basedDirect Internet

Access

LeasedFiber MAN/WAN

Metro EthernetProvider

Provider-basedSONET, Circuit

Network SystemsManagementPrime InfrastructurePrime Collaboration

Catalyst 3850/3650 Series

Meraki MS 220/320

AironetSeries

Meraki MRSeries

District O�ce Sta�

Cabling Infrastructure - Category 5e/6/6a Copper Cabling Infrastructure - Category 5e/6/6a Copper or MM/SM Fiber

Cabling Infrastructure - MM/SM Fiber

Connected Learning

Information Security

Professional Development

School Safety

Learning and Curriculum

Student Assessment and Data AnalyticsINTERNET

Wireless IWAN,Switching, IOS

Network Management Collaboration Cybersecurity Physical

Security Compute

CLOUD LEARNINGAPPLICATIONPARTNERS

Desire2Learn:WebEx into LMS/CirQLive

Pearson:WebEx intoLearningStudioLMS/CirQLive

Pearson:PowerSchool onUCS

CLOUD-BASEDNETWORKMANAGEMENT

Meraki Systems Manager with Enterprise Mobility Management

Cisco ActiveAdvisor

COLLABORATIONMEETING ROOM(CMR) CLOUD

Converged videobridging andWebEx webconferencing

Join fromanywhere

Superior scale

All videoresources incloud

ENERGYMANAGEMENTCLOUD

Cost-e�ectiveenergy monitoring

Speci�crecommendationsto optimizeenergy usage

Active powermanagement

ROI tools, identifybest practices

Quick deployment

Budgetpredictability

CLOUD WEBSECURITY / CLOUD EMAIL SECURITY

Near real-timeweb protection

Advancedmalwareprotection

Flexible networkconnectors tocloud

Dedicated emailsecurity instance

Cloud capacityassurance

HOSTEDCOLLABORATIONSOLUTION (HCS)

Voice & Video As a Service

Voicemail andIntegratedMessaging

InstantMessaging

Video As aService

Mobility As aService

CLOUDCOMPUTESERVICES

Dimension DataCloud ServicesIaaS, CaaS(Partner)

Private CloudVblockInfrastructurePlatform

IntelligentAutomation forCloud

Catalyst 6800IA

ID

2

1

ID

1 2

ID

1 2

ID

1 2

ID

1 2

ID

1 2

Cisco FirePOWER AppliancesFirePower 7000 SeriesFirePower 8000 Series

Nexus 2000 Series

Catalyst 4500-X, 6880

Restore

Management

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

Fan Power

Restore

Management

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

41

42

43

44

45

46

47

48

Fan Power

ENS

LSFP

S LS

S L

0

1

MGMT

S GE 0 L

EN ENCONSOLE

AUXPOE GE /0/0/0

POE GE /0/0/1 GE /0/0/3

GE /0/0/2

0

ENS

1

ENS

SFP

2

ENS

3

LCisco 4000 Series

EN

EN

AUX

MGMT

S GE 0 L

CONSOLE

POE0 FLASH TEMP PWR

SSD ISC FAN STAT

PSU0 GE

POE

FLASH TEMP PWR

POE0 SSD ISC FAN STAT

Cisco 4000 Series

Meraki MS SeriesMS-320MS-420

© 2015 Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its a�liates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL: www.cisco.com/go/trademarks. Third-party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (1110R) C82-734320-00 04/15