IIM A Bid Document Technical Bid

Request For Proposal
No: IIMA/CCSP/072/2015-16
Dated March 11, 2016
Request for Proposal (RFP)

For
IIMA New Campus Wireless Local Area Network (WLAN)
Based on the IEEE 802.11ac Standard
STAGE 1
BID DOCUMENT 2
TECHNICAL BID
Version 1.0
Client
Head Information & Communications Technology
Indian Institute of Management Ahmedabad
Vastrapur
Ahmedabad 380 015
Gujarat, India.
Telephone: +91 79 6632 4126
Fax: +91 79 6632 6896
Website : www.iima.ac.in
E-mail: ithead@iima.ac.in
This document is the property of IIMA. It should not be used in any form except for bidding for the
RFP No: IIMA/CCSP/072/2015-16 dated March 11, 2016
TABLE OF CONTENTS
CHAPTER 1.................................................................................................................................. 4
1.0
TECHNICAL BID REQUIREMENTS
CHAPTER 2.................................................................................................................................. 6
2.0
WLAN TECHNICAL SPECIFICATIONS
2.1 WLAN SYSTEM & CONTROLLER ............................................................................... 6

A.
WLAN SYSTEM ARCHITECTURE ............................................................................ 6
B.
WLAN SYSTEM QOS / VLAN FEATURES ................................................................ 8
C.
WLAN SYSTEM ROAMING FEATURES .................................................................. 9
D.
VOICE over WLAN FEATURES ............................................................................... 9
E.
WLAN SYSTEM MANAGEMENT FEATURES ........................................................ 10
F.
WLAN SYSTEM SECURITY FEATURES.................................................................. 12
G.
WLAN SYSTEM REDUNDANCY, RELIABILITY & RESILIENCE FEATURES .............. 15
H.
WLAN SYSTEM SCALABILITY FEATURES ............................................................. 16
J.
NETWORK MANAGEMENT SYSTEM (NMS) ........................................................ 17
2.2
2.3
2.4
IN-ROOM WIRELESS ACCESS POINT ....................................................................... 19

INDOOR / CORRIDOR WIRELESS ACCESS POINT ..................................................... 20
OUTDOOR WIRELESS ACCESS POINT ...................................................................... 22
CHAPTER 3................................................................................................................................ 25
3.
SWITCH SPECIFICATIONS
3.1
25
24 PORT L3 AGGREGATION SWITCH 4 NOS REQUIRED ...................................... 25
3.1A ARCHITECTURE / PERFORMANCE ........................................................................ 25

3.1B STACKING ............................................................................................................. 26
3.1C POWER MANAGEMENT ....................................................................................... 26
3.1D PHYSICAL DIMENSIONS ....................................................................................... 27
3.1E LAYER 1 FEATURES ............................................................................................... 27
3.1F LAYER 2 FEATURES ............................................................................................... 27
3.1G LAYER 3 FEATURES............................................................................................... 28
3.1H SOFTWARE DEFINED NETWORKING (SDN) ......................................................... 29
3.1I QUALITY OF SERVICE (QoS) ................................................................................... 29
Technical Bid
Version 1.0
Page 2 of 55
3.1J SECURITY ............................................................................................................... 30

3.1K HIGH AVAILABILITY .............................................................................................. 30
3.1L MANAGEMENT, DEPLOYMENT & CONTROL ........................................................ 31
3.1M MULTICAST PROTOCOLS..................................................................................... 32
3.1N REGULATORY COMPLIANCE / CERTIFICATIONS .................................................. 33
3.2
48 PORT PoE/PoE+ L2 STACKABLE ACCESS SWITCH 30 NOS REQUIRED ............ 34

3.2B LAYER 2 FEATURES ............................................................................................... 35
3.2C LAYER 3 IP ROUTING FEATURES........................................................................... 36
3.2D SWITCH STACKING ............................................................................................... 36
3.2E POWER MANAGEMENT ....................................................................................... 37
3.2F PHYSICAL DIMENSIONS ........................................................................................ 38
3.2G QUALITY OF SERVICE (QoS) ................................................................................. 38
3.2H TRAFFIC MANAGEMENT & SMART OPERATIONS................................................ 39
3.2I OPERATIONAL SIMPLICITY .................................................................................... 40
3.2J NETWORK & DEVICE MANAGEMENT ................................................................... 41
3.2K SECURITY .............................................................................................................. 42
3.2L HIGH AVAILABILITY, REDUNDANCY& RESILIENCY ................................................ 43
3.2M REGULATORY COMPLIANCE / CERTIFICATIONS ................................................. 44
3.3
24 PORT PoE/PoE+ L2 STACKABLE ACCESS SWITCH 22 NOS REQUIRED ............. 45

3.3B LAYER 2 FEATURES ............................................................................................... 46
3.3C LAYER 3 IP ROUTING FEATURES........................................................................... 47
3.3D SWITCH STACKING ............................................................................................... 47
3.3E POWER MANAGEMENT ....................................................................................... 48
3.3F PHYSICAL DIMENSIONS ........................................................................................ 49
3.3G QUALITY OF SERVICE (QoS) ................................................................................. 49
3.3H TRAFFIC MANAGEMENT & SMART OPERATIONS................................................ 50
3.3I OPERATIONAL SIMPLICITY .................................................................................... 50
3.3J NETWORK & DEVICE MANAGEMENT ................................................................... 52
3.3K SECURITY .............................................................................................................. 53
3.3L HIGH AVAILABILITY, REDUNDANCY, & RESILIENCY .............................................. 54
3.3M REGULATORY COMPLIANCE / CERTIFICATIONS ................................................. 55
Technical Bid
Version 1.0
Page 3 of 55
CHAPTER 1
1.0
TECHNICAL BID REQUIREMENTS
The technical requirements outlined here in Part 2 are designed to raise the bar on the
functional capabilities needed to meet the Institutes present and future demands on
connecting wireless users to network applications anywhere, anytime, and on any device.
The Bidder has to answer all questions truthfully and accurately in the Technical Bid. All
requirements are MANDATORY and there are no options whatsoever. Any deviations
should be clearly documented and explained in the Technical Bid. Failure to provide truthful,
accurate and factual answers can lead to disqualification of the concerned Bidder. The
Bidder cannot ask a third a party to prepare the same on his behalf.
The Technical Bid shall contain all the relevant information which forms part of the technical
specifications. The information provided in the Technical Bid will be used for
understanding, assessing, and evaluating the technical superiority, quality, functionality,
fit, relevance, longevity, maintainability, scalability, and cost effectiveness of the solution
being proposed by the Bidder. The technical score for the Bidder will depend on the
information provided herein. This information should include items such as:
1. Provide an overview of the WLAN System and switching architecture and elements,
highlighting key features, advantages, USPs, investment protection characteristics, Total
Cost of Ownership (TCO), etc.
2. A Comprehensive Project Plan detailing project implementation phases, resources to be
deployed, timelines, assumptions, etc. to deliver the WLAN and switching solution
within budget and time. A significant concern is how the WLAN will be planned and
designed, incorporating both coverage and capacity needs and also future expectations.
After the site survey, the questions below will become crucial and the Bidder will be
expected to provide detailed answers to them:
2.1. To what extent will site surveys be required again when a floor plan or office layout
changes?
2.2. Does the WLAN System allow for the integration of floor plans (e.g. DXF / DWG /
JPEG / PNG) to spatially determine the number and placement of APs)?
2.3. How do the planning process and tools determine the number and placement of
APs to deploy? Describe how bandwidth and power requirements are incorporated
into this design. Please highlight where processes are automated.
2.4. Describe how what-if scenario planning is handled. Describe the ability to handle
network designs requiring more or less bandwidth capacity, various radio
technologies, and differences in office layout or other potential RF obstructions.
2.5. How does the planning process and tools determine the various APs RF channel
assignments, power levels, and association rates? Please highlight where processes
are automated.
2.6. How does the WLAN System help plan for redundancy?
2.7. The Institute Campus is a large and complex facility with many physical and natural
obstacles. In future we would like to run voice over Wi-Fi (soft phones). How will the
WLAN System ensure seamless RF coverage in such an environment? Can the
Technical Bid
Version 1.0
Page 4 of 55
System validate the RF?

2.8. Please describe how the system plan becomes incorporated (configured and
deployed) into the actual equipment. Please highlight where processes are
automated.
3. Complete technical specifications of all components such as Controller, AP,
Management Software, Ethernet POE/POE+ switches, etc. and whether compliant or not
as given in the tabular format below.
4. Details of very clearly defined milestones to be given for the entire Project.
5. Details about appropriate system, design, coverage diagrams, power budgets, and user
documentation to be provided.
6. Complete details related to manpower that will be deployed (number, ranks,
experience, reporting structure, qualification, etc.)
7. Explicit statements about any quality additive enhancements.
8. Any computing and/or networking equipment that will be stationed at IIMA for
delivering the needed services.
9. Transition, migration, and any parallel runs that are proposed.
10. Testing Plans and Test scenarios to be deployed.
11. A post-implementation plan to rectify any Wi-Fi/switching issues.
12. Any other relevant and pertinent information deemed fit by the Bidder.
In summary IIMA is looking for the following value proposition:
Best-in-Class Coverage, Capacity and Reliability resulting from superior antenna
technology incorporating advanced beam forming capabilities.
Unmatched user experience (UX) due to automated adaptation to client devices and
their orientation.
Highly Scalable Solution with respect to Controller capacity. The WLAN System
should be capable of scaling up to and controlling at least 6,000 APs.
Lowest TCO Guaranteed less number of APs, less cabling, lesser switch ports, lower
power consumption, simplest management & zero hidden costs.
A Carrier-Grade Solution.
All the above information should be organized in a logically structured form and submitted
as Technical Bid with an index. The Bidder is free to add any information that can help in
assessing technical quality, superiority, relevance, etc. of the solutions proposed and which
touches upon the parameters/attributes for technical assessment given in Chapter 6 in
Part-1 of Pre-qualification document.
The following optics components are required in total for all the new switches being
proposed in this Technical Bid document:
4 x 10G SM SFP+ LC connectors
76 x 1G MM SFP LC connectors
10 x 1G Copper SFP (CAT6) connectors
Annexure C shows the proposed POE/POE+ and Aggregation switches layout and the
existing and proposed new cabling layout at the New Campus.
Technical Bid
Version 1.0
Page 5 of 55
CHAPTER 2
Please note that in all the tables given below there are two types of questions given. The
first type is where you have to give either a Yes or No answer in the 3 rd column. The second
type of question requires that you provide a Descriptive / Explanatory Answer and here the
3rd column is marked as DEA. These points should be answered in a descriptive / explanatory
manner and you may provide them on separate sheets of paper with the correct numbering
scheme and headings given below OR if the answer is short you may provide it in the
REMARKS column. Please also note it will not be acceptable to simply provide a hyperlink of
the explanation.
2.0
WLAN TECHNICAL SPECIFICATIONS
SR
NO
SPECIFICATION / FEATURE
COMPLY
YES or NO
REMARKS
2.1 WLAN SYSTEM & CONTROLLER

A1
A2
A3
A4
A5
A6
A7
A8
A9
A10
A11
A. WLAN SYSTEM ARCHITECTURE

The WLAN System is based on the IEEE 802.11ac Wave 2
standard and is backwards compatible with IEEE 802.11
a/b/g/n and ac Wave 1 standards.
The WLAN System configuration is scalable with field
upgradeable licenses to add more APs in a granular fashion.
What is the maximum number of APs supported by each
WLAN Controller without any degradation in performance?
The WLAN Controller provides air-time fairness between
clients of different speeds. Slower clients are not starved by
the faster clients and faster clients are not adversely affected
by the slower clients.
Explain the protocols / methodology used to achieve airtime
fairness.
The WLAN System / Access Points support automatic channel
selection for interference avoidance.
The WLAN System supports both encrypted (secure) and
unencrypted configuration. Please specify which protocols are
supported.
If certain channels are known to be bad / unusable, is
blacklisting of these certain channels / channel ranges
supported?
The WLAN System is certified by the Wi-Fi Alliance.
The WLAN System supports Hotspot 2.0 (Wi-Fi Alliance
Passpoint).
The proposed WLAN Architecture supports a distributed data
forwarding / local breakout architecture in which only control
and voice traffic is tunnelled to the centralized WLAN
Technical Bid
Version 1.0
DEA
DEA
DEA
DEA
Page 6 of 55
SR
NO
A12
A13
A14
A15
A16
A17
A18
A19
A20
A21
COMPLY
YES or NO
REMARKS
Controller while all client data traffic is forwarded directly

towards destination via the clients default gateway.
There should be no loss of functionality, or caveats, or loss of DEA
features/capacity/performance that is exhibited by the
solution in the distributed forwarding mode. If otherwise,
please explain.
For each WLAN (SSID) segment, there should be an option to
tunnel traffic to the Controller either in an encrypted or
unencrypted format.
Network traffic can be restricted, permitted or prioritized on
the following parameters:
A12.1 User
A12.2 Group of Users
A12.3 SSID
A12.4 Application
A12.5 Source / Destination IP
A12.6 Protocol
A12.7 and COS
Additionally
such
traffic
restriction,
permissions,
prioritizations, is supported by groups / users / roles using MS
Active Directory / LDAP / RADIUS implementations.
The WLAN System architecture and design provides for
resiliency and redundancy wherein there is no single point of
failure.
The WLAN System solution is a scalable 2 tier integrated
architecture, with centralized management, is highly secure
and auditable, and user friendly.
Please describe any aspects of the architecture that help the DEA
network scale on the following attributes:
Throughput
User and System Control
Management
Increasing Total Traffic
The WLAN System supports centralized configuration,
provisioning, change management and reporting features
using a menu driven GUI.
The WLAN System supports IPv4 and IPv6 from Day 1. The
OEM/Bidder must submit supporting documents for proof.
The centralized WLAN Controller architecture is capable of
supporting intelligent/autonomous APs with encryption /
decryption of 802.11 packets being performed at the Access
Point itself, to enable a mesh deployment in future if
required.
The WLAN System supports Band Steering wherein 5 GHz
Technical Bid
Version 1.0
Page 7 of 55
SR
NO
A22
A23
A24
A25
A26
A27
A28
A29
COMPLY
YES or NO
REMARKS
clients are encouraged to connect over 5GHz radio to provide

better load balancing among 2.4GHz and 5GHz radios.
The WLAN System supports multicast traffic. If so how does DEA
the WLAN System determine the data rate when serving
many clients?
The WLAN System supports the 802.11d standard.
The WLAN System supports the 802.11h standard.
The WLAN System supports compulsory automatic channel
selection to counter channel interference conditions.
The WLAN System supports automatic transmit power DEA
adjustments in order to reduce/avoid interference between
the deployed access points. The Bidder to describe any other
mechanisms inherent in their solution that helps in mitigating
interference conditions.
The WLAN System supports polarization diversity (adapts
signals to device orientation) to improve the transmission and
reception of Wi-Fi signals for low power mobile devices in
order to enhance overall performance and reliability. The
Bidders claim will have to be demonstrated during technical
evaluation/POC.
The WLAN System supports advanced QoS traffic inspection
and handling, application-aware heuristics, and prioritizing of
sensitive traffic.
The WLAN System supports plug-and-play multimedia
capability and is able to optimize voice and video reliability
and consistency.
B. WLAN SYSTEM QOS / VLAN FEATURES

A significant concern is the preservation of existing network engineering in the form of VLANs
and QOS parameters already deployed on the wired network. The questions below are focused
on understanding the VLAN and QOS implementation of the proposed system.
B1
The WLAN System supports advanced multicast features and
WMM support to provide best performance on video
applications.
B2
The WLAN System supports Voice Call Admission Control.
B3
The WLAN Controller is capable of prioritizing traffic for DEA
different applications based on QoS parameters. Please
describe the mechanism that is deployed and supported to
achieve this.
B4
The WLAN Controller provides for self-healing on detection of
RF interference or loss of RF coverage.
B5
The WLAN Controller provides for dynamic client load
balancing to automatically distribute clients to the least
Technical Bid
Version 1.0
Page 8 of 55
SR
NO
B6
B7
B8
B9
B10
COMPLY
YES or NO
REMARKS
loaded Channel or AP.

The WLAN System supports multiple VLANs over the air.
The WLAN System supports 802.1X dynamic VLAN policies.
The WLAN System allows IT personnel to limit multicast traffic
in the VLAN.
What is the maximum number of VLANs that can be DEA
supported on a single WLAN Controller?
The WLAN Controller supports DSCP (Diffserve).
C. WLAN SYSTEM ROAMING FEATURES

Wireless is all about enabling mobility and roaming. Therefore it is critical that roaming does
not complicate deployment or troubleshooting, compromise security or create unnecessary
user hassles with multiple client logins and authentications. The following questions are
designed to gauge how the proposed system supports roaming.
C1
The WLAN System supports roaming between APs or between
WLAN Controllers when the APs or Controllers reside on
different IP subnets (across L3 domains).
C2
The users can maintain the same IP address as they roam.
C3
A roaming user does not need to re-authenticate or re-login.
C4
The users subnet attributes (VLAN, ACLs, route policies)
follow the user as he/she roams on the IIMA Campus.
C5
Describe mechanisms that aid in the smooth roaming of DEA
various types of clients including sticky clients across the
campus / across APs / VLANs / subnets
D. VOICE over WLAN FEATURES
In future, there will be a need to support both voice and data services over the same WLAN
infrastructure. The following questions are designed to discover how the WLAN system
supports voice.
D1
Describe the systems design approach for optimising the DEA
network for handling VoIP applications.
D2
Describe the suitability of this architecture for supporting DEA
Voice over WLAN and how the architecture may help voice
service.
D3
The WLAN System supports 802.11e and related standards to
preserve voice prioritization. If so does it support:
WMM?
WMM Powersave (U-APSD)?
D4
Please specify the brands and models of the soft phones that DEA
will be supported on the WLAN system.
D5
The WLAN System supports seamless roaming between DEA
networks (e.g. FMC, Wi-Fi, and cellular roaming). Please
Technical Bid
Version 1.0
Page 9 of 55
SR
NO
D6
E1
E2
E3
E4
E5
E6
E7
E8
E9
E10
E11
E12
COMPLY
YES or NO
REMARKS
describe briefly how this is achieved.

The WLAN System supports dual band handsets.
E. WLAN SYSTEM MANAGEMENT FEATURES
The WLAN System allows Administrators to create device
groups, allocate device groups to users and display such
information on the IIMA topology map in real time.
The topology map of the buildings can be imported to the
WLAN environment from popular formats like DWG, DXF,
Visio, etc.
The WLAN System supports VLAN pooling that will ensure
dynamic assignment of VLANs to the same SSID. The VLAN
pool should be associated with multiple SSIDs.
The WLAN System supports policy based forwarding. The
policy-based forwarding mode allows users to classify data
traffic based on ACL and choose local or centralized
forwarding. Policy-based forwarding can be applied based on
SSID or user-profile. That means a forwarding policy can be
applied on a SSID or a specific user or a group of users.
The WLAN System supports AP grouping to enable an
Administrator to easily apply AP based or radio based
configurations to all the APs that are in the same group.
The WLAN System supports staged firmware upgrades to
enable an Administrator to selectively upgrade APs or a group
of APs. This feature would help minimize the impact of
upgrading large deployments of APs to a new firmware
version.
The WLAN System allows network managers to set, change,
and synchronize passwords and security features for CLI
access, web access, SNMP access, and RADIUS properties and
access policies.
The WLAN System supports a seamless roaming facility across
the entire managed campus / LAN connected Access Points.
The WLAN System supports Controller discovery across
Layer-3 network through DHCP or DNS option.
The WLAN System supports the deployment of software
upgrades to one or more Access Points, or a group of Access
Points from a centralized console.
The WLAN System provides comprehensive management
reports on wireless usage, downtime, performance, etc.
The WLAN System supports a global search feature to easily
find information on various parameters such as stations (e.g.
IP, MAC address, type) and Access Points.
Technical Bid
Version 1.0
Page 10 of 55
SR
NO
E13
E14
E15
E16
E17
E18
E19
E20
E21
E22
E23
E24
COMPLY
YES or NO
REMARKS
The WLAN System supports native Bonjour protocol for mDNS

in Apple devices in the most efficient manner.
The Bidder to provide technical details on how the Bonjour DEA
protocol is handled on the WLAN.
The WLAN System supports monitoring of network
performance and client stations.
The WLAN Controller supports BYOD features such as
Dynamic Pre-Shared key (PSK), simple on-boarding or Zero IT
activation, Role Based Access, complete device visibility,
control of device types, and ACLs based on device types, user
types, user roles, user groups etc.
The WLAN System has full-fledged Radius functionality and
certificate
management
capabilities,
without
any
dependencies on external PKI infrastructures.
The WLAN System is able to on-board all types of devices
(Mac / iOS / Android / Linux / Ubuntu / Blackberry /Chrome
Books /etc.) including the upcoming IOT devices and wired
devices (desktops/laptops). This feature might need to be
demonstrated during the POC.
The WLAN System is able to discriminate between Domain
devices and non-Domain devices and assign differential
policies accordingly.
The Bidder to specify if any of the above mentioned BYOD DEA
features requires additional purchase (licensing) of any other
hardware and/or software and its licensing mechanism.
Bidder to include in his bid the BYOD solution for supporting
10,000 users (staff/students and Guests combined) and
20,000 devices.
When a wireless mesh is enabled, the WLAN Controller is able
to show the mesh topology on IIMA floor plans in real time
and also facilitate troubleshooting by showing MESH link
strengths and MESH link throughputs.
The Bidder should specify, supply and implement ALL features DEA
(full stack) that are available with the WLAN Controller
proposed. No other additional software requirements will be
accepted or allowed.
The WLAN Controller supports SNMP for remote monitoring
and management. All components should be supplied with
MIBs for each such device which can be imported into a
central monitoring system which IIMA may buy un future. The
Bidder to specify all versions of SNMP supported.
In order to have good visibility on the utilization of an Access
Point, the WLAN Controller provides the following statistics
for each Access Point:
Technical Bid
Version 1.0
Page 11 of 55
SR
NO
E25
E26
E27
E28
E29
E30
E31
E32
E33
E34
E35
COMPLY
YES or NO
REMARKS
List of all the SSIDs deployed on each of the radio of

the Access Point
Average client RSSI
Data sent/received
Statistics on retransmitted packets
In order to troubleshoot issues with a specific device, the
WLAN Controller shows the following statistics:
AP to which the client is associated
Signal strength of the client as measured by the AP
All alarm/event messages related to that client
including association and de-association
Amount of data received/transmitted by the client
The WLAN system provides automated configuration
verification.
Are there any configuration changes needed on aggregation DEA
or edge switches or routers? Please provide details if yes.
The APs automatically configure themselves for optimal
channel and transmit power when they become operational.
The WLAN System allows an IT Administrator to force a user
off the network.
The WLAN System allows an IT Administrator to setup a user
session timeout.
The WLAN System is capable of monitoring a users
bandwidth consumption, system performance, roaming path,
and time on the system and also provide historical reports of
all such parameters specified herewith.
The WLAN System is capable of providing a breakdown of
bandwidth usage by user or any other groupings.
The WLAN System ties to AAA accounting.
The WLAN System is capable of printing randomly generated
username/passwords with predefined time or data limit for
Internet access to guests.
The WLAN System is capable of enabling network-wide
change management.
F. WLAN SYSTEM SECURITY FEATURES

A significant concern is the breadth of security measures supported by the proposed WLAN
System. The following questions are designed to determine standards adherence, range of
security protocols supported, and future-proofing the WLAN System. Another security goal is
use the system as a mechanism for detecting and locating rogue points and users and barring
them from the network.
F1
The WLAN Controller and AP communications are over an
encrypted tunnel to ensure end-to-end security of user
Technical Bid
Version 1.0
Page 12 of 55
SR
NO
F2
F3
F4
F5
F6
F7
F8
F9
F10
F11
F12
F13
F14
F15
F16
F17
F18
F19
COMPLY
YES or NO
REMARKS
information.
The WLAN System supports detailed audit logging of
Administrator activities with date/time stamp and this
information is available from a central console.
The WLAN System supports audit log export to an external
server using syslog functionality.
The WLAN System supports Intrusion Detection and
Prevention (WIDS/WIPS) for all types of malicious and rogue
Access Points. Please specify where this Intrusion Detection is
done at the AP level OR at the Controller level.
The WLAN System provides for remediation against rogue APs DEA
and denial of service attacks. Please specify where this
remediation is done at the AP level OR at the Controller
level.
The WIDS / WIPS features have integrated configuration and
management features.
The intrusion alarms automatically roll up in the WLAN
System management console.
The WLAN System management console provides a single
consolidated view of intrusion alarms and WLAN status.
The WLAN System performs rogue AP detection DEA
automatically. Please explain in detail how this is done.
What countermeasures are employed against rogue APs that DEA
are found?
The WLAN Controller supports the functionality to verify
whether a clients IP address can be dynamically allocated.
The WLAN Controller automatically blocks manually assigned
IP addresses in both a distributed and centralized
architecture.
The WLAN System provides mandatory L2/L3/L4 Access
Control.
The WLAN System supports Access Control based on
device-types.
The WLAN System can ban/bar specific devices based on their
MAC address, IP, or other identifiable parameters.
The WLAN System supports Application Visibility and Control
from the managed Access Points itself.
The WLAN System supports the whitelisting / blacklisting of
certain popular applications.
The WLAN Controller supports L2 Client isolation as a
configurable feature so that users cannot access each others
devices irrespective of whether they are connected to the
same SSID/same radio/same AP or different Access Points.
The WLAN System supports 802.1X.
Technical Bid
Version 1.0
Page 13 of 55
SR
NO
F20
F21
F22
F23
F24
F25
F26
F27
F28
F29
COMPLY
YES or NO
REMARKS
The WLAN System has full-fledged Radius functionality and

certificate
management
capabilities,
without
any
dependencies on external PKI infrastructures.
The WLAN Controller supports the following standards for
Security, Authentication, and Encryption:
WIRELESS SECURITY: WEP, WPA-TKIP, WPA2-AES,
802.11i
AUTHENTICATION : 802.1X, local database
RFC 1321 MD5 Message-digest algorithm
RFC 2246 TLS protocol version 1.0
RFC 3280 Internet X.509 PKI certificate and CRL profile
External AAA servers: Active Directory, RADIUS, LDAP,
TACACS (AD should be supported out of the box. There
should be no need additionally implement
LDAP/RADIUS server /app/service on the Windows AD
server.)
ENCRYPTION: WEP 64 and 128 bit, TKIP, SSL, TLS, RC4
128 bit.
The WLAN System is able to create a local database for a
minimum of 10,000 users / clients for the purpose of
role-based access.
Please specify the maximum number of concurrent users DEA
supported on the local database created by the WLAN
System.
The WLAN System supports seamless direct integration with
Microsoft Active Directory without any use of additional
hardware or software to be installed on the Windows AD
server.
Does the WLAN System require any additional hardware or DEA
software for integration with Active Directory? If yes, please
state so and provide the necessary cost in the Commercial
Bid.
The WLAN System provides a syslog for system monitoring.
The WLAN Controller provides a captive portal to
authenticate users that are not part of the organization. The
solution should be able to provide a web-based application
that allows non-technical staff to create short-lived guest
accounts and passwords that expire automatically.
The Secure Portal is able to provide secure time-bound or
data based limits access for Guests / Visitors/ Contract Staff /
Temporary Staff.
The WLAN System supports Role Based Access features such
as WLAN access, VLAN assignment, rate limiting, device-types
permitted for use, guest access administration, Controller
Technical Bid
Version 1.0
Page 14 of 55
SR
NO
F30
F31
F32
F33
F34
F35
F36
F37
F38
F39
F40
F41
F42
F43
F44
F45
F46
F47
administration, etc., based on roles created.
The WLAN System permits access passwords to be sent
directly through SMS to the guests OR allow guests access to
the captive portal for credentials submission.
The WLAN Controller supports a Guest Access feature, i.e. a
secure, time-bound, role specific Internet access to visitors
/guests / contractors etc. through a randomly generated
access key.
The WLAN Controller supports communication of the Access
Key to a guest via either a printout or SMS message.
The WLAN System supports self-provisioning by the visitor /
guest / contractor / temporary staff with or without needing
approval from the visited authority (sponsorship).
The WLAN System provides and ensures secure Guest
on-boarding and access through WPA2-Enterprise
mechanism, so that the Guests traffic (transactions) over the
air are encrypted.
What methods of authentication are supported?
The WLAN System supports web-based AAA.
Which EAP protocols are supported?
The WLAN Controller acts as an AAA server for its wireless
clients.
Where does the system store user and network data?
Is there any data stored locally on the APs?
The WLAN System supports direct access to the APs.
The WLAN System supports per-user-in-bound and out-bound
extended ACLs? Per-port ACLs? Per-VLAN ACLs.
The WLAN System includes a utility for a non-technical
designee (e.g. receptionist) to supply temporary credentials to
guests. If so, does the provisioning of the credentials affect
the Controllers configuration?
The WLAN System enables scalability through distributed
cryptography.
Does the WLAN System require centralized encryption of
wireless data at the Controller?
Is any sensitive data stored locally on the APs? If so, what type
of data is stored there?
The WLAN System is capable of connecting and / or
disconnecting a user session.
COMPLY
YES or NO
REMARKS
DEA
DEA
DEA
DEA
DEA
DEA
G. WLAN SYSTEM REDUNDANCY, RELIABILITY & RESILIENCE FEATURES

For IIMA, Wi-Fi is becoming the primary means of network access for students, faculty, and
administration staff. Therefore it is critical to understand the resilience, reliability, and
Technical Bid
Version 1.0
Page 15 of 55
SR
NO
redundancy features of the proposed hardware.
G1
The WLAN Controller hardware has a minimum of two
numbers of 1 GigE ports and a console port connection via
either RS-232 or RJ-45 or mini USB.
G2
The WLAN Controller has hot swappable redundant power
supplies.
G3
The WLAN Controller can be offered as a hardware appliance
OR as a virtualized appliance; hardware to be a 19 Rack
mountable appliance. Hardware configuration needed for the
virtualized appliance and any virtualization software licenses
required to be specified by the Bidder.
G4
The WLAN Controller supports the following redundancy
topologies: Active-Active, Active-Standby and N+1
redundancy.
G5
The WLAN Controller supports Spectrum Analysis feature to
detect interference from different Wi-Fi and non-Wi-Fi
sources.
G6
The WLAN System supports survivability features. In the
event the WLAN Controller fails, the managed Access Points
should continue to provide service to connected clients and
new clients for a configurable period of time.
G7
The WLAN System supports Controller discovery on the same
L2 domain without requiring any configuration on the Access
Point.
G8
The WLAN System supports roaming between Access Points
deployed on the same subnet and different subnets as well.
G9
How fast is the failover in the case of a network outage?
Please specify in milliseconds.
G10
What happens to data clients in the event of a failover?
G11
In the event of a failover, what is the delay period before the
data service is restored?
G12
What actions must the user take to re-obtain data service
(re-associate, re-authenticate, re-login, etc.)?
COMPLY
YES or NO
REMARKS
DEA
DEA
DEA
DEA
DEA
H. WLAN SYSTEM SCALABILITY FEATURES

A primary concern is the ability to scale and grow the wireless system easily over time, both in
terms of the number of total users, number of devices, and in overall capacity. The following
questions are aimed at eliciting details about what tools are available to scale the proposed
system.
H1
A single WLAN Controller is capable of managing a minimum
of 1000 APs and is scalable up to at least 3000 APs (campus /
LAN connected APs).
H2
The WLAN Controller supports at least 20,000 MAC address
Technical Bid
Version 1.0
Page 16 of 55
SR
NO
H3
H4
H5
H6
H7
H8
H9
H10
H11
H12
H13
H14
H15
H16
H17
H18
J1
J2
J3
J4
forwarding database entries.
The WLAN Controller supports a minimum of 512 WLANs.
Please specify the maximum number of WLANs supported.
The WLAN Controller supports a minimum of 20,000
concurrent client devices.
Please specify the maximum number of concurrent devices
supported.
What is the maximum number of BSSIDs supported by each
AP?
The WLAN Controller supports SSH/Telnet based access for
management purposes.
The WLAN Controller supports NTP.
The WLAN System supports and aids the IT personnel to
design for capacity as well as coverage.
The WLAN System allows an IT Administrator to set minimum
or average bandwidth requirements per user.
The WLAN System supports setup and enforcement of
minimum association rates to improve system performance.
Please provide details for the same.
The WLAN System supports per-user QOS capabilities and
prioritization via per-user queuing in the APs.
The WLAN System enables IT personnel to control an APs
transmit power level via software.
If so, is this process automated, or does each AP need to be
adjusted separately?
What is the maximum number of WLAN Controllers that the
management application can accommodate?
What is the maximum number of APs that the management
application can accommodate?
The management application is able to monitor the WLAN
System campus wide.
COMPLY
YES or NO
REMARKS
DEA
DEA
DEA
DEA
DEA
DEA
J. NETWORK MANAGEMENT SYSTEM (NMS)

The WLAN NMS provides flexible reporting tools to create,
customize, and view reports in various formats such as PDF,
XLS, and CSV.
The WLAN NMS provides support for tools such as graphical
maps or CAD drawings for floor plans showing wireless
coverage, heat maps, devices and location in real time.
The WLAN NMS supports user friendly troubleshooting tools
to resolve connectivity and performance issues.
The WLAN NMS presents a customizable dashboard with
information on the status of the WLAN network.
Technical Bid
Version 1.0
Page 17 of 55
SR
NO
J5
J6
J7
J8
J9
J10
J11
J12
J13
J14
J15
J16
J17
J18
J19
J20
J21
J22
J23
The WLAN NMS raises critical alarms by sending an email
and/or SMS. The email client on the Controller should
preferably support SMTP outbound authentication and TLS
encryption.
The WLAN NMS management tool is capable of scheduling
reports for automatic generation. If so how are the reports
generated and delivered?
What type of configuration and monitoring reports can be
generated?
The WLAN NMS allows IT personnel to track a users AP
associations, both current and historical.
The WLAN NMS supports export of management graphs and
statistical files to other industry standard software like Excel,
SPSS, etc. for further analysis.
Describe the reporting capabilities of the proposed system.
The WLAN NMS supports the ability to drill down to real-time
and historical data.
The WLAN NMS sends alerts when rogues are detected.
Please specify the types of management logs and traps for
rogue activity that can be shown.
The Access Points are able to scan for rogue Access Points and
the Controller is able to locate them on a floor map.
The WLAN NMS sends a notification to the administrator
when a rogue Access Point has been detected and its location.
The management application supports centralized
management of APs and Controllers. If so does it require
accessing each Controller separately?
The WLAN NMS provides tools for RF coverage, location
tracking, network performance, etc.
The WLAN NMS provides location details of users, wireless
devices, etc. for trouble-shooting, planning, and asset
management.
The WLAN NMS provides details of the last known location of
each device and help in finding any lost or stolen devices.
The WLAN NMS provides detailed performance statistics
related to bandwidth, coverage, average data rate, etc. on a
per AP basis.
The WLAN NMS provides a current list of clients connected to
each AP and for what duration.
The WLAN NMS is able to monitor third party edge switches
to which the wireless devices are connected.
The WLAN NMS provides for administrative and access
controls for different types of users on the WLAN.
Technical Bid
Version 1.0
COMPLY
YES or NO
REMARKS
DEA
DEA
DEA
DEA
DEA
Page 18 of 55
SR
NO
22.1
22.2
22.3
22.4
22.5
22.6
22.7
22.8
22.9
22.10
22.11
22.12
22.13
22.14
22.15
22.16
22.17
COMPLY
YES or NO
REMARKS
2.2 IN-ROOM WIRELESS ACCESS POINT

The in-room AP mandatorily complies with the IEEE 802.11ac
Wave 1 standard at a minimum and is backwards compatible
to IEEE 802.11 a/b/g/n standards.
The in-room AP has one number of POE-IN (802.3af) Port of
10/100/1000 Mbps capacity and a minimum of 3 numbers of
User ports of (10/100/1000 Mbps), one of which should also
support POE-OUT.
The in-room AP supports Dual Radios of 2.4 GHz & 5 GHz for
concurrent users.
The in-room AP supports a minimum of 2x2:2 MIMO on both
the radios/bands. Please specify the maximum supported.
The in-room AP supports explicit Transmit Beam Forming that
results in better focused signals to the client device and better
performance to the end-user.
The in-room AP supports Wi-Fi Location Based Services and
also has an interface for BLE sensors/readers and/or IOT
devices.
The in-room AP supports a minimum of 2 spatial streams.
The in-room AP aggregate data rate capability is a minimum
of 1267 Mbps (400 Mbps on 2.5 GHz and 867 Mbps on 5Ghz).
The in-room AP supports at least 25 concurrent users/clients.
Please specify the maximum number of concurrent
users/clients supported.
The in-room AP at a minimum supports 8 BSSIDs per radio for
a total of 16 BSSIDs per Access Point.
The in-room AP provides a minimum of 18dBm transmission
power for both the 2.4Ghz and 5 GHz bands. The Bidder to
specify values for both bands.
The in-room AP supports 802.1q VLAN tagging.
Please specify the Transmit Power control mechanism DEA
supported: whether changes in Tx power are in 1dB or 3dB or
any other decrements. Better granular control of the
coverage area would be highly desirable.
The Bidder should indicate the typical power consumption in DEA
Watts for each model of the proposed in-room AP.
The in-room AP supports operating temperature ranges of 0
to 45 C and humidity ranges of 10 to 90% non-condensing.
The in-room AP preferably has an integrated tamper-proof DEA
mechanism to prevent users from damaging the equipment or
tampering with the installation. The Bidder to provide details
regarding this aspect.
The in-room Access Point is WPC type approved. The
Technical Bid
Version 1.0
Page 19 of 55
SR
NO
22.18
22.19
22.20
22.21
22.22
22.23
22.24
COMPLY
YES or NO
REMARKS
Equipment Type Approved (ETA) should be enclosed by the

Bidder.
The in-room AP supports WPA with TKIP encryption.
The in-room AP supports WPA2 (802.11i) with AES encryption.
What POE power standard input (802.3?) is required to power DEA
up all the radios in the in-room AP and operate in full 2x2:2
MIMO-mode without any loss of features or capabilities?
The in-room AP supports IEEE standard 802.3af POE.
The in-room AP supports IEEE standard 802.3at POE.
The Bidder should indicate the typical power consumption in DEA
Watts for the proposed in-room AP.
The in-room AP supports 802.11i fast roaming.
2.3 INDOOR / CORRIDOR WIRELESS ACCESS POINT

23.1 The indoor/corridor AP mandatorily complies with IEEE
802.11ac Wave 2 standard at a minimum and is backwards
compatible to IEEE 802.11a/b/g/n standards.
23.2 The indoor AP has a minimum of two POE ports of
10/100/1000 Mbps capacity.
23.3 The Bidder should indicate if any additional redundant DEA
Ethernet port/ports are provided.
23.4 The indoor or corridor AP supports at a minimum 4x4:4
multiuser MIMO or better as there will be a higher user
density in these areas and more capacity is needed.
23.5 The indoor or corridor AP supports Wi-Fi Location Based
Services and also has an interface for BLE sensors/readers
and/or IOT devices.
23.6 The indoor AP supports Dual Radios of 2.4 GHz & 5 GHz for
concurrent users.
23.7 The indoor AP supports explicit Transmit Beam Forming that
23.8 The indoor AP at a minimum supports 4 spatial streams. The DEA
Bidder to specify maximum spatial streams supported.
23.9 The indoor AP has at least two 10/100/1000 Mbps ports for
redundant data.
23.10 The indoor Access Point has an aggregate data rate capability
of a minimum of 2533 Mbps (800 Mbps on 2.5 GHz and 1733
Mbps on 5Ghz).
23.11 The indoor AP is able to handle a minimum of 300 concurrent
users (minimum 6 Mbps per user/client).
23.12 The Bidder to specify the maximum number of concurrent DEA
users.
Technical Bid
Version 1.0
Page 20 of 55
SR
NO
23.13 The indoor AP provides a minimum of 20dBm transmission
power for 2.4 GHz and min 20dBm for 5 GHz.
23.14 The Bidder should indicate the maximum transmission power
per indoor AP.
23.15 The indoor AP has Receive Sensitivity of -91dBm or better
@MCS0; 11n HT20; 2.4 GHz & 5 GHz.
23.16 The indoor AP supports 8 BSSIDs at a minimum per radio for a
total of 16 BSSIDs per Access Point.
23.17 The Bidder to indicate the maximum number of BSSIDs
supported.
23.18 The indoor AP supports 802.1q VLAN tagging.
23.19 The indoor AP supports Omni-directional / directional
patterns, with a minimum 3 dBi gain.
23.20 The Bidder should specify and/or explain if their indoor AP
supports any technique/technology that in any way enhances
user experience for mobile clients considering that these
clients have much poorer radios and have no fixed orientation
during usage.
23.21 The indoor AP implements Wi-Fi alliance standards WMM,
WMM-PS, 802.11d, 802.11h and 802.11e.
23.22 The indoor AP supports Packet Capture facility on either of its
radios to aid in troubleshooting.
23.23 Please specify the Transmit Power control mechanism
coverage area would be highly preferred.
23.24 The Bidder should indicate the typical power consumption in
Watts for the proposed indoor AP.
23.25 The indoor AP is able to operate in the temperature ranges of
-20 to 60 C and humidity ranges of 10 to 90%
non-condensing.
23.26 The indoor AP supports Honeypot Control for 2.4 and 5 GHz
radios.
23.27 The indoor AP preferably has integrated tamper-proof
mechanisms to prevent users from damaging the equipment
or tampering with the installation. The Bidder to provide
details regarding this aspect.
23.28 The indoor AP has mandatory certifications such as
WEEE/RoHS, EN 60601-1-2, and Wi-Fi Alliance.
23.29 The indoor AP is WPC type approved. The ETA should be
enclosed by the Bidder.
23.30 What kind of antennas does the indoor AP support?
23.31 The indoor AP supports WPA with TKIP encryption.
23.32 The indoor AP supports WPA2 (802.11i) with AES encryption.
Technical Bid
Version 1.0
COMPLY
YES or NO
REMARKS
DEA
DEA
DEA
DEA
DEA
DEA
DEA
Page 21 of 55
SR
COMPLY
NO
YES or NO
23.33 What POE power standard input (802.3?) is required to power DEA
up all the radios in all models of the indoor AP and operate in
full 4x4:4 MIMO-mode without any loss of features or
capabilities?
23.34 The indoor AP has the option of being powered through
AC-DC power adaptor.
23.35 The indoor AP supports IEEE standard 802.3af POE.
23.36 The indoor AP supports IEEE standard 802.3at POE.
23.37 The indoor AP supports 802.11i fast roaming.
23.38 The indoor AP supports 256 QAM modulation.
24.1
24.2
24.3
24.4
24.5
24.6
24.7
24.8
24.9
24.10
24.11
24.12
24.13
REMARKS
2.4 OUTDOOR WIRELESS ACCESS POINT

The outdoor AP mandatorily complies with IEEE 802.11ac
Wave 2 standard at a minimum and is backwards compatible
to IEEE 802.11 a/b/g/n standards.
The outdoor AP has a minimum of two POE ports of
10/100/1000 Mbps capacity.
The outdoor AP has at least two 10/100/1000 Mbps ports for
redundant data.
What POE power standard input (802.3?) is required to power DEA
up all the radios in the outdoor AP and operate in full 4x4:4
MU-MIMO mode without any loss of features or capabilities?
The outdoor AP supports explicit Transmit Beam Forming that
The outdoor AP at a minimum supports 4 spatial streams. The DEA
Bidder to specify maximum spatial streams supported.
The outdoor AP has Dual Radios to support 2.4 GHz & 5GHz
concurrent users.
The outdoor AP supports at a minimum 4x4:4 multiuser
MIMO on both the radios/bands or better as there will be a
higher user density in these areas and more capacity is
needed.
The outdoor Access Point has an aggregate data rate
capability of a minimum of 2533 Mbps (800 Mbps on 2.5 GHz
and 1733 Mbps on 5Ghz).
The outdoor AP is able to handle a minimum of 200
concurrent users (6 Mbps per user).
The Bidder should indicate the maximum client handling DEA
capability of the outdoor AP.
The outdoor Access Point provides a minimum of 24dBm
transmission power on 2.4GHz and 5GHz.
The outdoor AP supports at a minimum 8 BSSIDs per radio for
Technical Bid
Version 1.0
Page 22 of 55
SR
NO
24.14
24.15
24.16
24.17
24.18
24.19
24.20
24.21
24.22
24.23
24.24
24.25
24.26
24.27
24.28
24.29
24.30
24.31
24.32
24.33
a total of 16 BSSIDs per AP.
The Bidder should indicate the maximum number of BSSIDs
supported.
The outdoor AP supports 802.1q VLAN tagging.
The outdoor AP supports an integrated sectoral/ directional
or external/integral omnidirectional antenna for both radio
bands.
Please specify the Transmit Power control mechanism
coverage area would be highly preferred.
The outdoor AP supports operating temperature ranges of
-20 to 60 C and Humidity ranges of 15 to 90%
non-condensing.
The WLAN Solution supports Honeypot control for 2.4 and 5
GHz radios.
The outdoor AP along with the antennas is IP67 certified for
outdoor deployment. Indoor Access Points inside 3rd party
enclosures/boxes would NOT be acceptable. Third-party
external antennas would also not be acceptable.
Please specify the dimensions of the outdoor AP (LxBxH) in
centimetres and the weight in kilograms including the
mounting bracket. Smaller form factor would be preferred.
The Bidder should indicate the typical power consumption in
Watts per outdoor AP model suggested.
The outdoor AP has mandatory certifications such as
WEEE/RoHs, EN 60601-1-2 Safety and Wi-Fi Alliance.
The outdoor AP is WPC type approved. The ETA should be
enclosed by the Bidder.
Does the outdoor AP support the same functionality and
features as the indoor AP? If not what are the limitations of
the outdoor AP?
The outdoor and in-door APs support mesh technology to link
to each other wirelessly.
What kind of antennas does the outdoor AP support?
What are the environmental specifications of the outdoor AP?
The outdoor AP supports WPA with TKIP encryption.
The outdoor AP supports WPA2 (802.11i) with AES
encryption.
The outdoor AP supports standard 802.3af POE.
The outdoor AP supports standard 802.3at POE.
Can a full 4x4:4 MIMO be powered via 802.3af? If not what
POE power input standard (802.3?) is required to power up all
Technical Bid
Version 1.0
COMPLY
YES or NO
REMARKS
DEA
DEA
DEA
DEA
DEA
DEA
DEA
DEA
Page 23 of 55
SR
NO
COMPLY
YES or NO
REMARKS
the radios in a full 4x4:4 MIMO without any loss of features

and capabilities?
24.34 The outdoor AP has the option of being powered through
AC-DC power adaptor.
24.35 The outdoor AP supports 802.11i fast roaming.
24.36 The outdoor AP supports 256 QAM modulation.
Technical Bid
Version 1.0
Page 24 of 55
CHAPTER 3
3.
SWITCH SPECIFICATIONS
SR
NO
COMPLY
YES or NO
REMARKS
3.1 24 PORT L3 AGGREGATION SWITCH 4 NOS REQUIRED
A.7
3.1A ARCHITECTURE / PERFORMANCE

The 24 Port Aggregation switch is a standalone 19'' rack
mountable with 1+1 Power Supply Unit (PSU).
The switch supports the following port configurations:
24 x 1/10G SFP/SFP+ ports with a provision to add 4 x 40G
QSFP+ ports in the future without having to replace the
switch.
The switch at a minimum supports the following optics:
100FX, 1000 SX, 1000 LX/LH, 10GE SR, 10GE LRM, 10GE LR,
10GE ER, 40G SR & LR. All optics installed should be from the
switching OEM only.
The switch supports unicast, multicast and broadcast IP traffic
The switch supports a minimum of 32MB Flash memory or
higher and a minimum of 256 MB SDRAM or higher. More
would be preferred.
The switch supports a minimum Non-Blocking Performance
Fabric >= 800 Gbps and Throughput >= 590 Mpps including
stacking bandwidth.
The switch supports a dynamic buffer size of at least 12.2 MB
A.8
The switch supports a packet throughput of 1.44 Bpps
A.9
A.10
The switch supports VLAN IDs >=4K, MAC >=96K, Routes

>=12K, ACL/QoS entries >= 4K, and 9216 Byte Max Packet Size
(Jumbo Frame)
The switch has a minimum latency of 550 ns.
A.11
The switch supports a fabric capacity of at least 2.56 Tbps.
A.12
The switch supports at least one 10/100/1000 Mbps

management port and one mini-USB serial console port for
management access.
The switch supports POST and embedded online/offline
diagnostics.
The switch supports IPv4 and IPv6 switching and routing in
hardware from day 1.
The switch supports OpenFlow v1.0 and v1.3 from day one
A.1
A.2
A.3
A.4
A.5
A.6
A.13
A.14
A.15
Technical Bid
Version 1.0
Page 25 of 55
SR
NO
A.16
B.1
B.2
B.3
B.4
B.5
B.6
COMPLY
YES or NO
REMARKS
for SDN compatibility.

The switch supports OpenFlow with true hybrid port mode.
3.1B STACKING
The switch and Operating System Software offer true
stacking, with all switches in a stack acting as a single logical
switch unit.
The switch supports a stack that provides a unified data
plane, unified configuration, and single IP address for switch
management.
The switch supports stacking with a minimum throughput of
40 Gbps or more. Stacking ports are separate from uplink
ports.
Specify the maximum aggregated stacking bandwidth.
DEA
Specify the maximum stacking distance.
DEA
The switch supports close loop stacking of a minimum of 8 DEA
switches. The Bidder to specify maximum number of switches
supported in a stack.
3.1C POWER MANAGEMENT
C.1
Specify power inlet (AC).
DEA
C.2
Specify input voltage/frequency ranges of switch.
DEA
C.3
Specify maximum rated power supply (AC).
DEA
C.4
Specify typical power consumption of switch.
DEA
C.5
Specify maximum power consumption of switch.
DEA
C.6
Specify airflow (front-to-back or side-to-back).
DEA
C.7
The switch supports reduced power consumption and

advanced energy management features like IEEE 802.3az.
The switch supports power resiliency with optional
external/internal redundant power supplies.
The switch supports N+1 Redundant Hot swappable Internal
Power supplies and preferably Hot-swappable fan tray.
The switch supports Hibernation Mode. This feature puts the
ports/switch to an off mode or ultra-low power mode during
periods of non-operation such as nights or weekends.
Hibernation Mode can be scheduled using Universal Port
and/or a compliant Operating System management software.
Please specify if any additional software layer is required to
achieve this and its component cost in the Commercial Bid.
C.8
C.9
C.10
Technical Bid
Version 1.0
Page 26 of 55
SR
NO
C.11
C.12
D.1
D.2
COMPLY
YES or NO
The switch supports IEEE 802.3az EEE (Energy Efficient

Ethernet) that enables ports to dynamically sense idle periods
between traffic bursts and quickly switch the interfaces into a
low power idle mode, reducing power consumption.
The switch supports Intelligent Energy policies that can be
used to control the power consumed by PoE powered
endpoints, desktops, etc.
3.1D PHYSICAL DIMENSIONS
Specify weight in kilograms of switch.
DEA
D.4
Specify weight of switch in kilograms with two power supplies DEA

and four fans.
Specify dimensions in (width x depth x height) in inches and DEA
millimetres and rack units.
Specify acoustics / operating noise in dB.
DEA
D.5
Specify MTBF in hours at 25 degrees operating temp.
DEA
D.6
Specify operating temperature in Centigrade.
DEA
D.7
Specify non-operating temperature in Centigrade.
DEA
D.8
Specify operating levels relative humidity.
DEA
D.3
E.1
F.1
REMARKS
3.1E LAYER 1 FEATURES

The switch supports the following Layer 1 features:
IEEE 802.3ad Link Aggregation
IEEE 802.3x Flow Control
IEEE 802.3 10BASE-T
IEEE 802.3u 100BASE-TX
IEEE 802.3z 1000BASE-SX/LX
IEEE 802.3ab 1000BASE-T
802.3 CSMA/CD Access Method and Physical Layer
Specifications
IEEE 802.3ae 10 Gigabit Ethernet
IEEE 802.3ba 40 Gigabit Ethernet
Jumbo Frame
3.1F LAYER 2 FEATURES
The switch supports the following Layer 2 features:
IEEE 802.1D MAC Bridging/STP
IEEE 802.1p Mapping to Priority Queue
IEEE 802.1p Marking and DSCP
Technical Bid
Version 1.0
Page 27 of 55
SR
NO
G.1
G.2
G.3
G.4
G.5
G.6
COMPLY
YES or NO
REMARKS
IEEE 802.1p Honoring QoS

IEEE 802.1Q VLAN Tagging
IEEE 802.1w Rapid Spanning Tree Protocol (RSTP)
IEEE 802.1s Multiple Spanning Tree Protocol (MSTP)
IEEE 802.1x Port Based Network Access Control
IEEE 802.1AB LLDP
IEEE 802.1AX Link Aggregation
IEEE 802.1p CoS Prioritization
IEEE 802.3az
PVST/RPVST/RPVST+
Port Loop Detection
STP Port Fast
STP Root Guard
802.1ad Q-in-Q
Uni-Directional Link Detection (UDLD)
Topology and VLAN Groups
3.1G LAYER 3 FEATURES

The switch supports basic IP unicast routing protocols (static,
RIPv1, RIPv2, and RIPng) from day one.
The switch supports inter-VLAN routing (IVR) from day one.
The switch supports from day one:
OSPF
BGP v4
Policy-Based Routing (PBR)
VRRPv2
VRRPv3
Protocol Independent Multicast (PIM) - PIM-SM,
PIM-DM, and PIM sparse-dense mode
Integrated VLAN Bridging
OSPFv2
OSPFv3
Auto RP
PIM-SM/SSM
PIM-DM
PIMv6
MSDP
Anycast-RP
using
PIM
via
addition
of
hardware/software/license resources as and when
required etc.
Technical Bid
Version 1.0
Page 28 of 55
SR
NO
COMPLY
YES or NO
REMARKS
Internet Group Management Protocol (IGMP) v1, v2, v3,

IGMP Proxy, snooping for IPv4: multicast listener discovery
(MLD) v1 and v2 snooping provides fast client joins and leaves
of multicast streams and limits bandwidth-intensive video
traffic to only the requestors.
H.1
H.2
I.1
I.2
I.3
I.4
3.1H SOFTWARE DEFINED NETWORKING (SDN)

The switch supports OpenFlow v1.0 and v1.3 from day one.
3.1I QUALITY OF SERVICE (QoS)
The switch supports the following QoS features:
Rate Limiting (per hardware queue)
BUM Rate Limiting
ACL-based Rate Limiting
Traffic Shaping
Symmetrical Flow Control
MAC Address Mapping to Priority Queues
ACL Mapping to ToS/DSCP
ACL Mapping and Marking ToS/DSCP
QoS Queue Management using Weighted Round
Robin (WRR), Strict Priority (SP), a combination of
WRR and SP, and Priority Flow Control
RFC 2475 An Architecture for Differentiated Services
RFC 3246 An Expedited Forwarding PHB
RFC 2597 Assured Forwarding PHB Group
RFC 2698 A Two-Rate, Three-Color Marker
The switch supports audio video stream reservation, 8
hardware queues per port, IEEE 802.1p, DSCP, Buffer queue
Management, WRR and traffic rate limiting with Configurable
bandwidth granularity of 64 Kbps.
The switch supports rate limiting based on source and
destination IP address, source and destination MAC address,
Layer 4 TCP/UDP information, or any combination of these
fields, using QoS ACLs (IP ACLs or MAC ACLs), class maps, and
policy maps. Strict priority queuing guarantees that the
highest-priority packets are serviced ahead of all other traffic.
The switch supports Automatic Quality of Service (Auto QoS)
/ EZ QoS / Equivalent for easy configuration of QoS features
for critical applications.
Technical Bid
Version 1.0
Page 29 of 55
SR
NO
J.1
J.2
K.1
COMPLY
YES or NO
REMARKS
3.1J SECURITY
The switch supports the following security features and
specifications:
Access Control Lists (ACLs) for IPv4 and IPv6
AES Encryption for SSHv2, SNMPv3
Port Mirroring (MAC-, VLAN- and ACL-based)
sFlow
Authentication, Authorization, and Accounting (AAA)
Username/password (Challenge and Response)
Bi-level Access Mode (Standard and EXEC Level)
Secure Copy (SCP)
Secure Shell (SSHv2)
RFC 2865 RADIUS
TACACS/TACACS+ Authorization
ACLs Port Security - MAC limit and locking
MAC Filter and Authentication
Port MAC Security
MAC Locking
802.1X Accounting
802.1X Change of Authorization
802.1X Dynamic VLAN assignment
802.1X Dynamic ACL
802.1X Multiple Host Authentication
IP Security
ARP validation
Broadcast storm, multicast storm, and unicast storm
control IPv6 RA Guard
PVLAN
Port Isolation
Control-Plane Protection
RSPAN and Bidirectional SPAN, Multiple destination
port through single or multiple SPAN sessions
The switch provides protection against attackers through the
following features:
Port security to secure the access to an access or
trunk port based on MAC address.
DHCP snooping
Dynamic ARP inspection (DAI)
IP source guard
The Unicast Reverse Path Forwarding (uRPF)
3.1K HIGH AVAILABILITY
The switch supports hot-swappable internal power supplies
Technical Bid
Version 1.0
Page 30 of 55
SR
NO
K.2
K.3
K.4
K.5
K.6
K.7
K.8
L.1
COMPLY
YES or NO
REMARKS
(1+1).
The switch supports hot-swappable fan trays (3+1).
The switch supports L3 VRRP protocol redundancy.
The switch supports automatic failover from master to DEA
standby stack controller. Please explain how this will work
and if there will be any loss of connectivity?
The switch supports dedicated ports on the back panel for
forwarding system health and control information across the
stack.
The switch supports protected link groups.
The switch supports hot insertion and removal of stacked
units.
The switch supports hot insertion and removal of optional 40
GbE modules.
3.1L MANAGEMENT, DEPLOYMENT & CONTROL
The switch supports the following Management, Deployment
and Control features:
Industry-standard Command Line Interface (CLI)
Configuration Logging
LLDP
LLDP-MED
Cisco Discovery Protocol (CDP)
IEEE 802.3 MAU MIB
RFC 951 BootP
RFC 1542 BootP Extensions
RFC 2131 DHCP (client and server)
RFC 854 Telnet Client and Server
RFC 2865 RADIUS
RFC 1493 Bridge MIB
RFC 1643 Ethernet-like Interface MIB
RFC 1213 MIB-II
RFC 1516 Repeater MIB
RFC 1354 Forwarding Table MIB
RFC 1757 RMON MIB
RFC 2572 SNMP Message Processing and Dispatching
RFC 1573 SNMP MIB II
RFC 1157 SNMPv1/v2
RFC 3411 SNMPv3 Framework
RFC 3412 SNMPv3 Processing
RFC 3414 SNMPv3 USM
RFC 5905 NTPv4
SSHv2 access
Technical Bid
Version 1.0
Page 31 of 55
SR
NO
COMPLY
YES or NO
REMARKS
L.2
L.3
L.4
L.5
L.6
L.7
L.8
L.9
L.10
M.1
HTTPS
SCP2
IPFIX or Netflow v9 or sFlow v5
Syslog
Embedded Event Manager (EEM) scripting to enable
automation
Generic online diagnostics and embedded based
interface that should have port bandwidth plotter
Embedded Smart Call for Proactive Services with
switch OEM directly.
The switch supports DHCP auto configuration of multiple
switches through a boot server that eases switch
deployment.
The switch supports Automatic QoS (Auto QoS) that simplifies
QoS configuration in voice over IP (VoIP) networks by issuing
interface and global switch commands to detect IP phones,
classify traffic, and help enable egress queue configuration.
The switch supports Auto negotiation on all ports that
automatically selects half- or full-duplex transmission mode
to optimize bandwidth.
The switch supports automatic media-dependent interface
crossover (MDIX) that automatically adjusts transmit and
receive pairs if an incorrect cable type (crossover or straight
through) is installed.
The switch supports multilevel security on console access to
prevent unauthorized users from altering the switch
configuration.
The switch provides a mechanism to check the health of
hardware components and verify proper operation of the
system data and control plane at run time and boot time.
The switch supports DHCP Server feature to enable a
convenient deployment option for the assignment of IP
addresses in networks that do not have a dedicated DHCP
server.
The switch is able to update images without bringing down
the stack or with minimal impact.
The switch stack re-convergence time is less than 200
milliseconds.
3.1M MULTICAST PROTOCOLS
The switch supports the following Multicast protocols
RFC 1112 IGMP
RFC 2236 IGMPv2
RFC 3376 IGMPv3
Technical Bid
Version 1.0
Page 32 of 55
SR
NO
N.1
N.2
N.3
N.4
N.5
N.6
N.7
COMPLY
YES or NO
REMARKS
IGMP Proxy
RFC 1112 Host Extensions
RFC 3973 PIM-DM
Rfc 2362 PIM-SM/SSM
RFC 3618 MSDP
RFC 4610 Anycast-RP using PIM
3.1N REGULATORY COMPLIANCE / CERTIFICATIONS

The switch is compliant with the following Electromagnetic
emissions standards:
FCC Class A (Part 15), EN 55022/CISPR-22 Class A, VCCI Class
A, ICES-003 Electromagnetic Emission, AS/NZS 55022, EN
61000-3-2 Power Line Harmonics, EN 61000-3-3 Voltage
Fluctuation and Flicker, and EN 61000-6-3 Emission Standard
The switch is compliant with the following Safety standards:
CAN/CSA-C22.2 NO 60950-1-07, UL 60950-1 Second Edition,
IEC 60950-1 Second Edition, EN 60950-1-2006 Safety of
Information Technology Equipment, EN 60825-1 Safety of
Laser
Products-Part
1,
Equipment
Classification,
Requirements and User Guide, EN 60825-2 Safety of Laser
Products Part 2, Safety of Optical Fibre Communication
Systems.
The switch complies with the following Immunity standards:
EN-61000-6-1 Generic Immunity and Susceptibility, EN 55024
Immunity Characteristics, EN 61000-4 -3 Radiated, Radio
Frequency Electromagnetic Field, EN 6100-4-4 Electrical Fast
Transient, EN 61000-4-5 Surge, EN 61000-4-6 Conducted
Disturbances induced by Radio Frequency Fields, EN
61000-4-8 Power Frequency Magnetic Field, EN 61000-4-11
Voltage Dips and Sags.
The switch complies with Environmental Regulatory
standards RoHS-compliant 96 (6 of 6) WEEE-compliant.
The switch complies with Vibration standards IEC 68-2-36 and
IEC 68-2-6.
The switch complies with Shock and drop standards IEC
68-2-27 and IEC 68-2-32.
The switch has the following certifications:
CE Markings 2004/108/EC and 2006/95/EC
UL 60950-1 Second Edition
Product Family must have IEC/ISO 15408 Common
Criteria EAL 3 or higher certified/applied for under
process
GR-63-CORE Level 3 compliant & ROHS Compliant.
International Certifications pertaining to India will have to be
Technical Bid
Version 1.0
Page 33 of 55
SR
NO
COMPLY
YES or NO
REMARKS
COMPLY
YES or NO
REMARKS
met in totality and other country specific certifications will

not be considered. All the Certifications should be EAL3 or
NDPP.
SR
NO
3.2 48 PORT PoE/PoE+ L2 STACKABLE ACCESS SWITCH 30 NOS REQUIRED
A.1
A.2
A.3
A.4
A.5
A.6
A.7
A.8
A.9
A.10
A.11
A.12
A.13
A.14
A.15
A.16

The switch supports a minimum switching capacity (data rate,
full duplex) of at least 256 Gbps.
Please specify Maximum switching capacity at data rate, full DEA
duplex.
The switch supports a minimum forwarding capacity (data
rate, full duplex) of 190 Mbps
The switch supports a minimum of 48 10/100/1000 Mbps
RJ45 ports from day one and these should not be shared with
uplink ports.
The switch supports a minimum of 2 x 1G SFP ports from day
1.
The switch is capable of supporting 2 x 10G SFP+ ports in
future with only a change of optics and license if required to
enable the ports.
The switch is capable of being upgraded to advanced IPv4/v6
L3 routing (RIP, OSPF) with a software license.
The switch supports the following optics from day one:
2 x 1000Base-SX multimode LC SFP connector.
The switch supports a minimum dual core CPU of 500MHz,
Flash memory of 128 MB, and DRAM of 512 MB. Please
specify if otherwise.
The switch supports a minimum of 16,000 MAC addresses.
The Bidder to specify maximum MAC addresses supported.
The switch supports a minimum of 4,095 VLANs. The Bidder
to specify the maximum no of VLANs supported.
The switch supports a maximum of 12,000 routes.
The switch supports a minimum of 16 Trunks.
The switch supports a maximum jumbo frame size of 9,216
bytes.
The switch supports at least 8 QoS priority queues.
The switch supports dedicated Ethernet management
Technical Bid
Version 1.0
Page 34 of 55
SR
NO
A.17
interfaces for simplified operation

The switch supports sFlow or NetFlow-Lite from day one.
A.18
The switch supports OpenFlow v1.0 and v1.3 from day 1.
A.19
B.1
COMPLY
YES or NO
REMARKS
3.2B LAYER 2 FEATURES

The switch supports the following Layer 2 features and
protocols:
802.1s Multiple Spanning Tree
802.1x Authentication
Auto MDI/MDIX
BPDU Guard Root Guard
Dual Mode VLANs
MAC based VLANs, Dynamic MAC-based VLAN
activation
Dynamic VLAN assignment
Dynamic Voice VLAN assignment
Fast Port Span
GARP VLAN Registration Protocol
IGMP Snooping (v1/v2/v3)
IGMP Proxy for Static Groups
IGMP Tracking
Inter-Packet Gap (IPG) adjustment
Link Fault Signalling (LFS)
MAC Address Locking; MAC Port Security
MAC-Layer Filtering
MAC Learning Disable
MLD Snooping (v1/v2)
Multi-device Authentication
Per-VLAN Spanning Tree (PVST/PVST+/PVRST
Mirroring Port-based, ACL-based, MAC Filter based,
and VLAN based
PIM-SM v2 Snooping
Port Loop Detection
Private VLAN
Protected Link Groups
Protocol VLAN (802.1v), Subnet VLAN
Remote Fault Notification (RFN)
Single-instance Spanning Tree
Single-link LACP
Trunk Groups
Technical Bid
Version 1.0
Page 35 of 55
SR
NO
C.1
C.2
D.1
D.2
D.3
D.4
D.5
D.6
COMPLY
YES or NO
REMARKS
3.2C LAYER 3 IP ROUTING FEATURES

The switch supports the following Base Layer 3 IP Routing
protocols and features:
IPv4 and Ipv6 static routes
ECMP
Port-based Access Control Lists
L3/L4 ACLs
Host routes
Virtual interfaces
Routed interfaces
Route-only support
Routing between directly connected subnets
The switch supports the following Premium Layer 3 IP Routing
protocols with a license upgrade if required:
IPv4 and IPv6 dynamic routes
RIP v1/v2
OSPF v2
Virtual Route Redundancy Protocol (VRRP)
VRRP-E
IPv6 over IPv4 tunnels
PIM-SM, PIM-SMM, PIM-DM, PIM passive (IPv4/IPv6
multicast routing functionality)
OSPF v3
VRRP v3
RIPng
3.2D SWITCH STACKING

The switch supports Switch and Operating System Software
that offers true stacking, with all switches in a stack acting as
a single switch unit.
management.
The switch supports close loop stacking with a minimum
throughput of 40 Gbps or more. Stacking ports should be
separate from uplink ports.
The switch supports a minimum Stack Bandwidth of 40 Gbps
with up to 8 members in a stack.
The switch supports a maximum aggregated stacking
bandwidth of 480 Gbps.
The switch supports a minimum stacking density of 8 DEA
switches. The Bidder to specify the maximum number of
switches supported in a stack.
Technical Bid
Version 1.0
Page 36 of 55
SR
NO
D.7
D.8
COMPLY
YES or NO
REMARKS
The switch supports a maximum stacking distance of up to 10

kilometres.
The switch supports true stacking that should offer higher
availability through simplified management as well as
cross-stack features including Ether Channel, SPAN, and
FlexLink.
3.2E POWER MANAGEMENT
E.1
Specify power inlet (AC)
DEA
E.2
Specify input voltage/frequency ranges
DEA
E.3
Specify maximum rated power supply (AC)
DEA
E.4
Specify POE power budget (AC) (internal AC power only)
DEA
E.5
Specify switch power consumption at idle (no POE load)
DEA
E.6
E.10
Specify switch power consumption at 10% traffic (full POE DEA

load)
load)
The switch is capable of providing PoE+ power with a
minimum power budget of 740W from day one.
The switch has the provision to provide PoE+ power on all 48
ports if required in future by adding an internal/external
Redundant Power Supply.
Specify maximum PoE+ ports with external power supply.
DEA
E.11
Specify airflow (front-to-back or side-to-back)
DEA
E.12
Specify heat dissipation at idle (no POE load)
DEA
E.13
Specify heat dissipation at 10% traffic (full POE load)
DEA
E.14
DEA
E.15

The switch supports power resiliency with optional
periods of non-operation such as nights, weekends, or
holidays. Hibernation Mode can be scheduled using Universal
Port and/or a compliant Operating System management
software. Please specify if any additional software layer is
required to achieve this and its component cost in the
E.7
E.8
E.9
E.16
E.17
Technical Bid
Version 1.0
Page 37 of 55
SR
NO
COMPLY
YES or NO
REMARKS
Commercial Bid.
E.18
E.19
F.1
F.2
F.3
F.4

3.2F PHYSICAL DIMENSIONS
Specify weight in kilograms.
DEA
Specify dimensions in (width x depth x height) in inches and DEA

millimetres and rack units
DEA
F.5
Specify MTBF in hours at 25 degrees Centigrade operating DEA

temperature.
DEA
F.6
G.1
G.2
G.3
G.4
DEA
3.2G QUALITY OF SERVICE (QoS)

ACL Mapping and Marking of ToS/DSCP
ACL Mapping and Marking of 802.1p
ACL Mapping to Priority Queue
Classifying and Limiting Flows Based on TCP Flags
DHCP Relay
DiffServ Support
Honoring DSCP and 802.1p
MAC Address Mapping to Priority Queue
Priority Queue Management using Weighted Round
Robin (WRR) or Weighted Deficnt Round Robin
(WDRR) or Shaped Round Robin (SRR), Strict Priority
(SP), and a combination of WRR and SP.
The switch supports up to eight egress queues per port and
strict priority queuing so that the highest priority packets are
serviced ahead of all other traffic.
The switch supports ACL Flow-based rate limiting and up to
256 aggregate or individual policies per port.
The switch supports Cross-stack QoS to allow QoS to be
Technical Bid
Version 1.0
Page 38 of 55
SR
NO
G.5
G.6
H.1
H.2
H.3
H.4
H.5
H.6
H.7
H.8
COMPLY
YES or NO
REMARKS
configured across a stack of switches.

The switch supports the Committed Information Rate
(CIR) function that provides bandwidth in increments as low
as 64 Kbps.
The switch supports rate limiting that is provided based on
source and destination IP address, source and destination
MAC address, Layer 4 TCP/UDP information, or any
combination of these fields, using QoS ACLs (IP ACLs or MAC
ACLs) etc.
3.2H TRAFFIC MANAGEMENT & SMART OPERATIONS
The switch supports auto configuration services that enable
minimal-touch deployment by providing automated image
installation and configuration when new switches are
connected to the network. This facility enables network
administrators to remotely manage OS image installs and
upgrades.
The switch supports Auto Smart Ports or Universal Port
services that enable automatic configuration of switch ports
as devices connect to the switch, with settings optimized for
the device type resulting in zero-touch port-policy
provisioning.
The switch supports Auto QoS or Universal Port service that
automatically allows configuration of QoS on the switch to
manage QoS policies based on traffic types resulting in
zero-touch traffic engineering.
The switch supports smart troubleshooting with extensive
array of diagnostic commands and system health checks
within the switch, including Smart Call Home or Cloud based
Proactive Services Framework. The Generic Online
Diagnostics on switches in live networks helps in predicting
and detecting failures faster.
The switch supports ACL-based inbound rate limiting and
traffic policies.
The switch supports broadcast, multicast, and unknown
unicast rate limiting.
The switch supports inbound rate limiting per port.
The switch supports outbound rate limiting per port and per
queue.
Technical Bid
Version 1.0
Page 39 of 55
SR
NO
I.1
I.2
I.3
I.4
I.5
I.6
I.7
I.8
I.9
I.10
I.11
I.12
COMPLY
YES or NO
REMARKS
3.2I OPERATIONAL SIMPLICITY

The switch supports Dynamic Host Configuration Protocol
(DHCP) auto configuration of multiple switches through a
boot server.
The switch supports auto negotiation on all ports
automatically selecting half- or full-duplex transmission mode
The switch supports Link Aggregation Control Protocol
(LACP) allowing the creation of Ethernet channelling with
devices that conform to IEEE 802.3ad.
receive pairs if an incorrect cable type (crossover or
straight-through) is installed.
The switch supports Unidirectional Link Detection Protocol
(UDLD) and allows unidirectional links caused by incorrect
fiber-optic wiring or port faults to be detected and disabled
on fiber-optic interfaces.
The switch supports Local Proxy Address Resolution Protocol
(ARP) working in conjunction with Private VLAN Edge to
minimize broadcasts and maximize available bandwidth.
The switch supports Internet Group Management Protocol
(IGMP) Snooping v1, v2, v3 for IPv4 and IPv6 MLD v1 and v2.
Snooping provides fast client joins and leaves of multicast
streams and limit bandwidth-intensive video traffic to only
the requestors.
The switch supports per-port broadcast, multicast, and
unicast storm control, preventing faulty end stations from
degrading overall systems performance.
The switch supports voice VLAN telephony installations by
keeping voice traffic on a separate VLAN for easier
administration and troubleshooting.
The switch supports VLAN Trunking Protocol (VTP) or Multiple
VLAN Registration Protocol (MVRP) or GARP VLAN
Registration Protocol (GVRP) that support dynamic VLANs
configuration across all switches.
The switch supports Remote Switch Port Analyser (RSPAN)
that allows administrators to remotely monitor ports in a
Layer 2 switch network from any other switch in the same
network.
The switch supports Embedded Remote Monitoring
(RMON) software agent and support four RMON groups
(history, statistics, alarms, and events) for enhanced traffic
Technical Bid
Version 1.0
Page 40 of 55
SR
NO
COMPLY
YES or NO
REMARKS
management, monitoring, and analysis.

I.13
I.14
I.15
J.1
The switch supports Layer 2 trace route IEEE 802.1ag that

eases troubleshooting by identifying the physical path that a
packet takes from source to destination.
The switch supports Trivial File Transfer Protocol (TFTP) that
reduces the cost of administering software upgrades by
downloading from a centralized location.
The switch supports Network Timing Protocol (NTP) that
provides an accurate and consistent timestamp to all intranet
switches?
3.2J NETWORK & DEVICE MANAGEMENT
The switch supports the following network and device
management features:
Auto Configuration
Digital Optical Monitoring
Display Log Messages on Multiple Terminals
Embedded Web Management
Embedded DHCP Server
Key-based activation of optional software features
MIB Support for MRP, Port Security, MAC
Authentication, and MAC-based VLANs
Out-of-band Ethernet Management
RFC 783 TFTP
RFC 854 TELNET Client and Server
RFC 951 Bootp
RFC 1157 SNMP v1/v2
RFC 1213 MIB-II
RFC 1493 Bridge MIB
RFC 1643 Ethernet Interface MIB
RFC 1724 RIP v1/v2 MIB
RFC 1757 RMON MIB
RFC 2068 Embedded HTTP
RFC 2131 DHCO Server and DHCP Relay
RFC 2570 SNMP v3 Intro to Framework
RFC 2571 Architecture for Describing SNMP
Framework
RFC 2573 SNMP v3 Applications
RFC 2574 SNMP v3 User-based Security Model
Technical Bid
Version 1.0
Page 41 of 55
SR
NO
COMPLY
YES or NO
REMARKS
RFC 2575 SNMP View-based Access Control Model

SNMP
RFC 2818 Embedded HTTPS
RFC 3176 sFlow
SNTP Simple Network Time Protocol
Multiple Syslog Servers
K.1
K.2
K.3
K.4
K.5
K.6
3.2K SECURITY
specifications:
802.1X Accounting
MAC Authentication
DHCP Snooping
Dynamic ARP inspection
EAP pass-through support
IEEE 802.1X username export in sFlow
Protection against Denial of Service (DoS) attacks
Authentication, Authorization and Accounting (AAA)
Advanced Encryption Standard (AES) with SSHv2
RADIUS/TACACS/TACACS+
Secure Copy (SCP)
Username/password
Web Authentication
RFC 5176 Change of Authorization (CoA)
Flexible Authentication
The switch supports IPv6 first-hop security that enhances
Layer-2 and Layer-3 network access from proliferating IPv6
devices especially BYOD devices. This feature protects against
rogue IPv6 router advertisements, IPv6 duplicate address
detection and other risks introduced by IPv6 technology.
The switch supports Threat Defence features including Port
Security, Dynamic ARP Inspection, and IP Source Guard.
The switch supports private VLANs that restrict traffic
between hosts in a common segment by segregating traffic at
Layer 2, turning a broadcast segment into a no broadcast
multi access like segment from day one.
The switch supports port isolation or private VLAN Edge that
provides security and isolation between switch ports, which
helps ensure that users cannot snoop on other users traffic.
The switch supports Multi-domain Authentication that allows
an IP phone and a PC to authenticate on the same switch port
while placing them on appropriate voice and data VLAN.
Technical Bid
Version 1.0
Page 42 of 55
SR
NO
K.7
K.8
K.9
K.10
K.11
K.12
K.13
K.14
K.15
L.1
L.2
L.3
COMPLY
YES or NO
REMARKS
The switch supports VLAN ACLs on all VLANs to prevent

unauthorized data flows from being bridged within VLANs.
The switch supports Access Control Lists for IPv6 and IPv4 for
security and QoS ACEs.
The switch supports Router ACLs definition security policies
on routed interfaces. IPv6 ACLs can be applied to filter IPv6
traffic.
The switch supports port-based ACLs for Layer 2 interfaces
that allow security policies to be applied on individual switch
ports.
The switch supports Switched Port Analyser (SPAN), with
bi-directional data support that allows Intrusion Detection
System (IDS) to take action when an intruder is detected.
The switch supports MAC Address Tracking, allowing
administrators to be notified of users added to or removed
from the network.
configuration.
The switch supports Bridge Protocol Data Unit (BPDU)
Guard Restrict shuts down Spanning Tree Port Fast-enabled
interfaces when BPDUs are received to avoid accidental
topology loops.
The switch supports Spanning Tree Root Guard Restrict
(STRG) that prevents edge devices not in the network
administrators control from becoming Spanning Tree
Protocol root nodes.
3.2L HIGH AVAILABILITY, REDUNDANCY& RESILIENCY
The switch supports the following high availability,
redundancy and resiliency features:
L3 VRRP protocol redundancy
Real-time state synchronization across the stack
Automatic failover from master to standby stack
switch
Protected link groups
Hot insertion and removal of stacked units.
The switch supports Cross-stack Ether Channel that provides
the ability to configure Link Aggregation technology across
different members of the stack for high resiliency.
The switch supports IEEE 802.1s/w Rapid Spanning Tree
Protocol (RSTP) and Multiple Spanning Tree Protocol
(MSTP) for rapid spanning-tree convergence independent of
Technical Bid
Version 1.0
Page 43 of 55
SR
NO
L.4
L.5
L.6
M.1
M.2
M.3
M.4
M.5
M.6
COMPLY
YES or NO
REMARKS
spanning-tree timers and also offers the benefit of Layer 2

load balancing and distributed processing. Stacked units
behave as a single spanning-tree node.
The switch supports per-VLAN Rapid Spanning Tree
(PVRST+) for allowing rapid spanning-tree re-convergence on
a per-VLAN spanning-tree basis, without requiring the
implementation of spanning-tree instances.
The switch supports Switch-port auto-recovery (Error
Disable) to automatically reactivate a link that is disabled
because of a network error like BPDU guard, Loop,
unidirectional link detection, anomaly etc. in a number of
attempts.
The switch supports power redundancy with an optional
external power supply.
3.2M REGULATORY COMPLIANCE / CERTIFICATIONS

The switch complies with the following Electromagnetic
The switch complies with the following Safety standards:
Laser
Products-Part
1,
Equipment
Classification,
Systems.
IEC 68-2-6.
Technical Bid
Version 1.0
Page 44 of 55
SR
NO
COMPLY
YES or NO
REMARKS
COMPLY
YES or NO
REMARKS
68-2-27 and IEC 68-2-32.
SR
NO
3.3
A.1
A.2
A.3
A.4
A.5
A.6
A.7
A.8
A.9
A.10
A.11
A.12
A.13
A.14
A.15
A.16
24 PORT PoE/PoE+ L2 STACKABLE ACCESS SWITCH 22 NOS REQUIRED

The switch supports a minimum switching capacity (data rate,
full duplex) of at least 208 Gbps.
Please specify Maximum switching capacity at data rate, full DEA
duplex.
The switch supports a minimum forwarding capacity (data
rate, full duplex) of 154 Mbps
The switch supports a minimum of 24 10/100/1000 Mbps
RJ45 ports from day one and these should not be shared with
uplink ports.
The switch supports a minimum of 2 x 1G SFP ports from day
1.
The switch is capable of supporting 2 x 10G SFP+ ports in
future with only a change of optics and license if required to
enable the ports.
The switch is capable of being upgraded to support advanced
Layer 3 feature set like IPv4 and IPv6 L3 routing (RIP, OSPF)
with a license.
The switch supports the following optics from day one:
2 x 1000Base-SX multimode LC SFP connector.
The switch supports a minimum dual core CPU of 500MHz,
Flash memory of 128 MB, and DRAM of 512 MB. Please
specify if otherwise.
The switch supports a minimum of 16,000 MAC addresses.
The Bidder to specify maximum MAC addresses supported.
The switch supports a minimum of 4,095 VLANs. The Bidder
to specify the maximum no of VLANs supported.
The switch supports a maximum of 12,000 routes.
The switch supports a minimum of 16 Trunks.
The switch supports a maximum jumbo frame size of 9,216
bytes.
The switch supports at least 8 QoS priority queues.
The switch supports dedicated Ethernet management
interfaces for simplified operation
Technical Bid
Version 1.0
Page 45 of 55
SR
NO
A.17
The switch supports sFlow or NetFlow-Lite from day one.
A.18
The switch supports OpenFlow v1.0 and v1.3 from day 1.
A.19
B.1
COMPLY
YES or NO
REMARKS
3.3B LAYER 2 FEATURES

The switch supports the following Layer 2 features and
protocols:
802.1s Multiple Spanning Tree
802.1x Authentication
Auto MDI/MDIX
BPDU Guard Root Guard
Dual Mode VLANs
MAC based VLANs, Dynamic MAC-based VLAN
activation
Dynamic VLAN assignment
Dynamic Voice VLAN assignment
Fast Port Span
GARP VLAN Registration Protocol
IGMP Snooping (v1/v2/v3)
IGMP Proxy for Static Groups
IGMP Tracking
Inter-Packet Gap (IPG) adjustment
Link Fault Signalling (LFS)
MAC Address Locking; MAC Port Security
MAC-Layer Filtering
MAC Learning Disable
MLD Snooping (v1/v2)
Multi-device Authentication
Per-VLAN Spanning Tree (PVST/PVST+/PVRST
Mirroring - Port-based, ACL-based, MAC Filter based,
and VLAN based
PIM-SM v2 Snooping
Port Loop Detection
Private VLAN
Protected Link Groups
Protocol VLAN (802.1v), Subnet VLAN
Remote Fault Notification (RFN)
Single-instance Spanning Tree
Single-link LACP
Trunk Groups
Technical Bid
Version 1.0
Page 46 of 55
SR
NO
C.1
C.2
D.1
D.2
D.3
D.4
D.5
D.6
COMPLY
YES or NO
REMARKS
3.3C LAYER 3 IP ROUTING FEATURES

The switch supports the following Base Layer 3 IP Routing
protocols and features:
IPv4 and IPv6 static routes
ECMP
Port-based Access Control Lists
L3/L4 ACLs
Host routes
Virtual interfaces
Routed interfaces
Route-only support
Routing between directly connected subnets
The switch preferably supports the following Premium Layer
3 IP Routing protocols with a license upgrade:
IPv4 and IPv6 dynamic routes
RIP v1/v2
OSPF v2
Virtual Route Redundancy Protocol (VRRP)
VRRP-E
IPv6 over IPv4 tunnels
PIM-SM, PIM-SMM, PIM-DM, PIM passive (IPv4/IPv6
multicast routing functionality)
OSPF v3
VRRP v3
RIPng
3.3D SWITCH STACKING

The switch supports Switch and Operating System Software
that offers true stacking, with all switches in a stack acting as
a single switch unit.
management.
The switch supports close loop stacking with a minimum
throughput of 40 Gbps or more. Stacking ports should be
separate from uplink ports.
The switch supports a minimum Stack Bandwidth of 40 Gbps
with up to 8 members in a stack.
The switch supports a minimum stacking density of 8 DEA
switches. The Bidder to specify the maximum number of
switches supported in a stack.
The switch supports a maximum aggregated stacking
bandwidth of 480 Gbps.
Technical Bid
Version 1.0
Page 47 of 55
SR
NO
D.7
D.8
COMPLY
YES or NO
REMARKS
The switch supports a maximum stacking distance of up to 10

kilometres.
The switch supports true stacking that should offer higher
availability through simplified management as well as
cross-stack features including Ether Channel, SPAN, and
FlexLink.
3.3E POWER MANAGEMENT
E.1
Specify power inlet (AC)
DEA
E.2
Specify input voltage/frequency ranges
DEA
E.3
Specify maximum rated power supply (AC)
DEA
E.4
Specify POE power budget (AC) (internal AC power only)
DEA
E.5
Specify switch power consumption at idle (no POE load)
DEA
E.6
E.10

load)
load)
The switch is capable of providing PoE+ power with a
minimum power budget of 370W from day one.
The switch has the provision to provide PoE+ power on all 24
ports if required in future by adding an internal/external
Redundant Power Supply.
Specify maximum PoE+ ports with external power supply.
DEA
E.11
Specify airflow (front-to-back or side-to-back)
DEA
E.12
Specify heat dissipation at idle (no POE load)
DEA
E.13
DEA
E.14
DEA
E.15

The switch should support power resiliency with optional
periods of non-operation such as nights, weekends, or
holidays. Hibernation Mode can be scheduled using Universal
Port and/or a compliant Operating System management
software. Please specify if any additional software layer is
required to achieve this and its component cost in the
Commercial Bid.
E.7
E.8
E.9
E.16
E.17
Technical Bid
Version 1.0
Page 48 of 55
SR
NO
E.18
E.19
F.5
F.6
F.3
F.4
G.1
G.2
G.3
G.4
G.5
REMARKS

3.3F PHYSICAL DIMENSIONS
Specify weight in kilograms.
Specify dimensions in (width x depth x height) in inches and
millimetres and rack units
Specify MTBF in hours at 25 degrees Centigrade operating
temperature.
F.1
F.2
COMPLY
YES or NO
DEA
DEA
DEA
DEA
DEA
DEA
3.3G QUALITY OF SERVICE (QoS)

ACL Mapping and Marking of ToS/DSCP
ACL Mapping and Marking of 802.1p
ACL Mapping to Priority Queue
Classifying and Limiting Flows Based on TCP Flags
DHCP Relay
DiffServ Support
Honoring DSCP and 802.1p
MAC Address Mapping to Priority Queue
Priority Queue Management using Weighted Round
Robin (WRR) or Weighted Deficnt Round Robin
(WDRR) or Shaped Round Robin (SRR), Strict Priority
(SP), and a combination of WRR and SP.
The switch supports up to eight egress queues per port and
strict priority queuing so that the highest priority packets are
serviced ahead of all other traffic.
The switch supports ACL Flow-based rate limiting and up to
256 aggregate or individual policies per port.
The switch supports Cross-stack QoS to allow QoS to be
configured across a stack of switches.
The switch supports the Committed Information Rate
(CIR) function that provides bandwidth in increments as low
as 64 Kbps.
Technical Bid
Version 1.0
Page 49 of 55
SR
NO
G.6
H.1
H.2
H.3
H.4
H.5
H.6
H.7
H.8
I.1
I.2
COMPLY
YES or NO
REMARKS
The switch supports rate limiting that is provided based on

source and destination IP address, source and destination
MAC address, Layer 4 TCP/UDP information, or any
combination of these fields, using QoS ACLs (IP ACLs or MAC
ACLs) etc.
3.3H TRAFFIC MANAGEMENT & SMART OPERATIONS
The switch supports auto configuration services that enable
minimal-touch deployment by providing automated image
installation and configuration when new switches are
connected to the network. This facility enables network
administrators to remotely manage OS image installs and
upgrades.
The switch supports Auto Smart Ports or Universal Port
services that enable automatic configuration of switch ports
as devices connect to the switch, with settings optimized for
the device type resulting in zero-touch port-policy
provisioning.
The switch supports Auto QoS or Universal Port service that
automatically allows configuration of QoS on the switch to
manage QoS policies based on traffic types resulting in
zero-touch traffic engineering.
The switch supports smart troubleshooting with extensive
array of diagnostic commands and system health checks
within the switch, including Smart Call Home or Cloud based
Proactive Services Framework. The Generic Online
Diagnostics on switches in live networks helps in predicting
and detecting failures faster.
The switch supports ACL-based inbound rate limiting and
traffic policies.
The switch supports broadcast, multicast, and unknown
unicast rate limiting.
The switch supports inbound rate limiting per port.
The switch supports outbound rate limiting per port and per
queue.
3.3I OPERATIONAL SIMPLICITY
The switch supports Dynamic Host Configuration Protocol
(DHCP) auto configuration of multiple switches through a
boot server.
The switch supports auto negotiation on all ports
automatically selecting half- or full-duplex transmission mode
Technical Bid
Version 1.0
Page 50 of 55
SR
NO
I.3
I.4
I.5
I.6
I.7
I.8
I.9
I.10
I.11
I.12
I.13
I.14
COMPLY
YES or NO
REMARKS
The switch supports Link Aggregation Control Protocol

(LACP) allowing the creation of Ethernet channelling with
devices that conform to IEEE 802.3ad.
receive pairs if an incorrect cable type (crossover or
straight-through) is installed.
The switch supports Unidirectional Link Detection Protocol
(UDLD) and allows unidirectional links caused by incorrect
fiber-optic wiring or port faults to be detected and disabled
on fiber-optic interfaces.
The switch supports Local Proxy Address Resolution Protocol
(ARP) working in conjunction with Private VLAN Edge to
minimize broadcasts and maximize available bandwidth.
The switch supports Internet Group Management Protocol
(IGMP) Snooping v1, v2, v3 for IPv4 and IPv6 MLD v1 and v2?
Snooping provides fast client joins and leaves of multicast
streams and limit bandwidth-intensive video traffic to only
the requestors.
The switch supports per-port broadcast, multicast, and
unicast storm control, preventing faulty end stations from
degrading overall systems performance.
The switch supports voice VLAN telephony installations by
keeping voice traffic on a separate VLAN for easier
administration and troubleshooting.
The switch supports VLAN Trunking Protocol (VTP) or Multiple
VLAN Registration Protocol (MVRP) or GARP VLAN
Registration Protocol (GVRP) that support dynamic VLANs
configuration across all switches.
The switch supports Remote Switch Port Analyser (RSPAN)
that allows administrators to remotely monitor ports in a
Layer 2 switch network from any other switch in the same
network.
The switch supports Embedded Remote Monitoring
(RMON) software agent and support four RMON groups
(history, statistics, alarms, and events) for enhanced traffic
management, monitoring, and analysis.
The switch supports Layer 2 trace route IEEE 802.1ag that
eases troubleshooting by identifying the physical path that a
packet takes from source to destination.
The switch supports Trivial File Transfer Protocol (TFTP) that
reduces the cost of administering software upgrades by
downloading from a centralized location.
Technical Bid
Version 1.0
Page 51 of 55
SR
NO
I.15
J.1
COMPLY
YES or NO
REMARKS
The switch supports Network Timing Protocol (NTP) that

provides an accurate and consistent timestamp to all intranet
switches.
3.3J NETWORK & DEVICE MANAGEMENT
The switch supports the following network and device
management features:
Auto Configuration
Digital Optical Monitoring
Display Log Messages on Multiple Terminals
Embedded Web Management
Embedded DHCP Server
Key-based activation of optional software features
MIB Support for MRP, Port Security, MAC
Authentication, and MAC-based VLANs
Out-of-band Ethernet Management
RFC 783 TFTP
RFC 854 TELNET Client and Server
RFC 951 Bootp
RFC 1157 SNMP v1/v2
RFC 1213 MIB-II
RFC 1493 Bridge MIB
RFC 1643 Ethernet Interface MIB
RFC 1724 RIP v1/v2 MIB
RFC 1757 RMON MIB
RFC 2068 Embedded HTTP
RFC 2131 DHCO Server and DHCP Relay
RFC 2570 SNMP v3 Intro to Framework
RFC 2571 Architecture for Describing SNMP
Framework
RFC 2573 SNMP v3 Applications
RFC 2574 SNMP v3 User-based Security Model
RFC 2575 SNMP View-based Access Control Model
SNMP
RFC 2818 Embedded HTTPS
RFC 3176 sFlow
SNTP Simple Network Time Protocol
Multiple Syslog Servers
Technical Bid
Version 1.0
Page 52 of 55
SR
NO
K.1
K.2
K.3
K.4
K.5
K.6
K.7
K.8
K.9
COMPLY
YES or NO
REMARKS
3.3K SECURITY
specifications:
802.1X Accounting
MAC Authentication
DHCP Snooping
Dynamic ARP inspection
EAP pass-through support
IEEE 802.1X username export in sFlow
Protection against Denial of Service (DoS) attacks
Authentication, Authorization and Accounting (AAA)
Advanced Encryption Standard (AES) with SSHv2
RADIUS/TACACS/TACACS+
Secure Copy (SCP)
Username/password
Web Authentication
RFC 5176 Change of Authorization (CoA)
Flexible Authentication
The switch supports IPv6 first-hop security that enhances
Layer-2 and Layer-3 network access from proliferating IPv6
devices especially BYOD devices. This feature protects against
rogue IPv6 router advertisements, IPv6 duplicate address
detection and other risks introduced by IPv6 technology.
The switch supports Threat Defence features including Port
Security, Dynamic ARP Inspection, and IP Source Guard.
The switch supports private VLANs that restrict traffic
between hosts in a common segment by segregating traffic at
Layer 2, turning a broadcast segment into a no broadcast
multi access like segment from day one.
The switch supports port isolation or private VLAN Edge that
provides security and isolation between switch ports, which
helps ensure that users cannot snoop on other users traffic.
The switch supports Multi-domain Authentication that allows
an IP phone and a PC to authenticate on the same switch port
while placing them on appropriate voice and data VLAN.
The switch supports VLAN ACLs on all VLANs to prevent
unauthorized data flows from being bridged within VLANs.
The switch supports Access Control Lists for IPv6 and IPv4 for
security and QoS ACEs.
The switch supports Router ACLs definition security policies
on routed interfaces. IPv6 ACLs can be applied to filter IPv6
traffic.
Technical Bid
Version 1.0
Page 53 of 55
SR
NO
K.10
K.11
K.12
K.13
K.14
K.15
L.1
L.2
L.3
L.4
COMPLY
YES or NO
REMARKS
The switch supports port-based ACLs for Layer 2 interfaces

that allow security policies to be applied on individual switch
ports.
The switch supports switched Port Analyser (SPAN), with
bi-directional data support that allows Intrusion Detection
System (IDS) to take action when an intruder is detected.
The switch supports MAC Address Tracking, allowing
administrators to be notified of users added to or removed
from the network.
configuration.
The switch supports Bridge Protocol Data Unit (BPDU)
Guard Restrict shuts down Spanning Tree Port Fast-enabled
interfaces when BPDUs are received to avoid accidental
topology loops.
The switch supports Spanning Tree Root Guard Restrict
(STRG) that prevents edge devices not in the network
administrators control from becoming Spanning Tree
Protocol root nodes.
3.3L HIGH AVAILABILITY, REDUNDANCY, & RESILIENCY
The switch supports the following high availability,
redundancy and resiliency features:
L3 VRRP protocol redundancy
Real-time state synchronization across the stack
Automatic failover from master to standby stack
switch
Protected link groups
Hot insertion and removal of stacked units.
The switch supports Cross-stack Ether Channel that provides
the ability to configure Link Aggregation technology across
different members of the stack for high resiliency.
The switch supports IEEE 802.1s/w Rapid Spanning Tree
Protocol (RSTP) and Multiple Spanning Tree Protocol
(MSTP) for rapid spanning-tree convergence independent of
spanning-tree timers and also offers the benefit of Layer 2
load balancing and distributed processing. Stacked units
behave as a single spanning-tree node.
The switch supports per-VLAN Rapid Spanning Tree
(PVRST+) for allowing rapid spanning-tree re-convergence on
a per-VLAN spanning-tree basis, without requiring the
implementation of spanning-tree instances.
Technical Bid
Version 1.0
Page 54 of 55
SR
NO
L.5
L.6
M.1
M.2
M.3
M.4
M.5
M.6
COMPLY
YES or NO
REMARKS
The switch supports Switch-port auto-recovery (Error

Disable) to automatically reactivate a link that is disabled
because of a network error like BPDU guard, Loop,
unidirectional link detection, anomaly etc. in a number of
attempts.
The switch supports power redundancy with an optional
external power supply.
3.3M REGULATORY COMPLIANCE / CERTIFICATIONS

The switch complies with the following Electromagnetic
The switch complies with the following Safety standards:
Laser
Products-Part
1,
Equipment
Classification,
Systems.
IEC 68-2-6.
68-2-27 and IEC 68-2-32.
This concludes the Technical Requirements section of the WLAN and Switching RFP.
Technical Bid
Version 1.0
Page 55 of 55

IIM A Bid Document Technical Bid

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

IIM A Bid Document Technical Bid

Uploaded by

Copyright:

Available Formats

Request For Proposal

Request for Proposal (RFP)

TECHNICAL BID REQUIREMENTS

WLAN TECHNICAL SPECIFICATIONS

2.1 WLAN SYSTEM & CONTROLLER ............................................................................... 6

WLAN SYSTEM QOS / VLAN FEATURES ................................................................ 8

WLAN SYSTEM ROAMING FEATURES .................................................................. 9

VOICE over WLAN FEATURES ............................................................................... 9

WLAN SYSTEM MANAGEMENT FEATURES ........................................................ 10

WLAN SYSTEM SECURITY FEATURES.................................................................. 12

WLAN SYSTEM REDUNDANCY, RELIABILITY & RESILIENCE FEATURES .............. 15

WLAN SYSTEM SCALABILITY FEATURES ............................................................. 16

NETWORK MANAGEMENT SYSTEM (NMS) ........................................................ 17

IN-ROOM WIRELESS ACCESS POINT ....................................................................... 19

24 PORT L3 AGGREGATION SWITCH 4 NOS REQUIRED ...................................... 25

3.1A ARCHITECTURE / PERFORMANCE ........................................................................ 25

3.1J SECURITY ............................................................................................................... 30

48 PORT PoE/PoE+ L2 STACKABLE ACCESS SWITCH 30 NOS REQUIRED ............ 34

3.2A ARCHITECTURE / PERFORMANCE ........................................................................ 34

24 PORT PoE/PoE+ L2 STACKABLE ACCESS SWITCH 22 NOS REQUIRED ............. 45

3.3A ARCHITECTURE / PERFORMANCE ........................................................................ 45

TECHNICAL BID REQUIREMENTS

System validate the RF?

WLAN TECHNICAL SPECIFICATIONS

2.1 WLAN SYSTEM & CONTROLLER

A. WLAN SYSTEM ARCHITECTURE

Controller while all client data traffic is forwarded directly

clients are encouraged to connect over 5GHz radio to provide

B. WLAN SYSTEM QOS / VLAN FEATURES

loaded Channel or AP.

C. WLAN SYSTEM ROAMING FEATURES

describe briefly how this is achieved.

The WLAN System supports native Bonjour protocol for mDNS

List of all the SSIDs deployed on each of the radio of

F. WLAN SYSTEM SECURITY FEATURES

The WLAN System has full-fledged Radius functionality and

G. WLAN SYSTEM REDUNDANCY, RELIABILITY & RESILIENCE FEATURES

H. WLAN SYSTEM SCALABILITY FEATURES

J. NETWORK MANAGEMENT SYSTEM (NMS)

2.2 IN-ROOM WIRELESS ACCESS POINT

Equipment Type Approved (ETA) should be enclosed by the

2.3 INDOOR / CORRIDOR WIRELESS ACCESS POINT

2.4 OUTDOOR WIRELESS ACCESS POINT

the radios in a full 4x4:4 MIMO without any loss of features

3.1 24 PORT L3 AGGREGATION SWITCH 4 NOS REQUIRED

3.1A ARCHITECTURE / PERFORMANCE

The switch supports a packet throughput of 1.44 Bpps

The switch supports VLAN IDs >=4K, MAC >=96K, Routes

The switch supports a fabric capacity of at least 2.56 Tbps.

The switch supports at least one 10/100/1000 Mbps

for SDN compatibility.

Specify power inlet (AC).

Specify input voltage/frequency ranges of switch.

Specify maximum rated power supply (AC).

Specify typical power consumption of switch.

Specify maximum power consumption of switch.

Specify airflow (front-to-back or side-to-back).

The switch supports reduced power consumption and

The switch supports IEEE 802.3az EEE (Energy Efficient

Specify weight of switch in kilograms with two power supplies DEA

Specify MTBF in hours at 25 degrees operating temp.

Specify operating temperature in Centigrade.

Specify non-operating temperature in Centigrade.