400 likes | 530 Views
Sydney Region Technical Briefing June 2009. The L4L Project. “If high school teachers are of the opinion that the Laptops4Learning program is a waste of money and won’t work, then it probably won’t work. But the money is being spent anyway. ”. The L4L Project is Cutting-Edge.
E N D
The L4L Project “If high school teachers are of the opinion that the Laptops4Learning program is a waste of money and won’t work, then it probably won’t work. But the money is being spent anyway.”
The L4L Project is Cutting-Edge NSW DET is not cutting any corners with the technical aspects of this project The Laptop chosen is highly spec’ed Latest O/S and professional software The wireless provided is the best, fastest and most manageable solution available On-line services are being developed to provide students and staff with secure data storage and collaborative applications
SR L4L Technical Briefing The Laptop: What it is, what it looks like, what’s on it What you can do, what you can’t do How it will be managed The Wireless Network: What it is, how it works, how it’s connected What’s Phase 1 of the wireless install? What’s Phase 2 of the wireless install? What you can do, what you can’t do
L4L – What’s on it? • Windows 7 Release Candidate • Long-Life battery http://tinyurl.com/L4Lsoftware • Lots of educational freeware
Why Windows 7 RC? Everybody originally assumed Linux Then Windows XP took over the Netbook market by massively dropping its price But with the release of Windows 7 RC in May 09, it was evident that this was the best (fastest, most powerful) operating system for Netbooks and for L4L Netbooks will be replaced with Windows 7 when it is released later this year
Why Windows 7 RC? Windows 7 RC provides backward- compatibility with most existing XP software NSW DET has a massive knowledge investment in Windows in both the server (technical) and client (user) arenas Windows 7 represents the latest in operating systems as compared to Win XP which is now 7 years old (end of life) Vista was never in the picture
What you can’t do with the laptops(…that you were hoping you could) Every High School in NSW seems to be doing things differently with ICTs due to a history of autonomy It is this autonomy that has forced NSW DET to come up with a unique and supportable solution for L4L We need ONE revolution, not hundreds of them. So: Local administrator access will not be provided for the laptops Additional software that requires admin access to install can’t be installed on the laptops The Laptops will not be joined to the school’s Windows domain The Laptops won’t be shipped with a Netware Client for Novell servers Group Policies/Scripts delivered from your server won’t be applied Printing to some of the school’s printers may not be possible
Supporting the Laptops The solution being adopted relieves the need for the school’s CC to try to make hundreds of new laptops “fit” with their existing school network L4L is a statewide project – NOT a school project If your school is thinking of wiping the image to create its own, forget it. Support is provided, take it. You’ll need it.
What the Laptops can do… Authenticate to Windows using the DET Portal ID – one laptop, one user only (Allocated mode) Connect to the school’s new wireless network providing access to Internet, DET intranet and the school’s web services Print to selected HP networked laser printers via IP printing (drivers supplied) Run the pre-installed applications Provide a virtual 1024x768 display (scrolls down a little) Connect wired or wirelessly at home / wirelessly at McDonalds Accept a USB flash or hard disk to read from/write to. Connect via Remote Desktop to well-configured and spec’ed school terminal servers
Spare Pool of Laptops L4L computers for year 9 Students are ALLOCATED – one PC, one user ONLY Spare L4L computers (from Pool) can be: LOANED (long term or short term) – these are the same as Allocated, but they are expected to be returned. Must be reimaged upon return. Can be Loaned to Students (10-12) and/or Staff POOLED – used by multiple users, in the library or classrooms All allocations of laptops via RMU – managed by the in-school L4L support officer
L4L: Managing the Laptops L4L Device Manager(aka the L4L Support Officer’s toolbox): Single point of admin Integration with existing infrastructure : IDM, AD, Portal, ERN, SMU, EMU, Remedy, Computrace Device, Student and Staff Management Each device will have a current state.
L4L: Managing the Laptops Device State(s) : Inaugural (still in shrink wrap, delivered by Lenovo) Allocated (in 2009 to a year 9 student) – It’s their machine, no other student can logon to it Loaned – Teacher machine or temporary assignment to a student Pool (either in storage or general usage) Broken, Stolen or Lost – In an interim state of inoperability Retired (Broken, Stolen or Lost) – Permanently written off Computrace tracks ‘atomic’ activity, assist in recovery and denial of stolen devices.
L4L: Architectural Overview ESB Log activity Home Network Home View / Manage activity Access & Asset Management Internet Enterprise Group Directory Bluecoat filter Computrace Remedy Central AD Log activity School ERN Synch. Device Management and Authentication DIP (local AD / Storage) Wireless Network
L4L – The Wireless Solution • Preliminary designs and installations are happening RIGHT NOW • Schools must nominate up to 12 Learning Spaces in addition to the Library for wireless installation in Phase 1 (max. 3 buildings) • The Wireless network is TOTALLY separate to the school’s existing wired and wireless LAN • Spare Fibre is REQUIRED between the Campus Distributor and all Building Distributors
L4L – Wireless Phase 1 • Phase 1 Installation covers: • Cabinet in Campus distributor • Head-end switch • Wireless Mobility Controller • 2 Wireless Access Points (WAPs) in Library • Up to 12 WAPs in Learning Spaces in up to 3 buildings • Up to 3 cabinets with 3 POE Edge switches • “DIP” server and UPS (supplied before Phase 2) • Design of Phase 2 installation requirements • Identification of potential existing backbone issues
L4L – Wireless Phase 2 • Phase 2 Installation covers: • One WAP in each Learning Space (as defined by AMS) • Sufficient cabinets plus POE switches as required • Installation in “eligible” demountables (demountables are normally excluded from the project) • Requested and approved staffroom installations • Phase 1 Completion by start of Term 3 2009 • Phase 2 Completion by start of Term 1 2010
L4L – The Wireless Solution • The new wireless system is based upon the 802.11ndraft 2 standard and configured to operate in the 5 GHz range • Existing 802.11a wireless will cause conflicts • The 2.4 GHz range will only be used to monitor the air, existing b/g wireless can stay • N and WPA2 + AES (Advanced Encryption Standard) must be configured on all 3rd-party devices • The SSID will be set to NSWDET
L4L – The Wireless Solution • 802.11N will provide an absolute minimum of 2Mbit/s with 30 laptops connected to a single Wireless Access Point in a room • Theoretically, under ideal conditions, 30 laptops should be able to achieve 5-8 MBit/s access. • Other “N” devices may be able to connect for web-based Internet and Intranet access only • A/B/G devices will NOT be able to connect • All learning spaces (in AMS) will get an Access Point by the end of Phase 2 (mid 2010)
L4L – IP Addressing • New address range for all L4L networks • Based on number of enrolments • WLAN allocation is bottom of allocated subnet
L4L – (Virtual) VLANs • The new L4L LAN will consist of VLANs • All switches on the L4L VLAN will have static addresses - all other devices including access points and wireless clients will be allocated DHCP addresses by a newly supplied “DIP” server
Your Campus Distributor Fibre backbones with spare pairs required! NOTE: Investigate your backbones and all of your BDs! If they are copper or you have no spare fibre pairs, you have a problem which will delay the completion of your WLAN install
L4L – The New Components Aruba 6000 Wireless Controller
The L4L Campus Distributor Spare Fibre pair To new BD cabinet New 12RU cabinet in each BD New 45RU Cabinet in Campus Distributor
L4L – New Head-End Switch • HP Procurve 5406zl • Standard ports for standard device connections • Layer 3 switching (inter-VLAN routing) • All Unused ports will be disabled • All ports dedicated to L4L at this time • All copper ports are 10/100/1000 Auto • No dual personality (schitzo) ports
L4L – Aruba Wireless Controller • Aruba 6000 • Modular controller capable of supporting a maximum of 8192 access points / 32,768 users. • Supports W-VLANs, Layer 2 & 3 • Adaptive Radio Management • Remote diagnostics • Redundant power supplies
L4L – POE Switches in BDs • HP Procurve 2910AL-24-POE • 20 auto-sensing 10/100/1000 RJ45 ports • Power Over Ethernet • 4 dual-personality ports – Require Modules • Will be populated with 1 x mini GBIC Fibre module • One switch supports up to 20 WAPs in one building • If more WAPs needed another switch will be provided
L4L – Wireless Access Points • Aruba AP 125 • Dual-radio 802.11a/n + 802.11b/g/n using 3 integrated MIMO Omni-directional antennas – no power point req’d • High-Throughput (HT) Support: HT 20/40 • up to 300Mbps (802.11n) • Will be LOCKED to 802.11n (5GHz) ONLY • Can be installed upside-down onceiling (ideally) or higher up a wall
L4L – The DIP Server • IBM Server x3500M2 • Distributed Infrastructure Platform • Will eventually replace CPC • Server 2008 with Hyper-V • Read-Only Active Directory – for user Authentication • RADIUS and Policy Server • Cache for eBackpack • Print Server (Selected Printers) • DHCP and DNS Server (Wireless LAN only)
L4L – In Summary • The new wireless system is based upon the 802.11n standard, configured to operate in the 5 GHz range. • An Aruba mobility controller at each site will manage local wireless access points. • Hewlett-Packard PoE switches will be used to link and power the access points. • New Ethernet cabling will link wireless access points to new switches in each new BD. • All cabling will adhere to the Department's Structured Cabling System Standard. • A “DIP” server provided by the Department will allow quick authentication for wireless clients.
L4L – Keep up with the News • Main L4L Website: http://tinyurl.com/L4Lwebsite includes: • Regular Bulletins • FAQs • Rollout Schedule (continually updated) • Policies and Procedures • Professional Learning
Any Final Questions? Thank you for your attendance. Presentation handout at http://tinyurl.com/SRL4Lbriefingnotes