BRKEWN-2178.Pdf

Boost Your WLAN Efficiency With Device-specific Tuning

Jerome Henry, Principal Engineer BRKEWN-2178

#CiscoLiveAPJC BRKEWN-2178 2 Agenda

• Introduction – Device Ecosystem Logic • Automating Wi-Fi Onboarding • Optimizing Intra Wi-Fi Roaming • Optimizing Real-Time Application Performances • Conclusion

#CiscoLiveAPJC BRKEWN-2178 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 3 Cisco Device Ecosystem Program Increasing Wi-Fi adoption Cisco partners with major manufacturers to provide the best device experience

Best Wi-Fi 6 Differentiation through Open Partner standards solution standards + Framework

• Client & network • Client network analytics • Enable partners to integrate interoperability providing a client-centric with Cisco autonomously view to DNAC Assurance • Promote standards+ • Up to 4x performance increase • Improve Wi-Fi roaming features across multiple client devices • Consistent • Performance: 5x faster Wi-Fi & cellular handoff • Improved power efficiency

Wi-Fi LTE Wi-Fi LTE LTE Wi-Fi

Home Driving Office Walk to lunch Restaurant Starbucks

• Phone tries to prefer Wi-Fi • Attempts to connect as soon as signal is above detection threshold (-72 to -78 dBm Mall depending on brands) • Data path is switched to Wi-Fi Phone picks up Wi-Fi signal • Only satisfactory if you have a profile and full connectivity

Zone of data/video/etc. drops

• Connection to LTE is seamless • Connection to public Wi-Fi… requires training • Which SSID to choose? • Why do I need to open a Web browser for my emails to refresh? • Do I need to fill a form each time I walk here?

Painful Wi-Fi Insecure Guest Wireless How Many Users Really Onboarding Connect?

Access Providers Identity Providers

Access Providers OpenRoaming Identity Identity Provider Federation

Cloud Provider Enterprise Service Provider Consumer Device Large Venue Manufacturer

Wireless Stack Mobile Devices

Cisco Catalyst 9800 Wireless Controllers

#CiscoLiveAPJC BRKEWN-2178 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 10 Open Roaming - How it Works Signup: 1 • CA verifies entity & issues cert • IdP configures DNS • Device configuration Identity open-roaming Provider Automated Wi-Fi onboarding (roaming) Identity 2 • Device tries to attach to beacon SSID • Network looks up IdP in DNS Federation • Secure & authenticated TLS tunnel • EAP authentication inside TLS tunnel Identity • WPA—protected secure guest access Provider

Wi-Fi Access Network Identity EAP Authentication Provider

Identity Provider Discovery Configure DNS

#CiscoLiveAPJC BRKEWN-2178 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 11 Secure and Private Guest Wi-Fi Certificate based Federation authentication open-roaming WPA2-enterprise Identity based security Federation

Identity Wi-Fi Access Authentication Network Provider

IDP controls EAP-Based user TLS based privacy authentication encryption

open-roaming Identity Federation

Wi-Fi Access Network

RADSEC RADIUS WLC RADIUS Hotspot RADSEC Credential PROXY AAA

connector (or AAA) IDP

up/Manage

- Sign

Credential

Wi-Fi Access Network Samsung.com

Device AP/WLC/DNA DNS Identity Provider 802.11u beacon ”open-roaming”

Attach to SSID with ”open-roaming” beacon

EAP start – ”I support following credential types”

EAP auth with ”[email protected]” Lookup samsung.com AAA Address

TLS tunnel setup, authenticated by ID federation issued certs

EAP auth over EAPoL EAP auth over RADIUS (TLS)

• E.g. CiscoLive • Install Cisco Events App • Login with your Cisco One ID once • App adds a Hotspot configuration with your ID to your device automatically • You now connect automatically to any OR network on the planet that accepts these credentials

OpenRoaming App

OpenRoamingOpen Roaming To enjoy seamless and secure WiFi, • Available soon in Apple please choose an account for activation App Store and Google Play

• Simple onboarding for Continue with Google

OpenRoaming Continue with Apple • Use Google or Apple ID to authenticate • Get usage analytics

3 Scenarios • Cisco WLC 8.3 or newer + DNA Spaces SEE • Cisco EWC 16.12 or newer + DNA Spaces SEE • Meraki + DNA Spaces SEE

DNA Spaces Connector

OpenRoaming leverages the DNA Spaces Connector

• Step 1: Configure the spaces connector

• Step 2 : Apply the token to the DNA Spaces Connector that is onprem..

• Step 3: Add OpenRoaming HotSpot to the Connector

• Step 4: Accept the OpenRoaming Terms & Conditions

• All country channels are scanned (5 GHz and 2.4 GHz)

• Channels 100 – 140 are DFS -> cannot probe directly Listen… If 802.11 frame detected → channel is safe to use → send probe requests

You may wait up to 100 ms… or 60 s! To avoid time waste, iOS/Samsung scans all other channels first, then 100 – 140

E.g. (US, A Domain) 36, 40, 44, 48, 52, 56, 60, 64, 149, 153, 157, 161, 165, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10,11 Repeat 5 times, then scan 100, 104, 108, 112, 118, 120, 124, 128, 132, 136, 140 Refresh only every 6 scan cycles

Your phone/tablet may take up to one minute to detect an AP on channel 100 - 140

124 140 36 40 44 48 52 56 60 64 68 72 76 80 84 88 92 96 100 104 108 112 116 120 128 132 136 149 153 157 161 165 144 1234567891011

UNII-1 UNII-2 UNII-2e UNII-3

• Apple iOS 10 and later: strongest signal and best throughput potential (AP A)

Load: 10% Load: 80% -80dBm -75dBm

AP2 AP1A B

(APs with 100% load are also discarded) On first connection, a phone you see at -82 dBm (AP viewpoint) will try to join

• Android 9 (e.g. Samsung) and after: strongest signal (AP B)

Phone has a further intelligent WiFi arbitration mechanism

1. Make sure that at least one AP is available at > -70 dBm at entrance points

2. Minimize the -82 to -75 dBm zone

3. You can add APs for high density - 70 dBm 4. Avoid DFS channels if low density • With high density, DFS channels are okay, as active channels will be probed • 40 MHz channels may force you to DFS

Ground Truth is Dual AP can’t see through the Client can’t be the eye of the client eye in the sky

• Uplink quality and • APs knows its RF conditions • Client barely knows about throughput are different from and the success of its other clients in the same cell downlink quality and downstream traffic • Client has limited

throughput • AP sees client upstream awareness of neighboring cells existence • RF conditions at client are data rate and ‘retry’ bit -> different from those at AP can only infer why upstream • Client has no idea about cell is different from downstream edge location or next cell • AP and client HW specs are conditions different

Step 1: Know the Step 2: Help the client Step 3: Influence client understand the world the client to the around best spot

• What is this client • Tell client when at cell edge • Use macro-vision of the (HW/SW)? (and when to scan) network to find the best AP for that client (based on • Is the client okay? • Tell client about neighboring cells… or when there is no client location and traffic • How does the client see the characteristics) world? better Wi-Fi to go to • Announce specs to • Help the client find the next • Why did the client leave influence the client toward best AP to roam to that best spot

Aim for: •Noise level ≤ -92 dBm Is it better now? •RSSI ≥ 67 dBm

Blah blah blah -> 25 dB or better SNR You are a bit quiet •Channel Utilization under 50%.

RSSI dBm

Noise Level

Time

based on an actual customer situation 1 1 • Customer moved to first Wi-Fi only 1 building (including voice and video)

• DISASTER! Wi-Fi was Terrible!!

• Investigation revealed all APs at 1 1 max power (power level 1) 1

• Covering ~7500 sq. ft. per AP (2500 sq. ft. per AP is recommended)

• They needed 3x as many APs! 1 1 1

▪ Bad design example: Client @ 12 dBm, AP @20 dBm

Based on Rx AP signal, BYOD thinks 54 Mbps rate is okay… But client message is too weak, and AP does not ACK until rate falls to 12 mbps

Each message takes 8 times more to be transmitted (including EIFS and retries)

• 6 month report from network ‘designed from the ceiling” • AP power set with “AP to AP” in mind (max ‘level 1’) • RSSI seen by the AP is lower than that seen by Client (likely due to lower transmit power of Client) • RSSI difference is significant. • 50 percent of time the RSSI is about 6 dB. Median is 6 dB with a std of 10 dB.

▪ In short: half your worst client max power • E.g. you design for 5 GHz, worst client max is at 12-14 dBm, set your AP power to 14 dBm

▪ Otherwise, you get this:

Unique Cisco partnership

• At association, client sends us HW, OS details

• Upon disconnection, also sends us non- 802.11 disconnect reasons

• iOS also sends us 11k view at each roam

• Samsung supports dynamic 11k queries

How do Cisco and Apple solve this? Right after successful key-exchange during association, the iOS 11 device sends to its AP an 802.11k beacon report (Unsolicited mode )

This is how I see the network BSSID Channel? Signal bb:bb:cc:dd:ee:ff 52 -72 dBm

cc:bb:cc:dd:ee:ff 149 -86 dBm

How do Cisco and Samsung solve this? With MBO Configuration, AP can query the phone at any time to send an 802.11k Neighbor Report (table, passive, active) and build a “Client View RF Map”

This is how I see the network “Coming to DNAC soon” BSSID Channel Signal

bb:bb:cc:dd:ee:ff 52 -72 dBm

cc:bb:cc:dd:ee:ff 149 -86 dBm

dd:bb:cc:dd:ee:ff 153 -68 dBm

How do Cisco and Apple solve this? After association, the iOS 11 client also tells us about itself. We can the correlate platform, OS to behavior at different points of time and space How do Cisco and Samsung solve this? After association, the Samsung (Galaxy S10 and later, Android 9 and later) client tells us platform, OS, Manufacturer build, SP build

This is who I am ? I am iOS 11.0, iPhone 7

When a client roams or disconnects, it sends a disassociation message. The Apple and Samsung Reasons for disassociation device sends a proprietary reason code telling us DHCP Failed when the reason is not 802.11 in nature EAP Timed out 802.1x Failed Device Idle Captive Portal security Failed Decryption Failed WiFi Interface Disabled User-Triggered Disassoc Peer-Triggered Disassoc Beacon Loss

Why I am leaving

Reason Code

Weaker signal, need to roam...

“I’ll be back”

Can’t talk to AP! Scan • No response, multiple retries, < 100 ms rate shifts… Best Many • AP kicked me out seconds next AP Panic scan! found AP found! Reassociation…. Failure! Bad AP / connection failed reassociation Panic scan! …

Seamless roaming scenario “We like support calls” scenario

#CiscoLiveAPJC BRKEWN-2178 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 37 The Authoritarian Way - Optimized (“Smart”) Roaming Without Smart Roaming Cisco “Smart Roaming” -85dB Weak Wi-Fi -80dB -80dB Signal -80dB

Consistent User Efficient Cell Client Stickiness Experience Usage Causes Poor User Experience 3G or 4G

• To steer clients to other available APs or bands, AP2 denies association • No standards compliant reason for denial • No information about neighboring Access Points • If AP is the best signal… iPhone / iPad tries again… • After 5 attempts, SSID (not ‘BSSID’) is blacklisted

• This behavior is specific to iOS 2. AP2 denies association 1. Client attempts association with AP2

Load: 10% -50dBm -30dBm Load: 100% Assoc Req

Assoc Response AP1 AP2 (Status: Denied)

• Let’s start with 802.11k

What could my next AP be?

Here are the best 6 for you 4. Device loses WiFi connectivity with AP1 before re-establishing connection with AP2. (Non- Post-Association Steering: seamless handover) 802.11k neighbor list

-70 dBm, I need to roam and scan: -70 dBm, I need to roam and scan: ch scan shortlist ch 40, 48, 157. 36, 40, 44, 48, 52, 56, 60, 64, 149, 153, Found usable AP? yes -> roam 157, 161, 165, then 100, 104, 108, Total score: 200 ms 112, 116, 120, 124, 128, 132, 136, 140 No usable AP found? -> full scan Total score: 6 seconds

Without 802.11k With 802.11k

• 802.11k vs 802.11v BSS Transition Management Need to roam, what AP do you What could recommend? my next AP be? 802.11v Solicited request

Try this one Here are the best 6 for you Your RSSI / rates are too low, roam to there instead

802.11k neighbor list Want to join your cell

Nah, load too high, go there 802.11v Unsolicited instead Optimized Roaming request

802.11v Unsolicited request

“APs 2 and 3 “only LTE beyond are good for you” Optimize battery to this point” throughput efficiency while “AP3 is best” roaming “AP5 is best” “APs 2, 3 and 5 • “Roam at 60 Mbps by are good for you” scanning at -65 dBm”

• Client-tailored neighbor map and BTM messages

• LTE Boundary support

“HD network, scan at -68 dBm”

• We understand how iOS and Samsung devices think, other guys do not

Need to roam, what AP do you Need to roam, what AP do you recommend? recommend? Try this one Try this one That is NOT a good AP! Love it, thanks! (ignore and full scan)

Optimized Multiband Operations (Wi-Fi Association Disallowed Alliance)

• At association: channel preferences (STA), Don’t join my cell (too many people, association disallowed (AP) CU too high, better AP for you, other…) Try again in X, or go to channel Y • During the session: 802.11v (BTM), including ‘go to LTE’ variant, 802.11k reports 802.11k Beacon Report • Supported by all recent Samsung Galaxy / Hey, go scan channels XYZ and tell me what you see Notes clients …

• In eWLC 16.12 and AireOS 16.10 Ah, on ch 36, AP5 was there, I detected that (after scan completes) many frames while listening for duration X, then on ch 44, …

Enable individually 802.11k,v Or enable MBO • Enables 802.11k/v/w

There is no downsides to 802.11k/v Test PMF/802.11w before deployment

• At “A” the phone is connected to AP 1 • At “B” the phone has AP 2 in the neighbor list, 1 2 AP 3 has not yet been scanned due to the RF A B shadow caused by the elevator bank • At “C” the phone needs to roam, but AP 2 is the C only AP in the neighbor list 3 • The phone then needs to rescan and connect to AP 3 • 200 B frame @ 54 Mbps is sent in 3.7 μs • 200 B frame @ 24 Mbps is sent in 8.3 μs • Rate shifting from 54 Mbps to 24 Mbps can waste 1100 μs

• At point A the phone is connected to AP 1 1 • At point B the phone has AP 2 in the neighbor list B as it was able to scan it while moving down the A 2 hall • At point C the phone needs to roam and C successfully selects AP 2 • The phone has sufficient time to scan for AP 3 ahead of time 3

RADIUS RADIUS

Full reauth

MDIE MDIE PMKR1 PMKR2 4 way handshake 4 way handshake Disassociation Disassociation -> new key -> new key

Standard WPA2 (802.1x) 802.11r (FT) Score: up to 6 seconds Score: less than 100 ms

Legacy client cannot Legacy client that does join the same SSID not support 11r/k/v can where 11r is enabled join the same SSID

I recognize that you are an Apple device Association 11r is enabled for you

802.11k, 802.11v are on by default

Non-Cisco-AP Cisco-AP

Use Adaptive FT if: ✓ You have a large population of iOS /Samsung clients ✓ Your Security is WPA2/WPA3 ✓ You need fast roaming ✓ You cannot enable FT

Enterprise-class phones support 802.11r, hybrid works ‘often’

• Support requests – Wi-Fi issues during Video VoFi call

Incident level (Before upgrade) Count over 1 week Level 0 (productivity Crusher) 13 - Call disconnected - Level 1 (Productivity Inhibitor) 36 - Audio & video gaps - Level 2 (Minor Annoyance) 131 - Audi glitch or light pixelization- Total 180

1. Determine coverage gaps 2. If coverage is satisfactory, look at SW config

Support requests – Wi-Fi issues during Video VoFi call

Incident level (Before upgrade) (After upgrade) Change (%) Count over 1 week Count over 1 week Level 0 (productivity Crusher) 13 0 - 100% - Call disconnected - Level 1 (Productivity Inhibitor) 36 8 - 78% - Audio & video gaps - Level 2 (Minor Annoyance) 131 96 - 27% - Audi glitch or light pixelization- Total 180 104 -42 %

Support requests – Wi-Fi issues during Video VoFi call

https://www.cisco.com/c/dam/en/us/products/collateral/wireless/cisco-on-cisco-so-r4.pdf

• Example: Effect of ”Gold” Profile CAPWAP Encapsulated CAPWAP Encapsulated DSCP 802.1p DSCP 802.1p DSCP Payload UP DSCP Payload 802.11 DSCP Payload 802.11 DSCP Payload 34 5 46 34 46 46 46

CAPWAP Wired 802.1Q Trunk 802.1Q Trunk Network

UP DSCP Payload CAPWAP Encapsulated CAPWAP Encapsulated DSCP 802.1p DSCP 802.1p DSCP 6 46 802.11 DSCP Payload 802.11 DSCP Payload Payload 34 46 34 46 46

CAPWAP Wired 802.1Q Trunk 802.1Q Trunk Network

5 UP DSCP Payload CAPWAP Encapsulated CAPWAP Encapsulated DSCP 802.1p DSCP 802.1p DSCP Payload 46 34 802.11 DSCP Payload 802.11 DSCP Payload 46 46 4 34

Voice Client Marked 46 (EF) UP = 5 Demoted to 34 (AF41)

Video Client Marked 34 (AF41) UP = 4 Demoted to 26 (AF31)

Signaling Client Marked 24 (CS3) UP = 3 Demoted to 18 (AF21)

• This approach greatly simplifies QoS design and removes unexpected mapping behaviors • Does not apply if your STAs can’t mark DSCP

Access mode Wired 802.1Q Trunk 802.1Q Trunk Network

UP DSCP Payload CAPWAP Encapsulated CAPWAP Encapsulated DSCP 802.1p DSCP 802.1p DSCP 802.11 DSCP Payload 802.11 DSCP Payload Payload

Use Platinum for most corporate WLANs where voice is expected

Use best effort, or background, for guest WLANs

Max Max Upstream Profile Name Downstream DSCP Value DSCP Value Platinum / Voice 46 (EF) 46 (EF) Gold / Video 34 (AF41) 34 (AF41) Silver / Best Effort 0 (CS0) 18 (AF21) Bronze / Background 10 (AF11) 10 (AF11)

CAPWAP Wired 802.1Q Trunk 802.1Q Trunk Network

“Not much we can do” here We do a lot here

RFC 4594-Based Model DSCP IEEE 802.11 Model Remark / Network Control (CS7) Drop if not in UP 7 Voice Internetwork Control CS6 use Access Voice + DSCP-Admit EF + 44 UP 6 Category Broadcast Video CS5 Multimedia Conferencing AF4 UP 5 Video Realtime Interactive CS4 Access RFC 8325 UP 4 Category ✓ Apple Multimedia Streaming AF3 Signaling CS3 ✓ Samsung/Google UP 3 Best Effort ✓ Microsoft Transactional Data AF2 Access OAM CS2 UP 0 Category Bulk Data AF1 UP 2 Background Scavenger CS1 Access Best Effort DF UP 1 Category

#CiscoLiveAPJC BRKEWN-2178 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 62 2015 Endpoint/Client Voice (EF) Video (AF41/42) Control (CS3) QoS Partnerships WMM Convention 6 4, 5 4 • Windows: use Group Policies Audio (iOS) 5 5 0 Audio (Samsung) 5 5 0 • Samsung: natively implements RC 8325 Audio (OSX) 5 5 0 • iOS: use Fastlane Audio (Windows 10) 5 4 3 2019 Endpoint/Client Voice (EF) Video (AF41/42) Control (CS3) WMM Convention 6 4, 5 4 Audio (iOS) 6 5 5 Audio (Samsung) 6 5 5 Audio (OSX) 6 5 5 Audio (Windows 10) 6 5 5

Most vendors have adopted RFC 8325, but you need to activate marking STA cannot know if the network supports QoS

QoS Profile or QoS no QoS Profile Profile

QoS Profile is If a Profile was not considered received, All apps in Applications White list Can mark can only mark QoS upstream UP, not DSCP*

Supports Fast lane

Non-Cisco-AP Cisco-AP

Supports Supports Admin can provision Apple IOS device with a QoS profile* Fast lane Fast lane Applications in whitelist get QoS marking** Other applications get BE/BK

My profile for My profile for this environment: this environment: Minecraft = Real-time- Minecraft = BE interactive Viber = Voice Viber = BE

Supports Fast lane Supports Fast lane

Cisco-AP Cisco-AP

Application Network Mobile Device Developer Administrator Manager End User • Marks app flows • Upgrades Cisco WLAN • Downloads iOS 10 (or • (Optional) Creates and appropriately based upon Software to version 8.3.x above) on iPhone and deploy an iOS QoS iPad, Mac OS 10.13 (or Apple APIs in iOS 10 / • Accepts most Cisco profile to whitelist only above) from AppStore Mac OS 10.13 configuration defaults mission-critical • Accepts all defaults • Makes new app version • Enables Fastlane on applications • (Optional) Receives the available on AppStore target SSIDs QoS profile

Cisco WLAN Network and Apple equipment with iOS 10, Mac OS 10.13 and above recognize each other; QOS marking is trusted end-to-end

AVC provides traffic visibility… and ensures that marking stays consistent in both directions

• In a congested environment, one voice packet is sent every 20 ms

• We measure the actual interval between voice packets in the upstream direction

Packet average interval is 40 ms (not so good) Packet average interval is 20 ms (good) Interval (seconds) Interval (seconds)

Many glitches, of up to 0.6 second Very few glitches, of up to 0.1 second (poor audio experience) (fair audio experience)

Capture time (seconds) No Fast Lane Fast Lane

Standard IP packets location- independent identifiers in IP address +L4 segmentation

EDGE hICN hICN hICN DATA PACKET SOURCE DEST.CONTENT LTE INTEREST ADDRESS ADDRESSNAME CONTENTSOURCE DEST. PACKET ADDRESSNAME ADDRESS

hICN hICN

WiFi CLOUD Dynamic policy-based hop-by-hop hICN Receiver-based multi-path, multi- forwarding, caching, source transport with per packet LTE In network control load balancing

• Voice is muted when the network is changed (Wi-Fi <-> LTE) • When the network bearer in the mobile is changed (W-iFi <-> LTE), voice is muted during several seconds. • Normally, we experience voice muted during 6~7 even though network is switched much quickly (1~2 secs). • It seems to take time to setup a new UDP session to the Webex server. 6 seconds 6 seconds

Voice Delivery in WebEx

Wi-Fi LTE Wi-Fi Network Bearer

1~2 seconds No delay

• Multipath approach is required for seamless connectivity in mobile environment! • hICN, QUIC, MPTCP, …

• For standard webex, bandwidth= video + FEC stream • FEC uses lots of bandwidth even for small packet loss rate.

• With HICN, up to 40% bandwidth reduction even for small loss rate of 4%.

3-4s interruption Soft handover in Android

No interruption

Soft-handover will improve

Rate Adaptation: Maintain QoE Despite Losses

FP S Low FPS High FPS

Quality constant at 720p Quality Quality drops to 180p 0% 15% loss 0% loss 0% loss 15% loss 0% loss loss

• Samsung can provide a highly optimized network management algorithm. Performance result with • Minimize latency based on Wi-Fi quality (real time measurement) Samsung’s optimized network framework • Minimize unnecessary LTE data consumption

Excessive LTE data consumption

• Test results

Optimized LTE data use Zero Data

A) Wi-Fi Only B) MPTCP C) Optimized Problem of legacy technologies without framework optimization

DNAC C9800

#CiscoLiveAPJC BRKEWN-2178 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 77 Start and Stop Full Packet Capture for AP4800 DNAC Client Troubleshooting Real-Time Live Mode Network Time Travel

Real-Time Client Event Viewer 36 10.10.1.25

0 Real-time Client location Map with trail of movement

Download Onboard Packet

Onboard Packet stage identifier Anomaly Packet Session Sequence Duration

Path trace: visibility into path, and each hop performance and configuration

Application Experience: per user, per application metrics

• From C9800 or DNAC • Provides per client, per AP RF metrics • Wireless pcap, wired pcap

https://community.cisco.com/t5/wireless-mobility/ct-p/4931-wireless-mobility

• AireOS 8.3+, any C9800, for FastLane and iOS roaming optimizations (“aligned” 11k/11v support, Adaptive 11r)

• AireOS 8.5+, any C9800, for iOS “knowing each other”, 11k report, “why I left the cell”

• iOS 10+, MacOS 14.13+, Samsung S8+ for RFC 8325 QoS

• AireOS 8.10, C9800 16.12 for aligned MBO support, Samsung 11k reports query

• C9800 17.1 for Samsung “knowing each other”, 11k report, Auto 11r, “why I left the cell”

• Continuous alignment for 802.11ax (1.4 times the other vendors speed with S10 and our APs!), WPA3 and other mainstream features

• And many more features to come this year…

• Remember – 70 dBm, 11 / 14 dBm, limit the -75/80+ dBm zone • Avoid hidden SSIDs, DFS channels (except in HD), aggressive load balancing, “smart” roaming • Think “roaming path”, “next AP” should always be in view • Position your APs so that “view from the ceiling = view from the ground” • Enable 11k/r/v, 5 GHz-only SSIDs if you can • If you build for iOS, Android and other BYODs are likely to perform well too