Thursday, December 14, 2017

Rant: Licensing - It never gets better, it just gets more awkward

I have worked in the VAR/reseller space for over 8 years, and in that time I can’t recall a major shift in licensing that left me with the opportunity to go have enjoyable conversations with my customers.  Never did licensing get simpler, easier or seem to make more sense.

Let’s take a few examples from my career working with Cisco and see if you can spot the awkward parts of these conversations with customers?

Ancient History: We sold 4400 series controllers and they were sold with a fixed amount of licenses.  Need to go from a 4402-12 to a 4402-25? The conversation was to “buy a new controller.”

The Middle Ages:  Then we had 5508s and 2504s.  This was confusing as licensing costs varied with the volume and platform you were buying for.  Upgrading from a 4400 series?  Yeah, you’re going to have to rebuy those licenses along with the new controller.  But the bonus is that you can always add more up to the platform limit.

The Modern Age:  Now we have the 3504 and the 5520 series controllers.  You can now buy per-AP licenses, so no more blocks of licenses that you only needed 1 of.  Also, it’s Right To Use, so no awkward pak files.  Things would pretty good.  But you still need to rebuy licenses from your 5508 to get to this platform.

The Postmodern Age:  Everything in the modern age is still alive and well, but now we have this thing called CiscoOne.  It’s a licensing bundle and it decouples hardware from software licensing.  You buy it per-AP, and it includes a WLC, Prime, CMX Base and 25  ISE base licenses.  This enables portability so in the future you don’t have to rebuy licenses AND access to ongoing innovation.  YAY.  But you have to rebuy into this program from your existing 5508 or 5520 license, and the entry price is steeper.  But it includes most everything you could want.  There are a two different tiers, with different features that you can choose from. 

Today:  We still have the Modern Age, and Postmodern Age licensing. But now we have DNA licensing.  Which is also a bundling of multiple licenses, but now it’s term based. So when the term is up, you have to renew or you’re super-awesome WLAN hardware is just postmodern artwork.   Also the bundles don’t align exactly with the previous generation of C1.  ISE is missing from all but the top bundle, and now it’s 15 base licenses vs 25 before.  Also, if you bought C1, you get ongoing innovation.  At least for a while, and then you gotta rebuy into that innovation.  Now there are 3 more tiers of this licensing, all term based depending on how much of the new DNA architecture you want to go into.

Does your head hurt?  Mine has been hurting for years. What was a hard conversation is now a number of hard conversations with a ton of complexity and nuance that I am now expected to help my customer navigate through.  Every new licensing tier has areas where customers get lost, feel like they misspent money and ultimately get a call from Jake to talk about how the next generation of licensing is different and try to navigate a path forward.

Now, if you think I’m sticking it to Cisco, you are mistaken. My experience has been that the Cisco account teams have done a good job on a case by case basis to help customers with some of this pain.  I can’t say enough good things about my local account teams and they continue to help us navigate these waters.  But Cisco isn’t alone in this licensing evolution.

Aruba recently revamped their Clearpass licensing and on the surface it looks like an improvement.  But they took out the 25 enterprise licenses that you could run Onboard, Onguard, or Guest to test with.  And if you bought into the idea that enterprise licenses gave you the flexibility to a generic type of licenses that could be used for any feature (Guest, Onboard or Onguard), in 6.7 you now have to decide how you want to split them up.  And before they used to market it as it was an average of the last 7 days, so the weekends being low kept the average down for you so you really didn’t have to buy “peak” licensing, Not any longer, it’s a 24 hour window.  So while Aruba listened to their customers about their frustrations about how the product was licensed, they did very little to get existing customers over the gap between where they were and the new licensing scheme.

I’m sure the Aruba account teams will step up and help their customers, but it sure doesn’t give me warm fuzzy feelings.  Nor to I look forward to those conversations with customers who have bought into a product only to have their plans altered by new monetization models.

I hate licensing, and feel like efforts to “Make Licensing Great Again” are just ways to flip revenue from old revenue models to newer ones and don't benefit the customers of these products.

Wireless 2017: What We Wanted Then, and What We Want Today

As a wireless engineer, we study the 802.11 protocol. We read how the standard is written, study how it is supposed to work and yet seem to spend our time fighting why it doesn’t work.  Tweaking power, channels, datarates, toggling features and code versions in hope that things functions the way we want. I know I’m not the only one who is frustrated with the bugs, the oddities and the constant upgrades in order to make the box on the ceiling work the way we want it to.

Monday, November 13, 2017

Wearing Superhero Capes Around the Office

As an IT person, I love being a hero.  Solving a customer's issue, especially when others before me have tried and failed is fun.  But as a consultant, I can't be at all my customer's at once.  So when one of them has an issue, either it's remotely troubleshooting, or I'm rolling on-site to diagnose the issue.

And while I and the rest of the team of superhero wireless engineers are out taking care of customers, what happens when there's an issue at the office?  Not as much as I would like most of the time.  We are the stereotypically cobblers kids, and barefoot is the new black.

But shortly after MFD2, we had an office expansion and a lot of the executive and operational staff moved into a new area with new APs.  And they had problems.  I remember getting a "things are broke" email, with no username, Mac address, time of incident, etc and thinking to myself that it was going to be a few weeks before I was going to get to dig into this.

And then I remember that Cape Networks had given me one of their sensors, and it hadn't been doing much in my home lab.  So I grabbed my superhero Cape and headed into the office.  A quick reconfiguration of the SSID and I was in business.

Setup and Configuration:
The first thing I'll say for Cape, is that it's really easy to setup.  I put in the credentials for the SSID, and it was off testing the out of box services. I took a few minutes to add in our internal domain controllers, web servers, financial applications and some of our random cloud services and let it go.
Several days later, I logged in, and tightened up some of the DNS/DHCP response times, the defaults were a little too forgiving for my tastes on the internal LAN.  All of it very straight forward, and quick.

Detecting issues:
Having the Cape sensor helped me deflect some blame due to an internet outage, and network closet interruption from the wireless onto their appropriate blame centers, all of which resulted in me getting emails about "wireless issues."

Meanwhile I'm right now exploring a legitimate wireless issue that I caught with the Cape, and their packet capture feature let's me go back and look at what it saw and why.  I know rolling packet captures are the new hot thing right now, so having that for a deployment that doesn't support it natively is nice.  

Issues with the Cape and resolutions:
My experience with Cape wasn't without issue.  Early on, I found a bug where my reported RSSI was bouncing frequently with a 30db variance.  A quick chat with support, they had identified a bug, and it was resolved the next day, which is awesome considering the timezone differences.  I look at my interactions with their support, and I really can't ask for much more.

The Cape dashboard is really clean and functional on desktop platforms. Unfortunately for mobile users, you can't drill into some of the things due to their use of hover over in the dashboard.  For me this is an issue, because I'm frequently checking on stuff while on the go.  But you can get to the basics of most things while mobile.  

I think that Cape is really early in their lifecycle.  When it came out of the box, I was a little disappointed that some of my "must have" features weren't there (band locking, multi-SSID, etc).  But over the last few months, 90% of those have shown up in the product.  This goes to show that they folks over at Cape are working hard, and listening to customer feedback around what is needed.  Combine that with exceptional customer service, and being very responsive in fixing bugs, I'm a believer.  I think it's important to understand that these guys are still small, still very much in the startup phase.  They aren't perfect, but it's been my experience that they really want to do things right, and are quick to get things resolved.  

I haven't even begun to scratch the surface of what the cape can do.  I haven't leveraged the cellular at all nor have I tested their integration with Adrian's Wifi Explorer Pro.  Overall, Cape Networks has built a solid platform that belongs in most wireless superhero's utility belts.  

Disclaimer: Cape Networks provided me one of their Cape Sensors and their cloud service as part of my participation in Mobility Field Day 2 along with a variety of other swag.  These thoughts are my own, and I am not being compensated for my opinions about their products.

Saturday, August 19, 2017

Blogging and Vendor Blowback

I’ve been pretty fortunate that in my years as a blogger and a WFD/MFD delegate, that my employer has allowed me to express my opinions on this blog, attend these events and doesn’t pressure me to write about the vendors that we sell.  Likewise, the vendors that I sell have been quiet on the matter.  Maybe they don’t care, maybe I’m too small to worry about.

Thursday, August 3, 2017

Wireless: Vendors, Partners and You

Note: This is a post derived from one of my emails to the Educause wireless lan mailing list related to issues around certain versions of code and receiving different recommendations from the BU, TAC and Partners.


One of the things as a partner I try to do is educate customers on is “who is recommending what, and why.”

Tuesday, August 1, 2017

Mojo Networks: Driving Value With Open Hardware Standards #MFD2

Wireless has always had somewhat of a vendor lock-in nature.  You buy APs from a vendor, you are likely stuck buying their controller, cloud management, etc.  And if their system doesn’t grow with you, continue to meet your needs or becomes a giant bug model where you just spend all day QAing someone’s code in production, it generally requires a forklift upgrade to another vendor's system.

The challenge here is having that other vendor’s software tied to their hardware platform, necessitating the need to forklift.  The sad part of this with access points is the hardware for APs are probably 90% the same. They likely come from Broadcom, or QCA, and are all based around the same basic technology. 

Wednesday, July 26, 2017

Mist Systems: A first look

So I really didn’t want to like Mist Systems.  I haven't really gelled with any of the pure-cloud networking vendors and kind of expected this to be a "me too" play. So when Mist told the #MFD2 delegates they were going to send us an AP41 for us to play around with, I didn’t feel exceptionally excited.

That feeling lasted right up until I started using it.  Setup was quick, the AP was up and running quickly and a couple cheesy SSIDs later it was working. I've been very impressed with the overall performance and experience using the Mist AP41.

The Cloud Management:
At first I thought their cloud management was a reasonable knockoff of the Meraki cloud. But the more I use it, the more the differences stand out.  Onboarding to the dashboard with a QR code or Serial number was cool.  The HTML5 dashboard is very responsive.  I am in love with the correlated graphs, where you can mouse over one graph and it moves the line to correspond to the others on screen.  Overall, it feels easy and natural but not dumbed down, and is organized in a way that feels natural for most network and wireless engineers.

The Hardware:
The AP feels good, heavy in your hand so you know it’s not a cheap product.  I was disappointed that it’s vented, but not every AP needs to be in healthcare and wiped down regularly.  It doesn’t come with mounting hardware, so make sure you order that (Mist did offer to send us some, but my 3D printer was just sitting there).  

The vBLE:
I didn’t have time to build an app leveraging their SDK for the vBLE solution.  I really wish I would have had the time, because vBLE is how I was introduced to Mist Networks, and I wanted to kick the tires.  The setup seems reasonably easy, the BLE settings seem intuitive, but alas, pre-MFD2 it just wasn’t in the cards.  But it turns out they have a demo app on the Apple App Store.  Expect more on this in a future post.

SLA Based wireless:
There are others who do this, but this is by far the best implementation of SLA based wireless I’ve seen to date.  It’s not about uptime (although that is there), it’s about how users experience the network.  How long does it take to connect?  Get an IP?  Resolve DNS?  Those are things that directly relate to how the users experience the network.  You can set your own, or run with the defaults. 

In my house, with just a single AP41, I didn’t quite have enough coverage to cover both ends of the house.  My iMac in the office was at the other end of the house.  While it connected, it flagged for being out of SLA due to coverage.  I really wish I had another AP41, because the roaming aspect looks really cool.  Failed 11r roams, Slow roams, slow OKC roams.  As a wireless engineer, this is what I’m trying to get to the bottom of, so I can resolve these things.