Datasheet
Table Of Contents
- Cisco ESW2 Series Advanced Managed Switches
- Cisco ESW2 Series Advanced Managed Switches
- Features and Benefits
- Easy Deployment and Use
- Data Center and Mobile Switching Center Optimized Solution
- High Reliability and Resiliency
- Simplified IT Operation
- True Stacking
- Strong Security
- Networkwide Automatic Voice Deployment
- IPv6 Support
- Advanced Layer 3 Traffic Management
- Power Efficiency
- Expandability
- Peace of Mind and Investment Protection
- Cisco Limited Lifetime Hardware Warranty
- World-Class Service and Support
- Product Specifications
- Ordering Information
- For More Information
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 4 of 16
Strong Security
Cisco ESW2 Series Switches provide the advanced security features that you need to protect your business data
and keep unauthorized users off the network:
●
Embedded Secure Sockets Layer (SSL) encryption protects management data traveling to and from the
switch.
●
Extensive access control lists (ACLs) restrict sensitive portions of the network to keep out unauthorized
users and guard against network attacks.
●
Guest VLANs let you provide Internet connectivity to nonemployee users while isolating critical business
services from guest traffic.
●
Support for advanced network security applications, such as IEEE 802.1X port security, tightly limits
access to specific segments of your network.
●
Advanced defense mechanisms, including dynamic Address Resolution Protocol (ARP) inspection,
IP Source Guard, and Dynamic Host Configuration Protocol (DHCP) snooping, detect and block deliberate
network attacks. Combinations of these protocols are also referred to as IPMB (IP-MAC-port binding).
●
Time-based ACLs and port operation restrict access to the network during pre-designated times, such as
business hours.
●
Uniform MAC address-based security can be applied automatically to mobile users as they roam between
wireless access points.
●
Secure Core Technology (SCT) helps ensure that the switch is able to process management traffic in the
face of a denial-of-service attack.
●
Private VLAN Edge (PVE) provides Layer 2 isolation between devices on the same VLAN.
●
Storm control can be applied to broadcast, multicast, and unknown unicast traffic.
●
Protection of management sessions uses Radius, TACACS+, and local database authentication as well as
secure management sessions over SSL, SSH, and SNMPv3.
●
DOS (denial-of-service) attack prevention maximizes network uptime in the presence of an attack.
Networkwide Automatic Voice Deployment
Using a combination of CDP, Link Layer Discovery Protocol-Media Endpoint Discovery (LLDP-MED), Auto
Smartports, and VSDP (Voice Services Discovery Protocol, a unique Cisco protocol), customers can deploy an
end-to-end voice network dynamically. The switches in the network automatically converge around a single-voice
VLAN and QoS parameters and then propagate them out to the phones on the ports where they are discovered.
For example, automated voice VLAN capabilities let you plug any IP phone (including third-party phones) into your
IP telephony network and receive an immediate dial tone. The switch automatically configures the device with the
right VLAN and QoS parameters to prioritize voice traffic.
IPv6 Support
As the IP address scheme evolves to accommodate a growing number of network devices, the Cisco ESW2
Series can support the transition to the next generation of networking and operating systems, such as Windows 7,
Vista, and Linux. These switches continue to support previous-generation IPv4, allowing you to evolve to the new
IPv6 standard at your own pace, and helping ensure that your current network will continue to support your
business applications in the future. Cisco ESW2 Series Switches have successfully completed rigorous IPv6
testing and have received the USGv6 and IPv6 Gold certification.