CISCO思科 2500 无线控制器

思科 2500 无线控制器适用于中小型网络和分支机构面向支持第二代 802.11ac 技术的下一代网络而优化通过 Web 和移动应用提供无线快捷设置和监控功能最多支持 75 个接入点和 1000 个客户端

  • 型号: AIR-CT2504-25-K9

思科 2500 无线控制器

  • 适用于中小型网络和分支机构

  • 面向支持第二代 802.11ac 技术的下一代网络而优化

  • 通过 Web 和移动应用提供无线快捷设置和监控功能

  • 最多支持 75 个接入点和 1000 个客户端


Product Overview

The Cisco® 2500 Series Wireless Controller enables systemwide wireless functions in small to medium-sized enterprises and branch offices. Designed for 802.11n and 802.11ac performance, Cisco 2500 Series Wireless Controllers are entry-level controllers that provide real-time communications between Cisco Aironet® access points to simplify the deployment and operation of wireless networks (Figure 1).

Figure 1. Cisco 2500 Series Wireless Controller

Description: Figure1

As a component of the Cisco Unified Wireless Network, this controller delivers centralized security policies, wireless intrusion prevention system (wIPS) capabilities, award-winning RF management, and quality of service (QoS) for voice and video. Delivering 802.11ac performance and scalability, the Cisco 2500 Series provides low total cost of ownership and flexibility to scale as network requirements grow.

The Cisco 2504 Wireless Controller supports Cisco Application Visibility and Control (AVC), the technology that includes Cisco’s Network-Based Application Recognition 2 (NBAR-2) engine. N-BAR-2 does deep packet inspection (DPI) to classify applications and tie into quality of service (QoS) to either drop or mark the traffic, thereby prioritizing business-critical applications in the network. Cisco AVC uses NetFlow Version 9 to export the flows to Cisco Prime Infrastructure or a third-party NetFlow Collector. The Cisco 2504 Wireless Controller also supports Bonjour Services Directory, which enables Bonjour (Apple) Services to be advertised and utilized in a separate Layer 3 network. Wireless Policy engine is a wireless profiler and policy feature on the Cisco 2500 Series Wireless Controller that enables profiling of wireless devices and enforcement of policies such as VLAN assignment, QoS, ACL, and time-of-day-based access.

Cisco 2500 Series Wireless Controller-based access point licensing offers flexibility with 5, 15, 25, or 50 access points. Additional access point support can be added in increments of 1, 5, or 25.

Table 1 lists the features and benefits of the Cisco 2500 Series Wireless Controllers.

Table 1.       Cisco 2500 Series Wireless Controller Features and Benefits




  Supports up to 75 access points  Supports up to 1000 clients

Ease of Deployment

  For quick and easy deployment Access Points can be connected directly to 2504 Wireless LAN Controller via two PoE (Power over Ethernet) ports

High Performance

  Wired-network speed and nonblocking performance for 802.11n and 802.11ac networks. Supports up to 1 Gbps throughput

RF Management

  Provides both real-time and historical information about RF interference impacting network performance across controllers, via systemwideCisco CleanAir® technology integration

Comprehensive End-to-End Security

  Offers CAPWAP-compliant Datagram Transport Layer Security (DTLS) encryption to help ensure full-line-rate encryption between access points and controllers across remote WAN/LAN links

End-to-end Voice

  SupportsUnified Communications for improved collaboration through messaging, presence, and conferencing  Supports allCisco Unified Wireless IP Phones for cost-effective, real-time voice services

High-Performance Video

  Integrates Cisco VideoStream technology as part of the Cisco medianet framework to optimize the delivery of video applications across the WLAN

PCI Integration

  Part of Payment Card Industry (PCI) certified architecture, and are well-suited for retail customers who deploy transactional data applications such as scanners and kiosks


  Supports corporate wireless service for mobile and remote workers with secure wired tunnels to the Cisco Aironet® 600, 1130, 1140 or 3500 Series Access Points  Extends the corporate network to remote locations with minimal setup and maintenance requirements  Improves productivity and collaboration at remote site locations  Separate service set identifier (SSID) tunnels allow both corporate and personal Internet access  Reduced carbon dioxide emissions from a decrease in commuting  Higher employee job satisfaction from ability to work at home  Improves business resiliency by providing continuous, secure connectivity in the event of disasters, pandemics, or inclement weather

Enterprise Wireless Mesh

  Allows access points to dynamically establish wireless connections without the need for a physical connection to the wired network  Available on select Cisco Aironet access points, Enterprise Wireless Mesh is ideal for warehouses, manufacturing floors, shopping centers, and any other location where extending a wired connection may prove difficult or aesthetically unappealing

Environmentally Responsible

  Organizations may choose to turn off access point radios to reduce power consumption during off-peak hours

Mobility, Security and Management for IPv6 & Dual-Stack Clients

  Secure, reliable wireless connectivity and consistent end-user experience  Increased network availability by proactive blocking of known threats  Equips administrators for IPv6 troubleshooting, planning, client traceability from a common wired and wireless management system

Guest Anchor and Wired Guest Access

  Supports up to 15 guest anchor Ethernet over IP (EoIP) tunnels forpath isolation of guest traffic from enterprise data traffic  Extends the guest access services to the wired clients on par with other WLAN Controllers

Product Specifications

Table 2 lists the product specification for Cisco 2500 Series Wireless Controllers.

Table 2.       Product Specifications for the Cisco 2500 Wireless Controller



Wireless Standards

IEEE 802.11a, 802.11ac, 802.11b, 802.11g, 802.11d, WMM/802.11e, 802.11h, 802.11k, 802.11n, 802.11r, 802.11u, 802.11w, 802.11ac


IEEE 802.3 10BASE-T, IEEE 802.3u 100BASE-TX specification, 1000BASE-T, and IEEE 802.1Q VLAN tagging

Data Request for Comments (RFCs)

  RFC 768 UDP  RFC 791 IP  RFC 2460 IPv6 (passthrough bridging mode only)  RFC 792 ICMP  RFC 793 TCP  RFC 826 ARP  RFC 1122 Requirements for Internet Hosts  RFC 1519 CIDR  RFC 1542 BOOTP  RFC 2131 DHCP  RFC 5415 CAPWAP Protocol Specification

Security Standards

  Wi-Fi Protected Access (WPA)  IEEE 802.11i (WPA2, RSN)  RFC 1321 MD5 Message-Digest Algorithm  RFC 1851 The ESP Triple DES Transform  RFC 2104 HMAC: Keyed Hashing for Message Authentication  RFC 2246 TLS Protocol Version 1.0  RFC 2401 Security Architecture for the Internet Protocol  RFC 2403 HMAC-MD5-96 within ESP and AH  RFC 2404 HMAC-SHA-1-96 within ESP and AH  RFC 2405 ESP DES-CBC Cipher Algorithm with Explicit IV  RFC 2406 IP Encapsulating Security Payload (ESP)  RFC 2407 Interpretation for ISAKMP  RFC 2408 ISAKMP  RFC 2409 IKE  RFC 2451 ESP CBC-Mode Cipher Algorithms  RFC 3280 Internet X.509 PKI Certificate and CRL Profile  RFC 3602 The AES-CBC Cipher Algorithm and Its Use with IPsec  RFC 3686 Using AES Counter Mode with IPsec ESP  RFC 4347 Datagram Transport Layer Security  RFC 4346 TLS Protocol Version 1.1


  WEP and Temporal Key Integrity Protocol-Message Integrity Check (TKIP-MIC): RC4 40, 104 and 128 bits (both static and shared keys)  Advanced Encryption Standard (AES): CBC, CCM, Counter Mode with Cipher Block Chaining Message Authentication Code Protocol (CCMP)  DES: DES-CBC, 3DES  Secure Sockets Layer (SSL) and Transport Layer Security (TLS): RC4 128-bit and RSA 1024- and 2048-bit  DTLS: AES-CBC

Authentication, Authorization, and Accounting (AAA)

  IEEE 802.1X  RFC 2548 Microsoft Vendor-Specific RADIUS Attributes  RFC 2716 PPP EAP-TLS  RFC 2865 RADIUS Authentication  RFC 2866 RADIUS Accounting  RFC 2867 RADIUS Tunnel Accounting  RFC 3576 Dynamic Authorization Extensions to RADIUS  RFC 3579 RADIUS Support for EAP  RFC 3580 IEEE 802.1X RADIUS Guidelines  RFC 3748 Extensible Authentication Protocol  Web-based authentication  TACACS support for management users


SNMP v1, v2c, v3

RFC 854 Telnet

RFC 1155 Management Information for TCP/IP-Based Internets

RFC 1156 MIB




RFC 1643 Ethernet MIB



RFC 2665 Ethernet-Like Interface types MIB

RFC 2674 Definitions of Managed Objects for Bridges with Traffic Classes, Multicast Filtering, and Virtual Extensions


RFC 2863 Interfaces Group MIB

RFC 3164 Syslog

RFC 3414 User-Based Security Model (USM) for SNMPv3

RFC 3418 MIB for SNMP

RFC 3636 Definitions of Managed Objects for IEEE 802.3 MAUs

Cisco private MIBs

Management Interfaces

  Designed for use with Cisco Wireless Control System  Web-based: HTTP/HTTPS individual device manager  Command-line interface: Telnet, SSH, serial port

Interfaces and Indicators

  Console port: RJ-45 connector  Network: Four 1 Gbps Ethernet (RJ-45)  LED indicators: Link Activity (each 1 Gigabit Ethernet port), Power, Status, Alarm

Physical and Environmental

Dimensions: 1.73 x 8.00 x 6.75 in. (43.9 x 203.2 x 271.5mm)

Weight: 3.5 lbs (with power supply)


  Operating: 32 to 104 °F (0 to 40°C)  Storage: -13 to 158°F (-25 to 70°C)


  Operating humidity: 10 to 95 percent, noncondensing  Storage humidity: Up to 95 percent

Power adapter: Input power: 100 to 240 VAC; 50/60 Hz

Heat dissipation: 72 BTU/hour

Regulatory Compliance


  UL 60950-1, 2nd Edition  EN 60950:2005

EMI and susceptibility (Class B):

  U.S.: FCC Part 15.107 and 15.109  Canada: ICES-003  Japan: VCCI  Europe: EN 55022, EN 55024

Ordering Information

Tables 3 and 4 provide ordering information for the Cisco 2500 Series Wireless Controllers.

Table 3.       Ordering Information for Cisco 2500 Series Wireless Controllers

Part Number


Cisco SMARTnet® 8x5xNBD


2500 Series Wireless Controller for up to 5 Cisco access points



2500 Series Wireless Controller for up to 15 Cisco access points



2500 Series Wireless Controller for up to 25 Cisco access points



2500 Series Wireless Controller for up to 50 Cisco access points



Cisco 2500 Series Wireless Controller for High Availability


* Please note AIR-CT2504-HA-K9 does not support access point and client stateful switchover.

Table 4.       Ordering Information for Cisco 2500 Series Wireless Controllers: Optional Accessories

Part Number

Product Name


Cisco 2504 Wireless Controller Rack Mount Bracket


Cisco 2504 Wireless Controller Spare Power Supply (not necessary with original order as 1 power supply is included)

Additive Capacity Upgrade Licenses

Tables 5 and 6 summarize additive capacity upgrade licenses that are available for the Cisco 2500 Series.

Table 5.       Ordering Information for Cisco 2500 Series Wireless Controllers: Access Point Adder Licenses (e-Delivery PAKs)

Part Number