top of page

Heads of chapters  for metro infrastructure for smart cities

Monitoring Room

When we approach decision makers at the municipal level, mayors, CEOs of authorities or institutions, we put in front of our eyes the benefits of laying out the infrastructure which leads at the end of the day to the complete product of a smart city.

 

The best and highest quality infrastructure, in our opinion, for smart city applications and technological security systems is the Moran network.

 

The metro network is a digital platform that unifies all the systems and centralizes all the city's communication services, including the security and emergency services, monitoring systems linked to the Shin Bet systems (control and control) and, of course, a perfect solution for information security.

We have compiled for you the main chapter heads for establishing such an infrastructure, with the clear advantages of each section. We tried to keep the language simple, But in such a technologically advanced field, sometimes this is a difficult task. 

Building a communication solution in a ring configuration

  • Construction of a ring in communication infrastructures to create survivability if one segment is interrupted

  • Very fast recovery time ms for business continuity

  • The ability to encrypt transmission lines and increase the level of information security in the network

  • Ability to create a floating service in a few minutes

  • Ability to create a multicast service automatically

  • Separating one service from the other and increasing the level of security for the network

  • Creating Stealth Networks (black hole) so that one service is unaware of another service in the topology

  • Hyper-Segmentation

55.jpg

Full virtualization at the network level

  • Enables virtual network consolidation at all levels of the infrastructure, starting with the DC, DR   up to the end user level, in the LAN

  • The solution replicates virtualization in the worlds of computing (VMware) to the worlds of communication

 

The advantages are clear:

  • Significant savings when implementing additional services in the network

  • Establishing a Datacenter and DR that function as one unit in two (or more) different sites.

  • Establishing new services on campus in an efficient and fast manner, regardless of their location.

  • Simplicity in establishing the network - the structure of the communication network does not depend on a fixed architecture of Core/Dist/Access. Any switch can connect to any other switch, regardless of hierarchy.

  • Total avoidance of using Spanning Tree - all communication lines are active in Active/Active.

22.png

Secure network separation

The network will completely separate each and every service by assigning virtual subnets that are separated from each other.

Advantages:

  • The ability to unite all the physical networks in the campus/data center in the municipality into one physical network. Each service will receive a completely separate virtual segment on the network. Each service is not aware of another service.

  • "Closed" Stealth Network  - technology that will reduce the investment in information security systems.

  • The municipality's information security setup (FW Checkpoint) will perform the routing in the network according to the municipality's policy

  • Creating critical services in the municipality with an emphasis on information security and business continuity

  • The readiness of the network to receive virtual information security services in the NFV architecture.

  • The ability to unite all security services (cameras) or sensors into one network -  Thousands of cameras connected to the network.

The network supports the information security standards:

  •  HIPAA - Health Insurance Portability And Accountability

  • PCI - Payment Card Industry  

  • Command Criteria

  • DoD

Encryption in communication lines

In the proposed solution there is an option to perform encryption on the communication lines in the ring as an integral part of the switches in the solution by purchasing a license for encryption in the second layer of OSI

survivability

The SDN-Fx architecture virtualizes the network by using only one protocol. This structure allows the survival of each service (L2/L3/Multicast) in less than 200ms in the network.

A disease that exists in one site will not automatically travel as it happens in a traditional network to the other site and the collapse of the network

The SDN-FX technology protects the network from incidents and ensures business continuity

automation

In a network consisting of a large number of switches, communication components and terminal equipment, the implementation time is a critical element and therefore the network must be structured to allow the allocation of necessary network resources and the introduction of services automatically.

  • Lowering operating costs (OPEX)

  • Establishment of services and their implementation in the network in a short time compared to other alternatives based on LEGACY TECHNOLOGY

Management and automation systems

The solution includes a management and automation system for the entire network

  • A system that performs detection of the entire network and the ability to define policy and define communication parameters and distribute them with a "click".

  • The module that performs backup of configuration/licenses in one central place.

  • Establishing a service in one click from the automation system.

  • Defining a policy of permissions in one central place and building access profiles.

Unified Communications

The communication solution of a communication company provides a unified communication solution for a campus/data center (End-To-End Solution):

  • Core, Datacenter, TOR and edge switches.

  • An integrated wireless network as part of the LAN network solution.

  • NAC as an information security solution.

  • control and management system.

Advantages:

 ​

  • Proven architecture and installed in sites around the world, including municipalities.

  • Zero touch configuration – wireless units/cameras are installed without the need for settings to enter them into the network. The services are configured automatically by the network.

Mobility (Wireless+LAN)

The network will enable the reception and implementation of services regardless of the physical location of servers and users, and any communication equipment connected to the network.

Advantages:

  • Services can be implemented regardless of their physical location and the access method of the users (LAN/WIFI).

  • Ability to implement services in a very short time.

  • Implementation of a hidden network to implement a secure network to reduce cyber attacks

  • The municipality's FW array will implement the information security policy

  • Dedicated services for critical applications for the organization such as ERP, CRM, Storage, etc.

11.gif

The author is Yoram Bibish, CEO of Messer ICT and Consulting, which specializes in providing communication solutions, smart cities and parks, and consulting for mayors.

bottom of page