cisco-meraki-产品介绍与技术原理资料

予IT 管理人员对网络的可见性和管控能力的同时，免除复杂的传统网络架构，实现100%智能远程管理。

Meraki 远程管理 简单部署 集中管理在传统组网环境下，网络管理员需要对网元设备进行大量的配置工作。

IP 地址、VLAN 、交换机、路由器、防火墙、AC 、AP 等，以整个网络拓扑为基础，细化到每一台设备上，无疑会耗费大量的精力。

现如今，越来越多的人开始使用移动终端，并把App 连到云端，到处都是设备对宽带的疯狂需求，多到已经数不过来。

用户们已经开始使用各种新设备和App ，传统网络只能用老的网络技术去支持它们，而新形势下出现的基于云计算技术的思科Meraki 就显得十分亮眼。

最好用的网络是什么？那就是当它在运行的时候，你可以忽视它的存在。

然而当核心业务需要保障时，它就在你的身边给予安全强力的支撑。

Meraki 简化IT 运维管理，实现100%智能管理，快速部署，简单易用，保持IT 系统持续高品质运行。

同时又具备极佳的可见性，所见即所得，随时随地获取IT 全网数据。

Meraki 基于云平台对网络设备进行集中化管理，例如：安全网关、交换机、AP 、监控摄像头、移动性管理等，简化网络架构和IT 运维难度。

一 什么是Meraki ？Meraki 是一款100%智能管理IT 、智能管理边界、分支和企业级园区IT 解决方案，帮助各种规模的组织简化管理。

无线接入点、交换机以及路由系列产品管理均采用智能端集中式管理，Meraki 在赋予IT 管理人员对网络的可见性和管控能力的同时，免除复杂的传统网络架构。

z 快速部署：设备即插即用，无需到点设置，时尚超薄设计适合任何环境；z 可靠性和性能：无本地AC ，智能集中式云管理，按需扩展，跟随业务无缝扩展，2×2 MU-MIMO 802.11ac Wave 2，1.3 Gbps*总数据速率；z 集中管理：直观管理各个站点和所有设备，包括：通过浏览器管理、整体拓扑呈现、用户流量分布、广域网流量、中文管理界面。

MR70Dual-band, 802.11ac Wave 2 ruggedized access point delivering basic enterprise wireless foroutdoor or low-density deploymentsEntry-level cloud-managed 802.11ac wirelessThe Cisco Meraki MR70 is a dual-radio, cloud-managed 2x2:2 802.11ac Wave 2 access point with MU-MIMO support. Designed for basic, best-effort deployments that require rapid installation, the MR70 provides enterprise-grade security and simple management in a ruggedized, IP67-rated form factor that sports integrated omni-directional antennas.The MR70 is ideal for municipal athletic fields, garages, public gardens, space-constrained outdoor deployments, and even rapid-response emergency kits designed to quickly deliver wireless in disaster-struck areas. The MR70 provides a maximum 1.3 Gbps* aggregate frame rate with concurrent 2.4 GHz and 5 GHz radios.MR70 and Meraki cloud management: a powerful combinationThe MR70 is managed through the Meraki cloud, with an intuitive browser-based interface that enables rapid deployment without training or certifications. Because the access point is monitored24x7 by the Meraki cloud, the MR70 can deliver real-time alertsif the network encounters problems, and diagnostic tools enable real-time troubleshooting over the web. The MR70’s firmware is always kept up to date from the cloud. New features, bug fixes, and enhancements are delivered seamlessly over the web, meaning no manual software updates to download or missing security patches to worry about.Product Highlights• 2x2 MU-MIMO 802.11ac Wave 2• 1.3 Gbps* aggregate dual-band frame rate• Integrated enterprise security and guest access • Built-in WIPS for threat detection and remediation • Application-aware traffic shaping• Self-configuring, plug-and-play deployment • Rapid, plug-and-play deployment• Integrated location analytics and heat mapFeaturesAggregate data rate of up to 1.3 Gbps*A 5 GHz 2x2:2 radio supporting 80 MHz channel widths and a2.4 GHz 2x2:2 radio supporting 40 MHz channel widths offer a combined dual-radio aggregate frame rate of 1.3 Gbps*, with up to 866 Mbps in the 5 GHz band thanks to 802.11ac Wave 2 and 400 Mbps in the 2.4 GHz band.Multi User Multiple Input Multiple Output (MU-MIMO)With support for the 802.11ac Wave 2 standard, the MR70 offers MU-MIMO for more efficient transmission to multiple clients. This increases the total network performance and the improves the end user experience.Integrated enterprise security and guest accessThe MR70 features integrated, easy-to-use security technologies to provide secure connectivity for employees and guests alike. Advanced security features such as AES hardware-based encryption and WPA2-Enterprise authentication with 802.1X provide wire-like security while still being easy to configure. One-click guest isolation provides secure, Internet-only access for visitors. Our policy firewall (Identity Policy Manager) enables group or device-based, granular access policy control.Secure wireless environments using Air MarshalThe MR70 comes equipped with Air Marshal, a built-in wireless intrusion prevention system (WIPS) for threat detection and attack remediation. MR70 access points will scan their environment opportunistically based on user-defined preferences. Alarms and auto-containment of malicious rogue APs are configured via flexible remediation policies, ensuring optimal security and performance in even the most challenging wireless environments.Application-aware traffic shapingThe MR70 includes an integrated Layer 7 packet inspection, classification, and control engine, enabling you to set QoS policies based on traffic type. Prioritize your mission critical applications, while setting limits on recreational traffic, e.g., peer-to-peer and video streaming.Self-configuring, self-optimizing, self-healingThe MR70’s advanced mesh technologies like multi-channel routing protocols and multiple gateway support enable scalable coverage of hard-to-wire areas with zero configuration. Mesh also improves network reliability — in the event of a switch or cable failure, the MR70 will automatically revert to mesh mode, providing continued gateway connectivity to clients.Rapid, plug-and-play deploymentWhen plugged in, the MR70 automatically connects to the Meraki cloud, downloads its configuration, and joins the appropriate network. It self-optimizes, determining the ideal channel, transmit power, and client connection parameters.Integrated analyticsDrill down into the details of your network usage with highly granular traffic analytics. Extend your visibility into the physical world with built-in location analytics that enables you to view visitor numbers, dwell time, repeat visit rates, and track foot traffic trends.SpecificationsRadios2.4 GHz 802.11b/g/n/ac client access radio5 GHz 802.11a/n/ac Wave 2 client access radioSupported frequency bands (country-specific restrictions apply):• 2.412-2.484 GHz• 5.150-5.250 GHz (UNII-1)• 5.250-5.350 GHZ (UNII-2)• 5.470-5.600, 5.660-5.725 GHz (UNII-2e)• 5.725-5.825 GHz (UNII-3)802.11ac and 802.11n Capabilities2 x 2 multiple input, multiple output (MIMO) with two spatial streamsSU-MIMO and MU-MIMO supportMaximal ratio combining (MRC) & Beamforming20 and 40 MHz channels (2.4 GHz), 20, 40, and 80 MHz channels (5 GHz)Up to 256-QAM on both 2.4 GHz and 5 GHz bandsPacket aggregationPowerPower over Ethernet: 37-57 V (802.3af compatible)Power consumption: 11 W max (802.3af)Power over Ethernet injector sold separatelyMountingMounts to walls and vertical polesMounting hardware includedPhysical SecuritySecurity screw includedEnvironmentOperating temperature: -4 °F to 131 °F (-20 °C to 55 °C)IP67 environmental ratingOperating humidity: 5% to 95%Physical Dimensions9.65” x 4.53” x 1.18” (245 mm x 115 mm x 30 mm)Weight: 15.87 oz (0.45 kg)AntennaIntegrated omni-directional antennas (4.5 dBi gain at 2.4 GHz, 4.7 dBi gain at 5 GHz)Interfaces1x 100/1000 BASE-T Ethernet (RJ45)SecurityIntegrated Layer 7 firewall with mobile device policy managementReal-time WIDS/WIPS with alerting and automatic rogue AP containment with Air Marshal Flexible guest access with device isolationVLAN tagging (802.1Q) and tunneling with IPSec VPNPCI compliance reportingWEP, WPA, WPA2-PSK, WPA2-Enterprise with 802.1XEAP-TLS, EAP-TTLS, EAP-MSCHAPv2, EAP-SIMTKIP and AES encryptionEnterprise Mobility Management (EMM) & Mobile Device Management (MDM) integration Quality of ServiceAdvanced Power Save (U-APSD)WMM Access Categories with DSCP and 802.1p supportLayer 7 application traffic identification and shapingMobilityPMK, OKC, and 802.11r for fast Layer 2 roamingDistributed or centralized Layer 3 roamingLED Indicators1 power/booting/firmware upgrade statusRegulatoryRoHSEN50155: 2017 (Railway)For additional country-specific regulatory information, please contact Meraki sales Warranty1 year hardware warranty with advanced replacement includedOrdering InformationMR70-HW: Meraki MR70 Cloud Managed 802.11ac APMA-PWR-30W-XX: Meraki AC Adapter for MR Sseries (XX = US/EU/UK/AU)MA-INJ-4-XX: Cisco Meraki 802.3at Power over Ethernet Injector (XX = US/EU/UK/AU) Note: Meraki Enterprise license requiredCompliance and StandardsSafety ApprovalsUL 60950-1CAN/CSA-C22.2 No. 60950-1IEC 60950-1EN 60950-1Radio ApprovalsCanada: FCC Part 15C, 15E, RSS-247Europe: EN 300 328, EN 301 893Australia/NZ: AS/NZS 4268Mexico: NOM-121For additional country-specific regulatory information, please contact Meraki Sales EMI Approvals (Class B)Canada: FCC Part 15B, ICES-003Europe: EN 301 489-1-17, EN 55032, EN 55024Australia/NZ: CISPR 32Exposure ApprovalsCanada: FCC Part 2, RSS-102Europe: EN 50385, EN 62311Australia: AS/NZS 2772。

OVERVIEWThe Cisco Meraki MC74 is a premium VoIP phone with an elegant design, featuring a 7” touchscreen display. Representing a fresh approach to the notoriously complex and disjointed world of telephony, it leverages the power of the cloud to eliminate the traditional PBX. MC74 provides simple, intuitive management and the ability to integrate with business applications.MERAKI COMMUNICATIONSMeraki Communications phones benefit from zero-touch deployment. With only a serial number the network admin can remotely configure the phone for a user or meeting room. Once online it will connect to the cloud, pull down its configuration and within seconds be ready to make calls.Using the Meraki dashboard, the network admin is able to manage all the essentials: review call stats, configure alerts, setup conference rooms, manage a contacts directory and set up Interactive Voice Response menus. For connection to the rest of the world via the public switched telephone network (PSTN), there are configuration options for a SIP service provider, and Meraki partners will be able to guide customers on this essential component.INTRODUCING MC74With a beautiful, carefully crafted design and superb sound quality, MC74 is designed to delight the user, featuring easy and intuitive access to the most commonly used features—and the minimum of distractions.A large, high resolution color display is the center of the phone experience, and this blank canvas allows Meraki engineers and designers to evolve and refine the user experience over time. The display and speaker provide intuitive visual and audible cues to communicate status, without requiring the user to navigate through deep, complicated menus.Wideband audio enhances the calling experience, allowing crystal clear speech. Calls can be placed or received using the handset, USB, Bluetooth or even regular cellphone headsets.* A sensitive mi-crophone and full range speaker are also included for an exceptional hands–free experience during meetings.MC74 aims to be nothing less than the best possible communica-tions experience.MC74 Cloud Managed PhoneDatasheet |MC74SpecificationsHardwareHigh definition color 7” IPS backlit touchscreen display (1280x800) Integrated GbE switch with passthrough portIntegrated desktop stand with adjustable hingeOptional wall mount adapter with levelerDedicated volume buttonMute button with status LEDHandset with on-hook proximity sensorMagnetic cable guideRear and side USB headset ports3.5mm audio headset jackSpeakerphone/MicAmbient light sensorMulticolor notification LEDIn the boxMC74 phone + handset and cordWall mounting kit + hardwareMicrofiber screen clothDesign matched ethernet cableVoIPFully encrypted voice and SIP signaling (TLS/SRTP)E911 support for accurate location in emergenciesE164 international dialling formatWideband audio G.722 internal calling (G.711 for PSTN calling)Power802.3af PoE (Class 3)Universal power adapter (optional accessory)EnvironmentOperating temp: 0o C to 40o C (32 to 104F)Humidity 5 – 95% non condensingPhysical dimensionsSize including handset 272 x 186 x 94mm (10.7 x 7.3 x 3.7in) Weight 1.1Kg (2.4lbs)Warranty2 Y ears Licensing1, 3, 5, 7 or 10 year licensing optionsSafetyUL / IEC / EN 60950-1CAN/CSA-C22.2 No. 60950-1Radio ApprovalsFCC Part 15C, 15EEN 300 328, EN 301 893For additional country-specific regulatory information, please contact Meraki salesSupported frequency bands (country-specific restrictions apply)2.412-2.484 GHz5.150-5.250 GHz (UNII-1)5.250-5.350 GHZ (UNII-2)5.470-5.600, 5.660-5.725 GHz (UNII-2e)5.725-5.825 GHz (UNII-3)EMI Approvals (Class B)FCC Part 15BEN 301 489-1-17, EN 55032, EN 55024Exposure ApprovalsFCC Part 2EN 62311, EN 62479Telecom ApprovalsFCC Part 68* A list of tested headsets can be found at CiscoSystems,Inc.|500TerryA.FrancoisBlvd,SanFrancisco,CA94158|(415)432-1000|**************** 2。

产品说明产品说明：Meraki 云网络本产品说明（“产品说明”）介绍了上列出的思科 Meraki 云网络产品。

您的订用受本产品说明和/go/eula上列出的思科《最终用户许可协议》（或您和思科之间存在的类似条款）（以下称为“协议”）的约束。

本产品说明中使用但未另行定义的术语具有协议中赋予它们的含义。

1.说明思科 Meraki 云网络产品套件包括网络硬件设备（无线接入点、交换机和安全设备/防火墙）、监控摄像头、传感器、终端管理软件以及网络应用和 WAN 性能软件。

所有思科 Meraki 产品都通过一个云托管软件平台进行管理，该平台被称为 Meraki “控制板”。

控制板允许客户通过单个面板来配置、管理和监控部署在其全球网络中的 Meraki 设备。

2.补充条款和条件2.1.许可证和使用权条件要为您购买的每项硬件获得软件许可证，您需要购买和维持相关的 Meraki 云服务，否则硬件将无法运行。

您使用 Meraki 云服务的软件许可证和权利不可转让。

2.2.期限和许可模式2.2.1.在共同终止许可模式下，思科技术使用期限的开始日期是相关思科技术交付给您的日期，结束日期为以下两个日期中的较早者：(a) 共同终止日期或 (b) 使用权终止日期。

2.2.2.在按设备许可模式下，思科技术使用期限的开始日期为以下两个日期中的较早者：(a) 您通过Meraki 云服务分配相关硬件的日期或 (b) 相关思科技术交付给您之日后的第 91 天。

此类使用期限的结束日期为以下两个日期中的较早者：(1) 开始日期加上相应采购订单中规定的 Meraki云服务使用期限或 (2) 使用权终止日期。

2.3.其他使用条件您同意仅根据思科 Meraki 网站上提供的规范使用硬件和思科技术，并且您（而不是思科 Meraki）全权负责对您的 Meraki 云服务帐户实施管理控制。

2.4.遵守法律如果思科 Meraki 检测到您以违反法律的方式使用硬件或思科技术，在通过电子邮件向您发出书面通知后，该硬件和/或思科技术可能会从您的 Meraki 云服务帐户中删除。

Z-Series Product Highlights• 4 GbE ports for printers, phones and other wired devices• 1 PoE-enabled port for VoIP phones and other powered devices• Dual-concurrent 802.11ac Wave 2 radios with up to 1.3 Gbps data rate• Auto VPN for intelligent site-to-site VPN connectivity • 802.1x port authentication for wireddevices• Layer 7 application traffic shaping andprioritization• Layer 3 firewall to separate corporatedata from personal traffic• Up to 4 SSIDs with integrated enterprisesecurity and personal / guest access• Optional desk stand• Self-configuring, plug-and-playdeployment• Ideal for telecommuters using VoIP andremote applications• Sleek, low profile design• Built-in 100 Mbps CAT 3 LTEconnectivity (Z3C)Fast, Reliable Connectivity for the Modern TeleworkerThe Cisco Meraki Z-Series teleworker gateway is an enterprise class firewall, VPN gateway and router. Each model offers five gigabit ethernet ports and wireless for connectivity. Each model is designed to securely extend the power of Meraki cloud managed networking to employees, IT staff, and executives working from home.Using Meraki’s proven and highly scalable Auto VPN technology, ad-ministrators can deploy network services including VoIP and remote endpoints with automatic, zero-touch provisioning. Additionally the Z-series provides secure wired and wireless access, and increases end-user productivity through Layer 7 traffic shaping.All models feature a high-performance stateful firewall, support for VLANs, inter-VLAN routing, and isolation to segregate corporate data from recreational traffic. The Z-series offers the latest in wireless per-formance with 802.11ac Wave 2 technology with MU-MIMO support to provide reliable and high speed network access for most demand-ing business applications and latest devices.Z-Series and Meraki Cloud Management: A Powerful ComboAll Meraki devices are managed via the Meraki cloud, with an intui-tive browser-based interface. Since the Z-series is self-configuring and managed over the web, you can rapidly deploy at remote loca-tions without any assistance from end-users.Meraki Cloud services monitor all devices 24x7 and deliver real-time alerts if any device encounters a problem. Remote diagnostics tools enable real-time troubleshooting through any web browser. New features and enhancements are delivered seamlessly over the web, so you never have to manually download software updates or worry about missing security patches.Meraki Z-Series CLOUD MANAGED TELEWORKER GATEWAYZ3Z3Celeworker with VoIP or PoE, IoT, and M2Meleworker with VoIP or PoE, IoT, and M2MUp to 5 devices Up to 5 devices100 Mbps Accessories1 Requires separate cellular modemDesk Stand (sold separately)50W Power Adapter Spare Power Cord (sold separately)Auto VPNLeveraging Meraki’s cloud architecture, VPN tunnels to HQ or the data center can be enabled via a single click without any command-line configurations or multi-step key permission setups. Meraki’s patent-pending Auto VPN technology automatically tunnels, hole punches, sets up route tables, and establishes the IPsec connections, completely eliminating the complexity seen in traditional site-to-site VPN solutions.Application-aware traffic shapingThe Z-Series includes an integrated layer 7 packet inspection,classification, and control engine, enabling you to set QoS policies based on traffic type. Prioritize your mission critical applications like VoIP or remote desktop, while setting limits on recreational traffic, e.g., peer-to-peer and video streaming.Simple, powerful security from end to endWith end-to-end VPN encryption, corporate data is always protected. Additionally the Meraki Z-series supports 802.1x wired portauthentication, offering network and endpoint security no matter where the gateway may be deployedSelf-configuring, self-optimizing, self-healingWhen plugged in, the Z-Series automatically connects to the Meraki cloud, downloads its configuration, and joins your network. In case of WAN IP address changes, the Z-Series self heals by re-establishing the site-to-site VPN tunnels using the new IP address. Also, if asupported SIM card is installed or a 3G/4G modem is connected and primary WAN uplink connectivity fails, the Z-Series will automatically failover to cellular.Industry-leading cloud managementMeraki’s award-winning cloud management architecture unifies WAN, LAN, and wireless management under a web based dashboard, and scales easily from small deployments to large, multi-site deployments with tens of thousands of devices. The Meraki dashboard provides intuitive yet powerful role-based administration, firmware updates, configuration changes, email alerts, and easy to audit change logs.AUTO CONFIGURING SITE-TO-SITE VPNAPPLICATION VISIBILITY AND CONTROLMULTI-SITE MANAGEMENT VIA THE MERAKI CLOUDSpecificationsPerformanceFirewall Throughput - 100 MbpsVPN Throughput - 50 MbpsRecommended for 5 clients or fewerInterfacesWAN interface: 1x GbELAN interfaces: 4x GbEPoE: 1 x 802.3af enabled port1x USB 2.0 port for 3G / 4G connectivity1 x CAT 3 LTE modem for cellular connectivity (Z3C only)Network and Security ServicesStateful firewall, 1:1 NAT, DMZAuto (site-to-site IPsec) VPNClient VPN (IPsec L2TP), limit 2 authorized users (with Meraki-hosted authentication only) Automatic Layer 3 failover (including VPN connections)Application level (Layer 7) traffic analysis and shapingMultiple WAN IP, PPPoE, NATVLAN support and DHCP services802.1x wired port authenticationStatic routingUser and device quarantineIntegrated Wireless4 SSIDs2x 802.11a/b/g/n/ac (2.4Ghz or 5 Ghz), 2x2 MU-MIMO with 2 spatial streamsMax data rate - 1.3 Gbps4xinternaldipoleantennas(gain:***********,4dBi@5GHz)WPA2-PSK authenticationRegulatory: FCC (US), IC (Canada), CE (Europe), C-Tick (Australia/New Zealand), RoHSMonitoring and ReportingThroughput, connectivity monitoring and email alertsDetailed historical per-port and per-client usage statisticsApplication usage statisticsOrg-level change logs for compliance and change managementVPN tunnel and latency monitoringNetwork asset discovery and user identificationPeriodic emails with key utilization metricsSyslog integrationLTE traffic and performance (Z3C only)Remote DiagnosticsLive remote packet captureReal-time diagnostic and troubleshooting toolsAggregated event logs with instant searchManagementManaged via the web using the Meraki Cloud ControllerSingle pane of glass management of wired and wireless networksZero-touch remote deployment (no staging needed)Automatic firmware upgrades and security patchesCentralized policy managementOrg-level two-factor authentication and single sign-onRole based administration with change logging and alertsIntegrated Cellular (Z3C only)LTE bands: 2, 4, 5, 13, and 17 (North America). 1, 3, 7, 8, and 20 (Worldwide*) 100 Mbps CAT 3 LTEAdditional regulatory information: PTCRB (US), RCM (ANZ, APAC), GCF (EU)Z3 & Z3C Environmental SpecificationsPower: 50W (54 V / 0.92 A), external power supply includedOperating temperature: 32°F to 104°F (0°C to 40°C)Humidity: 5 to 95% non-condensingDesktop or wall mount (all standard mounting hardware included) Kensington lock hard pointRegulatoryFCC (US)CB (IEC)CISPR (Australia/New Zealand)PTCRB (US)RCM (Australia/New Zealand, Asia Pacific)GCF (EU)WarrantyFull lifetime hardware warranty with next-day advanced replacement included. * Z3C not available in JapanIncluded in the BoxOrdering GuideTo place an order for an Z-Series teleworker gateway, pair a specific hardware model with a single license (which includes cloud services, software upgrades and support). For example, to order a Z3 with a 3-year license, order an Z3-HW with LIC-Z3-ENT-3YR. Lifetime warranty with advanced replacement is included on all licensed hardware at no additional cost.1 Z3C not available in Japan2 1 x US power cord will be automatically included with all US orders。