Access Controller RFS6000
The RFS 6000 provides a single platform capable of delivering carrier-grade wireless voice and data inside and outside the enterprise for medium to large organizations with 2,000-20,000 users. Improve operational efficiency and reduce the cost of mobility with a powerful comprehensive feature set including Adaptive AP, which delivers unmatched performance, security, reliability and scalability to enable networks for business mobility at a low TCO. Built on Motorola’s Wireless Next Generation (Wi-NG) architecture, the RFS 6000 supports Wi-Fi, RFID, seamless roaming, next-generation self-healing, 3G/4G wireless broadband backhaul, gap-free layered security, rich locationing services, 802.11n with Mesh, centralized management and more
Download Attached File:
Wi-NG architecture — delivering a unified voice, data and RF management platform
Improve business process flow with one platform for wireless voice, video, data and multiple RF technologies on one platform — such as RFID, Wi-Fi (including 802.11n) and future technologies such as Wi-MAX; rich enterprise-class functionality includes seamless roaming across L2/L3 deployments, resilient failover capabilities, comprehensive security, toll-quality voice and other value-added services, such as multi-RF locationing.
Role-based wired/wireless firewall
Comprehensively secures and protects the wired and wireless network against attacks and unauthorized access at Layer 2 and Layer 3 with Stateful Inspection; ability to create identity and location-based policies provides granular control of network access.
Adaptive AP — Extending the Enterprise
Enables centralized management of 802.11 a/b/g/n mesh access points at remote sites including automatic firmware upgrades; provides site survivability for remote locations with 802.11a/b/g/n networks for unparalleled resiliency.
SMART RF Management
Next generation self-healing: enables the WLAN to automatically and intelligently adapt to changes in the RF environment to eliminate unforeseen gaps in coverage.
Wireless Intrusion Protection System
The built-in wireless intrusion protection system provides defense against over-the-air attacks by leveraging the sensing capabilities of AP300/ AP51x1/ AP7131
Comprehensive layered security
Exceptional level of data and network protection without sacrificing fast roaming, including: WPA2-CCMP (with 802.11i fast roaming options); Stateful Firewall at Layer 2 and Layer 3 for the wired and wireless network with role based configurations; Geofencing, integrated RADIUS Server; IPSec VPN Gateway; Secure Guest Access Provisioning; 802.11w for management frame protection, and 24x7 dedicated security via Motorola’s Wireless IPS, providing the advanced technology required to detect any rogue network, including 802.11n.
Enhanced End-to-End Quality of Service (QoS)
Enhances voice and video capabilities; prioritizes network traffic to minimize latency and provide optimal quality of experience; SIP Call Admission Control and Wi-Fi Multimedia Extensions (WMM-Power Save) with Admission Control enhances multimedia application support and improves battery life and capacity; network optimization through granular bandwidth contracts based on bandwidth utilization network load and number of users for different applications being used, in different locations; TSPEC Admission Control ensures ample bandwidth and a superior user experience for VoIP calls; 802.11k provides effective radio resource management.
Real Time Locationing System (RTLS)
Provides rich locationing services to enable real-time enterprise asset-tracking through support for 802.11, RFID and third party locationing solutions — including industry leaders AeroScout, Ekahau, and Newbury Networks. Standards-based support for: EPC Global ALE interface for processing and filtering data from all active and passive tags; and EPC Global LLRP interface for passive RFID tag support.
Clustering and failover features
Supports multiple levels of redundancy and failover capabilities to ensure high availability networks; provides a single Virtual IP (per VLAN) for the cluster for use as a default gateway by mobile devices or wired infrastructure; built-in DHCP/ AAA server synchronized failover; multi-platform license sharing enables deployment of cost-effective networks.
3G Wireless for WAN backhaul
Support for 3G wireless cards to backhaul WAN traffic when the primary WAN link fails.
True mobility
Virtual AP provides better control of broadcast traffic and enables multiple mobile and wireless applications with quality of service when network is congested; Pre-emptive Roaming ensures Motorola mobile devices roam before signal quality degrades; Power Save Protocol optimizes battery life.
802.11 a/b/g/n support
Yes; Supports 48 AP300 802.11 a/b/g for L2 or L3 Deployments per switch and 576 802.11a/b/g AP300s per cluster.
SupportsAP-5131 802.11 a/b/g and AP-7131 802.11 a/b/g/n Adaptive Access Points
Supports 2000- 20000 users.
Adaptive AP support
Yes; Supports 256 AP-5131 802.11 a/b/g or AP-7131 802.11 a/b/g/n Adaptive Access Points per Switch and 3072 per cluster. Multiple country configuration support for Adaptive AP
Role-based wired/wireless firewall (L2-L7) with stateful inspection
Protects against attacks between:
Wired to Wired
Wired to Wireless
Wireless to Wired
Wireless to Wireless
Supports 100,000 active firewall sessions per switch; 1,200,000 per cluster
Protection from IP Spoofing and ARP Cache Poisoning
HIGH AVAILABILITY | |
1:many redundancy | Yes |
Active:Active failover | Yes |
Active:Standby failover | Yes |
Automatic load balancing | Yes |
Clustering | Yes |
Critical resource monitoring | Yes |
Dual firmware storage for hitless failover | Yes |
Mobile Unit load balancing | Yes |
Pre-emptive roaming | Yes |
SMART RF for neighbor recovery and interference avoidance | Yes |
LOCATIONING | |
RFID support | Compliant with LLRP protocol. Built-in support for the following Motorola RFID readers: fixed (XR440, XR450, XR480; mobile (RD5000); and handheld (MC9090-G RFID) |
RSSI based triangulation for Wi-Fi assets | Yes |
Tags supported | Ekahau, Aeroscout, Newbury, Gen 2 Tags |
MANAGEMENT | |
CLI (serial, telnet, SSHv2) | Yes |
DHCP client | Yes |
DHCP relay | Yes |
DHCP server | Yes |
Email notification for critical alarms | Yes |
Friendly names for mobile devices | Yes |
MIBS | Yes |
Multiple user roles | Yes |
SNMP (v1, v2, v3) | Yes |
SNTP (Secure Network Time Protocol) | Yes |
Secure web-based GUI (HTTP, HTTPS, SSL) | Yes |
Syslogs | Yes |
TFTP client | Yes |
Text-based switch configuration files | Yes |
NETWORK SECURITY | |
Access control lists | L2/3/4 ACLs |
Anomaly analysis | Source Media Access Control (MAC) = Destination MAC; illegal frame sizes; Source MAC is multicast; TKIP countermeasures; all zero addresses |
Authentication | Pre-shared keys (PSK);: 802.1x/EAP — transport layer security (TLS), tunneled transport layer security (TTLS), protected EAP(PEAP); Kerberos Integrated AAA/RADIUS Server with native support for EAP-TTLS, EAP-PEAP (includes a built-in user name/password database; supports LDAP) and EAP-SIM |
Geofencing | Add location of users as a parameter that defines access control to the network |
IPSec VPN gateway | Supports DES, 3DES, AES-128 and AES-256 encryption, with site-to-site and client-to-site VPN capabilities. |
NAC support with third party systems from Microsoft and Sygate | Yes |
Network address translation (NAT) support | Yes |
RADIUS support (standard and Motorola vendor specific attributes) | Allowed ESSIDs (Motorola VSA), Location-based authentication (Motorola VSA), MAC-based authentication (standard), User-based QoS (Motorola VSA), User-based VLANs (standard) |
Role-based wired/wireless firewall (L2-L7) with stateful inspection | Protects against attacks between: |
Secure guest access (Hotspot provisioning) | Customizable login/welcome pages, Local web-based authentication, Support for external authentication/billing systems, URL redirection for user login |
Stateful packet inspection firewall | Yes |
Transport encryption | KeyGuard, WEP 40/128 (RC4), WPA2-CCMP (AES), WPA-TKIP |
WIPS sensor conversion | Yes. Supported on the AP300 and the Adaptive AP-5131 and AP-7131 |
Wireless IDS/IPS | Multi-mode rogue AP detection and Rogue AP Containment,802.11n Rogue Detection, Ad-Hoc Network Detection, Denial of Service Protection against wireless attacks, detect de-auth from Broadcast Source MAC, detect frames with invalid sequence number, client blacklisting, excessive authentication,/associations; excessive probes; excessive disassociation/deauthentications; excessive decryption errors; excessive authentication failures; excessive 802.11 replay; excessive crypto IV failures( TKIP/CCMP replay), Suspicious AP, Authorized device in Adhoc mode, Unauthorized AP using authorized SSID, EAP flood, Fake AP flood, ID theft, Adhoc advertising authorized SSID. |
OPTIMIZED WIRELESS QOS | |
Classification and packet marking | 802.1p VLAN Priority, DiffServ/TOS, Layer 1-4 packet classification |
IGMP snooping | Ensures optimized network performance by preventing flooding of the broadcast domain. |
RF priority | 802.11 traffic prioritization and precedence |
SIP call admission control | Controls the number of active SIP sessions that are initiated by a wireless VoIP phone |
Wi-Fi multimedia extensions | WMM-power save with TSPEC Admission Control, WMM U-APSD for voice over Wi-Fi applications |
PACKET FORWARDING | |
802.11-802.3 bridging | Yes |
802.1D-1999 Ethernet bridging | Yes |
802.1q-VLAN tagging and trunking | Yes |
IP packet steering - redirection | Yes |
Proxy ARP | Yes |
PHYSICAL CHARACTERISTICS | |
Dimensions (HxWxD) | 44.45mm x 440mm x 390.8mm |
Form factor | Standard 1RU |
MTBF | ≥65,000 Hours |
Part numbers | RFS-6010-100R0-WR: Zero Port Wireless Switch, RFS-6010-10010-WR: 8 Port Wireless Switch, RFS-6010-10030-WR: 24 Port Wireless Switch, RFS-6010-10060-WR: 48 Port Wireless Switch, RFS-6010-UC-08-WWR: 8 Port RFS6000 Series Upgrade Certificate |
Physical interfaces | 1x uplink port (10/100/1000 Cu/Gigabit SFP Interface), 8x 10/100/1000 Cu Ethernet ports with 29.7W POE, 1x 10/100 Management Interface (OOB port), 1x USB2.0 Host port, 1x Express Card slot (in USB mode), 1x Serial Port (RJ45 style) |
Weight | 14lbs / 6.35kg |
POWER REQUIREMENTS | |
AC input voltage | 90 – 264 VAC 50/60Hz |
Input frequency | 47 Hz to 63 Hz |
Max AC input current | 6A@115 VAC, 3A@230 VAC |
REGULATORY SPECIFICATIONS | |
EMC | EN 55022, FCC Part 15 Class B, ICES 003 Class B, EN 55024, EN 61000-3-2, EN 61000-3-3 |
Electrical safety | UL 60950-1, C22.2 No. 60950-1, EN 60950-1, IEC 60950-1 |
Environmental | RoHS Directive 2002/95/EEC |
USER ENVIRONMENT | |
Heat dissipation | 665 BTU per hour |
Operating humidity | 5% to 85% (w/o condensation) |
Operating temperature | 0º C to 40º C |
Storage humidity | 5% to 85% (w/o condensation) |
Storage temperature | -40º C to 70º C |
WIRELESS NETWORKING | |
802.11 a/b/g/n support | Yes; Supports 48 AP300 802.11 a/b/g for L2 or L3 Deployments per switch and 576 802.11a/b/g AP300s per cluster. |
Adaptive AP support | Yes; Supports 256 AP-5131 802.11 a/b/g or AP-7131 802.11 a/b/g/n Adaptive Access Points per Switch and 3072 per cluster. Multiple country configuration support for Adaptive AP |
Bandwidth management | Congestion control per WLAN; per user bandwidth contracts based on user count or bandwidth utilization; dynamic load balancing of AP300s in a cluster |
Layer 2 adoption | Yes |
Layer 3 adoption | Yes |
Layer 3 mobility (intersubnet roaming) | Yes |
RF management | Yes; Dynamic Frequency Selection and Transmit Power Control (TPC); Country Code based RF Configuration; SMART RF for Neighbor Recovery and Interference Avoidance as well as dynamic RF Optimization based on client load and RF traffic; Automatic Channel Selection capability |
Roaming | Supports Hyper fast Secure roaming with Opportunistic Channel Scan; Power Save Protocol; pre-emptive Roaming and Credential Caching |
VLAN support | Wireless LAN to VLAN mapping; auto-assignment of VLANs based on user authentication |
Wireless LAN | Supports 32 WLANs; multi-ESS/BSSID traffic segmentation; VLAN to ESSID mapping; Auto Assignment of VLANs (on RADIUS authentication); Power Save Protocol Polling; pre-emptive roaming; congestion control with Bandwidth Management; Multiple WLANs per VLAN |
