Huawei CloudCampus Network Design Experience

Table of Contents

1. Introduction #

1.1 Purpose #

This document provides comprehensive guidance for developing both High-Level Design (HLD) and Low-Level Design (LLD) for Huawei’s CloudCampus network solutions aimed at small- and medium-sized campus networks. It explains solution architecture, products used in the solution, technical recommendations, and operational best practices for network management.

1.2 Audience #

This document is primarily aimed at:

  • Pre-sales engineers
  • Technical support engineers
  • Network design engineers
  • Other decision-makers involved in technical solutions for campus networks

It assumes that the reader has a basic understanding of Huawei campus network technologies. The document is not intended for beginners but for professionals who are involved in designing or supporting enterprise network infrastructures.

2. Overview of Small- and Medium-Sized Campus Networks #

A campus network typically refers to the internal network of an enterprise or organization. This network connects to both wide-area networks (WANs) and data center networks. It is built to ensure efficient and uninterrupted service delivery across the enterprise. Campus networks can be classified based on the number of end users and network elements (NEs) into small, midsize, and large categories.

ClassificationNumber of End UsersNumber of Network Elements (NEs)
Small Campus NetworkFewer than 200Fewer than 10
Midsize Campus Network200-200010-128
Large Campus NetworkMore than 2000More than 128

Most medium- and large-scale campus networks use traditional local management modes, often following a clear hierarchical structure (core, aggregation, and access layers). This type of network can also have dedicated data centers that offer service computing and storage capabilities.

3. Service Requirements and Challenges #

3.1 Technology Trends #

3.1.1 Network Cloudification #

The rise of cloud computing has shifted enterprise services toward the cloud, offering enterprises faster service launches and increased agility. The network is central to this transformation, playing a critical role in ensuring high-quality user experiences as enterprises move to the cloud.

Network cloudification transforms the traditional network model into a service-oriented one. Instead of focusing on physical architecture, enterprises only need to define the required network services. The transition enables businesses to focus on their services without dealing with the complexity of the IT architecture. This shift also allows small- and medium-sized campuses to benefit from cloud-managed networks, which offer more flexibility and simplified management compared to traditional setups.

3.1.2 Cloud Security #

As networks shift from local setups to cloud-managed environments, the nature of security risks has changed. The threats are more complex than the virus-based attacks of traditional networks, with attackers using a combination of sophisticated methods. Cloud security must address both proactive defenses and real-time detection of threats.

Enterprises must be able to respond quickly to security incidents to minimize potential damage. Traditional security measures focused heavily on passive defense, but today’s cloud environments require a more proactive stance. Modern security investments focus on detection and response, which are now just as important as traditional defensive measures.

3.1.3 Internet of Things (IoT) #

IoT has become a key driver of network complexity. Devices such as sensors, cameras, and other smart devices are increasingly integrated into campus networks. These devices are transforming industries by offering capabilities like real-time tracking, asset management, and enhanced service delivery.

  • Increased Variety of Devices: IoT introduces a wider range of terminal devices, each with different connectivity and security needs.
  • Data and Network Load: The sheer volume of data generated by IoT devices adds pressure to existing network infrastructure.
  • Network Integration: Integrating diverse IoT technologies into a cohesive campus network is a challenge. Technologies such as Bluetooth, ZigBee, and RFID are commonly used, and each must coexist within the broader enterprise network.

4. Huawei CloudCampus Solution #

To address these challenges, Huawei developed the CloudCampus Solution, which transforms traditional campus networks into a service model by leveraging cloud computing and big data analytics. The solution offers simplified, centralized management and enhanced deployment capabilities, making it ideal for small- and medium-sized networks.

4.1 Key Features of CloudCampus Solution #

The key features of the Huawei CloudCampus Solution include:

  1. Automatic Deployment: Devices can be deployed quickly and easily, simplifying network installation and configuration.
  2. Cloud-based WLAN Planning: WLAN planning and network operations are managed via a cloud-based mobile app, offering real-time network monitoring and simplified O&M.
  3. Comprehensive Product Portfolio: The solution includes a wide range of networking devices, such as switches, firewalls, access routers (ARs), and access points (APs), allowing for flexible deployment across different network scenarios.
  4. Dual Management Modes: Huawei devices can be managed either through traditional local methods or cloud-based platforms, allowing for easy migration to cloud-based management in the future.
  5. Value-Added Services (VAS): The CloudCampus solution offers built-in services such as customer flow analytics, asset management, and integration with third-party applications via open APIs.

5. CloudCampus Architecture #

The architecture of Huawei CloudCampus consists of three main layers:

  1. Tenant Network Layer: This layer includes the devices deployed at the customer’s premises (such as access points, switches, and routers) that handle user access and network services.
  2. Cloud Management Platform: The core of the solution, consisting of iMaster NCE-Campus (for network control and management) and iMaster NCE-CampusInsight (for intelligent network analysis and monitoring). This platform centralizes network operations and leverages AI for intelligent O&M.
  3. Value-added SaaS Platform: An open platform that offers APIs for integrating additional services such as asset tracking, customer analytics, and IoT applications.

6. Design Process and Requirement Analysis #

6.1 Design Process #

The design process for a campus network using Huawei CloudCampus follows these key steps:

  1. Requirement Survey: Collect information on network environment, user needs, and services to be supported.
  2. Network Architecture Design: Based on the survey results, define the network’s architecture, scale, and service management model.
  3. Operations and Maintenance (O&M) Design: Develop O&M strategies that align with the network management model, including network deployment, device management, and O&M tasks.
  4. Security Design: Address specific security concerns, such as compliance, data protection, and network access controls.

6.2 Requirement Categories #

Huawei recommends analyzing the following seven areas when conducting requirement surveys:

  1. Network Environment: Determine if the network is a new deployment or a reconstruction of an existing network.
  2. Network Pain Points: Identify key pain points (e.g., network congestion, downtime) and areas that need improvement.
  3. Service Types: Analyze the different types of services (such as wireless access, IoT devices) that the network will support.
  4. Security Needs: Establish the necessary levels of security, including service isolation, compliance with industry standards, and data encryption.
  5. Network Scale: Consider both current and future network size, taking into account user growth and service expansion.
  6. Terminal Types: Assess the various terminal devices (e.g., laptops, cameras, IoT devices) and their access requirements.
  7. O&M Mode: Decide whether the network’s O&M will be managed by the enterprise (tenant-managed) or outsourced to a Managed Service Provider (MSP).

7. Overall Design #

7.1 Network Management Modes #

Huawei CloudCampus supports several network management modes, depending on the size and distribution of the campus network. For small- and medium-sized networks, the recommended options are:

  • Huawei Public Cloud: This allows for fully centralized management on Huawei’s cloud platform.
  • MSP-Owned Cloud: Managed by a third-party provider, ideal for businesses looking to outsource network management.

Local on-premises network management is generally not recommended for small- or medium-sized campus networks due to the cost and complexity involved.

7.2 Network Management Structure #

The solution supports a hierarchical management model, with the following layers:

  • Platform Operation Layer: Oversees the reliable operation of the cloud management platform.
  • MSP Layer: Handles network management for tenant networks.
  • Tenant Layer: Enterprises manage their own network sites or branches.

7.3 Network Site and Organization Design #

A “site” refers to a managed unit within a tenant’s network, such as a branch, office, or individual department. Huawei CloudCampus supports multi-level organizational structures, enabling centralized management of multiple sites across regions or business units. Each site can be managed independently or as part of a larger organizational structure.

8. License Management #

8.1 License Purchase Models #

Huawei CloudCampus offers three primary models for purchasing licenses:

  1. Offline Purchase: Businesses can purchase cloud management licenses directly from Huawei or through authorized resellers.
  2. Online Purchase: Licenses and services can be bought directly from Huawei Cloud’s online platform.
  3. MSP-Split Licensing: Small- and medium-sized businesses can purchase services directly from an MSP, which simplifies the licensing process by eliminating the need for individual licenses.

8.2 License Termination Models #

License termination can follow one of two models:

  • Co-termination Model: All licenses for a network are pooled together and share the same termination date. This model simplifies management by ensuring all licenses expire at the same time.
  • Non-Co-termination Model: Licenses are managed based on device types, with each group of devices having its own termination date. This model allows for more granular license management.

For small- and medium-sized campus networks, the co-termination model is recommended for ease of management.

9. Operations & Maintenance (O&M) Modes #

9.1 O&M Mode Requirement Survey #

Before designing the O&M mode, consider:

  • Network Management Mode: Determine whether the network will be managed on-premises or via cloud services.
  • O&M Responsibility: Decide whether O&M tasks will be managed internally by the enterprise (tenant-managed) or outsourced to a third-party provider (MSP-managed).

9.2 O&M Mode Selection #

Huawei CloudCampus supports two primary O&M modes:

  • Tenant-Managed O&M: The enterprise handles all aspects of network management and maintenance.
  • MSP-Managed O&M: The enterprise outsources network management and maintenance to an MSP. This option is generally recommended for small- and medium-sized networks, as it reduces internal resource requirements.

9.3 Deployment Acceptance and Inspection #

After network deployment, Huawei’s CloudCampus solution supports an inspection phase to ensure the network meets performance, security, and operational requirements. Regular inspections and maintenance tasks can be scheduled to ensure ongoing network health and security compliance.

10. Networking Design #

10.1 Network Deployment #

The CloudCampus solution supports three main deployment models:

  • Huawei Public Cloud: The preferred model for small- and medium-sized enterprises that want a fully managed cloud solution.
  • MSP-Owned Cloud: Best suited for managed service providers that wish to operate their own cloud environments for their clients.
  • On-premises Deployment: Generally only used by large enterprises that require complete control over their infrastructure.

10.2 Networking Architecture #

For small- and medium-sized campus networks, Huawei recommends either public cloud or MSP-owned cloud deployment models. These options offer a balance between cost-effectiveness and management simplicity, allowing organizations to leverage cloud infrastructure while keeping operational complexity to a minimum. Depending on the number of sites and organizational structure, Huawei CloudCampus allows for centralized management across multiple locations, simplifying network operations.