I want to deploy 150 access points in a school environment and want to go with the 335 model. Due to the number of APs I'm assuming it makes sense to use a physical controller so planning on using the 7210 mobility controller. We may need to setup VPN connection to another site running a Cisco ASA firewall. Here are my questions:
1. Can i use the IAP335 with the physical controller? Is there any benefit of buying the IAP model rather than just the controller-based AP model, other than the fact that i can move an AP to a different location and run it independently?
2. I see the 7210 controller has some firewall policy enforcement firewall protection and layer3 capabilities. Is there any advantage of putting a Cisco ASA firewall between the controller and ISP, or does it make better sense to connect the controller directly to ISP?
3. Can i setup a site-to-site VPN from the Controller to a Cisco ASA device?
4. I'm currently planning on using Cisco catalyst switches, mainly because that's what I'm used to. Can you think of any advantages of using Aruba switches instead? If so what model would you recommend?
Looking forward to hearing your thoughts.
Thanks