Product Datasheet

ManualsBrandsNETGEAR ManualsComputers & Accessories4x1G and 24 SFP+ Managed Switch

Systemdefaultsautomaticallysetper-portbroadcast,multicast,andunicaststormcontrolfortypical,robustprotectionagainstDoSattacksandfaultyclientswhich

can,withBYOD,oencreatenetworkandperformanceissues

IPTelephonyadministrationissimpliedwithconsistentVoiceVLANcapabilitiespertheindustrystandardsandautomaticfunctionsassociated

Comprehensivesetof"systemutilities"and"Clear"commandshelptroubleshootconnectivityissuesandrestorevariouscongurationstotheirfactorydefaultsfor

maximumadmineciency:traceroute(todiscovertheroutesthatpacketsactuallytakewhentravelingonahop-by-hopbasisandwithasynchronousresponsewhen

initiatedfromtheCLI),cleardynamicallylearnedMACaddresses,counters,IGMPsnoopingtableentriesfromtheMulticastforwardingdatabaseetc...

Allmajorcentralizedsowaredistributionplatformsaresupportedforcentralsowareupgradesandcongurationlesmanagement(HTTP,TFTP),includinginhighly

securedversions(HTTPS,SFTP,SCP)

SimpleNetworkTimeProtocol(SNTP)canbeusedtosynchronizenetworkresourcesandforadaptationofNTP,andcanprovidesynchronizednetworktimestamp

eitherinbroadcastorunicastmode(SNTPclientimplementedoverUDP-port123)

EmbeddedRMON(4groups)andsFlowagentspermitexternalnetworktracanalysis

Remotemirroring(RSPAN)cantransportpacketscapturedonaninterfaceonasourceswitchacrossthenetworktoadestinationonapossiblydierentdestination

switch

Engineered for convergence

Audio(VoiceoverIP)andVideo(multicasting)comprehensiveswitching,ltering,routingandprioritization

Auto-VoIP,VoiceVLANandLLDP-MEDsupportforIPphonesQoSandVLANconguration

IGMPSnoopingandProxyforIPv4,MLDSnoopingandProxyforIPv6andQueriermodefacilitatefastreceiversjoinsandleavesformulticaststreamsandensuremulti-

cast trac only reaches interested receivers everywhere in a Layer 2 or a Layer 3 network

MulticastVLANRegistration(MVR)usesadedicatedMulticastVLANtoforwardmulticaststreamsandavoidduplicationforclientsindierentVLANs

Multicastrouting(PIM-SMandPIM-DM,bothIPv4

andIPv6)ensuremulticaststreamscanreachreceivers

in dierent L3 subnets

• Multicast static routes

• Multicastdynamicrouting(PIMassociatedwithOSPF)includingPIMmulti-hopRPsupportforrouting

around damage advanced capabilities

PoE power management and schedule enablement

Powerredundancyforhigheravailabilitywhenmissioncriticalconvergentinstallation,includinghot-swapmainPSUreplacementwithoutinterruption

Enterprise security

TraccontrolMACFilterandPortSecurityhelprestrictthetracallowedintoandoutofspeciedportsorinterfacesinthesysteminordertoincreaseoverallsecurity

and block MAC address ﬂooding issues

DHCPSnoopingmonitorsDHCPtracbetweenDHCPclientsandDHCPserverstolterharmfulDHCPmessageandbuildsabindingsdatabaseof(MACaddress,IP

address,VLANID,port)tuplesthatareconsideredauthorizedinordertopreventDHCPserverspoongattacks

IPsourceguardandDynamicARPInspectionusetheDHCPsnoopingbindingsdatabaseperportandperVLANtodropincomingpacketsthatdonotmatchanybinding

andtoenforcesourceIP/MACaddressesformalicioususerstracelimination

Time-basedLayer2/Layer3-v4/Layer3-v6/Layer4AccessControlLists(ACLs)canbebindedtoports,Layer2interfaces,VLANsandLAGs(LinkAggregation

GroupsorPortchannel)forfastunauthorizeddatapreventionandrightgranularity

ACLsonCPUinterface(ControlPlaneACLs)areusedtodenetheIP/MACorprotocolthroughwhichmanagementaccessisallowedforincreasedHTTP/HTTPSor

Telnet/SSHmanagementsecurity

Bridgeprotocoldataunit(BPDU)GuardallowsthenetworkadministratortoenforcetheSpanningTree(STP)domainbordersandkeeptheactivetopologyconsistent

andpredictable-unauthorizeddevicesorswitchesbehindtheedgeportsthathaveBPDUenabledwillnotbeabletoinuencetheoverallSTPtopologybycreating

loops

SpanningTreeRootGuard(STRG)enforcestheLayer2networktopologybypreventingroguerootbridgespotentialissueswhenforinstance,unauthorizedor

unexpected new equipment in the network may accidentally become a root bridge for a given VLAN

Dynamic802.1xVLANassignmentmode,including

DynamicVLANcreationmodeandGuestVLAN/

UnauthenticatedVLANaresupportedforrigoroususer

andequipmentRADIUSpolicyserverenforcement

• Upto48clients(802.1x)perportaresupported,includingtheauthenticationoftheusersdomain,in

ordertofacilitateconvergentdeployments:forinstancewhenIPphonesconnectPCsontheirbridge,IP

phones and PCs can authenticate on the same switch port but under dierent VLAN assignment policies

(VoiceVLANversusdataVLAN)

ProSAFE® Next-Gen Edge Managed Switches Data Sheet

M5300 series

Page 8 of 38