We made another dashboard… you NEED a dashboard! Because we made it… you got problems no one is seeing or cares about because DASHBOARD.
My snark aside, the information is appreciated, JJ. Nice to hear the analysis. When I hear Secret Sauce, my internal Google Translate says Vendor Lock. Lee On Jul 20, 2021, at 17:25, Jennifer Minella <j...@cadinc.com> wrote: Yep so… maybe one thing I should clarify – with Fortinet APs you don’t need their switches for any of the WiFi portfolio. For the FortiGate-managed APs you DO need a Fortinet firewall, even if it’s only purpose is to act as a “controller” or “gateway”; meaning you don’t have to replace your existing firewall in that process if you don’t want to. The longer story there is that in the last ~18 months we’ve seen the early stages of a shift towards what I call a converged edge. Here are some random bullets/thoughts on that- * Converged edge means WiFi and LAN edge switches are being managed together more now (vs separate platforms) * Aruba brough AOS then CX switches in to Central; Mist brought Juniper EX platform in; Fortinet moved from FortiAP cloud to FortiLAN cloud; Juniper is sunsetting Sky in favor of unified platform * In addition most vendors are also rolling in a subset of their gateway/SD-WAN/SD-Branch security hardware to that central management as well * Aruba modified legacy controllers to gateways for tunnel termination and firewall features now managed by Central; Mist recently rolled in Juniper SRX appliances; Fortinet obviously supports cloud firewall management * Most of the convergence is of course moving to the cloud to leverage computing resource for AI, reduce CapEx, (plus offer a model for recurring revenue for the vendor which they love) * Mist has IMO the strongest AI platform which simply can’t run on-prem; Aruba is also touting their AIOps and Insights; Cisco has their new XDR platform available to digest and act on security data from licensed Cisco infrastructure * Zero touch for WiFi is good-to-great across vendors, while Zero touch and centralized cloud-config for switching doesn’t have parity among vendors; some are uber-easy, others are clunky and borderline useless And because of this convergence and AIOps…. * Pretty much ALL vendors have some extra secret sauce you get by combining the WiFi + Edge Switching – auto VLANs, mechanisms for micro segmentation for zero trust, data integration and correlation, troubleshooting, visibility, update coordination, security enhancements, etc. ___________ Jennifer Minella, CISSP Consulting Advisor, Network & Cyber Security Carolina Advanced Digital, Inc. www.cadinc.com<http://www.cadinc.com/> j...@cadinc.com<mailto:j...@cadinc.com> 919.460.1313 Main Office 919.539.2726 Mobile/text <image001.png> IMPORTANT UPDATES: Starting August 1st my role with the company will change to a part time contractor advisory role, and you may be working with other teammates for certain projects. From: Lee H Badman <lhbad...@syr.edu> Sent: Tuesday, July 20, 2021 12:06 PM Subject: Re: WIRELESS-LAN Digest - 15 Jul 2021 to 16 Jul 2021 (#2021-109) Fortifantastic, JJ- thanks for sharing that. I know every solution is “better” when same vendor is used for switching and WLAN under the Single Glass of Pain paradigm, but I can’t be the only one contemplating our WLAN future decoupled from the desire to also change out thousands of switches. Just shouldn’t need to… would be nice to see more vendors seizing the “THIS is how we help you change WLAN systems without disrupting your LAN” opportunities. I like what I see in Fortinet presentations, but those are always so expansive and sll-inclusive you (I?) don’t get the feel that Forti-Fi was meant to play on other LAN environments. FortiLee Lee Badman | Network Architect (CWNE#200) Information Technology Services (NDD Group) 206 Machinery Hall 120 Smith Drive Syracuse, New York 13244 t 315.443.3003 e lhbad...@syr.edu<mailto:lhbad...@syr.edu> w its.syr.edu Campus Wireless Policy: https://answers.syr.edu/display/network/Wireless+Network+and+Systems SYRACUSE UNIVERSITY syr.edu From: The EDUCAUSE Wireless Issues Community Group Listserv <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>> On Behalf Of Jennifer Minella Sent: Tuesday, July 20, 2021 11:58 AM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> Subject: Re: [WIRELESS-LAN] WIRELESS-LAN Digest - 15 Jul 2021 to 16 Jul 2021 (#2021-109) Ah. Nope I haven’t seen any larges ones yet. No truckloads of AI for you! Their go-to changed from (legacy MC) controllers to FG-managed, with cloud (AFAIK) in a distant 3rd . I may get in trouble for saying that, and it’s likely changing as all the vendors are (as you noted) leveraging the cloud compute power for AI. Fortinet has a strong R&D team and process, puts most of their money back in to product development vs. marketing so they have that going for them and could certainly come of from behind in the WiFi arena. I believe it is still free to create a cloud account and take it for a spin (at least with the UI) – FortiAP Cloud is now FortiLAN Cloud - https://fortilan-login.forticloud.com I will say in the lab our team has played with some of the FortiSwitches and they have some neat features and have their place in the world, especially for highly distributed/branch office use cases. There’s even what I’d call “NAC-light” built in – which is confusing when they have an actual FortiNAC product – but it’s neat nonetheless. <image002.png> ___________ Jennifer Minella, CISSP Consulting Advisor, Network & Cyber Security Carolina Advanced Digital, Inc. www.cadinc.com<http://www.cadinc.com/> j...@cadinc.com<mailto:j...@cadinc.com> 919.460.1313 Main Office 919.539.2726 Mobile/text <image001.png> IMPORTANT UPDATES: Starting August 1st my role with the company will change to a part time contractor advisory role, and you may be working with other teammates for certain projects. From: Lee H Badman <lhbad...@syr.edu<mailto:lhbad...@syr.edu>> Sent: Monday, July 19, 2021 7:15 PM To: Jennifer Minella <j...@cadinc.com<mailto:j...@cadinc.com>>; WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> Subject: Re: WIRELESS-LAN Digest - 15 Jul 2021 to 16 Jul 2021 (#2021-109) Duh! Cloud. And buckets of AI. Truckloads full. Lee Badman | Network Architect | CWNE #200 Information Technology Services 206 Machinery Hall 120 Smith Drive Syracuse, New York 13244 t 315.443.3003 f 315.443.4325 e lhbad...@syr.edu<mailto:lhbad...@syr.edu> w its.syr.edu<https://linkprotect.cudasvc.com/url?a=https%3a%2f%2fits.syr.edu&c=E,1,YJRfe-URuUNKQ4jg_adjmEQVQSNAdlNTAe13moItABtftm8TUeFocJNuJEDQIZ-TUnsp8GM0ETfRaJf_EwyvXhJ8qxTPTIIQ7xOoGT6aMD5oLl8,&typo=1&ancr_add=1> SYRACUSE UNIVERSITY syr.edu<https://linkprotect.cudasvc.com/url?a=https%3a%2f%2fsyr.edu&c=E,1,qdD9q8WQBRUBgcou7pwI-dSEH-z4WdOEIrW9Z-dS8NeC01y23N8vgGSLCYbhD8EQhV3Y3j1PtBd_mkaDcNvbR8jYu218sNSjNf-DkOh_eQo,&typo=1&ancr_add=1> ________________________________ From: The EDUCAUSE Wireless Issues Community Group Listserv <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>> on behalf of Jennifer Minella <j...@cadinc.com<mailto:j...@cadinc.com>> Sent: Monday, July 19, 2021 5:53 PM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>> Subject: Re: [WIRELESS-LAN] WIRELESS-LAN Digest - 15 Jul 2021 to 16 Jul 2021 (#2021-109) Hey buddy! Which ‘flavor’ of Fortinet Wireless? * Legacy controller /Meru * Cloud * Firewall-managed ___________ Jennifer Minella, CISSP Consulting Advisor, Cyber Security Carolina Advanced Digital, Inc. www.cadinc.com<https://linkprotect.cudasvc.com/url?a=http%3a%2f%2fwww.cadinc.com%2f&c=E,1,CrUxd-DZhMQelCHcNRKflOFpueCLM3PYw0Khql8MF7Ne1o_MWYzpTQCxQQJ6ZGtIbpEkmNgNA7IYYLt7N9yhPKij6HRYZxuqlpX-w-BI0DNIbBwp&typo=1> j...@cadinc.com<mailto:j...@cadinc.com> 919.460.1313 Main Office 919.539.2726 Mobile/text <image001.png> IMPORTANT UPDATES: August 1st my role with the company will change and you may be working with other teammates for certain projects. From: The EDUCAUSE Wireless Issues Community Group Listserv <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>> On Behalf Of WIRELESS-LAN automatic digest system Sent: Friday, July 16, 2021 5:00 PM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> Subject: WIRELESS-LAN Digest - 15 Jul 2021 to 16 Jul 2021 (#2021-109) [LISTSERV mailing list manager]<https://linkprotect.cudasvc.com/url?a=http%3a%2f%2fwww.lsoft.com%2f&c=E,1,_JNZeaRXLfZAJB9ooJvaxkNewkruAGN9fxCeVBxdoot1tvhQcLazHu7G9IpxtoNx8r_--jdmXXe40VwRepMc5rqz0l2rl_dVsOZMwcH-4T1bqw,,&typo=1> [LISTSERV 15.0]<https://linkprotect.cudasvc.com/url?a=http%3a%2f%2flistserv.educause.edu%2fscripts%2fwa.exe%3fLIST%3dWIRELESS-LAN&c=E,1,qDNU6YQ-g3Mv4Gm44KwIwGi355Vr_7QTadH5OOvpPwXQ-thV2AeHWqEU0rm4UK23ypSk5UXebpdK_AS1q7eZBcFqveLX03l3p75h_YFkp5YV5qg,&typo=1> WIRELESS-LAN Digest - 15 Jul 2021 to 16 Jul 2021 (#2021-109) Table of contents: * Fortinet Wireless? (3) 1. Fortinet Wireless? * Fortinet Wireless?<cid:22234@LISTSERV.EDUCAUSE.EDU> (07/16) From: Lee H Badman <lhbad...@syr.edu<mailto:lhbad...@syr.edu>> * Re: Fortinet Wireless?<cid:22235@LISTSERV.EDUCAUSE.EDU> (07/16) From: "Floyd, Brad" <bfl...@mail.smu.edu<mailto:bfl...@mail.smu.edu>> * Re: Fortinet Wireless?<cid:22236@LISTSERV.EDUCAUSE.EDU> (07/16) From: Lee H Badman <lhbad...@syr.edu<mailto:lhbad...@syr.edu>> Browse the WIRELESS-LAN online archives.<https://linkprotect.cudasvc.com/url?a=http%3a%2f%2flistserv.educause.edu%2fscripts%2fwa.exe%3fLIST%3dWIRELESS-LAN&c=E,1,FrZJMwp80iIPgVxzCD56rfDsKP432qdU8NTo7GaIfS4vb5bXfv6Qx93xSapSbp55Hy0UZxgMPBqQYX-Gmklg0lYYmazMvp5UBwzdIvGoM42Ldeo,&typo=1> [Anti-Virus Filter]<https://linkprotect.cudasvc.com/url?a=http%3a%2f%2fwww.lsoft.com%2fproducts%2fdefault.asp%3fitem%3dsecured-by-FS%26host%3dLISTSERV.EDUCAUSE.EDU%26wa%3dhttp%3a%2f%2flistserv.educause.edu%2fscripts%2fwa.exe&c=E,1,3oH9CkyPwy4SiD-RRi7tKwY5-BOsWe0brbMw9iFOSePCp97Phf3WX78GQW0_uexmyejZSPiSEatjOhwZTjE59hG4ilY0Tk6MCvT6DBYBXHdqhmp-nJPdp1ePPGgQ&typo=1>[Powered by the LISTSERV Email List Manager]<https://linkprotect.cudasvc.com/url?a=http%3a%2f%2fwww.lsoft.com%2fproducts%2flistserv-powered.asp&c=E,1,2x49DLEMD24E3nijXMZRi0lBg16YLLC8kR5N4e9URig29FrQNVV-rh08J1b4UWgtSrxDayECSzr5E_5QhVQHfpWjnH6aODKetUgtHiqnNmAHDnHCtg,,&typo=1> ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community<https://linkprotect.cudasvc.com/url?a=https%3a%2f%2fwww.educause.edu%2fcommunity&c=E,1,O7Dipxmu2EHxqN0wkRIQP8sHpm-7kHk7JNyq9tdh-J3J_0C2Jcd4QyBrRO1s9N1-ffavv1WewsV-C_O5vASqhIlCEWQQJ_58w6HBvhMm&typo=1> ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community