CX 8325 Switch Series Data Sheet

ManualsBrandsARUBA ManualsHardwareHPE 8325-48Y8C switch - 48 ports - Managed - rack-mountable - TAA Compliant

DATA SHEET

ARUBA 8325 SWITCH SERIES

Layer 3 Routing

• Policy Based Routing (PBR)

Enables using a classier to select trac that

can be forwarded based on policy set by the

network administrator

• Static IPv4 routing

Provides simple manually congured IPv4 routing

• Open shortest path rst (OSPF)

Delivers faster convergence; uses link-state routing

Interior Gateway Protocol (IGP), which supports ECMP,

NSSA, and MD5 authentication for increased security and

graceful restart for faster failure recovery

• Border Gateway Protocol 4 (BGP-4)

Delivers an implementation of the Exterior Gateway

Protocol (EGP) utilizing path vectors; uses TCP for

enhanced reliability for the route discovery process;

reduces bandwidth consumption by advertising only

incremental updates; supports extensive policies for

increased exibility; scales to very large networks

• 6in4 tunnels

Supports the tunneling of IPv6 trac in an IPv4 network

• IP performance optimization

Provides a set of tools to improve the performance of IPv4

networks; includes directed broadcasts, customization

of TCP parameters, support of ICMP error packets, and

extensive display capabilities

• Static IPv6 routing

Provides simple manually congured IPv6 routing

• Dual IP stack

Maintains separate stacks for IPv4 and IPv6 to ease the

transition from an IPv4-only network to an IPv6-only

network design

• OSPFv3

Provides OSPF support for IPv6

• Equal-Cost Multipath (ECMP)

Enables multiple equal-cost links in a routing environment

to increase link redundancy and scale bandwidth

• Generic Routing Encapsulation (GRE)

Enables tunneling trac from site to site over a

Layer 3 path

Security

• TAA Compliance

The Aruba 8325 with ArubaOS-CX, a TAA compliant

product, uses FIPS 140-2 validated cryptography for

protection of sensitive information

• Access control list (ACL) Features

- Supports powerful ACLs for both IPv4 and IPv6. Supports

creation of object groups representing sets of devices

like IP addresses. For instance, IT management devices

could be grouped in this way

- ACLs can also protect control plane services such as

SSH, SNMP, NTP or web servers

• Remote Authentication Dial-In User Service (RADIUS)

Eases security access administration by using a password

authentication server

• Terminal Access Controller Access-Control System

(TACACS+)

Delivers an authentication tool using TCP with

encryption of the full authentication request, providing

additional security

• Management access security

- ArubaOS-CX provides for both on-box as well as

o- box authentication for administrative access.

RADIUS or TACACS+ can be used to provide encrypted

user authentication

- Additionally, TACACS+ can also provide user

authorization services

• Secure shell (SSHv2)

Uses external servers to securely log in to a remote

device; with authentication and encryption, it protects

against IP spoong and plain-text password interception;

increases the security of Secure FTP (SFTP) transfers

Multicast

• Internet Group Management Protocol (IGMP)

Enables establishing multicast group memberships in IPv4

networks; supports IGMPv1, v2, and v3

• Multicast Listener Discovery (MLD)

Enable discovery of IPv6 multicast listeners; supports

MLDv1 and v2

• IGMP/MLD Snooping

Prevent ooding of multicast trac to non-listening ports

• Protocol Independent Multicast (PIM)

Protocol Independent Multicast for IPv4 and IPv6 supports

one-to-many and many-to-many media casting use cases

such as IPTV over IPv4 and IPv6 networks. Support for PIM

Sparse Mode (PIM-SM, IPv4 and IPv6)