HP ProLiant BL p-Class GbE2 Interconnect Switch Compatibility with Cisco-based Networks - White Paper
6
devices. To determine the load balancing decisions, varying methods are used. Catalyst switches may
use the packet’s source MAC (SMAC) address, destination MAC (DMAC) address, source IP (SIP)
address, destination IP (DIP) address, or a combination of these methods. The GbE2 Interconnect
Switch uses a combination of SMAC and DMAC addresses to make the load balancing decision.
Security
The GbE2 Interconnect Switch supports remote authentication dial-in user service (RADIUS) client,
communicating to the network RADIUS server to authenticate and authorize a remote administrator
using the protocol definitions specified in RFC 2138 and 2866. The GbE2 Interconnect Switch will
integrate into an existing Cisco network that uses this industry-standard authentication and
authorization protocol. As is performed on the Catalyst switches, the RADIUS configuration on the
GbE2 Interconnect Switch requires the user to specify the IP address of the RADIUS server and the
RADIUS secret. For enhanced security, the GbE2 Interconnect Switch permits modification of the
RADIUS application port, user-configurable RADIUS server retry and time-out values, and support for
SecurID if the RADIUS server can perform an ACE/server client proxy. Both a primary and a
secondary RADIUS server may be configured.
The industry-standard RADIUS protocol is an alternative to Cisco’s proprietary Terminal Access
Controller Access Control System Plus (TACACS+) method. Unfortunately, RADIUS and TACACS+ are
not compatible. TACACS+ interoperability is planned for a future GbE2 Interconnect Switch firmware
upgrade.
Management
The operating system (OS) of the GbE2 Interconnect Switch provides multiple industry-standard
methods to easily configure and manage the GbE2 Interconnect Switch. As with many Catalyst
switches, the GbE2 Interconnect Switch provides the ability to store in memory redundant OS images
and configuration files. The GbE2 Interconnect Switch may be managed and configured via:
1. Command Line Interface (CLI)
2. Browser based interface (BBI)
3. Simple Network Management Protocol (SNMP)
The GbE2 Interconnect Switch CLI consists of a hierarchal menu/command-based hybrid interface that
has a Linux/Unix type look and feel. The hybrid approach permits new users to see available
parameters for each command and walks them through command parameters one-by-one. It also
allows advanced users to perform command stacking and abbreviations similar to Cisco devices.
Industry-standard scripting capabilities are supported for simplified configuration management and
switch deployment.
The web console or BBI can be utilized via Internet Explorer or Netscape Navigator over a TCP/IP
network. Thus, access is possible throughout the Cisco-based network. Like the CLI, the BBI provides
the ability to view and alter GbE2 Interconnect Switch information and settings.
The GbE2 Interconnect Switch supports industry-standard SNMP management information bases
(MIBs), HP enterprise switch MIBs, and environmental traps. The SNMP agents are preinstalled in the
interconnect switch firmware. Redundant community strings and SNMP trap manager hosts can be
configured per switch. This capability allows the interconnect switch to be monitored remotely from an
SNMP network management station such as HP Systems Insight Manager
7
and HP OpenView
8
.
Additionally, any SNMP-based manager within CiscoWorks or other third party offering may also be
used provided it can read industry-standard MIBs and process industry-standard traps.
7
Available at http://h18000.www1.hp.com/products/servers/management/hpsim/index.html.
8
Available at http://www.hp.com/products1/softwareproducts/software/openview/index.html.