Datasheet
Data Sheet
© 2008 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information. Page 6 of 18
Security Across the Service Portfolio with Granular Control for the Access
Environment
The Cisco Catalyst 3750 Series supports a comprehensive set of security features for connectivity
and access control, including access control lists (ACLs), authentication, port-level security, and
identity-based network services with 802.1X and extensions. The ACLs allow service providers to
restrict unwanted traffic into their networks by denying packets based on source and destination
MAC addresses, IP addresses, or TCP/User Datagram Protocol (UDP) ports. All ACL lookups are
done in hardware, so forwarding and routing performance is not compromised when implementing
ACL-based security in the network.
Robust Service Management Options
The Cisco Catalyst 3750 Metro Series provides outstanding service management capabilities
through Cisco CNS 2100 Series Intelligence Engine support and Simple Network Management
Protocol (SNMP). Service providers will be able to smoothly integrate the Cisco Catalyst 3750
Metro Series into their operations support systems (OSSs) and enable improved flow-through
provisioning. The Cisco CNS 2100 Series network device allows service providers to effectively
manage a network of Cisco IOS Software devices, including the Cisco Catalyst 3750 Metro Series.
It is a completely self-contained unit that includes a task-oriented Web GUI, a programmable
Extensible Markup Language (XML) interface, configuration template management, and an
embedded repository. For comprehensive in-band management, service providers also can
manage the Cisco Catalyst 3750 Metro Series using SNMP Version 2 and Version 3 and the
Telnet interface. A CLI-based management console provides detailed out-of-band management.
For service provisioning on the Cisco Catalyst 3750 Metro Series, service providers can use Cisco
IP Solution Center (ISC). Cisco IP Solution Center is a family of intelligent network management
applications that help reduce overall administration and management costs by providing
automated resource management and rapid profile-based provisioning capabilities that speed
deployment and time to market of MPLS and Metro Ethernet technologies.
Ethernet Operations, Administration, Maintenance, and Provisioning
The advent of Ethernet as a metropolitan and wide-area networking technology has accelerated
the need for a new set of operations, administration, maintenance, and provisioning (OAM&P)
protocols. Service provider networks are large and complex with a wide user base, and they often
involve different operators that must work together to provide end-to-end services to enterprise
customers. As enterprise end customers demand higher availability of services, service providers
must reduce the mean time to repair (MTTR) and increase service availability. Ethernet OAM&P
features address these challenges and enable service providers to offer carrier-grade services.
The Cisco Catalyst 3750 Metro Series supports industry-standard OAM&P tools, including 802.1ag
Connectivity Fault Management and Ethernet Local Management Interface (E-LMI) protocol.
802.1ag provides the tools to monitor and troubleshoot end-to-end Ethernet networks. It allows
service providers to check for end-to-end connectivity, isolate network issues, and identify
customers affected by network issues. The E-LMI protocol, developed by the MEF, has substantial
benefits to both the service provider as well as the end customer. E-LMI enables the service
provider to automatically configure the customer-edge and CPE devices to match the subscribed
service. This automatic provisioning not only reduces the effort to set up the service, but also
reduces the amount of coordination required between the service provider and enterprise
customer.