Extreme 41121 BlackDiamond Aspen 8800 DataSheet

BLACKDIAMOND 8800 SERIES
TARGET APPLICATIONS
• Unified Access layer for integrated
wired, wireless and IP telephony
deployments
• Interconnect switch for High
Performance Cluster Computing
• Single switch network solution for
medium sized networks
• Traditional gigabit or 10 Gigabit
Ethernet aggregation
The BlackDiamond® 8800 modular switching family of highly
available switches delivers high-density gigabit, gigabit Power over
Ethernet (PoE) and 10 Gigabit Ethernet. The versatile BlackDiamond
8800 series supports a full range of Layer 2-4 features on every
port. The BlackDiamond 8800 family consists of the 10-slot
BlackDiamond 8810 and the 6-slot BlackDiamond 8806
VOICE-CLASS AVAILABILITY
HIGH PERFORMANCE CONNECTIVITY
COMPREHENSIVE SECURITY
• Redundant system design
• 48 Gigabits per second (Gbps)
• User policy and host integrity
•
Modular ExtremeWare ®
XOS™
operating system
• Ethernet Automatic Protection
capacity per slot
• Capable of generating over
570 Mpps throughput:
Switching (EAPS)
non-blocking on every port
resiliency protocol
• Up to 432 Gigabit Ethernet
and 36-10 Gigabit Ethernet
ports per chassis
enforcement
• Instrumentation to react to
network intrusion
• Hardened against attacks
VOICE-CLASS AVAILABILITY
A high-performance network connection, whether used to connect PCs and IP telephones at the access layer or to interconnect
servers in a cluster, is only useful if it is also highly available. The BlackDiamond 8800 modular switching family incorporates
extensive hardware redundancy and a modular operating system–ExtremeWare XOS. ExtremeWare XOS supports system recovery
and application upgrades without the need for a system reboot, as well as networking protocols that provide the network recovery
required by converged applications.
REDUNDANT HARDWARE DESIGN
MODULAR OPERATING SYSTEM FOR NON-STOP
OPERATIONS
Ethernet Automatic Protection Switching
Redundant Management Modules
The BlackDiamond 8800 modular switching
family is configured with an automatic failover
mechanism so that if one management switch
module (MSM) fails, the second MSM will
automatically
take
over
management
responsibility for the entire switch. This feature is
critical for networks running voice and other
mission-critical applications.
True Preemptive Multitasking and
Protected Memory
The BlackDiamond 8800 series allows each of
the many tasks–such as Open Shortest Path First
(OSPF) and Spanning Tree–to run as separate
operating system (OS) tasks that are protected
from each other as shown in Figure 1.
Process Monitoring and Restart
Advanced Chassis Design for Availability
The BlackDiamond 8800 series includes a
passive backplane complemented by high
availability design elements such as isolated
control and data planes, redundant controller
boards for power distribution, fan control and
environmental monitoring to identify anomalies
before they effect network availability.
Redundant Load Sharing Power Supplies
The BlackDiamond 8800 series chassis support a
set of redundant power configurations that can
load share up to six internal power supplies
simultaneously. Three power supplies in a 2 + 1
redundancy configuration can power a fully
loaded chassis with gigabit or 10 Gigabit Ethernet
ports. Additional three power supplies are
available to support large PoE implementations.
HIGH AVAILABILITY NETWORK PROTOCOLS
ExtremeWare XOS dramatically increases network
availability by monitoring in real time the
independent operating system processes. If any
of them become unresponsive, or stop running,
they are automatically restarted.
Loadable Software Modules
The modular design of ExtremeWare XOS allows
the extension of switch functionality without loading
a new OS image and restarting the switch. New
functionality can be added to the switch on the fly.
Ethernet Automatic Protection Switching (EAPS)
allows the IP network to provide the level of
resiliency and uptime that users expect from their
traditional voice networks. EAPS is superior to the
Spanning Tree or Rapid Spanning Tree Protocols,
offering sub-second (less than 50 milliseconds)
recovery and delivers consistent failover regardless
of number of VLANs, number of network nodes or
network topology. In most situations, Voice-over-IP
(VoIP) calls don’t drop and digital video feeds don’t
freeze or pixelize because EAPS enables the network
to recover almost transparently from link failure.
Spanning Tree/Rapid Spanning Tree Protocols
The BlackDiamond 8800 series supports Spanning
Tree, VLAN Spanning Tree (802.1D), and Rapid
Spanning Tree (802.1w) protocols for Layer 2
resiliency.
Software Enhanced Availability
Software enhanced availability allows users to remain
connected to the network even if part of the network
infrastructure is down. The BlackDiamond 8800 series
constantly checks for problems in the uplink
connections using advanced Layer 3 protocols such as
OSPF, VRRP and ESRP (ESRP supported in Layer 2 or
Layer 3), and dynamically routes around the problem.
Equal Cost Multipath
Redundant Cooling Fans in a HotSwappable Fan Tray
Equal Cost Multipath (ECMP) enables uplinks to be
load balanced for performance and cost savings
while also supporting redundant failover. If an
uplink fails, traffic is automatically routed to the
remaining uplinks and connectivity is maintained.
A tray of nine fans delivers redundant cooling in the
BlackDiamond 8810 chassis. Up to three of the
nine fans in a BlackDiamond 8810 can fail before
the fan tray must be replaced. The fan tray itself is
hot swappable so the BlackDiamond 8810 switch
keeps operating while the fan tray is replaced.
Link Aggregation (802.3ad)
Cross module link aggregation enables trunking of up
to eight links on a single logical connection, for up to 80
Gbps of redundant bandwidth per logical connection.
MODULAR OPERATING SYSTEM FOR
NON-STOP OPERATIONS
• True preemptive multitasking and
protected memory
• Process monitoring and restart
Figure 1: ExtremeWare XOS Modular
Operating System
Configuration Management
(CLI/ SNMP/ XML/ TCL)
ExtremeWare XOS Application Modules
sFlow
SSH2
BGP4+
VRRP
Network
Login
802.1X
EAPS
ESRP
• Loadable software modules
ExtremeWare XOS Kernel Load Modules
ExtremeWare XOS Kernel
Hardware Abstraction Layer
Hardware
© 2005 Extreme Networks, Inc. All rights reserved.
DATA SHEET - BLACKDIAMOND 8800 SERIES
Page 2
HIGH PERFORMANCE CONNECTIVITY
The BlackDiamond 8800 series delivers high-performance, cost-effective connectivity to address networking trends such as the
increasing number of devices at the edge of the network: IP telephones, wireless access points, and other devices. These
networking trends drive the requirement for Gigabit Ethernet to the desktop and the use of 10 Gigabit Ethernet as an interconnect
technology.
LARGE SWITCHING CAPACITY
VOICE AND WIRELESS CONNECTIVITY
• 800 Gbps switch fabric bandwidth
• 48 Gbps per slot capacity
• Over 570 Mpps Layer 2/Layer 3 hardware
forwarding rate
• Local switching on every I/O module
• 4.016 Tbps total switching capacity*
Voice Grade Connections
HIGH GIGABIT AND 10 GIGABIT ETHERNET PORT
DENSITY
• 10/100/1000BASE-T: 384 ports with 2
Management Switch Modules (MSMs), or 432
ports with 1 MSM on the BlackDiamond 8810
• 1000BASE-X: 208 ports with 2 MSMs or
224 ports with 1 MSM on the
BlackDiamond 8810
• 10 Gigabit Ethernet: 32 ports with 2
MSMs, or 36 ports with 1 MSM on the
BlackDiamond 8810
• Capable of ports operating at line rate
when two MSMs are used
Granular quality of service (QoS), low latency, and
low jitter enable voice quality connections. The
BlackDiamond 8800 series supports 8 queues
per port and a range of QoS technologies that can
prioritize and predictably handle high priority
traffic - policing or rate limiting on ingress, 802.1q
tagging and DiffServ marking, and shaping on
egress. The Extreme Networks tradition of
building products with low latency and jitter
continues with the BlackDiamond 8800 series –
allowing network managers to build networks with
low end-to-end latency and jitter.
PoE allows the BlackDiamond 8800 series of
switches to support large IP telephony and
wireless access point deployments. The
BlackDiamond 8810 can support up to 333 Class
3 ports in a single 14RU chassis or can power a
maximum of 432 PoE ports in a single chassis
with Class 1 or 2 power.
Unified Access Architecture™
• 432 ports at Class 1 or 2 (4 Watts and 7
Watts in-line power) as defined by the
802.3af standard
• 333 ports at Class 3 (15.4 Watts in-line power)
as defined by the 802.3af standard
• All powered by internal power supplies
Unified Access Architecture™ (UAA) features are
supported by the BlackDiamond 8800 series
switches so that enterprises can implement a
single, secure and seamless network for wired
and wireless network access, rather than having
to operate two separate or parallel networks.
Link Layer Discovery Protocol Support
BlackDiamond 8806
• 192 ports at Class 3 (15.4 Watts in-line power)
as defined by the 802.3af standard with
2 MSMs
• 240 ports at Class 3 (15.4 Watts in-line power)
as defined by the 802.3af standard with a
single MSM
• All powered by internal power supplies
High-Density, Line Rate Connectivity
The BlackDiamond 8800 series supports 1,200
non-blocking gigabit ports or almost a hundred
non-blocking 10 Gigabit Ethernet ports in a single
seven foot rack, allowing the BlackDiamond 8800
series switches to deliver a very cost-effective
connectivity option for clusters.
High-Density PoE
HIGH DENSITY 10/100/1000 PoE PORT
BlackDiamond 8810
and expenses involved with convergence driven
network changes by greatly simplifying management and connectivity issues. LLDP sets the
stage for convergence applications by allowing
enterprises to add new access devices in a nondisruptive plug-and-play fashion. Voice and
wireless services can be easily implemented
without major network upgrades.
BlackDiamond 8800 series incorporates Link
Layer Discovery Protocol (LLDP) to simplify
troubleshooting of enterprise networks and
enhance the ability of network management tools
to discover and maintain accurate network
topologies. It serves to reduce the complexities
Local Switching
Servers connected to the same I/O module
communicate with each other without having to
traverse the switch backplane reducing latency in
inter-server communication.
Jumbo Frame Support
Supporting jumbo frames allows cluster computing
applications to optimize network performance.
* Based on counting all switching capacity, even if
it is not in the datapath.
IPv6 Packet Forwarding Support
IPv6 makes available trillions of new IP addresses
and enables better address allocation, address
aggregation, and features that provide significantly
greater end-to-end connectivity and services
ExtremeWare XOS is designed from ground up
with IPv4 and IPv6 in mind. As IPv6 traffic may
enter any network, enterprise infrastructure needs
to be made ready for it. BlackDiamond 8800
series supports IPv6 packet forwarding in software
and enables the enterprises to get ready.
Unified Access Architecture - Enabling
the Universal Jack
Extreme Networks’ innovative edge
architecture - the Unified Access
Architecture (UAA) - is designed for
enterprises that need a single, secure and
seamless network for both wired and
wireless network access, rather than
having to operate two separate or parallel
networks. Through this unified approach,
you have the freedom to extend your
network edge for wireless access, LAN
telephony, PDAs and other devices
without compromising security, scalability,
availability, mobility or management.
© 2005 Extreme Networks, Inc. All rights reserved.
UAA implements our vision of a universal
jack on the wall to which you can connect
a traditional PC, an IP telephone or a
lightweight access point. UAA centralizes
the management and operation of wired
and wireless networks into the wiring
closet’s Layer 3 access switches, on both
fixed form factor and chassis based
products. The universal Ethernet jack is
designed to deliver consistent security,
user authentication and QoS policy for a
multitude of devices that access the
network using wired or wireless media.
DATA SHEET - BLACKDIAMOND 8800 SERIES
Page 3
COMPREHENSIVE SECURITY
Implementing a secure network requires the switches in the infrastructure to support a comprehensive set of security features.
Security on the BlackDiamond 8800 series encompasses three main areas: user and host integrity, threat detection and response,
and hardened network infrastructure.
USER AND HOST INTEGRITY
THREAT DETECTION AND RESPONSE
HARDENED NETWORK INFRASTRUCTURE
Intelligent Network Access
sFlow
Denial of Service (DoS) Protection
Intelligent network access enforces user
admission and usage policies. The BlackDiamond
8800 series supports a comprehensive range of
Network Login options by providing an 802.1x
agent-based approach, a web-based (agent-less)
login capability for guests, and a MAC-based
authentication model for devices. With these
modes of Network Login, only authorized users
and devices can connect to the network and
assigned to the appropriate VLAN.
Providing powerful network visibility, sFlow is a
sampling technology that provides the ability to
continuously monitor application level traffic flows
on all interfaces simultaneously. The sFlow agent
is a software process that runs on the
BlackDiamond 8800 series, and packages data
into sFlow datagrams that are sent over the
network to an sFlow Collector. The Collector has
an up-to-the-minute view of traffic across the
network, which can be used to troubleshoot
network problems, control congestion and to
detect network security threats.
The BlackDiamond 8800 series switches handle
DoS attacks gracefully. If the switch detects an
unusually large number of packets in the CPU
input queue, it will assemble ACLs that
automatically stop these packets from reaching
the CPU. After a period of time, the ACLs are
removed. If the attack continues, they are
reinstalled.
Multiple Supplicant Support
Multiple supplicant support secures IP telephony
and wireless access. Converged network designs
often involve the use of shared ports. Examples
include:
• PC plugging into an IP telephone
• PoE port or multiple users connecting to a
• wireless access point over the air and thereby
• sharing the same physical PoE port.
Shared ports represent a potential vulnerability in
a network. Multiple supplicant capability on a
switch allows it to uniquely recognize and apply
the appropriate policies for each user or device
on a shared port.
Media Access Control (MAC)
MAC lockdown secures IP telephones, wireless
access points (APs) and servers. The MAC
address security/lockdown feature enables the
BlackDiamond 8800 series to block access to any
Ethernet port when the MAC address of a station
attempting to access the port is different from the
configured MAC address. This feature is used to
“lock down” a device like an IP telephone, an
access point or a server to a specific port.
ASIC-based Longest Prefix Match (LPM)
LPM routing eliminates the need for control plane
software to learn new flows and allows the network
to be resilient under a denial of service attack.
Port Mirroring
Providing intrusion detection and prevention, the
BlackDiamond 8800 series supports many-to-one
and cross module port mirroring. This can be
used to mirror traffic to an external network
appliance such as an intrusion detection device
for trend analysis or be utilized by a network
administrator as a diagnostic tool when fending
off a network attack.
Line Rate Access Control Lists (ACLs)
ACLs are one of the most powerful tools to control
network resource utilization and to secure and
protect the network. The BlackDiamond 8800
series supports up to 48,000 ACLs based on
Layer 2, 3 or 4-header information such as the
MAC address or IP source/destination address.
Secure Management
The use of protocols like SSH2, SCP and
SNMPv3 supported by a BlackDiamond 8800
series switch prevents the interception of
management communications and man-in-themiddle attacks.
MD5 Authentication of Routing Protocols
MD5 authentication of routing protocols prevents
attackers from tampering valid messages and
attacking routing sessions.
Host Integrity Checking
Cost Effective Network Design Using the BlackDiamond 8800 Series
Host integrity checking helps keep infected or nonTrue Pre-emptive Multitasking and Protected
compliant machines off the network. The BlackDiamond
8800each
series
a host
integrity
Memory allow
of supports
the switches
many
tasks or
end point integrity solution that is based on the
– Openfrom
Shortest
Path First
(OSPF),Group.
Spanning
model
the Trusted
Computing
The BlackDiamond 8800 series of switches allow the traditional edge layer and aggregation
layer of the network to be collapsed into a single access layer. A two-tier network that
consists of an access layer and a core layer can reduce the number of switches required and
hence reduce the network acquisition costs and network management costs. Depending on
the size and geographic reach of the network, a two-tier network can be the most cost
effective design for a corporate network. The BlackDiamond 8800 series of switches are also
designed to reduce CapEx and OpEx as demonstrated by the following features:
• Uplink ports on the MSMs lower the entry cost of the systems
• All BlackDiamond 8800 series switches share the same management and I/O blades
• thereby reducing sparing requirements
• All BlackDiamond 8800 series switches and the BlackDiamond 10808 (10K) core switch
• share the same power supplies thereby reducing sparing requirements
• All BlackDiamond 8800 series switches and the BlackDiamond 10K core switch share the
• same operating system and network management software thereby simplifying the
• management of the whole network.
Tree, etc. to run as separate operating system
tasks that are protected from each other as shown
© 2005 Extreme Networks, Inc. All rights reserved.
DATA SHEET - BLACKDIAMOND 8800 SERIES
Page 4
TARGET APPLICATIONS
UNIFIED ACCESS EDGE
The BlackDiamond 8800 series delivers high-performance
and cost-effective connectivity driven by networking trends
such as: the increasing number of IP telephones, wireless
APs and other devices at the edge of the network, Gigabit
Ethernet connections to the desktop, and the use of gigabit
and 10 Gigabit Ethernet as an interconnect technology.
The BlackDiamond 8800 series allows the traditional edge
layer and aggregation layer of the network to be collapsed
into a single Unified Access layer.
®
NETWORK
CORE
BlackDiamond 8810
BlackDiamond 8810
Altitude
Altitude
HIGH PERFORMANCE CLUSTER COMPUTING (HPCC)
HPCC consists of hundreds or thousands of servers
working co-operatively to solve large computational
problems. With the use of relatively inexpensive and
compact 1RU servers, a significant amount of processing
power can be cost-effectively packed into a relatively small
footprint. The BlackDiamond 8800 series addresses the
need for high-performance and cost-effective connectivity
required for HPCC using gigabit and 10 Gigabit Ethernet
as the interconnect technology.
NETWORK
CORE
BlackDiamond 8810
BlackDiamond 8810
SINGLE SWITCH MEDIUM SIZED NETWORK
The BlackDiamond 8800 series provides the small to
medium enterprise an ideal single switch solution that
satisfies their complete network needs. The typical multiswitch network can be combined to a single highly
available switch that delivers high-density PoE for IP
telephony, wire-speed performance for services and
comprehensive security.
BlackDiamond 8810
Altitude
TRADITIONAL AGGREGATION LAYER
While Extreme Networks believes that a two-tier network is
a simpler approach, the layout of a building or campus or
the wiring plant sometimes requires an aggregation layer.
This layer typically aggregates gigabit or 10 gigabit uplinks
from edge switches and connects up to the core through
gigabit and/or 10 Gigabit Ethernet uplinks. The
BlackDiamond 8800 series provides high-density gigabit
and 10 Gigabit Ethernet that is required for the aggregation
layer.
© 2005 Extreme Networks, Inc. All rights reserved.
NETWORK
CORE
BlackDiamond 8810
BlackDiamond 8810
Summit switch
Summit switch
Summit switch
Summit switch
DATA SHEET - BLACKDIAMOND 8800 SERIES
Page 5
TECHNICAL SPECIFICATIONS
GENERAL SPECIFICATIONS
Switching Capacity
• 800 Gbps total switching capacity
• 4.016 Tbps total switching capacity (Including
local switching)
• 570 Mpps L2 HW forwarding rate
• 570 Mpps L3 HW forwarding rate
Port Capacity
BlackDiamond 8810
• 36 ports 10GBASE-X (XENPAK) (32 ports if 2 MSMs)
• 432 ports 10/100/1000BASE-T (384 ports if 2 MSMs)
• 224 ports 1000BASE-X SFP (MiniGBIC) (208 ports if
2 MSMs)
BlackDiamond 8806
• 20 ports 10GBASE-X (XENPAK) (16 ports if 2 MSMs)
• 240 ports 10/100/1000BASE-T (192 ports if 2 MSMs)
• 128 ports 1000BASE-X SFP (MiniGBIC) (112 ports if
2 MSMs)
Management Switch Module
• The management module contains both the control
path as well as the switch fabric for the
BlackDiamond 8800
MSM-G8X BlackDiamond 8800 Management Switch
Module, with 8 1000BASE-X mini-GBIC ports
I/O Module Options
G48T 48-port 10/100/1000BASE-T Gigabit Ethernet
module
G48P 48-port 10/100/1000BASE-T Gigabit Ethernet
module with PoE
G24X 24-port 1000BASE-X Gigabit Ethernet module
• Mini-GBIC modules required. Mini-GBIC options
include
- SX (up to 550m)
- LX (up to 5 km)
- ZX (up to 70 km)
10G4X 4-port 10GBASE-X 10 Gigabit Ethernet module
• XENPAK modules required
XENPAK options include
- SR (up to 300m)
- LR (up to 50km)
- ER (up to 40km)
- ZR (up to 80km)
Power Supply Options
AC power supply can run from 100-240 VAC, 50-60Hz
and deliver
• 700W at 90-110 VAC
• 1200W at 200-220 VAC
Power over Ethernet (PoE) 802.3af
333 ports with 802.3af class 0 devices supported with
6 power supplies
432 ports with 802.3af class 1 devices supported with
6 power supplies
432 ports with 802.3af class 2 devices supported with
6 power supplies
333 ports with 802.3af class 3 devices supported with
6 power supplies
PROTOCOLS AND STANDARDS
General Routing and Switching
• RFC 1812 Requirements for IP Version 4
Routers
• RFC 1519 CIDR
• RFC 1256 IPv4 ICMP Router Discovery
(IRDP)
• RFC 1122 Host Requirements
• RFC 768 UDP
• RFC 791 IP
• RFC 792 ICMP
• RFC 793 TCP
© 2005 Extreme Networks, Inc. All rights reserved.
• RFC 826 ARP
• RFC 1866 HTML – Used for web-based Network
Login
• RFC 2068 HTTP server – Used for web-based
Network Login
• RFC 2338 VRRP
• RFC 3619 Ethernet Automatic Protection
Switching (EAPS) and EAPSv2
• IEEE 802.1D - 1998 Spanning Tree Protocol
(STP)
• IEEE 802.1w – 2001 Rapid Reconfiguration for
STP, RSTP
• IEEE 802.1Q - 1998 Virtual Bridged Local Area
Networks
• IEEE 802.1AB – Link Layer Discovery Protocol
(LLDP)
• EMISTP, Extreme Multiple Instances of
Spanning Tree Protocol
• PVST+, Per VLAN STP (802.1Q interoperable)
• Extreme Standby Router Protocol (ESRP)
• Extreme Discovery Protocol (EDP)
• Static Unicast Routes
• Loop detection via Layer 2 ELRP
• Software Redundant Ports
VLANs
• IEEE 802.1Q VLAN Tagging
• IEEE 802.3ad Static configuration
• IEEE 802.1v: VLAN classification by
Protocol and Port
• Port-based VLANs
• Protocol-based VLANs
• Multiple STP domains per VLAN
• Virtual MANs (vMANs)
Quality of Service and Policies
• IEEE 802.1D -1998 (802.1p) Packet
Priority
• RFC 2474 DiffServ Precedence, including
8 queues/port
• RFC 2598 DiffServ Expedited Forwarding
(EF)
• RFC 2597 DiffServ Assured Forwarding
(AF)
• RFC 2475 DiffServ Core and Edge Router
Functions
RIP
• RFC 1058 RIP v1
• RFC 2453 RIP v2
OSPF
• RFC 2328 OSPF v2 (including MD5
authentication)
• RFC 1587 OSPF NSSA Option
• RFC 1765 OSPF Database Overflow
• RFC 2370 OSPF Opaque LSA Option
BGP4
• RFC 1771 Border Gateway Protocol 4
• RFC 1965 Autonomous System
Confederations for BGP
• RFC 2796 BGP Route Reflection
(supersedes RFC 1966)
• RFC 1997 BGP Communities Attribute
• RFC 1745 BGP4/IDRP for IP---OSPF
Interaction
• RFC 2385 TCP MD5 Authentication for
BGPv4
• RFC 2439 BGP Route Flap Damping
• RFC 2842 Capabilities Advertisement with
BGP-4
• RFC 2918 Route Refresh Capability for
BGP-4
IP Multicast
• RFC 2362 PIM-SM
• PIM-DM Draft IETF PIM Dense Mode v2dm-03
• RFC 1112 IGMP v1
• RFC 2236 IGMP v2
• RFC 3376 IGMP v3
• IGMP Snooping with Configurable Router
Registration Forwarding
• IGMP Filters
• Static IGMP Membership
Management and Traffic Analysis
• RFC 2030 SNTP, Simple Network Time
Protocol v4
• RFC 854 Telnet client and server
• RFC 783 TFTP Protocol (revision 2)
• RFC 951, 1542 BootP
• RFC 2131 BOOTP/DHCP relay agent and
DHCP server
• RFC 1591 DNS (client operation)
• RFC 1155 Structure of Mgmt Information
(SMIv1)
• RFC 1157 SNMPv1
• RFC 1212, RFC 1213, RFC 1215 MIB-II,
Ethernet-Like MIB & TRAPs
• RFC 1573 Evolution of Interface
• RFC 1650 Ethernet-Like MIB (update of
RFC 1213 for SNMPv2)
• RFC 1901 – 1908 SNMP v2c, SMIv2 and
Revised MIB-II
• RFC 2570 – 2575 SNMPv3, user based
security, encryption and authentication
• RFC 2576 Coexistence between SNMP
version 1, version 2, and version 3
• RFC 2665 Ethernet-Like-MIB
• RFC 1757 RMON 4 groups: Stats, History,
Alarms and Events
• RFC 2021 RMON2 (probe configuration)
• RFC 2668 802.3 MAU MIB
• RFC 1643 Ethernet MIB
• RFC 1493 Bridge MIB
• RFC 1354 IPv4 Forwarding Table MIB
• RFC 2737 Entity MIB v2
• RFC 2233 Interface MIB
• RFC 1354 IP Forwarding Table MIB
• RFC 1724 RIPv2 MIB
• RFC 1850 OSPFv2 MIB
• RFC 1657 BGPv4 MIB
• Draft-ietf-bridge-rstpmib-03.txt – Definitions
of Managed Objects for Bridges with Rapid
Spanning Tree Protocol
• RFC 2787 VRRP MIB
• RFC 2925 Ping / Traceroute / NSLOOKUP MIB
• Draft-ietf-bridge-rstpmib-03.txt – Definitions of
Managed Objects for Bridges with Rapid
Spanning Tree Protocol
• Secure Shell (SSH-2) client and server
• Secure Copy (SCP-2) client and server
• Secure FTP (SFTP) server
• sFlow version 5
• Configuration logging
• Multiple Images, Multiple Configs
• BSD System Logging Protocol (SYSLOG), with
Multiple Syslog Servers
• 999 Local Messages (criticals stored across
reboots)
• ExtremeWare vendor MIBs (includes FDB, CPU,
Memory MIBs)
http://www.extremenetworks.com/services/docume
ntation
DATA SHEET - BLACKDIAMOND 8800 SERIES
Page 6
TECHNICAL SPECIFICATIONS
Security
• Routing protocol MD5 authentication (see
above)
• Secure Shell (SSHv2), Secure Copy (SCPv2)
and SFTP with encryption/authentication
(requires export controlled encryption module)
• SNMPv3 user based security, with
encryption/authentication (see above)
• RFC 1492 TACACS+
• RFC 2138 RADIUS Authentication
• RFC 2139 RADIUS Accounting
• RADIUS Per-command Authentication
• Access Profiles on All Routing Protocols
• Access Policies for Telnet/SSH-2/SCP-2
• Network Login - 802.1x, web and MAC-based
mechanisms
• IEEE 802.1x – 2001 Port-Based Network Access
Control for Network Login
• Multiple supplicants for Network Login (all
modes)
• Guest VLAN for 802.1x
• SSL/TLS transport – used for for webbased
Network Login, (requires export controlled
encryption module)
• MAC Address Security - Lockdown and Limit
• IP Address Security - DHCP Option 82 and
Gratuitous ARP Protection
• Layer 2/3/4 Access Control Lists (ACLs)
• CLEAR-Flow, threshold based alerts and actions
Denial of Service Protection
• RFC 2267 Network Ingress Filtering
• RPF (Unicast Reverse Path Forwarding)
Control via ACLs
• Wire-speed ACLs
• Rate Limiting by ACLs
• IP Broadcast Forwarding Control
• ICMP and IP-Option Response Control
• SYN attack protection
• CPU DoS Protection with traffic rate limiting
to management CPU
Robust against common Network Attacks
• CERT (http://www.cert.org)
- CA-2003-04: “SQL Slammer”
- CA-2002-36: “SSHredder”
- CA-2002-03: SNMP vulnerabilities
- CA-98-13: tcp-denial-of-service
- CA-98.01: smurf
- CA-97.28:Teardrop_Land -Teardrop and
"LAND" attack
- CA-96.26: ping
- CA-96.21: tcp_syn_flooding
- CA-96.01: UDP_service_denial
- CA-95.01:
- IP_Spoofing_Attacks_and_Hijacked_
Terminal_Connections
- IP Options Attack
• Host Attacks
- Teardrop, boink, opentear, jolt2, newtear,
nestea, syndrop, smurf, fraggle, papasmurf,
synk4, raped, winfreeze, ping –f, ping of death,
pepsi5, Latierra, Winnuke, Simping, Sping,
Ascend, Stream, Land, Octopus
IPv6
• RFC 2460, Internet Protocol, Version 6 (IPv6)
Specification
• RFC 2461, Neighbor Discovery for IP Version 6,
(IPv6)
• RFC 2462, IPv6 Stateless Address Auto
configuration - Router Requirements
• RFC 2463, Internet Control Message Protocol
(ICMPv6) for the IPv6 Specification
© 2005 Extreme Networks, Inc. All rights reserved.
• RFC 2466, MIB for ICMPv6
• RFC 1981, Path MTU Discovery for IPv6,
August 1996 - Router requirements
• RFC 3513, Internet Protocol Version 6 (IPv6)
Addressing Architecture
• RFC 3587, Global Unicast Address Format
• RFC 2464, Transmission of IPv6 Packets over
Ethernet Networks
• RFC 2710, IPv6 Multicast Listener Discovery v1
(MLDv1) Protocol
• RFC 3810, IPv6 Multicast Listener Discovery v2
(MLDv2) Protocol
• RFC 2740, OSPF for IPv6
• RFC 2080, RIPng
• RFC 2893, Configured Tunnels
• RFC 3056, 6to4
• Static Unicast routes for IPv6
• Telnet over IPv6 transport
• SSH-2 over IPv6 transport
• Ping over IPv6 transport
• Traceroute over IPv6 transport
Safely Standards
• cULus Listed Device - UL 60950 3rd
Edition (US Safety)
• CAN/CSA-C22.2 No. 60950-00 (Canadian
Safety)
• 73/23/EEC Low Voltage Directive (LVD)
• TUV-R GS Mark by German Notified Body
EN60950:2000+All Available Country
Deviations (European Safety)
• CB Report and Certificate - IEC60950:
2000 with all country deviations
(International Safety of ITE)
• NOM/NYCE (Product Safety & EMC
Approval)
• AS/NZS 3260 (ACA DoC, Safety of ITE) Australia Safety Standard
• S Mark (Argentina Safety Approval)
• GOST (Russian Federation Certificate)
• FCC 21 CFR subpart (J) (Safety of Laser
Products)
• CDRH Letter of Approval (US FDA
Approval)
• EN60825-1:1994 +A11:1996+A2:2001
(European Safety of Lasers)
EMI/EMC Standards
• FCC 47 CFR Part 15 Class A (US
Emissions)
• ICES-003 Class A (Canada Emissions)
• 89/336/EEC EMC Directive
• ETSI/EN 300 386:2001 (EU
Telecommunication Emissions &
Immunity)
• EN55022:1998 Class A (Europe
Emissions)
• EN55024:1998 includes IEC/EN 610002,3,4,5,6,11 (Europe Immunity)
• EN 61000-3-2, -3 (Europe Harmonics and
Flicker)
• IEC/CISPR 22:1997 Class A (International
Emissions)
• IEC/CISPR 24:1998 (International
Immunity)
• IEC/EN 61000-4-2 Electrostatic Discharge
• IEC/EN 61000-4-3 Radiated Immunity
• IEC/EN 61000-4-4 Transient Bursts
• IEC/EN 61000-4-5 Surge
• IEC/EN 61000-4-6 Conducted Immunity
• IEC/EN 61000-4-11 Power Dips &
Interruptions
• VCCI Class A (Japan Emissions)
• AS/NZS 3548 (ACA DoC, Emissions) -
• Australia Emissions
• MIC Mark (MIC Approval, Korean
Emissions & Immunity Approval)
• NOM/NYCE (Mexican Product Safety &
EMC Approval)
• GOST (Russian Federation Certificate)
• CNS 13438:1997 Class A (BSMI DoC)
Environmental
• EN/ETSI 300 019-2-1 v2.1.2 - Class 1.2
Storage
• EN/ETSI 300 019-2-2 v2.1.2 - Class 2.3
Transportation
• EN/ETSI 300 019-2-3 v2.1.2 - Class 3.1e
Operational
• EN/ETSI 300 753 (1997-10) - Acoustic
Noise Operational
• ASTM D5276 Drop Packaged
• ASTM D3580 Random Vibration
Packaged 1.5G
PHYSICAL SPECIFICATIONS
Dimensions
BlackDiamond 8810 chassis: 24.47" high x 17.51"
wide x 18.23" deep (62.2 cm x 44.5 cm x 46.3 cm)
BlackDiamond 8806 chassis: 17.5" high x 17.51"
wide x 18.23" deep (44.45 cm x 44.5 cm x 46.3 cm)
Power Supply: 4.75" high x 2.75" wide x 13.75"
deep (12.1 cm x 6.99 cm x 34.9 cm)
MSM Module dimensions: 1.63" high x 15.26" wide
x 15.25" deep (4.1 cm x 38.8 cm x 38.7 cm)
I/O Module dimensions: 1.63" high x 15.26" wide x
15.25" deep (4.1 cm x 38.8 cm x 38.7 cm)
Weight
BlackDiamond 8810 Chassis: 79 lb (35.8 kg)
BlackDiamond 8810 Chassis fully loaded (max):
200.5 lb (90.9 kg)
BlackDiamond 8806 Chassis: 65 lb (29.5 kg)
BlackDiamond 8806 Chassis fully loaded (max):
151 lb (68.5 kg)
Power Supply: 7 lb (3.2 kg)
MSM-G8X Module: 7.5 lb (3.4 kg)
G48T Module: 7.75 lb (3.5 kg)
G48P Module: 8 lb (3.6 kg)
G24X Module: 7.75 lb (3.5 kg)
10G4X Module: 7.75 lb (3.5 kg)
Power
BlackDiamond 8810 Chassis with Fan Trays: 55 W, 48V,
1.1A (Heat Dissipation: 179 BTU)
BlackDiamond 8806 Chassis with Fan Trays: 45 W, 48V,
1.0 A (Heat Dissipation: 146 BTU)
MSM-G8X Module: 150 W, 48V, 3.125A (Heat
Dissipation: 515 BTU)
G48T Module: 105 W, 48V, 2.2A (Heat Dissipation:
358 BTU)
G48P Module: 110 W, 48V, 2.3A (Heat Dissipation:
375 BTU)
G24X Module: 105 W, 48V, 2.2A (Heat Dissipation:
358 BTU)
10G4X Module: 115 W, 48V, 2.4A (Heat Dissipation:
392 BTU)
OPERATING SPECIFICATIONS
Operating Temperature Range: 0 to 40 °C (32 to 104 °F)
Operating Humidity Range: 10% - 90% (RH), noncondensing
Storage Temperature Range: -40 to 70 °C (-40 to 158 °F)
Storage Humidity Range: 10% - 90% (RH), noncondensing
WARRANTY
• 1-year on hardware
• 90-days on software
DATA SHEET - BLACKDIAMOND 8800 SERIES
Page 7
ORDERING INFORMATION
Part Number
41011
Part Name
BlackDiamond 8810
Description
BlackDiamond 8810 10-Slot Chassis Including Fan Tray
41012
BlackDiamond 8806
BlackDiamond 8806 6-Slot Chassis Including Fan Tray
60020
BlackDiamond 10808/
BlackDiamond 10808/BlackDiamond 8800 700W/1200W 100-240V PSU
BlackDiamond 8800 700W/1200W PSU
41211
BlackDiamond 8800 MSM-G8X
BlackDiamond 8800 Management Switch Module, w/8 1000BASE-X mini-GBIC I/O ports
41511
BlackDiamond 8800 G48T
BlackDiamond 8800 48-port 10/100/1000BASE-T RJ-45
41512
BlackDiamond 8800 G48P
BlackDiamond 8800 48-port 10/100/1000BASE-T PoE RJ-45
41541
BlackDiamond 8800 G24X
BlackDiamond 8800 24-port 1000BASE-X mini-GBIC
41611
BlackDiamond 8800 10G4X
BlackDiamond 8800 4-port 10GBASE-X XENPAK
41111
BlackDiamond 8810 Spare Fan Tray
BlackDiamond 8810 Spare Fan Tray
41112
BlackDiamond 8800 Spare PSU/Fan Cntrl
BlackDiamond 8800 Spare PSU/Fan Controller board
41121
BlackDiamond 8800 Spare Blank Panel
BlackDiamond 8800 Spare Blank Panel
41141
BlackDiamond 8810 Mid Mount Kit
BlackDiamond 8810 Mid Mount Kit
41311
BlackDiamond 8800 Core License
BlackDiamond 8800 ExtremeWare XOS Core software upgrade
10110
SR XENPAK
10 Gigabit Ethernet XENPAK Transceiver, 850nm, up to 300m on multimode fiber,
10111
LR XENPAK
10112
ER XENPAK
10113
ZR XENPAK
10051
SX mini-GBIC
Mini-GBIC, SFP, 1000BASESX, LC Connector
10052
LX mini-GBIC
Mini-GBIC, SFP, 1000BASELX, LC connector
10053
ZX mini-GBIC
Mini-GBIC, SFP, Extra long distance SMF 70 Km/21 dB budget, LC connector
SC connector
10 Gigabit Ethernet XENPAK Transceiver, 1310nm, up to 10km on single-mode fiber,
SC connector
10 Gigabit Ethernet XENPAK Transceiver, 1550nm, up to 40km on single-mode fiber,
SC connector
10 Gigabit Ethernet XENPAK Transceiver, 1550nm, up to 80km on single-mode fiber,
SC connector
3585 Monroe Street Santa Clara, CA 95051-1450 Phone 408.579.2800 Fax 408.579.3000
Email info@extremenetworks.com Web www.extremenetworks.com
© 2005 Extreme Networks, Inc. All rights reserved.
Extreme Networks, the Extreme Logo, BlackDiamond, EPICenter, ExtremeWare, ExtremeWare XOS and Unified Access Architecture are either registered
trademarks or trademarks of Extreme Networks, Inc. in the United States and/or other countries.
Specifications are subject to change without notice. L-DS-BD8800-506
DATA SHEET - BLACKDIAMOND 8800 SERIES
Page 8