Manualshelf

Datasheet

ManualsBrandsCisco ManualsNetworkingSRW2008-K9-NA
12345678910
© 2011 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. Page 7 of 14
Data Sheet
Feature Description
STP Bridge Protocol Data Unit
(BPDU) Guard
A security mechanism to protect the network from invalid configurations. A port enabled for BPDU
Guard is shut down if a BPDU message is received on that port
Secure Core Technology (SCT) Ensures that the switch will receive and process management and protocol traffic no matter how
much traffic is received
Layer 3 isolation* Allow/disallow routing between IP subnets or directly connected IP networks
Layer 2 isolation Private VLAN
Edge (PVE) with community VLAN
PVE (also known as protected ports) provides Layer 2 isolation between devices in the same
VLAN, supports multiple uplinks
Port security Locks MAC addresses to ports, and limits the number of learned MAC addresses
RADIUS/TACACS+ Supports RADIUS and TACACS authentication. Switch functions as a client
Storm control Broadcast, multicast, and unknown unicast
DoS prevention DoS attack prevention
Congestion avoidance A TCP congestion avoidance algorithm is required to minimize and prevent global TCP loss
synchronization.
ACLs Support for up to 512 rules
Drop or rate limit based on source and destination MAC, VLAN ID or IP address, protocol, port,
differentiated services code point (DSCP)/IP precedence, TCP/ UDP source and destination ports,
802.1p priority, Ethernet type, Internet Control Message Protocol (ICMP) packets, IGMP packets,
TCP flag
Quality of Service
Priority levels 4 hardware queues
Scheduling Strict priority and weighted round-robin (WRR)
Queue assignment based on DSCP and class of service (802.1p/CoS)
Class of service Port based; 802.1p VLAN priority based; IPv4/v6 IP precedence/type of service (ToS)/DSCP
based; Differentiated Services (DiffServ); classification and re-marking ACLs, trusted QoS
Rate limiting Ingress policer; egress shaping and rate control; per VLAN, per port, and flow based
Standards
Standards IEEE 802.3 10BASE-T Ethernet, IEEE 802.3u 100BASE-TX Fast Ethernet, IEEE 802.3ab
1000BASE-T Gigabit Ethernet, IEEE 802.3ad LACP, IEEE 802.3z Gigabit Ethernet, IEEE
802.3x Flow Control, IEEE 802.1D (STP, GARP, and GVRP),IEEE 802.1Q/p VLAN, IEEE
802.1w RSTP, IEEE 802.1s Multiple STP, IEEE 802.1X Port Access Authentication, IEEE
802.3af, IEEE 802.3at, RFC 768, RFC 783, RFC 791, RFC 792, RFC 793, RFC 813, RFC 879,
RFC 896, RFC 826, RFC 854, RFC 855, RFC 856, RFC 858, RFC 894, RFC 919, RFC 922,
RFC 920, RFC 950, RFC 951, RFC 1042, RFC 1071, RFC 1123, RFC 1141, RFC 1155, RFC
1157, RFC 1350, RFC 1533, RFC 1541, RFC 1542, RFC 1624, RFC 1700, RFC 1867, RFC
2030, RFC 2616, RFC 2131, RFC 2132, RFC 3164, RFC 3411, RFC 3412, RFC 3413, RFC
3414, RFC 3415, RFC 2576, RFC 4330, RFC 1213, RFC 1215, RFC 1286, RFC 1442, RFC
1451, RFC 1493, RFC 1573, RFC 1643, RFC 1757, RFC 1907, RFC 2011, RFC 2012, RFC
2013, RFC 2233, RFC 2618, RFC 2665, RFC 2666, RFC 2674, RFC 2737, RFC 2819, RFC
2863, RFC 1157, RFC 1493, RFC 1215, RFC 3416
IPv6
IPv6 IPv6 host mode
IPv6 over Ethernet
Dual IPv6/IPv4 stack
IPv6 neighbor and router discovery (ND)
IPv6 stateless address auto-configuration
Path maximum transmission unit (MTU) discovery
Duplicate address detection (DAD)
ICMP version 6
IPv6 over IPv4 network with Intra-Site Automatic Tunnel Addressing Protocol (ISATAP) support
IPv6 QoS Prioritize IPv6 packets in hardware
IPv6 ACL Drop or rate limit IPv6 packets in hardware
Multicast Listener Discovery (MLD)
snooping
Deliver IPv6 multicast packets only to the required receivers
IPv6 applications Web/SSL, Telnet server/SSH, ping, traceroute, Simple Network Time Protocol (SNTP), Trivial File
Transfer Protocol (TFTP), SNMP, RADIUS, syslog, DNS client, protocol-based VLANs