Specifications

ManualsBrandsCrystal Image Technologies ManualsComputer equipmentKVM-16H

131

132

133

134

135

136

137

138

139

140

Technology Upgrade Data Network 28 6200-5

1224_01

3. Jumbo packet support — improves the performance of large data transfers;

supports frame size of up to 9220 bytes

4. IEEE 802.1v protocol VLANs — isolate select non-IPv4 protocols automatically

into their own VLANs

5. Rapid Per-VLAN Spanning Tree (RPVST+) — allows each VLAN to build a

separate spanning tree to improve link bandwidth usage; is compatible with

PVST+

P. Layer 3 routing

1. Static IP routing — provides manually configured routing; includes ECMP

capability

2. Routing Information Protocol (RIP) — provides RIPv1 and RIPv2 routing

Q. Security

1. IEEE 802.1X — uses an IEEE 802.1X supplicant on the client in conjunction with a

RADIUS server to authenticate in accordance with industry standards

2. Web-based authentication — provide a browser-based environment, similar to

IEEE 802.1X, to authenticate clients that do not support the IEEE 802.1X

supplicant

3. MAC-based authentication — authenticates the client with the RADIUS server

based on the client's MAC address

R. Authentication flexibility —

1. Multiple IEEE 802.1X users per port — provides authentication of multiple IEEE

802.1X users per port; prevents a user from "piggybacking" on another user's

IEEE 802.1X authentication

2. Concurrent IEEE 802.1X, Web, and MAC authentication schemes per port —

switch port will accept up to 32 sessions of IEEE 802.1X, Web, and MAC

authentications

3. Access control lists (ACLs) — provide IP Layer 3 filtering based on

source/destination IP address/subnet and source/destination TCP/UDP port

number

4. Source-port filtering — allows only specified ports to communicate with each other

5. IEEE 802.1X, MAC, or Web authentication — provides concurrent network access

control and Web authentication of up to 24 clients per port

6. Secure Sockets Layer (SSL) — encrypts all HTTP traffic, allowing secure access

to the browser-based management GUI in the switch

7. STP BPDU port protection — blocks Bridge Protocol Data Units (BPDUs) on ports

that do not require BPDUs, preventing forged BPDU attacks

8. DHCP protection — blocks DHCP packets from unauthorized DHCP servers,

preventing denial-of-service attacks

9. Dynamic ARP protection — blocks ARP broadcasts from unauthorized hosts,

preventing eavesdropping or theft of network data

10. STP root guard — protects the root bridge from malicious attacks or configuration

mistakes

11. Identity-driven ACL — enables implementation of a highly granular and flexible

access security policy and VLAN assignment specific to each authenticated

network user

12. Per-port broadcast throttling — selectively configures broadcast control on heavy

traffic port uplinks

S. User switches shall be HP Procurve #2920 series or equal.

1. Where multiple switches are in the same communications room provide each

switch with a 2-port Stacking module

2. Equip switches with stacking cables and fully connect said cables.

3. Equip with Transceivers as required for Multimode and Singlemode fiber

connectivity.

2.04 UPS SYSTEM

A. Contractor shall provide a UPS system that will serve the Ethernet switches as shown on