Datasheet
or restrictive appliance-based implementations. The value of unsampled,
real-time NetFlow monitoring is the visibility into exactly what traffic is
traversing the network. If something abnormal occurs it will be captured
by NetFlow and appropriate action can be applied. Additionally, NetFlow
can be used for capacity planning, allowing the network manager to
monitor the traffic flows and volumes of traffic in the network and
understand where the network needs to be reconfigured or upgraded.
This saves time and money by enabling administrators to know when and
where upgrades might be needed.
Network Traffic Monitoring - Port Mirroring
Port mirroring is an integrated diagnostic tool for tracking network
performance and security that is especially useful for fending off network
intrusion and attacks. It is a low-cost alternative to network taps and
other solutions that may require additional hardware, disrupt normal
network operation, affect client applications or may introduce a new
point of failure into your network.
Port mirroring is highly scalable and easy to monitor . It is especially
convenient to use in networks where ports are scarce. Ports that can be
configured to participate in mirroring include physical ports, virtual ports
andhostports—VLANinterfaces,andintrusiondetectionports.With
this feature, analyzing bi-directional traffic and ensuring connectivity
between, for example, a departmental switch and its high speed uplink to
a backbone switch becomes simple and cost effective process.
K-Series port mirroring relationships can be set on inbound traffic,
outboundtrafc,orbothforupto4portmirrorsconsistingofone-to-one,
one-to-many, many-to-one, IDS or policy mirrors.
Multi-layer packet classification - enables the delivery
of critical applications to specific users via traffic
awareness and control
• User,port,anddeviceLevel(Layer2through4packetclassication)
• QoSmappingtopriorityqueues(802.1p&IPToS/DSCP)upto11
queues per port
• Multiplequeuingmechanisms(SPQ,WFQ,WRRandHybrid)
• GranularQoS/ratelimiting
• VLANtopolicymapping
Switching/VLAN services - provides high performance
connectivity, aggregation, and rapid recovery services
• Extensiveindustrystandardscompliance(IEEEandIETF)
• Inboundandoutboundbandwidthratecontrolperow
• VLANservicessupport
- Linkaggregation(IEEE802.3ad)
- Multiplespanningtrees(IEEE802.1s)
- Rapidrecongurationofspanningtree(IEEE802.1w)
•ProviderBridges(IEEE802.1ad),Q-in-QReady
•Flowsetupthrottling
•DHCPServer
IP Routing - provides dynamic traffic optimization,
broadcast containment and efficient network resilience
• Standardroutingfeaturesincludestaticroutes,RIPv2,RIPngand
Multicastroutingsupport(DVMRP,IGMPv1/v2/v3),PolicyBased
RoutingandRouteMapsandVRRP
• LicensedroutingfeaturesincludeOSPFv2/v3,VRFandPIM-SM
Security (User, Network and Management)
• Usersecurity
- Authentication(802.1X,MAC,PWA+andCEP),MAC(Staticand
Dynamic) port locking
- Multi-userauthentication/policies
• Networksecurity
- Access Control Lists (ACL) – basic and extended
- Policy-based security services (examples: spoofing, unsupported
protocol access, intrusion prevention, DoS attacks limits)
• ManagementSecurity
- SecureaccesstotheK-SeriesviaSSH,SNMPv3
Management, Control and Analysis – provide
streamlined tools for maintaining network availability
and health
• Conguration
- Industry-standard CLI and web management support
- Multiplermwareimageswitheditablecongurationles
• NetworkAnalysis
- SNMPv1/v2c/v3,RMON(9groups)andSMON(rfc2613)VLAN
and Stats
- Port/VLAN mirroring (one-to-one, one-to-many, many-to-many)
- Unsampled NetFlow on every port with no impact on system
switching and routing performance
• Automatedset-upandreconguration
- ReplacementI/Omodulewillautomaticallyinheritprevious
modules configuration
FeatureSummary
Page 3