Cisco 2950SX 24 - Catalyst Switch - Stackable Instrukcja Użytkownika Pobierz pdf (Strona 9)

Cisco Systems, Inc.

Page 9 of 17

Service Security

Network-wide security features • Filtering of incoming trafﬁc ﬂows based on Layer 2, Layer 3, or Layer 4 ACPs

prevents unauthorized data ﬂows. Up to four ACPs are supported in

conﬁguring either QoS or security ﬁlters.

– The following Layer 2 ACPs or a combination can be used for security

classiﬁcation of incoming packets: source MAC address, destination MAC

address, and 16-bit Ethertype.

– The following Layer 3 and Layer 4 ﬁelds or a combination can be used for

security classiﬁcation of incoming packets: source IP address, destination

IP address, TCP source or destination port number, UDP source, or

destination port number.

• Private VLAN edge provides security and isolation between ports on a

switch, ensuring that voice trafﬁc travels directly from its entry point to the

aggregation device through a virtual path and cannot be directed to a

different port.

• IEEE 802.1x for dynamic port-based security.

• Support for “secure ports” prevents unauthorized stations from accessing

the switch by restricting the number of concurrent MAC addresses allowed

to access the port. Up to 132 addresses can be conﬁgured per port.

• STRG prevents edge devices not in the network administrator'scontrol from

becoming STP root nodes.

• The STP PortFast/ BPDU guard feature disables access ports with STP

PortFast enabled upon reception of a BPDU, and increases network

reliability, manageability, and security.

• Multilevel security on console access prevents unauthorized users from

altering the switch conﬁguration.

• TACACS+ and Remote Access Dial-In User Service (RADIUS) authentication

enables centralized control of the switch and restricts unauthorized users

from altering the conﬁguration.

Service Management

Superior manageability • Cisco IE 2100 support for ﬂow- through provisioning and integration with

OSS applications via programmatical interfaces.

• SNMP v1, v2c, v3, and Telnet interface support delivers comprehensive

in-band management, and a CLI-based management console provides

detailed out-of-band management.

• Manageable through CiscoWorks network management software on a

per-port and per-switch basis providing a common management interface

for Cisco routers, switches, and hubs.

• Comprehensive MIBs enable the service provider to collect trafﬁc

information on the Cisco Catalyst 2950 Series for various billing methods.

Feature Benefit

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17

Komentarze do niniejszej Instrukcji

Brak uwag

Cisco 2950SX 24 - Catalyst Switch - Stackable Instrukcja Użytkownika Strona 9

Komentarze do niniejszej Instrukcji

Powiązane produkty i podręczniki dla Networking Cisco 2950SX 24 - Catalyst Switch - Stackable