Manualshelf

Specifications

ManualsBrandsExtreme Networks ManualsComputer equipmentBlackDiamond 6800 G24T3
12345678910
10 ExtremeWare 7.4.3 Installation and Release Notes
Overview
NOTE
Vista support for stacking is not available.
HTTPS/SSL for Network Login
HTTPS access is provided through Secure Socket Layer (SSLv3) and Transport Layer Security (TLS1.0).
These protocols enable clients to verify the authenticity of the server to which they are connecting,
thereby ensuring that users are not compromised by intruders. SSL supports encryption of the data
exchanged between the server and the client, protecting the network login credentials from exposure on
the network media.
Source IP Address Protection
Another type of IP address security is automatically placing source IP address filters on all ports. This
feature, called source IP lockdown, allows only traffic from a valid DHCP-assigned address or an
authenticated static IP address to enter the network. In this way, the network is protected from attacks
that use random source addresses for their traffic. When source IP lockdown is enabled, end systems
that have a DHCP address or a statically configured IP address can access the network, but all data
traffic from a manually configured source IP lockdown is dropped at the switch.
Source IP lockdown is linked to thedisable ARP learning feature. The same database created when
you disable ARP learning is also used by the source IP lockdown feature to create a ACLs that permit
traffic from DHCP clients or from statically configured IP ARP entries. All other traffic is dropped.
Summit 400 Link Fault Signaling
Link Fault Signaling is a function of the 10 Gigabit Ethernet port that is defined in the Reconciliation
Sublayer, which is implemented on the MAC chip. The local PHY transmits fault messages up to the
Reconciliation Sublayer. If the fault is a local fault, the link is brought down locally and a remote fault is
automatically sent to the link partner by the MAC. If the fault is a remote fault, the link is marked as
being down for the port. All upper layers are notified of the link down state. When a link is marked as
up, all upper layers are notified once the remote fault is corrected.
The 10 Gigabit Ethernet link is polled every 100 milliseconds (ms) for link on the Summit 400 switch.
When the link is queried, the remote fault is also queried. Link down is indicated to the upper layers if
there is a local fault, remote fault, or a true loss of link. Link up is indicated to the upper layers if the
fault is removed or link up is determined. In the event that LFS is disabled for remote fault or local
fault, a fault will not bring down the link.
EAPS Spatial Reuse
The EAPSv2 spatial reuse feature allows you to configure multiple EAPS domains on the same physical
ring. This configuration allows you to use unused ring bandwidth when the ring is complete. When
there is only one EAPS domain on the ring, in the complete state, the LAN segment connecting the
secondary port of the master switch to the transit switch remains unused. In the complete state, the
master keeps its secondary port blocked.
To use the unused LAN segment in a ring complete situation, you can configure multiple EAPS
domains on the same physical ring. Each of the protected VLANs belongs to only one of the EAPS