Vision for Network Modernization at UW–‍Madison

The Data Center Fabric project aims to develop a plan to meet Wisconsin RISE Initiative and other campus needs, creating the unfettered application access, and Virtual Machine (VM) mobility infrastructure that UW–‍Madison requires. It will enhance network segmentation to enhance security, network performance, and improve fault tolerance – meaning if one data center goes down, the rest will remain protected, connected and available. As a result, researchers can count on highly available and reliable infrastructure to ensure their important research remains unconstrained and uninterrupted by technology.

Accomplishments, work and timeline

Accomplishments

• Kick-off
• Fabric Education
• High level requirements
• Technical discovery sessions with Cisco and digital twin test lab setup

Work in progress

• Continued refinement of high-level requirements
• Setup and evaluation of the Nexus Dashboard Fabric Controller
• Functional discovery testing of fabric behavior and operational tooling in the digital twin lab
• Ongoing collaboration with Cisco to address discovery findings and lab limitations

Upcoming work

• Completion of remaining functional discovery testing
• Design, tooling and cost decision support for leadership
• Continued coordination with Cisco and internal stakeholders

Timeline

• Discovery, tool evaluation & design validation – through April-May 2026
• Proof of Concept decision/execution (if required) – April-May 2026
• Final architecture & tooling decision and whitepaper – June-July 2026

This pre-design project with UW–‍Madison Facilities Planning and Management (FP&M) will formally audit a selected group of network telecommunication rooms in 16 buildings against campus (Division 27) standards regarding space, power, cooling (HVAC), and backup power. The 16 buildings are a representative sample of the nearly 1000 data network closets in over 180 buildings providing campus network service.

The project will develop technical and budget information to ultimately ensure UW networks have ample physical facilities to meet growing network demands for wired network connections, security cameras, and higher capacity wireless network devices serving over 90,000 users daily.

Project deliverables

• Architectural / Engineering report identifying space, power, cooling and backup power deficiencies per telecom room with remediation options and budgetary costs

Accomplishments, work and timeline

Accomplishments

• Updated Division 27 (communications) specifications
• Identified 16 buildings to provide a representative sample of all campus TRs to develop a formal capital project plan and budget request

Work in progress

• Architectural / engineering bid solicitation for consultant to perform an evaluation and develop a report on findings, remediation options and budgetary costs

Upcoming work

• Project Architectural / Engineering firm kickoff

Timeline

• Substantial completion: Fall 2026
• Project Completion: Spring 2027

UW requires reliable, scalable and robust firewall services to help protect network infrastructure and maintain data privacy and integrity for research, academic and administrative purposes. Currently, firewalls are “hyper-virtualized” and tightly coupled in the campus network routing infrastructure and logically appear in front of every School / College / Division (S/C/D) local area network (LAN).

The Firewall Architecture Design Discovery Project will collaboratively evaluate firewall architecture design options and identify a future design direction for campus deployment with a specific vendor. The outcome of this project will inform a future solution implementation project.

Project deliverables

• Whitepaper describing different firewall architecture design options considered for select vendor(s) and a recommended solution for implementation

Timeline

• Phase 1: Initiating and Planning – COMPLETE
  • Establish charter
  • Initiate project
  • Define Firewall Design Group membership
• Phase 2: Discovery & discussion – COMPLETE
  • Assemble Firewall Design Group (FDG)
  • Peer interviews
  • Problem and requirements discovery
• Phase 3: Solution Design – IN PROGRESS – June 2026
  • Develop recommendation
  • Define Timeline/Roadmap
  • Iterate solution
• Phase 4: Whitepaper of results – August 2026
  • Finalize recommendation
  • Author whitepaper
  • Present results

Current network segmentation has scaling and flexibility limitations and is not ready for Smart Access (zero trust) requirements. As a result, the team will evaluate more modern and flexible alternative network separation (segmentation) options to improve network segmentation scalability, reliability, flexibility, and programmability.

The team is discussing business and technical requirements needs, as well as issues, with campus.

The UW campus network currently has wired and wireless (WiFi) hardware in service that has reached its end-of life (EOL) when the manufacturer stops providing hardware and software support, updates, and discontinues manufacture and sale of that product. EOL hardware is more susceptible to unplanned failures resulting in network outages and vulnerable to cybersecurity attacks and breaches.

By replacing aging network hardware, faculty, staff and students will enjoy a more reliable, scalable and secure network service.

Project deliverables

• Replace a wide range of network devices nearing or exceeding manufacturers’ End of Service Life timelines to ensure ongoing security updates and serviceability.

Accomplishments and work

Accomplishments

• Upgrade ~1300 aging wireless access points (Aruba AP-2xx/3xx)
• Aruba AP-2xx Wireless Access Point Replacement, complete UW-Housing facility upgrades

Work in progress

• Replace aging Cisco 3750, 3850, 4500x switches – nearing completion
• Replace aging Cisco 3650access/3850radial switches – Initiating
• Upgrade aging wireless access points (Aruba AP-3xx) – In Progress

Upcoming work

• Aruba AP Replacement, Next Wave – Determining Scope/Drafting Charter, Jan 2026
• 3650 Replacement Project, Kickoff, April 2026

   

UW–‍Madison requires a scalable network with ample capacity to support research connections and large data movements with collaborators and labs across the world, for academic connections to our learning management system – Canvas, and for administrative connectivity to systems like Workday in the cloud.

This project will upgrade UW’s network capacity for on and off-campus research, academic, and administrative purposes to 400 Gbps to ensure our network scales to meet initial and future capacity demands. The project will also replace aging network equipment reaching the end of it’s useful life to maintain reliable network service for all users.

Project deliverables

• Replace aging BOREAS-Net off-campus research network hardware to support 400 Gbps connections
• Replace aging OneNeck off-campus research data center interconnect (DCI) network connectivity to campus to support 400 Gbps connections
• Replace aging campus “border routers” with 400 Gbps infrastructure
• Upgrade campus network to support 400 Gbps connectivity

Accomplishments, work and timeline

Accomplishments

• BOREAS-Net: Completed optical network design, RFP and equipment purchase
• OneNeck DCI: Completed network design, equipment purchase
• Border Routers: Configured, installed and placed into service new routers, migrated Research Backbone Network (RBN) onto new border routers
• BOREAS-NET: Receive training and stage network equipment, Summer 2025

Work in progress

• OneNeck DCI: Install and migrate onto new optical network infrastructure, Winter 2025
• BOREAS-NET: Install and migrate onto new optical network infrastructure, Spring 2026

Upcoming work

• Campus Network Upgrades: Upgrading Research Backbone Network and Distributed Data Center Network (DDN) to accommodate expected network traffic growth, Fall 2025