We made another dashboard… you NEED a dashboard! Because we made it… you got
problems no one is seeing or cares about because DASHBOARD.
My snark aside, the information is appreciated, JJ. Nice to hear the analysis.
When I hear Secret Sauce, my internal Google Translate says Vendor Lock.
Lee
On Jul 20, 2021, at 17:25, Jennifer Minella <j...@cadinc.com> wrote:
Yep so… maybe one thing I should clarify – with Fortinet APs you don’t need
their switches for any of the WiFi portfolio. For the FortiGate-managed APs you
DO need a Fortinet firewall, even if it’s only purpose is to act as a
“controller” or “gateway”; meaning you don’t have to replace your existing
firewall in that process if you don’t want to.
The longer story there is that in the last ~18 months we’ve seen the early
stages of a shift towards what I call a converged edge. Here are some random
bullets/thoughts on that-
* Converged edge means WiFi and LAN edge switches are being managed
together more now (vs separate platforms)
* Aruba brough AOS then CX switches in to Central; Mist brought Juniper
EX platform in; Fortinet moved from FortiAP cloud to FortiLAN cloud; Juniper is
sunsetting Sky in favor of unified platform
* In addition most vendors are also rolling in a subset of their
gateway/SD-WAN/SD-Branch security hardware to that central management as well
* Aruba modified legacy controllers to gateways for tunnel termination
and firewall features now managed by Central; Mist recently rolled in Juniper
SRX appliances; Fortinet obviously supports cloud firewall management
* Most of the convergence is of course moving to the cloud to leverage
computing resource for AI, reduce CapEx, (plus offer a model for recurring
revenue for the vendor which they love)
* Mist has IMO the strongest AI platform which simply can’t run on-prem;
Aruba is also touting their AIOps and Insights; Cisco has their new XDR
platform available to digest and act on security data from licensed Cisco
infrastructure
* Zero touch for WiFi is good-to-great across vendors, while Zero touch and
centralized cloud-config for switching doesn’t have parity among vendors; some
are uber-easy, others are clunky and borderline useless
And because of this convergence and AIOps….
* Pretty much ALL vendors have some extra secret sauce you get by combining
the WiFi + Edge Switching – auto VLANs, mechanisms for micro segmentation for
zero trust, data integration and correlation, troubleshooting, visibility,
update coordination, security enhancements, etc.
___________
Jennifer Minella, CISSP
Consulting Advisor, Network & Cyber Security
Carolina Advanced Digital, Inc.
www.cadinc.com<http://www.cadinc.com/>
j...@cadinc.com<mailto:j...@cadinc.com>
919.460.1313 Main Office
919.539.2726 Mobile/text
<image001.png>
IMPORTANT UPDATES: Starting August 1st my role with the company will change to
a part time contractor advisory role, and you may be working with other
teammates for certain projects.
From: Lee H Badman <lhbad...@syr.edu>
Sent: Tuesday, July 20, 2021 12:06 PM
Subject: Re: WIRELESS-LAN Digest - 15 Jul 2021 to 16 Jul 2021 (#2021-109)
Fortifantastic, JJ- thanks for sharing that. I know every solution is “better”
when same vendor is used for switching and WLAN under the Single Glass of Pain
paradigm, but I can’t be the only one contemplating our WLAN future decoupled
from the desire to also change out thousands of switches. Just shouldn’t need
to… would be nice to see more vendors seizing the “THIS is how we help you
change WLAN systems without disrupting your LAN” opportunities. I like what I
see in Fortinet presentations, but those are always so expansive and
sll-inclusive you (I?) don’t get the feel that Forti-Fi was meant to play on
other LAN environments.
FortiLee
Lee Badman | Network Architect (CWNE#200)
Information Technology Services
(NDD Group)
206 Machinery Hall
120 Smith Drive
Syracuse, New York 13244
t 315.443.3003 e lhbad...@syr.edu<mailto:lhbad...@syr.edu> w its.syr.edu
Campus Wireless Policy:
https://answers.syr.edu/display/network/Wireless+Network+and+Systems
SYRACUSE UNIVERSITY
syr.edu
From: The EDUCAUSE Wireless Issues Community Group Listserv
<WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>>
On Behalf Of Jennifer Minella
Sent: Tuesday, July 20, 2021 11:58 AM
To:
WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>
Subject: Re: [WIRELESS-LAN] WIRELESS-LAN Digest - 15 Jul 2021 to 16 Jul 2021
(#2021-109)
Ah. Nope I haven’t seen any larges ones yet. No truckloads of AI for you! Their
go-to changed from (legacy MC) controllers to FG-managed, with cloud (AFAIK) in
a distant 3rd . I may get in trouble for saying that, and it’s likely changing
as all the vendors are (as you noted) leveraging the cloud compute power for
AI. Fortinet has a strong R&D team and process, puts most of their money back
in to product development vs. marketing so they have that going for them and
could certainly come of from behind in the WiFi arena.
I believe it is still free to create a cloud account and take it for a spin (at
least with the UI) – FortiAP Cloud is now FortiLAN Cloud -
https://fortilan-login.forticloud.com
I will say in the lab our team has played with some of the FortiSwitches and
they have some neat features and have their place in the world, especially for
highly distributed/branch office use cases. There’s even what I’d call
“NAC-light” built in – which is confusing when they have an actual FortiNAC
product – but it’s neat nonetheless.
<image002.png>
___________
Jennifer Minella, CISSP
Consulting Advisor, Network & Cyber Security
Carolina Advanced Digital, Inc.
www.cadinc.com<http://www.cadinc.com/>
j...@cadinc.com<mailto:j...@cadinc.com>
919.460.1313 Main Office
919.539.2726 Mobile/text
<image001.png>
IMPORTANT UPDATES: Starting August 1st my role with the company will change to
a part time contractor advisory role, and you may be working with other
teammates for certain projects.
From: Lee H Badman <lhbad...@syr.edu<mailto:lhbad...@syr.edu>>
Sent: Monday, July 19, 2021 7:15 PM
To: Jennifer Minella <j...@cadinc.com<mailto:j...@cadinc.com>>;
WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>
Subject: Re: WIRELESS-LAN Digest - 15 Jul 2021 to 16 Jul 2021 (#2021-109)
Duh! Cloud. And buckets of AI. Truckloads full.
Lee Badman | Network Architect | CWNE #200
Information Technology Services
206 Machinery Hall
120 Smith Drive
Syracuse, New York 13244
t 315.443.3003 f 315.443.4325 e lhbad...@syr.edu<mailto:lhbad...@syr.edu> w
its.syr.edu<https://linkprotect.cudasvc.com/url?a=https%3a%2f%2fits.syr.edu&c=E,1,YJRfe-URuUNKQ4jg_adjmEQVQSNAdlNTAe13moItABtftm8TUeFocJNuJEDQIZ-TUnsp8GM0ETfRaJf_EwyvXhJ8qxTPTIIQ7xOoGT6aMD5oLl8,&typo=1&ancr_add=1>
SYRACUSE UNIVERSITY
syr.edu<https://linkprotect.cudasvc.com/url?a=https%3a%2f%2fsyr.edu&c=E,1,qdD9q8WQBRUBgcou7pwI-dSEH-z4WdOEIrW9Z-dS8NeC01y23N8vgGSLCYbhD8EQhV3Y3j1PtBd_mkaDcNvbR8jYu218sNSjNf-DkOh_eQo,&typo=1&ancr_add=1>
________________________________
From: The EDUCAUSE Wireless Issues Community Group Listserv
<WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>>
on behalf of Jennifer Minella <j...@cadinc.com<mailto:j...@cadinc.com>>
Sent: Monday, July 19, 2021 5:53 PM
To:
WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>
<WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>>
Subject: Re: [WIRELESS-LAN] WIRELESS-LAN Digest - 15 Jul 2021 to 16 Jul 2021
(#2021-109)
Hey buddy! Which ‘flavor’ of Fortinet Wireless?
* Legacy controller /Meru
* Cloud
* Firewall-managed
___________
Jennifer Minella, CISSP
Consulting Advisor, Cyber Security
Carolina Advanced Digital, Inc.
www.cadinc.com<https://linkprotect.cudasvc.com/url?a=http%3a%2f%2fwww.cadinc.com%2f&c=E,1,CrUxd-DZhMQelCHcNRKflOFpueCLM3PYw0Khql8MF7Ne1o_MWYzpTQCxQQJ6ZGtIbpEkmNgNA7IYYLt7N9yhPKij6HRYZxuqlpX-w-BI0DNIbBwp&typo=1>
j...@cadinc.com<mailto:j...@cadinc.com>
919.460.1313 Main Office
919.539.2726 Mobile/text
<image001.png>
IMPORTANT UPDATES: August 1st my role with the company will change and you may
be working with other teammates for certain projects.
From: The EDUCAUSE Wireless Issues Community Group Listserv
<WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>>
On Behalf Of WIRELESS-LAN automatic digest system
Sent: Friday, July 16, 2021 5:00 PM
To:
WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>
Subject: WIRELESS-LAN Digest - 15 Jul 2021 to 16 Jul 2021 (#2021-109)
[LISTSERV mailing list
manager]<https://linkprotect.cudasvc.com/url?a=http%3a%2f%2fwww.lsoft.com%2f&c=E,1,_JNZeaRXLfZAJB9ooJvaxkNewkruAGN9fxCeVBxdoot1tvhQcLazHu7G9IpxtoNx8r_--jdmXXe40VwRepMc5rqz0l2rl_dVsOZMwcH-4T1bqw,,&typo=1>
[LISTSERV
15.0]<https://linkprotect.cudasvc.com/url?a=http%3a%2f%2flistserv.educause.edu%2fscripts%2fwa.exe%3fLIST%3dWIRELESS-LAN&c=E,1,qDNU6YQ-g3Mv4Gm44KwIwGi355Vr_7QTadH5OOvpPwXQ-thV2AeHWqEU0rm4UK23ypSk5UXebpdK_AS1q7eZBcFqveLX03l3p75h_YFkp5YV5qg,&typo=1>
WIRELESS-LAN Digest - 15 Jul 2021 to 16 Jul 2021 (#2021-109)
Table of contents:
* Fortinet Wireless? (3)
1. Fortinet Wireless?
* Fortinet Wireless?<cid:22234@LISTSERV.EDUCAUSE.EDU> (07/16)
From: Lee H Badman <lhbad...@syr.edu<mailto:lhbad...@syr.edu>>
* Re: Fortinet Wireless?<cid:22235@LISTSERV.EDUCAUSE.EDU> (07/16)
From: "Floyd, Brad" <bfl...@mail.smu.edu<mailto:bfl...@mail.smu.edu>>
* Re: Fortinet Wireless?<cid:22236@LISTSERV.EDUCAUSE.EDU> (07/16)
From: Lee H Badman <lhbad...@syr.edu<mailto:lhbad...@syr.edu>>
Browse the WIRELESS-LAN online
archives.<https://linkprotect.cudasvc.com/url?a=http%3a%2f%2flistserv.educause.edu%2fscripts%2fwa.exe%3fLIST%3dWIRELESS-LAN&c=E,1,FrZJMwp80iIPgVxzCD56rfDsKP432qdU8NTo7GaIfS4vb5bXfv6Qx93xSapSbp55Hy0UZxgMPBqQYX-Gmklg0lYYmazMvp5UBwzdIvGoM42Ldeo,&typo=1>
[Anti-Virus
Filter]<https://linkprotect.cudasvc.com/url?a=http%3a%2f%2fwww.lsoft.com%2fproducts%2fdefault.asp%3fitem%3dsecured-by-FS%26host%3dLISTSERV.EDUCAUSE.EDU%26wa%3dhttp%3a%2f%2flistserv.educause.edu%2fscripts%2fwa.exe&c=E,1,3oH9CkyPwy4SiD-RRi7tKwY5-BOsWe0brbMw9iFOSePCp97Phf3WX78GQW0_uexmyejZSPiSEatjOhwZTjE59hG4ilY0Tk6MCvT6DBYBXHdqhmp-nJPdp1ePPGgQ&typo=1>[Powered
by the LISTSERV Email List
Manager]<https://linkprotect.cudasvc.com/url?a=http%3a%2f%2fwww.lsoft.com%2fproducts%2flistserv-powered.asp&c=E,1,2x49DLEMD24E3nijXMZRi0lBg16YLLC8kR5N4e9URig29FrQNVV-rh08J1b4UWgtSrxDayECSzr5E_5QhVQHfpWjnH6aODKetUgtHiqnNmAHDnHCtg,,&typo=1>
**********
Replies to EDUCAUSE Community Group emails are sent to the entire community
list. If you want to reply only to the person who sent the message, copy and
paste their email address and forward the email reply. Additional participation
and subscription information can be found at
https://www.educause.edu/community<https://linkprotect.cudasvc.com/url?a=https%3a%2f%2fwww.educause.edu%2fcommunity&c=E,1,O7Dipxmu2EHxqN0wkRIQP8sHpm-7kHk7JNyq9tdh-J3J_0C2Jcd4QyBrRO1s9N1-ffavv1WewsV-C_O5vASqhIlCEWQQJ_58w6HBvhMm&typo=1>
**********
Replies to EDUCAUSE Community Group emails are sent to the entire community
list. If you want to reply only to the person who sent the message, copy and
paste their email address and forward the email reply. Additional participation
and subscription information can be found at https://www.educause.edu/community
**********
Replies to EDUCAUSE Community Group emails are sent to the entire community
list. If you want to reply only to the person who sent the message, copy and
paste their email address and forward the email reply. Additional participation
and subscription information can be found at https://www.educause.edu/community
**********
Replies to EDUCAUSE Community Group emails are sent to the entire community
list. If you want to reply only to the person who sent the message, copy and
paste their email address and forward the email reply. Additional participation
and subscription information can be found at https://www.educause.edu/community
