Ofício n° 118 /Deadm Brasília, 20 de Julho de 2012. A Sua Senhoria

MINISTÉRIO DA SAÚDE
FUNDAÇÃO NACIONAL DE SAÚDE
SAS 0.04 — BI. "N" — 10° andar — Ala Norte
Brasília/DF - CEP: 70.070-040
Fone: (61) 3314.6417/6672 - Fax: (61) 3314.6717
Ofício n° 118 /Deadm
Brasília, 20 de Julho de 2012.
A Sua Senhoria a Senhora
ROBERTA RIBEIRO DE QUEIROZ MARTINS
Assunto: Resposta ao Ofício n° 539/2012-TCU/Sefti referente ao processo n°
001.961/2012-8.
Senhora Secretária,
Com vistas ao saneamento do processo de Representação (TC 001.9612012-8)
apresentamos os documentos e respostas conforme solicitado através do Ofício
539/2012-TCU/Sefti.
Íntegra da resposta à terceira impugnação assinada e com
a)
comprovação de seu encaminhamento à empresa D&D Tecnologia e Informática
Ltda.
RESPOSTA FUNASA:
A íntegra da resposta assinada consta no processo n° 25100.011.990/2011-75, às
fls. 510 a 512.
b)
Cópia integral do processo de contratação referente ao Pregão
Eletrônico SRP 34/2011, preferencialmente na forma digital;
RESPOSTA FUNASA:
Estamos encaminhado cópia integral do processo em forma digital através de
CD.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Ittl 2 e SIND:0 DE PIIITE10E ERIÇA° • 21/3111/2012 1S:59 CORRI
Secretária-substituta
Tribunal de Contas da União
Secretaria de Fiscalização de Tecnologia da Informação
SAFS Qd. 04, Lote 1, Anexo I, Sala 311
70042-900 - Brasília — DF
c) Indicação, nos artefatos gerados durante a etapa de planejamento da
contratação, das diferentes soluções oferecidas pelo mercado que atendam a todos
os requisitos elencados no termo de referência, conforme exigido no art. 11, inciso
II, alínea "c" da Instrução Normativa — SLTI/NIP 4/2010;
RESPOSTA FUNASA:
A informação encontra-se no artefato de Análise de Viabilidade da
Contratação, constante às fls. 109 a 111, processo n° 25100.011.990/2011-75
encaminhado na forma digital juntamente com este Ofício.
3.1.3. "LEVANTAMENTO DAS SOLUÇÕES DISPONÍVEIS NO
MERCADO
3.1.3.1.
Nome da Solução: Equipamentos de ativos de rede,
com switches e wireless.
3.1.3.2. Entidades com projetos similares:
Ministério do Planejamento, Orçamento e Gestão — MPOG
Pregão eletrônico por Registro de Preços n° 34/2010
Descrição do objeto: Aquisição de ativos de rede cabeada e sem
fios, e demais componentes, incluindosoftware de gerenciamento,
serviços de instalação, configuração, operação assistida,
treinamento, suporte técnico e assistência durante o período de
garantia, conforme especificações e quantidadesconstantes deste
Edital e seus Anexos.
Valor:
R$ 3.381.412,50
Fornecedor: REDISUL INFORMATICA LTDA
CNPJ: 78.931.474/0001-44
Conselho da Justiça Federal — CJF
Pregão Presencial N° 30/2009 — Lote 1
Descrição do objeto: Seleção de empresa especializada para
contratação eventual mediante registro de preços de
infraestrutura física de rede e dados e voz, para o Conselho da
Justiça Federal — CJF Lote 1: Fornecimento de equipamentos
ativos de rede, equipamento de rede sem fio (rede wireless),
software de gerenciamento, serviços de instalação, transferência
de conhecimento e garantia.
Valor:
R$ 2.418.194,80
Fornecedor: REDISUL INFORMATICA LTDA.
CNPJ: 78.931.474/0001-44
Fundo Nacional de Desenvolvimento da Educação — FNDE
Pregão n° 43/2010 Item 1
Descrição do objeto: Fornecimento de Hardware para Switches de
Acesso, incluindo Garantia de 36 (trinta e seis) meses, conforme
especificações contidas no Anexo 1 do Edital.
Valor:
R$404.500,00
Fornecedor: REDISUL INFORMATICA LTDA.
CNPJ: 78.931.474/0001-44
Conselho Nacional de Justiça — CNJ
Preção n °: 48/2010 — item 1.1
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
MINISTÉRIO DA SAÚDE
FUNDAÇÃO NACIONAL DE SAÚDE
SAS 0.04 — BI. "N" 100 andar — Ala Norte
Brasília/DF - CEP: 70.070-040
Fone: (61) 3314.6417/6672 - Fax: (61) 3314.6717
Registro de preços para aquisição de
infraestrutura de rede de dados, incluindo equipamentos para
datacenter, switches de acesso, treinamento, garantia e suporte.
Descrição do objeto:
Valor: R$ 1.762.767,02
Fornecedor: MTEL TECNOLOGIA LTDA.
CNPJ: 71.738.132/0001-63
3.1.4. IDENTIFICAÇÃO DAS SOLUÇÕES E ALTERNATIVAS
DISPONÍVEIS:
Os equipamentos de ativos de rede com switches e wireless
são comercializados no mercado por empresas como Cisco, Enterasys, 3COM,
Extreme, Avaya, dentre outras;
O Ministério do Planejamento, Orçamento e Gestão —
MPOG, por meio Núcleo de Contratações de Tecnologia da Informação — NCTI
oferece uma forma bastante efetiva para atingir esses objetivos na forma de
contratação conjunta, que visam suprir necessidades comuns de órgãos ou entidades
da Administração Pública Federal, bem como reduzir os gastos através de compra
concentrada, com maior volume e melhor qualidade dos produtos adquiridos;
•
Está disponibilizado no sítio do MPOGinformações sobre
Especificações de TIC, as quais contém descritivo das soluções de diversos produtos
que se encontram em revisão pelo Núcleo de Contratações de TI, entretanto as
especificações divulgadas no sítio para switch de borda, switch central e solução
wireless não atendem às necessidades da FUNASA pelos seguintes motivos:
1.
II.
111.
IV.
A ampliação do número de pontos de acessos por
meio de cascateamentodos switches de borda tem
seu desempenho prejudicado, porque será
reduzida a velocidadede concentração dos dados
(throughput);
O switch centralnão possui capacidade de
comutação de72D Gbps (throughput), mínimo
necessário à Funasa;
Os switches de borda cascateáveis não possuem
porta de uplink de 10 Gigabit para conexão com
switch central;
O controlador de rede sem fio Wi-Fi e Pontos de
Acesso não suportam wireless IDS/IPS com as
funcionalidades de detecção de rogue APs,
contenção/confinamento de rogue APs, detecção
de redes ad-hoc; não possuem dois rádios dualband que suportem operação simultânea em
2.4GHz e 5GHz; e não possuem software de
gerenciamento centralizado."
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
d) Indicações de quais equipamentos (modelo/fabricante ou solução/fabricante) atendem aos requisitos questionados na
terceira impugnação, por meio das tabelas a seguir:
d.1) para o módulo de gerenciamento/supervisão:
Item
1
.
Requisito (s)
Cada
módulo
de
gerenciamento/supervisão
deve suportar a instalação
de, no mínimo, 2 (duas)
portas 10GBase-X.
As portas disponíveis nos
módulos de
gerenciamento/supervisão
não serão consideradas na
configuração.
CISCO
Modelo :
VS-S720-10G-3C(.) - Cisco Catalyst 6500
Series Virtual Switching Supervisor Engine
720 with two 10 Gigabit Ethernet ports and
MSFC3 PFC3C
Site:
http://www.cisco.com/en/US/prod/collateral/s
witches/ps5718/ps9336/product_data_sheet09
00aecd806ed759js708 Products_Data_Shee
t.html
Documento:
Cisco Catalyst 6500 Series Virtual Switching
Supervisor Engine 720 - Pag. 1-7 "The
Cisco Virtual Switching Supervisor Engine
720 includes:"
ENTERASYS
Modelo :
Enterasys S-Series
Site :
http://www.enterasys.com/company/literat
ure/s-ds.pdf
Documento:
Enterasys S-Series® DATASHEET
Pag. 15
Option Modules
SOK1208-0102 S-Series Option Module
(Typel) - 2 10GBASE-X Ethernet ports
via SFP+ (Compatible with Typel &
Type2 option slots)
SOK1208-0104 S-Series Option Module
(Typel) - 4 10GBASE-X Ethernet ports
via SFP+ (Compatible with Typel &
Type2 option slots)
SOK1208-0204 S-Series Option Module
(Type2) - 4 10GBASE-X Ethernet ports
via SFP+ (Compatible with Type2 option
slots)
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
,
HP
Modelo:
HP 8200 zl Switch Series
Site:
http://h20195.www2.hp.com/V2/GetPDF.
aspx/4AA2-7811ENW.pdf
Documento:
HP 8200 zl Switch Series DATASHEET
Pag. 9
Included accessories
1 HP 20-port Gig-T PoE+ / 2-port 10GbE
SFP+ v2 zl Module (J9536A)
1 HP 20-port Gig-T PoE+ / 2-port 10GbE
SFP+ v2 zl Module (J9536A)
MINISTÉRIO DA SAÚDE
FUNDAÇÃO NACIONAL DE SAÚDE
SAS 0.04 — BI. "N" — 100 andar — Ala Norte
Brasília/DF - CEP: 70.070-040
Fone: (61) 3314.6417/6672 - Fax: (61) 3314.6717
d.2) para o switch central:
1
1
Deve suportar a instalação Modelo :
de módulos de interfaces WS-X6548-GE-45AF
que suportem PoE (Power- Site :
http://www.cisco.com/en/US/prod/collateral/s
over-Ethernet).
witches/ps5718/ps708/product data_sheet090
0aecd8017376e.html
Documento:
Cisco Catalyst 6500 Series 10/100- &
10/100/1000-MBPS Ethernet Interface
Modules
Pag. 3-19 "Table 2. Cisco Catalyst 6500
Series PoE Products"
Modelo :
Enterasys S-Series
Site :
http://www.enterasys.com/company/literat
ure/s-ds.pdf
Documento:
Enterasys S-Series® DATASHEET
Pag.3 "S130 Class I/O Modules"
Modelo :
Deve suportar solução do Modelo :
Data Center Manager (DCM)
mesmo fabricante com Nexus 1010
mecanismos que permitam Site
: Site :
visibilidade, controle e http://www.cisco.com/en/US/prod/collateral/s htto://www.enterasys.com/company/literat
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Modelo:
HP 8200 zl Switch Series
Site:
http://h20195.www2.hp.com/V2/GetPDF.
aspx/4AA2-7811ENW.pdf
Documento:
HP 8200 zl Switch Series DATASHEET
Pag.
12 "Modules"
HP 20-port Gig-T PoE+ / 2-port 10GbE
SFP+ v2 zl Module (J9536A)
HP 20-port Gig-T PoE+ / 4-port SFP v2 zl
Module (J9535A)
HP 12-port Gig-T PoE+ / 12-port SFP v2
zl Module (J9637A)
HP 24-port Gig-T PoE+ v2 zl Module
(J9534A)
HP 24-port 10/100/1000 PoE zl Module
(J8702A)
Modelo:
HP 8200 zl Switch Series
+ HP Virtual Application Networks
Site:
automação em ambientes
com máquinas virtuais
através dos seguintes
recursos:
1
1
Criação de perfis de porta
virtual
nos
switches
(VPPs),
a
serem
associados a máquinas
virtuais individuais, onde
os VPPs permitam a
configuração
de,
no
mínimo, listas de controle
de
acesso
(ACLs),
Qualidade de serviço
(QoS) e limitação de
banda (rate limiting).
Permitir a mobilidade de
máquinas virtuais de uma
porta do switch para
qualquer outra porta, de
forma que todas as
características
e
configurações necessárias
witches/ps9441/ps9902/ps10785/data sheet c
78-593960.html
Documento:
Cisco Nexus 1010 and 1010-X Virtual
Services Appliances Data Sheet
Pag. 1-11 "Operating inside the VMware
ESX hypervisor, the Cisco Nexus 1000V
virtualization
Series
supports
server
technology to provide:"
Modelo :
Nexus 1010
Site :
http://www.cisco.com/en/US/prod/collateral/s
witches/ps9441/ps9902/ps10785/data_sheet c
78-593960.html
Documento:
Cisco Nexus 1010 and 1010-X Virtual
Services Appliances Data Sheet
Pag. 1-11 "Operating inside the VMware
ESX hypervisor, the Cisco Nexus 1000V
Series supports server virtualization
technology to provide:"
Policy-based virtual machine connectivity
Modelo :
Nexus 1010
Site :
http://www.cisco.com/en/US/prod/collateral/s
witches/ps9441/ps9902/ps10785/data_sheet_c
78-593960.html
Documento:
ure/dcm-ds.pdf
Documento:
Data Center Manager (DCM)
DATASHEET
Pag.1 "Unified Virtual/Physical Data
Center Fabric Management"
http://h17007.wwwl.hp.corn/docs/van/V
AN_WhitePaper.pdf
Documento:
HP Virtual Application Networks
Pag. 2-8
Modelo :
Data Center Manager (DCM)
Site :
http://www.enterasys.com/company/literat
ure/dcm-ds.pdf
Documento:
Data Center Manager (DCM)
DATASHEET
Pag.2 "Enterasys Data Center Manager
establishes network profiles for physical
and virtual machines and
distributes them within the network fabric,
as well as coordinates the
profile assignment of virtual machines to
ensure consistent delivery of
services regardless of the physical
location of the VM."
Modelo :
Data Center Manager (DCM)
Site :
http://www.enterasys.com/company/literat
ure/dcm-ds.pdf
Documento:
Data Center Manager (DCM)
Modelo:
HP 8200 zl Switch Series
+ HP Virtual Application Networks
Site:
http://h17007.wwwl.hp.com/docs/van/V
AN_WhitePaper.pdf
Documento:
HP Virtual Application Networks
Pag. 2-8
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Modelo:
HP 8200 zl Switch Series
+ HP Virtual Application Networks
Site:
http://h17007.www1.hp.com/docs/van/V
AN_WhitePaper.pdf
Documento:
MINISTÉRIO DA SAÚDE
FUNDAÇÃO NACIONAL DE SAÚDE
SAS 0.04 — BI. "N" — 10 0 andar — Ala Norte
Brasília/DF - CEP: 70.070-040
Fone: 1
14. 4 7
- Fax:
1
para operação da máquina
virtual na nova porta
sejam
realizadas
automaticamente,
sem
necessidade
de
configuração manual dos
equipamentos.
Cisco Nexus 1010 and 1010-X Virtual
Services Appliances Data Sheet
Pag. 1-11 "Operating inside the VMware
ESX hypervisor, the Cisco Nexus 1000V
Series supports server virtualization
technology to provide:"
Mobile virtual machine security and network
policy
Possibilitar
o
acompanhamento
automatizado do ciclo de
vida das máquinas virtuais
na rede, de acordo com a
migração das máquinas
virtuais entre diferentes
servidores, bem como a
capacidade de mover
automaticamente
cada
VPP da máquina virtual
para o switch de rede
Modelo :
Modelo :
Nexus 1010
Data Center Manager (DCM)
Site :
Site :
http://www.cisco.com/en/US/prod/collateral/s http://www.enterasys.com/company/literat
witches/ps9441/ps9902/ps10785/data_sheet_c ure/dcm-ds.pdf
78-593960.html
Documento:
Documento:
Data Center Manager (DCM)
Cisco Nexus 1010 and 1010-X Virtual
DATASHEET
Services Appliances Data Sheet
Pag.2 "Visibility, Tracking and
Pag. 1-11 "Operating inside the VMware
Monitoring."
ESX hypervisor, the Cisco Nexus 1000V
Series supports server virtualization
DATASHEET
Pag.2 "Coordinating the automated
assignment of virtual machines (VMs)
within both the virtual and physical
network fabrics, DCM ensures that
proper network resources are allocated
when a VM is provisioned, no
matter where it is on the network."
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
HP Virtual Application Networks
Pag. 2-8
"HP's Intelligent Management Center or
IMC, can provide a single pane of glass to
monitor and manage a cloud network
based on a FlexNetwork architecture The
program is based on a service-oriented
architecture itself and the modular
component design enables IMC to
integrate disparate management tools.
Given the complexity and often
heterogeneous nature of an end-to-end
network environment, this capability can
be critical to ensure successful
implementation.."
Modelo:
HP 8200 zl Switch Series
+ HP Virtual Application Networks
Site:
h ttp://h 17007.www1.hp.com/docs/van/V
AN WhitePaper.pdf
Documento:
HP Virtual Application Networks
Pag. 2-8
"HP's Intelligent Management Center or
IMC, can provide a single pane of glass to
monitor and manage a cloud network
apropriado, aplicando os technology to provide:"
parâmetros de VPP e Nondisruptive operational model for your
políticas em tempo real.
server virtualization and networking teams
1
1
Deve
implementar
RMON2probeconfiguration
segundo a RFC 2021,
podendo ser implementada
internamente no switch ou
externamente, por meio de
probe em hardware
utilizando
uma porta
1000BaseTX.
Suportar
SMON
de
acordo com a RFC 2613.
Permitir o download e o
upload das configurações,
de forma segura, por meio
de SCP
(SecureCopyProtocol).
Modelo :
Cisco Catalyst 6500 Series and Cisco 7600
Series Network Analysis Module-1
Site :
http://www.cisco.com/en/US/prod/collateral/
modules/ps2706/data_sheet_c78-597209.html
Documento:
Cisco Catalyst 6500 Series and Cisco 7600
Series Network Analysis Module 4.2
Pag. 9-11
RMON2 (RFC 2021)
SMON (RFC 2613) - DatasourceCaps and
smonStats
Modelo :
Cisco Catalyst 6500 Series IOS
Site :
http:llwww.cisco.com/en/US/docs/iosxml/ios/sec_usr_ssh/configuration/122sy/sec-usr-ssh-sec-copy.html
Documento:
Secure Copy
Modelo :
Enterasys S-Series
Site :
http://www.enterasys.com/company/literat
ure/s-ds.pdf
Documento:
Enterasys S-Series® DATASHEET
Pag.7 "Network Analysis"
Modelo :
Enterasys S-Series
Site :
http://www.enterasys.com/company/literat
ure/s-ds.pdf
Documento:
Enterasys S-Series® DATASHEET
Pag.10 "RFC2401 Security Architecture
for the Internet Protocol"
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
based on a FlexNetwork architecture The
program is based on a service-oriented
.
architecture itself and the modular
component design enables IMC to
integrate disparate management tools.
Given the complexity and often
heterogeneous nature of an end-to-end
network environment, this capability can
be critical to ensure successful
implementation.."
Modelo:
HP 8200 zl Switch Series
Site:
http://h20195.www2.hp.com/V2/GetPDF.
aspx/4AA2-7811ENW.pdf
Documento:
HP 8200 zl Switch Series DATASHEET
Pag. 8 "Specifications (continued)"
Modelo:
HP 8200 zl Switch Series
Site:
http://h20195.www2.hp.com/V2/GetPDF.
aspx/4AA2-7811ENW.pdf
Documento:
HP 8200 zl Switch Series DATASHEET
Pag. 5 " Security shell"
MINISTÉRIO DA SAÚDE
FUNDAÇÃO NACIONAL DE SAÚDE
SAS Q.04 — BI. "N" — 100 andar — Ala Norte
Brasília/DF - CEP: 70.070-040
Fone: (61) 3314.6417/6672 - Fax: (61) 3314.6717
d.3) para o switch de acesso:
Item
6
6
Requisito (s)
CISCO
Deve implementar
Modelo :
RMON2-probe
Cisco Catalyst 3750-X
configuration segundo a Site :
RFC 2021, podendo ser http://www.cisco.com/en/US/prod/collate
implementada
ral/switches/ps5718/ps6406/data_sheet_c
internamente no switch 78-584733.html
ou externamente, por
Documento:
meio de probe em
Cisco Catalyst 3750-X and 3560-X Series
hardware utilizando
Switches Data Sheet
uma porta 1000BaseTX. Pag. 23-35 "RMON I and II standards"
ENTERASYS
Modelo :
C-Series C5 : C5K125-48P2
Site :
http://www.enterasys.com/company/lit
erature/c5-ds.pdf
Documento:
C-Series C5- DATASHEET
Pag.4 "Features / Standards and
Protocols (cont.)"
O equipamento deve
possuir nativamente
portas específicas para
empilhamento (fixas,
não modulares). Não
será aceita a utilização
de interfaces padrão 10Gigabit como porta de
empilhamento.
Modelo :
C-Series C5 : C5K125-48P2
Site :
http://www.enterasys.com/company/lit
erature/c5-ds.pdf
Documento:
C-Series C5- DATASHEET
Pag.5 "Physical Specifications" (2)
dedicated stacking ports
Modelo :
Cisco Catalyst 3750-X
Site :
http://www.cisco.com/en/US/prod/collate
ral/switches/ps5718/ps6406/data_sheet_c
78-584733.html
Documento:
Cisco Catalyst 3750-X and 3560-X Series
Switches Data Sheet
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Modelo: HP 5800 Switch Series + HP
Suport Tools
Site:
http://h20195.www2.hp.com/v2/GetP
DF.aspx/4AA3-0731ENW.pdf
http://www.hp.com/rnd/support/faqs/t
optools_hubs_switches.htm#questionl
8
Documento:
HP 5800 Switch Series DATASHEET
Pag. 9 "Management"
Modelo: HP 5800 Switch Series +
Módulo HP 5800 4 portas 10 GbE
SFP+ (JC091A)
Site:
http://h20195.www2.hp.com/v1GetP
DF.aspx/4AA3-0731ENW.pdf e
http://h10010.www1.hp.com/wwpc/pt/
pt/sm/WFO6c/A1-329290-642744179423-4179423-4202632-
Pag. 1-1 "In addition to the above
features, the Cisco Catalyst 3750-X
switches also offer:"
4202636.html
d.4) para cada célula referente a modelo/fabricante ou a solução/fabricante que atenda a cada requisito questionado e listado nas
tabelas acima, indicar na célula o item e a página do manual do modelo/fabricante ou a solução/fabricante que evidencie o
atendimento ao requisito (encaminhar endereço(s) eletrônicos(s) ou cópia do(s) manual(is) a ser(em) consultado(s));
RESPOSTA FUNASA:
Estamos encaminhando em anexo cópia dos manuais.
e) para cada um dos requisitos relativos ao switch central e ao switch de borda que foram questionados na terceira
impugnação, informar se o requisito consta das especificações de referência do SISP para o equipamento (switch central ou de borda,
conforme o item a que se refere o requisito questionado) e, caso não exista nas citadas especificações, a justificativa para sua inclusão no
termo de referência, por meio do preenchimento da tabela a seguir:
RESPOSTA FUNASA:
Item
1
Requisito (s)
" 'TABELA SISP'
Item correspondente da especificação de referência
do SISP
Especificação de Referência — Switch Central
Categoria Geral — Item 14.
Justificativa para a inclusão do requisito no termo de referência, caso não
conste da especificação do SISP
Cada
módulo
de
gerenciamento/supervisão deve
suportar a instalação de, no
mínimo, 2 (duas) portas Não serão consideradas as portas 10/100BASE-TX,
10GBase-X.
10/100/1000BASE-T, 1000BASE-SX e 10GBASESR instaladas em módulos de supervisão ou
As portas disponíveis nos gerenciamento para compor a quantidade de portas
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
MINISTÉRIO DA SAÚDE
FUNDAÇÃO NACIONAL DE SAÚDE
SAS Q.04 — BI. "N" — 100 andar — Ala Norte
Brasília/DF - CEP: 70.070-040
Fone: (61) 3314.6417/6672 - Fax: (61) 3314.6717
módulos
gerenciamento/supervisão
serão
consideradas
configuração
1
1
1
de solicitadas.
não
na
Deve suportar a instalação de
módulos de interfaces que
suportem PoE (Power-overEthernet).
Deve suportar solução do
mesmo fabricante com
mecanismos que permitam
visibilidade, controle e
automação em ambientes com
máquinas virtuais através dos
seguintes recursos:
Criação de perfis de porta
virtual nos switches (VPPs), a
serem associados a máquinas
virtuais individuais, onde os
VPPs permitam a configuração
de, no mínimo, listas de
Especificação de Referencia — Switch de borda tipo 8
Categoria Geral — Item 7.
A opção por esta tecnologia justifica-se por útil para fornecer energia a
telefones IP (pré-requisito para o Projeto Voip Funasa), ponto de acesso
de redes sem fio( Referente ao Lote 2 da solução pretendida), câmeras de
Suporte ao padrão IEEE 802.3af (Power over
rede, switches remotos, dispositivos embarcados, bem como a outros
Ethernet PoE) nas 48 portas exigidas no item 6 sem
equipamentos para os quais pode ser incoveniente, caro, ou até mesmo
necessidade de fonte adicional para alimentar todas
impraticável fornecer energia em separado.
as portas na potência de 15,4 W.
—
Tendo em vista a crescente adoção da virtualização de servidores no
centro de dados e a possibilidade de adoção desta funcionalidade por parte
da Área de Tecnologia da Informação da Funasa.
Levamos em consideração as vantagens de uma maior consolidação,
redução do uso de energia, aumento da disponibilidade e resiliência.
No entanto, a ausência desta funcionalidade dificultaria a virtualização de
servidores, acarretando em alguns desafios operacionais sobre o lado de
rede, tais como:
1. Localização da máquina virtual, ou seja, em que switch e porta ela está
conectada;
2. Configuração de ACLs, QoS, limitação de velocidade, e outros
recursos para cada máquina virtual.
3. Mapeamento e histórico de movimentação da maquina virtual dentro do
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
1
1
1
controle de acesso (ACLs),
Qualidade de serviço (QoS) e
limitação de banda (rate
limiting).
Permitir a mobilidade de
máquinas virtuais de uma porta
do switch para qualquer outra
porta, de forma que todas as
características e configurações
necessárias para operação da
máquina virtual na nova porta
sejam realizadas
automaticamente, sem
necessidade de configuração
manual dos equipamentos.
Possibilitar o acompanhamento
automatizado do ciclo de vida
das máquinas virtuais na rede,
de acordo com a migração das
máquinas virtuais entre
diferentes servidores, bem
como a capacidade de mover
automaticamente cada VPP da
máquina virtual para o switch
de rede apropriado, aplicando
os parâmetros de VPP e
políticas em tempo real.
Deve implementar RMON2probeconfiguration segundo a
RFC 2021, podendo ser
implementada internamente no
switch ou externamente, por
meio de probe em hardware
ambiente.
Observação: Especificação de Referência — Switch Central
Item 72 - Qualidade de serviço (QoS)
Item 88 - Limitação de banda (rate limiting)
Item 92 - Listas de controle de acesso (ACLs)
Uma forma de solucionar esses e outros desafios é através da construção
de um Perfil de Porta Virtual (VPP), que pode ser associado com
máquinas virtuais individuais de uma forma centralizada. Dessa forma
para cada VPPs permitir configuração de ACLs, QoS, limitação de
velocidade, e outros recursos dinamicamente.
Com a virtualização de Perfil, os usuários podem ter os documentos e
perfil separados de uma máquina específica, o que permite a fácil
movimentação do usuário para novas estações em caso de roubo ou
quebra de equipamento. A Virtualização de Perfil também permite ter uma
experiência de desktop única quando utilizando outras tecnologias de
virtualização, como VDI.
Especificação de Referência — Switch Central
Categoria Geral — Itens:
106. Permitir, no mínimo, 4 grupos de RMON, sem a
utilização de probes externas. 119.Suportar e
Implementar funcionalidades SNMP, bem como:
Os objetos RMON são organizados em 20 grupos. Os primeiros 10 grupos
constituem a MIB RMON1, voltada ao gerenciamento das operações
realizadas nos níveis físicos e de enlace em redes Ethernet. Os 10 grupos
restantes constituem a MIB RMON2, proposta para viabilizar a coleta de
estatísticas e informações para protocolos acima do nível de enlace. Ela
permite a monitoração de padrões de uso da rede e a observação do
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
MINISTÉRIO DA SAÚDE
FUNDAÇÃO NACIONAL DE SAÚDE
SAS 0.04 — BI. "N" — 100 andar — Ala Norte
Brasília/DF - CEP: 70.070-040
Fone: (61) 3314.6417/6672 - Fax: (61) 3314.6717
utilizando uma porta
1000BaseTX.
Suportar SMON de acordo com
a RFC 2613.
tráfego de aplicações clienteservidor (ex.: HTTP, FTP, DNS, entre outras).
119.1.Implementar RFC 1213 - Management
Information Base for Network Management of A utilização desse protocolo RMON2 visa coletar Estatísticas de Níveis
TCP/IP-based internets: MIB-II;
mais Altos, como: tradução de endereços, realizar buscar especificas de
cada contador, realizar filtragens mais amplas e configuração de probes.
119.2.Suportar RFC 1215 MIB-II - A Convention for
Defining Traps for use with the
O RMON2 permite que os aplicativos de gerenciamento de rede para
SNMP;
monitorar os pacotes em todas as camadas da rede, diferentemente do
RMON que só permite nas camadas 1 e 2.
O SMON, conforme especificado pelo RFC 2613, estende a MIB RMON,
fornecendo implementações de dispositivos remotos de monitoramento
especificamente para ambientes de rede comutada, apoiando definições
802.1Q VLAN. SMON suporta um recurso de cópia porta para copiar o
tráfego de um ligado a uma porta de monitoramento no mesmo switch.
Embora uma função portCopy já existe no RMON 1, SMON estende este
conceito para copiar as informações da VLAN completa. Isso facilita a
tarefa dos operadores, pois somente a VLAN desejada precisa ser
selecionado, e não portas individuais. A cópia pode ser feita como porta-aporta, multiport-a-porta, ou multiport-to-multiporta.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
1
6
Permitir o download e o upload
das configurações, de forma
segura, por meio de SCP
(SecureCopyProtocol).
Deve implementar RMON2probe configuration segundo a
RFC 2021, podendo ser
implementaria internamente no
switch ou externamente, por
meio de probe em hardware
utilizando uma porta
1000BaseTX.
Especificação de Referência — Switch Central
Categoria Geral — Item:
.
105.9. Suportar cópia de arquivos de configuração e
imagens de firmware usando no mínimo um dos
seguintes protocolos: TFTP, FTP, SFTP ou SCP.
Especificação de Referencia — Switch de borda tipo 8
Categoria Geral — Itens:
55. Permitir, no mínimo, 4 grupos de RMON, sem a
utilização de probes externas.
56. Suportar a MIB II - RFC 1213 .
Os objetos RMON são organizados em 20 grupos. Os primeiros 10 grupos
constituem a MIB RMON1, voltada ao gerenciamento das operações
realizadas nos níveis físicos e de enlace em redes Ethernet. Os 10 grupos
restantes constituem a MIB RMON2, proposta para viabilizar a coleta de
estatísticas e informações para protocolos acima do nível de enlace. Ela
permite a monitoração de padrões de uso da rede e a observação do
tráfego de aplicações cliente servidor (ex.: HTTP, FTP, DNS, entre
outras).
A utilização desse protocolo RMON2 visa coletar Estatísticas de Níveis
mais Altos, como: tradução de endereços, realizar buscar especificas de
cada contador, realizar filtragens mais amplas e configuração de probes.
O RMON2 permite que os aplicativos de gerenciamento de rede para
monitorar os pacotes em todas as camadas da rede, diferentemente do
RMON que só permite nas camadas 1 e 2.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
MINISTÉRIO DA SAÚDE
FUNDAÇÃO NACIONAL DE SAÚDE
SAS Q.04 — BI. "N" — 10 0 andar — Ala Norte
Brasília/DF - CEP: 70.070-040
•
6
O equipamento deve possuir
' nativamente portas específicas
para empilhamento (fixas, não
modulares). Não será aceita a
utilização de interfaces padrão
10-Gigabit como porta de
empilhamento.
Especificação de Referencia — Switch de borda tipo 8
Categoria Geral — Item 11:
Arquitetura de switch Stackable, permitindo o
empilhamento de até 4 (quatro) unidades por
caminhos redundantes através de cabo do tipo closedloop, e com desempenho mínimo de 10 (dez) Gbps
full-duplex por porta de empilhamento, sendo que as
portas de empilhamento devem ser adicionais às
solicitadas no item 6 e 9.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
f)
fundamentação para criação da ata de registro de preços (e.g., por um
dos incisos do art. 2° do Decreto 3.931/2001), indicando em que artefato da etapa
de planejamento consta tal informação;
RESPOSTA FUNASA:
A Lei n.° 8.666/93 estabelece que as compras, sempre que
possível, deverão ser realizadas através de sistema de registro de preços, conforme
artigo 15, inciso II.
Art. 15. As compras, sempre que possível, deverão:
II - ser processadas através de sistema de registro de
preços;
Por sua vez o Decreto n.° 3.931/2001 regulamentou o Sistema de
Registro de Preços, onde no artigo 2.° estabeleceu a adoção preferencial, abaixo.
Art. 2° Será adotado, preferencialmente, o SRP nas seguintes
hipóteses:
I - quando, pelas características do bem ou serviço, houver
necessidade de contratações freqüentes;
II - quando for mais conveniente a aquisição de bens com previsão
de entregas parceladas ou contratação de serviços necessários à
Administração para o desempenho de suas atribuições;
III - quando for conveniente a aquisição de bens ou a contratação
de serviços para atendimento a mais de um órgão ou entidade, ou
a programas de governo; e
IV - quando pela natureza do objeto não for possível definir
previamente o quantitativo a ser demandado pela Administração.
Parágrafo único. Poderá ser realizado registro de preços para
contratação de bens e serviços de informática, obedecida a
legislação vigente, desde que devidamente justificada e
caracterizada a vantagem econômica.
Como se observa, o referido Decreto exemplificou os quatro tipos de aquisições
em que é recomendável a utilização do SRP:
•
•
contratações freqüentes;
por conveniência da administração;
•
•
contratação por mais de um órgão ou entidade;
quando não for possível definir o quantitativo.
Como se vê, o artigo contém indicativo da aplicação no SRP, servindo como
balizador maior de sua aplicação. A norma é de conteúdo meramente exemplificativo.
Nesse sentido, fica claro que a utilização do SRP não se resume aos quatro
incisos do artigo 2.° do Decreto n.° 3.931/2001.
No caso em questão, a decisão pelo Sistema de Registro de Preços se deu após o
planejamento, por conveniência da Administração em virtude da licitação ser realizada
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
MINISTÉRIO DA SAÚDE
FUNDAÇÃO NACIONAL DE SAÚDE
SAS Q.04 — BI. "N" — 100 andar — Ala Norte
Brasília/DF - CEP: 70.070-040
Fone: (61) 3314.6417/6672 - Fax: (61) 3314.6717
no final do exercício, o que envolve a questão orçamentária, somando-se a isso a
transição da saúde indígena consoante o estabelecido no Decreto n.° 7.530, de 21 de
julho de 2011, artigo 6°, o qual revogou o Decreto n.° 7.336, de 19 de outubro de 2010,
artigo 5°.
Art. 5° Ficam transferidos, da Fundação Nacional de Saúde FUNASA para o Ministério da Saúde, os bens permanentes ativos
compreendendo móveis, imóveis, intangíveis e semoventes, acervo
documental e equipamentos destinados à promoção, proteção e
recuperação da saúde dos povos indígenas, incluindo os
relacionados às ações de saneamento ambiental em terras
indígenas.
Nesse sentido, não havia ainda à época uma definição do que
seria repassado ao Ministério da Saúde em função da transição da saúde indígena.
g) evidência de que praticou todos os atos descritos no Decreto
3.931/2001, art. 3°, § 2°, em especial o previsto no seu inciso I, que consiste em
"convidar mediante correspondência eletrônica ou outro meio eficaz, os órgãos e
entidades para participarem do registro de preços";
RESPOSTA FUNASA:
O Ministério do Planejamento, Orçamento e Gestão — MP, no âmbito de
sua atuação, por intermédio da Secretaria de Logística e Tecnologia da Informação SLTI, e do Departamento de Logística e Serviços Gerais — DLSG, com amparo no
Decreto N° 3931/2001, implantou no Comprasnet, a partir do dia 20 de agosto de 2008,
um novo sistema denominado "Intenção de Registro de Preços IRP" o qual tem por
objetivo tornar pública futuras licitações para registro de preços realizadas nas
modalidades (pregão ou concorrência), na Administração Pública.
A Intenção de Registro de Preços está voltada, além de outras
finalidades, à obtenção da economia de escala, um dos seus principais requisitos, onde
maiores quantidades deverão promover a obtenção de menores preços. O Registro de
Preços, para contratações futuras, deverá ser divulgado com antecedência no
Comprasnet, por meio da IRP, visando a adesão de outros órgãos interessados na
contratação daquele mesmo objeto.
O acesso ao sistema IRP foi disponibilizado para a função de pregoeiro.
Caberá ao pregoeiro o registro da IRP, bem como das decisões que o Sistema requer.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Foi editado pela SLTI/Ministério do Planejamento o Manual da IRP,
que tem por finalidade orientar os servidores habilitados e cadastrados a operarem a
funcionalidade de "INTENÇÃO DE REGISTRO DE PREÇOS — IRP, que tem como
finalidade permitir à Administração tornar públicas suas intenções de realizar Pregão ou
Concorrência para Registro de Preços, com a participação de outros órgãos
governamentais, que tenham interesse em contratar o mesmo objeto, possibilitando
auferir melhores preços por meio de economia de escala.
O Ministério do Planejamento Orçamento e Gestão, através da
Secretaria de Logística e Tecnologia da Informação e do Departamento de Logística e
Serviços Gerais, com amparo no Decreto n°. 3.931 de 19 de setembro de 2001
implantou a funcionalidade denominada "Intenção de Registro de Preços", tornando
pública, no âmbito dos usuários do COMPRASNET as intenções de futuras licitações
(Pregões Eletrônicos, Presencias e Concorrências) para Registro de Preços.
http://www.compraspara.pa.gov.br/site/sites/default/files/MANUAL IRP.pdf
Com isso, foi registrado no sistema a Intenção de Registro de Preços —
IRP para convidar outros órgãos públicos, na forma exigida na legislação.
h)
indicação, no termo de convocação, de quantitativos (máximos) a
serem contratados por meio dos contratos derivados da ata de registro de preços,
conforme previsto no Decreto 3.931/2001, art. 9°;
RESPOSTA FUNASA:
Segue o registro no sistema IRP.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
•
MINISTÉRIO DA SAÚDE
FUNDAÇÃO NACIONAL DE SAÚDE
SAS Q.04 — BI. "N" —10° andar — Ala Norte
Brasília/DF - CEP: 70.070-040
Fone: (61) 3314.6417/6672 - Fax: (61) 3314 6717
ï1 iG1••■•‘t 17,...V101•Jec•*•terld. Eicp.
1eNn^••••• +.1 tcmprasnotgov.tr •
Rani da IRP
■
tháiiá
411
1:111.1 Nem
•
•
tí;
Cr1MAne6 1/101oilin1121;111arborimont• A/tomento • tahmook.41•61
NT\*G -i4;•cii1o/1111.411;*111.1 .ái
• • • .•
nSei•
Ma..
llono,01*,
1
*01560.0500 rf=::;.°
SAteffa.
259nire
Utri•
r
MOO io.
t$321240
DE SALDOU,
755CCo .tas-
1.1111340/
*urro, VIM
iltpaDS
4NMr V.e1r
11”09,3500
SÂLE,Er,
o
1 Nono,
48215,20
0+oelee.0.3F
.,••1111.3r
10 • 11S•
AO
e
1.111la0e
tra,,
Sç!e55 -xr5
o r ama
•••1
a
Nentn Volor 1
yolo11-1-
•*U.*&1"; 111.P •• Wird,
. ....
, "vedo
terrrel
^^-
a•ryosnet.gcv.tr • ...,
R C o -os- •
trio•of
.menor veie, ;
0C.1406
119,6100
3.3131.30
11
3,00 5-
el.auF
ater
ri,
Df :
C - {IV.- •
r.o• 2,0 EnsWF
rs c'
s4..e' rk
' nF
1:1:0
1 1,1r
ir•
•■•
CE/1)f
Adicionai
011. ao•or••
<10
PM 11.1_42
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
1.:1
i)
relação de autorizações já realizadas para adesão à ata registrada,
indicando ente público, data da autorização e quantitativo;
RESPOSTA FUNASA:
Até esta data o Tribunal Regional do Trabalho da 20a Região, mediante
Ofício DG n.° 127/2012, de 27 de junho de 2012, solicitou adesão a Ata de Registro de
Preços para os itens 3, 6, 7, 10 e 11, totalizando R$ 184.814,44.
ulmki...cleeva. IA11.0.110 P.A :e RR,: 11 O
t é.tó
•
.
..
..
mu i
1,427.ftifi 00d
.
MARCOS ROItt:0T.0111ïFMIE(:'"
1erSidiNat10..(JéNeáit -Áiakkrio 0.1 Md* : .•
RAIS Qouln i•Itlet;i'`N''.4. itnitir • A1.5.1
Senkir
.
.•
.1,, mi.
Iceldá p^ Yezio . l.k1rZik6
1g51,
ircirds0o. enodo. V. 5,6 :renssent ak9,btms ib
19 IX 4,ITro NO; GN,
f`n8Am
trp.i.indsn yursea.,..e mrn r.Enxxi. rm rritoo.k
rntaclOplimbpSéeMe itgWul. ,.isaiec 1 ig,-WOu
.....
Preko..,
e'
•
•
•
• n,11
.
.
ornme,.. gar • : ene:, .
50i,IT
?-c
IN.VARMATICA LIDA. treirr.k.: ely,,,,e.lneb • swfrnnélveki,ie,to '01n
01#1 aut.. ilfrgyn.W.J;
le¡,ifr1,111 tal
' 4,3éá,
j)
controles internos existentes para mitigar o risco de que a soma dos
quantitativos contratados em todos os contratos derivados da ata não supere o
quantitativo máximo previsto no edital.
RESPOSTA FUNASA:
Não existe qualquer risco de ultrapassar quantitativos registrados em
Ata, uma vez que a licitação foi lançada no SIASG e dessa forma o próprio sistema
impede que sejam empenhados quantitativos acima do licitado, ou seja, além dos
controles convencionais, o próprio SIASG não permite o empenhamento acima do
registrado em ata.
Outrossim, não poderia deixar de mencionar a respeito da empresa
D&D Tecnologia e Informática Ltda., uma vez que em consulta ao Sicaf percebe-se que
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
MINISTÉRIO DA SAÚDE
FUNDAÇÃO NACIONAL DE SAÚDE
SAS Q.04 — BI. "N" — 10 0 andar — Ala Norte
Brasília/DF - CEP: 70.070-040
Fone: (61) 3314.6417/6672 - Fax: (61) 3314.6717
referida empresa não é do ramo objeto da licitação em debate, conforme espelho do
Sistema abaixo:
.
cernp100net.~0,:•1
verdede svfoLeet A i.. 9C elencp soe ferio e Cerni de Piojetos -
,
ALMIÇ 0E5 O) NEW E
:te, a de Cadastfame,c 1.1rOcadc Lr
-•- • ....
Censurar LInhaf de Pornoetnento de Fornecedor
O
10u00911 ,..m1
AUL' 5.201€1
pseyedvoidam 01100,,,X. LIDA
ne ama.
Pode <1. Oro. 154
Irlunicéu
.
•
eleauttedo
00000
1413
II00011051:5 ,00.4K ABRRROSCAS
•
501200. AFMAMENTO. [NILO-E. E 00505 CORREL , o5
MIMAS
. .
LAALOS LUre EaR0C50 40,001- Plo44ç4n I
•
Ul ['retro mcdo Netegidn:Demtivedo
oeel. ,
ce,ptur.d.gov.ls ■
•
vatl.de urroc.da . Ni... cl P.n,3eo40ho,. 50j Cencel de Pro¡ems
S•dern,
CoA 0.10.00 tiffica4
: • •::••,
00 ,00E50E BENS C St. flà Cr rn, 4r
Y,
TKOM
-
5.
-
5550 55,5,5545,
P50ine Segurança Ferrem."
u, lc 025-5 -0-0
. „.,.
•
..
„,
Ceintuttar Urnas do FOrnecknonto do FomOciidor
37112
0ELAR.. AAREAUENTO. [11.017 E 015005000500013,.L100 000.0040245
0012 0000010195
0044 fusSits tareauProes, 00100204 00)01020000
•
5924 ttlAVESEteritCAS
0210 APA0012I05 DE UTIMAÇÃQEttINICA USO 4/.11411r. E E01I014
8220 10203 E0UPAWIII0$ 011.41110.A0C tut,CA PARA Ve
€245
0511
t.4004..5n.0r0IC.4.5
137W.I0E5T20 ECILIPA0007052 tl.mxiffr0e,20,CO5E CA400005
€105
tte/PANEI,CS E 34.1.0.1dre`OS DE
6150
60PR020005#0700P0PC00
GENTÁPIC 0040e0*0.10
7010 OROPO LASP,,VOS ONLInhawn CO010 55,E145
7 025
7031
5115/A21 A02402013401N,"0 DE E.M.!. E 0 , t , 05 corar
14111000E050 5 5 JP012115 0000155100050 077707.0T5005 LAIKS
00094
trrES PAR.APADLEssr,nwro eury.[Âew wons
. .
.
.
dr 14.5.bs de 7C
. iNewee
Aeve
•
•
Leg., RU €44 741-11 .000.00 LUIZ HARROS..9111,11VR INCOuçio
Interr.) I MOdo Protegido: Otsativedo
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
lo
0, 30011
Wil-Cat i=Wca;;;;;;.,
•te
t:; rttr.:/. aane.:e.celnenotalet.yow.ba
N.11.3: • ...11
lj A vodiede Mercada • 0ni.. Çj Planede tua frete
Central de tr. tett, • Neje.. É; AC21.112;;ÕCi
-5:iteeiii2e.Cedastrarne;tellniSonk dr -
Consultar Linhas da Forneclr1•nto 0o Fornacenor
•
ditos enmeense Acessánce
7810
•
ECOMSLIENTC PA.a ii.E'n5110E 1ESP0073
8210
6a05 CARIC.9. AVES E 41%15
DUO CVSIMI,M£41.(105
C42rA.1.15 u0^R0i$C5E ata4a.5
CO51WCAtÂC
fkglamnrtef
tedaçieSiskrraVexederise
•
ant•K,
de 3111131.31131.3
417110tly APahySti HariOançlp. (+cot...m.0 Lattre
3541
lag's stemill.•tessfivoN...,
errar, lado
tn•rImeed;
ed: 7■ 1.-57 . CARLOS ltdiBARROSO 11dRede•Orodedier
Conthddo
k)
Internei Modo Protegido: Desativado
Ao consultarmos o site http://www.ddtecnologias.com.br/, de igual
forma resta evidente que a então impugnante não possui os produtos objeto da licitação
e sequer os representa.
, a•Asntes
A verdade svga<ada - hi...
ta[ medo I de Grete, • roje.,
e'
AQUISIÇÕES DE SENS ESC..
Paigir. • Suautanç
lar.91
, rochno, • Sztl4ÇOS
CACO
3,34 Tra,-.
para
Downinads
nStitUtfOnal
Sayarte pata mo
.0
'Atendimento üttimas Noticias
rd Me e
Suporte para texto
Vejam o que diz no site da empresa:
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
•
MINISTÉRIO DA SAÚDE
FUNDAÇÃO NACIONAL DE SAÚDE
SAS 0.04 — BI. "N" — 10° andar — Ala Norte
Brasília/DF - CEP: 70.070-040
Fone: (61) 3314.6417/6672 - Fax . (61) 3314 6717
dteenclogas, om
ivoritcs
t,
.rerdade stdeced? • r: planeje tu frete R: ••
AgUISI;Dfs DE
BUIS ES:—
• k'
orne - Lann;tet.ce.•...
gratuit0
lire
Servko
Downloads
Atendimento
Últimas
Segv.rn6
ias
Notícias
59Mos uma empresa de tecnologias e serviços, vogada ao mercado corporativo. e Due, desde sua'
fundaçáo no ano de 2093 : tem se posicionado 'à frente de será concorrentes quanto à disponibilidade de
produtos e serviços em sus área de atuaçâo, e de modo especial, na oferta de produtos ergonórnicos,. Que
pvnsibilitern às empresas o In brim em produçáo, atingida Pela disponibilidade a seus cdaboradoies de
um ambiente saudável e convidativo ao m áximo• em dedicação c nricie nela.
oci, ido
twou
Tais apontamentos foram colocados apenas para ilustrar que a empresa
atua no ramos de materiais e equipamentos na área de ergonomia, o que é muito
estranho e curioso, se de fato ela tinha interesse direto na licitação ou se estava servindo
a terceiros para que esses terceiros não aparecessem.
Respeitosamente,
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Carlos Frederico Vergne de Carvalho
Carlos Luiz Barroso Junior
sexta-feira, 20 de julho de 2012 14:57
Carlos Frederico Vergne de Carvalho
ENC: Solicitação Impugnação PE 34/2011
Resposta a impugnação empresa D&D TECNOLOGIA E INFORMÁTICA LTDA.Ativos de Rede - Pregão 34-2011.1.doc
De:
Enviado em:
Para:
Assunto:
Anexos:
De: CPL [mailto:cpl@funasa.gov.br]
Enviada em: terça-feira, 13 de dezembro de 2011 16:38
Para: 'denner@ddtecnologias.com.br '
Assunto: RES: Solicitação Impugnação PE 34/2011
Sr. Licitante, em virtude do site do comprasnet, não comportar a decisão desta Pregoeira do seu pedido de
impugnação, estamos enviando por este e-mail sua resposta.
Atenciosamente,
Ida Maria de Castro Gusmão/Pregoeira
De: denner@ddtecnologias.com.br [mailto:denner@ddtecnologias.com.br]
Enviada em: segunda-feira, 12 de dezembro de 2011 16:58
Para: cpl@funasa.gov.br
Assunto: Solicitação Impugnação PE 34/2011
Senhores,
Segue anexo nossa solicitação de impugnação do
Abs,
Denner Almeida
Diretor Comercial
D&D TECNOLOGIAS
Tel./Fax : (61) 3399-2917
Cel. : (61) 8406-7215 / 9263-0969
www.ddtecnologias.com.br
1
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
ESPECIFICAÇÕES
TÉCNICAS
SISP
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Especificação de Referencia -- Switch de Borda TIPO 8 - 48 portas,
pOrtas IOGE com PoE
Switch de Borda TIPO 8, de 48 portas e 2
portas de 10 Gbps, com suporte PoE.
Concentração das conexões do cabeamento
secundário oriundas dos pontos de
telecomunicações.
Aplicacao do Material
Especificação Técnica
ARQUITETURA
1. Permitir instalação em gabinete de 19" (dezenove polegadas).
2. LEDs de identificação de atividades de status do sistema, de cada porta e de
alimentação.
3. Fonte de alimentação AC de 100/240 V, 60 Hz, com chaveamento automático.
4. Possuir altura de no máximo 1 RU.
5. Suportar operação normal em temperaturas de 5°C até 40°C.
CONECTIVIDADE
6. Possuir 48 portas GigabitEthernet 1000Base-T autosense e autonegóciavel com
suporte a conectores RJ-45 de acordo com o padrão IEEE 802.3ab. As portas
deverão ser compatíveis com Fast Ethernet 100BASE-TX no padrão IEEE 802.3u.
7. Suporte ao padrão IEEE 802.3af (Power over Ethernet — PoE) nas 48 portas
exigidas no item 6 sem necessidade de fonte adicional para alimentar todas as
portas na potência de 15,4 W.
8. Suporte ao padrão IEEE 802.3at (Power over Ethernet plus — PoE+) nas 48 portas
exigidas no item 6. Em 10 portas, no mínimo, não será permitido uso de fonte
adicional. Nas 38 portas restantes pode ser utilizado fonte adicional para
alimentação na potência de 34,2 W.
9. Possuir, no mínimo, 2 (duas) portas SFP+ ou XFP 10 Gigabit Ethernet, para
inserção de módulos do tipo mini-GBIC suportando o padrão IEEE 802.3ae.
10.As portas ópticas deverão ser compatíveis com os seguintes transceivers do tipo
mini-GBIC:
10.1.1000Base-SX, para fibra óptica multimodo com conectores LC, segundo o
padrão IEEE 802.3z.
10.2.1000Base-LX, para fibra óptica monomodo com conectores LC, segundo o
padrão IEEE 802.3z.
10.3.1000Base-LX10, para fibra óptica monomodo com conectores LC, segundo o
padrão IEEE 802.3z.
Ministério do Planejamento - SLTI
Página: 1
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
10.4.10GBase-SR, para fibra óptica multimodo com conectores LC, segundo o
padrão IEEE 802.3ae.
10.5.10GBase-LR, para fibra óptica monomodo com conectores LC, segundo o
padrão IEEE 802.3ae.
11.Arquitetura de switch Stackable, permitindo o empilhamento de até 4 (quatro)
unidades por caminhos redundantes através de cabo do tipo closed-loop, e com
desempenho mínimo de 10 (dez) Gbps full-duplex por porta de empilhamento,
sendo que as portas de empilhamento devem ser adicionais às solicitadas no item
6 e 9.
12.Possuir porta de console para ligação direta e através de terminal RS-232 para
acesso à interface de linha de comando. Poderá ser fornecida porta de console
com interface USB.
13.Deverá ser fornecido cabo de console compatível com a porta de console do
equipamento, bem como o cabo para permitir o empilhamento. .
1
rDESEMPENHO
14.Capacidade de comutação de no mínimo 152 (cento e cinquenta e dois) Gbps, fullduplex e non-blocking.
15.Capacidade de encaminhamento de pacotes de no mínimo 290 (duzentos e
noventa) Mpps full-duplex e non-blocking.
16.Capacidade de armazenamento de no mínimo 8.000 (oito mil) endereços MAC.
17.Suportar a configuração de no mínimo 4094 (quatro mil e noventa e quatro) Vlans
Ids.
18.Permitir a configuração de no mínimo 255 (duzentos e cinquenta e cinco) Vlans
ativas simultaneamente.
19.
IEUNCIÔNALIDAÓES
20. Implementar as seguintes funcionalidades/padrões:
20.1.Padrão IEEE 802.3x (Flow Control);
20.2.Padrão IEEE 802.1d (Spanning Tree);
20.3.Padrão IEEE 802.1w (Rapid Spanning Tree);
20.4. Padrão IEEE 802.1s (Multiple Spanning Tree);
20.5. Padrão IEEE 802.3ad (Link Aggregation);
20.6.Padrão IEEE 802.1p (CoS — Class of Service);
20.7.Padrão IEEE 802.1x (Network Access Control);
20.8.VLANs segundo o padrão IEEE 802.1q;
20.9.IGMPv1,IGMPv2 e IGMPv3 snooping;
20.10.DHCP snooping ou funcionalidade similar que permita o bloqueio de
servidores DHCP não autorizados na rede;
20.11.DHCP relay;
20.12.BOOTP relay;
Ministério do Planejamento - SLTI
Página: 2
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
20.13.Espelhamento do tráfego de entrada e saída de múltiplas portas do switch
em uma única porta, inclusive entre portas de diferentes unidades de uma
pilha;
20.14.Mecanismo de limitação (supressão) de broadcast;
20.15.Mecanismos de proteção contra Destination Lookup Failure (arp spoofing);
20.16. Permitir encaminhamento de Jumbo Frames com tamanho mínimo de 9000
bytes nas portas Gigabit Ethernet e nas portas 10 Gigabit Ethernet;
21. Implementar os protocolos LLDP (IEEE 802.1ab) e LLDP-MED, com auto
negociação de energia para PoE.
22. Implementar reconhecimento de Telefones IP e provisioná-los na VLAN de voz
automaticamente.
23. Implementar IPv6.
24. Permitir a configuração de endereços IPv6 para gerenciamento.
25. Permitir resolução de endereços IPv4 e IPv6 para nomes (hostnames) atribuídos
aos ativos de rede.
26. Implementar ICMPv6 com as seguintes funcionalidades: ICMP request, ICMP
Reply, ICMP Neighbor Discovery Protocol (NDP), ICMP MTU Discovery.
27. Implementar protocolos de gerenciamento Ping, Traceroute, Telnet e SNMP sobre
IPv6.
28. Implementar mecanismo de Dual Stack (IPv4 e IPv6), para permitir migração de
IPv4 para Ipv6.
29. Implementar roteamento estático para os protocolos IPv4 e Ipv6.
QUALIDADE :PE $ERVIO:
30. Limitação de tráfego de entrada permitindo variar a taxa de limitação com
granularidade de 512 (quinhentos e doze) kbps por porta.
31. Permitir a configuração de, no mínimo, 4 (quatro) filas de prioridade por porta
10/100/1000Base-T, 4 (quatro) filas por porta 1000Base-SX/LX e 4 (quatro) filas
por porta 10 Gigabit Ethernet.
32.1mplementar funcionalidades de controle e limitação de tráfego por classe de
serviço.
33. Implementar classificação e marcação de pacotes baseada em endereço de
origem.
34. Implementar classificação e marcação de pacotes baseada em porta de origem.
Ministério do Planejamento - SLT1
Página: 3
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
35. Implementar classificação e marcação de pacotes baseada em endereço de
destino.
36. Implementar classificação e marcação de pacotes baseada em porta de destino.
37. Implementar classificação e marcação de pacotes baseada em marcação DSCP.
38. Implementar classificação e marcação de pacotes baseada em marcação IP
Precedence.
39. Implementar classificação e marcação de pacotes baseada em CoS ("Class of
Service" — nível 2).
40. Implementar os seguintes algoritmos de fila: Strict Priority e Round Robin com
distribuição de pesos WRR (Weighted Round Robin) ou SRR (Shaped Round
Robin).
igGURANÇA
41. Controle de acesso por porta segundo o padrão IEEE 802.1x, com configuração
dinâmica da VLAN do usuário autenticado.
42. Configuração automática de VLAN de quarentena para a porta de
dispositivos/usuários autenticados no padrão IEEE 802.1x.
43. Caso o dispositivo a ser conectado não possua cliente IEEE 802.1x, o switch o
posicionará em uma VLAN default.
44. Capacidade de autenticar ao menos 2 (dois) dispositivos 802.1 X por porta, para
suporte à autenticação de sistemas operacionais virtualizados. Os switches
deverão ser capazes de direcionar o tráfego de cada dispositivo para VLANs
distintas;
45. Autenticação de dispositivos baseado no endereço MAC, via servidor RADIUS ou
TACACS.
46. Limitação de endereços MAC por porta. Os endereços MAC podem ser aprendidos
automaticamente ou configurados manualmente.
47. Listas de controle de acesso (ACLs), ou funcionalidade similar, baseadas em
endereços MAC de origem e destino, endereços IP de origem e destino, portas
TCP e UDP.
48. Implementar definição de grupos de usuários, com diferentes níveis de acesso, ou
possuir no mínimo 3 grupos de usuários pré-configurado.
49. Permitir controle de comandos para usuários ou grupos de usuários no
equipamento.
50. Possui suporte a autenticação TACACS para acesso ao terminal do equipamento.
Ministério do Planejamento - SLTI
Página: 4
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
GERENCIAMENTO E CONFIGURAÇA9
51. Gerenciamento da pilha de switches através de um único endereço IP.
•
52. Implementar os seguintes protocolos e funcionalidades de gerenciamento:
52.1.Secure Shell (SSHv2);
52.2.SNMPv2c e SNMPv3, com autenticação e criptografia;
52.3.CLI (Command Line Interface);
52.4.Syslog;
52.5.Gerenciamento por meio de interface gráfica (web browser) pelo protocolo
HTTPS;
52.6.FTP (File Transfer Protocol) ou TFTP (Trivial File Transfer Protocol) ou SFTP
(Secure File Transfer Protocol) ou SCP (Secure Copy Protocol);
52.7.NTP (Network Time Protocol) ou SNTP (Simple Network Time Protocol);
53. Implementar capacidade de monitoração via comando de operação:
53.1.de tráfego de interfaces físicas e lógicas;
53.2.de uso de CPU do processador;
53.3.de uso de memória do processador;
54. Implementar capacidade de monitoração via SNMP:
54.1.de tráfego de interfaces físicas e lógicas;
54.2.de uso de CPU do processador;
54.3.de uso de memória do processador;
55. Permitir, no mínimo, 4 grupos de RMON, sem a utilização de probes externas.
56. Suportar a MIB II - RFC 1213 .
57. Suportar múltiplas imagens de firmware ou permitir a atualização da imagem por
intermédio de download de servidor de rede.
58. Versão do sistema operacional/firmware mais recente, ou seja, o equipamento
deverá possuir a versão mais atual do sistema operacional na data da autorização
do fornecimento.
59. Permitir o download e o upload de configurações.
L
GARANTIA E SUPORTE
60. Garantia de funcionamento pelo período de 48 (quarenta e oito) meses contada a
partir do recebimento definitivo do equipamento, sem prejuízo de qualquer política de
garantia adicional oferecida pelo fabricante. A Contratada deverá descrever, em sua
proposta, os termos da garantia adicional oferecida pelo fabricante.
61. Garantia da atualização do sistema operacional/firmware, provendo o fornecimento
de novas versões por necessidade de correção de problemas ou por implementação
de novos releases durante todo o período de garantia.
Ministério do Planejamento - SLTI
Página: 5
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
1
62. Deverá haver prestação de assistência técnica, durante a vigência dos contratos,
capaz de atender as localidades indicadas no Termo de Referência contemplando,
no mínimo, o serviço de atendimento telefônico gratuito (0800), com atendimento no
idioma Português, e suporte remoto via Web, ambos em regime de 7 (sete) dias por
semana, 24 (vinte e quatro) horas por dia. Esse serviço poderá ser usado para abrir
solicitações de informações, reportar incidentes ou esclarecer dúvidas quanto à
utilização dos produtos e soluções fornecidos.
63. Os prazos para atendimento técnico deverão atender o critério de distância em
relação à localidade.
Prazo para atendimento técnico
Local
Tempo para solução
definitiva do problema
Capital, regiões
metropolitanas
Até 6 horas
Demais regiões
Até 24 horas
Ministério do Planejamento - SLTI
Página: 6
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Especificaçãó'de Referência =- SrtiitChrCentral TIPO 1
Descrição do Material
Aplicação do Material
Switch Central TIPO 1
Agregação de switches de distribuição/borda
e conexão de servidores.
ESPECIFICACAO TECNICA
[GERAL
1. Estrutura de chassi modular, para instalação em gabinete padrão EIA 19", e kit
completo de instalação. Os equipamentos ofertados deverão vir acompanhados de
kits de fixação, cabos, acessórios e demais materiais necessários à sua instalação,
configuração e operação.
2. Capacidade de s/ots suficiente para atender o quantitativo de portas (1/O) solicitado
na seção CONECTIVIDADE abaixo, sendo que deverá restar no mínimo 1 (um)
s/ot livre para expansão futura.
3. Cada chassis deve possuir, no mínimo, 5 (cinco) slots.
4. Todos os equipamentos que compõem a solução devem possuir fontes de
alimentação internas ao chassis, que operem na faixa de 100 Vac a 240 Vac, com
chaveamento automático (conversão automática) e frequência de 50-60 Hz,
operação em modo load-sharing e do tipo hot-swappable, na modalidade N+1,
sendo N o número de fontes necessárias à operação do chassis na configuração
máxima. Na ocorrência de queda de uma das fontes, as remanescente deverão
suportar toda carga do switch. Não serão aceitos equipamentos com
transformadores adaptadores de tensão.
5. Possuir arquitetura de comutação non-Biocking sem oversubscription.
6. Possuir redundância de processador e capacidade de comutação, utilizando
módulos distintos.
7. Possuir redundância de sistema de resfriamento/ventilação, com suporte a
substituição do tipo hot-swap.
8. O equipamento deverá funcionar normalmente, sem perda de funcionalidade, caso
haja falha em um dos Módulos de Controle instalados.
9. Possuir sistema operacional com arquitetura modular, permitindo inserção e
retirada de módulos sem impactar os demais.
10. Ser fornecido um conjunto de manuais técnicos para cada equipamento, contendo
todas as informações sobre o produto com as instruções para instalação,
configuração, operação e gerenciamento. A documentação e manuais técnicos
devem estar escritos em português do Brasil ou Inglês.
Ministério do Planejamento - SLTI
Página: I
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
11.Caso os equipamentos possuam tomadas elétricas no novo padrão brasileiro (NBR
14.136) deverão ser acompanhados pelos adaptadores para o padrão antigo.
12. LEDs de identificação de atividades de status do sistema, de cada porta, e de
alimentação.
13.Suportar operação normal em temperaturas de 5°C a 40°C.
14. Não serão consideradas as portas 10/100BASE-TX, 10/100/1000BASE-T,
1000BASE-SX e 10GBASE-SR instaladas em módulos de supervisão ou
gerenciamento para compor a quantidade de portas solicitadas.
15.Autonegociação e Auto MDI/MDIX em todas as portas Ethernet.
16.Caso a arquitetura seja centralizada o switch deverá possuir suporte para
redundância do módulo supervisor sem prejuízo dos slots reservados para
módulos de portas, inclusive do s/ot livre.
17.Backplane passivo, conectado diretamente a todas as interfaces fornecidas.
CONECTIVIDAOE
18. Possuir porta de console para ligação direta e através de terminal RS-232 ou RJ45 ou USB para acesso à interface de linha de comando. Deverá ser fornecido
cabo de console compatível com a porta de console do equipamento.
19. Possuir, no mínimo, 96 (noventa e seis) portas Gigabit Ethernet 1000Base-T
autosense e autonegociável, com conectores RJ-45, segundo o padrão IEEE
802.3ab. As portas deverão ser compatíveis com Fast Ethernet 100BASE-TX no
padrão IEEE 802.3u.
19.1. As 96 portas poderão ocupar no máximo 2 slots.
20. Possuir, no mínimo, 24 (vinte e quatro) portas SFP Gigabit Ethernet 1000Base-SX
autosense e autonegociável, para fibra óptica multimodo com conectores LC,
segundo o padrão IEEE 802.3z.
20.1.Todas as interfaces 1000Base-SX para fibra óptica solicitadas devem ser
acompanhadas de módulo transceiver do tipo mini-GBIC com conectores LC,
segundo o padrão IEEE 802.3z. Não serão aceitos módulos com interfaces
fixas, de modo a garantir a flexibilidade do sistema.
20.2.Suporte às demais interface Gigabit Ethernet padronizadas no IEEE 802.3z
LAN PHY
20.2.1.Suportar transceiver para fibra multimodo 1000BASE-SX;
20.2.2.Suportar transceiver para fibra monomodo 1000BASE-LX ou 1000BASELX10;
20.3.Suportar transceiver para cabo 1000BASE-T no padrão IEEE 802.3ab;
20.4.Suportar contadores de quadros recebidos, transmitidos, descartados e com
erros para interfaces Gigabit Ethernet;
21. Possuir, no mínimo, 8 (oito) portas 10 Gigabit Ethernet, para inserção de módulos
do tipo mini-GBIC suportando o padrão IEEE 802.3ae.
Ministério do Planejamento - SLTI
Página: 2
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
t
21.1.Todas as interfaces 10 Gigabit Ethernet para fibra óptica solicitadas devem
ser acompanhadas de módulo transceiver do tipo mini-GBIC com conectores
LC, segundo o padrão IEEE 802.3ae. Não serão aceitos módulos com
interfaces fixas, de modo a garantir a flexibilidade do sistema;
21.2.Suporte às demais interfaces 10 Gigabit Ethernet padronizadas no IEEE
802.3ae LAN PHY :
21.2.1.transceiver 10GBase-SR para fibra multimodo;
21.2.2.transceiver 10GBase-LR e 10GBase-ER para fibra monomodo;
21.2.3.Todas as interfaces de 10 Gigabit Ethernet devem suportar a inserção
de transceiver do tipo SFP+ ou XFP;
21.3.Suportar contadores de quadros recebidos, transmitidos, descartados e com
erros para interfaces 10 Gigabit Ethernet;
CAPACIDADE: ,;DESEIVIPENHO,
22. Implementar capacidade de comutação agregada de 400 (quatrocentos) Gbps por
chassis non-blocking e full-duplex.
23. Implementar capacidade de encaminhamento de pacotes IPv4 de no mínimo 780
(setecentos e oitenta) Mpps por módulo de interfaces em hardware, non-blocking
e full-duplex.
24. Implementar capacidade de encaminhamento de pacotes IPv6 de no mínimo 590
(quinhentos e noventa) Mpps por módulo de interfaces em hardware, non-blocking
e full-duplex.
25. Implementar capacidade de memória RAM no processador central de no mínimo
512 (quinhentos e doze) Mbytes. Será aceita também a mesma capacidade de
memória RAM distribuída entre os slots que compõem o equipamento.
26. Implementar capacidade de pelo menos 12 (doze) mil prefixos IPv4 (FIB).
27. Implementar capacidade de pelo menos 6 (seis) mil prefixos IPv6 (FIB) .
28. Implementar pelo menos 350 (trezentas e cinquenta) listas de controle de acesso
(ACL's) IPv4. Cada lista deverá suportar no mínimo 100 (cem) regras, sendo que
o somatório global das regras deverá ser no mínimo 8000 (oito mil).
29. Implementar pelo menos 100 (cem) listas de controle de acesso (ACL's) IPv6.
Cada lista deverá suportar no mínimo 100 (cem) regras, sendo que o somatório
global das regras deverá ser no mínimo 4000 (quatro mil).
30. Capacidade de armazenamento de no mínimo 32.000 (trinta e dois mil) endereços
MAC.
FUN;é1ONALIDAISÊS
31. Implementar as seguintes funcionalidades/padrões:
31.1.Padrão IEEE 802.3x (Flow Control);
31.2.Padrão IEEE 802.1d (Spanning Tree);
Ministério do Planejamento - SLTI
Página: 3
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
31.3.Padrão IEEE 802.1w (Rapid Spanning Tree);
31.4.Padrão IEEE 802.1s (Multiple Spanning Tree);
31.5.Padrão IEEE 802.1p (QoS MAC levei);
31.6.Padrão IEEE 802.1q (Vlan trunking);
31.7.Padrão IEEE 802.3ad (Link Aggregation) - LACP, suportando até 8 (oito)
portas por grupo e um mínimo de 30 (trinta) grupos por chassi, inclusive entre
portas de diferentes módulos do chassi;
31.7.1.Suportar QoS nas portas integrantes do grupo de Link Aggregation.
31.7.2.Suportar IPv6 nas portas integrantes do grupo de Link Aggregation.
32. Implementar espelhamento do tráfego de entrada e saída de múltiplas portas do
switch em uma única porta.
33. Implementar no mínimo 1 (uma) sessão simultânea de espelhamento de tráfego
ou possuir mecanismos que permitam analisar 1 (um) fluxo de tráfego.
34. Implementar Dual-mode VLANs, isto é, VLANs cujas portas podem trabalhar
simultaneamente no modo "tagged' e "untagged'.
35. Permitir controle do recebimento de BPDU (BPDU Guard).
36. Permitir entradas estáticas na tabela ARP.
37. Permitir Roteamento inter-VLAN.
38. Permitir configurar limites máximos de MAC por porta.
39. Implementar Port-Based VLAN, com possibilidade de overlap de portas.
40. Deverá possuir mecanismos de proteção contra ataques de rede que degradam o
desempenho do switch, como exemplo tráfegos broadcast (storm) e multicast.
41. Permitir configuração de taxa máxima de Broadcast, Multicast e Unicast
desconhecido (storm control).
42. Permitir configuração de tempo de expiração (Aging) da tabela MAC.
43. Permitir definir a expiração (Aging) de MAC por inatividade.
44. Restrição de encaminhamento de quadros somente para MACs específicos,
aprendidos dinamicamente e definidos estaticamente (port security).
45. Implementar DHCP Relay.
46. Implementar BOOTP Relay.
47. Implementar DHCP snooping ou funcionalidade similar que permita o bloqueio de
servidores DHCP não autorizados na rede.
48. Desativação ou bloqueio de aprendizado de endereços MAC por interface.
Ministério do Planejamento - SLTI
Página: 4
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
4
49. Mecanismo de isolamento de comunicação entre intérfaces da mesma VLAN ou
domínio de broadcast.
50. Possuir suporte a LLDP (Link Layer Discovery Protocol) de acordo com o padrão
IEEE 802.1ab ou protocolo equivalente, inclusive de ativos de diferentes
fabricantes.
51. Permitir encaminhamento de Jumbo Frames (frames de no mínimo 9000 bytes)
nas portas Gigabit Ethernet.
52. Suportar a configuração de no mínimo 4094 VLANs IDs.
53. Suportar pelo menos 4000 (quatro mil) VLANs ativas simultaneamente.
54. Suportar, no mínimo, 64 (sessenta e quatro) grupos de IGMP v1, v2 e v3.
IPv6
55. Implementar e suportar a RFC 2460 (IPv6 Specification).
56. Implementar e suportar a RFC 2461 ou RFC 4861 (Neighbor Discovery for IP
version 6 (Ipv6)).
57. Implementar e suportar a RFC 2462 ou RFC 4862 (IPv6 Stateless Address Auto
configuration).
58. Implementar e suportar a RFC 2463 ou RFC 4443 (ICMPv6).
59. Implementar e suportar a RFC 6052 (IPv6 Addressing of IPv4/IPv6 Translators) ou
RFC 4291 (IP Version 6 Addressing Architecture) ou RFC 3513.
60. Suportar a RFC 3587 (IPv6 Global Unicast Address Format) ou RFC 2374 ( An
IPv6 Aggregatable Global Unicast Address Format).
61. Implementar e suportar a RFC 2464 (Transmission of IPv6 over Ethernet
Networks).
62. Implementar e suportar a RFC 2893 ou RFC 4213 (Basic Transition Mechanisms
for IPv6 Hosts and Routers - Dual IP Layer).
63. Implementar túneis de pacotes IPv6 em IPv4.
64. Suportar e Implementar:
64.1. O protocolo de roteamento RIPng (RFC 2080);
64.2. RFC 5340 ou RFC 2740 OSPF for IPv6 (OSPFv3).
64.3.0SPFv3;
64.3.1.pelo menos 10 áreas OSPFv3;
64.3.2.pelo menos 15 adjacências OSPFv3;
64.4. Multicast IPv6;
Ministério do Planejamento - SLTI
Página: 5
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
64.4.1.RFC 2710, Multicast Listener Discovery (MLD) for lPv6;
64.4.2.RFC 3810, Multicast Listener Discovery Version 2 (MLDv2) for IPv6;
64.5. VRRP, RFC 5798 (Virtual Router Redundancy Protocol Version 3 for IPv4
and IPv6) ou funcionalidade similar;
65. Permitir resolução de endereços IPv4 e IPv6 para nomes (hostnames) atribuídos
aos ativos de rede.
INOTEAIVIENT6;
66. Permitir a configuração de rotas estáticas.
67. Implementar redistribuição de rotas entre diferentes protocolos.
68. Implementar geração de logs dos protocolos.
69. Suportar e implementar os seguintes protocolos:
69.1.RFC 1723 ou RFC 2453 (RIPv2);
69.2.RFC 2328 (OSPFv2);
69.2.1.RFC 1587 ou RFC 3101 (OSPF NSSA);
69.2.2.RFC 2370 OSPF Opaque LSA Option;
69.2.3.RFC 3623 Graceful OSPF Restart;
69.2.4.pelo menos 15 áreas OSPFv2;
69.2.5.pelo menos 100 adjacências OSPFv2;
69.2.6.Implementar autenticação via "simple-password" e/ou "MD5";
70. Deverá possui funcionalidades de IP Multicast:
70.1.Suportar e implementar Multicast IPv4;
70.2.Possuir pelo menos 2.000 rotas multicast;
70.3.
71. Implementar e suportar RFC 2338 ou RFC 3768 — VRRP para IPv4 (Virtual Router
Redundancy Protocol) ou funcionalidade similar.
satIALID'Abt DE SERVIÇO
72. Implementar priorização de tráfego (QoS) por tipo de protocolo e por serviços da
pilha TCP/IP.
73. Implementar e Suportar RFC 2474 - Definition of the Differentiated Services Field
(DSCP Field) in the IPv4 and IPv6 Headers, bem como:
73.1.Suportar RFC 2475 - An Architecture for Differentiated Services;
73.2.Implementar RFC 2598 ou RFC 3246 - An Expedited Forwarding PHB (PerHop Behavior);
73.3.1mplementar RFC 2597 - DiffServ Assured Forwarding (AF);
73.4.Suportar RFC 2309 - Queue Management and Congestion Avoidance;
74. Implementar pelo menos 8 (oito) filas de QoS (em hardware) por porta
10/100/1000Base-T, 8 (oito) filas por porta 1000Base-SX/LX e 8 (oito) filas por
porta 10GBase-LR.
Ministério do Planejamento - SLTI
Página: 6
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
75. Deverá implementar limitação de tráfego de entrada e saída permitindo variar a
taxa de limitação com granularidade de 512 (quinhentos e doze) kbps por porta
Gigabit Ethernet e 2500 (dois mil e quinhentos) kpbs por porta 10 Gigabit Ethernet.
76. Implementar Policy Based Routing (Ingress e Egress) .
77. Suportar RFC 2697 - A Single Rate Three Color Marker.
78. Suportar RFC 2698 - A Two Rate Three Color Marker.
79. Implementar os seguintes algoritmos de fila: Strict Priority e Round Robin com
distribuição de pesos WRR (Weighted Round Robin) ou WFQ (Weighted Fair
Queuing) possibilitando configurar pesos iguais.
80. Implementar funcionalidades de controle e limitação de tráfego por classe de
serviço.
81. Implementar classificação e marcação de pacotes baseada em endereço de
origem e endereço de destino.
82. Implementar classificação e marcação de pacotes baseada em porta de origem e
porta de destino.
83. Implementar classificação e marcação de pacotes baseada em marcação DSCP.
84. Implementar classificação e marcação de pacotes baseada em CoS ("Class of
Service" — nível 2).
85. Implementar funcionalidades que permitam o mapeamento do tráfego via lista de
controle.
86. Implementar aplicação de políticas de QoS em todas as portas físicas do
equipamento.
87. Implementar filas de prioridade para o tráfego unicast e multicast na capacidade de
comutação exigida .
88.A aplicação de features de QoS, Rate Shaping e Rate Limiting não deve causar
impacto no desempenho do sistema.
S EGURANÇA
89. Implementar controle de acesso por porta segundo o padrão IEEE 802.1x, com
configuração dinâmica da VLAN do usuário autenticado.
90. Limitação de endereços MAC por porta. Os endereços MAC podem ser aprendidos
automaticamente ou configurados manualmente.
91. Implementar listas de controle de acesso layer 2.
Ministério do Planejamento - SLTI
Página: 7
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
92.Listas de controle de acesso (ACLs), ou funcionalidade similar, baseadas em
endereços MAC de origem e destino, endereços IP de origem e destino, portas
TCP e UDP.
93. Implementar listas de acesso para o tráfego entrante e sainte.
94. Permitir a criação de listas de acesso baseadas em endereços IP para limitar o
acesso ao elemento de rede via Telnet ou SSH, possibilitando a definição dos
endereços IP de origem das respectivas sessões.
95. Implementar contadores para as listas de acesso.
96. Implementar definição de grupos de usuários, com diferentes níveis de acesso.
97. Permitir controle de permissão de comandos para usuários ou grupos de usuários
no equipamento por meio de TACACS.
98. Implementar TACACS+.
99. Implementar RFC 2865 RADIUS Authentication.
100.Implementar RFC 2866 RADIUS Accounting.
101.Implementar mecanismos de AAA (Authentication, Authorization e Accounting)
com garantia de entrega.
102.Implementar autenticação mútua(two-way party authentication ) entre o servidor e
o cliente AAA.
103.Implementar recursos contra ataques do tipo Denial of Service e suas variações.
[RERÉNCIAMENTO E CONFIGURA40
104.Suportar a configuração com um único endereço IP para gerência e
administração, com agrupamento lógico de switches chassis ou da pilha.
105.Implementar os seguintes protocolos e funcionalidades de gerenciamento:
105.1.Secure Shell (SSHv2);
105.2.Implementar SSH v2 server.
105.3.SNMPv2c e SNMPv3, com autenticação e/ou criptografia;
105.4.CLI (Command Line Interface);
105.5. Implementar Interface índex (ifindex) persistence;
105.6.Implementar Syslog Local e Remoto, com capacidade de armazenamento
de no mínimo 1000 mensagens locais;
105.7.Implementar múltiplos servidores Syslog remotos;
105.8.Gerenciamento por meio de interface gráfica (web browser ou cliente
gráfico) pelo protocolo HTTPS, acesso direto ao equipamento com
endereçamento IP;
Ministério do Planejamento - SLTI
Página: 8
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
105.9.Suportar cópia de arquivos de configuração e imagens de firmware usando
no mínimo um dos seguintes protocolos: TFTP, FTP, SFTP ou SCP.
105.10.Implementar RFC 5905 Network Time Protocol (Version 4) ou SNTP
(Simple Network Time Protocol);
106.Permitir, no mínimo, 4 grupos de RMON, sem a utilização de probes externas.
107.Implementar capacidade para monitoração de fluxos IPv4 e IPv6.
108.Implementar capacidade para a exportação de fluxos de tráfego com uma
amostragem mínima de 1:1000 para todas as interfaces de serviço e proporcional
à capacidade do sistema.
109.Implementar capacidade de monitoração via comando de operação:
109.1.de tráfego de interfaces físicas e lógicas;
109.2.de uso de CPU do processador, fine card ou do recurso de hardware que
trata os pacotes;
109.3.de uso de memória do processador, line card ou do recurso de hardware
que trata os pacotes;
110.Implementar capacidade de monitoração via SNMP:
110.1.de tráfego de interfaces físicas e lógicas;
110.2.de uso de CPU do processador, line card ou do recurso de hardware que
trata os pacotes;
110.3.de uso de memória do processador, line card ou do recurso de hardware
que trata os pacotes;
111.Implementar exportação de informações e configurações.
112.Permitir utilização de scripts para automação de tarefas.
113.Permitir definição de alarmes de utilização de recursos tais como, CPU, memória,
utilização de taxa de transmissão da interface, memória da interface.
114.Permitir aplicação de atualizações no sistema, em serviço.
115.Implementar endereço IP virtual (loopback) para gerência fora de banda.
116.Caso o equipamento possua funcionalidade de acesso por Telnet ou via HTTP, o
equipamento deverá permitir que estas sejam desabilitadas, através de
configuração, sem prejuízo às demais funcionalidades do mesmo.
117.Implementar comandos de depuração.
118.Implementar RFC 854 Telnet client and server.
119.Suportar e Implementar funcionalidades SNMP, bem como:
119.1.Implementar RFC 1213 - Management Information Base for Network
Management of TCP/IP-based internets: MIB-II;
119.2.Suportar RFC 1215 MIB-II - A Convention for Defining Traps for use with the
SNMP;
Ministério do Planejamento - SLTI
Página: 9
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
119.3.Implementar RFC 2233 The Interfaces Group MIB using SMIv2;
119.4.Implementar RFC 2578 - Structure of Management Information Version 2
(SMIv2);
119.5.Implementar RFC 2579 - Textual Conventions for SMIv2;
119.6.Implementar RFC 2580 - Conformance Statements for SMIv2;
119.7.Implementar RFC 1905 ou RFC 3416 - Version 2 of the Protocol Operations
for the Simple Network Management Protocol (SNMP);
119.8.Implementar RFC 3418 - Management Information Base (MIB) for the
Simple Network Management Protocol (SNMP);
119.9.Implementar RFC 2576 ou RFC 3584 - Coexistence between Version 1,
Version 2, and Version 3 of the Internet-standard Network Management
Framework;
119.10.Implementar RFC 2665 ou RFC 3635 - Definitions of Managed Objects for
the Ethernet-like Interface Types;
119.11.Implementar RFC 1493 ou RFC 2674 ou RFC 4363 - Definitions of
Managed Objects for Bridges with Traffic Classes, Multicast Filtering, and
Virtual LAN Extensions 802.1p / 802.1Q MIBs;
119.12.Implementar RFC 1354 ou RFC 2096 ou RFC 4292 - IP Forwarding Table
MIB;
119.13.1mplementar RFC 2233 ou RFC 2863 — The Interface Group MIB;
119.14. Implementar RFC 1724 - RIP Version 2 MIB Extension;
119.15.Implementar RFC 1850 ou RFC 4750 - OSPF Version 2 MIB;
119.16.Implementar RFC 2787 - VRRP MIB;
120.Implementar e suportar ferramentas de coleta de informações de tráfego IP como
NetFlow ou SFLOW (RFC 3176) ou IPFIX (RFC 3917). A ativação dessa
ferramenta não poderá prejudicar o desempenho do switch.
121.Suportar múltiplas imagens de firmware ou permitir a atualização da imagem por
intermédio de download de servidor de rede.
121.1.0 equipamento deverá suportar no mínimo 2 imagens.
121.2. Considera-se imagem software, firmware ou arquivo de configuração capaz
de inicializar o equipamento.
122.Versão do sistema operacional/firmware mais recente.
123.Permitir gerenciamento e configuração in-band por meio de navegador HTTP ou
HTTPS, SSHv2 ou superior; de no mínimo 2 (duas) conexões simultâneas, e outof-band por meio de linha de comando e porta console com conector RJ-45 ou
USB ou RS-232.
GARANTIA E
SUPORTE
124.Garantia de funcionamento pelo período de 60 (sessenta) meses contada a partir do
recebimento definitivo do equipamento, sem prejuízo de qualquer política de garantia
adicional oferecida pelo fabricante. A Contratante deverá descrever, em sua
proposta, os termos da garantia adicional oferecida pelo fabricante.
Ministério do Planejamento - SLTI
Página: 10
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
125.Garantia da atualização do sistema operacional/firmware, provendo o fornecimento
de novas versões por necessidade de correção de problemas ou por implementação
de novos releases durante todo o período de garantia.
126.Deverá haver prestação de assistência técnica, durante a vigência dos contratos,
capaz de atender as localidades indicadas no Termo de Referência contemplando,
no mínimo, o serviço de atendimento telefônico gratuito (0800), com atendimento no
idioma Português, e suporte remoto via Web, ambos em regime de 7 (sete) dias por
semana, 24 (vinte e quatro) horas por dia. Esse serviço poderá ser usado para abrir
solicitações de informações, reportar incidentes ou esclarecer dúvidas quanto à
utilização dos produtos e soluções fornecidos.
127.Os prazos para atendimento técnico deverão atender o critério de distância em
relação à localidade:
128.
Prazo para atendimento técnico
Local
Tempo para solução definitiva
do problema
Capital, regiões metropolitanas
Até 4 horas
Demais regiões
Até 24 horas
'Módulo de 48 PortaS RJ-45
129.Módulo de 48 portas Gigabit Ethernet 1000Base-T autosense e autonegociável,
com conectores RJ-45, segundo o padrão IEEE 802.3ab. As portas deverão ser
compatíveis com Fast Ethernet 100BASE-TX no padrão IEEE 802.3u.
130. O módulo deverá ser do mesmo fabricante e ocupar somente um slot do chassi.
131.Implementar capacidade de comutação de no mínimo 96 (noventa e seis) Gbps,
non-blocking e full-duplex.
132.Implementar capacidade de encaminhamento de pacotes Ipv4 de no mínimo 180
(cento e oitenta) Mpps, non-blocking e full-duplex.
133.Implementar capacidade de encaminhamento de pacotes Ipv6 de no mínimo 140
(cento e quarenta) Mpps, non-blocking e full-duplex.
134.Implementar capacidade de encaminhamento de pacotes MPLS de no mínimo
170 (cento e setenta) Mpps, non-blocking e full-duplex.
Módulo de 24 Portas ópticas Gigabit Ethernet
135.Módulo de 24 (vinte e quatro) portas Gigabit Ethernet 1000Base-SX autosense e
autonegociável, para fibra óptica multimodo com conectores LC, segundo o padrão
IEEE 802.3z.
Ministério do Planejamento - SLTI
Página: 11
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
135.1.Todas as interfaces 1000Base-SX do módulo solicitado devem ser
acompanhadas de transceiver do tipo mini-GBIC com conectores LC, segundo
o padrão IEEE 802.3z. Não serão aceitos módulos com interfaces fixas, de
modo a garantir a flexibilidade do sistema.
135.2.Deverá suportar as demais interfaces Gigabit Ethernet padronizadas no
IEEE 802.3z LAN PHY :
135.2.1.Suportar transceiver para fibra multimodo 1000BASE-SX;
135.2.2.Suportar transceiver para fibra monomodo 1000BASE-LX ou
1000BASE-LX10;
135.3.Suportar transceiver para cabo 1000BASE-T no padrão IEEE 802.3ab;
135.4.Suportar contadores de quadros recebidos e descartados para interfaces
Gigabit Ethernet ;
136.0 módulo deverá ser do mesmo fabricante e ocupar somente um slot do chassi.
137.Implementar capacidade de comutação de no mínimo 48 (quarenta e oito) Gbps,
non-blocking e full-duplex.
138.Implementar capacidade de encaminhamento de pacotes de no mínimo 90
( noventa ) Mpps, non-blocking e full-duplex.
139.Implementar capacidade de encaminhamento de pacotes Ipv6 de no mínimo 70
(setenta) Mpps, non-blocking e full-duplex.
• ■■
Módtito,de 8 Portas opticas,100gabit£theme
140. Possuir, no mínimo, 8 (oito) portas 10 Gigabit Ethernet, para inserção de módulos
do tipo mini-GBIC suportando o padrão IEEE 802.3ae.
140.1.Todas as interfaces 10 Gigabit Ethernet para fibra óptica do módulo
solicitado devem ser acompanhadas de transceiver do tipo mini-GBIC com
conectores LC, segundo o padrão IEEE 802.3ae. Não serão aceitos módulos
com interfaces fixas, de modo a garantir a flexibilidade do sistema;
140.2.Suporte às demais interfaces 10 Gigabit Ethernet padronizadas no IEEE
802.3ae LAN PHY :
140.2.1.transceiver 10GBase-SR para fibra multimodo;
140.2.2.transceiver 10GBase-LR e 10GBase-ER para fibra monomodo;
141.Todas as interfaces de 10 Gigabit Ethernet devem suportar a inserção de
transceiver do tipo SFP+ ou XFP;
142.0 módulo deverá ser do mesmo fabricante e ocupar somente um slot do chassi.
143.Implementar capacidade de comutação de no mínimo 160 (cento e sessenta)
Gbps, non-blocking e full-duplex.
144.Implementar capacidade de encaminhamento de pacotes de no mínimo 310
(trezentos e dez) Mpps, non-blocking e full-duplex.
Ministério do Planejamento - SLTI
Página: 12
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
145.Implementar capacidade de encaminhamento de pacotes Ipv6 de no mínimo 230
(duzentos e trinta) Mpps, non-blocking e full-duplex.
Ministério do Planejamento - SLTI
Página: 13
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
MANUAIS:
CISCO,
ENTERASYS e HP
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
11111~~1111111111
ellle111
CISCO
Data Sheet
Cisco Nexus 1010 and 1010-X
Virtual Services Appliances
Product Overview
The Cisco Nexus° 1010 and 1010-X Virtual Services Appliances (VSAs) are members of the Cisco ° Nexus 1000V
Series (model 1010 is shown in Figure 1). The appliances host a number of Virtual Service Blades (VSBs) to
include the following: the Cisco Nexus 1000V Virtual Supervisor Modules (VSM), the Cisco Virtual Security
Gateway (VSG), the Cisco Prime' Network Analysis Module (NAM), and the Cisco Data Center Network Manager
(DCNM) for LAN VSB. These VSBs provide a comprehensive solution for virtual access switching. Dedicated
hardware for the Cisco Nexus 1000V VSM eases virtual access switch deployment for the network administrator,
and with its support for additional VSBs, the Cisco Nexus 1010 or 1010-X is a crucial component of a virtual
access switch solution.
Figure 1.
Cisco Nexus 1010 Virtual Services Appliance
Cisco Nexus 1000V Series Switches
Cisco Nexus 1000V Series Switches are intelligent virtual machine access switches designed for VMware vSphere
(vSphere 4.0 and !ater) environments. Operating inside the VMware ESX hypervisor, the Cisco Nexus 1000V
Series supports server virtualization technology to provide:
• Policy-based virtual machine connectivity
• Mobile virtual machine security and network policy
• Nondisruptive operational model for your server virtualization and networking teams
Server virtualization usually changes the deployment and management of server operating systems, leading to
longer deployment times, with a greater degree of coordination among server, network, storage, and security
administrators. The Cisco Nexus 1000V Series offers a consistent networking feature set and provisioning process
all the way from the virtual machine access layer to the core of the data center network infrastructure. Virtual
servers can use the same network configuration, security policy, diagnostic tools, and operational models as their
physical server counterparts attached to dedicated physical network ports. Virtualization administrators can
access predefined network policies that follow mobile virtual machines to help ensure proper connectivity, saving
valuable time that administrators can use to focus on virtual machine administration. This comprehensive set of
capabilities helps you deploy server virtualization faster and achieve its benefits sooner (Figure 2).
C)2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 1 of 11
•••
Figure 2.
Cisco Nexus 1000V Series Architecture
I-, 1000V
t, VEM
VMWare vSpl)ere
Ne>
1000y
VPM
VMWere vSphere
.t.;isco
Nexus
I 1000V
VEM
VtviwarevSphere
— — —
Virtual Supervisor Module (VSIV1)
Virtual Applience Running Cisco
l\Pt-OS (Suppcit:, Fligh AvaiiabiRy)
Per-forms Management. Monitoring,
and Cenfiguiation
Tightis; Intervales wtth VMware
vCenter Server
Virtual Ethernet Module (VEM)
Enables Advanced Networking
Capability on the Hypervlsor
Provides Each Virtual Machine with
Dedicated "Switch Port'
Coileet,on et VEMs 1 vNetwork
Distributed Switch
Product Architecture
The Cisco Nexus 1010 and 1010-X offer dedicated hardware for the Cisco Nexus 1000V VSM and other virtual
network services. Network administrators can install and configure virtual access switches similar to the way they
install and configure physical switches. Dedicated VSM hardware is especially helpful in a data center power up,
because there is no dependency in finding server resources for the VSM. Thus, the Cisco Nexus 1010 and 1010-X
allow network administrators to manage the Cisco Nexus 1000V virtual access switch like physical switches and
scale server virtualization deployments (Figure 3).
2012 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Pago 2 of 11
4
Figure 3.
Cisco Nexus 1010 and 1010-X Virtual Services Appliance Architecture
V1,1
VM V M
k
C ist o
C
Nexus
1
Nexus
10 0 0V
VEM .
' VEM
eliEV
„7-6'
Virtual Ethernet Module (VEM)
Virtual Supervisor Module (VSM)
•
•
Virtual Appliance rtunning Cisco
NX-OS (Supports High Availability)
Performs Management, Monitoring,
and Configuration
Tightly Integrates with VMware
vCenter Server
/4
VMware vSphere
VMware vSphe
•
VM
• Enables Advanced Networking
•
Capability on the Hypervisor
ProMesEach Virtual Machine with
Oedicated 'Switch Port"
CollectiOn of VEMs 1 vNetwork
Distributed Switch
Cisco Nèxus 1010
or 1010-X
Figure 4 shows the infernal architecture of the Cisco Nexus 1010 and 1010-X. The Cisco Nexus 1010 and 1010-X
contain the Cisco Nexus 1010 Manager, based on Cisco NX-OS, that manages VSBs, including installation and
blade configuration. The Cisco Nexus 1010 Manager, based on Cisco NX-OS, offers a familiar interface for
network administrators installing and configuring Cisco Nexus 1010 and 1010-X. Cisco Nexus 1010 Manager also
supports Cisco NX-OS high availability, allowing a standby Cisco Nexus 1010 or 1010-X to become active if the
primary Cisco Nexus 1010 or 1010-X fails. Note: Nexus 1010 and 1010-X appliances cannot be mixed in an
active/standby high availability configuration.
2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 3 of 11
Figure 4.
Cisco Nexus 1010 and 1010-X Virtual Services Appliance Internai Architecture
411
Network Analysis
Module
Cisco Nexus 1000V VSM Cisco Nexus 1000V VSM Cisco ivexus 1000V VSM
Cisco Nexus 1000V VSM
Cisco Nexus 1010 Manager
Cisco Nexus 1010 and 1010-X High Availability
Cisco Nexus 1010 and 1010-X offer high-availability features for large-scale networking. Within a single appliance,
a Cisco Nexus 1010 or 1010-X offers process-level availability conferred by the modular nature of Cisco NX-OS,
as well as VSB availability features such as restart-on-failure. Cisco Nexus 1000V Switch VSM active/standby high
availability is fully supported on Cisco Nexus 1010 and 1010-X. Finally, with dual Cisco Nexus 1010 or 1010-X
appliances deployed in a high-availability cluster, active/standby failover of Cisco Nexus 1010 Manager and Virtual
Service Blades are supported. Nexus 1010 and 1010-X VSAs cannot be mixed in an active/standby configuration.
VSM on Cisco Nexus 1010 or 1010-X Compared to VSM as a Virtual Machine
Table 1 compares deployment of a Cisco Nexus 1000V VSM as a virtual machine and on the Cisco Nexus 1010 or
1010-X. For customers who want a complete software deployment of the Cisco Nexus 1000V Series, deployment
of the VSM as a virtual machine provides flexibility in VSM placement and even mobility with VMware vMotion.
However, for network administrators who want greater control over the management of the VSM, the Cisco Nexus
1010 or 1010-X provides a complete Cisco NX-OS experience in installing the Cisco Nexus 1000V virtual access
switch. In addition, the Cisco Nexus 1010 or 1010-X offers fewer dependencies when the data center is powered
on because the VSM can be initiated at the same time as the Virtual Ethernet Modules (VEMs).
Table 1.
Comparison of VSM on Cisco Nexus 1010 and 1010-X and VSM as Virtual Machine
Fea t ure
I VSM as Virtual Machine
' VSM on Cisco Nexus 1010 or 1010-X
Cisco Nexus 1000V features and scalability
Yes
Yes
VEM running on Hypervisor (e.g. vSphere)
Yes
Yes
Cisco NX-OS high availability of VSM
Yes
Yes
Software-only deployment (Hypervisor specific)
Yes
No
Installation like that of a standard Cisco switch
No
Yes
Network team ownership and management of the VSM
No
Yes
No
Yes
' Support multi-hypervisor VM traffic
2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 4 of 11
4
Product Specifications
VMware Product Compatibility
The Cisco Nexus 1010 or 1010-X is part of the Cisco Nexus 1000V Series, which is VMware Ready Certified to be
compatible with VMware vSphere 4.0 and later as a VMware vNetwork Distributed Switch with support for VMware
ESX and ESXi hypervisors and integration with VMware vCenter Server.
Nexus 1010 Maximum Supported Configurations (Up to 6x VSBs Total; see weighting matrix)
• 6x Cisco Nexus 1000V VSMs, each capable of managing 64x ESX/ESXi hosts for a total of 384x VMware
ESX/ESXi hosts
• 6x Cisco VSG VSBs
Nexus 1010-X Maximum Supported Configurations [Up to 10x VSBs Total Using Cisco Nexus 1010
Release 4.2(1)SP1(4) and later; see weighting matrix]
• 10x Cisco Nexus 1000V VSMs, each capable of managing 64x ESX or ESXi for a total of 640x VMware
ESX/ESXi hosts
• 10x Cisco VSG VSBs
Weighting Matrix (to determine max capacity of various VSBs on the Nexus 1010 and 1010-X)
DCNM
Nexus 1010 and 1010-X
1 1
1
2
2
; Total Weighting
I
<=6
Release 4.2(1)SP1(3)
Nexus 1010
i1
Release 4.2(1)SP1(4)
Nexus 1010-X
1
I
II
I
2
1
2
I2
<=6
<=1 0
Release 4.2(1)SP1(4)
Example Nexus 1010 configurations:
• 6x VSMs
• 6x VSGs
• 3x VSMs, 3x VSGs
• 1x VSM, 1x VSG, 1x NAM, 1x DCNM
Example Nexus 1010-X configurations with Release 4.2(1)SP1(4):
• 10x VSMs
• 1 Ox VSGs
• 5x VSMs, 5x VSGs
• 3x VSMs, 3x VSGs, 1x NAM, 1x DCNM
High Availability
• Stateful failover between active and standby Cisco Nexus 1010 Managers
• Restart of VSMs and VSBs
• VSB export and import and VSM backup and restore
02012 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 5 of 11
Management
• Cisco NX-OS Software command-line interface (CLI) console
• Cisco Discovery Protocol Versions 1 and 2
• Simple Network Management Protocol (SNMP) (read) Versions 1, 2, and 3
• XML API support
• Enhanced SNMP MIB support
• Secure Shell (SSH) Version 2
• Telnet
• Authentication, authorization, and accounting (AAA)
• TACACS+
• RADIUS
• Syslog
• Role-based access control (RBAC)
• Ingress and egress packet counters per interface
• Network Time Protocol (NTP) RFC 1305
• Domain Name System (DNS) for management interfaces
• CiscoWorks LAN Management Solution (LMS) 3.2, 3.1, and 3.0.1
SNMP MIBs
• Generic MIBs
o CISCO-TC
• SNMPv2-MIB
• SNMP-COMMUNITY-MIB
• SNMP-FRAMEWORK-MIB
o SNMP-NOTIFICATION-MIB
• SNMP-TARGET-MIB
• Configuration MIBs
• IF-MIB (only controlo and mgmt0 interface of Nexus1010 mgr uses this MIB. Any physical interfaces and
VSB interfaces are not covered by this MIB)
• CISCO-IMAGE-MIB
• CISCO-CONFIG-COPY-MIB
• CISCO-ENTITY-VENDORTYPE-OID-MIB
o ETHERLIKE-MIB
• MIB-II
• Monitoring MIBs
• NOTIFICATION-LOG-MIB
• CISCO-PROCESS-MIB
© 2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 6 of 11
• Security MIBs
o CISCO-AAA-SERVER-MIB
o CISCO-COMMON-MGMT-MIB
• Miscellaneous MIBs
o CISCO-CDP-MIB
o CISCO-ENTITY-ASSET-MIB
Supported Standards
Table 2 presents IEEE compliance information, and Table 3 presents RFC compliance information.
Table 2.
IEEE Compliance
Description
VLAN tagging
IEEE 802.10
! IEEE 802.3
Ethernet
Link Aggregation Control Protocol (LACP)
IEEE 802.3ad
Table 3.
RFC Compliance
Standard
L
Description
IP Services
RFC 768
User Data Protocol (UDP)
RFC 791
IP
RFC 792
Internet Control Message Protocol (ICMP)
RFC 793
TCP
RFC 826
Address Resolution Protocol (ARP)
RFC 854
Telnet
RFC 894
IP over Ethernet
RFC 1305
NTP Version 3
RFC 1492
TACACS+
RFC 1591
DNS ctient
RFC 2068
• HTTP server
RFC 2138
RADIUS authentication
RFC 2139
RADIUS accounting
System Requirements
• VMware vSphere 4.0 and later
• Cisco Nexus 1000V Series VSM
• Hard disk: 3 GB
o RAM: 2 GB
o One virtual CPU at 1.5 GHz
• Cisco Nexus 1000V Series VEM
o VMware ESX/ESXi 4.0 and later
o Hard disk space: 6.5 MB
© 2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 7 of 11
RAM: 150 MB
• Number of VLANs for Layer 2 connectivity between VSM and VEM: 1
• Server on VMware Hardware Compatibility List (http://www.vmware.com/go/hcl)
• Compatibility with any upstream physical switches, including all Cisco Nexus and Cisco Catalyst ° switches
as well as Ethernet switches from other vendors
Hardware Specifications
Table 4 lists the hardware specifications for the Cisco Nexus 1010 and 1010-X Virtual Services Appliances.
Table 4.
Cisco Nexus 1010 and 1010-X Specifications
Item
Specification
Processors
2 Intel Xeon E5650 series 2.66-GHz Hexa Core CPUs
Nexus 1010: Four 4-GB RDIMMs RAM
Memory
Nexus 1010-X: Six 8-GB RDIMMs RAM
• 2 PCIe 2.0 slots available
PCIe slots
• 2 x8 half-length slots
• x16 connector on full-height slot and x8 connector on low-profile slot
Mezzanine card
LSI 1064 Controller-Based Mezzanine Card (RAID 1; 4 ports)
Hard disk drive
Nexus 1010: Two 500-GB SATA; 7200 RPM
Optical drive
24x CD-R/RW DVD±R/RW read-write optical drive
Nexus 1010-X: Two 2TB SAS; 7200 RPM
' Integrated graphics
Cisco Unified Computing System' °
°) Integrated Management
(CiscoUS
Controller
Matrox G200 core embedded in the ServerEngines Pilot II baseboard management controller (BMC)
• Integrated ServerEngines Pilot II BMC
• IPMI 2.0 compliant for management and control
• One 10/100BASE-T out-of-band management interface
' • CLI and web GUI management tool for automated, lights-out management
• Keyboard, video, and mouse (KVM)
Front-panel connector
Front-panel locator LED
Additional rear
connectors
Ease of access to front-panel video, 2 USB ports, and serial console
Indicator to help direct administrators to specific servers in large data center environments
Additional interfaces include a DB-15 video port, 2 USB 2.0 ports, and a DB-9 serial port
Physical dimensions (H x W x D)
1RU: 1.7 x 16.9 x 27.8 in. (4.32 x 42.93 x 70.61 cm)
Temperature: Operating
50 to 95f (10 to 35C)
Temperature: Nonoperating
-40 to 149f (-40 to 65C)
Humidity: Operating
5 to 93% noncondensing
Humidity Nonoperating
5 to 93% noncondensing
Altitude: Operating
O to 10,000 ft (O to 3000m); maximum ambient temperature decreases by 1C per 300m)
Altitude: Nonoperating
40,000 ft (12,000m)
Power supply
One 650W; redundant power supply is optional when ordering or as Field Replaceable Unit (FRU)
Additional
• Cable management arm (CMA)
e Rail kit
02012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 8 of 11
Solution Deployment Requirements
Table 5 presents deployment requirements for the Cisco Nexus 1010 and 1010-X Virtual Services Appliances.
Table 5.
Cisco Nexus 1010 and 1010-X Deployment Requirements
Product
Requirement
Cisco Nexus 1010 and 1010-X
Cisco Nexus 1010 NX-OS Release 4.2(1)SP1(4) and later
Cisco VSG as a VSB on the Cisco
Nexus 1010 or 1010-X
• Cisco Nexus 1010 NX-OS Release 4.2(1)SP1(4) and later
• Cisco VSG Release 4.2(1)VSG1(3) or later, ISO or OVA formal
VMware vSphere 4.0 and later
Cisco Nexus 1000V Series NX - OS Software Release 4.2(1)SV1(5.1) or later, including:
• VSM (hosted on the Cisco Nexus 1010 or 1010-X Virtual Services Appliance)
• Virtual Ethernet module (embedded in the VMware vSphere ESX/ESxi hypervisor)
Regulatory Compliance
Table 6 provides regulatory standards compliance information for the Cisco Nexus 1010 and 1010-X.
Table 6.
Regulatory Standards Compliance: Safety and EMC
Specification
• Sa fety
Description
• UL 60950-1 No. 21CFR1040
• CAN/CSA-C22.2 No. 60950-1
• IRAM IEC60950-1
• CO IEC60950-1
• EN 60950-1
• IEC 60950-1
• GOST IEC60950-1
• SABS/CB IEC6095-1
• CCC ./CB GB4943-1995
• CNS14336
• CB IEC60950-1
• AS/NZS 60950-1
• GB4943
EMC: Emissions
47CFR Part 15 (CFR 47) Class A
• AS/NZS CISPR22 Class A
• CISPR2 2 Class A
EN55022 Class A
•
•
ICES003 Class A
VCCI Class A
• EN61000-3-2
EN61000-3-3
• KN22 Class A
• CNS13438 Class A
•
•
Ordering Information
Table 7 provides ordering information for the Cisco Nexus 1010 and 1010-X. To place an order, visit the
Cisco Ordering homepage. To download software, visit the Cisco Software Center.
O 2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 9 of 11
Cisco Nexus 1010 and 1010-X Virtual Services Appliance Ordering Information
Services 'Appitance Options
Cisco Nexus 1010 Appliance with 32x Nexus 1000V
N1K-C1010-HAO0
Cisco Nexus 1010 Appliance High-Availability Pair without Nexus 1000V
N1K-C1010-HA32
Cisco Nexus 1010 Appliance High-Availability Pair with 32x Nexus 1000V
N1K-C1010-HA64
Cisco Nexus 1010 Appliance High-Availability Pair with 64x Nexus 1000V
N1K-C1010-X
Cisco Nexus 1010-X Appliance with 48x Nexus 1000V
N1K-C1010-X-HAO0
Cisco Nexus 1010-X Appliance High-Availability Pair without Nexus 1000V
N1K-C1010-X-HA48
Cisco Nexus 1010-X Appliance High-Availability Pair with 48x Nexus 1000V
N1K-C1010-X-FiA96
Cisco Nexus 1010-X Appliance High-Availability Pair with 96x Nexus 1000V
Redundant Power Supply
R2X0-PSU2-650W-SB
650W Power Supply, with added 5A st,
Virtual Service Blade'Optíons
VSG-VNMC-1010-32
N1K-C1010NAM51-K9
I VSG and VNMC Paper CPU License for Nexus 1010 and 1010-X Promotion Quantity 32
Cisco Prime NAM Software 5.1 for Nexus 1010 and 1010-X
1
Service and Support Options
CON-xxx-N1010
SMARTNet® for Nexus 1010 hardware only; various leveis of support available
CON-xxx-N1010-X
SMARTNet for Nexus 1010-X hardware only; various leveis of support available
CON-SAU-VLCPU32
Software Application Support plus Upgrades (SASU) Nexus 1000V Paper CPU Quantity 32 for Nexus 1010
CON-SAU-CPU-48
SASU Nexus 1000V Paper CPU Quantity 48 for Nexus 1010-X
CON-SAU-VLCP32P2
CON-SAS-N1K1C101
SASU VNMC VSG Paper CPU 1010 Promotion Quantity 32 for Nexus 1010 and 1010-X
_1SASU Cisco NAM Virtual Service Blade Software
Service and Support
Cisco offers a wide range of services programs to accelerate customer success. These innovative programs are
delivered through a unique combination of people, processes, tools, and partners, resulting in high leveis of
customer satisfaction. Cisco Services helps you protect your network investment, optimize network operations,
and prepare your network for new applications to extend network intelligence and the power of your business. For
more information about Cisco Services, see Cisco Technical Support Services or Cisco Advanced Services.
Warranty information is available at http://~cisco.com/go/warranty.
Cisco Software Application Support plus Upgrades (SASU) is a comprehensive support service that helps you
maintain and enhance the availability, security, and performance of your business-criticai applications. Cisco
SASU includes the following resources:
• Software updates and upgrades: The Cisco SASU service provides timely, uninterrupted access to
software updates and upgrades to help you keep existing systems stable and network release leveis
current. Update releases, including major upgrade releases that may include significant architectural
changes and new capabilities for your licensed feature set, are available by software download from
Cisco.com or by CD-ROM shipment.
2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 10 of 11
•
• Cisco Technical Assistance Center (TAC): Cisco TAC engineers provide accurate, rapid diagnosis and
resolution of software application problems to help you reduce outages and performance degradation.
These specialized software application experts are trained to support the Cisco VSG for Cisco Nexus
1000V Series Switches. Their expertise is available to you 24 hours a day, 365 days a year, by telephone,
fax, email, or the Internet.
• Online support: Cisco SASU provides access to a wide range of online tools and communities to help you
resolve problems quickly, support business continuity, and improve competitiveness.
For More Information
• For additional information about the Cisco Nexus 1010 and 1010-X, visit http://www.cisco.com/go/1010.
• For additional information about the Cisco Nexus 1000V Series, visit http://www.cisco.com/go/nexus1000v.
• For a free evaluation version of the Cisco Nexus 1000V Series, visit http://www.cisco.com/go/1000veval.
• For additional information about the Cisco VSG and a free evaluation version, visit
http://www.cisco.com/go/vsq.
• For additional information about the Cisco Virtual Network Management Center (VNMC) and a free
evaluation version, visit http://www.cisco.com/go/vnmc.
• For additional information about the Cisco Prime NAM VSB, visit http://www.cisco.comigo/1000nam.
• For additional information about the Cisco Data Center Network Manager (DCNM) LAN VSB, visit
http://www.cisco.com/go/dcnm.
• For additional information about Cisco NX-OS Software, visit http://www.cisco.com/qo/nxos.
• For additional information about VMware vSphere, visit http://www.vmware.com/go/vsphere.
• For more information about how Cisco and VMware are working together, visit
http://www.vmware.com/cisco.
CISCO.
Americas Headquarters
Cisco Systems. Inc.
San Jose, CA
Asia Pacific Headquarters
Cisco Systems (USA) Pte. Ltd.
Singapore
Europe Headquarters
Cisco Systems International BV Amsterdam.
The Netherlands
Cisco has more than 200 offices worldwide. Addresses, phone numbers. and fax numbers are listed on the Cisco Website at www.cisco.com/go/offices.
" Cisco and the Cisco logo are trademarks or registered trademarks of Cisco andfor lis affiliates in the U.S. and other countries. To víew a list of Cisco trademarks,
%4? go to this www.cisco.com/goitrademarks Third party trademarks mentioned are the property of their respectiva owners. The use of lhe word partner does
not imply a partnership relationship between Cisco and any other company. (1110R)
Printed in USA
C78 - 593960 - 04 03/12
C) 2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 11 of 11
elliellle
.
Data Sheet
cisco_
Cisco Catalyst 6500 Series 10/100 and 10/100/1000
Ethernet Interface Modules
As the premier Cisco ® modular multilayer switch, the Cisco Catalyst ® 6500 Series delivers secure,
converged services from the wiring closet to the core, to the data center, and to the WAN edge.
The Cisco Catalyst 6500 Series provides the broadest selection of 10/100 and 10/100/1000 Ethernet media, Power
over Ethernet (PoE) (inline power) options, densities, performance, interoperability, and chassis deployment options.
From basic wiring closets and small campus distribution and core layers to high-performance data centers, the Cisco
Catalyst 6500 Series 10/100BASE-TX modules scale from 16 ports up to 1152 ports, and the 10/100/1000BASE-TX
modules scale from 16 ports up to 576 ports in a single Cisco Catalyst 6500 Series chassis. Cisco Catalyst 6500
Series10/100 and 10/100/1000 modules are the key enablers of a Borderless Network access solution. Cisco with
the Catalyst 6500 is the best choice for architecting and deploying holistic, cost-effective network access
architecture. Securely connecting to anyone, anywhere, using any device. These modules are available in copper
unshielded twisted-pair (UTP) and shielded twisted-pair (STP) using RJ-45 or RJ-21 making it the most widely
deployed Cisco IP Telephony port enabled campus switch.
Note: Reter to the "Cisco Catalyst 6500 Series Mixed-Media Gigabit Ethernet Interface Modules" data sheet for
information about modular physical layer deployment options using gigabit interface converters (GBICs) and Small
Form-Factor Pluggable (SFP) form factors.
• IEEE 802.3af PoE support (for example, IP phone and wireless access point)—These modules
support PoE field upgrade, network-interface-card (NIC) and phone auto detection (phone discovery),
and voice VLANs.
• IEEE 802.3at PoE+ support—Providing support for up to 30W per device. IEEE 802.3at is ideal for IP
telephony, wireless LAN access points and thin client deployments
• Simplified network operation with cable fault detection—These modules offer the ability to test cabling
using a time domain reflectometer (TDR), which sends signals down the cable to identify faults in each
twisted pair (available on some 10/100 and ali 10/100/1000 Ethernet-over-copper interface modules).
• Range of port densities—These modules are available with 16 to 96 ports per module, enabling up to
1152 10/100BASE-TX ports or 576 10/100/1000BASE-TX ports per 13-slot chassis (configured with 12
interface modules).
• Scalable and predictable system performance—These modules provide a selection of switch-fabric
connections and throughput options: 32-, 256-, and 720-Gbps bandwidth with a system throughput of: 15, 30,
210, and up to 400 Mpps.
• IEEE 802.3 triple-speed autonegotiation—These modules allow switches to negotiate speed (10, 100, and
1000 Mbps) and duplex mode (half or full) with attached devices.
• Superior traffic management—These modules are available with large (up to 1 MB per interface) buffers
and up to 4 transmit queues to aid in congestion avoidance, traffic prioritization, and policing; multiple
thresholds can be configured to manage differentiated leveis of service.
© 2011 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 1 of 19
•
Data Sheet
• Operational consistency—These modules Configurations offer configurations for Cisco Catalyst 6500
Series 3-, 6-, 9-, and 13-slot chassis running Cisco IOS ® Software and Cisco Catalyst Operating System
Software; they are interoperable with all other interfaces and services modules and forward-compatible with
all Cisco Catalyst 6500 Series supervisor engines.
• Maximum network uptime and resiliency—These modules support the Cisco Enhanced Per- VLAN
Spanning Tree Plus (PVST+) protocol, IEEE 802.1w Rapid Spanning Tree Protocol (RSTP), IEEE 802.1s
Multiple Spanning Tree (MST) protocol, Per-VLAN Rapid Spanning Tree (PVRST) protocol, Hot Standby
Router Protocol (HSRP), Virtual Router Redundancy Protocol (VRRP), Cisco EtherChannel ® technology,
and IEEE 802.3ad link aggregation for fault-tolerant connectivity.
• Extensive management tools—These modules support the CiscoWorks network-management platform;
Simple Network Management Protocol (SNMP) Versions 1, 2, and 3; and four Remote Monitoring (RMON)
groups (statistics, history, alarms, and events).
IP Telephony and User-Mobility Support with Cisco Catalyst 6500 Series 10/100 and 10/100/1000
Ethernet Interface Modules
The Cisco Catalyst 6500 Series is a lead element in Cisco Borderless Network Access architecture, providing
numerous IP telephony and network security features for the enterprise.
The Cisco Catalyst 6500 Series delivered the industry's first Ethernet switching modules that provided PoE for
converged data and voice traffic as well as other powered devices, such as wireless access points. Severa! Cisco
Catalyst 6500 Series interface modules support PoE on each interface port, allowing customers to build campus
multiservice data and voice networks for wiring closets with the following features:
• PoE—Provides power for Cisco Prestandard Inline Power and IEEE 802.3af standard PoE over standard
Category 5 UTP cable up to 100 meters for such as IP phones and wireless access points
• Powered Device Discovery—Detects the presence of a powered device such as an IP phone and supplies
inline power automatically
• Auxiliary VLAN using 802.1Q—Segments IP phones and data endpoints into separate, logical networks
automatically
• Automatic quality of service (AutoQoS)—Simplifies the task of configuring QoS mechanisms for IP
telephony and more
• Cisco Identity Based Networking Services (IBNS)—Enables greater security while simultaneously offering
cost-effective management of changes throughout the organization
Cisco Catalyst Prestandard Inline Power, IEEE 802.3af PoE and IEEE 802.3at PoE+
Using existing Category 5 UTP installations, the PoE feature helps enable network administrators to control power
distribution from a central location. Configuring Cisco Catalyst 6500 Series switches with uninterruptible-powersupply (UPS) systems helps ensure that building power outages will not affect network telephony connections,
providing greater network availability.
Enabled by a daughter card for "pay-as-you-grow" flexibility, several Cisco Catalyst 6500 Series 10/100 and
10/100/1000 Ethernet interface modules support PoE. Some of these interface modules support the IEEE 802.3af
standard as an additional upgrade option. The Cisco Catalyst PoE feature implementation passes the required
domestic and international safety regulations and compliance measures.
C) 2011 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 2 of 19
Data Sheet
Ali Cisco Catalyst 6500 Series 802.3af PoE modules support three classes of powered devices, delivering a
maximum of 15.4W per port as defined in the standard:
• Class 0—Up to 4W per port
• Class 1—Up to 7W per port
• Class 2—Up to 15.4W per port
The new 48 x 10/100/1000 PoE/PoE+ module supports all three classes of powered devices in addition to Class 3
power as defined by the IEEE 802.3at PoE+ standard:
• Class 3—Up to 30W per port
The maximum number of powered devices supported in a system for each class depends on the specific system
configuration such as chassis type, supervisor engine, and power supply used. (Refer to Table 1.)
Table 1.
Cisco Catalyst 6500 Series PoE Maximum Density
Power Supply
3000 W
4000W
6000W
8700W
Table 2.
Li 1'.)„ toe', ncn , ,,t,
I 10:"I00 Density
IEEE Class 2-253
IEEE Class 2-228
IEEE Class 3-124
IEEE Class 3-116
IEEE Class 2-371
IEEE Class 2-329
IEEE Class 3-180
IEEE Class 3-169
IEEE Class 2-576
IEEE Class 2-523
IEEE Class 3-288
IEEE Class 3-270
IEEE Class 2-253
IEEE Class 2-576
IEEE Class 3-124
IEEE Class 3-407
Cisco Catalyst 6500 Series PoE Products
;,
1 Specti
,
1 IEEE 802
WS-X6548-GE-45AF
1 10/100/1000
I Yes
1 No
1 Yes
15.4W
WS-X6548V-GE-TX
I 10/100/1000
I Field upgradeable with
I WS-F6K-GE48-AF=
i daughter card
1 No
I Yes
7W; 15.4W with
WS-F6K-GE48-AF=
daughter card upgrade
E WS-X6148E-GE-45AT 1 10/100/1000
1 Yes
1 Yes
Yes
1 WS-X6148A-GE-45AF
10/100/1000
f
110/100/1000
i Yes
:
i Yes
i No
I Yes
1 No
1 Yes
15.4W
1 10/100/1000
No
I Yes
j
1
7W; 15.4W with
WS-F6K-GE48-AF=
daughter card upgrade
I No
Yes
7W
5 Product Number
.•
.
WS-X6148-GE-45AF
i WS-X6148V-GE-TX
PoE
I IEEE 802.3a1 Po E. I Cisco Prestaidard
PoE
I
30W
15.4W
WS-X6348-RJ45V
I 10/100
1 Field upgradeable with
WS-F6K-GE48-AF=
daughter card
.i
No
WS-X6348-RJ21V
1 10/100
i No
1 No
Yes
7W
WS-X6196-21AF
' 10/100
Yes
1 No
Yes
15.4W
WS-X6148X2-45AF
' 10/100
1 Yes
1 No
Yes
15.4W
I WS-X6148A-45AF
10/100
1
i Yes
1 No
Yes
15.4W
WS-X6148-45AF
10/100
1 Yes
ii No
1 Yes
WS-X6148-RJ45V
10/100
i No
Yes
7W
WS-X6148-21AF
10/100
I Yes (pari number
WS-X6148-45AF-UG=)
I for upgrade
1
i Yes
•t•
i No
Yes
15.4W
WS-X6148-RJ21V
1 10/100
1 No
!Yes
i
1 Yes; Use (part number
I
1 WS-X6148-21AF-UG=)
I for upgrade
1
•
15.4W
7W
._
© 2011 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
.__.
Page 3 of 19
Data Sheet
Powered Device Discovery
The Powered Device Discovery feature eases network-management burdens by automating the PoE feature. With
Powered Device Discovery, the Cisco Catalyst switch detects the presence of a powered device and supplies inline
power automatically, eliminating the need to manually enable ports for inline power. The Powered Device Discovery
mechanism is intelligent enough to differentiate between an IP phone and a NIC, and does not supply inline power to
NICs or other devices not designed to use inline power. With this feature, network administrators can depend on
automatic and centralized control of inline power that is safe to deploy and maintain.
In addition to the standard Powered Device Discovery feature, the Cisco Catalyst 6500 Series PoE module also
provides intelligent power management such that it negotiates power requirements with Cisco powered devices
using Cisco Discovery Protocol so that the switch supplies only the required amount of power instead of the
maximum possible for a specific device class, thereby optimizing the overall power consumption in the system.
Auxiliary VLAN
The unique Auxiliary VLAN feature offered by Cisco Systems ° provides automatic VLAN configuration for IP phones.
It places phones into their own VLANs automatically, simplifying the task of overlaying a voice topology onto a data
network. It allows network administrators to easily segment phones into separate, logical networks, even though the
data and voice infrastructure is physically the samc
greatly simplifying the tasks of managing a multiservice
network and identifying and troubleshooting network problems.
The Auxiliary VLAN feature maintains VLAN assignments, even when phones are moved to new locations. When
a user plugs a phone into the switch, the switch provides the phone with the necessary VLAN information.
AutoQoS
Network administrators can assign IP phones to separate IP subnets and VLANs to allow separate QoS or security
policies for IP phones. The administrative task of configuring QoS to establish end-to-end traffic prioritization is
greatly simplified by deploying AutoQoS, which configures QoS on voice ports automatically.
Cisco IBNS
Cisco IBNS builds on and enhances the capabilities of industry-standard IEEE 802.1X 10 by providing increased
security and greater flexibility for enterprise wired or wireless network access. Policies are associated with users, not
physical ports. This provides users with greater mobility and freedom, allowing security and service-level policies to
travel with them throughout the enterprise. As a result, network scalability is increased while simplifying network
management through centralized policy enforcement and dynamic provisioning. Centralized policy-based
administration decreases the time, complexity, and effort associated with port security techniques at the MAC levei.
Cisco IBNS can help to quickly provision support for cross-functional or new project teams, enable secure access for
trusted partners and vendors, and facilitate secure conference-room connectivity. For more information, reter to:
http://www.cisco.com/en/US/partnerinetsolinsl 10/nsl 70/ns171/ns75/networking solutions package.html.
Enhanced Operational Control for Enhanced Manageability
The Cisco Catalyst 6500 Series offers advanced network-management features to make it easy to manage fast-
growing networks. This includes TDR supported on the new 48-port 10- and 100-Mbps and ali the 48-port 10-, 100-,
and 1000-Mbps Ethernet modules (part numbers WS-X6148A-RJ-45, WS-X6148A-45AF, WS-X6148A-GE-TX, WSX6148A-GE-45AF, WS-X6148-GE-TX, WS-X6548-GE-TX, and WS-X6748-GE-TX, respectively). TDR tests cabling
by sending a signal down the cable, reporting cable breaks, cable crimps, and improperly wired cable.
© 2011 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 4 of 19
Data Sheet
Table 3.
Classic, Cisco Express Forwarding 256, and Cisco Express Forwarding 720 10/100 and 10/100/1000 Interface
Module Comparison
Classic Interfa e Modules
•
Feattire
............‘,..._ „„„„Performance or
forwarding rate (Mpps)
i
• 32 Gbps; 15 Mpps
per system
Cisco Express Forwarding 720
Interface Modules
..
6lntËtface
C1 ,.(.c) E ,.prc,,f, F ,Jr.v:-.1,1,1 , 1
1 rvlucl 111 , - , ,
1-• 256 Gbps using Cisco Express
Forwarding; up to 30 Mpps per system
• 720 Gbps using Cisco Express
Forwarding; up to 30 Mpps
per system
• Using Distributed Cisco Express
Forwarding upgrade: Up to 15 Mpps per
slot for slots equipped with distributed
forwarding card (DFC) or DFC3 to
support distributed forwarding
• Centralized Cisco Express
Forwarding engine located
on supervisor policy feature
card (PFC) makes
forwarding decision
Forwarding-engine
architecture
Supervisor engine
supported
I
• Centralized Cisco Express Forwarding
engine located on supervisor PFC
makes forwarding decision
• Supervisor Engine 1A
• Supervisor Engine 2
• Supervisor Engine 2
• Supervisor Engine 720
• Supervisor Engine 720
• Supervisor Engine 32
• Supervisor Engine 32
I
I• Centralized Cisco Express
Forwarding engine located on
supervisor PFC makes forwarding
decision
• Upgradable to Distributed Cisco Express
• Upgradable to Distributed
Forwarding switching' with optional WSF6K-DFC or WS-F6K-DFC3) Cisco Express Forwarding local
switching with optional WS-F6700- i
DFC3)
• Supervisor Engine 1A
• Not supported
Optional DFC upgrade
support
i
i
• Using Distributed Cisco Express
Forwarding upgrade, up to 48
Mpps sustained per slot for
modules equipped with DFC3 to
support distributed forwarding
i
• Supervisor Engine 720
• Use WS-F6700-DFC3 with
Supervisor Engine 720
• Use WS-F6K-DFC) with Supervisor
Engine 2 and switch fabric module 2
(SFM2)
• Use WS-F6K-DFC3):with Supervisor
Engine 720
• Connection to 32-Gbps
shared bus (all supervisors)
Fabric connections
Chassis or slot support
requirements
_
I
• Any slot in any chassis
• Any slot in any chassis
• Dual 20-Gbps (40 Gbps total)
channel connection to switch fabric 1
on Supervisor Engine 720
• Connections through single 8-Gbps
channel to switch fabric (Supervisor
Engine 720 or Supervisor Engine 2 with
SFM and 32-Gbps shared bus
•
• Any slot in Cisco Catalyst 6506,
Catalyst 6509, Catalyst 6509-NEBA, and slots 9 through 13 on Cisco I
Catalyst 6513; Cisco Catalyst 6503 I
not supported at current time
• Any slot in Cisco Catalyst 6500
E-Series.
—
--
The WS-X6548-GE-TX, WS-X6548V-GE-TX, and WS-X6548-GE-45AF modules do not support distributed forwarding; a WS-F6KDFC and WS-F6K-DFC3A/B/BXL) cannot be installed on these interface modules.
1
Ali Ethernet modules support extensive interface-level statistics, including four RMON groups: alarms, events,
history, and statistics. Additional RMON groups (all nine groups) can be monitored using the integrated Cisco
Catalyst 6500 Series Network analysis Module (NAM) or switch probes.
For in-depth network analysis, the Switched Port Analyzer (SPAN) feature helps network managers redirect traffic
from each switched port to a specific VLAN, allowing them to add, move, and easily change group access to network
resources from centralized locations using CiscoWorks network-management software.
Support for local, out-of-band management is delivered through a terminal or modem attached to the console or
auxiliary interface of the supervisor engine. Remote in-band management is available with SNMP Versions 1, 2,
and 3.
Cisco Catalyst 6500 Series 10/100 and 10/100/1000 Modules
Cisco Catalyst 6500 Series 10/100 and 10/100/1000 Ethernet interface modules feature three classes of forwarding
architectures and switch-fabric interconnections—classic, Cisco Express Forwarding 256, and Cisco Express
Forwarding 720—to provide a choice of speeds and forwarding rates. Table 3 highlights the primary differences in
the three classes of forwarding and switch-fabric architectures
© 2011 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 5 of 19
Data Sheet
Cisco Catalyst 6500 Series Cisco Express Forwarding 720 10-, 100-, and 1000-Mbps Ethernet-overCopper Modules
Designed for high-performance enterprise and service provider distribution, core layers, data-center, and Webhosting applications where voice capability is not required, Cisco Express Forwarding 720 twisted-pair interface
modules provide line-rate 10/100/1000 Ethernet forwarding with the following operational advantages (refer to
Table 4):
• Forwarding architecture—These modules use the central Cisco Express Forwarding engine located on
the supervisor engine; optional field-upgradable Distributed Cisco Express Forwarding daughter cards
are available.
• Forwarding performance—These modules forward packets up to 30 Mpps per system; they forward packets
up to sustained 48 Mpps per slot for slots equipped with distributed forwarding cards (DFC or DFC3).
• Fabric connection—These modules connect to the switch-fabric channels using dual 20-Gbps switch-fabric
channels (40 Gbpã total).
• Supervisor engine—These modules work with Supervisor Engine 720.
• Distributed forwarding upgrade option—These modules help enable full locally distributed forwarding;
they use an optional [PRODUCT NAME HERE] (part number WS-F6700-DFC3) upgrade to operate with the
Supervisor Engine 720, and they provide optimal interface module performance.
• Slot and chassis requirements—These modules can occupy any slot in the Cisco Catalyst 6506, Catalyst
6509, Catalyst 6509-NEB, or Catalyst 6509-NEB-A; they require slots 9 through 13 when used in the
Cisco Catalyst 6513. Cisco Catalyst 6503 support is under consideration for the future (refer to release notes
for details).
• Maximum port density per chassis—These modules support up to 384 ports per Cisco Catalyst 6509, up
to 240 Cisco Express Forwarding-based ports, and an additional 336 classic or Cisco Express Forwarding
256-based ports per Cisco Catalyst 6513.
Note:
Table 4.
PoE is not supported on Cisco Express Forwarding 720 10/100/1000 interface modules.
Cisco Express Forwarding 720 Copper 10/100/1000 Ethernet Interface Module
--
Product Number
WS-X6748-GE-TX
PrIndry
1 Data tente and
server farm
1
Poris. Conneetor,
fstaximum Distam,.
fa
ype
T
nd
48, RJ-45, 100m,
Ca egory 5 cable
PoE
Supper
o
Maximum Freme
SIze•:(jumbo
trame) Support
Queues per Port (Tx
Transmit, Rx
Receive) 1
Buffer Size per
Port
Up to 9216 bytes
per frame
Tx-1p3q8t; Rx-1q8t
(when using
Distributed Cisco
Express Forwarding)
1.3 MB
Queues Legend: 1p3q1t = 1 priority queue, 3 round robin queues, 1 threshold
Figure 1.
Cisco Express Forwarding 720 10/100/1000 Interface Module (part number WS-X6748-GE-TX) with Distributed
Cisco Express Forwarding Daughter Card (part number WS-F6700-DFC3)
©2011 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 6 of 19
Data Sheet
Cisco Catalyst 6500 Series Cisco Express Forwarding 256 10/100 and 10/100/1000
Interface Modules
Designed for premier wiring closets, small campus backbone, and server farm applications, Cisco Express
Forwarding 256 10/100 and 10/100/1000 Ethernet-over-copper interface modules provide line-rate 10/100 Ethernet
forwarding and gigabit bandwidth options. (Refer to Table 4).
The PoE Cisco Express Forwarding 256 10/100/1000 interface modules provide flexible 10-, 100-, and 1000-Mbps
access to the desktop through standard RJ-45 connectors. These interface modules feature PoE field-installable
daughter cards for pay-as-you-grow investment protection and flexibility. Purposefully designed for the wiring closet
with 8:1 oversubscription, these 10/100/1000 interface modules cannot be equipped with distributed forwarding
cards.
Offered with a choice of RJ-45 and RJ-21 connectors, the data-only Cisco Express Forwarding 256 10/100 and 16port 10/100/1000 Ethernet interface modules can be deployed where PoE capability is not required, and they can be
equipped with distributed forwarding daughter cards for higher-performance local packet-forwarding environments.
The Cisco Catalyst 6500 Series Cisco Express Forwarding 256 10/100 and 10/100/1000 interface modules offer the
following operational advantages and characteristics:
• Forwarding architecture—These modules use the central Cisco Express Forwarding engine located on the
supervisor engine.
• Forwarding performance—These modules forward packets up to 30 Mpps per system and up to 15 Mpps
per slot if upgraded to support distributed forwarding.
• Fabric connection—These modules connect to the switch fabric through one 8-Gbps connection and the 32Gbps shared bus.
• Supervisor engine—These modules work with Supervisor Engine 1A, Supervisor Engine 2, or
Supervisor Engine 720.
• Slot requirements—These modules can occupy any slot in any Cisco Catalyst 6500 Series chassis.
• Maximum port density per chassis (48-port modules)—These modules support up to 576 ports per Cisco
Catalyst 6513, and up to 384 ports per Cisco Catalyst 6509.
• Maximum port density per chassis (16-port modules)—These modules support up to 192 ports per Cisco
Catalyst 6513, and up to 128 ports per Cisco Catalyst 6509.
Exclusive features of the Cisco Express Forwarding 256 10/100 and 16-port Cisco Express Forwarding 256
10/100/1000 Ethernet interface modules follow:
• Distributed forwarding upgrade—An optional upgrade is available to perform distributed forwarding; it
requires a WS-F6K-DFC3 upgrade to operate with Supervisor Engine 720; a WS-F6K-DFC upgrade to
operate with Supervisor Engine 2 Multilayer Switch Feature Card 2 (MSFC2); and an SFM.
Exclusive characteristics and features of the 48-port Cisco Express Forwarding 256 10/100/1000 Ethernet interface
module follow:
• Field-installable and -upgradable PoE daughter cards—Sháring the same Category 5 UTP cabling used
for network connections, these daughter cards help enable centralized power distribution to IP phones,
wireless access points, and other powered devices.
• These modules are designed to support field upgrades to the IEEE 802.3af PoE standard with a new
daughter card providing maximum investment protection.
• TDR—TDR tests cabling by sending signals down the cable to identify faults in each twisted pair.
2011 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 7 0119
Data Sheet
• Distributed forwarding upgrade—This feature is not supported. The WS-X6548-GE-TX, WS-X6548V-GETX, and WS-X6548-GE-45AF do not support distributed forwarding (WS-F6KDFC and WS-F6K-DFC3A).
Table 5 shows application, port, and queue data for the Cisco Express Forwarding 256 10/100 and
10/100/1000 modules.
Table 5.
Cisco Express Forwarding 256 10/100 and 10/100/1000 Modules
Pr nu ,,,'
AnpliL:,t, , )
Pr educt NL:rrt..er
vc, rt." Ci, nirc, ,:t 1
t.,1;:, muni
DI.,t.lr,,,, ,
.....—......._
WS-X6548-GE-TX
ft
L SUpp(311
lk.la),. imum Name
Size (jumbo
trçrue) Strpport.:
:
Sutter Size per
Port
___
I Premier wi ing
closet
1 48, RJ-45,
•
1 Category 5 cable
WS-X6548-GE-45AF Iemier
Pr
wiring
1 closet
i 100m,
I 48, RJ-45,
1100m,
Category 5 cable
Premier wiring
closet
WS-X6548V-GE-TX
: 48, RJ-45,
1100m,
I Field upgradable to
. Cisco Prestandard
and IEEE 802.3af
1
Up to 1518 bytes
per Trame
I Yes (both IEEE
1 802.3af and Cisco
Prestandard)
I
Up to 1518 bytes
per Trame
1 Yes, only Cisco
Pre-standard
Up to 1518 bytes
per Trame
I Data cepter and
I server farm
116, RJ-45,
Tx-1p2g2t
(per 8 ports)
1 1 MB per 8 ports
Rx-1p2t (per port)
Tx-1p2g21
(per 8 ports)
I 1 MB per 8 ports
Rx-1p2t (per port)
Tx-1p2g2t
(per 8 ports)
1 1 MB per 8 ports
Rx-1p2t (per port)
Category 5 cable
WS-X6516-GE-TX
Queuesr Port
Me = Tranemit,
Rir Recelve)1
No
100m,
Up to 9216 bytes
per Trame
Tx-1p2g2t
Up to 1518 bytes
per frame
Tx-1p3g1t
Up to 1518 bytes
per frame
Tx-1p3g11
1 512 KB
Rx-1p1g4t
Category 5 cable
WS-X6548-RJ-45
I Server Farmfarm
148, RJ-45,
i
I 100m,
No
1 1.2 MB
Rx-1p1g
Category 5 cable
WS-X6548-RJ-21
I Server farm
I
I 48, RJ-21,
i
I 100m,
•.•
1 Category 5 cable
No
1.2 MB
Rx-1p1g
Queues legend: 1p3q1t = 1 priority queue, 3 round-robin queues, and 1 threshold
Figure 2.
Cisco Express Forwarding 256 10100/1000 Interface Module (part number WS-X6548-GE-TX)
Figure 3.
Cisco Express Forwarding 256 Copper 10/100 Interface Module (part number WS-X6548-RJ-45)
C) 2011 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 8 of 19
Data Sheet
Figure 4.
Cisco Express Forwarding 256 Copper 10/100 Interface Module (part number WS-X6548-RJ-21)
Cisco Catalyst 6500 Series PoE, Classic 10/100, and 10/100/1000 Interface Modules
Designed for deployment in wiring closets, high-density Cisco Catalyst 6500 Series Classic 10/100 and 10/100/1000
interface modules provide line-rate 10/100 Ethernet forwarding and gigabit bandwidth to the desktop capabilities.
These interface modules feature PoE field-installable daughter cards for pay-as-you-grow investment protection
and flexibility.
The 96-port 10/100 module (part number WS-X6196-21AF) is the industry's first 96-port 10/100 RJ-21 module with
IEEE 802.3af support for ali 96 ports, helping enable the Cisco Catalyst 6500 Series to deliver the industry's highest
port densities ranging from 192 10/100 ports in a Cisco Catalyst 6503 chassis to 1152 10/100 ports in a Cisco
Catalyst 6513 chassis for a very cost-effective solution in the wiring closet.
The WS-X6196-RJ-21 module doubles the port density in the system in the same footprint, using the stacked
standard RJ-21 connectors. Port-density improvement can be achieved with no incremental investment in the cable
infrastructure. With the 802.3af PoE daughter card, this module can support up to 96 Class 2 devices or 62 Class 3
devices per module (960W of PoE per module).
The 96-port 10/100 module (part number WS-X6148X2-RJ-45) is the industry's first 96-port 10/100 RJ-45 module
that helps enable the Cisco Catalyst 6500 Series to deliver industry's highest port densities, ranging from 192 10/100
ports in a Cisco Catalyst 6503 chassis to 1152 10/100 ports in a Cisco Catalyst 6513 chassis for a very cost-effective
solution in the wiring closet.
The 96-port 10/100 module (part number WS-X6148X2-RJ-45) doubles the port density in the system by allowing it
to expand from 48 ports to 96 ports per slot with the addition of a splitter (included), typically mounted at the patch
panei. The splitting also can occur at the wall jack, providing another option for doubling the port density of the
switch without costly rewiring. This module also can function as a regular 48-port 10/100 module for maximum
flexibility and scalability in the future. With the 802.3af PoE daughter card, this module can support up to 48 Class 3
devices per module when operating as a 48-port module, or up to 96 Class 2 devices per module when operating as
a 96-port module (960W of PoE per module).
Using RJ-21 or RJ-45 connectors, the Cisco Catalyst 6500 Series classic 10/100 and 10/100/1000 modules are
ready to be deployed in virtually ali wiring-closet environments (Table •) with the following operational advantages
and characteristics:
• Forwarding architecture—These modules provide centralized Cisco Express Forwarding.
• Forwarding performance—These modules forward packets up to 15 Mpps per system.
• Fabric connection—These modules provide a 32-Gbps shared bus connection.
• Supervisor engine
—
These modules work with Supervisor Engine 1 A, Supervisor Engine 2, Supervisor 32,
or Supervisor Engine 720.
• Distributed forwarding upgrade—No upgrade is available; classic interface modules cannot be upgraded
for distributed forwarding.
• Slot requirements—These modules can occupy any slot in any Cisco Catalyst 6500 Series chassis.
© 2011 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 9 of 19
Data Sheet
• Maximum port density per chassis—These modules support up to 1152 10/100 ports or 576 10/100/1000
ports in the Cisco Catalyst 6513 chassis; up to 768 10/100 ports or 384 10/100/1000 ports in the Cisco
Catalyst 6509 chassis; up to 480 10/100 ports or 240 10/100/1000 ports in the Cisco Catalyst 6506 chassis;
and up to 192 10/100 ports or 96 10/100/1000 ports in the small-form-factor Cisco Catalyst 6503 chassis.
• Field-installable and -upgradable inline-power daughter cards—These modules help enable centralized
power distribution to IP phones, wireless access points, and other devices by sharing the same Category 5
UTP cabling used for network connections.
Note: Some of these modules are designed to support field upgrades to the IEEE 802.3af PoE standard with a
new daughter card, providing maximum investment protection. Table 8 for details.
• TDR—TDR is supported in ali the 10/100/1000 modules and 10/100 modules (product numbers WS-X6148ARJ-45 and WS-X6148A-45AF); TDR tests cabling by sending signals down the cable to identify faults in each
twisted pair.
Table 6.
Classic 10/100 and 10/100/1000 Modules
•Ptõduct.!D .
P
Appi!,„11
1
,,,c,r1.,ctr)i.
D .1,rar ■ •
C.,)ble -t-',,-,
f.1.1>Jr
2ri
P
POE
,. +
t.1111
QUeUeS per Port
Freme Siz
fumbo franze
Support
(Tx = Transmit,
Rx = Retelve1
Up to 9216 bytes
per trame
Tx-1 p3q8t
Up to 9216 bytes
per trame
Tx-1 p3q8t
Sutter
Size/Port
2.67 MB
48, RJ-45,100m,
Category 5 cable
Yes
48, RJ-45,100m,
Category 5 cable
Field-upgradable to
Cisco Prestandard and
IEEE 802.3af
No
Wiring closet
48, RJ-45,100m,
Category 5 cable
Field-upgradable to
Cisco Pre standard and
IEEE 802.3af
No
Up to 1518 bytes
per trame
Tx-1p2q2t
(per 8 ports)
Rx-1 p2t (per port)
1 MB per
8 porta
WS-X6148AGE-45AF
Wiring closet
48, RJ-45,100m,
Category 5 cable
Yes (both IEEE 802.3af
and Cisco Prestandard)
No
Up to 9216 bytes
per trame
Tx-1p3q8t
2.67 MB
WS-X6148GE-45AF
Wiring Closet
48, RJ-45,100m,
Category 5 cable
Yes (Both both IEEE
802.3af and Cisco
Prestandard)
No
Up to 1518 bytes
per trama
Tx-1p2q2l
(per 8 porta)
Rx-1 p2t (per port)
1 MB per
8 ports
WS-X6148VGE-TX
Wiring Closet
48, RJ-45,100m,
Category 5 cable
Yes, only Cisco
Prestandard
No
Up to 1518 bytes
per trama
Tx-1p2q2t
(per 8 ports)
Rx-1p21 (per port)
1 MB per
8 ports
WS-X6348RJ45
Wiring Closet
48, RJ-45,100m,
Category 5 cable
Field -upgradable to
only Cisco Prestandard
and not IEEE 802.3af
No
Up to 8092 bytes
per trama
Tx-2q2t
128 KB
WS-X6348RJ45V
Wiring closet
48, RJ-45,100m,
Category 5 cable
Yes, onty Cisco
Prestandard
No
Up to 8092 bytes
per trame
Tx-2q2t
WS-X6348RJ21V
Wiring closet
48, RJ-21,100m,
Category 5 cable
Yes, onty Cisco
Prestandard
No
Up to 8092 bytes
per trame
Tx-2q2t
WS-X6196RJ-21
Wiring closet
96, RJ-21,100m,
Category 5 cable
Field -upgradable to
Cisco Prestandard and
IEEE 802.3af
No
Up to 9216 bytes
per trame
Tx-1p3q1t
WS-X6196-
Wiring closet
96, RJ-21,100m,
Category 5 cable
Yes (both IEEE 802.3af
and Cisco Prestandard)
No
Up to 9216 bytes
per trame
Tx-1p3q1t
WS-X6148EGE-45AT
Wiring closet
WS-X6148AGE-TX
Wiring closet
WS-6148GE-TX
21AF
Yes
MaXiMI/11)
Rx-1q2t
2.67 MB
Rx-1q2t
Rx-1q21
Rx-1q4t
128 KB
Rx-1q4t
128 KB
Rx-1q4t
1.2 MB
Rx-1p1q0t
1.2 MB
Rx-1p1q0t
C) 2011 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 10 of 19
m111111116
Data Sheet
Product• 1D
Prirnary
Application
1
WSX6148X2-RJ45
Wiring dosei
WSX6148X245AF
Wiring closet
T
Por t5.::,, 21;c"-tor:
aximuir. • iStance.
and Catile.,Tr-lipé .
a
P
48, scalable to 96, RJ45,100m, Category 5
cable
Field -upgradable to
Cisco Prestandard and
IEEE 802.3af
No
48, scalable to 96, RJ45,100m, Category 5
cable
Yes (both IEEE 802.3af
and Cisco Prestandard)
No
.,,L 4
Field -upgradable to
IEEE 802.3af
No
Category 5 cable
48, RJ-45,100m,
Category 5 cable
Yes (both IEEE 802.3af
and Cisco Prestandard)
No
48, RJ-45,100m,
Category 5 cable
Field -upgradable to
only Cisco Prestandard
and Advance
Replacement for IEEE
802.3af
No
Wiring closet
48, RJ-45,100m,
Category 5 cable
Yes (both IEEE 802.3af
and Cisco Prestandard)
No
WS-X6148RJ45V
Wiring closet
48, RJ-45,100m,
Category 5 cable
Yes, only Cisco
Prestandard
No
WS-X6148RJ21
Wiring closet
48, RJ-21,100m,
Category 5 cable
Field -upgradable to
only Cisco Prestandard
and Advance
Replacement for IEEE
802.3af
No
WS-X614821AF
Wiring closet
48, RJ-21,100m,
Category 5 cable
Yes (both IEEE 802.3af
and Cisco Prestandard)
No
WS-X6148RJ21V
Wiring closet
Yes, only Cisco
Prestandard
No
WS-X6148ARJ-45
Wiring closet
WS-X6148A45AF
Wiring closet
WS-X6148RJ45
Wiring closet
WS-X614845AF
48, RJ-45,100m,
_
48, RJ-21,100m,
Category 5 cable
-
J -,. nr urn
nr Jrne SIM. r
ir, rr bo freme
s'unr.,,, r;
1 Up to 9216 bytes
1 per freme
;•
1 Up to 9216 bytes
1 per Trame
r•
Queues per PrOt
(Tx = Transmie.'2
Ra . ••Receivel
'
„..
1 Buffer
SizelPort
Tx-2q2t
11.2 MB
Rx-1q41
Tx-2q2t
Rx-1q41
I Up to 9216 bytes
i per trame
Tx-1p3q8t
1 Up to 9216 bytes
;per Trame
I
1 Up to 8092 bytes
1 per Trame
Tx-1p3q8t
r
•
1 Up to 8092 bytes
i per Trame
1 1.2 MB
1
1 1.2 MB
Rx-1p1q4t
1 1.2 MB
Rx- 1 p1q4t
Tx-2q2t
1 128 KB
Rx-1q41
Tx-2q2t
Rx-1q4t
.
i 128 KB
:
r••
1 Up to 8092 bytes
1 per Trame
Tx-2q2t
l Up to 8092 bytes
i per Trame
Tx-2q2t
1 128 KB
Rx-1q41
•r•
r
••
.
1 Up to 8092 bytes
per Trame
.
1 Up to 8092 bytes
1 per Trame
: 128 KB
Rx-1q4t
Tx-2q2t
R x-1q4t
Tx-2q2t
r,
1 128 KB
r
.
I 128 KB
Rx-1q41
Queues legend: 1p3q1t = 1 priority queue, 3 round-robin queues, and 1 threshold
Figure 5.
Cisco Classic 48-Port 10/100/1000 Module (part number WS-X6148E-GE-45AT) with 802.3af PoE and 802.3at PoE+
© 2011 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 11 of 19
Data Sheet
Figure 6.
Cisco Classic 48-Port 10/100/1000 Module (part number WS-X6148A-GE-TX) with 802.3af PoE Daughter
(floating above) (part number WS-F6K-GE48-AF)
Figure 7.
Cisco Classic 96-Port 10/100 802.3af PoE Module (part number WS-X6148X2-45AF)
Figure 8.
Cisco Classic 48-Port 1 0/1 00 802.3af PoE Module (part number WS-X6148A-45AF)
02011 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 12 of 19
Data Sheet
Figure 9.
Cisco Classic 48-Port 10/100 802.3af PoE Module, RJ-21 (part number WS-X6148-21AF)
Figure 10.
Cisco Classic 96-Port 10/100 (with field upgrade option to 802.3af PoE module) (part number WS-X6196-RJ-21)
Cisco Catalyst 6500 Series Data-Only Classic Gigabit Ethernet-over-Copper Interface Module
Designed for distribution and core layers and for data-center and Web-hosting applications, the Cisco Catalyst 6500
Series Classic 16-port Gigabit Ethernet interface modules provide line-rate Gigabit Ethernet forwarding with the
following operational advantages:
• Forwarding architecture—These modules use centralized Cisco Express Forwarding.
• Forwarding performance—These modules forward packets up to 15 Mpps per system.
• Fabric connection—These modules provide a 32-Gbps shared bus connection.
• Supervisor engine—These modules work with Supervisor Engine 1 A, Supervisor Engine 2, Supervisor 32,
or Supervisor Engine 720.
• Distributed forwarding upgrade—No upgrade is available; classic interface modules cannot be upgraded
for distributed forwarding.
• Slot requirements—There are no slot requirements; the modules can occupy any slot in any Cisco Catalyst
6500 Series chassis.
• Maximum port density per chassis (16-port modules)—These modules support up to 192 ports per
Cisco Catalyst 6513 and up to 128 ports per Cisco Catalyst 6509.
© 2011 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 13 01 19
Data Sheet
Ordering Information
Table 7 provides part-number information for Cisco Catalyst 6500 Series 10/100 and 100/1000 Ethernet
interface modules.
Table 7.
Cisco Catalyst 6500 Series 10/100 and 10/100/1000 Ethernet Interface Modules
Product Number
'
Descnption
E . ‘ •
10/100/1000
WS-X6748-GE-TX
Cisco Catalyst 6500 Series 48-Port 10/100/1000 RJ-45 Cisco Express Forwarding 720 Interface Module; fieldupgradable to support distributed forwarding with the addition of the distributed forwarding daughter card (part
number WS-F6700-DFC3A=)
WS-X6548-GE-TX
Cisco Catatyst 6500 Series 48-Port 10/100/1000 RJ-45 Cisco Express Forwarding 256 Interface Module; fieldupgradable to support Cisco Prestandard PoE daughter card (part number WS-F6K-VPWR-GE=) or 802.3af PoE
daughter card (part number WS-F6K-GE48-AF=)
WS-X6548-GE-45AF
Cisco Catatyst 6500 Series 48-Port 10/100/1000 RJ-45 Cisco Express Forwarding 256 Interface Module with
802.3af PoE daughter card (that is, includes daughter card [part number WS-F6K-GE48-AF=])
WS-X6548V-GE-TX
Cisco Catalyst 6500 Series 48-Port 10/100/1000 RJ-45 Cisco Express Forwarding 256 Interface Module with Cisco
Prestandard PoE Daughter Card (that is, includes daughter card [part number WS-F6K-VPWR-GE=])
WS-X6516-GE-TX
Cisco Catalyst 6500 Series 16-Port 10/100/1000 RJ-45 Cisco Express Forwarding 256 Interface Module; fieldupgradable to support distributed forwarding with the addition of the distributed forwarding daughter card (part
number WS-F6K-DFC= or DFC3)
WS-X6148E-GE-45AT
Cisco Catalyst 6500 Series 48-Port 10/100/1000 RJ-45 Classic Interface Module with IEEE 802.3af PoE and
IEEE 802.3at PoE+ support
WS-X6148A-GE-TX
Cisco Catalyst 6500 Series 48-Port 10/100/1000 RJ-45 Classic Interface Module; field-upgradable to support
802.3af PoE daughter card (part number WS-F6K-GE48-AF=)
WS-X6148-GE-TX
Cisco Catalyst 6500 Series 48-Port 10/100/1000 RJ-45 Classic Interface Module; field-upgradable to support Cisco
Prestandard PoE Daughter Card (part number WS-F6K-VPWR-GE=) or 802.3af PoE daughter card (part number
WS-F6K-GE48-AF-=)
WS-X6148A-GE-45AF
Cisco Catalyst 6500 Series 48-Port 10/100/1000 RJ-45 Classic Interface Module with 802.3af PoE daughter card
(that is, includes daughter card (part number WS-F6K-GE48-AF.)
WS-X6148-GE-45AF
Cisco Catalyst 6500 Series 48-Port 10/100/1000 RJ-45 Classic Interface Module with 802.3af PoE daughter card
(that is, includes daughter card (part number WS-F6K-GE48-AF=)
WS-X6148V-GE-TX
Cisco Catalyst 6500 Series 48-Port 10/100/1000 RJ-45 Classic Interface Module with Cisco Prestandard PoE
Daughter Card (that is, includes daughter card (part number WS-F6K-VPWR-GE=)
10/100
WS-X6548-RJ-45
Cisco Catalyst 6500 Series 48-Port Cisco Express Forwarding 256 10/100 RJ-45 Interface Module; field-upgradable
to support distributed forwarding with the addition of the distributed forwarding daughter card (part number WS-F6KDFC= or DFC3)
WS-X6548-RJ-21
Cisco Catalyst 6500 Series 48-Port, Cisco Express Forwarding 256 10/100 RJ-21 Interface Module; fieldupgradable to support distributed forwarding with the addition of the distributed forwarding daughter card
(part number WS-F6K-DFC= or DFC3)
WS-X6348-RJ45
•
Cisco Catalyst 6500 Series 48-Port 10/100 RJ-45 Classic InterfaCe Module; field-upgradable to support
Cisco Prestandard PoE Daughter Card (part number WS-F6K-VPWR=)
WS-X6348-RJ45V
Cisco Catatyst 6500 Series 48-Port 10/100 RJ-45 Classic Interface Module with Cisco Prestandard PoE Daughter
Card (that is, includes daughter card [part number WS-F6K-VPWR=])
WS-X6348-RJ21V
Cisco Catalyst 6500 Series 48-Port 10/100 RJ-21 Classic Interface Module with Cisco Prestandard PoE Daughter
Card (that is, includes daughter card [part number WS-F6K-VPWR=])
WS-X6148X2-RJ-45
Cisco Catalyst 6500 Series 96-Port 10/100 RJ-45 Classic Interface Module; field-upgradable to support 802.3at
PoE daughter card (pari number WS-F6K-FE48X2-AF=)
-........---Cisco Catalyst 6500 Series 96-Port 10/100 RJ-45 Classic Interface Module with 802.3af PoE daughter card (that is,
includes daughter card [part number WS-F6K-FE48X2-AF=])
WS-X6148X2-45AF
WS-X6196-RJ-21
.
..
Cisco Catalyst 6500 Series 48-Port 10/100 RJ-21 Classic Interface Module; field-upgradable to support 802.3af
PoE daughter card (part number WS-F6K-FE48X2-AF=)
WS-X6196-21AF
Cisco Catalyst 6500 Series 96-Port 10/100 RJ-21Classic Interface Module with 802.3af PoE daughter card (that is,
includes daughter card [part number WS-F6K-FE48X2-AF=])
WS-X6148A-RJ-45
Cisco Catalyst 6500 Series 48-Port 10/100 RJ-45 Classic Interface Module; field-upgradable to support 802.3af
PoE daughter card (part number WS-F6K-GE48-AF=)
WS-X6148-RJ-45
Cisco Catalyst 6500 Series 48-Port 10/100 RJ-45 Classic Interface Module; upgradable to support Cisco
Prestandard PoE Daughter Card (part number WS-F6K-VPWR=) or to IEEE 802.3af PoE daughter card
(part number WS-X6148-45AF-UG=)
C) 2011 Cisco and/or its affiliates. All rights reserved. This dotument is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 14 of 19
Data Sheet
Product Number
D
WS-X6148A-45AF
Cisco Catalyst 6500 Series 48-Port 10/100 RJ-45 Classic Interface Module with IEEE 802.3af PoE daughter card
cription
WS-X6148-45AF
Cisco Catalyst 6500 Series 48-Port 10/100 RJ-45 Classic Interface Module with IEEE 802.3af PoE daughter card
WS-X6148-RJ45V
Cisco Catalyst 6500 Series 48-Port 10/100 RJ-45 Classic Interface Module with Cisco Prestandard PoE Daughter
Card (that is, includes daughter card [part number WS-F6K-VPWR=])
WS-X6148-RJ-21
Cisco Catalyst 6500 Series 48-Port 10/100 RJ-21 Classic Interface Module; upgradable to support Cisco
Prestandard PoE Daughter Card (part number WS-F6K-VPWR=) or to IEEE 802.3af PoE daughter card
(part number WS-X6148-21AF-UG=)
WS-X6148-21AF
Cisco Catalyst 6500 Series 48-Port 10/100 RJ-21 Classic Interface Module with IEEE 802.3af PoE daughter card
WS-X6148-RJ21V
Cisco Catalyst 6500 Series 48-Port 10/100 RJ-21 Classic Interface Module with Cisco Prestandard PoE Daughter
Card (that is, includes daughter card [part number WS-F6K-VPWR=])
Table 8.
Cisco Catalyst 6500 Series Power Over Ethernet Daughter Cards
--------—,--
Pari Number
Description
WS-F6K-GE48-AF=
Cisco Catalyst 6500 Series 802.3af PoE Daughter Card for 10/100/1000 modules (part numbers WS-X6148-GETX, WS-X6148V-GE-TX, WS-X6548-GE-TX, and WS-X6548V-GE-TX)
WS-F6K-FE48X2-AF=
Cisco Catalyst 6500 Series 802.3af PoE Daughter Card for WS-X6148X2-RJ-45) module
WS-X6148-45AF-UG=
1 Cisco Catalyst 6500 Series 802.3af PoE Advanced Upgrade for [PRODUCT NAME] (part number WS-X6148-RJ45
i or WS-X6148-RJ45V)
WS-X6148-21AF-UG=
1 Cisco Catalyst 6500 Series 802.3af PoE Advanced Upgrade for [PRODUCT NAME] (part number WS-X6148-RJ21
WS-F6K-VPWR=
or WS-X6148-RJ21V)
1
1 Cisco Catalyst 6500 Series Cisco Prestandard PoE Daughter Card for 10/100 modules (for WS-X6148-RJxx and
1 WS-X6348-xx)
WS-F6K-VPWR-GE=
1 Cisco Catalyst 6500 Sedes Cisco Prestandard PoE Daughter Card for 10/100/1000 modules (part numbers WSX6148-GE-TX and WS-X6548-GE-TX)
Ordering Information—DFC Daughter Cards
Table 9 provides part-number information for distributed forwarding daughter cards for the Cisco Catalyst 6500
Series Cisco Express Forwarding 256 and Cisco Express Forwarding 720 Ethernet interface modules.
Table 9.
Cisco Catalyst 6500 Series 10/100 and 100/1000 Distributed Forwarding Cards
.—.
,....
Part Number
Description
WS-F6K-DFC
Cisco Catalyst 6500 Series DFC3A for Cisco Catalyst 6500 Series; Cisco Catalyst 6816 modules used with
Supervisor Engine 2
WS-F6K-DFC3A
Cisco Catalyst 6500 Series DFC3A for Cisco Catalyst 6500; Cisco Catalyst 6816 modules used with Supervisor
Engine 720
MEM-DFC-256MB
256-MB DRAM option for DFC
MEM-DFC-512MB
512-MB DRAM option for DFC
WS-F6700-DFC3A
Cisco Catalyst 6500 Series DFC3A for Cisco Catalyst 6700 Series modules
WS-F6700-DFC3B
Cisco Catalyst 6500 Series DFC3B for Cisco Catalyst 6700 Series modules
WS-F6700-DFC3BXL
Cisco Catalyst 6500 Series DFC3BXL for Cisco Catalyst 6700 Series modules
,
Specifications
Standard Network Protocols
. Ethernet: IEEE 802.3 and 10BASE-T
• Fast Ethernet: IEEE 802.3, 100BASE-TX, and 100BASE-FX
• Gigabit Ethernet: 1000BASE-TX
• IEEE 802.1d, IEEE 802.1p, IEEE 802.1q, IEEE 802.1s, IEEE 802.1w, IEEE 802.3x, IEEE 802.3z,
IEEE 802.3ab, IEEE 802.3ad IEEE 802.3af and IEEE 802.3at
© 2011 Cisco and/or its affiliates. Ali r ghts reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 15 of 19
Data Sheet
Physical Specification
• Occupies one slot in a Cisco Catalyst 6500 Series chassis
• Dimensions (H x W x D): 1.2 x 14.4 x 16 in. (3.0 x 35.6 x 40.6 cm)
Environmental Conditions
• Operating temperature: 32 to 104f (0 to 40C)
• Storage temperature: —40 to 167f (-40 to 75C)
• Relative humidity: 10 to 90 percent, noncondensing
• Operating altitude: —197 to 9843 ft (-60 to 3000m)
Safety Compliance
• UL 1950
• CSA-C22.2 No. 950
• EN 60950
• IEC 950
• AS/NZS 3260
• IEC 825
• EN 60825
• 21CFR1040
EMC Compliance
• FCC Part 15 (CFR 47) Class A
• VCCI Class A with UTP, Class B with STP
• EN55022 Class A with UTP, Class B with STP
• CISPR 22 Class A with UTP, Class B with STP
• CE marking
• AS/NZS 3548 Class A with UTP, Class B with STP
Network Management
• ETHERLIKE-MIB (RFC 1643)
• IF-MIB (RFC 1573)
• Bridge MIB (RFC 1493)
• CISCO-STACK-MIB
• CISCO-VTP-MIB
• CISCO-CDP-MIB
• RMON MIB (RFC . 1 757)
• CISCO-PAGP-MIB
• CISCO-STP-Extensions-MIB
• CISCO-VLAN-Bridge-MIB
• CISCO-VLAN-Membership-MIB
• CISCO-UDLDP-MIB
• CISCO-ENTITY-FRU-CONTROL-MIB
© 2011 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 16 of 19
Data Sheet
• CISCO-COPS-CLIENT-MIB
• ENTITY-MIB (RFC 2037)
• HC-RMON
• RFC1213-MIB (MIB-11)
• SMON-MIB
Inline-Power Specifications
• IEEE 802-3af—Output power per port: Typically 54V up to 350 mA
• Cisco Prestandard—Output power per port: Typically 42V up to 166 mA
• Pin assignment: 1, 2, 3, and 6
Maximum Station-to-Station Cabling Distance
• 10/100BASE-TX, 100BASE-TX Fast Ethernet, and 10, 100, and 1000 Mbps: Category 5, 5e, and 6 UTP:
328 ft (100m), 100-ohm STP: 328 ft (100m); half or full duplex
• Maximum power: Off (maximum power condition not reached); on (maximum power condition reached;
no more phones will receive inline power from this module)
Indicators and Interfaces
• Status: Green (operational); red (faulty); orange (module booting or running diagnostics)
• Link good: Green (port active); orange (disabled); off (not active or not connected); blinking orange
(failed diagnostic and disabled)
• 10, 100, and 1000 Mbps: RJ-45 (female)
• 10/100BASE-TX and 100BASE-TX: RJ-45 (female)
Cisco Technical Support Services
Whether your company is a large organization, a commercial business, or a service provider, Cisco is committed
to maximizing the return on your network investment. Cisco offers a portfolio of technical support services to help
ensure that your Cisco products operate efficiently, remain highly available, and benefit from the most up-to-date
system software.
The Cisco Technical Support Services organization offers the following features, providing network investment
protection and minimal downtime for systems running mission-critical applications:
• Provides Cisco networking expertise online and on the telephone
• Creates a proactive support environment with software updates and upgrades as an ongoing integral part
of your network operations, not merely a remedy when a failure or problem occurs
• Makes Cisco technical knowledge and resources available to you on demand
• Augments the resources of your technical staff to increase productivity
• Complements remote technical support with onsite hardware replacement
Cisco Technical Support Services include:
• Cisco SMARTnet® support
• Cisco SMARTnet Onsite support
• Cisco Software Application Services, including Software Application Support and Software Application
Support plus Upgrades
©2011 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 17 of 19
Data Sheet
For more information, visit:
http://www.cisco.com/en/US/products/svcs/ps3034/serv cateoorv home.html
Additional Cisco Catalyst 6500 Series Information
Visit the following link to view the following data sheets:
http://www.cisco.com/en/US/oroducts/hw/switches/ps708/products data sheets list.html
Cisco Catalyst 6500 Software
• Cisco Catalyst Operating System
• Cisco IOS Software Release 12.2X
• Cisco IOS Software Release 12.1E
• Cisco Catalyst 6500 Series General Software Information
• Using Remote Switched Port Analyzer (RSPAN) with VLAN Access Control Lists (VACLs) for
Granular Traffic Analysis
Supervisors and Switch Fabric Modules
• Cisco Catalyst 6500 Series Supervisor Engine 720 Data Sheet
• Cisco Catalyst 6500 Series Supervisor Engine 1 A and Supervisor Engine 2 Data Sheet
• Cisco Catalyst 6500 Series Supervisor Engine 32 Data Sheet
• Cisco Catalyst 6500 Series Switch Fabric Interface Modules Data Sheet
Modules
• Cisco Catalyst 6500 Series 10 Gigabit Ethernet Interface Modules Data Sheet
• Cisco Catalyst 6500 Series Gigabit Ethernet Interface Modules Data Sheet
• Cisco Catalyst 6500 Series 10/100 and 10/100/1000 Ethernet Interface Modules Data Sheet
Layer 4-7 Modules
• Cisco Catalyst 6500 Series Communication Media Module
• Cisco Catalyst 6000 Family Voice T1 and Services Module
• Cisco Catalyst 6500 Series Cisco Content Switching Module
• Cisco Content Services Gateway
• Cisco Catalyst 6500 Series Firewall Services Module
• Cisco Catalyst 6500 Series IDS Module (IDSM-2)
• IPSec VPN Services Module for the Cisco Catalyst 6500 Switch and Cisco 7600 Router
• Cisco Multiprocessor WAN Application Mode
• Cisco Catalyst 6500 Series NAM (NAM-1/NAM-2)
• Cisco Persistent Storage Device
• SSL Services Module for the Cisco Catalyst 6500 Series and Cisco 7600 Series
• Cisco Catalyst 6500 Series Wireless LAN Services Module
FIexWAN, Optical Services Modules, and ATM
• Cisco 7600 Series and Cisco Catalyst 6500 Series Optical Services Modules
• Cisco 7600 Series and Cisco Catalyst 6500 Series Enhanced FIexWAN Module
• FIexWAN Module for the Cisco Catalyst 6500 Series and Cisco 7600 Series
• New High-Speed ATM LANE/MPOA Modules
@ 2011 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 18 of 19
•
Data Sheet
GBIC, SFP, and XENPAK Optics
• Cisco 10GBASE XENPAK Modules
• Cisco Small Form-factor Pluggable (SFP)
• Cisco Gigabit Interface Converter (GBIC)
• Cisco Coarse Wavelength-Division Multiplexing (CWDM) GBIC/SFP
• Cisco Dense Wavelength-Division Multiplexing (DWDM) GBIC
elliellle
CISCO.
Americas Headquarters
Asia Pacific Headquarters
Europe Headquarters
Cisco Systems, Inc.
San Jose. CA
Cisco Systems (USA) Pte. Ltd.
Cisco Systems International BV A.msterdam.
The Netherlands
Singapore
Cisco tias more than 200 of lices worldwide. Addresses. phone numbers. and fax numbers are listed on the Cisco Website at www.cisco.corn/go/offices.
Cisco and the Cisco Logo are trademarks of Cisco Systems, Inc. and/or its affiliates in the U.S. and other countries. A listing of Ciscds trademarks can be lound
www.cisco.com/go/trademarks . Third party trademarks mentioned are the property of their respective owners. The use of the word partner does nal imply a
partnership relationship between Cisco and any other company. (1005R)
Printed in USA
at
C78-405932-02 03/11
©2011 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 19 of 19
.11.1 11
CISCO».
Data Sheet
Cisco Catalyst 6500 Series Virtual Switching
Supervisor Engine 720 with 10 Gigabit Ethernet Uplinks
Product Overview
The Cisco® Catalyst® 6500 Series Virtual Switching Supervisor Engine 720 with 10 Gigabit
Ethernet uplinks and IPv6 in hardware is an industry first. The new supervisor engine combines
high-density uplinks, system virtualization, and increased throughput with scalable performance
and a rich IP feature set. This supervisor is a key component of the Cisco VSS 1440 Virtual
Switching System and enables high availability, operational efficiency, and increased bandwidth
with great ease of deployment.
The Cisco Virtual Switching Supervisor Engine 720 with 10 Gigabit Ethernet uplinks has a new
forwarding engine that combines all the capabilities of its predecessor, the Cisco Catalyst 6500
Series Supervisor Engine 720, with system virtualization and increased throughput. While
introducing new features, the Cisco Virtual Switching Supervisor Engine 720 with 10 Gigabit
Ethernet uplinks also continues to provide investment protection to Cisco customers by supporting
all three generations of Cisco Catalyst 6500 Series interfaces and services modules.
The Cisco Virtual Switching Supervisor Engine 720 includes:
• Two X2-based 10 Gigabit Ethernet ports, ideal for high-density access and aggregation
areas such as data center, LAN campus, and backbone areas.
• Two Gigabit Ethernet Small Form-Factor Pluggable (SFP) ports and one 10/100/1000
gigabit port for additional flexibility. Ali the links in the Cisco Virtual Switching Supervisor
Engine 720 can be active simultaneously even in the redundant configurations, thereby
increasing the supervisor throughput from 48 to 82 Mpps. This improves total system
performance to 450 Mpps for IPv4 traffic and 225 Mpps for IPv6 traffic.
• Additional fabric capabilities offering subsecond failover rates, allowing faster switchover to
a standby supervisor. The Cisco Virtual Switching Supervisor Engine 720 with 10 Gigabit
Ethernet uplinks is supported on Cisco 10S® Software.
In addition, the Cisco Virtual Switching Supervisor Engine 720 with 10 Gigabit Ethernet uplinks
continues to offer a hardware-based feature set that enables applications such as traditional IP
forwarding, Layer 2 and Layer 3 Multiprotocol Label Switching (MPLS) VPNs, and Ethernet over
MPLS (EoMPLS) with quality of service (QoS) and security features.
All contents are Copyright 1992-2007 Cisco Systems, Inc. Ali rights reserved. This document is Cisco Confidential—NDA Use Only.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 1 of 7
Data Sheet
Figure 1.
Cisco Virtual Switching Supervisor Engine 720 Features
Improved fabric for
Cisco PFC3C enables
virtual switching'sy'stem
faster switchovPr
[
MSFC3 complex with
1 GE3SP compac flash
Two X2 10 Gigabit
Ethernet uplinks
lobit and one 10/100/1090 activeitiplink ports
(a ■ I actve even ■ ri redundai-1f superViser.configuration)
a orlo , ith act i ve 10 Gigabit Ethernet linkt
The Cisco Virtual Switching Supervisor Engine 720 with 10 Gigabit Ethernet uplinks works with the
Cisco VSS 1440 to deliver high-density uplinks and system virtualization along with scalable
performance (Figure 2). For detailed deployment guidance, please see
http://www.cisco.com/en/US/prod/collateral/switches/ps5718/ps9336/white paper c11 429338.pdf
Figure 2.
System Virtualization Using the Cisco VSS 1440
Upstream and Downstream
neighbors will view th VSS
as a single Layer 2 switching node
oras a single Layer 3 routing node
thus reducing Layer 2/3 control
protocol traffic
Single Managenment Point
Administrators will see a single
management point from which to
configure and administer the VSS
which includes a single
consolidated configuration file for
both physical switches
Multi-Chassis Etherchannel
allows a link bundie to terminate
across TWO physical Cisco
Catalyst 6500 chassis
As far as other end is concerned, the link bundle is seen as terminating
on one physical device even though it is actually terminating across two chassis
Ali contents are Copyright C) 1992-2007 Cisco Systems, Inc. Ali rights reserved. This document is Cisco Confidential—NDA Use Only.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 2 ol 7
Data Sheet
VSS 1440's system virtualization technology pools multiple Cisco Catalyst 6500 Series Switches
into one virtual switch, scaling the system bandwidth capacity to 1.4 Tbps. This innovation helps to
Glose IT resource allocation and application integration gaps, advancing the Cisco ServiceOriented Network Architecture (SONA) and the Cisco Campus Communications Fabric (CCF)
framework. Cisco VSS 1440, with sup720-10G-VSS as a key enabler, brings the following benefits
to customer networks:
• Increases operational efficiency: Using Multichassis EtherChannel, the Cisco VSS 1440
eliminates the need for Hot Standby Router ProtocolNirtual Router Redundancy Protocol/
Gateway Load Balancing Protocol (HSRPNRRP/GLBP) configuration and allows
customers to use a standards-based aggregation mechanism for server network interface
card (NIC) teaming across redundant switches. Since multiple Cisco Catalyst 6500 Series
Switches are viewed as one virtual switch, the management overhead is reduced by at
least 50 percent. Using the Cisco VSS 1440, only one gateway IP address is required per
VLAN, instead of the current requirement of three IP addresses per VLAN.
The Cisco VSS 1440 is flexible enough to be deployed in separate geographical locations.
CiscoWorks further eases Cisco VSS 1440 management by seeing two Cisco Catalyst
switches as one virtual switch.
• Boosting nonstop communication: The Cisco VSS 1440 uses Multichassis
EtherChannel for link failover and eliminates Layer 2 and 3 protocol reconvergence. This
results in a deterministic, subsecond virtual switch recovery avoiding any disruption to
applications that rely on network state information (such as forwarding table information,
NetFlow, Network Address Translation [NAT], authentication, or authorization).
• Scales system bandwidth capacity to 1.4 Tbps: The Cisco VSS 1440 provides
automatic, even load sharing by using all the available Layer 2 bandwidth across redundant
Cisco Catalyst 6500 Series Switches. The Cisco VSS 1440 eliminates unicast flooding
caused by asymmetrical routing in the campus, and maximizes the use of all of the 10gigabit ports in a virtual switch.
• Uses existing multilayer switching architecture: Unlike many new technologies, the
Cisco VSS 1440 eases deployment by using customers' existing Cisco Catalyst 6500
Series investments and by supporting standards-based 10 Gigabit Ethernet connections.
Standards-based 10 Gigabit Ethernet connections between Cisco Catalyst 6560 Series
Switches results in flexible distances between connections. Furthermore, the CiscoWorks
LAN Management Solution (LMS) management tool converts existing switch configurations
into simpler VSS 1440 configurations, simplifying deployment.
• Provides slot efficiency: With two X2-based 10 Gigabit Ethernet uplinks built into the
supervisor engine, the system seves slot for additional integrated services or high-density
chassis.
• Increases throughput: The Cisco Virtual Switching Supervisor Engine 720 with 10 Gigabit
Ethernet uplinks enables all Gigabit Ethernet and 10 Gigabit Ethernet links to be active
simultaneously. This is true for redundant systems (systems with dual supervisor engines in
the chassis), thereby increasing the supervisor throughput to 82 Mpps. As a result, the
system throughput increases to 450 Mpps for IPv4 traffic and 225 Mpps for IPv6 traffic.
• Improves resiliency: The Cisco Virtual Switching Supervisor Engine 720 with 10 Gigabit
Ethernet uplinks includes switch fabric capabilities that offer deterministic, subsecond
failover. This results in faster switchover to a standby supervisor.
Ali contents are Copyright © 1992-2007 Cisco Systems, Inc. Ali rights reserved. This document is Cisco Confidential—NDA Use Only.'
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 3 of 7
Data Sheet
Table 1 lists specifications of the Cisco Virtual Switching Supervisor Engine 720 with 10 Gigabit
Ethernet uplinks.
Table 1.
Specifications of the Cisco Virtual Switching Supervisor Engine 720 with 10 Gigabit Ethernet
uplinks
Fentuu,.:,
r- ,,,,, ,irii.iai Switehing"Supervisor
Er gine 725 with ln Gigabit Ethernet
uplInks (PFC 3C)
Cisco Virtual Switching Supervisor
Engine 720 with 10 Gigabit Ethernet
uplinks (PFC 3CXL)
Support for Cisco VSS 1440
Yes
Yes
MAC entries
96,000
96,000
IP Routes
256,000 (IPv4); 128,000 (IPv6)
1,000,000 (IPv4); 500,000 (IPv6)
IPv4 Routing
IPv6 Routing
Layer 2 Bridging
NetFlow Entries
MPLS
• In hardware
• In hardware
• Up to 450 Mpps`
• Up to 450 Mpps*
• In hardware
• In hardware
• Up to 225 Mpps .
• Up to 225 Mpps*
• In hardware
• In hardware
• Up to 450 Mpps*
• Up to 450 Mpps*
128,000
• MPLS in hardware to enable use of
Layer 3 VPNs and EoMPLS
tunneling.
• Up to 1024 virtual routing and
forwarding instances (VRFs) with a
total of up to 256,000 routes per
system.
• 256,000
..._
....
• MPLS in hardware to enable use of
Layer 3 VPNs and EoMPLS
tunneling.
• Up to 1024 VRFs with a total of up
to 1,000,000 routes per system.
GRE
in hardware
In hardware
NAT
Hardware-assisted
Hardware-assisted
* With Cisco Distributed Forwarding Card 3C (DFC3C)
Application Areas
The Cisco Virtual Switching Supervisor Engine 720 with 10 Gigabit Ethernet uplinks demonstrates
its versatility and ability to meet the requirements of areas of the network with its hardware
capabilities and support and a mix of Gigabit Ethernet and 10 Gigabit Ethernet uplinks. The
supervisor engine can be used in numerous applications, including:
Enterprise backbone (core/distribution) and data center: The Cisco Virtual Switching
Supervisor Engine 720 with 10 Gigabit Ethernet uplinks offers high-density uplinks, system
virtualization, enhanced security, rich QoS, and scalable performance for Gigabit Ethernet and 10
Gigabit Ethernet, making it ideal for enterprise core and distribution applications and for data
centers.
Campus access, Ethernet WAN, and Metro Ethernet: The Cisco Virtual Switching Supervisor
Engine 720 with 10 Gigabit Ethernet uplinks offers a strong set of security features. System
security is hardened with support for features such as one-touch AutoSecure, CPU rate limiting,
multipath unicast Reverse Path Forwarding (uRPF), and numerous 802.1x extensions. Extensive
hardware-based feature support of QoS mechanisms, hardware-based Generic Route
Encapsulation (GRE) tunneling, and access control lists (ACLs) enable customers to build highperformance, feature-rich campus networks, metropolitan aggregation, and various WAN edge
networks.
Summary/Conclusion
Ali contents are Copyright © 1992-2007 Cisco Systems, Inc. Ali rights reserved. This document is Cisco Confidential—NDA Use Only.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 4 of 7
Data Sheet
The Cisco Virtual Switching Supervisor Engine 720 with 10 Gigabit Ethernet uplinks eases the 10
Gigabit Ethernet migration, providing system virtualization benefits by enabling the Cisco VSS
1440 and scaling the system bandwidth to 1.4 Tbps. Support for all Cisco Catalyst 6500 Series
interface module classes (Classic, CEF256, dCEF256, and CEF720) combined with hardware
support for MPLS and IPv6 makes the Cisco Virtual Switching Supervisor Engine 720 an excellent
choice in all network locations. For the first time in the industry, with all links active (including
redundant supervisor links), the Cisco Virtual Switching Supervisor Engine 720 with 10 Gigabit
Ethernet uplinks offers improved forwarding capacity (82 Mpps) and system throughput, along with
system virtualization through VSS 1440.
Table 2 lists product specifications for the Cisco Virtual Switching Supervisor Engine 720 with 10
Gigabit Ethernet uplinks.
Table 2.
Product Specifications for the Cisco Virtual Switching Supervisor Engine 720 with 10 Gigabit
Ethernet uplinks
rock, ct
• Cisco Catalyst 6503-E, 6504-E, 6506, 6506-E, 6509, 6509-E, 6509-NEB-A, 6509-V-E,
6513
Chassis Compatibility
• Cisco 7604, 7609, 7613
• E Chassis supports Cisco Virtual Switching Supervisor Engine 720
Fan Tray and Minimum
Power Supply Required
o 2500W AC or DC
• Non E Chassis requires the folte•ing:
• High-speed fan
• 2500W AC or DC
Occupies the following slots in the chassis:
Slot Requirements
I
• 3-slot chassis: slots 1 and 2
• 4-slot chassis: slots 1 and 2
• 6-slot chassis: slots 5 and 6
• 9-slot chassis slots 5 and 6
• 13-slot chassis: slots 7 and 8
• Cisco Catalyst 6500 Series
Software Compatibility
• Cisco IOS Software Release 12.2(33)SXH and later
• Cisco 7600 Series
• Cisco IOS Software Release 12.2(33)SXH and later
• Layer 3 routing protocols, Border Gateway Protocol version 4 (BGPv4), Open Shortest
Path First (OSPF), Intermediate System-to-Intermediate System (IS-IS), Enhanced
Interior Gateway Routing Protocol(EIGRP), Routing Information Protocol (RIP),
Distributed FIB Switching, Cisco Discovery Protocol, Internet Control Message Protocol
(ICMP)
Protocols
• Multicast forwarding, Protocol independent Multicast (PIM) (both sparse and dense
mode), (S,G), (',G), Bidirectional PIM in hardware
• Comprehensive MPLS support
• Cisco Group Management Protocol and Internet Group Management Protocol (IGMP)
snooping
• Cisco Virtual Switching Supervisor Engine 720 3C supports 1 GB of DRAM for the route
processor and 1 GB for the switch processor
Memory
• Cisco Virtual Switching Supervisor Engine 720 3CXL supports 1 GB DRAM for the route
processor and 1 GB DRAM for the switch processor
1
i
Storage Options
li
• 1 GB compact flash for switch processor and 64 MB of boot flash for route processor
Removable storage: 256 MB, 512 MB, 1 GB (compact flash)
Uplink Ports
Two 10 Gigabit optics (X2) ports, two Gigabit Ethernet SFP ports, one selectable 10/100/100
RJ-45
Console Ports
One (RS-232)
USB Ports
• One host and one device port”
All contents are Copyright © 1992-2007 Cisco Systems, Inc. All rights reserved. This document is Cisco Confidential—NDA Use Only.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 5 of 7
Data Sheet
P.rotii,1
Specif i cal ions
Rellability and
Availability
• Virtual Switching System (VSS)
• Fast software upgrade
• Route Processor Redundancy+ (RPR+)
• Stateful Switchover + Nonstop Forwarding (SSO + NSF)
• Online insertion and remova) (OIR) hot swap
• Fast fabric switchover
MIBs
• MPLS LDP MIB, MPLS Label Switch Router (LSR) MIB, MPLS-TE MIB, MPLS VPN MIB;
see software release notes for additional information
• Check the following MIB finder for more information: http:/~cisco.com/oublic/sw-
center/netmomt/cmtk/mibs.shtml
Network Management
CiscoWorks
Physical Specifications
• (H x W x D): 1.6 x 15.3 x 16.3 in. (4.0 x 37.9 x 40.3 cm)
• Weight: 11.5 lb; 12.5Ib with Optics and SFP
Power Consumption
• Cisco Virtual Switching Supervisor Engine 720 3C (includes PFC3C): 338W
• Cisco Virtual Switching Supervisor Engine 720 3CXL (includes PFC3CXL): 363W
Environinental
Conditions
• Operating temperature: 32 to 104F (O to 40C)
• Storage temperature: —40 to 158F (-40 to 70C)
• Relative humidity, operating, noncondensing: 10 to 90%
• Relative humidity, nonoperating, noncondensing: 10 to 95%
• MTBF: Demonstrated 85,000 hours
EMI and EMC
Compliance
• FCC Part 15 (CFR 47) Class A
• ICES-003 Class A
• EN 55022 Class A
• CISPR 22 Class A
• AS/NZS 3548 Class A
• VCCI Class A
• EN 55024
• EN300 386
• EN 50082-1
• EN 61000-3-2
• EN 61000-3-3
• EN 61000-6-1
• CISPR24
Safety Compliance
• UL 60950
• CAN/CSA-C22.2 NO. 60950
• EN 60950
• IEC 60950
** Will be disabled at FCS but will be enabled by future software releases.
Ordering Information
Table 3 lists ordering information for the Cisco Virtual Switching Supervisor Engine 720. To place
an order, visit the Cisco Ordering Home Page.
Table 3.
Ordering Information
P3 ,-■
Piaducf
VS-S720-10G-3CM
Cisco Catalyst 6500 Series Virtual Switching Supervisor Engine 720 with two 10 Gigabit
Ethernet ports and MSFC3 PFC3C
VS-S720-10G-3CX1(.)
Cisco Catalyst 6500 Series Virtual Switching Supervisor Engine 720 with two 10 Gigabit
Ethernet ports and MSFC3 PFC3C XL
WS-F6K-PFC3CXL=
Cisco Catalyst 6500 Series Supervisor Engine 720 PFC-3CXL
X2-10GB-LR
10GBASE-IR X2 Module
X2-10GB-SR
10GBASE-SR X2 Module
X2-10GB-ER
10GBASE-ER X2 Module
pt1 Drt
Ali contents are Copyright C) 1992-2007 Cisco Systems, Inc. All rights reserved. This document is Cisco Confidential—NDA Use Only.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 6 of 7
•
Data Sheet
Pari Number
Product Description
X2-10GB-LX4
10GBASE-LX4 X2 Module
X2-10GB-CX4
10GBASE-CX4 X2 Module
GLC-T
1000BASE-T SFP
GLC-BX-D
1000BASE-BX SFP 1490NM
GLC-BX-U
1000BASE-BX SFP 1310NM
1
GLC-LH-SM
Gigabit Ethernet SFP, LC connector, LX/LH transceiver
I
GLC-SX-MM
Gigabit Ethernet SFP, LC connector, SX transceiver
GLC-ZX-SM
1000BASE-ZX SFP
MEM-C6K-CPTFL1G
1 GB of Cisco Catalyst 6500 Series Supervisor Engine 720/Supervisor Engine 32
compact flash memory
MEM-C6K-CPTFL512M
512 MB of Cisco Catalyst 6500 Series Supervisor Engine 720/Supervisor Engine 32
compact flash memory
MEM-C6K-CPTFL256M
256 MB of Cisco Catalyst 6500 Series Supervisor Engine 720/Supervisor Engine 32
compact flash memory
Service and Support
Cisco offers a wide range of services programs to accelerate customer success. These innovative
services programs are delivered through a unique combination of people, processes, tools, and
partners, resulting in high leveis of customer satisfaction. Cisco services help you to protect your
network investment, optimize network operations, and prepare the network for new applications
to extend network intelligence and the power of your business. For more information about Cisco
Services, see Cisco Technical Support Services or Cisco Advanced Services.
For More Information
For more information about the Cisco Catalyst 6500 Series, visit
http://www.cisco.com/en/US/products/hw/switches/ps708/index.html.
CISCO..
Americas Headquarters
CiSCDSyslems in:-..
170 Wes. Tosm a n Drive
San ,loca- CA 95134.1706
LISA
Asia Pacific Headquarters
Cisco Systems (USA) Pte. lid.
168 Rabiscou Road
e25-01 Capita! lime:
Si nTlpore 068912
",,,,,,C:SCO.C4M
WWW,CiSCO.C.OM
Tal 403 526, 40(X1
Europe Heaciquarters
Cisco Systems Internatronal 8V
Hearielberwavk
Haarerbergweg I 39
1101 OH AmT.erdrri
TbeNetherands
Tal: 4,65 6317 7777
*66 6..1•7 7759
fd).). 663-N8TS (9387)
Fax; 408 527-0863
WWW - eUtOpe.CiSenCOM
Tal. +31 O 800 620 6791
Fox,.+31 0 20 35? 00
fax;
Cisco has more filen 200 offices worldwide, Addresses, phone numbers and fax numbers are listed on the Cisco Websito ai www.cisco.com/go/offices.
cer;o8n19.;',.nri
te 4,Cai kUysd, C( 3f
Humun Nouund... uro tradoduar o! Cisa)
CSNA. CCM> C.Y.;S.P.
Frit~sef!,.:olyef. Etherelunnel. Erthful ,s1.U., HM r Svdt.nh.
;Sie, ropislmnd RdenyuM; cl C
Ali olhar
Fetl.^,,vMie Srowsinu, FueW.rihure, Sigurmye,
SyGrUf nu. frio
ducumuni
,
:•,
andAccuu., fteud:11,11 A9udet
.5;y01orrts C:a Otryi fira C;i:ux. Srs.:udu: buo. Casco tlaiity.
fnternet Ouetient K/S,
P/ IV, e0 Expurrise. the 4)
kn.8_,01,,i,?. Reudness St..ovecutd. i!:uicY.
A,odemy.Ndtwod,RogNtruE. P11í, Pd.d.:',uunne.I.SeddrShmu. f. ,,NIARInelSlockWre,o. Trio f ,),,,!e24 ,,Q.ky Y)c..io-rux, Your Inturnut ,:uutY.r111 050 fi
,nd uur
MGX.
Sludy.1...9h,Stfouín.
iru,:ellançynd lho +Nay We Work, Ove, Ray, and I.uum is a um vice curtir si Cise,: Sysleuly..
tio, Cisco Geftifiud.
•,
y al tirar ruuouctryu 6udy,:u3.
use rol ti,r WOrti
d(MS
iiApiy o par tuenhip ruwii
r
ry onAl
`. li
C78-423328-02 01/08
Printed in USA
Ali contents are Copyright O 1992-2007 Cisco Systems, Inc. All rights reserved. This document is Cisco Confidential—NDA Use Only.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 7 of 7
III III
, CISCO
Data Sheet
Cisco Catalyst 3750-X and 3560-X Series Switches
The Cisco Catalyst 3750-X and 3560-X Series Switches are an enterprise-class
lines of stackable and standalone switches, respectively. These switches provide high
availability. scalability, security, energy efficiency. and ease of operation with
innovative features such as Cisco StackPower (available only on the Catalyst
3750-X), IEEE 802.3at Power over Ethernet Plus (PoE+) configurations, optional
network modules, redundant power supplies, and Media Access Control Security
(MACsec) features. The Cisco Catalyst 3750-X Series with StackWise ® Plus
technology provides scalability, ease of management and investment protection for
the evolving business needs. The Cisco Catalyst 3750-X and 3560-X enhance
productivity by enabling applications such as IP telephony, wireless, and video for
borderless network experience.
Cisco Catalyst 3750-X and 3560-X Series primary features:
• 24 and 48 10/100/1000 PoE+, non-PoE models, and 12 and 24 GE SFP port models
• Four optional uplink network modules with GE or 1 OGE ports
• Industry first PoE+ with 30W power on all ports in 1 rack unit (RU) form factor
• Dual redundant, modular power supplies and fans
• Media Access Control Security (MACsec) hardware-based encryption
• Flexible NetFlow and switch-to-switch hardware encryption with the Service Module
• Open Shortest Path First (OSPF) for routed access in IP Base image
• IPv4 and IPv6 routing, Multicast routing, advanced quality of service (QoS), and security features in
hardware
• Enhanced limited lifetime warranty (LLW) with next business day (NBD) advance hardware replacement
and 90 day access to Cisco Technical Assistance Center (TAC) support
• EnhanCed Cisco EnergyWisé for operational cost optimizatiori by measuring actual power consumption of
the PoE devices, reporting, and reducing energy consumption across the network
• USB Type-A and Type-B ports for storage and console respectively and an out-of-band Ethernet
management port
In addition to the above features, the Cisco Catalyst 3750-X switches also offer:
• Cisco StackPower'" technology: An innovative feature and industry first for sharing power among stack
members
• Cisco StackWise Plus technology for ease of use and resiliency with 64 Gbps of throughput
• Investment protection with backward compatibility with ali other models of Cisco Catalyst 3750 Series
Switches
© 2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 1 of 1
Switch Configurations
Ali switch models can be configured with four optional network modules. The PoE+ and non-PoE switch models
are available with the LAN Base, IP Base and IP Services feature set. The GE SFP switch models are available
with either IP Base or IP Services feature set.
Stackable Switches
Figure 1 shows the Cisco Catalyst 3750-X Series Switches (front and back).
Figure 1.
Cisco Catalyst 3750-X Series Switches (Front and Back)
Table 1 shows the Cisco Catalyst 3750-X Series configurations.
Table 1.
Cisco Catalyst 3750-X Series Configurations
Feature Set
Models
Total 10/100/1000
Ethernet Ports
LAN Base
WS-C3750X-24T-L
24
WS-C3750X-48T-L
48
IP Base
24 PoE+
WS-C3750X-48P-L
48 PoE+
WS-C3750X-48PF-L
48 PoE+
1100W
WS-C3750X-24T-S
24
350W
WS-C3750X-48T-S
48
WS-C3750X-24P-S
24 PoE+
WS-C3750X-48P-S
48 PoE+
48 PoE+
715W
800W
wS C3750x 24S S
24 GE SFP
350W
WS-C3750X-12S-E
12 GE SFP
350W
WS-C3750X-24S-E
24 GE SFP
WS-C3750X-24T-E
24
WS-C3750X-48T-E
48
WS-C3750X-24P-E
24
WS C3750X 48P E
48
WS-C3750X-48PF-E
48
-
-
-
-
Yes
1100W
1350W+
1715W
1100W
Yes in Software
release 15.0(2)SE and
later (Stackpower
cables purchased
separately)
• 800W
435W
112 GE SFP
-
435W
715W
WS-C3750X-12S-S
-
Available PoE Power
350W
WS-C3750X-24P-L
WS-C3750X-48PF-S
IP Services
. Default AC Power
Supply
435W
800W
C, 2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 2 of 35
Standalone Switches
Figure 2 shows Cisco Catalyst 3560-X Series Switches.
Figure 2.
Cisco Catalyst 3560 - X Series Switches
Table 2 shows the Cisco Catalyst 3560 - X Series configurations.
Table 2.
Cisco Catalyst 3560-X Series Configurations
Feature Set
LAN Base
IP Base
IP Services
I Models
Total 10/100/1000
Ethernet Ports
WS-C3560X-24T-L
124
WS-C3560X-48T-L
48
WS-C3560X-24P-L
24 PoE+
WS - C3560X - 48P - L
48 PoE+
WS-C3560X-48PF-L
48 PoE+
WS-C3560X-24T-S
24
WS-C3560X-48T-S
48
WS-C3560X-24P-S
24 PoE+
WS-C3560X-48P-S
48 PoE+
WS - C3560X- 48PF - S
WS-C3560X-24T-E
WS-C3560X-48T-E
48
WS-C3560X-24P-E
24
I WS-C3560X-48P-E
48
WS-C3560X-48PF-E
Default AC Power Supply
Available PoE Power
350W
715W
435W
l'1100W
800W
350W
715W
435W
48 PoE+
1100W
800W
24
350W
48
715W
435W
1100W
800W
Cisco Catalyst 3750-X and 3560-X Series Software
In addition to IP Base and IP Services feature sets, the Cisco Catalyst 3750-X and 3560-X Series come with a
new LAN Base feature set. The three feature sets available with all Cisco Catalyst 3750-X and 3560-X Series
Switches are:
• LAN Base: Enhanced Intelligent Services
• IP Base: Baseline Enterprise Services
• IP Services: Enterprise Services
© 2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 3 of 35
The LAN Base feature set offers enhanced intelligent services that includes comprehensive Layer 2 features, with
up-to 255 VLANs. The IP Base feature set provides baseline enterprise services in addition to all LAN Base
features, with 1K VLANs. IP Base also includes the support for routed access, MACsec, and the new Cisco
Service Module. The IP Services feature set provides full enterprise services that includes advanced Layer 3
features such as Enhanced Interior Gateway Routing Protocol (EIGRP), Open Shortest Path First (OSPF), Border
Gateway Protocol (BGP), Protocol Independent Multicast (PIM), and IPv6 routing such as OSPFv3 and EIGRPv6.
All software feature sets support advanced security, QoS, and management features.
The Cisco Catalyst 3750-X Series Switches with LAN Base feature set can only stack with other Cisco Catalyst
3750-X Series LAN Base switches. A mixed stack of LAN Base switch with IP Base or IP Services features set is
not supported.
Customers can transparently upgrade the software feature set in the Cisco Catalyst 3750-X and 3560-X Series
Switches through Cisco IOS® Software activation. Software activation authorizes and enables the Cisco IOS
Software feature sets. A special file contained in the switch, called a license file, is examined by Cisco IOS
Software when the switch is powered on. Based on the license's type, Cisco IOS Software activates the
appropriate feature set. License types can be changed, or upgraded, to activate a different feature set. For
detailed information about Software Activation, visit http://www.cisco.com/oo/sa.
Cisco StackWise Plus Technology
Cisco StackWise Plus technology is built on the highly successful industry leading StackWise technology, which is
a premium stacking architecture optimized for GbE. StackWise technology was designed to respond to additions,
deletions, and redeployment while maintaining constant performance. The stack behaves as a single switching
unit that is managed by a master switch elected from one of the member switches. The master switch
automatically creates and updates all the switching and optional routing tables. A working stack can accept new
members or delete old ones without service interruption. StackWise creates a highly resilient single unified system
of up to nine switches, providing simplified management using a single IP address, single telnet session, single
command-line interface (CLI), auto-version checking, autoconfiguration, and more. StackWise Plus supports all
the features of StackWise and provides backward compatibility with the existing Cisco Catalyst 3750 Series
Switches while enhancing the throughput of the system up to 64 Gbps. StackWise Plus also enables local
switching in Cisco Catalyst 3750-X Series Switches. Local switching packets coming finto a port in the Cisco
Catalyst 3750-X Series or 3750-E Series Switch destined for another port in the same switch do not have to
traverse through the stack ring, thus increasing the forwarding capacity of the switch. The Cisco Catalyst 3750-X
Series stacks up to nine switches as a single logical unit for a total of 432 Ethernet 10/100/1000 ports with 18
10GbE ports. Individual 10/100/1000 units can be joined in any combination to evolve with network needs.
Cisco StackPower Technology
The Cisco Catalyst 3750-X Series introduces Cisco StackPower technology, innovative power interconnect system
that allows the power supplies in a stack to be shared as a common resource among all the switches. Cisco
StackPower unifies the individual power supplies installed in the switches and creates a pool of power, directing
that power where it is needed. This feature is only available in the Cisco Catalyst 3750-X Series Switches . . Up to
four switches can be configured in a StackPower stack with the special connector at the back of the switch using
the StackPower cable which is different than the StackWise cables. (See Figure 3.)
132012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 4 of 35
Figure 3.
StackPower Connector
StackPower can be deployed in either power sharing mode or redundancy mode. In power sharing mode, the
power of all the power supplies in the stack is aggregated and distributed among the switches in the stack. In
redundant mode, when the total power budget of the stack is calculatod, the wattage of the largest power supply is
not included. That power is held in reserve and used to maintain power to switches and attached devices when
one power supply fails, enabling the network to operate without interruption. Following the failure of one power
supply, the StackPower mode becomes power sharing.
StackPower allows customers to simply add one extra power supply in any switch of the stack and provide either
power redundancy for any of the stack members or simply add more power to the shared pool. StackPower
eliminates the need for an externai redundant power system or installation of dual power supplies in all the stack
members.
Available in LAN Base starting the 15.0(2)SE software release (or later)
For LAN Base, cables need to be purchased separately
Network Module
Figure 4 shows various Network Modules with Four GbE, Two 10GbE SFP+ Interfaces, Two 10GB-T and Service
Module with Two 10GbE SFP+ Interfaces.
Figure 4.
Network Modules with Four GbE, Two 10GbE SFP+ Interfaces, Two 10GB-T and Service Module with Two 10GbE
SFP+ Interfaces
© 2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 5 of 35
The Cisco Catalyst 3750-X Series and 3560-X Series Switches support four optional network modules for uplink
ports. The default switch configuration doesn't include the uplink module; at the time of switch purchase the
customer has the flexibility to choose from the network modules described in Table 3.
Table
3.
Network Module Numbers and Descriptions
=1111111111
C3KX-NM-1G
Product Description
Four GbE port network module
C3KX-NM-10G
Two 10GbE SFP+ ports network module with four physical ports with two SFP+ and two regular SFP ports
C3KX-NM-IOGT
. Two 10GB-T ports network module
C3KX-SM-10G
Service Module with two 10GbE SFP+ ports network module for Netflow and MACsec encryption
The SFP+ interface supports both 10GbE and GbE port, allowing customers to use their investment in GbE SFP
and upgrade to 10GbE Wien business demands change, without having to do a comprehensive upgrade of the
access switch. The four uplink modules are hot swappable. The four network modules can be used in any of the
combinations shown in Table 4.
Table 4.
1 0GbE
Network Module Configuration
Interface Options
NutwOrl(Module
10GbE SÉI34:-Ports
1GbE
GbE SFP
Ports
!4
10GbE Network Module
2
O
4
1
: 10GB-T
2
2 (RJ-45)
Service Module
2
o
1
2
Service Module
The new Cisco Service Module offers enhanced security and Flexible Netflow (FNF) features on the uplink ports of
the Catalyst 3750-X and 3560-X. The service module is supported with IP Base or IP Services feature set. It can
be used with SFP or SFP+ at 1G or 10G speeds. The new Cisco Service Module has custom dedicated hardware
for FNF monitoring, separate from the dedicated hardware for MACSec. Therefore there is no impact on packet
forwarding performance & latency. It offers flexibility with the user being able to define flows. The new Cisco
Service Module enables the following services:
• Line rate (40G) Flexible NetFlow for Network Monitoring and Security Anomaly Detection
o Supported version 9
• 32,000 simultaneous flows
• 128 of simultanéous active monitors
• Line rate (40G) MACsec encryption (please refer to MACsec section below)
2012 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 6 of 35
FNF is a networking monitoring technology. A NetFlow table can be used to collect flow statistics. The flow
information can be used by customers for a variety of use cases like understanding:
1.
Applications running on the network, and identify undesired applications, P2P etc.
2.
Granular Local and aggregated Campus view (Top N applications, drill down etc.).
3.
Top talkers (ports, users, applications) for application usage, productivity and asset utilization etc.
4.
Security Anomaly Detection by examining flows that do not traverse trust boundaries for inside the perimeter
attacks.
5.
Impacts of network and application changes.
6.
Compliance conformation.
7.
Traffic patterns for capacity planning.
Enabling FNF at the access switch ensures you get all flows. The access switch is the most logical place in the
network for collecting statistics and monitoring all flows. With Netflow,:you can obtain MAC-address and access
port information associated with the flow, to get directly to the source of the flow. Most collectors are able to
leverage the location based on MAC-address and interface port number provided by the access switch to the
collector. Thus by enabling FNF at the access switch you are able to get the location information of the flow.
The access switch has a variety of identity mechanism for user authentication and adding user awareness is the
natural progression that can be developed. Access switches are an order of magnitude greater than distribution
and core which makes them scale well for FNF and ensure there are no performance impacts of oversubscription
at aggregation and core.
1 OGB-T Module
The new Cisco 10G Base-T module is hot-swapable and can operate at either 1 OGE or GE speed (with manual
configuration).
Table 5 shows the cable types and supported lengths of the new Cisco 10G Base-T module.
Table 5.
10GB-T Cable Types and Supported Lengths
Ca leType
Sup orted Length
Category 7a
100 meters
Category 7
100 meters
Category 6
55 meters
Category 6a.
100 meters
Category 6a requires 3db Insertion Loss margin at 250MHz.
MACsec
The Cisco Catalyst 3750-X and 3560-X Series Switches offer exceptional security with integrated hardware
support for MACsec defined in IEEE 802.1AE. MACsec provides MAC layer encryption over wired networks using
out-of-band methods for encryption keying. The MACsec Key Agreement (MKA) protocol provides the required
session keys and manages the keys required for encryption when co'nfigured. MKA and MACsec are implemented
following successful authentication using 802.1x Extensible Authentidation Protocol (EAP) framework. In Cisco
Catalyst 3750-X and 3560-X Series Switches both the user/down-link ports (links between the switch and endpoint
devices such as a PC or IP phone) and, using the service module, the network/up-link ports can be secured using
©2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 7 of 35
X1r11,51Waner"--
1
MACsec. With the service module you can encrypt switch to switch links such as access to distribution, or encrypt
dark fiber links within a building or between buildings.
Dual Redundant Modular Power Supplies
The Cisco Catalyst 3750-X Series and 3560-X Series Switches support dual redundant power supplies. The switch
ships with one power supply by default, and the second power supply can be purchased at the time of ordering the
switch or at a later time. If only one power supply is installed, it should always be in the power supply bay 1.
(See Figure 5).
Figure 5.
Dual Redundant Power Supplies
Table 6 shows the different power supplies available in these switches and available PoE power.
Table 6.
Power Supply Models
ult Power Supply
24 Port Data Switch
C3KX-PWR-350WAC
48 Port Data Switch
24 Port PoE Switch
C3KX-PVVÉ1-715WAC
435W
C3KX-PWR-1100WAC
800W
48 Port PoE Switch
48 Port Fult PoE Switch
In addition to the above power supplies a 440W DC power supply is available as a spare (should be ordered
separately) on all switch models. The DC power supply also delivers PoE capabilities for maximum flexibility,
(please refer to table 7 for available PoE for different configurations) and customers can mix and match the AC
and DC power supplies in the two available power supply slots. Any of these power supplies can be installed in
any of the switches.
Table 7.
Available PoE with DC Power Supply
Total Available PoE Budget
220W
2
48-Port PoE Switch
660W
185W
2
625W
© 2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 8 of 35
Power over Ethernet Plus (PoE+)
In addition to PoE 802.3af, the Cisco Catalyst 3750-X and 3560-X Series Switches support PoE+ (IEEE 802.3at
standard), which provides up to 30W of power per port. The Cisco Catalyst 3750-X and 3560-X Series Switches
can provide a lower total cost of ownership for deployments that incorporate Cisco IP phones, Cisco Aironet e
IEEE 802.3af-compliant end device. PoE removes the need for wall
wirelsLAN(W)acepoints,ry
power to each PoE-enabled device and eliminates the cost for additional electrical cabling and circuits that would
otherwise be necessary in IP phone and WLAN deployments. Table 8 shows the power supply combinations
required for different PoE needs.
Table 8.
Power Supply Requirements for PoE and PoE+
24 Port PoE Switch
PoE (15.4W per port)
I One C3KX-PWR-715WAC
48 Port PoE Switch
One C3KX-PWR-1100WAC
or
Two C3KX-PWR-715WAC
PoE+ (30W per port)
One C3KX-PWR-1100WAC
Two C3KX-PWR-1100WAC
or
or
Two C3KX-PWR-715WAC
One C3KX-PWR-1100WAC and One
C3KX-PWR-715WAC
.
„ .
eXpandable Power System (XPS) 2200
The XPS 2200 is the next-generation redundant power system (RPS). It not only provides the functionalities
offered by the RPS but also provides enhanced services with the support for Cisco StackPower technology. When
used with the Cisco Catalyst 3560-X, it provides RPS functionality, but when used with the Cisco Catalyst 3750-X,
it provides StackPower functionality to all the stack members, including power supply redundancy.
The XPS supports dual redundant power supplies and fans. Up to nine switches can be connected to the XPS
2200, and it can provide power backup to two of the failed switches concurrently (when appropriately sized power
supplies are used). The power supplies used by the XPS 2200 are the same as the ones supported in the Cisco
Catalyst 3750-X and 3560-X Series Switches. The XPS 2200 is fully configurable for setting switch priorities in
case of multiple failures.
Please refer to the XPS 2200 Performance Specifications section at the end of this document.
Figure 6.
The XPS 2200
Cisco Catalyst 3750-X and 3560-X Series Switches Enable Cisco Borderless Network
Experience
Borderless Networks, a Cisco architecture, deliver the new workspace experience, connecting anyone, anywhere,
using any device, to any resource securely, reliably, and transparently. Cisco's Borderless Networks architecture
addresses primary IT and business challenges to help create a truly borderless experience by bringing
interactions closer to the employee and customer.
© 2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 9 of 35
Borderless experience is only possible with intelligent network elements designed and architected to meet the
needs of a global workspace. Cisco Network Access is a primary component of this architecture, enabling various
borderless network services such as mobility, security, MediaNet, EnergyWise, and ease of operations for
increased productivity and operational efficiency. When network access is intelligent, it knows the identity of the
user, as well as where the user is on the network. It knows what is connecting to the network, to automatically
provision the network for QoS and delivery. It becomes services-aware to optimize user experience. Only with
intelligent access network, your enterprise can go borderless securely and transparently. Your business can save
energy, simplify operations with better business efficiency, and have an optimized total cost of ownership.
Cisco Network Access for Borderless solution focuses on the following primary areas:
• Sustainability
• Ease of operations
• Borderless security
• Borderless experience
Sustainability
Cisco Catalyst switching solutions enable greener practices through measurable power efficiency, integrated
services, and continuous innovations such as Cisco EnergyWise, an enterprisewide solution that monitors and
conserves energy with customized policies. Together, Cisco EnergyWise technology and Cisco Catalyst switches
reduce greenhouse gas (GhG) emissions and increase energy cosi savings and sustainable business behavior.
Sustainability features in the Cisco Catalyst 3750-X and 3560-X Series Switches include the following features
seis:
• Cisco EnergyWise technology
• Efficient switch operation
• Intelligent power management
Cisco EnergyWise Technology
Cisco EnergyWise is an innovative architecture, added to fixed configuration switches, promoting companywide
sustainability by reducing energy consumption across an entire corporate infrastructure and affecting more than
50 percent of global greenhouse gas emissions created by worldwide building infrastructure, a much greater effect
than the 2 percent generated by the IT industry. Cisco EnergyWise enables companies to measure the power
consumption of network infrastructure and network-attached devices and manage power consumption with
specific policies, reducing power consumption to realize increased cost savings, potentially affecting any powered
device.
EnergyWise encompasses a highly intelligent network-based approach to communicate messages that measure
and control energy between network devices and endpoints. The network discovers Cisco EnergyWise
manageable devices, monitors their power consumption, and takes action based on business rules to reduce
power consumption. EnergyWise uses a unique domain-naming system to query and summarize information from
large seis of devices, making it simpler than traditional network management capabilities. Cisco EnergyWise's
management interfaces allow facilities and network management applications to communicate with endpoints and
each other using the network as a unifying fabric. The management interface uses standard SNMP or TCP to
integrate Cisco and third-party management systems.
2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 10 of 35
Efficient Switch Operation
Cisco Catalyst 3750-X and 3560-X Series Switches, designed and engineered by Cisco, provide optimum power
saving, low power operations for industry best-in-class power management, and power consumption capabilities.
The Cisco Catalyst 3750-X and 3560-X ports are capable of reduced power modes so that ports not in use can
move into a lower power utilization state.
StackPower lets customers to simply add one extra power supply in any switch of the stack and provide either
power redundancy for any of the stack members or simply add more power to the shared pool.
Intelligent Power over Ethernet Management
The Cisco Catalyst 3750-X and 3560-X Series PoE models support Cisco IP phones and Cisco Aironet WLAN
access points providing up to 30W of power per port, as well as any IEEE 802.3af-compliant end device.
• Cisco Discovery Protocol Version 2 allows the Cisco Catalyst 3750-X and 3560-X Series Switches to
negotiate a more granular power setting when connecting to a Cisco powered device such as IP phones or
access points than what is provided by IEEE classification.
• Per port power consumption command allows customers to specify maximum power setting on an
individual port.
• Per port PoE power sensing measures actual power being drawn, enabling more intelligent control of
powered devices.
• The PoE MIB provides proactive visibility into power usage and allows customers to set different powerlevei thresholds.
Ease of Operations
The Cisco Catalyst 3750-X and 3560-X help reduce the operating costs through:
• Cisco Catalyst Smart Operations
• Easy to use deployment and control features
• Advanced, intelligent network management tools
Cisco Catalyst Smart Operations
Cisco Catalyst Smart Operations is a comprehensive set of capabilities that simplify LAN deployment,
configuration, and troubleshooting. In addition to adaptive, always ontechnologies such as StackWise and
StackPower, Cisco Catalyst Smart Operations enable zero touch installation and replacement of switches, fast
upgrade, as well as ease of troubleshooting with reduced operational cost. Cisco Catalyst Smart Operations is a
set of features that includes Smart Instai', auto Smartports, Smart Configuration. and Smart Troubleshooting to
enhance operational excellence:
• Cisco Smart Install is a transparent plug and play technology to configure the Cisco IOS Software image
and switch configuration without user intervention. Smart Insta utilizes dynamic IP address allocation and
the assistance of other switches to facilitate installation providing transparent network plug and play.
• Cisco Auto Smartports provide automatic configuration as devices connect to the switch port, allowing
auto detection and plug and play of the device onto the network.
• Cisco Smart Configuration provides a single point of management for a group of switches and in addition
adds the ability to archive and backup configuration files to a file server or switch allowing seamless zero
touch switch replacement.
© 2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 11 of 35
• Cisco Smart Troubleshooting is an extensive array of debug diagnostic commands and system health
checks within the switch, including Generic Online Diagnostics (GOLD) and Onboard Failure Logging
(OBFL).
Easy to Use Deployment and Control Features
• Embedded Event Manager (EEM) is a powerful and flexible feature that provides real-time network event
detection and onboard automation. Using EEM, customers can adapt the behavior of their network devices
to align with their business needs. This feature requires IP Base feature set.
• IP service-level agreements (SLAs) enable customers to assure new business-critical IP applications, as
well as IP services that utilize data, voice, and video, in an IP network. This feature requires IP Services
feature set.
• Dynamic Host Configuration Protocol (DHCP) autoconfiguration of multiple switches through a boot
server eases switch deployment.
• Automatic QoS (AutoQoS) simplifies QoS configuration in voice over IP (VolP) networks by issuing
interface and global switch commands to detect Cisco IP phones, classify traffic, and help enable egress
queue configuration.
• Stacking master configuration management and Cisco StackWise technology helps ensure that all
switches are automatically upgraded when the master switch receives a new software version. Automatic
software version checking and updating help ensure that all stack members have the same software
version.
• Autonegotiation on all ports automatically selects half- or full-duplex transmission mode to optimize
bandwidth.
• Dynamic Trunking Protocol (DTP) facilitates dynamic trunk configuration across all switch ports.
• Port Aggregation•Protocol (PAgP) automates the creation of Cisco Fast EtherChannel ® groups or Gigabit
EtherChannel groups to link to another switch, router, or server.
• Link Aggregation Control Protocol (LACP) allows the creation of Ethernet channeling with devices that
conform to IEEE 802.3ad. This feature is similar to Cisco EtherChannel technology and PAgP.
• Automatic media-dependent interface crossover (MDIX) automatically adjusts transmit and receive
pairs if an incorrect cable type (crossover or straight-through) is installed.
• Unidirectional Link Detection Protocol (UDLD) and Aggressive UDLD allow unidirectional links caused
by incorrect fiber-optic wiring or port faults to be detected and disabled on fiber-optic interfaces.
• Switching Database Manager (SDM) templates for access, routing, and VLAN deployment allow the
administrator to easily maximize memory allocation to the desired features based on deployment-specific
requirements.
• Local Proxy Address Resolution Protocol (ARP) works in conjunction with Private VLAN Edge to
minimize broadcasts and maximize available bandwidth.
• VLAN1 minimization allows VLAN1 to be disabled on any individual VLAN trunk.
• Smart Multicast, with Cisco StackWise Plus technology, allows the Cisco Catalyst 3750-X Series to
offer greater efficiency and support for more multicast data streams such as video by putting each data
packet onto the backplane only once.
© 2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 12 of 35
• Internet Group Management Protocol (IGMP) Snooping for IPv4 and IPv6 MLD vl and v2 Snooping
provide fast client joins and leaves of multicast streams and limit bandwidth-intensive video traffic to only
the requestors.
• Multicast VLAN Registration (MVR) continuously sends multicast streams in a multicast VLAN while
isolating the streams from subscriber VLANs for bandwidth and security reasons.
• Per-port broadcast, multicast, and unicast storm control prevents faulty end stations from degrading
overall systems performance.
• Voice VLAN simplifies telephony installations by keeping voice traffic on a separate VLAN for easier
administration and troubleshooting.
• Cisco VLAN Trunking Protocol (VTP) supports dynamic VLANs and dynamic trunk configuration across
all switches.
• Remote Switch Port Analyzer (RSPAN) allows administrators to remotely monitor ports in a Layer 2
switch network from any other switch in the same network.
• For enhanced traffic management, monitoring, and analysis, the Embedded Remote Monitoring (RMON)
software agent supports four RMON groups (history, statistics, alarms, and events).
• Layer 2 traceroute eases troubleshooting by identifying the physical path that a packet takes from source
to destination.
• Trivial File Transfer Protocol (TFTP) reduces the cosi of administering software upgrades by
downloading from a centralized location.
• Network Timing Protocol (NTP) provides an accurate and consistent timestamp to all intranet switches.
Advanced, Intelligent Network Management Tools
The Cisco Catalyst 3750-X and 3560-X Series Switches offer both a superior CLI for detailed configuration and
Cisco Network Assistant software, a PC-based tool for quick configuration based on preset templates. In addition,
CiscoWorks LAN Management Solution (LMS) supports the Cisco Catalyst 3750-X and 3560-X Series Switches
for networkwide management.
Cisco Network Assistant
A PC-based network management application designed for small and medium-sized business (SMB) networks
with up to 250 users, Cisco Network Assistant offers centralized network management and configuration
capabilities. Cisco Network Assistant uses Cisco Smartports technology to simplify both initial deployment and
ongoing maintenance. This application also features an intuitive GUI where users can easily apply common
services across Cisco switches, routers, and access points, such as:
• Configuration management
• Troubleshooting advice
• Inventory reports
• Event notification
• Network security settings
• Password synchronization
• Drag-and-drop Cisco IOS Software upgrades
• Secure wireless
© 2012 Cisco and/or its affiliates. AH rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 13 of 35
For detailed information about Cisco Network Assistant, visit http://www.cisco.com/go/cna.
CiscoWorks LAN Management Solution
CiscoWorks LAN Management Solution (LMS) is a comprehensive network lifecycle management solution. Ii
provides an extensive library of easy-to-use features to automate the initial and day-to-day management of your
Cisco network infrastructure. CiscoWorks LMS uniquely uses Cisco hardware and software platform knowledge
and operational experience into a powerful sei of work-flow driven configuration, monitoring, troubleshooting,
reporting, and administrative tools. Including:
• Support for new Cisco hardware platforms the day they ship
• Support for new technologies and services from initial deployment to day-to-day administration and
management, such as EnergyWise, Identity, Cisco Auto Smartports, Cisco Smart Install, and much more
• Configuration management tools built from Cisco experience and Cisco Validated Design
recommendations
• Monitoring and troubleshooting capabilities that incorporates Cisco hardware best practices and
diagnostics features
• Automation in managing hardware inventories, security vulnerabilities (PSIRTS) and platform end-of-life
and support cycles
For detailed information about CiscoWorks LMS, go to
http://www.cisco.com/en/US/products/sw/cscowork/ps2425/index.html.
Borderless Security
The Cisco Catalyst 3750-X and 3560-X Series Switches provide superior Layer 2 threat defense capabilities for
mitigating man-in-the-middle attacks (such as MAC, IP, and ARP spoofing). TrustSec, a primary element of
Borderless Security Architecture, helps enterprise customers secure their networks, data and resources with
policy-based access control, identity and role-aware networking, pervasive integrity, and confidentiality. The
borderless security is enabled by the following feature sets in the Cisco Catalyst 3750-X and 3560-X Series
Switches:
• Threat defense
• Cisco TrustSec
• Other advanced security features
Threat Defense
Cisco Integrated Security Features is an industry-leading solution available on Cisco Catalyst Switches that
proactively protects your criticai network infrastructure. Delivering powerful, easy-to-use tools to effectively preveni
the most common and potentially damaging Layer 2 security threats, Cisco Integrated Security Features provides
robust security throughout the network. Cisco Integrated Security Features include Port Security, DHCP Snooping,
Dynamic ARP Inspection, and IP Source guard.
• Port Security secures the access to an access or trunk port based on MAC address. It limits the number of
learned MAC addresses to deny MAC address-flooding.
•
DHCP Snooping prevenis malicious users from spoofing a DHCP server and sending out bogus
addresses. This feature is used by other primary security features to preveni a number of other attacks
such as ARP poisoning.
(t) 2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 14 of 35
1111111111~~~1111~
• Dynamic ARP Inspection (DAI) helps ensure user integrity by preventing malicious users from exploiting
the insecure nature of the ARP protocol.
• IP source guard prevents a malicious user from spoofing or taking over another user's IP address by
creating a binding table between the client's IP and MAC address, port, and VLAN.
Cisco TrustSec
TrustSec secures access to the network, enforces security policies, and delivers standard based security solutions
such as 802.1 X enabling secure collaboration and policy compliance. TrustSec capabilities reflect Cisco thought
leadership, innovations, and commitment to customer success. These new capabilities include:
• IEEE 802.1AE MACsec with prestandard 802.1X-REV Key management: industry's first fixed switches with
prestandard 802.1 X-Rev key management. Available on Cisco Catalyst 3750-X and 3560-X Series
Switches, MACsec provides Layer 2, line rate Ethernet data confidentiality and integrity on host facing
ports, protecting against man-in-the-middle attacks (snooping, tampering, and replay).
• FIPS 140-2 validated for devices used in government and sensitive environments for extremely high levels
of data security.
• Flexible authentication that supports multiple authentication mechanisms including 802.1 X, MAC
Authentication Bypass and web authentication using a single, consistent configuration.
• Open mode that creates a user friendly environment for 802.1 X operations.
• Integration of device profiling technology and guest access handling with Cisco switching to
significantly improve security while reducing deployment and operational challenges.
• RADIUS Change of Authorization and downloadable Calls. for Comprehensive policy management
capabilities.
• 802.1X Supplicant with Network Edge Access Transport (NEAT) enables extended secure access
where compact switches in the conference rooms have the same levei of security as switches inside the
locked wiring closet.
Other Advanced Security Features
Other Advanced Security features include but are not limited to:
• Private VLANs restrict traffic between hosts in a common segment by segregating traffic at Layer 2,
turning a broadcast segment into a nonbroadcast multiaccesslike segment.
• Private VLAN Edge provides security and isolation between switch ports, which helps ensure that users
cannot snoop on other users' traffic.
• Unicast Reverse Path Forwarding (RPF) feature helps mitigate problems caused by the introduction of
malformed or forged (spoofed) IP source addresses into a network by discarding IP packets that lack a
verifiable IP source address.
• Multidomain Authentication allows an IP phone and a PC to authenticate on the same switch port while
placing them on appropriate voice and data VLAN.
• Cisco security VLAN ACLs on ali VLANs preveni unauthorized data flows from being bridged within
VLANs.
• Cisco standard and extended IP security router ACLs define security policies on routed interfaces for
control-plane and data-plane traffic. IPv6 ACLs can be applied to filter IPv6 traffic.
• Port-based ACLs for Layer 2 interfaces allow security policies to be applied on individual switch ports.
© 2012 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 15 of 35
• Secure Shell (SSH) Protocol, Kerberos, and Simple Network Management Protocol Version 3
(SNMPv3) provide network security by encrypting administrator traffic during Telnet and SNMP sessions.
SSH Protocol, Kerberos, and the cryptographic version of SNMPv3 require a special cryptographic
software image because of U.S. export restrictions.
• Bidirectional data support on the Switched Port Analyzer (SPAN) port allows Cisco Intrusion Detection
System (IDS) to ta ke action when an intruder is detected.
• TACACS+ and RADIUS authentication facilitates centralized control of the switch and restricts
unauthorized users from altering the configuration.
• MAC Address Notification allows administrators to be notified of users added to or removed from the
network.
• Multilevel security on console access prevents unauthorized users from altering the switch
configuration.
• Bridge protocol data unit (BPDU) Guard shuts down Spanning Tree PortFast-enabled interfaces when
BPDUs are received to avoid accidental topology loops.
• Spanning Tree Root Guard (STRG) prevents edge devices not in the network administrator's control from
becoming Spanning Tree Protocol root nodes.
• IGMP filtering provides multicast authentication by filtering out nonsubscribers and limits the number of
concurrent multicast streams available per port.
• Dynamic VLAN assignment is supported through implementation of VLAN Membership Policy Server
client capability to provide flexibility in assigning ports to VLANs. Dynamic VLAN facilitates the fast
assignment of IP addresses.
Borderless Experience
Borderless network enables enterprise mobility and business-grade video services. Industry's first unified network
(wired and wireless) location services enable tracking of mobile assets and the users of those assets for both
wired and wireless devices. The true borderless experience is enabled by the following feature sets in the Cisco
Catalyst 3750-X and 3560-X Series Switches:
• High availability
• High-performance IP routing
• Superior QoS
• Location awareness and mobility
High Availability
The Cisco Catalyst 3750-X Series increases availability for stackable switches. Each switch can operate both as
master controller and as forwarding processor. Each switch in the stack can serve as a master, creating a 1:N
availability scheme for network control. In the unlikely event of a single unit failure, all other units continue to
forward traffic and maintain operation.
Other high-availability features include but are not limited to:
• Cross-Stack EtherChannel provides the ability to configure Cisco EtherChannel technology across different
members of the stack for high resiliency.
• Flexlink provides link redundancy with convergence time less than 100 ms.
© 2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 16 of 35
• IEEE 802.1s/w Rapid Spanning Tree Protocol (RSTP) and Multiple Spanning Tree Protocol (MSTP) provide
rapid spanning-tree convergence independent of spanning-tree timers and also offers the benefit of Layer 2
load balancing and distributed processing. Stacked units behave as a single spanning-tree node.
• Per-VLAN Rapid Spanning Tree (PVRST+) allows rapid spanning-tree reconvergence on a per-VLAN
spanning-tree basis, without requiring the implementation of spanning-tree instances.
• Cisco Hot Standby Router Protocol (HSRP) is supported to create redundant, failsafe routing topologies.
• Switch-port autorecovery (Errdisable) automatically attempts to reactivate a link that is disabled because of
a network error.
High-Performance IP Routing
Cisco Express Forwarding hardware routing architecture delivers extremely high-performance IP routing in the
Cisco Catalyst 3750-X and 3560-X Series Switches.
• Static routing (16 routes) with LAN Base feature set.
• IP unicast routing protocols (Static, Routing Information Protocol Version 1 [RIPv1], and RIPv2, RIPng,
EIGRP stub) are supported for small-network routing applications with IP Base feature set.
• Advanced IP unicast routing protocols (OSPF, EIGRP, BGPv4, and IS-ISv4) are supported for load
balancing and constructing scalable LANs. IPv6 routing (OSPFv3, EIGRPv6) is supported in hardware for
maximum performance. OSPF for routed access is included in the IP Base image. The IP Services feature
set is required for full OSPF, EIGRP, BGPv4, and IS-ISv4.
• Equal-cost routing facilitates Layer 3 load balancing and redundancy across the stack.
• Policy-based routing (PBR) allows superior control by facilitating flow redirection regardless of the routing
protocol configured. The IP Services feature set is required.
• Hot Standby Routing Protocol (HSRP) provides dynamic load balancing and failover for routed links, up to
32 HSRP links supported per unit or stack.
• Protocol Independent Multicast (PIM) for IP multicast routing is supported, including PIM sparse mode
(PIM-SM), PIM dense mode (PIM-DM), PIM sparse-dense mode and Source Specific Multicast (SSM).
The IP Services feature set is required.
• Virtual routing and forwarding (VRF)-Lite enables a service provider to support two or more VPNs, with
overlapping IP addresses. IP Services feature set is required.
Superior Quality of Service
The Cisco Catalyst 3750-X and 3560-X Series offers GbE speed with intelligent services that keep everything
flowing smoothly, even at 10 times the normal network speed. Industry-leading mechanisms for marking,
classification, and scheduling deliver superior performance for data, voice, and video traffic, all at wire speed.
Following are some of the QoS features supported in the Cisco Catalyst 3750-X and 3560-X Series Switches:
• Cross-stack QoS allows QoS to be configured across the entire stack (available only on the Catalyst
3750-X).
• 802.1p class of service (CoS) and differentiated services code point (DSCP) field classification are
provided, using marking and reclassification on a per-packet basis by source and destination IP address,
MAC address, or Layer 4 TCP/UDP port number.
©2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 17 of 35
• Cisco control-plane and data-plane QoS ACLs on all ports help ensure proper marking on a per-packet
basis.
• Eight egress queues per port help enable differentiated management of different traffic types across the
stack. Four queues are user configurable and four are reserved for system use.
• Shaped Round Robin (SRR) scheduling helps ensure differential prioritization of packet flows by
intelligently servicing the ingress queues and egress queues.
• Weighted Tail Drop (WTD) provides congestion avoidance at the ingress and egress queues before a
disruption occurs.
• Strict priority queuing helps ensure that the highest-priority packets are serviced ahead of all other traffic.
• The Cisco committed information rate (CIR) function provides bandwidth in increments as low as 8 Kbps.
• Rate limiting is provided based on source and destination IP address, source and destination MAC
address, Layer 4 TCP/UDP information, or any combination of these fields, using QoS ACLs (IP ACLs or
MAC ACLs), class maps, and policy maps.
• Up to 64 aggregate or individual policers are available per Fast Ethernet or GbE port.
Location Awareness and Mobility
In order to provide delivery of a best-in-class network experience to end users, it's criticai for network access to be
location aware. A wide variety of devices can appear on the network, both wired (switches, routers, IP phones,
PCs, access points, controllers, video digital media players, and so on) and wireless (mobile devices, wireless
tags, rogues, and so on). In many industries, locating assets is primarily a manual process and is time consuming
and error prone. The inability to locate assets in real time and to help ensure their availability when and where they
are needed limits reaction time and efficiency.
Location services answer business-critical questions about both mobile assets and the users of those assets
regardless of whether those assets are connecting using wired or wireless, and hence directly improve their
organization's profitability. Network Location Services also improve security and accelerate client troubleshooting
by locating an asset, user, or device on the network.
• Network visibility and control provide centralized visibility finto wired and wireless devices on the network
and their location.
• Location-assisted client troubleshooting enables tracking of wired or wireless clients for quick problem
resolution.
• Asset tracking and improved security provide centralized inventory of wired and wireless devices and asset
management for improved business processes.
• Cisco Mobility Service Engine (MSE) Open API provides an open API (based on Simple Object Access
Protocol [SOAP] and XML protocol) for any business application that needs the location data.
• Location based pclicy allows greater control and visibility. With EnergyWise, power policies can be set up
(to reduce the power or shut down the power from a port) based on the location.
• Cisco Emergency Responder (CER) enhances emergency calling from Cisco Unified CallManager. It helps
assure that Cisco Unified CallManager sends emergency calls to the appropriate Public Safety Answering
Point (PSAP) for the caller's location.
© 2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 18 of 35
Cisco Catalyst 3750-X and 3560-X Series Specifications
Switch Performance
Table 9 shows Cisco Catalyst 3750-X and 3560-X Series Switches performance specifications.
Table 9.
Cisco Catalyst 3750-X and 3560-X Performance Specifications
Performance Numbers for All Switch Models
I 160 Gbps
Switching Fabric
DRAM
256 MB (512 MB for 3750X-12S and 3750X-24S)
Flash
64 MB (128 MB for 3750X-12S and 3750X-24S)
Total VLANs
1005
VLAN IDs
4K
Total Switched Virtual Interfaces (SVIs)
1K
Jumbo Frame
9216 Byte
' 468
Total Routed Ports per 3750-X Stack
Forwarding Rate of the Switch Models (with Two 1OGbE Uplinks)
Forwarding Rate
65.5 mpps
3750X-24T
3750X-24P
101.2 mpps
3750X-48T
3750X-48P
3750X-48PF
3750X-12S
35.7 mpps
3750X-24S
65.5 mpps
3560X-24T
65.5 mpps
3560X-24P
101.2 mpps
3560X-48T
I 3560X-48P
3560X-48PF
Scalability Numbers
MAC, routing, security, and QoS scalability numbers depend on the type template used in the switch. Routing
template is not supported in the LAN Base feature set. Table 10 shows Cisco Catalyst 3750-X and 3560-X Series
Switch scalability numbers.
Table 10.
Cisco Catalyst 3750-X and 3560-X Series Switch Scalability Numbers
Default
Unicast MAC addresses
• 4K
I 6K
Routing
MIM
3K
12K
1K
IGMP groups and multicast routes
1K
1K
1K
Unicast routes
6K
8K
11K
Directly connected hosts
4K
6K
3K
Indirect routes
2K
2K
• 8K
Policy-based routing ACEs
0.5K
QoS classification ACEs
0.5K
0.5K
0.5K
Security ACEs
2K
1K
1K
1K
VLANs
1K
1K
1K
1K
:O
O
0.5K
©2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
0.5K
Page 19 of 35
Dimensions, Weight, Acoustic, MTBF, and Environmental Range Specifications for Cisco
Catalyst 3750-X and 3560-X Series Switches
Table 11 shows dimensions, weight, acoustic, MTBF, and environmental range.
Table 11.
Dimensions, Weight, Acoustic, MTBF, and Environmental Range
Dimensions x W x
Inches
3750X-24T
1.75 x 17.5 x 18.0
El=1111111111111111~
4.45 x 44.5 x 46.0
3750X-24P
3750X-48T
3750X-48P
3750X-48PF
i 1.75 x17.5 x 19.5
4.45 x 44.5 x 49.5
3750X-12S
1.75 x 17.5 x 18.0
1 4.45 x 44.5 x 46.0
3750X-24S
1.75 x 17.5 x 18.0
4.45 x 44.5 x 46.0
3560X-24T
1.75 x 17.5 x 18.0
4.45 x 44.5 x 46.0
1.75 x 17.5 x 19.5
4.45 x 44.5 x 49.5
3560X-24P
3560X-48T
3560X-48P
3560X-48PF
LWeigAr
' I PoUnds
LKillograms
3750X-24T
15.6
7.1
1 3750X-24P
15.8
7.2
3750X-48T
116.3
7.4
3750X-48P
16.5
7.5
3750X-48PF
I 16.7
7.6
3750X-12S
15.0
6.8
3750X-24S
15.4
7.0
3560X-24T
15.4
7.0
3560X-24P
115.7
7.1
3560X-48T
; 16.1
7.3
3560X-48P
t 16.4
7.4
3560X-48PF
116.6
7.5
ean Time Bet.veen Feire (MTBF) Houm
3750X-24T
1189,704
3750X-24P
167,198
3750X-487
1 171,846
3750X-48P
. 139,913
3750X-48PF
139,913
3750X-12S
194,224
3750X-24S
163,707
3560X-247
; 208,218
3560X-24P
181,370
3560X-48T
186,778
3560X-48P
149,594
3560X-48PF
149,594
C3KX-PWR-350WAC
580,710
© 2012 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 20 0135
I C3KX-PWR-715WAC
664,055
C3KX-PWR-1100WAC
392,174
C3KX-PWR-440WDC
469,350
C3KX-NM-1G
5,083,574
C3KX-NM-10G
2,468,553
1
C3KX-NM-10GT
1,411,719
C3KX-SM-10G
396,940
L
EnviOhmental Range
With AC Power Supply
Normal Operating Temperature and Altitudes:
-5°C to +45QC,-up to 5,000 feet (1500 m)
Operating Environment and Altitude
-5°C to +40°C, up to 10,000 feet (3000 m)
Short-Terin • Exceptional Conditions:
-5°C to +50°C, up to 5,000 feet (1500 m)
-5°C to +45°C, up to 10,000 feet (3000 m)
-5°C to +45°C, at sea levei with single fan failure
Not more than following in one year period: 96 consecutive hours, or
360 hours total, or 15 occurrences
With DC Power Supply
Normal Operating Temperature and Altitudes:
-5°C to +45°C, up to 6,000 feet (1800 m)
Operating Environment and Altitude (NEBS)
-5°C to +40°C, up to 10,000 feet (3000 m)
-5°C to +35°C, up to 13,000 feet (4000 m)
Shorl-Term . Exceptional Conditions:
-5°C to +55°C, up to 6,000 feet (1800 m)
-5°C to +50°C, up to 10,000 feet (3000 m)
-5°C to +45°C, up to 10,000 feet (4000 m)
-5°C to +45°C, at sea levet with single fan failure
• Not more than following in one year period: 96 consecutive hours, or
360 hours total, or 15 occurrences
Acoustic Noise
With AC Power Supply (with 16PoE+ ports loaded):
Measured per ISO 7779 & Declared per ISO 9296
LpA: 43 dbA Typical, 46 dbA Maximum
Bystander positions operating to an ambient temperature of 25C
LwA: 5.2 Bel Typical, 5.5 Bel Maximum
For GE SFP port models:
LpA: 31 dbA Typical, 34 dbA Maximum
LwA: 4.2 Bel Typical, 4.5 Bel Maximum
Typical: Noise emission for a typical configuration
Maximum: Statistical maximum to account for variation in production
Relative Humidity
5% to 95%, noncondensing
Storage Environment
Temperature: -40 C' to 70 C'
Vibration
Operating: 0.41Grms from 3 to 500Hz with spectral break points of
0.0005 G2/Hiat. 10Hz and 200Hz 5dB/octave roll off at each end.
Altitude: 15,000 ft
Nonoperating: 1.12Grms from 3 to 500Hz with spectral break points of
0.0065 G2/Hz at 10Hz and 100Hz 5dB/octave roll off at each end.
Operating: 30G, 2ms Half sine
Shock
Nonoperating: 55G, 10ms Trapezoid
Note:
GLC-GE-100FX and GLC-T SFPs are not supported for NEBS short-term operation.
©2012 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 21 of 35
Connectors and LED indicators for Cisco Catalyst 3750-X and 3560X Series
Table 12 shows connectors and LED indicators.
Table 12.
Connectors and LED indicators
Connectors and
Cabling
• 1000BASE-T ports: RJ-45 connectors, 2-pair Cat-5E UTP cabling
• 1000BASE-T SFP-based ports: RJ-45 connectors, 2-pair Cat-5E UTP cabling
• 100BASE-FX, 1000BASE-SX, -LX/LH, -ZX, -BX10, DWDM and CWDM SFP Transceivers: LC fiber connectors
(single-mode or multimode fiber)
• 10GBASE-SR, LR, LRM, CX1 (v02 or higher) SFP+ Transceivers: LC fiber connectors (single-mode or multimode fiber)
• Cisco StackWise stacking ports: copper-based Cisco StackWise cabling
• Cisco StackPower: Cisco Proprietary Power Stacking cables
• Ethernet Management port: RJ-45 connectors, 2-pair Cat-5 UTP cabling
• Management console port: RJ-45-to-DB9 cable for PC connections
Power
Connectors
• Customers can provide power to a switch by using either the internai power supply or the Cisco XPS 2200. The connectors
are located at the back of the switch
• Internai power supply connector: The internai power supply is an autoranging unit. The internai power supply supports input
voltages between 100 and 240VAC. Use the supplied AC power cord to connect the AC power connector to an AC power
outlet
Management and Standards Support for Cisco Catalyst 3750-X and 3560-X Series Switches
Table 13 shows management and standards support for the Cisco Catalyst 3750-X and 3560-X Series.
Table 13. Management and Standards Support for the Cisco Catalyst 3750-X and 3560-X Series
Description
Specification
Management I BRIDGE-MIB
ENTITY-MIB
CISCO-CLUSTER-MIB
ETHERLIKE-MIB
CISCO-CONFIG-MAN-MIB
IF-MIB
CISCO-ENTITY-FRU-CONTROL-MIB
IGMP-MIB
CISCO-ENVMON-MIB
IPMROUTE-MIB
CISCO-FLASH-MIB
OLD-CISCO-CHASSIS-MIB
CISCO-FTP-CLIENT-MIB
OLD-CISCO-FLASH-MIB
CISCO-HSRP-MIB
OLD-CISCO-INTERFACES-MIB
CISCO-HSRP-EXT-MIB
OLD-CISCO-IP-MIB
CISCO-IGMP-FILTER-MIB
OLD-CISCO-SYS-MIB
I CISCO-IMAGE-MIB
OLD-CISCO-TCP-MIB
CISCO-IP-STAT-MIB
OLD-CISCO-TS-MIB
CISCO-12L3-INTERFACE-CONFIG-MIB
OSPF-MIB (RFC 1253)
CISCO-POE-EXTENSIONS-MIB
PIM-MIB
CISCO-MAC-NOTIFICATION-MIB
RFC1213-MIB
I CISCO-MEMORY-POOL-MIB
CISCO-PAGP-MIB
É
CISCO-VTP-MIB
CISCO-CDP-MIB
RFC1253-MIB
RMON-MIB
CISCO-PING-MIB
RMON2-MIB
CISCO-PROCESS-MIB
SNMP-FRAMEWORK-MIB
I CISCO-RTTMON-MIB
SNMP-MPD-MIB
CISCO-STP-EXTENSIONS-MIB
SNMP-NOTIFICATION-MIB
CISCO-SYSLOG-MIB
SNMP-TARGET-MIB
CISCO-TCP-MIB
SNMPv2-MIB
CISCO-VLAN-IFTABLE-RELATIONSHIP-MIB
TCP-MIB
CISCO-VLAN-MEMBERSHIP-MIB
UDP-MIB
© 2012 Cisco and/or its affitiates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 22 of 35
Description
Specification
Standards
IEEE 802.1s
RMON I and II standards
IEEE 802.1w
SNMPv1, SNMPv2c, and SNMPv3
IEEE 802.1x
IEEE 802.1x-Rev
IEEE 802.3ad
IEEE 802.1ae
IEEE 802.3at
IEEE 802.3at
IEEE 802.3x full duplex on 10BASE-T, 100BASE-TX, and
1000BASE-T porta
IEEE 802.1D Spanning Tree Protocol
IEEE 802.1p CoS Prioritization
IEEE 802.10 VLAN
IEEE 802.3 10BASE-T specification
I IEEE 802.3u 100BASE-TX specification
I IEEE 802.3ab 1000BASE-T specification
IEEE 802.3z 1000BASE-X specification
Power Supply Specifications
Table 14 lists the power specifications for the Cisco Catalyst 3750-X and 3560-X Series based on the kind of
power supply used.
Table 14.
Power Specifications for Cisco Catalyst 3750-X and 3560-X Series
Description
L
Specification
'•C3KX-PWR-440WDC
C3KX-PWR-1100WAC
C3KX - PWR - 715WAC
C3KX-PWR-350WAQ,:
Power Supply Rated
Maximum
1100W
715W
350W
440W
Total Output BTU (Note:
1000 BTU/hr = 293W)
3793 BTU/hr, 1100W
2465 BTU/hr, 715W
1207BTU/hr, 350W
1517BTU/hr, 440W
1 Input-Voltage Range and 1115-240VAC,
Frequency
50-60 Hz
100-240VAC,
• 100-240VAC,
50-60 Hz
50-60 Hz
-36VDC to -72VDC
<8A@-72VDC
lnput Current
I 12-6A
10-5A
4-2A
Output Ratings
1 -56V@19.64A
-56V@12.8A
-56V@6.25A
-56V@7.86A
Output Holdup Time
: 10 ms minimum @
I 102.5VAC
, 16.7 ms minimum @
i 100VAC
16.7 ms minimum @
100VAC
> 2ms@-48VDC
Power-Supply lnput
Receptacles
1 IEC 320-C16
I IEC 320-C16
1EC 320-C16 (IEC60320C16)
Power Cord Rating
113A
<16A@-36VDC
Physical Specifications
(IEC60320-C16)
13A
:: 10A
(H x W x D): 1.58 X 3.25 X (H x W x D): 1.58 X 3.25 X ; (H x W x D), 1.58 X 3.25 X
' 11.75 in
, 11.75 in
13.25 in
Weight: 3.5 lb
(1.6 kg)
Operating Temperature
i (IEC60320-C16)
Weight: 2.78 lb
(1.26 kg)
Weight: 2.76 lb
(1.25 kg)
: Terminal Strip
20A @ 100VDC
(H x W x O): 1.58 X 3.25 X
11.75 in
Weight: 2.65 lb
(1.2 kg)
123 to 113f (-5 to 45C)
Storage Temperature
-40 to 158F (-40 to 70°C)
Relative Humidity
Operating, and
Nonoperating
Noncondensing
5 to 90% noncondensing
C) 2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 23 of 35
Description
Altitude
10,000 ft. (3000 meters), up to 45C
MTBF
Calculated MTBF must be greater than 300,000 using Telcordia SR-332, Method 1, Case 3. Demonstrated MTBF is
; 500,000 hr (with 90% confidence levei)
EM! and EMC Compliance FCC Part 15 (CFR 47) Class A
; ICES-003 Class A
I EN 55022 Class A
CISPR 22 Class A
AS/NZS 3548 Class A
BSMI Class A (AC input modets only)
VCCI Class A
EN 55024, EN300386, EN 50082-1, EN 61000-3-2, EN 61000-3-3
EN61000-4-2, EN61000-4-3, EN61000-4-4, EN61000-4-5, EN61000-4-6, EN 61000-6-1
Safety Compliance
UL 60950-1, CAN/CSA-C22.2 No. 60950-1, EN 60950-1, IEC 60950-1, CCC
LED Indicators
"AC OK": Input power to the power supply is 0)<
"PS OK": Output power from the power supply is OK
Power Consumptions of Standalone Cisco Catalyst 3750-X and 3560-X Series Switches
Table 15 shows power consumptions of standalone Cisco Catalyst 3750-X and 3560-X Series Switches based on
Alliance for Telecommunications Industry Solutions (ATIS) testing using IMIX distribution stream traffic, with input
voltage of 115V AC @ 60 Hz and no PoE loading.
Ta ble 15.
Power Consumptions of Standalone Cisco Catalyst 3750-X and 3560-X Series
Modele
Uplink Module
0% Traffic
Traffic
100% Traffic
3750X-24T & 3560X-24T
93.6
92.8
93.5
93.0
3750X-24P & 3560X-24P
99.4
98.7
99.3
98.9
3750X-48T & 3560X-48T
121.3
; 119.7
120.4
120.0
3750X-48P & 3560X-48P
134.9
133.3
133.9
133.6
1136.2
3750X-48PF & 3560X-48PF
137.4
135.8
137.2
3750X-12S
86.1
86.1
87.1
86.4
3750X-24S
107.5
108.9
107.9
3750X-24T & 3560X-24T
95.8
95.4
98.7
3750X-24P & 3560X-24P
101.7
101.5
104.6
101.8
3750X-48T & 3560X-48T
124.2
122.7
126.0
123.3
3750X-48P & 3560X-48P
137.2
136.0
139.3
136.5
3750X-48PF & 3560X-48PF
140.9
139.6
142.9
• 140.1
3750X-12S
87.6
87.9
91.9
3750X-24S
109.7
110.1
; 114.1
; 107.5
© 2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
• 95.8
88.6
110.7
Page 24 of 35
Safety and Compliance
Table 16 lists the safety and compliance information for the Cisco Catalyst 3750-X and 3560-X Series.
Table 16.
Safety and Compliance Information for Cisco Catalyst 3750-X and 3560-X Series
Specific,ation
Description
UL60950-1
Safety Certitications
C-UL to CAN/CSA 22.2 No.60950-1
TUV/GS to EN 60950-1
CB to IEC 60950-1 with all country deviations
AS/NZS 60950-1
CE Marking
NOM (through partners and distributors)
GOST (Russia Safety Mark)
Electromagnetic Emissions
Certifications
FCC Part 15 Class A
EN 55022B Class A (CISPR22 Class A)
VCCI Class A
AS/NZS 3548 Class A or AS/NZS CISPR22 Class A
KCC
CE Marking
GOST (Russian mark - Post FCS through partners)
CCC for PS FRU Redundant
Environmental
Reduction of Hazardous Substances (ROHS) 5
Noise Specifications
Office Product Spec: 48dBA at 30C (reter to ISO 7779)
Telco
CLEI code
Cisco Enhanced Limited Lifetime Hardware Warranty
The Cisco Catalyst 3750-X and 3560-X Series Switches come with an enhanced limited lifetime hardware
warranty (E-LLW) that includes next business day delivery of replacement hardware where available and 90 days
of 8x5 Cisco Technical Assistance Center (TAC) support.
Your formal warranty statement, including the warranty applicable to disco software, appears in the Cisco
information packet that accompanies your Cisco product. We encourage you to review carefully the warranty
statement shipped with your specific product before use.
Cisco reserves the right to refund the purchase price as its exclusive warranty remedy.
For further information on warranty terms, visit http://www.cisco.com/oo/warrantv . Table 17 provides information
about the enhanced limited lifetime hardware warranty.
Table 17.
Enhanced Limited Lifetime Hardware Warranty
Cisco Enhanced Limited Lifetime Hardware Warranty
E
Device Covered
Applies to Cisco Catalyst 3750-X and 3560-X Series Switches.
Warranty Duration
As long as the original end user continues to own or use the product, provided that fan and power supply warranty is
limited to 5 years.
EoL Policy
In the event of discontinuance of product manufacture, Cisco warranty support is limited to 5 years from the
announcement of discontinuance.
Hardware Replacement
Cisco or its service center will use commercially reasonable efforts to ship a replacement for next business day
delivery, where available. Otherwise, a replacement will be shipped within ten (10) working days after receipt of the
RMA request. Actual delivery times might vary depending on customer location.
O 2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 25 of 35
Cisco Enhanced Limited Lifetime Hardware Warranty
Effective Date
I Hardware warranty commences from the date of shipment to customer (and in case of resate by a Cisco reseller, not
more than 90 days after original shipment by Cisco).
TAC Support
Cisco will provide during business hours, 8 hours per day, 5 days per week basic configuration, diagnosis, and
troubleshooting of device-level problems for up to a 90-day period from the date of shipment of the originally purchased
Cisco Catalyst 3750-X or 3560-X product. This support does not include solution or network-level support beyond the
specific device under consideration.
Cisco.com Access
Warranty allows guest access only to Cisco.com .
Software Policy for Cisco Catalyst 3750-X and 3560-X Series Switches
Customers with Cisco Catalyst LAN Base and IP Base software feature sets will be provided with maintenance
updates and bug fixes designed to maintain the compliance of the software with published specifications, release
notes, and industry standards compliance as long as the original end user continues to own or use the product or
up to one year from the end-of-sale date for this product, whichever occurs earlier. Customers with licenses for our
premium software images require a service support contract such as Cisco SMARTnet ® Service to download
updates.
This policy supersedes any previous warranty or software statement and is subject to change without notice.
Cisco and Partner Services for Next-Generation Cisco Catalyst Fixed Switches
Enable the innovative, secure, intelligent edge in the Borderless Network Architecture using personalized services
from Cisco and our partners. Through a discovery process that begins with understanding your business
objectives, we help you integrate the next-generation Cisco Catalyst fixed switches into your architecture and
incorporate network services onto that platform. Sharing knowledge and leading practices, we support your
success every step of the way as you deploy, absorb, manage, and scale new technology. Choose from a flexible
suite of support services designed to meet your business needs and help you maintain high-quality network
performance while controlling operational costs. (See Table 18.)
Table 18.
Technical Services Available for Cisco Catalyst 3750-X and 3560-X Switches
Technical Services
Cisco SMARTnet Service
• Around-the-clock, global access to the Cisco Technical Assistance Center (TAC)
• Unrestricted access to the extensive Cisco.com knowledge base and tools
• Next-business-day, 8x5x4, 24x7x4, and 24x7x2 advance hardware replacement and onsite paris replacement and installation available
• Ongoing operating system software updates within the licensed feature sei
• Proactive diagnostics and real-time alerts on Smart Call Home enabled devices
Cisco Smart Foundation Service
• Next business day advance hardware replacement as available
• Business hours access to SMB TAC (access leveis vary by region)
• Access to Cisco.com SMB knowledge base
• Online technical resources through Smart Foundation Portal
• Operating system software bug fixes and patches
Cisco SP Base Service
• Around-the-clock, global access to the Cisco TAC
• Registered access to Cisco.com
• Next business day, 8x5x4, 24x7x4, and 24x7x2 advance hardware replacement. Return to factory option available 2
• Ongoing operating system software updates'
O 2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 26 of 35
Technical Services
Cisco Focused Technical Support Services
• 3 levels of premium, high-touch services are available:
• Cisco High-Touch Operations Management Service
▪ Cisco High-Touch Technical Support Service
o Cisco High-Touch Engineering Service
• Valid Cisco SMARTnet or SP Base contracts on ali network equipment are required
Notes:
• Cisco operating system updates include the following: maintenance releases, minor updates, and major updates within the licensed feature set.
z.
Advance hardware replacement is available in various service-levei combinations. For example, 8x5xNBD indicates that shipment will be initiated
during the standard 8-hour business day, 5 days a week (the generally accepted business days within the relevant region), with next business day
(NBD) delivery. Where NBD is not available, same day ship is provided. Restrictions apply; for details, review the appropriate service descriptions.
Ordering Information
Table 19 lists ordering information for the Cisco Catalyst 3750-X and 3560-X Series. To place an order, visit the
Cisco Ordering homepage at
http://www.cisco.com/en/USiordering/or13/or8/order customer help how to order listing.html.
Table 19.
Cisco Catalyst 3750-X and 3560-X Series Ordering Information
Product Number
Product Oescription
Cisco Catalyst 3750-X Serles
WS-C3750X-24T-L
Stackable 24 10/100/1000 Ethernet porta, with 350W AC power supply
1 RU, LAN Base feature set (Stackpower cables need to be purchased separately)
WS-C3750X-48T-L
Stackable 48 10/100/1000 Ethernet porta, with 350W AC power supply
1 RU, LAN Base feature set (Stackpower cables need to be purchased separately)
WS-C3750X-24P-L
Stackable 24 10/100/1000 Ethernet PoE+ ports, with 715W AC power supply
1 RU, LAN Base feature set (Stackpower cables need to be purchased separately)
WS-C3750X-48P-L
Stackable 48 10/100/1000 Ethernet PoE+ ports, with 715W AC power supply
1 RU, LAN Base feature set (Stackpower cables need to be purchased separately)
WS-C3750X-48PF-L
Stackable 48 10/100/1000 Ethernet PoE+ ports, with 1100W AC power supply
1 RU, LAN Base feature set (Stackpower cabias need to be purchased separately)
WS-C3750X-24T-S
Stackable 24 10/100/1000 Ethernet ports, with 350W AC power supply
1 RU, IP Base feature set
WS-C3750X-48T-S
Stackable 48 10/100/1000 Ethernet porta, with 350W AC power supply
1 RU, IP Base feature set
WS-C3750X-24P-S
Stackable 24 10/100/1000 Ethernet PoE+ ports, with 715W AC Power Supply
1 RU, IP Base feature set
WS-C3750X-48P-S
Stackable 48 10/100/1000 Ethernet PoE+ ports, with 715W AC Power Supply
1 RU, IP Base feature set
WS-C3750X-48PF-S
Stackable 48 10/100/1000 Ethernet PoE+ ports, with 1100W AC power supply
1 RU, IP Base feature set
WS-C3750X-12S-S
Stackable 12 GE SFP Ethernet ports, with 350W AC power supply
1 RU, IP Base feature set
WS-C3750X-24S-S
Stackable 24 GE SFP Ethernet porte, with 350W AC power supply
1 RU, IP Base feature set
WS-C3750X-12S-E
Stackable 12 GE SFP Ethernet porta, with 350W AC power supply
1 RU, IP Services feature set
WS-C3750X-24S-E
Stackable 24 GE SFP Ethernet porta, with 350W AC power supply
; 1 RU, IP Services feature set
•
WS-C3750X-24T-E
Stackable 24 10/100/1000 Ethernet porta, with 350W AC power supply
1 RU, IP Services feature set
WS-C3750X-48T-E
1 Stackable 48 10/100/1000 Ethernet ports, with 350W AC power supply
1 RU, IP Services feature set
©2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 27 of 35
Product Number
WS-C3750X-24P-E
Product Description
Stackable 24 10/100/1000 Ethernet PoE+ ports, with 715W AC Power Supply
, 1 RU, IP Services feature set
Stackable 48 10/100/1000 Ethernet PoE+ ports, with 715W AC Power Supply
1 RU, IP Services feature set
Stackable 48 10/100/1000 Ethernet PoE+ ports, with 1100W AC Power Supply
I 1 RU, IP Services feature set
WS-C3560X-24T-L
Standalone 24 10/100/1000 Ethernet ports, with 350W AC power supply
1 RU, LAN Base feature set
WS-C3560X-48T-L
Standalone 48 10/100/1000 Ethernet ports, with 350W AC power supply
1 RU, LAN Base feature set
WS-C3560X-24P-L
Standalone 24 10/100/1000 Ethernet PoE+ ports, with 715W AC power supply
1 RU, LAN Base feature set
WS-C3560X-48P-L
Standalone 48 10/100/1000 Ethernet PoE+ ports, with 715W AC power supply
1 RU, LAN Base feature set
WS-C3560X-48P-L
Standalone 48 10/100/1000 Ethernet PoE+ porta, with 715W AC power supply
1 RU, LAN Base feature set
WS-C3560X-48PF-L
Standalone 48 10/100/1000 Ethernet PoE+ ports, with 1100W AC power supply
1 RU, LAN Base feature set
WS-C3560X-24T-S
Standalone 24 10/100/1000 Ethernet porta, with 350W AC power supply
1 RU, IP Base feature set
WS-C3560X-48T-S
Standalone 48 10/100/1000 Ethernet ports, with 350W AC power supply
1 RU, IP Base feature set
WS-C3560X-24P-S
Standalone 24 10/100/1000 Ethernet PoE+ porta, with 715W AC power supply
1 RU, IP Base feature set
WS-C3560X-48P-S
Standalone 48 10/100/1000 Ethernet PoE+ ports, with 715W AC power supply
1 RU, IP Base feature set
WS-C3560X-48PF-S
Standalone 48 10/100/1000 Ethernet PoE+ ports, with 1100W AC power supply
1 RU, IP Base feature set
WS-C3560X-24T-E
Standalone 24 10/100/1000 Ethernet ports, with 350W AC power supply
1 RU, IP Services feature set
WS-C3560X-48T-E
Standalone 48 10/100/1000 Ethernet porta, with 350W AC power supply
1 RU, IP Services feature set
WS-C3560X-24P-E
Standalone 24 10/100/1000 Ethernet PoE+ porta, with 715W AC power supply
1 RU, IP Services feature set
WS-C3560X-48P-E
Standalone 48 10/100/1000 Ethernet PoE+ ports, with 715W AC power supply
1 RU, IP Services feature set
WS-C3560X-48PF-E
Standalone 48 10/100/1000 Ethernet PoE+ porta, with 1100W AC power supply
1 RU, IP Services feature set
Lhletwork..Modules fôr the Cisco Cãiályit 3750=X.and 3560 X Series
C3KX-NM-1 G=
1G network module spare
C3KX-NM-10G=
10G network module spare
C3KX-NM-10GT=
10G-T network module spare
C3KX-NM-BLANK=
Network module blank spare
C3KX-SM-10G=
10G Service Module Spare
Power Sopplies and Fan for the Cla4 Catalyst 2750-X and 3560-X Series
C3KX-PWR-350WAC=
350W AC power supply
C3KX-PWR-715WAC=
I 715W AC power supply
C3KX-PWR-1100WAC=
1100W AC power supply
C3KX-PWR-440WDC=
440W DC power supply
C3KX-PS-BLANK=
Power supply blank spare
C3KX-FAN-23CFM=
Fan module spare
© 2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 28 of 35
Product Number
Product Description
eXpandable Power System (XPS) for the Cisco Catalyst 375Ó-X and 3560-X Series
XPS-2200
eXpandable Power System 2200
CAB-XPS-58CM.
XPS cabie 58 cm spare
CAB-XPS-150CM=
XPS cabia 150 cm spare
XPS-2200-FAN=
XPS 2200 fan module spare
StackWise and StackPower Cables for the Cisco Catalyst 3750-X Series
CAB-STACK-50CM=
Cisco StackWise 50 cm stacking cabie
CAB-STACK-1M=
Cisco StackWise 1 m stacking cabia
CAB-STACK-3M=
. CAB-STACK-50CM-NH=
Cisco StackWise 3 m stacking cabie
I Cisco StackWise 50 cm nonhalogen lead-free stacking cabia
CAB-STACK-1M-NH=
I Cisco StackWise 1 m nonhalogen lead-free stacking cabie
CAB-STACK-3M-NH=
Cisco StackWise 3 m nonhalogen lead-free stacking cabia
CAB-SPWR-30CM=
Cisco Catalyst 3750-X StackPower cabia 30 cm spare
CAB-SPWR-150CM=
' Cisco Catalyst 3750-X StackPower cabie 150 cm spare
Spare POWer.Cortijicr the Cis^coCatalyst 3750-X,and056(Mf Series •
CAB-3KX-AC=
AC Power Cord for Cisco Cataiyst 3K-X (North America)
CAB-3KX-AC-AP=
AC Power Cord for Cisco Catalyst 3K-X (Australia)
CAB-3KX-AC-AR=
AC Power Cord for Cisco Catalyst 3K-X (Argentina)
CAB-3KX-AC-SW=
t AC Power Cord for Cisco Catalyst 3K-X (Switzeriand)
CAB-3KX-AC-UK=
I AC Power Cord for Cisco Catalyst 3K-X (United Kingdom)
CAB-3KX-AC-JP=
t AC Power Cord for Cisco Catalyst 3K-X (Japan)
CAB-3KX-250VAC-JP=
CAB-3KX-AC-EU=
Japan 250V AC Power Cord for Cisco Cataiyst 3K-X (Japan)
i AC Power Cord for Cisco Catalyst 3K-X (Europe)
CAB-3KX-AC-IT=
AC Power Cord for Cisco Catalyst 3K-X (Italy)
CAB-3KX-AC-IN=
i AC Power Cord for Cisco Catalyst 3K-X (India)
I CAB-3KX-AC-CN=
CAB-3KX-AC-DN.
AC Power Cord for Cisco Catalyst 3K-X (China)
AC Power Cord for Cisco Catalyst 3K-X (Denmark)
CAB-3KX-AC-IS=
I AC Power Cord for Cisco Catalyst 3K-X (Israel)
CAB-C15-CBN
i Cabinet Jumper Power Cord, 250 VAC 13A, C14-C15 Connectors
iSpare Accessory and Rack fuleunt Kits for the Cisco Catalyst 3750-X•and 3560-X Series
C3KX-ACC-KIT=
Accessory kit for Cisco Catalyst 3750-X and 3560-X Series
C3KX-RACK-KIT=
Rack mount kit for Cisco Catalyst 3750-X and 3560-X Series
C3KX-4PT-KIT=
Extension rails and brackets for four-point mounting for Cisco Catalyst 3750-X and 3560-X Series
PIPS Accessory Kit for the Cisco Catalyst 3750•X and 3560-X Series=
C3KX-FIPS-KIT
FIPS Opacity Shield for Catalyst 3750-X and 3560-X Series
Not supported for NEBS
DOM = digital optical monitoring
3 . These SFPs will not operate in the SFP+ module slots for the C3KX-NM-10G and C3KX-SM-10G Network Modules
1
2
© 2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 29 of 35
E-r=tuLMIIIIMEn
Optics Compatibility Information
The Cisco Catalyst 3750-X and 3560-X Series support a wide range of optics. Since the list of supported optics is
updated on a regular basis, please consult the tables available here for the latest SFP compatibility information:
http://www.cisco.com/en/US/products/hw/modules/ps5455/products device support tables list.html.
Cisco Catalyst 3750-X and 3560-X Series Product Activation Process
The Cisco Catalyst 3750-X and 3560-X Series product activation process has two steps, described in Table 20.
The first step shows the product activation key, and the second step shows the various upgrade licenses.
Table 20.
Cisco Catalyst 3750-X and 3560-X Series Product Activation Process
Step One: Product Activation Keys
Step Two: Upgrade License
Product Number and Description
Product Number
C3750X-LIC=
3750-X LAN Base to IP Base Upgrade License
(Product activation keys for 3750-X
Series)
C3750X-24-L-S
I C3750X-24 LAN Base to IP Base Paper License
C3750X-48-L-S
C3750X-48 LAN Base to IP Base Paper License
L-C3750X-24-L-S
C3750X-24 LAN Base to IP Base E-License
L-C3750X-48-L-S
C3750X-48 LAN Base to IP Base E-License
Product Description
3750-X IP Base to IP Services Upgrade
C3750X-24-10S-S-E
C3750X-24 IP Base to IP Services factory IOS Upgrade
C3750X-48-10S-S-E
C3750X-48 IP Base to IP Services factory IOS Upgrade
C3750X-24-S-E
C3750X-24 IP Base to IP Services Paper License
C3750X-48-S-E
C3750X-48 IP Base to IP Services Paper License
C3750X-12S-S-E
C3750X-12S IP Base to IP Services Paper License
C3750X-24S-S-E
C3750X-24S IP Base to IP Services Paper License
L-C3750X-24-S-E
C3750X-24 IP Base to IP Services E-License
L-C3750X-48-S-E
C3750X-48 IP Base to IP Services E-License
L-C3750X-12S-S-E
C3750X-12S IP Base to IP Services E-License
L-C3750X-24S-S-E
C3750X-24S IP Base to IP Services E-License
3750-X LAN Base to IP Services Upgrade
C3750X-24-L-E
I C3750X-24 LAN Base to IP Services Paper License
C3750X-48-L-E
C3750X-48 LAN Base to IP Services Paper License
L-C3750X-24-L-E
C3750X-24 LAN Base to IP Services E-License
L-C3750X-48-L-E
C3750X-48 LAN Base to IP Services E-License
C3560X-LIC=
3560-X LAN Base to IP Base Upgrade License
(Product activation keys for 3560-X
Series)
C3560X-24-L-S
C3560X-48-L-S
I C3560X-24 LAN Base to IP Base Paper License
C3560X-48 LAN Base to IP Base Paper License
I L-C3560X-24-L-S
F C3560X-24 LAN Base to IP Base E-License
L-C3560X-48-L-S
C3560X-48 LAN Base to IP Base E-License
3560-X IP Base to IP Services Upgrade
C3560X-24-IOS-S-E
C3560X-24 IP Base to IP Services tactory IOS Upgrade
C3560X-48-10S-S-E
C3560X-48 IP Base to IP Services factory IOS Upgrade
C3560X-24-S-E
C3560X-24 IP Base to IP Services Paper License
C3560X-48-S-E
C3560X-48 IP Base to IP Services Paper License
© 2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 30 of 35
Step One: Product ACtivation Keys
Step Two: Upgrade License
Product Number and Description
Product Number
Product Description
L-C3560X-24-S-E
C3560X-24 IP Base to IP Services E-License
L-C3560X-48-S-E
C3560X-48 IP Base to IP Services E-License
I 3560-X LAN Base to IP Services Upgrade
I C3560X-24-L-E
C3560X-24 LAN Base to IP Services Paper License
C3560X-48-L-E
C3560X-48 LAN Base to IP Services Paper License
L-C3560X-24-L-E
C3560X-24 LAN Base to IP Services E-License
L-C3560X-48-L-E
C3560X-48 LAN Base to IP Services E-License
XPS 2200 Performance Specifications
Table 21 lists the performance specifications for the power supplies.
Please note that the same power supplies used in the 3750-X and 3560-X are all usable in the XPS-2200
(please refer to Table 12)
Table 21.
XPS 2200 Performance Specifications
Performance Numbers for XPS 2200
, Total Power Sharing Capability (Stack Power Mode, 9 Switches and 20 total 1100W power supplies)
22kW
2200W
Maximum Power Back-up Capability (RPS Mode, 2x1100W power supplies in XPS 2200)
Nominal Voltage
56V
Nominal Maximum Current per Port (input or output)
40A
Flash
8MB
Heat Dissipation
Table 22 provides heat dissipation information for the Cisco XPS 2200.
Table 22.
Heat Dissipation
Cisco XPS 2200 Power Supply Configuration
Heat Dissipation
No Load (BTU/hr)
Fuil Load (BTU/hr)
1 x 350WAC
120
480
2 x 350WAC
160
665
1 x 715WAC
155
610
2 x 715WAC
205
920
1 x 1100WAC
155
825
2 x 1100WAC
205
1350
1 x 440WDC
115
645
2 x 440WDC
155
990
© 2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 31 of 35
Physical and Environmental Specifications
Table 23 lists the physical and environmental specifications for XPS-2200.
Table 23.
Physical and Environmental Specifications
Description
Specification
Physical specifications
11-IxWxD:
1.73 x 17.5 x 20.5 in.
(4.4 x 44.5 x 52.1 cm)
Weight:
19.8 lb (9.0 kg)
Total input BTU (1000 BTU/Hr = 290W)
8525 BTU/Hr
Operating temperature
-5 to 45t up to 5000ft elevation, -5 to 40t up to 10000ft elevation
Storage temperature
-40 to 70t
5 to 95% non-condensing
I Relative humidity operating,
non-condensing
Relative humidity non-operating,
non-condensing
5 to 95% non-condensing
Operating altitude
10,000 ft. (3000m)
15,000 ft. (4750 m)
I Storage altitude
Mean Time Between Fallure (MTBF)
222,000 hours
Electromagnetic compatibillty
certifications
FCC Class A for North America: 47 CFR Part 15
VCCI Class A for Japan: V-3/2007.04
CCC EMC for China on Spare Power Supplies: EN61000-3-2 (GB17625.1-1998)
BSMI Class A for Taiwan: CNS13438
KCC (formerly MIC) GB17625.1-1998 Class A for Korea: KN24/KN22
AS/NZS Class A for Australia: CISPR22:2004 or EN55022
Brazil, ANATEL In-Country approval
1
CE Class A for European Union: EN55022, EN300386, EN55024 (CISPR24)
UL 60950-1
Safety certifications
CAN/CSA 22.2 No.60950-1
EN 60950-1CB to IEC 60950-1
GB 4943
Acoustic Specifications
Table 24 lists the acoustic specifications of the Cisco XPS 2200.
The foliowing numbers represent the range of values for Idle, 50% and 100%:
Table 24.
Cisco XPS 2200 Acoustic Specifications
Cisco XPS 2200 Power
Supply Configuration
Sound Power
Sound Pressure
I LpA (Typical)
LpAD (Maximum)
LwA (Typicaf)
LwAD (Maximum)
2 x 1100WAC
43 dB
63 dB
1 5.3 B
7.3 B
2 x 715WAC
42 dB
I 61 dB
5.3 B
166B
2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 32 of 35
Dimensions and Weight Options
Table 25 describes various XPS2200 dimensions and weight options (All have a 1 RU height).
Table 25.
Cisco XPS 2200 Dimensions and Weight Options
XPS2200 Dimensions and
Weight Options
Weight
Dimensions (H x W x D)
Inches
Centimeters
Pounds
Khograms
XPS2200 including 3 fan
FRUs
1.73 x 17.5 x 17.46
4.4 x 44.5 x 44.4
12.8
5.8
With two C3K-PWR' 1100WAC power supplies
1.73 x 17.5 x 20.5
4.4 x 44.5 x 52.1
119.0
8.6
With two C3K-PWR715WAC power supplies
1.73 x 17.5 x 19.0
4.4 x 44.5 x 48.3
18.5
8.4
With two C3K-PWR350WAC power supplies
1.73 x 17.5 x 19.0
; 4.4 x 44.5 x 48.3
; 18.5
8.4
With two C3K-PWR! 440WDC power supplies
1.73 x 17.5 x 19.0
1 4 4 x 44.5 x 48.3
18.4
8.3
Connectors and Cabling
Table 26 describes the connectors and cabling for the XPS2200.
Table 26.
Cisco XPS 2200 Connectors and Cabling
Connectors and Cabling
• Cisco StackPower: Cisco Proprietary Power Stacking cables
• Service port: RJ-45-to-DB9 cable for PC connections
Power Connectors
• Customers can provide power to a XPS-2200 by using either the internai power supply or via one or more 3750X/3560-X Switches. The connectors are located at the back of the switch. (9 StackPower/XPS ports and up to two AC
Power Inlet Connections)
• Infernal power supply connector: The internai power supply is an autoranging unit. The internai power supply supports
input voltages between 100 and 240VAC. Use the supplied AC power cord to connect the AC power connector to an
AC power outlet.
Fans
The Cisco XPS 2200 has 3 field-replaceable fan modules (XPS-2200-FAN).
Table 27 describes the fan module for the XPS2200.
Table 27.
Cisco XPS 2200 Fan Module Dimensions And Weight
.13
.06
• System fan modules offer up to 24 cubic feet per minute (CFM) under full load at ambient temperature of
45C and altitude of 3000 meters
©2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 33 of 35
•
'
Indicators
Table 28 describes the indicator options for the XPS2200.
Table 28.
Cisco XPS 2200 Indicators
RPS Mode- 9 Port
Associated LEDs
• Solid Green when in RPS mode and able to backup this Port
• Blinking Green when actively backing up Port
• Solid Amber indicates backup not available for this Port
• Blinking Amber for any Port faults
SP Mode- 9 Port
Associated LEDs
• Solid Green when in SP mode and there are no issues
• Blinking Green not defined
• Solid Amber indicates that SP port off-line (No Power Output)
• Blinking Amber for any port faults
Combined Functton
(SP and RPS) LEDs
• Blinking Amber on both RPS and SP LEDs indicates cable fault (short, etc.)
• Both RPS and SP ports alternate Green/Amber when selected via push button
• 18 Port LEDs for new features with more comprehensive single look status assessment
System LEDs - Front of
System
• System
Solid Green - Normal operation with no faults
o Blinking Green during boot
o Solid Amber - Temperature faults, cable faults, port faults, power supply faults, fan faults
• Blinking Amber during software updates
Fan
• Use one Fan LED, amber when any one fan falis, green when ali OK
o Each FRU Fan (3) will have an associated Status LED (green=working, amber=failed), but no silkscreen on front
panei
• Temp
• Green - No Problems. Amber - Over Temperature
• FEP (PS1 & PS2)
o Solid Green - Stack Power Mode OK
o Blinking Green - RPS Mode OK
o Solid Amber
-
Stack Power Mode Faulty
Power Supply Specifications
The XPS 2200 uses the same power supplies as the Cisco Catalyst 3750-X and 3560-X Series Switches. Refer to
Table 12 for the power specifications for each type of power supply that is usable in the XPS 2200 as well as the
Cisco Catalyst 3750-X and 3560-X Series Switches.
Cisco XPS2200 Ordering Information
Table 29 shows Cisco XPS2200 ordering information.
Table 29.
Ordering Information
Product Number
Product Description
XPS-2200
eXpandable Power System 2200
CAB-XPS-58CM.
XPS cable 58 cm spare
Cable to connect XPS-2200 StackPower/XPS ports to 3750-X or 3560-X Switch SKUs
CAB-XPS-150CM.
XPS cable 150 cm spare
Cable to connect XPS-2200 StackPower/XPS ports to 3750-X or 3560-X Switch SKUs
XPS-2200-FAN=
XPS 2200 fan module spare
C3KX-RACK-KIT=
Rack mount kit for Cisco Catalyst 3750-X and 3560-X Series
C3KX-ACC-KIT=
Accessory kit for Catalyst 3750-X and 3560-X Series
C3KX-4PT-KIT=
Extension rails and brackets for four-point mounting for Cisco Catalyst 3750-X and 3560-X Series
2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 34 of 35
Já
tillellle
CISCO.
Americas Headquarters
Cisco Systems. Inc.
San Jose, CA
Asia Pacific Headquarters
Cisco Systems (USA) Pte. Ltd.
Singapore
Europe Headquarters
Cisco Systems International By Arnsterdarn,
The Netherlands
Cisco has more than 200 offices worldwide. Addresses, phone numbers, and fax numbers are listed on the Cisco Website at www.cisco.com/go/offices.
and the Cisco logo are trademarks or regístered trademarks of Cisco and/or its affilíates in the U.S. and other countries. To view a list of Cisco trademarks,
Ca goCisco
to this URt..: www.cisco.com/go/trademarks . Third party trademarks mentioned are the property ai their respectiva owners. The use of the word partner does
not imply a partnership relationship between Cisco and any othor company. (1110R)
Printed in USA
C78-584733-07 05/12
©2012 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 35 of 35
o
I
Secure Copy
Finding Feature Information
Secure Co
Last Updated: July 20, 2011
The Secure Copy (SCP) feature provides a secure and authenticated method for copying router
configuration or router image files. SCP relies on Secure Shell (SSH), an application and a protocol that
provide a secure replacement for the Berkeley r-tools.
•
•
•
Finding Feature Information, page 1
Prerequisites for Secure Copy, page 1
information About Secure Copy, page 2
• How to Configure Secure Copy, page 2
• Configuration Examples for Secure Copy, page 4
• Additional References, page 5
• Feature Information for Secure Copy, page 6
• Glossary, page 7
Finding Feature Information
Your software release may not support all the features documented in this module. For the latest feature
information and caveats, see the release notes for your platform and software release. To find information
about the features documented in this module, and to see a list of the releases in which each feature is
supported, see the Feature Information Table at the end of this document.
Use Cisco Feature Navigator to find information about platform support and Cisco software image support.
To access Cisco Feature Navigator, go to www.cisco.corn/go/cfn. An account on Cisco.com is not required.
Prerequisites for Secure Copy
•
Before enabling SCP, you must correctly configure SSH, authentication, and authorization on the
router.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
How Secure Copy Works
■
Information About Secure Copy
•
Because SCP relies on SSH for its secure transport, the router must have an Rivest, Shamir, and
Adelman (RSA) key pair.
Information About Secure Copy
•
How Secure Copy Works, page 2
How Secure Copy Works
The behavior of SCP is similar to that of remote copy (rcp), which comes from the Berkeley r-tools suíte,
except that SCP relies on SSH for security. In addition, SCP requires that authentication, authorization, and
accounting (AAA) authorization be configured so the router can determine whether the user has the correct
privilege levei.
SCP allows a user who has appropriate authorization to copy any file that exists in the Cisco lOS File
System (IFS) to and from a router by using the copy command. An authorized administrator may also
perform this action from a workstation.
Note
Enable SCP option while using pscp.exe with the Cisco TOS software.
How to Configure Secure Copy
•
Configuring Secure Copy, page 2
Configuring Secure Copy
To enable and configure a Cisco router for SCP server-side functionality, perform the following steps.
SUMMARY STEPS
1. enable
2. configure terminal
3. aaa new-model
4. aaa authentication login {default I list-name} methodl[method2...]
5. aaa authorization (network I exec I commands levei I reverse-access I configuration) (default I listname} [methodl [method2...]]
6. username name [privilege levei] {password encryption-type encrypted-password}
7. ip scp server enable
8. show running-config
9. debug ip scp
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
I
Configuring Secure Copy
How to Configure Secure Copy
DETAILED STEPS
Purpose
Command or Action
Enables privileged EXEC mode.
Step 1 enable
•
Enter your password if prompted.
Example:
Router> enable
Enters global configuration mode.
Step 2 configure terminal
Example:
Router# configure terminal
Sets AAA authentication at login.
Step 3 aaa new model
-
Example:
Router(config)# aaa new-model
Step 4 aaa authentication login {default I list-narre)
methodl [method2...]
Enables the AAA access control system.
Example:
Router(config)# aaa authentication login default group
tacacs+
Step5 aaa authorization {network I exec I commands levei I reverse
access I configuration} {default I list narre} [methodl
[methodl... ]]
-
-
Example:
Sets parameters that restrict user access to a network.
Note The exec keyword runs authorization to
determine if the user is allowed to run an
EXEC shell; therefore, you must use it when
you configure SCP.
Router(config)# aaa authorization exec default group
tacacs+
Step 6 username nome [privilege levei] {password enctyption-type
enctypted-password}
Example:
Establishes a username-based authentication system.
Note You may omit this step if a network-based
authentication mechanism--such as TACACS+
or RADIUS--has been configured.
Router(config)# username superuser privilege 2 password
O superpassword
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
kJi
1111
Example SCP Server•Side Configuration Using local Authentication
Configuration Examples for Secure Copy
Command or Action
Purpose
Step 7 ip scp server enable
EnablesSCPserver sidefunctionality.
-
Example:
Routez(conflg)# ip scp server enable
Step8 show running config
-
(Optional) Verifies the SCP server-side functionality.
Example:
Router# show running-config
Step 9 debug ip scp
(Optional) Troubleshoots SCP authentication
problems.
Example:
Router# debug ip scp
Configuration Examples for Secure Copy
•
•
Example SCP Server-Side Configuration Using Local Authentication, page 4
Example SCP Server-Side Configuration Using Network-Based Authe.nfication, page 4
Example SCP Server-Side Configuration Using Local Authentication
The following example shows how to configure the server-side functionality of SCP. This example uses a
locally defined username and password.
! AAA authentication and authorization must be configured properly for SCP to work.
aaa new-model
aaa authentication login default local
aaa authorization exec default local
username userl privilege 15 password O lab
! SSH must be configured and functioning properly.
ip ssh time-out 120
ip ssh authentication-retries 3
ip scp server enable
Example SCP Server-Side Configuration Using Network-Based
Authentication
The following example shows how to configure the server-side functionality of SCP using a network-based
authentication mechanism:
! AAA authentication and authorization must be configured properly for SCP to work.
aaa new-model
aaa authentication login default group tacacs+
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
I
Example SCP Server-Side Configuration Using Network-Based Authentication
Additional References
aaa authorization exec default group tacacs+
! SSH must be configured ánd functioning propérly.
ip ssh time-out 120
ip ssh authentication-retries 3
ip scp server enable
Additional References
Related Documents
Related Topic
Document Title
Cisco IOS commands
Cisco IOS Master Cornmands List. All Releases
Secure Shell Version 1 and 2 support
• Configuring Secure Shell module
• Secure Shell Version 2 Support module
Authentication and authorization commands
Cisco IOS Security Command Reference
Configuring authentication and authorization
Authentication, Authorization, and Accounting
(AAA) section of Cisco /OS' Security Configuration
Guide: Securing User Services , Release 15.0
Standards
Standards
Title
None
MIBs
MIBs
MIBs Link
None
To locate and download MIBs for selected
platforms, Cisco software releases, and feature seis,
use Cisco MIB Locator found at the following
URL:
http://www.cisco.com/go/rnibs
RFCs
RFCs
Title
None
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
■
Example SCP Server-Side Configuration Using Network-Based Authentication
Feature Information for Secure Copy
Technical Assistance
Description
Link
The Cisco Support and Documentation website
provides online resources to download
documentation, software, and tools. Use these
resources to instai] and configure the software and
to troubleshoot and resolve technical issues with
Cisco products and technologies. Access to most
tools on the Cisco Support and Documentation
website requires a Cisco.com user ID and
password.
http://www.cisco.com/eisco/web/support/
index.html
Feature Information for Secure Copy
The following table provides release information about the feature or features described in this module.
This table lists only the software release that introduced support for a given feature in a given software
release train. Unless noted otherwise, subsequent releases of that software release train also support that
feature.
Use Cisco Feature Navigator to find information about platform support and Cisco software image support.
To access Cisco Feature Navigator, go to www.cisco.com/go/cfn . An account on Cisco.com is not required.
Table 1
Feature Information for Secure Copy
Feature Name
Releases
Feature Information
Secure Copy
12.2(2)T 12.0(21)S 12.2(25)S
The Secure Copy (SCP) feature
provides a secure and
authenticated method for copying
router configuration or router
image files. SCP relies on Secure
Shell (SSH), an application and a
protocol that provide a secure
replacement for the Berkeley rtools.
This feature was introduced in
Cisco IOS Release 12.2(2)T.
This feature was integrated into
Cisco IOS Release 12.0(21)S.
This feature was integrated into
Cisco IOS Release 12.2(25)S.
The following commands were
introduced or modified: debug ip
scp, ip scp server enable.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
1
Example SCP Server-Side Configuration Using Network-Based Authentication
Glossary
Glossary
AAA --authentication, authorization, and accounting. Framework of security services that provide the
method for identifying users (authentication), for remote access control (authorization), and for collecting
and sending security server information used for billing, auditing, and reporting (accounting).
rcp --remote copy. Relying on Remote Shell (Berkeley r-tools suite) for security, rcp copies files, such as
router images and startup configurations, to and from routers.
SCP --secure copy. Relying on SSH for security, SCP support allows the secure and authenticated copying
of anything that exists in the Cisco IOS File System. SCP is derived from rcp.
SSH --Secure Shell. Application and a protocol that provide a secure replacement for the Berkeley r-tools.
The protocol secures the sessions using standard cryptographic mechanisms, and the application can be
used similarly to the Berkeley rexec and rsh tools. SSH Version 1 is implemented in the Cisco IOS
software.
Cisco and the Cisco Logo are trademarks of Cisco Systems, Inc. and/or its affiliates in the U.S. and other
countries. A listing of Cisco's trademarks can be found at www.cisco.com/f/o/trademarks . Third party
trademarks mentioned are the property of their respective owners. The use of the word partner does not
imply a partnership relationship between Cisco and any other company. (1005R)
Any Internet Protocol (IP) addresses and phone numbers used in this document are not intended to be
actual addresses and phone numbers. Any examples, command display output, network topology diagrams,
and other figures included in the document are shown for illustrative purposes only. Any use of actual IP
addresses or phone numbers in illustrative content is unintentional and coincidental.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
i• •
Data Sheet
Cisco Catalyst 6500 Series and Cisco 7600 Series Network Analysis
Module 4.2
Today's enterprises heavily rely on applications for communication, collaboration, and effective day-to-day
operations. At the same time, IT is being challenged to manage application delivery in a rapidly changing
environment. The number of business applications is increasing, application architectures are becoming
more complex, application traffic is proliferating, and traffic patterns are more and more difficult to predict.
In addition, driven by security, regulatory, and economic considerations, enterprises are embracing data
center consolidation, desktop virtualization, and network and application convergence to increase the
value of their IT investments. To meet this confluence of new business demands, comprehensive
application and network visibility is no longer simply nice to have. This visibility is now essential to achieve
increased operational efficiency and successfully manage the overall end-user experience.
The Cisco Catalyst(9 6500 Series and Cisco 7600 Series Network Analysis Module (NAM) is a powerful network-
aware performance monitoring and troubleshooting solution that delivers unparalleled visibility into application and
network performance to help meet application delivery challenges he'aci on and assure an exceptional end-user
experience.
Product Overview
Cisco Catalyst 6500 Series and Cisco 7600 Series NAM combines performance monitoring, traffic analysis, and
advanced troubleshooting to meet the performance monitoring needs of today's dynamic, evolving enterprises. It is
designed to provide deeper insight at both the network and application leveis. It offers real-time visibility into the
applications running on the network, how the network resources are being utilized, and how the end users
experience these applications. The visibility also allows IT to effectively use control and optimization mechanisms
such as quality of service (QoS) and Cisco Wide Area Application Services (WAAS) to improve the performance of
applications and services.
Figure 1.
Cisco Catalyst 6500 Series and Cisco 7600 Series Network Analysis Modules, NAM 1 and NAM 2
-
-
The unique design of Cisco NAM combines a rich set of embedded data collection and analysis capabilities with a
remotely accessible, web-based management console, ali of which reside on a single blade (Figure 1) that is easily
installed into the Cisco Catalyst 6500 Series Switch or the Cisco 7600 Series Router.
© 2010 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 1 of
Data Sheet
As an integrated services module, Cisco NAM uses a rich set of Catalyst 6500 Series Switch and Cisco 7600 Series
Router features to collect both LAN and WAN traffic for analysis. Using the Switched Port Analyzer (SPAN) feature,
Cisco NAM can monitor traffic from physical ports, virtual LANs (VLANs), or Cisco EtherChannel connections of the
local switch or router. Using VLAN access control list (VACL)—based captures, traffic can be filtered before it is sent
to Cisco NAM to support the selective monitoring of large amounts of traffic or the gathering of traffic from WAN
interfaces. In addition, Cisco NAM can consume NetFlow Data Export (NDE) from local and remote devices to
provide both real-time and historical traffic usage data. Cisco NAM can also use the Remote SPAN (RSPAN) or
Encapsulated Remote SPAN (ERSPAN) features of the devices to extend troubleshooting to remote parts of the
network. By supporting these Catalyst 6500 Series and Cisco 7600 Series features, Cisco NAM offers more ways to
see and understand what's happening on the network. Cisco NAM includes an embedded, web-based Traffic
Analyzer GUI (Figure 2), which provides quick access to the configuration menus and application performance views
for voice, video, and TCPbased applications. The GUI can be accessed from any desktop, eliminating the need to
send personnel to remote sites or haul large amounts of data to the central site. To enhance security, role-based
access can be assigned and web-browser access can be secured with up to 256-bit encryption.
Figure 2.
Web-Based Traffic Monitoring with the Embedded Cisco NAM Traffic Analyzer
Features and Benefits
Intelligent Application Performance Analytics
Cisco Catalyst 6500 Series and Cisco 7600 Series NAM provides comprehensive intelligent application performance
(IAP) measurements to accurately characterize end-user experience. It analyzes the TCP-based client/server
messages to provide transaction and session-based statistics. Intelligence derived from integrated application and
network visibility helps to- Isolate application problems to the network, the application, or the server. It also helps to
quickly analyze the root cause and resolve problems minimizing any impact to the end users.
The Cisco NAM GUI allows network administrators to correlate the end-user experience with network performance
metrics, such as network delay, round-trip time, retransmission time, and so on, to identify the cause of degradation.
For example, the source of network latency affecting the end-user experience can be identified by analyzing network
delay metrics, namely client network delay, server network delay, and network delay. Similarly, server resource
issues can be identified by network metrics such as application delay and server response time.
Figure 3 provides an example of the application response time report for an HTTP application. The report shows
reduction in the application delay after the administrator restarted a hung process on the application server.
© 2010 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 2 of 11
,s
Data Sheet
Troubleshooting Application Response Time
Figure 3.
The application performance data can also be analyzed over time to identify trends, track service-level objectives,
and establish meaningful thresholds to receive proactive actionable aiérts. Thus, degradations in application
performance can be preempted, and the underlying cause can be promptly investigated and resolved before it
affects the end user. The changes in network and application usage can also be correlated with fluctuations in
response times. The capability allows administrators to assess and predict the impact of new application rollouts,
WAN optimization, or changes in user populations on application performance.
Visibility into WAN-Optimized Networks
Cisco WAAS is a powerful application acceleration and WAN optimization solution that optimizes the performance of
TCP-based applications operating in a WAN environment. This optimization allows IT organizations to consolidate
costly branch-office servers and storage in centrally managed data centers and to deploy new applications directly
from the data center while offering LAN-like application performance for any employee, regardless of location.
In a typical WAN-optimized deployment, the interception of application traffic obscures the response time, data
transfer time, and other performance metrics; hence the traditional monitoring techniques fail to accurately
characterize the impact of optimization.
Assessing the Impact of Cisco WAAS Optimization
Figure 4.
.. .
__ _
. ■ 1 "Á 0, 5. :il'iR. 03:PO - 5,..1. 17001HW, 10:00
Lflour Repor:
NMeA•
2.
c
. C]
I.;.1
http 17220.107.123 10.i.9.4,13.2 .
,t ,,
Ia
ZN
S. < .,.. Fr•x• :•• •
..._
.,.... ..•
S'S.'
Se ■ R.11;11 •
14R, t
,
1;2,.,I-
Ear••• .L/Aslf, ':', 4'
......
adri ....ing'' ,
1 (Sn...... g.. `,' er2, d .....
•
M Ave Aro OcInv
1111.g CR. toor De•in?
__
Onjrhmt
me.4.5,. IN*. (1,, I tr.,
ri P." ...3s,,,,,,, Remcn.t.,,
;• ■, —,,U 10.1u R..5 MC
''' r.:).: !) ■ 77,W., 0...104 SR.
1' !VI, 172.20.104.10.4
, , , _,,, .}51$229 154 RN
. f TT: ',,t,:3 .1,,,, 1 /2.20 10,4.1to
srtil 172 RO 104 !OS
•r::(ià Mp 172.10 104 105
.-
m:
, .- ,
-0
.. .
.,
..
Catou). iiriC ',pot( stata
.
,,,i(1 •i • r,, .,,,re
, sç
,
5 51
C2010 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 3 of 11
Data Sheet
Cisco Catalyst 6500 Series and Cisco 7600 Series NAM uses the built-in instrumentation on the Wide-Area
Application Engine devices as additional data sources to gather flow data for optimized and passthrough traffic to
provide end-to-end application performance visibility in a Cisco WAAS environment. It measures and reports on
application response time, transaction time, bandwidth usage, and LAN/WAN data throughput among other
performance metrics. As a result, it can accurately quantify the impact of Cisco WAAS optimization as illustrated in
Figure 4.
Cisco NAM can also help to assess which applications would benefit the most from deploying WAN optimization and
application acceleration services. Analyzing the response time data over a period of time, the administrator can
identify the applications where the response time improvement can be significant with an increase in available
bandwidth. In addition, understanding the traffic mix provides a sense of how much compression could be achieved
with Cisco WAAS based on the type of applications in the mix.
Finally, Cisco NAM can be used to provide real-time visibility for ongoing optimization improvements, to monitor
optimized and nonoptimized applications, and to troubleshoot any performance degradation issues.
Superior Voice Quality Monitoring
Cisco NAM offers real-time voice quality monitoring using Mean Opinion Score (MOS) and key performance
indicators such as jitter and packet loss. It calculates MOS based on R-Factor (ITU-T G.107 Recommendations). It
also integrates with Cisco Unified Communications Management Suite to deliver an enterprisewide voice
management solution. Cisco NAM offers scalable and flexible deployment options complementing Cisco Unified
Communications Management Suite with networkwide visibility allowing enforcement of end-to-end service-level
objectives.
Figure 5 presents the last 60-minute view summarizing the voice quality for the active calls. The interface allows the
user to filter the data by quality grade (Poor, Fair, Good, and Excellent) and identify any anomalous behavior.
Figure 5.
Monitoring Voice Quality (MOS) for Active Calls
@ 2010 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 4 of 11
Data Sheet
Cisco NAM combines superior voice characterization with real-time troubleshooting capabilities to help improve the
quality of voice services delivered to the end user. h can generate proactive alerts to notify of possible voice quality
degradations. Acting on the alerts, the administrator can rapidly pinpoint the degraded voice stream and correlate it
with network performance indicators such as jitter and packet loss to analyze the underlying cause. Voice
performance issues can be further investigated using the traffic analysis capabilities of Cisco NAM. The
administrator can use Cisco NAM's DiffServ monitoring capabilities (Figure 6) to monitor traffic by differentiated
services code point (DSCP) allocations defined by QoS policies. This allows administrators to detect whether voice
is misclassified or whether non-business-critical traffic is contending with voice for network resources, hence
affecting voice quality.
Figure 6. Analyzing QoS Using DSMON
top N aiffServ Ana , e-4141ion G! 0,!P
Per.Sccond 0+14, oo o; ior, 14 ccl 20011, 02
Pato Relresh
TOPO Chrt
PT -Veie
■ vo t es-P1P
V.c,--Control
Visibility into Virtual Switch System Deployments
The Cisco Catalyst 6500 Series Virtual Switching System (VSS) 1440 is a feature on the Cisco Catalyst 6500 Series
Switches that allows clustering of two physical chassis into a single logically managed entity. It simplifies operational
manageability while delivering high availability and optimal network resource usage. VSS helps enable network
system virtualization in data center server access as well as campus and data center distribution/core layer designs.
Cisco NAM can be deployed in both virtual switches in a VSS 1440 environment. Either of thetwo NAMs can monitor
traffic on all switch ports of both of the virtual switches, reducing management overhead while improving overall
operational efficiency.
Monitoring the Virtualized Data Center
The Cisco Nexus 1000V is a Cisco-developed server virtualization switching architecture for VMware ESX
environments. The Nexus 1000V helps enable policy-based virtual máchine (VM) connectivity, mobility of security
and network properties, and a nondisruptive operational model for both server and network administrators. Offering a
set of network features, management tools, and diagnostic capabilities consistent with the customer's existing
physical Cisco network infrastructure and enhanced for the virtual world, the Nexus 1000V allows customers to
accelerate their adoption of VMs throughout the unification and simplification of the physical and virtual networks.
©2010 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 5 of 11
Data Sheet
With NAM 4.2, the visibility of the Cisco Catalyst 6500 NAM is extended into the virtual networking layer to help in
successfully navigating operational manageability challenges in dynamic data centers. The Cisco Catalyst 6500
NAM can identify the applications running on the virtual network, how much application traffic each VM is placing on the network, and who is using the applications. This is particularly helpful in supporting the migrations of physical
servers to VMs. The Cisco NAM provides insight into the "before and after" of such a migration helping to ensure that
performance levels of business-criticai applications are preserved. The Catalyst 6500 NAM can also:
• Analyze network usage behavior by hostNM and conversation to identify bottlenecks that may impact
performance and availability
• Troubleshoot performance issues with extended visibility into VM-to-VM traffic, virtual interface statistics
(Figure 7), and transaction response times
• Assess impact on network behavior due to changes such as VM migration, dynamic resource allocation, and
port profile updates
• Improve the efficiency of the virtual infrastructure and distributed application components with comprehensive
traffic analysis
Figure 7.
Single - Screen View of Traffic Utilization from Both Physical and Virtual Interfaces
Current Rates e TopN Chart
Variable:
Interface Slot In Sitsiseconcl
UF liame
■
■
■
■
:■
■
■
■
Ethernetaa
Ethernet4t2
Et'r ernet3/2
Ethemet5/2
Vethernet2
Vetherneti
Vethernet4
vethemet3
rngmti:I
Vethernet7
Network and Application Usage Analysis
One of the foundations of Cisco NAM is its ability to look inside the live packet to gather information on applications,
hosts, and conversations. Application monitoring identifies every application that has consumed bandwidth, reports
how much bandwidth has been consumed, and detects which hosts are using which applications. Host and
conversation-pair monitoring provides bandwidth consumption per host and shows which hosts are talking to each
other along with the amount of traffic each host is generating. Monitoring applications, hosts, and conversations can
help to proactively spot bottlenecks before the network suffers blows to performance and availability. It can also help
improve the consistency and quality of both individual and overall network services since these metrics reveal usage
patterns for users as well as for router and switch, interface, server, and application resources.
©2010 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 6 of 11
Data Sheet
/
Besides delivering a real-time snapshot of bandwidth usage and consumption, Cisco NAM also delivers a continuous
historical view (Figure 8) of how the bandwidth was used so the network administrator can quickly decide when and
where to make changes in network resources. Data can also be collected over a select period of time and then
analyzed after the event to discover when an anomaly has occurred so it can be quickly resolved.
Highly Granular Analysis of Real - time Transport Protocol (RTP) Traffic on the Network
Figure 8.
tu. 74 07(.911. 0n160d
deylle~t
; IN
1
n..
. s•
6Te
ttc Oct
t I,
I
Os o POR1 )
hp.
Bar C.hmt
All
b
:56138006
Gt:2 ,LiAr,pa0660!,
LoS FTP (Pve)(VLA2425)
; a,f;_j 8110 (DATA PORT .,'
,47,2
,
..n.r.ã
B3 7
RTP (DATA PORT)
17 '
GATA poRT)
jf:).2$68P
Top A4p70a8ont-Byte
or-,:_34mver771179
01 . •
LI DiffServ
Ell—:•.J17014
nlr'.....15,447ci, 5777
Jr.::i VLAN
•2 ••
2_1
I
L
so,.,
k-, f.
.
;
,1177 rn r e' x ,68741
,.,
i<3 <3
O6,
0719 Oct
rd ©11.
...•
Advanced Troubleshooting
On detecting degradation in performance, Cisco NAM can automatically trigger packet capture to help investigate
and analyze the root cause. Captures can be performed using a web browser from any desktop, and packet decodes
can be viewed through the Traffic Analyzer GUI. Cisco NAM's capture and decode capability provides depth and
insight into data analysis using trigger-based captures, filters, decodes, and a capture analysis toolset to quickly
pinpoint and resolve problem areas (Figure 9).
Figure 9.
Capturing and Decoding Packets with Cisco NAM
NAM Traffic Analyzer - Parket Decoder
.111.iii,
CISCO
6.435,
í_2:14-iii.(E);52..,à
1
SÓ'
6
4t
a6
ra
9671- 1,74tto4
P7740771
, 5 ,::, Mini' 486.. EIGRP
LOOP
:0 4,2531
.405/TFOTP/PA0PIU... :C00 •
5 000
2385
2143:
32 192.106.154 239
59 080s0 40.20x1.
353Cisco 0521 20 ..
3.512
4.325
92.192.109159,242
92,192.109156.238
IORP-RO4PERS.MCA..
JORP.R0WER3.t49/7„, .614;ffe
6
4.91::
7 _5.
06.61.80 892120
.
• • Sr* 7.4 -.' -'.
511 5, 515 - 5 ^
,c1500 502120
9•
19
5.2203
52 192 165 116,238JORP-ROUTERS 98A.,
2
3.
4,
5
6031IP
EIGRP
WiRP
HGRA
610562
51510 ,
0.10'41,
E1GRP
EIGRP
010RP
635012
64066*
0810
0020
8030
*090
_
0260
00 14 0 160 1 552 25
401000010560751ern 1
615:0P '31-3010105.
+.to.,
IMP
AP
7,
ti., a, t Is 1
0 . r,r, pr,rr r r,tr^ 0
1619914
0.44-41P
l
537 0
R
Dance , D ■ 0-37-5 Port1024sta r08132
HE,110
.HeSo
.;136550
. _ • P.',
1„6
1,17119
c6L145C
4E5E6g1F
.J iStáa,41:18118..E.nr.S4
1577 6 040001 456000 P7'5197'5'7.
5564 12 05101
Kl 4 1
152:: 5
Ia. 1
KV K 5
0348
R
.• 9
ri
24t.y4te ,/4"715P1056, 24.E036001
OS 00 45 40 60 35 Se 00 09 00 02 50 24 05 40 se
98 82 48 09 00 07 02 05 ce 05 00 00 Cr 00 00 09
00 00 00 00 0009 00 90 00 01 00 01 56 dc dl CD
Cl 80 00 99~99 8 90 03 00 04 03 00
....
..E .. i..... Xs...
,,,, sle s ,„,, ,s •,
©2010 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 7 of 11
•
Data Sheet
Quality of Service Analysis
Cisco NAM supports both the planning and management of quality of service deployments for voice, video, and
other criticai IP-based services. It supports the Differentiated Services Monitoring (DSMON) MIB, which monitors
traffic by DSCP allocations defined by QoS policies. Using the Cisco NAM DiffServ monitoring capabilities,
applications, hosts, and conversations participating in each grouping of DiffServ classes can be identified. This
information can be used to validate and tune planning assumptions and QoS allocations. It can also be used to
detect incorrectly marked or unauthorized traffic.
Flexible Deployment Scenarios
Cisco NAM can be deployed in the Cisco Catalyst 6500 Series at LAN aggregation points (for example, in the core
and distribution layers) for proactive monitoring, at service points (for example, in data centers, or Cisco Unified
Communications Manager clusters in IP telephony networks) where operational manageability is criticai, and at
important access points (criticai clients, IP phone closets) where quick troubleshooting is required. It can also be
deployed in Cisco 7600 Series Routers at WAN edges or in Catalyst 6500 Series Switches connected to WAN
routers. Figure 10 highlights the deployment of Cisco Catalyst 6500 Series NAM along with the Cisco Branch
Routers Series NAM and the new Cisco Nexus 1000V NAM Virtual Service Blade to provide visibility across the
borderless network.
Figure 10.
Deploying Cisco Catalyst 6500 Series NAM Provides Network and Application Intelligence in the Cisco Borderless
Network
Clscox Unifieci
CorrimunicatIons
Manager Cluste•
—1
etflow Data
Export to Cisco 6500
PATA Appllance
Cisco
7200
Carnpus
â
Cisco WAAS/
1
8(rench Office - 1/
© 2010 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 8 of 11
Data Sheet
Bring It Ali Together Your Way
As flexible advanced Cisco instrumentation, the Cisco NAMs can export computed NAM data to third-party and
homegrown applications to meet end-to-end performance reporting needs. The application performance overview
provided by these reporting applications can complement the granular performance visibility offered by Cisco NAMs
to help enable you to monitor how applications are being delivered enterprisewide, yet isolate and resolve delivery
problems proactively and promptly at their source.
Product Specifications
Table 1 provides the specifications for the Cisco Catalyst 6500 Series and Cisco 7600 Series NAM.
Table 1.
Cisco Catalyst 6500 Series and Cisco 7600 Series NAM Specifications
Feature
NAM-1 hardware
architecture
Description
• High-performance dual processor architecture offering sub-Gigabit Ethernet monitoring performance, 2 GB RAM,
and a 250 GB SATA hard disk drive
• Two data-collection interfaces to backplane (one for SPANNACL data sources, one for NetFlow)
• Second-generation fabric-enabled platform with interface to both bus- and crossbar-based architectures
NAM-2 hardware
architecture
• Extra high-performance dual processor architecture with hardware-based packet acceleration offering up to Gigabit
Ethernet monitoring performance, 2 GB RAM, and a 250 GB SATA hard disk drive
• Three data-collection interfaces to backplane (two for SPANNACL data sources, which can be used independently
or together, and one for NetFlow)
• Second-generation fabric-enabled platform with interface to both bus- and crossbar-based architectures
Supported platforms
• NAM-1 and NAM-2 can be deployed in a slot in Cisco Catalyst 6500 and 6000 Series Switches and Cisco 7600
Series Routers (both bus- and crossbar ifabrici-based architectures); multiple NAMs can be placed in the same
chassis
• Supported with Cisco 10S ° Software or Cisco Catalyst Operating System
Supported topologies and
data sources
Supported interfaces
• LAN: SPAN, RSPAN, VACL-based captures, NetFlow (versions 1, 5, 6, 7, 8, and 9)
• WAN: NetFlow (versions 1, 5, 6, 7, 8, and 9) from local and remote devices, VACL-based captures for
FIexWAN/Optical Service Module (OSM) interfaces (Cisco IOS Software only)
....
• HTTP/HTTPS with embedded web-based Cisco NAM Traffic Analyzer
• Simple Network Management Protocol Version 1 (SNMPv1) and Version 2c, with standards-based applications
NAM Traffic Analyzer
• Embedded in Cisco NAM Software 4.2
• Web-based: Requires Microsoft Internet Explorer 7.0 or Firefox 3.0; supports both English and Japanese versions
of browsers
• Supports Secure Sockets Layer (SSL) security with up to 256-bit encryption
• Role-based user authorization and authentication locaily or using TACACS+
• Real-time and historical statistics (up to 100 days) on LAN and WAN traffic and network-based services
Cisco NAM Software 4.2
• Supports the following Cisco Catalyst 6500 Series and Cisco 7600 Series NAMs:
o NAM-1: WS-SVC-NAM-1
,i NAM-1: WS-SVC-NAM-1-250S
NAM-2: WS-SVC-NAM-2
* NAM-2: WS-SVC-NAM-2-250S
• Supported with Cisco IOS Software Release 12.2(18)SXF (minimum) or Cisco Catalyst Operating System 8.2(1)
(minimum). Reter to the NAM 4.2 Release Notes for more details regarding supported system software
MIBs
The Cisco NAMs are standards-compliant and support Remote Monitoring (RMON) and RMON2 MIBs, as well as
several extensions. Major MIB groups supported in the Cisco NAMs are:
• MIB-II (RFC 1213) - Ali groups except Exterior Gateway Protocol (EGP) and transmission
• RMON (RFC 2819)
• RMON2 (RFC 2021)
• SMON (RFC 2613) - DatasourceCaps and smonStats
• DSMON (RFC 3287)
• HC-RMON (RFC 3273)
• Application Response Time
© 2010 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 9 of 11
Data Sheet
-.
Feature
Description
Cisco NAM provides RMON2 statistics on hundreds of unique protocols, including those defined in RFC 2896, and
several Cisco proprietary protocols.
Protocols
Cisco NAM automatically detects unknown protocols.
Users have fiexibility to customize the protocol directory by defining protocols on a single port or on a range of ports.
Protocols supported include (this list is not ali-inclusive):
• TCP and User Datagram Protocol (UDP) over IP including IPv6
• HTTP and HTTPS
• Voice over IP (VolP) including Skinny Client Control Protocol (SCCP), Real-time Transport Protocol/Real-Time
Control Protocol (RTP/RTCP), Media Gateway Control Protocol (MGCP), and Session Initiation Protocol (SIP)
• SigTran and Mobile IP protocols including GPRS Tunneling Protocol (GTP)
• Storage ares network (SAN) protocols including Fibre Channel over TCP/IP
• AppleTalk, DECnet, Novell, Microsoft
• Database protocols, including Oracle and Sybase
• Peer-to-peer protocols such as Gnuteila, Fasttrack, and winmix
• Bridge and router protocols
• Cisco proprietary protocols
• Unknown protocols by TCP/UDP ports, Remote Procedure Call (RPC) program numbers, and so on
Physical dimensions
.„.......
Operating environment
Dimensions (H x W x D): 1.2 x 14.4 x 16 inches (3.0 x 35.6 x 40.6 centimeters); occupies one slot in the chassis
• Operating temperature: 32 to 104°F (O to 40°C)
• Nonoperating and storage temperature: -40 to 158°F (-40 to 70°C)
• Operating relative humidity: 10% to 90% (noncondensing)
• Nonoperating relative humidity: 5% to 95% (noncondensing)
• Operating and nonoperating altitude: Sea levei to 10,000 feet (3050 meters)
Approvals and compliance
• Regulatory: CE Marking (89/366/EEC and 73/23/EEC)
• Safety: UL 1950; CSA-C22.2 No. 950, EN60950, IEC 60950
• EMC: FCC Part 15 (CFR 47) Class A, ICES-003 Class A, EN 55022 Class A, CISPR 22 Class A, AS/NZS CISPR
22 Class A, VCCI Class A, EN 55024, EN300 386, EN 50082-1, EN 61000-3-2, EN 61000-3-3, EN 61000-6-1
Ordering Information
Cisco Catalyst 6500 Series and Cisco 7600 Series NAM is available for purchase through regular Cisco seles and
distribution channels worldwide. To place an order, visit the Cisco Ordering Homepage. To download software, visit
the Cisco Software Center. Table 2 provides ordering information for Cisco NAM.
Table 2.
Ordering Information for Cisco Catalyst 6500 Series and Cisco 7600 Series NAM
Produ.
Cisco Catalyst 6500 Series and Cisco 7600 Series Network Analysis Module-1
Cisco Catalyst 6500 Sedes and Cisco 7600 Series Network Analysis Module-1 (Spare)
Cisco Catalyst 6500 Series and Cisco 7600 Series Network Analysis Module-2
Cisco Catalyst 6500 Series and Cisco 7600 Series Network Analysis Module-2 (Spare)
Part Number
I WS-SVC-NAM-1-250S
WS-SVC-NAM-1-250S=
I WS-SVC-NAM-2-250S
WS-SVC-NAM-2-250S=
Field-Installable Memory Upgrade Kit (2GB) for WS-SVC-NAM-1 and WS-SVC-NAM-2
MEM-C6KNAM-2GB=
Cisco Catalyst 6500 Series and Cisco 7600 Series Network Analysis Module Software 4.2
SC-SVC-NAM-4.2
Service and Support
Using the Cisco Lifecycle Services approach, Cisco and its partners provide a broad portfolio of end-to-end services
and support that can help increase your network's business value and return on investment. This approach defines
the minimum set of activities needed, by technology and by network complexity, to help you successfully deploy and
operate Cisco technologies and optimize their performance throughout the lifecycle of your network.
For More Information
For more information about Cisco Catalyst 6500 Series and Cisco 7600 Series NAM, visit
http://www.cisco.com/go/nam, contact your local account representative, or email the Cisco NAM product marketing
group at nam-finfocisco.com .
2010 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Page 10 of 11
•
Data Sheet
.1110111s
CISCO-
Americas Headquarters
Cisco Systems. Inc.
San Jose. CA
Asia Pacific Heedquarters
Cisco Systems (USA) Pte.t.fd.
Singapore
Europe Headquarters
Cisco Systems intematIonal PV
Amsterdam, The Netherlands
Cisco has more Man 200 offices worldwide. Addresses, phone numbers. and fax numbers are listed on the Cisco Website at www.cisco.com/gcloffices.
COCE, OCFNT. CCSI, Cisco Eos, C is co Explorer Cisco HealtePiesence. asco rsspm t. the Cisne logo Cisco Nu rse Cossaca Cisco Pulse, Cisco SensorGese, Cisco StecaPowei, Cisco StadiurnVision, Cisco TelePreserste.
reis. Elip tor Good Fila Mino. Flipshere (Dosign). Elip Ultra Rip COCO. Flip Video (Design). Instant Broadessed. and Welcome to leo Husten
Cisco TrustSec.Clsco Unifico Compulinç, System. Cisco WebEs. DOE. Flip Chameis.
Acta of Green a:e se:vice :natas: and
Network are trademarks, Chano isg the Way ele Work. Use. Play and icem Cisco Capital. Cioso Capital (Design). C isco,Fina nced iSt ylized), Cisco Store. Filo G@t Card. and Ore
Access Reg:seer AirôneÉ, Arfou ch, AsyncOS. EirisCing Cri Meueng Co fest:Cele ys,t CODA, CCDP, CCIE. C OIP. COCA, CONP. COSP COUP. Cisco lhe Cisco Cemet:ft imernetwori: Espe:t logo Cisco ins. 0,u° Lumis.
Systems
Ore
Cisco
Systems
logo.
Cisco
Unity.
Coffee:D:0ton
Withots
Urnitation.Cositinuurn.
E:the:1'0ot
EtherSwech.
Event
Cessar.
Explore: Fellow Me Drowsisg.
Cisco N exus. Cisco PresS.O:occ SYsfellss. CF=c•
Capital.
Ga isMaaer. :LYNX, 10S, iPhone. ItonFort. I he IrosPort logo. Laser Link, ugreStrearri, L iskays. MeetingPla c e. Meeting Pi ace Cesse Sound, MGX, NetworXerS, NetwOrkinn Acode:1w PONow PiX.PuwerKEY Pot:mi:Paneis, Power TV
Power T (Design), PowerVu, Ansma. ProCannest ROSA. SextderBaSe, SMART.I. Spectrum Export, StacktaSse. WoloEs. and lhe Web& logo are registe - rad tradamarhs st Cisco and/o: :Is &filetes st the Uni:eo State:: and
certain other cotasses.
Alt olhe' trademerks montioned In trota document o: ~asilo ar• troe property of ;heir respectivo owsers. Tile use of the word partner does no: imaly a partnershirs esfatiasses; bei woon C ■ SCO and any olhar compasy fIDE2Rs
C78-597209-00
Printed in USA
2010 Cisco and/or its affiliates. Ali rights reserved. This document is Cisco Public Information.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
04/10
Page 11 of 11
enterasys
DATASHEET
Secure Networks-
-
C-Series C5
Gigabit Ethernet Stackable L2/3/L4 Switch
Future-proofed with 802.3at highpower Pot. and IPv6 routing support
Automatic discovery and deployment
of VoÍP services
High-availability stacking assures
reliable network operations
Benefits
Business Alignment
•
Aligns network resource utilization with
business goals and priorities
Automated rnanagement features
reduce operational costs
•
Reliable network operation for missioncriticai applications
investment protection via
comprehensive lifetime warranty
Operational Efficiency
•
Management automation capa bilities
reduce network operational expenses
•
Automatic discovery and deployment
of Vo I P services
2.11Tbps capacity and 809.5Mpps
Product Overview
Security
The Enterasys C5 is a scalable, high-performance Gigabit Ethernet switch that provides support
•
Ability to audit network for adherence
to compliance regulations, such as PCI
or HIPAA
•
Network resources securely allocated
according to user roles
•
Network security maintained
concurrently with user mobility
for the bandwidth-intensive and latency-sensitive requirements of today's demanding business
applications. The C5 is an excellent choice for environments that require complete multi-layer
switching capabilities and support for high density 10/100/1000 Ethernet ports and lOGE uplinks.
The C5 also includes dynamic IPv4 and IPv6 routing and switching built into the hardware and
policy-based automation capabilities for advanced edge deployments.
The C5 incorporates the new 802.3at high-power PoE on all ports, which translates into increased
power provisioning for power-hungry devices such as Pan/Tilt/Zoom (PTZ) IP surveillance cameras,
Support and Service
IP videophones, third party 802.11n access points and virtual desktops. Built-in high-power PoE
•
Industry-leading customer satisfaction
and first cal! resolution rates
•
Personalized services, including site
surveys, network design, installation,
and training
•
Comprehensive lifetime warranty,
including feature upgrades and more
support is a cost effective alternative for customers in place of purchasing separate PoE midspans,
which can take away valuable rack space, add cost and contribute more cabling to the wiring closet.
The C5 provides high port density in a 1U footprint and is environmentally friendly by design. The
C5's overall energy efficiency is further enhanced by a low current draw and an extreme tolerance
for high environmental temperatures. A highly-scalable architecture and a comprehensive lifetime
warranty ensure that a C5 network investment will sustain a secure, feature-rich and cost-effective
network well into the future.
The C5's highly customizable Layer 2/3/4 packet classification capabilities work together with
the 8 hardware-based priority queues associated with each Ethernet port to support a suite of
differentiated services with as many as 8 distinct priority levels to provide guaranteed Quality
of Service (QoS) for criticai voice and vídeo network traffic. In conjunction with its non-blocking
L2 switching and L3 routing architecture, the C5's intelligent queuing mechanisms ensure that
mission-critical applications receive prioritized access to network resources.
There is nothing more important
than our customers.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Reliability and Availability
The C5 design incorporates redundancy and failure protection
mechanisms complete with automatic failover and recovery capabilities
to provide a reliable network. An integral power supply is the primary
source of power for the C5 and complete power redundancy is provided
by an optional externai power supply. The C5 redundant power supply
provides load sharing, backup, or additive PoE power to a C5 stackable
switch. With the power supply connected, the power requirement for
the switch is equally shared by the two power supplies thereby stressing
the power supplies less and increasing the lifetime and reliability of the
power supplies.
A virtual switch can be created by interconnecting as many as eight C5s
in a single stack, which can be managed via a single IP address with
redundant management connections. The C5's closed-loop stacking
capability utilizes bi-directional switch interconnects to maintain
connectivity within the virtual switch despite any physical failures, which
includes switches, cables and connections. Flexible Link Aggregation
Groups (6 groups of 8, 12 groups of 4 or 24 groups of 2) are supported
which allow multiple Ethernet ports (8, 4 or 2) to be grouped together
to create a LAG. A LAG's Ethernet ports can be co-located on a single
C5 or they can be distributed across multiple C5s within a stack to
prevent a switch-level failure from disrupting data communications.
The C5 also supports equal cost multipath protocol (ECMP) and virtual
router redundancy protocol (VRRP) to strengthen its ability to quickiy
recover from a network failure. The C5 also includes Host CPU Protection
support to help prevent Denial of Service (DoS) and BPDU attacks.
Advanced Quality of Service
Robust Quality of Service features enable strong support for integrated
multimedia networks, as well as ali types of data-intensive applications.
The C5 is a standards-based solution optimized for multimedia
applications, including VolP, videoconferencing and real-time
coliaboration. The C5 uses multiple standards-based discovery methods
with Enterasys policy capabilities to automatically identify and provision
VoIP services for IP phones from ali major vendors. C5 switches provide
dynamic mobility for VolP clients and reduce operating costs; when an IP
phone moves and plugs in elsewhere in the enterprise network, its VoIP
service provisioning, security and traffic priority settings move with it,
with no manual administration required.
Advanced packet buffering on the C5 means less jitter on the network
and a greater levei of QoS for time-sensitive applications, such as VolP
and IP video, resulting in better network perforMance.
Security
The C5 enables strong network security by utilizing its authentication and
security features, which can be applied at the port levei or at the user
levei. Making use of the Enterasys Network Management Suite's Policy
Manager or a standard CLI, the Enterasys role-based architecture enables
a network administrator to define distinct roles or profiles that represent
operational groups within a business (e.g., employee, executive, guest,
etc). Multiple users/devices per port can be authenticated via IEEE
802.1X, MAC address, or web authentication, and then assigned a
pre-defined operational role. The C5 now supports increased password
security via increased compiexity, history tracking and aging. Passwords
can now be encrypted using a FIPS 1402 approved algorithm.
-
Administrators can easily transition from RFC 3580 and complex
access control list (ACL) deployments to the Enterasys role-based policy
framework in a seamless fashion, without the need to make changes
to their RADIUS infrastructure (e.g., adding filter-ID). In addition, the
C5 also supports ACLs for supplementary network security. Network
operations can be easily tailored to meet business-oriented requirements
by providing each role with individualized access to network services and
applications (e.g., a guest should have different network access privileges
than an employee). Utilizing Enterasys role-based policy, administrators
are able to manipulate DSCP and 802.1p rewrite for classification and
prioritization of network traffic.
The C5 allows administrators even more network visibility, with the
ability to audit their network for adherence to compliance regulations,
such as PCI or HIPAA. The C5 is able to segment roles down to specific
business functions, such as marketing, finance, HR or corporate, tailoring
employee access to sensitive information.
The C5 switching line lias also successfully completed the Department
of Defense's Unified Capabilities (UC) Certification testing at the U.S.
Army Technology Integration Center (TIC) in accordance with the Joint
interoperability Test Command (JITC) and is listed on the Unified
Capabilities Approved Products List (UC APL). This important milestone
means Enterasys' premier policy-enabled modular and stackable switches
are now available for use in DoD critica! infrastructure applications.
Investment Protection
The C5 is a cost-effective, feature-rich, stackable switch that provides
a broad set of features today and will continue to deliver benefits well
into the future. Ali C-Series products include a lifetime warranty that
includes warranty and support services for which many competitors
charge additional fees — adding up to 10% of initial deployment costs on
an annual basis. Included benefits, such as advanced hardware return,
firmware feature upgrades (which most vendors cover at most for 90
days) and telephone support (which most don't include or severely limit)
combine to significantly decrease operational costs for customers over
the life of their network. For more information regarding warranty terms
and conditions please go to tittp:~w.enterasymornIsuppytlAarixtly.a.spx.
Performance & Scalability
The C5, with support for 32,000 MAC addresses, provides scalabie,
wire-rate performance in support of the bandwidth-intensive and delaysensitive requirements of today's demanding applications. Along with a
switch capacity of 264 Gbps, the C5 provides up to 48 10/100/1000
Ethernet ports as well as 2 SFP+ ports, with the ability to support both
1GE and 10GE uplinks on the same port. Leveraging the C5's stacking
capability, as many as 8 C5s (both 24-port and 48-port combinations)
can be interconnected in a single stack to create a virtual switch that
provides 2.11 Tbps of capacity and up to 384 10/100/1000 Ethernet
ports as well as 16 10GE uplink ports.
Page 2
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Features / Standards and Protocols
MAC Address Table Size
32,000
VLANs
4,094 VLAN IDs
1,024 VLAN Entries per Stack
Switching Services Protocols
IEEE 802.1AB — LLDP
ANSI/TIA-1057 — LLDP-MED
IEEE 802.1D — MAC Bridges
IEEE 802.1s — Multiple Spanning Trees
IEEE 802.1t — 802.1D Maintenance
IEEE 802.1w — Rapid Spanning Tree Reconvergence
IEEE 802.3 — Ethernet
IEEE 802.3ab — GE over Twisted Pair
IEEE 802.3ad — Link Aggregation
IEEE 802.3ae — 10 Gigabit Ethernet (fiber)
IEEE 802.3af — PoE
IEEE 802.3at — High Power PoE (up to 30W per port)
IEEE 802.3i — 10Base-T
IEEE 802.3u — 100Base-T, 100Base-FX
IEEE 802.3z — GE over Fiber
Full/half duplex auto-sense support on all ports
IGMP Snooping vl/v2/v3
Jumbo Frame support (9,216 bytes)
Loop Protection
One-to-One and Many-to-One Port Mirroring
Port Description
Protected Ports
Selectable LAG Configuration (6 x 8, 12 x 4, 24 x 2)
Host CPU Protection — Broadcast/ Multicast/
Unknown Unicast Suppression
Spanning Tree Backup Root
STP Pass Thru
VLAN Support
Generic Attribute Registration Protocol (GARP)
Generic VLAN Registration Protocol (GVRP)
IEEE 802.1p — Traffic classification
IEEE 802.1Q — VLAN Tagging
Protocol-based VLANs with Enterasys Policy
IEEE 802.3ac — VLAN Tagging Extensions
Port-based VLAN (private port/private VLAN)
Tagged-based VLAN
VLAN Marking of Mirror Traffic
Standalone VLAN Association application for subnet, protocol and MAC
based VLAN classification
Security
ARP Spoof Protection
DHCP Spoof Protection
IEEE 802.1X Port Authentication
MAC-based Port Authentication
RADIUS Accounting for network access
RADIUS Client
IPsec for RADIUS transactions
RFC 3580 — IEEE 802.1X RADIUS Usage Guidelines
Multi-user Authentication
Pre-login banner
Password Protection (encrypted using a FIPS 1402 approved algorithm)
Secure Networks Policy
Secured Shell (SSHv2)
Secured Socket Layer (SSL)
User and IP Phone Authentication
Web-based Port Authentication
Auto Console Disconnect
Security Log
Secure Directory
IPv4 Routing
Standard Access Control List (ACLs)
Extended ACLs
VLAN-based ACLs
Service ACLs
MAC-based ACLs - not simultaneously supported with policy
ARP & ARP Redirect
DVMRP
IP Helper Address
OSPF Passive Interface
VRRP master-icmp-reply
RFC 826 — Ethernet ARP
RFC 1058 — RIP vl
RFC 1256 — ICMP Router Discovery Messages
RFC 1519 Classless Inter-Domain Routing
RFC 1724 — RIPv2 MIB Extension
RFC 2236 — IGMPv2
RFC 2328 — OSPF version 2
RFC 2338 — IP Redundancy VRRP
RFC 2362 — PIM-SM
RFC 2453 — RIP v2
RFC 3046 — DHCP/BootP Relay
RFC 3376 — IGMPv3
RFC 3768 — VRRP — Virtual Router Redundancy Protocol Static Routes
IPv6 Routing
IPv6 ACLs - not simultaneously supported with policy
RFC 1981 — Path MTU for IPv6
RFC 2373 — IPv6 Addressing
RFC 2460 — IPv6 Protocol Specification
RFC 2461 — Neighbor Discovery
RFC 2462 — Stateless Autoconfiguration
RFC 2463 — ICMPv6
RFC 2464 — IPv6 over Ethernet
RFC 2473 — Generic Packet Tunneling in IPv6
RFC 2271 — SNMP Framework MIB
RFC 2711 — IPv6 Router Alert
RFC 2740 — OSPFv3
RFC 2893 — Transition Mechanisms for
IPv6 Hosts and Routers (6 over 4 configured)
RFC 3315 — DHCPv6 (stateless + relay)
RFC 3484 — Default Address Selection for IPv6
RFC 3493 — Basic Socket Interface for IPv6
RFC 3513 — Addressing Architecture for IPv6
RFC 3542 — Advanced Sockets API for
RFC 3587 — IPv6 Global Unicast Address Format
RFC 3736 — Stateless DHCPv6
Dual IPv4/IPv6 TCP/IP Stack
Page 3
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Features / Standards and Protocols (cont.)
MIB Support
Enterasys Entity MIB
Enterasys Policy MIB
Enterasys VLAN Authorization MIB
Enterasys Spanning Tree Diagnostic MIB
ANSIfTIA-1057 — LLDP-MED MIB
IEEE 802.1AB — LLDP MIB
IEEE 802.1X MIB — Port Access
IEEE 802.3ad MIB — LAG MIB
RFC 826 — ARP and ARP Redirect
RFC 951, RFC 1542 — DHCP/
BOOTP Relay
RFC 1213 — MIB/MIB II
RFC 1493 — BRIDGE-MIB
RFC 1643 — Ethernet-like MIB
RFC 1724 — RIPv2 MIB Extension
RFC 1850 — OSPF MIB
RFC 2096 — IP Forwarding Table MIB
RFC 2131, RFC 3046 — DHCPCIient/Relay
RFC 2233 — IF-MIB
RFC 2465 — IPv6 MIB
RFC 2466 — ICMPv6 MIB
RFC 2571 — SNMP Framework MIB
RFC 2618 — RADIUS Authentication Client MIB
RFC 2620 — RADIUS Accounting Client MIB
RFC 2668 — Managed Object Definitions for 802.3 MAUs
RFC 2674 — P-BRIDGE-MIB
RFC 2674 — QBRIDGE-MIB VLAN Bridge MIB
RFC 2737 — Entity MIB (physical branch only)
RFC 2787 — VRRP-MIB
RFC 2819 — RMON-MIB
RFC 2933 — IGMP MIB
RFC 2934 — PIM MIB for IPv4
RFC 3413 — SNMP v3 Applications MIB
RFC 3414 — SNMP v3 User-based
Security Module (USM) MIB
RFC 3584 — SNMP Community MIB
RFC 3621 — Power over Ethernet MIB
Quality of Service
8 Priority Queues per Port
802.3x Flow Control
Class of Service (CoS)
Ingress Rate Limiting
IP ToS/DSCP Marking/Remarking
IP Precedence
IP Protocol
Layer 2/3/4 Classification
Multi-layer Packet Processing
Mixed Queuing Control — Strict and Weighted
Round Robin
Source/Destination IP Address
Source/Destination MAC Address
Dynamic and Static MAC Locking
EAP Pass-Thru
RFC 2474 Definition of Differentiated Services Field
Management
Alias Port Naming
Command Line Interface (CLI)
Configuration Upload/Download
Dual IPv4/1Pv6 Management Support
Editable Text-based Configuration File
TFTP Client
Command Logging
Multi-configuration File Support
NMS Automated Security Manager
NMS Console
NMS Inventory Manager
NMS Policy Manager
Node/Alias Table
RFC 768 — UDP
RFC 783 — TFTP
RFC 791 — IP
RFC 792 — ICMP
RFC 793 — TCP
RFC 826 — ARP
RFC 854 — Telnet
RFC 951 — BootP
RFC 1157 — SNMP
RFC 1321 — The MD5 Message-Digest Algorithm
RFC 1901 —Community-based SNMPv2
RFC 2030 Simple Network Time Protocol (SNTP)
RFC 2933 — IGMP MIB
RFC 3176 — sFlow
RFC 3413 — SNMPV3 Applications
RFC 3414 —User-based Security Module (USM) for SNMPV3
RFC 3415 — View-based Access Control Model for SNMP
RFC 3826 — Advanced Encryption
Standard (AES) for SNMP
RMON (Stats, History, Alarms, Events, Filters, Packet Capture)
Secure Copy (SCP)
Secure FTP (SFTP)
Simple Network Management Protocol
(SNMP) vl/v2c/v3
SSHv2
RFC 3164 — The BSD Syslog Protocol
TACACS+ support
Authentication, Authorization and Auditing
Web-based Management
Webview via SSL Interface
Page 4
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Switch Model Specifications
C5G124-24
C5G124-24P2
C5G124-48
C5G124-48P2
Throughput Capacity wirespeed Mpps
(switch / stack)
35.7 Mpps / 285.7 Mpps
35.7 Mpps / 285.7 Mpps
71.4 Mpps / 571.4 Mpps
71.4 Mpps / 571.4 Mpps
Switching Capacity
(switch / stack)
48 Gbps (35.7 Mpps) /
384 Gbps (285.7 Mpps)
48 Gbps (35.7 Mpps) /
384 Gbps (285.7 Mpps)
96 Gbps (71.4 Mpps) /
768 Gbps (571.4 Mpps)
96 Gbps (71.4 Mpps) /
768 Gbps (571.4 Mpps)
Stacking Capacity
(switch / stack)
128 Gbps (95.2 Mpps) /
1,024 Gbps (761.8 Mpps)
128 Gbps (95.2 Mpps) /
1,024 Gbps (761.8 Mpps)
128 Gbps (95.2 Mpps) /
1,024 Gbps (761.8 Mpps)
128 Gbps (95.2 Mpps) /
1.024 Gbps (761.8 Mpps)
Aggregate Throughput
Capacity
(switch / stack)
176 Gbps (130.9 Mpps) /
1,408 Gbps (1,047.5 Mpps)
176 Gbps (130.9 Mpps) /
1,408 Gbps (1,047.5 Mpps)
224 Gbps (166.6 Mpps) /
1,792 Gbps (1,333.2 Mpps)
224 Gbps (166.6 Mpps) /
1,792 Gbps (1.333.2 Mpps)
802.3at Interoperable
N/A
Yes
N/A
Yes
System Power
N/A
N/A
850 watts per switch with up
to 30 watts per port
Per-port switch power monitor:
• Enable/disable
• Priority safety
• Overload & short circuit
protection
Performance
PoE Specifications
Yes
802.3af Interoperable
850 watts per switch with up
to 30 watts per port
I Per-port switch power monitor:
• Enable/disable
• Priority safety
• Overload & short circuit
protection
Physical Specifications
H: 4.4 cm (1.73")
W: 44.1 cm (17.36")
D: 36.85 cm (14.51")
Dimensions (H x W x D)
Net Weight
6.60 kg (14.55 Ib)
5.03 kg (11.10 Ib)
MTBF
395,557 hours
289,425 hours
Physical Porto
• (24) 10/100/1000 autosensing, auto-negotiating
MDI/MDI-X RJ45 ports
• (4) Combo SFP ports
(2)
dedicated stacking ports
•
• (1) DB9 console port
• (1) RPS port
• (24) 10/100/1000 PoE
(.af+.at) auto-sensing,
auto-negotiating MDI/MDI-X
RJ45 ports
• (4) Combo SFP ports
• (2) dedicated stacking ports
• (1) DB9 console port
• (1) RPS port
311,897 hours
229,532 hours
• (48) 10/100/1000 autosensing, auto-negotiating
MDI/MDI-X RJ45 porto
• (4) Combo SFP ports
• (2) dedicated stacking ports
• (1) DB9 console port
• (1) RPS port
• (48) 10/100/1000 PoE
(.af+.at) auto-sensing,
auto-negotiating MDI/MDI-X
RJ45 ports
• (4) Combo SFP ports
• (2) dedicated stacking ports
• (1) DB9 console port
• (1) RPS port
Power Requirements
Normal Input Voltage
Input Frequency
Input Current
Power Consumption
Page 5
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Switch Model Specifications (cont.)
C5G124-24
C5G124-24P2
C5G124-48
0° to 50° C
(32° to 122° F)
O° to 50° C
(32° to 122° F)
0° to 50° C
(32° to 122° F)
-40° to 70° C
(-40° to 158° F)
-40° to 70° C
(-40° to 158° F)
-40° to 70° C
(-40° to 158° F)
-40° to 70° C
(-40° to 158° F)
222 BTUs/Hr
428 BTUs/Hr
345 BTUs/Hr
513 BTUs/Hr
5% - 95% non-condensing
5% - 95% non-condensing
5% - 95% non-condensing
------__„_
IEC 68-2-6, IEC68-2-36
IEC 68-2-6, IEC68-2-36
IEC 68-2-6, IEC68-2-36
I
"
IEC 68-2-6, IEC68-2-36
..
---_..........
IEC 68-2-29
IEC 68-2-29
IEC 68-2-29
1
IEC 68-2-29
IEC 68-2-32
IEC 68-2-32
44 dB
45.5 dB
Operating
10,000 ft (3,048 m)
10,000 ft (3,048 m)
Non-operating
15,000 ft (4,572 m)
15,000 ft (4,572 m)
C5G124-48P2
Temperature
i
I
I
IEC 6-2-1
Standard Operating
Temperature
IEC 6-2-14
Non-Operating Temperature
Heat Dissipation
I
- 0° to 50° C
(32° to 122° F)
_.
Humidity
Operating Humidity
5% - 95% non-condensing
_
Vibration
Shock
.„.
.
i
L.
Drop
IEC 68-2-32
IEC 68-2 32
46 dB
45.5 dB
Acoustics
Front of switch
(normal operation)
I
I
Altitude
—
—
—
10,000 ft (3,048 m)
10,000 ft (3,048 m)
15,000 ft (4,572 m)
15,000 ft (4,572 m)
UL 60950-1, CSA 22.1
60950, EN 60950-1, and
IEC 60950-1
UL 60950-1, CSA 22.1
60950, EN 60950-1, and
IEC 60950-1
FCC Part 15 (Class A), ICES003 (Class A), BSMI, VCCI
V-3, AS/NZS CISPR 22 (Class
A), EN 55022 (Class A), EN
55024, EN 61000-3-2, and
EN 61000-3-3
FCC Part 15 (Class A), ICES003 (Class A), BSMI, VCCI
V-3, AS/NZS CISPR 22 (Class
A), EN 55022 (Class A), EN
55024, EN 61000-3-2, and
EN 61000-3-3
FCC Part 15 (Class A), ICES003 (Class A), BSMI, VCCI
V-3, AS/NZS CISPR 22 (Class
A), EN 55022 (Class A), EN
55024, EN 61000-3-2, and
EN 61000-3-3
2002/95/EC (RoHS Directiva),
2002/96/EC (WEEE Directiva),
Ministry of Information Order
#39 (China RoHS)
2002/95/EC (RoHS Directive),
2002/96/EC (WEEE Directive),
Ministry of Information Order
#39 (China RoHS)
2002/95/EC (RoHS Directiva),
2002/96/EC (WEEE Directiva),
Ministry of Information Order
#39 (China RoHS)
-1.
Agency and Regulatory Standard Specifications
Safety
UL 60950-1, CSA 22.1
60950, EN 60950-1, and
IEC 60950-1
EMC
FCC Part 15 (Class A), ICES003 (Class A), BSMI, VCCI
V-3, AS/NZS CISPR 22 (Class
A), EN 55022 (Class A), EN
55024, EN 61000-3-2, and
EN 61000-3-3
Enyironmental
2002/95/EC (RoHS Directive),
2002/96/EC (WEEE Directive),
Ministry of Information Order
#39 (China RoHS)
j
1
i
—I
j
j
UL 60950-1, CSA 22.1
60950, EN 60950-1, and
IEC 60950-1
.
.
Page 6
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
'Switch Model Specifications (cont.)
C5K125-48
C5K125-48P2
C5K175-24
I
.
101.2 Mpps / 809.5
Mpps
101.2 Mpps / 809.5
Mpps
65.5 Mpps / 523.8
Mpps
i
i
1
136 Gbps (101.2
Mpps) /
1,088 Gbps (809.5
Mpps)
136 Gbps (101.2
Mpps) /
1,088 Gbps (809.5
Mpps)
88 Gbps (65.5 Mpps) /
704 Gbps (523.8
Mpps)
128 Gbps (95.2
Mpps) /
1,024 Gbps (761.8
Mpps)
128 Gbps (95.2
Mpps) /
1,024 Gbps (761.8
Mpps)
128 Gbps (95.2
Mpps) /
1,024 Gbps (761.8
Mpps)
128 Gbps (95.2
Mpps) /
1,024 Gbps (761.8
Mpps)
216 Gbps (160.7
Mpps) /
1,728 Gbps (1,285.6
Mpps)
264 Gbps (196.4
Mpps) /
2,112 Gbps (1,571.3
Mpps)
264 Gbps (196.4
Mpps) /
2,112 Gbps (1,571.3
Mpps)
216 Gbps (160.7
Mpps) /
1,728 Gbps (1,285.6
Mpps)
C5K125-24
C5K125.24P2
Throughput Capacity
wire-speed Mpps
(switch / stack)
65.5 Mpps / 523.8
Mpps
65.5 Mpps / 523.8
Mpps
Switching Capacity
(switch / stack)
88 Gbps (65.5 Mpps) /
704 Gbps (523.8
Mpps)
88 Gbps (65.5 Mpps) /
704 Gbps (523.8
Mpps)
Stacking Capacity
(switch / stack)
128 Gbps (95.2
Mpps) /
1,024 Gbps (761.8
Mpps)
Aggregate Throughput
Capacity
(switch / stack)
216 Gbps (160.7
Mpps) /
1,728 Gbps (1,285.6
Mpps)
Performance
PoE Specifications
802.3af Interoperable I
---4
802.3at Interoperable 1
N/A
1
I
1
Yes
N/A
Yes
N/A
N/A
Yes
N/A
Yes
N/A
System Power
N/A
1
850 watts per switch
with up to 30 watts
per port
Per-port switch power
monitor:
• Enable/disable
• Priority safety
• Overload & short
circuit protection
N/A
850 watts per switch
with up to 30 watts
per port
Per-port switch power
monitor:
• Enable/disable
• Priority safety
• Overload & short
circuit protection
N/A
H: 4.4 cm (1.73")
W: 44.1 cm (17.36")
0: 36.85 cm (14.51")
!
!
I
H: 4.4 cm (1.73")
W: 44.1 cm (17.36")
D: 36.85 cm (14.51")
H: 4.4 cm (1.73")
W: 44.1 cm (17.36")
D: 36.85 cm (14.51")
H: 4.4 cm (1.73")
W: 44.1 cm (17.36")
D: 36.85 cm (14.51")
H: 4.4 cm (1.73")
W: 44.1 cm (17.36")
D: 36.85 cm (14.51")
.
6.10 kg (13.45 Ib)
5.31 kg (11.70 Ib)
6.49 kg (14.30 Ib)
4.97 kg (10.95 lb)
284,345 hours
213,965 hours
395,839 hours
• (48) 10/100/1000
auto-sensing, autonegotiating MDI/
MDI-X RJ45 ports
• (2) Combo SFP ports
• (2) SFP+ ports
• (2) dedicated
stacking ports
• (1) DB9 console port
• (1) RPS port
• (48) 10/100/1000
PoE (.af + .at)
auto-sensing, autonegotiating MDI/
MDI-X RJ45 ports
• (2) Combo SFP ports
• (2) SFP+ ports
• (2) dedicated
stacking ports
• (1) DB9 console port
• (1) RPS port
• (24) SFP
• (2) SFP+ ports
• (2) dedicated
stacking ports
• (1) DB9 console port
• (1) RPS port
Physical Specifications
Dimensions
(1-IxWxD)
Net Weight
MTBF
Ì 4.92 kg (10.85 Ib)
-- 365,615 hours
Physical Ports
273,083 hours
• (24) 10/100/1000
auto-sensing, autonegotiating MDI/
MDI-X RJ45 ports
• (2) Combo SFP ports
• (2) SFP+ ports
• (2) dedicated
stacking ports
• DB9 console port
• (1) RPS port
• (24) 10/100/1000
PoE (.af + .at)
auto-sensing, autonegotiating MDI/
MDI-X RJ45 ports
• (2) Combo SFP ports
• (2) SFP+ ports
• (2) dedicated
stacking ports
• DB9 console port
• (1) RPS port
!
-I
1
'
Power Requirements
Normal lnput Voltage
I
100 - 240 VAC
100 - 240 VAC
100 - 240 VAC
100 - 240 VAC
100 - 240 VAC
50 - 60 Hz
50 - 60 Hz
50 - 60 Hz
50 - 60 Hz
Input Frequency
50 - 60 Hz
Input Current
2 A Max
12 A Max
2 A Max
12 A Max
2 A Max
Power Consumption
74 watts
130 watts
1
120 watts
165 watts
69 watts
I
I
O° to 50° C
(32° to 122° F)
O° to 50° C
(32° to 122° F)
O° to 50° C
(32° to 122° F)
i
Temperature
IEC 6-2-1
O° to 50° C
Standard Operating
Temperature
(32° to 122° F)
O° to 50° C
(32° to 122° F)
IEC 6-2-14
Non-Operating
Temperature
-40° to 70° C
(-40° to 158° F)
-40° to 70° C
(-40° to 158° F)
-40° to 70° C
(-40° to 158° F)
-40° to 70° C
(-40° to 158° F)
-40° to 70° C
(-40° to 158° F)
445 BTUs/Hr
408 BTUs/Hr
--565 BTUs/Hr
234 BTUs/Hr
Heat Dissipation
1
253 BTUs/Hr
--1
.
Page 7
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Switcn Model Specifications (cont.)
C5K125-24
C5K125-24P2
C5K125-48
C5K125-48P2
5% - 95% noncondensing
5% - 95%, noncondensing
5% - 95% noncondensing
5% - 95% noncondensing
-
C5K175-24
Humidity
Operating Humidity
--
5% - 95% noncondensing
------
-.--_.
Vibration
1
Shock
IEC 68-2-6, IEC682-36
IEC 68-2-6, IEC682-36
IEC 68-2-6, IEC682-36
IEC 68-2-6, IEC682-36
.....
IEC 68-2-29
IEC 68-2-29
IEC 68-2-29
IEC 68-2-29
IEC 68-2-29
IEC 68-2-6, IEC682-36
..
-
Drop
IEC 68-2-32
I
IEC 68-2-32
IEC 68-2-32
IEC 68-2-32
IEC 68-2-32
45 dB
I
45.5 dB
47 dB
46 dB
46 dB
Acoustics
Front of switch
(normal operation)
- ,
Altitude
Operating
Non-operating
10,000.ft (3,048 m)
10,000 ft (3,048 m)
10,000 ft (3,048 m)
10,000 ft (3,048 m)
10,000 ft (3,048 m)
15,000 ft (4,572 m)
15,000 ft (4,572 m)
15,000
,
ft (4,572 m)
15,000 ft (4,572 m)
15,000 ft (4,572 m)
UL 60950-1, CSA 22.1
60950, EN 60950-1,
and IEC 60950-1
UL 60950-1, CSA 22.1
60950, EN 60950-1,
and IEC 60950-1
UL 60950-1, CSA 22.1
60950, EN 60950-1,
and IEC 60950-1
UL 60950-1, CSA 22.1
60950, EN 60950-1,
and IEC 60950-1
UL 60950-1, CSA 22.1
60950, EN 60950-1,
and IEC 60950-1
FCC Part 15 (Class A),
ICES-003 (Class A),
BSMI, VCCI V-3, AS/
NZS CISPR 22 (Class
A), EN 55022 (Class A),
EN 55024, EN 610003-2, and EN 61000-3-3
FCC Part 15 (Class A),
ICES-003 (Class A),
BSMI, VCCI V-3, AS/NZS
CISPR 22 (Class A), EN
55022 (Class A), EN
55024, EN 61000-3-2,
and EN 61000-3-3
FCC Part 15 (Class A),
ICES-003 (Class A),
BSMI, VCCI V-3, AS/
NZS CISPR 22 (Class
A), EN 55022 (Class
A), EN 55024, EN
61000-3-2, and EN
61000-3-3
FCC Part 15 (Class A),
ICES-003 (Class A),
BSMI, VCCI V-3, AS/
NZS CISPR 22 (Class
A), EN 55022 (Class
A), EN 55024, EN
61000-3-2, and EN
61000-3-3
FCC Part 15 (Class A),
ICES-003 (Class A),
BSMI, VCCI V-3, AS/
NZS CISPR 22 (Class
A), EN 55022 (Class
A), EN 55024, EN
61000-3-2, and EN
61000-3-3
: 2002/95/EC (RoHS
1 Directive), 2002/96/
EC (WEEE Directive),
Ministry of Information
Order #39 (China RoHS)
2002/95/EC (RoHS
Directiva), 2002/96/
EC (WEEE Directiva),
Ministry of Information
Order #39 (China RoHS)
2002/95/EC (RoHS
Directive), 2002/96/
EC (WEEE Directive),
Ministry of Information
Order #39 (China RoHS)
2002/95/EC (RoHS
Directive), 2002/96/
EC (WEEE Directive),
Ministry of Information
Order #39 (China RoHS)
2002/95/EC (RoHS
Directive), 2002/96/
EC (WEEE Directive),
Ministry of Information
Order #39 (China RoHS)
i
Agency and Regulatory Standard Specifications
Safety
EMC
Environmental
1
Page 8
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Redundant Power Supply Equipment Specifications
STK-RPS-1005CH3 Power Shelf
Power Supply Slots
3
Dimensions (H x W x D)*
5.5 cm (2.2") x 44.0 cm (17.3") x 35.1 cm (13.8")
Weight
0.95 kg (2.09 Ibs)
Operating Temperature
0° C to 50° C (32° F to 122° F)
Storage Temperature
-30° C to 73° C (-22° F to 164° F)
Operating Relative Humidity
5% to 95%
AC Input Frequency Range
50 - 60 Hz
STK-RPS-150CH2 Power Shelf
Power Supply Slots
2
Dimensions (H x W x D)*
5.5 cm (2.2") x 44.0 cm (17.3") x 18.0 cm (7.0")
AC Input Voltage Range
100 - 240 VAC
Maximum Output Power
156 W continuous
STK-RPS-1005PS Power Supply
Weight
Dimensions (H x W x D)*
4.3 cm (1.7") x 15.4 cm (6.06") x 34.0 cm (13.39")
5.27 kg (11.6 Ibs)
STK-RPS-150CH8 Power Shelf
Power Supply Slots
8
Dimensions (H x W x D)*
22.26 cm (8.77") x 44.0 cm (17.3") x 26.4 cm (10.4")
Weight
5.27 kg (11.6 Ibs)
Net Weight (Unit Only)
2.1 kg (4.63 Ib)
Gross Weight (Packaged Unit)
3.53 kg (7.77 Ib)
MTBF
800,000 hours
*Note: dimensions include integrated rack mount ears
Operating Temperature
0° C to 50° C (32° F to 122° F)
STK-RPS-150PS Power Supply
Storage Temperature
-40° C to 70° C (-40° F to 158° F)
Dimensions (H x W x D)
19.6 cm (7.7") x 5.2 cm (2.04") x 25.7 cm (10.1")
Net Weight (Unit Only)
1.75 kg (3.85 Ibs)
Gross Weight (Packaged Unit)
3.20 kg (7.04 Ibs)
MTBF
300,000 hours
Operating Relative Humidity
5% to 95%
AC Input Frequency Range
50-60 Hz
AC Input Voltage Rgige
100 - 240 VAC
Maximum Output Power
1005 W continuous
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
•
•
•
Ordering Information
.,:„.,
Part Number
..„.
.....:,.. ....„„„. . .
•:. C5 Si■ritchai
''.
...... ,
.;
— Description
.,
.
_
•
C5G124-24
(24) 10/100/1000 RJ45 ports, (4) combo SFP ports, (2) dedicated high-speed stacking ports and externai RPS
connector. Total active ports per switch: (24) Gigabit ports
....„.
................„.............____.....,„................_....._.......___......„.„..........._....._.........
„...______
(24) 10/100/1000 PoE (.at + .af) RJ45 ports, (4) combo SFP porta, (2) dedicated high-speed stacking ports and
externai RPS connector. Total active porte per switch: (24) Gigabit ports
C5G124-24P2
C5G124-48
(48) 10/100/1000 RJ45 ports, (4) combo SFP ports, (2) dedicated high-speed stacking ports and externai RPS
connector. Total active ports per switch: (48) Gigabit ports
C5G124-48P2
(48) 10/100/1000 PoE (.at + .af) RJ45 ports, (4) combo SFP ports, (2) dedicated high-speed dedicated stacking
ports and externai RPS connector. Total active ports per switch: (48) Gigabit ports
C5K125-24
(24) 10/100/1000 RJ45 ports, (2) combo SFP ports, (2) SFP+, (2) dedicated high-speed stacking ports and
externa) RPS connector. Total active ports per switch: (24) Gigabit ports + (2) 1GE or 10GE SFP+ ports
.—,
(24) 10/100/1000
RJ45
cambo SFP ports, (2) SFP+, (2) dedicated high-speed stacking
ports and externai RPS connector. Total active ports per switch: (24) Gigabit ports + (2) 1GE or lOGE SFP+ ports
C5K125-24P2
i
C5K125-48
(48) 10/100/1000 RJ45 ports, (2) combo SFP ports, (2) SFP+, (2) dedicated high-speed stacking ports and
externai RPS connector. Total active porte per switch: (48) Gigabit ports + (2) 1GE or 1OGE SFP+ ports
.—
-—
(48) 10/100/1000 PoE (.at + .af) RJ45 ports, (2) combo SFP ports, (2) SFP+, (2) dedicated high-speed stacking
ports and externai RPS connector. Total active ports per switch: (48) Gigabit ports + (2) 1GE or lOGE SFP+ ports
C5K125-48P2
C5K175-24
(24) SFP, (2) SFP+ ports, (2) dedicated high-speed stacking ports and externai RPS connector. Total active porte
per switch: (24) SFP, (2) 1GE or lOGE SFP+ ports
:'.Optiarial SoftwariIicetises
C5L3-LIC
C5 advanced IPv4 (OSPF, PIM-SM, DVMRP and VRRP) and IPv6 routing licensing (OSPF) (per switch)
_
STK-CAB-SHORT
Stacking cable for connecting adjacent B5/C5 switches (30cm)
STK-CAB-LONG
Stacking cable for connecting top switch to bottom switch in a B5 or C5 stack (1m)
STK-CAB-2M
Stacking cable for B5/C5 models (2m)
STK-CAB-5M
Stacking cable for B5/C5 models (5m)
SSCON-CAB
Spare DB9 Console Cable
,,
aa
Power up '
STK - RPS - 1005CH3
3-slot modular power supply chassis (power supply STK-RPS-1005PS sold separately)
STK-RPS-1005PS
1005W 802.3at PoE redundant power supply with load-balancing support
STK-RPS-150CH2
2-slot modular power supply shelf (power supply STK-RPS-150PS sold separately)
--- -8-slot modular power supply shelf (power supply STK-RPS-150PS sold separate)y)
STK-RPS-150CH8
...
STK-R PS-150PS
....
150W non-PoE redundant power supply
Page 10
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
•Transceivers
Service and Support
Enterasys transceivers provide connectivity options for Ethernet over
twisted pair copper and fiber optic cables with transmission speeds from
''100 Megabits per second to 10 Gigabits per second. The Enterasys
C5 includes SFP+ transceivers that can support both 1OGE and 1GE
transceivers. Ali Enterasys transceivers meet the highest quality for
extended life cycle and the best possible return on investment. For
detailed specifications, compatibility and ordering information please go
to httr):/iwww.enlerasys.con:liproducts/transceiversds.ocif.
Enterasys Networks provides comprehensive service offerings that range
from Professional Services to design, deploy and optimize customer
networks, customized technical training, to service and support tailored
to individual customer needs. Please contact your Enterasys account
executive for more information about Enterasys Service and Support.
Warranty
As a customer-centric company, Enterasys is committed to providing
quality products and solutions. In the event that one of our products
fails dueto a defect, we have developed a comprehensive warranty that
protects you and provides a simple way to get your products repaired or
media replaced as soon as possible.
C-Series switches come with the Enterasys lifetime warranty against
manufacturing defects. For full warranty terms and conditions please
go to: ,www.enteríg,ncornisumQrliwarranly :.?m.
Contact Us
For more information, call Enterasys Networks toll free at 1-877-801-7082,
or +1-978-684-1000 and visit us on the Web at enterasys.com
Thought Leadership
' Patented Innovation
O 2012 Enteramfi Netvrerks, Inc. Ali rights resenred. Enterasys Networks reserves the right to change
specifications unthout not ice. Please contact your representative to contirm current specifications.
Please visit httuiftwonmenterasvs.comicernin mitra de marks.asPe ler trademark information.
2376-0712
enterasys'
Secure Networks
Delivering on our promises. On-time. On•budget.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
enterasys®
DATASHEET
Secure Networks-
Data Center Manager (DOM)
Unified Virtual/Physical Data Center Fabric Management
Automated unified provisioning improves
efficiency in the virtualized data center
User based policy management for VDI
improves security and efficiency in a VDI
data center deployment
Overview
Benefits
Lower operational costs
Comprehensive virtual machine
visibility optimizes resource use and
decreases troubleshooting time
•
High degree of automation within
physical and virtual environments
to streamline data center network
provisioning
Integrated workflow process
reduces IT workload and helps
control VM sprawl
•
Predictable behavior and simplified
troubleshooting as a result of
consistent configuration throughout the
network fabric
Vendor agnostic technology supports a
variety of virtualization platforms
•
Reduced workload and increased
coordination of the network, server and
storage teams in an IT organization
Simplified compliance addresses data
center requirements through policy
enforcement and traffic monitoring per VM
Virtualization technologies are increasingly being deployed in the data center because of their
ability to drive the efficiency and effectiveness of computing and storage resources. However, the
dynamic nature of virtualization along with the traditional organizational separation between server
and network management teams can lead to management challenges.
In order to create an agile and automated operational model for the virtualized data center, IT
administrators require a more comprehensive set of automation capabilities, coupled with increased
network visibility and more granular controls. Enterasys Data Center Manager (DCM) addresses
these new operational requirements and provides functions that ensure consistent application
performance and unified management across the physical and virtual network.
DCM provides IT administrators a transparent, cross-functional service provisioning process that
bridges the divide among the server, networking and storage teams, ensuring each has an integrated
view of virtual server and network environments. With a unique vendor agnostic approach, DCM
supports a variety of virtualization, storage and server platforms, enabling the unification of the
physical and virtual network and ensuring networks will have the high availability necessary for
criticai applications and business data.
In addition to server, storage and network virtualization, the VDI (Virtual Desktop Infrastructures)
add-on enables standard desktops to be virtual machines. Users can access their virtual desktop
from various devices like their physical desktops, laptops, thin clients, mobile devices, tablets, or
smartphones. This provides a secure mechanism to support mobile devices and BYOD (Bring Your
Own Device) initiatives. There are many advantages to using VDI including improved service to the
user and reduced operational cost for the support organization. Enterprise security is strengthened
since the data is kept within the data center and is not stored on the device itself. Support costs
decrease because patch management and recovery are centralized and the device accessing the
desktop can easily be replaced with no configuration required. VDI also turns the access control
model upside down — from client side enforcement to serverNM side enforcement. ff is key to
keep the same controls in place in the data center as in a typical fat client environment. The VDI
Integration based on DCM enables user based policy management in the VDI data center to address
this requirement.
Reduced capital costs
•
Open, standards-based approach
optimizes and leverages investment in
the data center infrastructure
•
Extensible architecture supporting a
variety of hypervisor technologies and
vSwitches
•
Adaptable to future technological
advancements
Improved management control
•
Beber visibility and ability to audit the
network via policy-based management
•
More granular visibility over traffic and
current/historical data makes it easier
to incorporate VMs frito the network
•
Secure delivery of VDI applications to
mobile devices
vrnwa re.
PARTNER
Nde0G
NC
CiTRIPC
ready'
There is nothing more important
than our customers.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Unified Management
Traditionally, data center connectivity spans physical, virtual and
storage networks using separate tools and management systems. To
unify a data center network, it is necessary to have an integrated view
of the network infrastructure, servers, storage systems and applications.
The Enterasys Data Center Manager solution is designed to reduce
the workload and increase the efficiency of the IT organization.
Coordinating the automated assignment of virtual machines (VMs)
within both the virtual and physical network fabrics, DCM ensures that
proper network resources are allocated when a VM is provisioned, no
matter where it is on the network. This is achieved
with DCM's unique ability to automatically apply individual policies to
various data objects in the switching fabric, solving the challenge of
virtual machine sprawl. The use of granular policies, combined with
Enterasys flow-based switching, helps users realize the goals of high
availability and reliable delivery. With this approach, operational costs are
lowered by providing a higher degree of automation as well as systemlevei management
Enterasys Data Center Manager provides real-time VM asset monitoring
and historical location tracking within NetSightTM, Enterasys network
management solution. NetSight delivers the centralized visibility,
granular control and automation required for the efficient management
of this capability. NetSight is distinctive for granularity that goes beyond
ports and VLANs down to individual users, applications and protocols.
Built upon open standards, it can integrate with third-party enterprise
management platforms. NetSight enables staff to avoid time-consuming
manual switch-by-switch configuration tasks.
DCM brings the integrated tracking of a virtual machine and its
applications to NetSight. The synchronization of asset information into
NetSight through DCM allows the network team to have full visibility into
VM-specific asset data for ali the major hypervisors, including vSphere
and/or XENCenter and/or Microsoft Hyper-V via Windows Server 2008.
Operationally, NetSight with DCM lowers costs by automating virtual
network modifications and improving management control with granular
visibility of network traffic and virtual machine data.
Integrated Workflow Process
Automated Provisioning
An important part of managing today's virtualized environment is the
automatic application of individual and unique policies to various
data objects in the switching fabric, including mobile VM sessions,
users, applications and storage traffic. Enterasys Data Center Manager
establishes network profiles for physical and virtual machines and
distributes them within the network fabric, as well•as coordinates the
profile assignment of virtual machines to ensure consistent delivery of
services regardless of the physical location of the VM.
DCM ensures that when network configurations are made, communication
between the network and virtual switch (vSwitch) is greatly improved
and configuration mismatches are eliminated. Each group within the IT
organization has insight across the entire data center — servers, storage and
networks. When the networking team makes a change, such as setting the
quality of service (QoS) for an application, that change is automatically
propagated across the corresponding VM. This cuts down on the manual
steps needed when, for example, the server team puts in a request to the
networking team for provisioning a new server. lnstead, the change can be
automatically applied to the network.
The organizational benefits of DCM include:
•
Streamlining virtual network configuration to reduce the chance of
errors as well as enable faster troubleshooting
•
Eliminating the need to constantly communicate network or virtual
network changes between teams
•
Enterasys Data Center Manager integrates with existing workflow and
lifecycle tools to provide cradle-to-grave visibility into virtualized and
physical assets, and to automate the physical and virtual network
configurations for virtual machines. DCM requires no software installation
on the hypervisors. Instead, it leverages each vendor's APIs and Enterasys
published APIs to provide automated inventory discovery and control of the
hypervisor switch (VMware, Citrix XEN, Microsoft Hyper-V) configuration as
well as management of the physical network configuration.
DCM is designed to reduce disruption to the IT workflow and increase
the efficiency of the organization. IT administrative efforts can be
decreased with the automation of routine tasks and integration of existing
management systems. User-based and application-based policies save
time and avoid costly errors when compared to traditional port-based
and VLAN-based access control list (ACL) methods for network security
and application provisioning. The end result is an automated data center
which ensures resiliency, performance and data integrity.
Vendar Agnostic Technology
Enterasys Data Center Manager interfaces directly with the native
operating system. Server and VM visibility and control are provided
without bias to the server or operating system vendor. IT administrators
have the freedom to choose the server vendor that best fits their
requirements. DCM integrates with popular server virtualization products
from Citrix, Microsoft and VMware. This capability is unique to Enterasys,
providing the IT organization with unparalleled flexibility to choose from
any of the leading server virtualization vendors.
Ensuring consistent network policy across ali data center clusters
Simplified Compliance
Visibility, Tracking and Monitoring
Tracking and monitoring the virtual machine inventory of a typical
data center can be challenging and time consuming. IT administrators
often find it difficult to know how many VMs are on the network,
when they were deployed and by whom. Discovering which resources
were allocated to the VMs and what operating system images they are
running becomes even more problematic. To make the provisioning and
management of VMs efficient, inventory information must be integrated
with network management.
Given the security and compliance mandates for data center design, the
Enterasys network infrastructure provides built-in security functionality
for auditing data center networks. This functionality assists in tracking
compliance with PCI, Sarbanes Oxley, ISO 17799 and other key industry
regulations without the need for add-on appliances.
Enterasys Data Center Manager allows administrators to determine who
has access to network resources, which devices can access the network
and when, as well as the compliance levei of each end system attempting
to access the network.
Page 2
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
DCM enables control of VM-to-VM communication and leverages
hardware-based unsampled NetFlow, provided by the Enterasys S-Series,
for application and behavior monitoring. By automating provisioning
processes, increasing network visibility and flagging control deficiencies,
DCM helps to simplify compliance and the costs associated with it.
Enterasys Data Center Manager leverages an Enterasys NetSight
deployment with authentication via Mobile IAM or NAC appliances in the
Service Overview
Minimum requirements
Enterasys Data Center Manager helps IT administrators understand
the current state of the network and determine resource availability to
ensure that their business objectives are met. DCM is delivered through
a combination of NetSight, middleware and integration services that
interact with virtualization-enabled switches from Enterasys. This offering
also includes planning, product specific configuration, integration,
and end-to-end testing of network communications. The Enterasys
Professional Services organization provides the following services:
•
Enterasys NetSight version 3.3.1.25 or higher, including NAC Manager
•
Java 6 Update 18 or higher
•
Enterasys switches with appropriate scale (number of sessions) of the
•
VMware ESX 4.0 or higher
•
•
Optional: VMware vCenter Server 4 Standard for vSphere with license
Implementation of software that integrates with the Enterasys
Requirements
data center and requires the following hardware and software elements to
be implemented prior to the arrival of the Enterasys Professional
multi-user authentication and policy feature at connected server ports
Requirements for use with VMware
"VMware vSphere 4 Enterprise Plus" for using distributed vswitches
NetSight API as well as with the virtual infrastructure API
•
Configuration of the Enterasys NetSight components
•
Virtual infrastructure integration with Enterasys NetSight. This part of
(if VM isolation is required) or higher
Requirements for use with Citrix XEN
the service performs the integration between VMware vSphere/Citrix
•
XenCenter/MS Hyper-V and Enterasys.
Requirements for use with VMware View
Data Center Manager Leveis of Service:
XenServer 5.5 with XENCenter or higher
Ali of the Vmware vCenter, ESX requirements apply. The integration of
Basic Implementation: PS-DCM-basic works with NetSight
configuration and modeling to conduct the basic virtual data
center integration. It is limited to a maximum of 10 hosts, a
single Hypervisor Technology (VMware vSphere, Citrix XENServer
or MS Hyper-V), 100 VMs on the network, and a single Enterasys
NetSight Server. Upon implementation, a maximum of 2 VM roles
including rules will be created to show and validate the overall
architecture.
VMware View does not require any special tool or software to integrate
Advanced Implementation: PS-DCM-advanced works with NetSight
configuration and modeling to conduct the virtual datacenter
integration. It is limited to a maximum of 50 hosts, any number
of supported Hypervisor Technologies (VMware vSphere, Citrix
XENServer, MS Hyper-V), 1,000 VMs on the network, and a single
Enterasys NetSight Server. Upon implementation, a maximum of
5 VM roles including rules will be created to show and validate the
overall architecture.
authentication via 802.1x is not available. Please see the VMware View
VDI documentation for further information regarding the setup procedure.
•
Enterasys DCM XenDesktop Agent
VDI integration: PS-DCM-VDI is an add-on option that enables
assignment of user-based policies per virtual desktop for virtual
desktops running Citrix XenDesktop or VMWare View.
•
Enterasys NetSight 4.3.0 or above
beyond the DCM integration. The virtual desktops simply need to be
configured to use 802.1x and users have to use the View Client to access
those desktops via PColP in order to allow user-based authentication.
The Enterasys S-Series with S150, S155 modules is suitable to
authenticate each virtual desktop individually and apply a policy based
on the username. In addition to that, standard DCM operation may be
used to provision a rule for the connected port group of each VM, if user
XenDesktop Adapter — additional requirements
•
XenDesktop 5.1
• Windows Powershell 2.0 and Microsoft .NET Framework 3.5 SP1
or later
Requirements for use with Microsoft Hyper-V
•
Windows Server 2008 R2 with Hyper-V support
•
A domain user account with Administrator rights on the server (to
•
The following two services must be running on the server: Server
The integration with XenDesktop is a one-way integration:
username information is retrieved on virtual desktops and
used within the Enterasys NAC and Mobile IAM and nothing is
written from NetSight to XenDesktop or even actively change any
configuration within XenDesktop. The username from XenDesktop
can also be used to automatically assign a policy to each user as
you could do with any 802.1X or Kerberos username.
The deployment is limited to 500 virtual desktops for the DCM
basic service and 5000 for the DCM advanced service.
The service to be delivered will be limited to the functions and scale as
stated herein. The following activities are not part of the scope of work. If
needed, these items can be ordered and purchased separately.
access the COM objects remotely) or in the Remote Users group
Service and Remote Registry Service
Exclusions
•
DCM implementations beyond the basic and advanced deployments
are possible. Please consult your Enterasys Sales Representative for
assistance.
NAC, Mobile IAM implementation - with Authentication, Authorization
or/and with Assessment and Remediation
•
Integration of ali network components into Enterasys NetSight
including topology and alarm/event configuration
Page 3
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Services Engineer:
• Fully functional NetSight system and NAC, Mobile IAM appliances as
described before with access to the hypervisor management APIs. It is
recommend to have dedicated physical NAC, Mobile IAM appliances
for this but not mandatory. Sharing NAC, Mobile IAM appliances with
the access network deployment or using VM-based NAC, Mobile IAM
appliances is possible.
• VMWare vSphere 4, Microsoft Windows Server 2008 R2 with Hyper-V
or XenServer 5.5 is required in order to support the necessary APIs
• Hardware for the management components must be provided by the
customer. The recommended product is the S-Series with S150 or S155
class modules. Minimum requirement is either an S-Series with S130
class modules and license upgrades for per port capacity or N-Series
with similar license upgrades to accommodate the authentication of the
number of end systems (VM) per port and per chassis.
Ordering Information
L
Part Num ber
Description
PS-DCM-basic
Enterasys PS NMS Data Center Manager DCM — basic
PS-DCM-advanced
Enterasys PS NMS Data Center Manager DCM — advanced
PS-DCM-VDI
Enterasys PS NetSight Data Center Manager — VDI add-on for basic and advanced
Contact Us
For more information, can Enterasys Networks toll free at 1-877-801-7082,
or +1-978-684-1000 and visit LIS on the Web at enterasys.com
Thought Leadership
r„ Patented Innovation
02012 Enterasys Networks, Inc. Ali rights reservai. Enterasys Networks reserves the right to change
specifications wlthsol notice. Please centact your representative to confirm current specitications.
Please visit htto://wNwenteramm,com/companyArademarks.asox for trademark information.
2371-0712
enterasyer
Secure Networks'
Delivering on our promises. On-time. On-budget.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
enterasys'
DATASHEET
Secure Networks .
Enterasys S-Series®
Terabit-class, Convergence-ready, Modular Switch for Edge-to-Core and Data Center Deployments
Terabit-class performance with
granular traffic visibility and control
Automated network provisioning for
virtualized, cloud, and converged
voice/video/data environments
Benefits
Business Alignment
High availability features including
self-healing maximize business
continuity for criticai applications
Versatile high density solution with
highly flexible connectivity and power
opt.ions reduces cost of ownership
Greater than 6 Tbps backplane
capacity with 1.28 7 bps switching
capacity and 960 Mpps throughput
•
multi-Terabit architecture for secure,
reliable deployment of business-criticai
applications
•
Best-in-class Quality of Service
functionality for predictable performance
of demanding voice, video, and data
applications
•
Flow-based architecture deliver, unrivalled
end-to-end visibility and control over
users, services, and applications ensuring
consistent end-user experience
Product Overview
The Enterasys S-Seriesc' delivers a powerful combination of Terabit-class performance along with
granular visibility and control over users, services, and applications to meet the increasing demands
of today's businesses and enable optimization of key technologies including voice and video,
virtualization, and cloud computing. Unlike competitive solutions lacking comprehensive centralized
management and adequate high availability services, the Enterasys S-Series drives down operational
costs through a combination of management automation, a robust and highly resilient distributed
architecture, built-in security, and flexible power configurations specifically designed to reduce
power and cooling costs. The highly versatile Enterasys S-Series delivers both the comprehensive
functionality and configuration flexibility to be deployed as a premium high-density network edge
accêss device, high performance distribution layer switch, resilient enterprise class multi-Terabit core
router, or as a data center virtualization solution.
Enterasys S-Series switches are available in the following form factors:
•
S-Series Stand Alone (SSA) system with 48 ports of Triple Speed Ethernet or 48 ports of
Gigabit Ethernet SFP connectivity and 4 ports of 10 Gigabit Ethernet SFP+ connectivity
•
1-slot chassis offering up to 72 ports of Gigabit Ethernet or 16 ports of 10 Gigabit
Ethernet connectivity
•
3-slot chassis offering up to 180 ports of Gigabit Ethernet or 12 ports of 10 Gigabit
Ethernet connectivity
•
4-slot chassis offering up to 288 ports of Gigabit Ethernet or 64 ports of 10 Gigabit
Ethernet connectivity
• 6-slot chassis offering up to 432 ports of Gigabit Ethernet or 96 ports of 10 Gigabit
Ethernet connectivity
• 8-slot chassis offering up to 576 ports of Gigabit Ethernet or 128 ports of 10 Gigabit
Ethernet connectivity
The S-Series provides a highly resilient distributed switching and routing architecture with
management and control functions embedded in each module, delivering unsurpassed reliability,
scalability, and fault tolerance. Organizations can cost-effectively add connectivity as needed while
scaling performance capacity with each new module. The highly available architecture makes
forwarding decisions, and enforces security policies and roles while classifying/prioritizing traffic at wire
speed. A111/0 modules provide the highest Quality of Service (QoS) features for criticai applications
such as voice and HD video even during periods of high network traffic load while elso proactively
preventing Denial of Service (DoS) attacks and malware propagation.
A future-proofed, standards-based
• Built-in hardware support for 40 and 100
Gbps Ethernet, emerging protocols (IPv6)
and large scale deployment protocols
(MPLS)
Operational Efficiency
•
Edge-to-core architecture flexibility
reduces deployment and maintenance
costs and simplifies network rnanagement
•
Managernent automation and built-in
resiliency features combine to drive down
operational costs and maximim uptime
•
Optimized flow-based architecture for
iSCSI, CEE, and virtualization enabling
consolidation of servers, applications,
and storage, while reducing data center
operational costs
•
Flexible power configurations optimized
for iow power consumption and thermal
output drives down data center pcwer and
cooling costs
•
High-densiV smali fonn factor chassis
providing over 1700 porta in a standard
equiprnent rack that reducesfootprint
costa and scales from hundreds of
Gigabits to multi-Terabit performance
There is nothing more important
than our customers.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
The S-Series implements an industry-leading, flow-based switching architecture to intelligently
manage individual user and application conversations—far beyond the capabilities of switches that are
limited to using VLANs, ACLs, and ports to implement role-based access controls. Users are identified
and roles are applied to ensure each individual user can access their business-critical applications no
matter where they connect to the network. S-Series policy rules combined with deep packet inspection
can intelligently sense and automatically respond to security threats while improving reliability and
quality of the user experience.
Benefits (cont.)
Security
A significant differentiator for the S-Series is the ability to collect NetFlow data at wire-speed on
every port, providing total visibility into network resource consumption for users and applications. The
S-Series is the only enterprise switch to support multi-user, multi-method authentication on every port
— absolutely essential when you have devices such as IP phones, computers, printers, copiers, security
cameras, badge readers, and virtual machines connected to the network. When quality of service, device
and application prioritization, and security matters there is no better choice than the Enterasys S-Series.
•
Unrivalled capabilities to protect
business traffic from malicious attacks
and maintain information confidentiality,
integrity, and availability
•
Built-in not bolted-on security reduces
co st of ownership and network
administration complexity
•
Multi-method network access control
and role-based security that extends
to existing edge switches and wireless
access points allowing authentication
of thousands of users or devices
simultaneously on a single port
System Summary
The Enterasys S-Series family of flow-based switches brings high performance distributed switching
to the network access layer, distribution layer, enterprise/campus core, and data center. The
S-Series family consists of the 8-slot S8, 6-slot S6, 4-slot S4, the 3-slot S3, 1-slot S1 and the fixed
configuration S-Series Stand Alone (SSA). The S-Series delivers some of the highest switching port
densities per rack unia available in the rnarket and is future-proofed and scalable to provide overall
system capacities of up to six Terabits. Ali chassis support 802.3af and 802.3at (high power)
standards-based PoE via an integrated or field installable power system. There are a variety of I/O
modules designed and optimized for deployment at the network access layer, distribution layer,
network core and data center that provide a broad array of connectivity options for copper and fiber
cabling infrastructures.
SSA130
SSA150
-
Chassis Slots
Support and Services
•
Industry-leading customer satisfaction
and first call resolution rates
•
Personalized services, including site
surveys, network design, installation,
and training
SI
S3
S4
S6
1
3
4
6
S8
.1
8
,-System Switching Capacity
40 Gbps
120 Gbps
160 Gbps
120 Gbps
640 Gbps
960 Gbps
1.28 Tbps
System Switching Throughput
30 Mpps
90 Mpps
120 Mpps
90 Mpps
480 Mpps
720Mpps
960 Mpps
-
.
240 Gbps
480 Gbps
3 Tbps
4.5Tbps
6 Tbps
48
48
72
180
288
432
Total Backplane Capacity
...
Maximum 10/100/1000BASE•TX Class 3 PoE
ports per system
Maximum 1000BASE-X SFP (MGBIC) ports per system
Maximum 10GBASE-X SFP+ ports per system
576
....
48
72
180
4
16
12
I
288
432
576
64
96
128
Architectural Overview
Forwarding Architecture
The Enterasys S-Series chassis utilize both fabric-based point-to-point and fabric-less meshed forwarding
architectures. The Si, S4, S6, and S8 chassis use a fabric-based forwarding architecture that provides
multiple high bandwidth data paths between I/O modules, while the S3 chassis provides a high
performance, fabric-less meshed forwarding architecture ideally suited for highly available network edge
wiring closet deployments. Ali chassis are optimized for redundant high performance switching and
routing as well as providing flexible connectivity and the ability to add features and scale performance as
required and as new technologies become available.
1/0 fabric modules provide scalable, high performance data paths as well as a full complement of front
panei interfaces with flexible modular interface options. A single I/O fabric may be used in either an
Si, S4, S6, or an S8 chassis, however, the use of two I/O fabrics creates a load sharing fabric pair that
provides up to 1280 Gbps switching capacity and adds high-availability features. The S8 and S6 chassis
augrbents the load sharing fabric pair by allowing the addition of a third I/O fabric module, increasing
the system reliability and performance in the unlikely event of an I/O fabric failure. An S8 system with
two I/O fabrics installed will gracefully reduce the fabric switching capacity by 50% in the event of an I/O
fabric failure, however, when a third I/O fabric is installed the system will maintain a full 1280 Gbps of
switching performance if an I/O fabric module were to fail. The load sharing fabric architecture ensures
the highest availability and performance for the most demanding and mission-critical networks.
Page 2
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
and flexibility to ensure compatibility with today's high performance
workstations, as well as legacy devices, while providing the highest levels of
QoS, security, and bandwidth control via flow-based switching.
Enterasys S-Series 1/0 modules are high performance, fully-featured
switch routers that deliver a fully distributed switching system as well as
management and route processing capabilities, where each module is
individually driven and managed by on-board processors. Enterasys flowbased ASICs, together with firmware microprocessors, create a traffic control
solution that delivers high performance and flexibility. This distributed ASICbasád architecture increases processing power as modules are added for a
higher levei of scalability and flexibility.
S130 class 1/0 modules include a unique feature that enables full line
rate forwarding for bandwidth hungry workstations or when downstream
switches are connected. Flex-Erige technology provides line rate foiwarding
through the switch even when the systems uplinks are in an oversubscribed
state; this ensures that critica' and time sensitive data pass through the
switch to its destination at line rate, unlike inefficient rnethods used by
other solutions on the market.
I/O fabrics and I/O modules are available with a wide array of interface
types and port densities (10/100/1000BASE-TX, 1000BASE-X SFP, and
10GBASE-X SFP+) to address varied network requirements. Ali triple speed
copper 1/0 modules are PoE-enabled. A number of I/O modules also include
either one or two option-module slots; an option-module slot provides
additional media and port speed connectivity via triple speed copper, Gigabit
SFP and 10 Gigabit SFP+ Ethernet option modules. This further simplifies
network design and reduces the cost of network deployments. All S-Series
1/0 Fabrics and 1/0 Modules include very deep packet buffers per port to
avoid dropped packets in the event of network congestion.
S130 class 1/0 modules support up to 512 users or eight authenticated users
per port in contrast to S150 class modules which support up to 1,024 usersi
devices per module with no restriction to the number of users per port. In cases
where an S130 class I/O module needs to support more than 8 authenticated
users per port, a software upgrade license inay be purchased and applied to
the module that removes this restriction. The S-EOS-PPC license is required
for each S130 class I/O module that needs the 8 users per port restriction
removed. Only one S-EOS-PPC license is required for the S130 class SSA
switch. Ali S-Series triple speed I/O modules support PoE as standard, no
additional daughter cards or software is required.
All S-Series 10 Gigabit Ethernet SFP+ ports are dual speed and will
also accept standard Gigabit SFP transceivers. This capability enables a
smooth migration path from Gigabit Ethernet for connecting devices to 10
Gigabit Ethernet in the future. Customers can use Gigabit Ethernet optical
uplinks today and migrate to 10 Gigabit at their own pace. In addition, ali
Gigabit SFP ports will accept Fast Ethernet 1.00BASE-FX SFPs to enable
S150 Class I/O Modules
A selection of S-Series 1/0 modules are designed for use in the most
demanding areas of the network where sustained high volumes of traffic are
most common. Gigabit and 10 Gigabit Ethernet modules that incorporate
advanced traffic management mechanisms and large packet buffers ensure
optimal network performance and predictable reliability. S150 class 1/0
modules are optimized for the highly demanding performance and throughput
requirements of enterprise network cores and data centers with high density
line rate Gigabit and 10 Gigabit connectivity as well as industiy-leading port
type flexibility. S150 class 1/0 modules support the fuli range of Enterasys
features and can be upgraded with advanced routing features as needed.
connection of legacy devices.
S130 Class 1/0 Modules
S130 class I/O modules are optimized for use in wiring closets for user
connectivity, in the distribution layer to aggregate edge switches, and in sinal'
and medium network cores. These modules provide high density with media
flexibility and support for IEEE 802.3af PoE and IEEE 802.3at high power PoE
standards. S130 class 1/0 modules deliver scalable triple speed performance
1/0 Fabric and 1/0 Module Specifications
S130 Class 1/0 Modules
S150 Class 1/0 Modules
S130 I/O Fabric
Modules
S150/155 I/O Fabric Modules
Network
Applications
Wiring Closet, Distribution
Layer, Small Network Core
Distribution Layer, Server Aggregation,
Data Center Core, Enterprise/
Campus Core
Wiring Closet,
Distribution
Layer, Smali
Network Core
Distribution Layer, Server Aggregation, Data
Center Core, Enterprise/Campus Core
Part Number
ST4106-0248
SG4101-024 8
ST1206-0848
SG 1201-0848
SK1008-0816
ST4106-0348-F6
ST1206-0848-F6
ST5206-0848-F6
SG 1201-0848-F6
SG5201-0848-F6
S3/S4/S6/S8
Chassis
53/54/S6/S8
Chassis
S4/S6/S8
Chassis
S4/S6/S8
Chassis
S4/S6/S8
Chassis
S1/S4/S6/S8
Chassis
S1/S4/S6/S8
Chassis
51/54/S6/S8
Chassis
RJ45
SFP
RJ45
SFP
SFP+
RJ45
RJ45
SFP
Used in
Port Type
Port Quantity
Port Speed
48
48
10/100/1000
Mbps
1000 Mbps
48
10/100/1000 1
Mbps
Sl/S4/56/58
Chassis
1,
SFP+
.
I
—1.-
10 Gbps
.
48
16
48
48
48
10 Gbps
10/100/1000
Mbps
10/100/1000
Mbps
1000 Mbps
802.3af.
802.3at
802.3af,
802.3at
1, (Type2)
2, (Type 2)
2, (Type 2)
2, (Type 2)
120 Mpps
45 Mpps
120 Mpps
:20 Mpps
120 Mpps
160 Gbps
60 Gbps
160 Gbps
160 Gbps
160 Gbps
480 Mpps
480 Mpps
480 Mpps
480 Mpps
802.3at,
802.3at
Option
Module Slots
1, (Typel)
1, (Typel)
2, (Type2)
2, (Type2)
Module
Throughput
30 Mpps 30 Mpps
120 Mpps
120 Mpps
I/O Switching
Capacity
40 Gbps
160 Gbps
160 Gbps
Fabric
Throughput
!
1000 Mbps
PoE Support
802.3af,
802.3at
40 Gbps
SK1208-0808-F6
SK5208-0808-F6
;
8
Page 3
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Performance/Capacity
Switching Fabric Bandwidth
1280 Gbps Load Sharing Fabric Pair
VLANs Supported
4094
Switching Throughput
960 Mpps (Measured in 64-byte packets)
Transmit Queues
11 for S130/S150
15 for S155
IPv4/1Pv6 Routing Throughput
960 Mpps (Measured in 64-byte packets)
(Capacities above are for an S8 System)
Address Table Size
65k MAC Addresses
Classification Bules
57k/chassis
Packet Buffering
Chassis
Si
S3
S4
S6
S8
SSA130 Class
SSA150 Class
Buffer Size (Max.)
2GB
1.5GB
8GB
12GB
16GB
1.0GB
1.5GB
Memory
Main Memory S130/S150: 1 Gb Per Module
Main Memory S155: 2 Gb Per Module
Flash Memory: 1 Gb Per Module
Hardware-Based High Availability Features
The S-Series includes many standard high availability features. These hardware-based high availability features allow the S-Series to be deployed in
mission criticai environments that require 24/7 availability.
The S-Series supports the following hardware-based high availability features:
•
Passive chassis backplane in the Si, S3, S4, S6, and S8 chassis
•
Meshed backplane architecture in the S3 chassis
•
Hot swappable fan trays with multiple cooling fans
•
Separate system and PoE power supplies
•
Hot swappable power supplies
•
Multiple AC input connections for power circuit redundancy
•
Load sharing/redundant I/O fabrics in the S4, S6, and S8 chassis
•
N+1 fabric redundancy in the S8 and S6 chassis
•
Hot swappable I/O fabrics and I/O modules
•
Multiple host CPU for N+X redundancy
• Virtual Switch Bonding (bonds two physical switches to create a single Iogical switch)
Optimizec, High-Availability and Self Healing Services
Aside from the standard high-availability features of typical wiring closet and data center switches, the Enterasys S-Series includes many advanced self
healing features such as dynamic service fail-over, automatic module self-configuration, and multi-image support.
Dynamic service fail-over enables each 1/0 module service (e.g., management, switchingNLANs, routing, etc.) to be automatically switched to another 1/0
module in an event of module or process failure. This "self healing" capability happens in milliseconds because each service is replicated in real-time on
every I/O fabric and 1/0 module.
Automatic module self-configuration is another innovative feature that allows 1/0 modules to receive their configuration from other 1/0 modules
automatically. This is ideal for replacing failed modules without manually reconfiguring the replacement module.
The Enterasys S-Series allows users to download and store multiple firmware image files; this feature is useful
for reverting back to a previous version in the event that a firmware upgrade fails. This multi-image support
provides significant operational efficiencies especially with regard to the application of firmware patches.
Distributed, Fiow-Based Architecture
In order to ensure granular visibility and manage of traffic without sacrificing performance, the Enterasys
S-Series deploys a distributed, flow-based architecture. This architecture ensures that when a specific
communications flow is being established between two end points, the first packets in that communication
are processed through the multilayer ciassification engines in the switch 1/0 modules and I/O fabric modules.
In this process, the role is identified, the applicable policies are determined, the packets are inspected,
and the action is determined. After the flow is identified, ali subsequent packets associated with that flow
are automatically handled in the Enterasys ASICs without any further processing. In this way the Enterasys
S-Series is able to apply a very granular levei of control to each flow at full line rate.
Iero,daythreat comi,
Page 4
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Multi-User/Method Authentication and Policy
Authentication allows enterprise organizations to manage network access and provide mobility to users and devices. It provides a way to know who or
what is connected to the network and where this connection is at any time. The Enterasys S- Series has unique, industry leading capabilities regarding
types of simultaneous authentication methods. S-Series modules can support multiple concurrent authentication techniques, including:
•
t302.1X authentication
•
MAC authentication, which is a way to authenticate devices on the network using the MAC address
•
Web-based authentication, also known as Port Web Authentication (PWA). where a user name and password are supplied through a browser
•
CEP, also known as Convergence End Point, where multiple vendors VoIP phones are identified and authenticated; this capability provides great
flexibility to enterprises looking to implement access control mechanisms across their infrastructure
Enables simplified
user/device identification
User authenticated/access and application control enforced
here- up to 1024 useis per port or up to 9000 users per
system
A significant additional feature of the S-Series is the capability to support multi-user authentication. This allows multiple users and devices to be
connected to the same physical port and each user or device to be authenticated individually using one of the multi-method options (802.1x, MAC,
PWA. or CEP). The major benefit of multi-user authentication is to authorize multiple users, either using dynamic policy or VLAN assignment for each
authenticated user. In the case of dynamic policy, this is called Multi-User Policy. Multi-user port capacities with the S-Series are determined on a per
port, per 1/0 module, and per multi-slot system basis. Default 1/0 module capacities are detailed below.
Muti-user authentication and policy can provide significant benefits to customers by extending security services to users connected to unmanaged
devices, third party switches/routers, VPN concentrators, or wireless LAN access points at the edge of their network. Using authentication provides
security, priority, and bandwidth control are enhanced while protecting existing network investments. The S-Series supports up to 9000 concurrently
authenticated users in a single system.
Page 5
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Dynamic, Flow-Based Packet Classification
Another unique feature that separates the
Enterasys S-Series from all competitive
switches is the capability to provide UserBased Multi-layer Packet Classification/QoS.
With the wide array of network applications
used on networks today, traditional Multi-layer
Packet Classification by itself is not enough
to guarantee the timely transport of businesscriticai applications. In the S-Series, User-Based
Multi-layer Packet Classification allows traffic
classification not just by packet type, but asso
by the role of the user on the network and the
assigned policy of that user. With User-Based
Multi-layer Packet Classification, packets can
be classified based on unique identifiers like
"Ali Users", "User Groups", and "Individual
User", thus ensuring a more granular approach
to managing and maintaining network
confidentiality, integrity, and availability.
Criticai Topology
• OSPF Routing
• STP
• RIP
Business Applications
• VOIP
• SAP/Oralce App's
Best Effort
• I-ITTP
• email
• FTP
Individual Servers/Users
sys enefi
N
óiv
• use 8
• Contata
• Fiows
3. Class of Service
• PriorityPoS,
• sers
• Applications
Prioritization
Granular Control
• Rate Limit
* Rale Shaping
Network Visibility From
High Fidelity NetFlow
Network performance management and security capabilities via NetFlow are available on every Enterasys S-Series switch port without siowing down
switching and routing performance or requiring the purchase of expensive daughter cards for every module. Enterasys NetFlow tracks every packet in
every flow as opposed to competitor's statistical sampling techniques or restrictive appliance-based implementations. The value of unsampled, real-time
NetFlow monitoring is the visibility into exactly what traffic is traversing the network and if something abnormal occurs it wili be captured by NetFlow
and appropriate action can be applied. Additionally, NetFlow can be used for capacity pianning allowing the network manager to monitor the traffic
flows and volumes of traffic in the network and understand where the network needs to be reconfigured or upgraded. This will save time and money,
by enabling adrninistrators to know when and where upgrades might be needed. The S-Series flow monitoring capabilities are industry leading, it can
concurrently monitor in excess of 70,000 flows per second, a far greater capacity than any other vendors switch or router.
Feature Summary
Unified Cross-Platform Operating System
The Enterasys S-Series firmware adds the benefit of becoming a multi-platform operating system that unifies the Enterasys N-Series and S-Series into
a single firmware image that operates on both platforms ensuring feature parity and consistent operation across the flow-based switches. This provides
many customer benefits: reduced TCO via a single, unified operating system from network edge/access layer to the network core and data center, feature
and function consistency across platforms, and easy deployment and upgrades to ensure operational efficiency.
Integrated Services Design
Integrated services design is a key differentiator that separates the Enterasys S-Series from the competition. Integrated services design reduces the
number and type of modules required to build typical wiring closet configurations, simplifying the overall network design. In turn, this significantly
reduces the maintenance and sparing cost as each 1/0 fabric or 1/0 module can perform ali of these services, unlike competitive offerings with multiple
dedicated module types for each specific service.
Multi-layer packet classification — enables the delivery of criticai applications to specific users via
traffic awareness and control
•
User, Port, and Device Level (Layer 2 through 4 packet classification)
•
QoS mapping to priority queues (802.1p & IP ToS/ DSCP) up to 11 queues/port for S 130/S 1 50; 15 queues/port for S155
•
Multiple queuing mechanisms (SPQ, WFQ, WRR, and Hybrid)
•
Granular QoS/rate limiting
•
VLAN to policy mapping
Page 6
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
SwitchingNLAN services - provides high performance connectivity,
aggregation, and rapid recovery services
• Extensive
industry standards compliance (IEEE and IETF)
•
lnbound and outbound bandwidth rate control per flow
•
VLAN services support
Link aggregation (IEEE 802.3ad)
—Multiple spanning trees (IEEE 802.1s)
— Rapid reconfiguration of spanning tree (IEEE 802.1w)
• Provider Bridges (IEEE 802.1ad), Q-in-Q Ready
• Flow setup throttling
Distributed IP Routing - provides dynamic traffic optimization, broadcast
containment, and more efficient network resilience
•
Standard routing features include static routes, OSPFv2, RIPv2,1Pv4, and Multicast routing support (DVMRP, IGMP vl/v2/v3, PIM-SM), Policy
Based Routing and Route Maps, and VRRP
•
Extended ACLs
•
S150 class 1/0 Modules and I/O fabric modules include all standard IP routing features and also include the following features:
—NAT (Network Address Translation)
— LSNAT (Load sharing Network Address Translation) for server load balancing
—TWCB (Transparent Web Cache Balancing) redirects web page requests to local web cache servers to efficiently manage web access bandwidth and
increase web page response time
•
S155 class fabric modules have all the standard IP routing features and deliver a hardware upgrade to enhance protocol capacities including:
—BGP: Larger route tables (Multiple copies of internet tables)
—Enhanced queuing
—Virtual Switch Bonding
Security (User, Network, and Management)
•
User security
— Authentication (802,1X, MAC and PWA+, CEP), MAC (Static and Dynamic) port locking
— Multi-user authentication/policies
•
Network security
—Access Control Lists (ACL) — basic and extended
—Policy-based security services (exarnples: spoofing, unsupported protocol access, intrusion prevention, DoS attacks
•
Management Security
— Secure access to the S-Series via SSH. SNMP v3
Management, Control, and Analysis - provide streamlined tools
for maintaining network availability and health
• Configuration
—Industry-standard CLI and web management support
—Multiple firmware images with editable configuration files
• Network Analysis
—SNMP vl/v2c/v3, RMON (9 groups), and SMON (rfc2613) VLAN and Stats
— PortNLAN mirroring (one-to-one, one-to-many, many-to-many)
— Unsampled NetFlow on every port with no impact on system switching and routing performance
• Automated set-up and reconfiguration
—Replacement 1/0 module will automatically inherit previous modules configuration
— New modules added to chassis will automatically be updated with active configuration and firmware
Page 7
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Feature-Rich Functionality
Examples of additional functionality and features that are supported by the Enterasys 5-Series:
• NetFlow - Provides real-time visibility, application profiling, and capacity planning
• Server Load Balancing - Enabled via LSNAT without requiring costly externai server load balancing hardware and software
•
NAT - Network Address Translation (NAT) streamlines IP addressing and IP address management schemes
•
LLDP-MED - Link Layer Discovery Protocol for Media Endpoint Devices enhances VoIP deployments
• Flow Setup Throttling - (FST) effectively preempts and defends against DoS attacks
• Web Cache Redirect - Increases WAN and Internet bandwidth efficiency
•
Node & Alias Location - Automatically tracks user and device location and enhances network management productivity and fault isolation
•
Port Protection Suite - Maintain network availability by ensuring good protocol and end station behavior
• Flex-Edge Technology - Provides advanced bandwidth management and allocation for demanding access/edge devices
• Virtual Switch Bonding - Provides increased resiliency and performance by combining two or more physical switches to create a single logical switch
• High Availability Firmware Upgrade (In-Service Software Upgrade) - System software upgrade without service interruption
• Secure https switch management via NetSight OneView
Network performance, management, and security capabilities via NetFlow are available on every S-Series1/0 Fabric and 1/0 Module without affecting
switching/routing performance or requiring the purchase of expensive daughter cards for every blade. The S-Series tracks every packet in every flow unlike
competitor's statistical sampling techniques. The Enterasys advantage is the Enterasys ASIC capabilities that collect NetFlow statistics for every packet
in every flow without sacrificing performance. Enterasys S-Series switches can output 9,000 flow records per second, per I/O module. This is an order of
magnitude greater NetFlow performance than any other NetFlow appliance vendor (over 70,000 flow records per second in a fully populated S8 chassis).
Flow Setup Throttling (FST) is a proactive feature designed to mitigate zero-day threats and Denial of Service (DoS) attacks before they can affect the
network. FST directly combats the effects of zero-day and DoS attacks by limiting the number of new or established flows that can be programmed on
any individual switch port. This is achieved by monitoring the new flow arrival rate and/or controlling the maximum number of allowable flows.
In network operations, it is very time consuming to locate a device or find exactly where a user is connected. This is especially important when reacting
to security breaches. Enterasys S-Series modules automatically track the network's user/device location information by listening to network traffic as it
passes through the switch. This information is then used to populate the Node/Alias table with information such as an end-station's MAC address and
Layer 3 alias information (IP address, IPX address, etc). This information can then be utilized by Enterasys NMS Suite management tools to quickly
determine the switch and port number for any IP address and take action against that device in the event of a security breach. This node and alias
functionality is unique to Enterasys and reduces the time to pinpoint the exact location of a problem from hours to minutes.
For organizations looking to deploy VolP technologies, the Enterasys S-Series provides significant capabilities through its support for the industrystandard discovery protocol, LLDP-MED (Link Layer Discovery Protocol for Media Endpoint Devices). This protocol allows for the accurate representation
of network topologies within Network Management Systems (NMS). S-Series switches are able to learn about all the devices connected to them to
identify VoIP phones, tell the phone which VLAN to use for voice, and even negotiate the power that the phone can consume. LLDP—MED also enables
911 emergency services location functions whereby the location of a phone can be determined by the switch port.
Enterasys S-Series support for Network Address Translation (NAT) provides a practical solution for organizations who wish to streamline their IP
addressing schemes. NAT operates on a router connecting two networks, simplifying network design and conserving IP addresses. NAT can help
organizations merge multiple networks together and enhance network security by helping to prevent malicious activity initiated by outside hosts from
entering the corporate network; this improves the reliability of local systems by stopping worms and augments privacy by discouraging scans.
Within server farm environments, the S-Series can help to increase reliability and performance via the implementation of Load Sharing Network Address
Translation (LSNAT). Based on RFC 2391, LSNAT uses a number of load sharing algorithms to transparently offload network load on a single server and
distributes the load across a pool of servers.
The S-Series also supports a comprehensive portfolio of port protection capabilities, such as SPANguard and MACLock. which provide the ability to
detect unauthorized bridges in the network and restrict a MAC address to a specific port. Other port protection features include Link Flap, Broadcast
Suppression, and Spanning Tree Loop protection which protects against mis-configuration and protocol failure. The S-Series Virtual Switch Bonding
technology allows two or more S-Series systems to create a single virtual switch.
Enterasys S-Series Rex-Erige technology provides line rate traffic classification for ali access ports with guaranteed priority delivery for control plane
traffic and high-priority traffic as defined by the Enterasys policy overlay. In addition to allocating resources for important network traffic, prioritized
bandwidth can be assigned on a per port or per authenticated user basis. Flex-Edge technology is ideal for deployment in wiring closets and distribution
points that can often suffer from spikes in utilization that cause network congestion. With Flex-Edge technologies, organizations no longer have to tear a
rnomentary network congestion event that would result in topology changes and random packet discards.
CoreFlow2 policy enabled edge and core switches managed via NetSight play fundamental and essential roles in moving data reliably, efficiently and
securely. The combined hardware and managernent suite provide superior traffic visibility, enforcement and security.
Page 8
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Traffic control and monitoring features include: Automatic application of ingress and egress policies for bi-directional traffic control; Rule Hit
Accounting for network visibility and troubleshooting; and Flow Based Mirroring allowing for ta0ing individual traffic streams. Security features
include: RA Guard (IPv6 Router advertisement containment) and features similar to DHCP Snooping, IP Source Guard and Dynamic ARP Inspection.
Sample Deployment Scenario
From the Network Edge to the Core and Data Center
Today's enterprise networking customers demand highly-reliable, feature-rich networking devices to fulfill their requirements across all layers of the
network, providing the scalability, return on investment (ROI), and security required of a 21st century business environment.
Enterasys S-Series switches provide industry-leading, high performance distributed switching for enterprise networks, providing customers with the
scalability, performance, and application control to meet the growing needs of today's enterprises. S-Series solutions provide high-performance, featurerich, and highly scalable 10/100/1000, Gigabit, and 10 Gigabit Ethernet connectivity and the scalability to support future 40/100 Gigabit technologies.
This allows them to scale from the network access/edge right to the heart of the network core where they are well positioned to meet emerging high
bandwidth requirements for core routing implementations.
High performance distributed computing increases the demand for secure campus networks, at the same time business-critical systems and services
are becoming increasingly dependent upon enterprise backbone infrastructures. Enterasys S-Series solutions have the capacity, scalability, and QoS
functionality required to deal with these new demands. Architected to ensure no single point of failure with industry-leading high-availability, S-Series
switches are the perfect solution for core routing and secure data center applications. With 1/0 Fabric and modules that are optimized for multi tier
network deployments there is an S-Series solution ideally suited to any enterprise or campus network
.
Enterasys S-Series modular switches use common power supplies, fan trays, and I/O modules that are interchangeable between chassis. This reduces
capital investment in on-site spares.
Standards and Protocols
Switching/VLAN Services
•
Generic VLAN Registration Protocol (GVRP)
•
802.3u Fast Ethernet
•
802.3ab Gigabit Ethernet (copper)
•
802.3z Gigabit Ethernet (fiber)
•
802.3ae 10 Gigabit Ethernet (fiber)
•
802.1aq (SPB) Shortest Path Bridging (Ready)
•
802.1az (DCBX) Data Center Bridging Exchange
•
802.1az (ETS)
•
Enhanced Transmjssion Selection
•
802.1Q VLANs
•
802.1D MAC Bridges
•
Provider Bridges (IEEE 802.1ad) Ready
•
802.1w Rapid re-convergence of Spanning Tree
•
802.1s Multiple Spanning Tree
•
802.3ad Link Aggregation
•
802.3ae Gigabit Ethernet
•
802.3x Flow Control
Page 9
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Standards and Protocols (cont.)
•
IP Multicast (IGMPvl,v2 support & IGMPv3)
• RFC 1997 BGP Comrnunities Attribute
• Jumbo Packet with MTU Discovery Support for Gigabit
• RFC 1998 BGP Community Attribute in Multi-honre Routing
• Link Flap Detection
• RFC 2080 RIPng (IPv6 extensions)
• Dynamic Egress (Automated VLAN Port Configuration)
• RFC 2082 RIP-II MD5 Authentication
• 802 lab LLDP-MED
•
IP Routing Features
RFC 2113 IP Router Alert Option
• RFC 2154 OSPF with Digital Signatures (Password & MD5)
•
RFC 2236 IGMPv2
• Standard ACLs
•
DVMRP v3-10
• OSPF with Multipath Support
•
RFC 2260 Support for Multi-homed Multi-prov
• OSPF Passive Interfaces
• RFC 2270 Dedicated AS for Sites Horned to one Provider
•
IPv6 Routing Protocol
• RFC 2361 Protocol Independent Multicast - Sparse Mode RFC2373
•
Extended ACLs
• RFC 2373 Address notation compression
• Static Routes
• Policy-based Routing
•
NAT Network Address Translation
• RFC2374 IPv6 Aggregatable Global Unicast Address Format
• RFC2375 IPv6 Multicast Address Assignments
• TWCB Transparent Web Cache Redirect
•
RFC 2385 BGP TCP MD5 Signature Option
• VRF Virtual Routing and Forwarding (IPv6 and IPv4)
•
RFC 2391 Load Sharing Using Network Address Translation (LSNAT)
•
Border Gateway Routing Protocol - BGPv4
• RFC2401 Security Architecture for the Internet Protocol
•
PIM Source Specific Multicast - PIM SSM
• RFC2404 The Use of HMAC-SHA-1-96 within ESP and AH
• RFC 792 ICMP
• RFC2406 IP Encapsulating Security Payload (ESP)
•
• RFC2407 Internet IP Security Domais of Interpretation for ISAKMP
RFC 826 ARP
• RFC 1027 Proxy ARR
• RFC 1112 IGMP
• RFC 1195 Use of OSI IS-IS for Routing in TCP/IP
• RFC 1265 BGP Protocol Analysis
• RFC 1266 Experience with the BGP Protocol
• RFC 1519 CIDR
• DHCP Server RFC 1541/ Relay RFC 2131
• RFC 1583/RFC 2328 OSPFv2
•
RFC 1587 OSPFv2 NSSA
• RFC 1657 Managed Objects for BGP-4 using SMIv2
• RFC 1723 RIPv2 with Equal Cost Multipath Load Balancing
• RFC 1745 OSPF Interactions
•
RFC 1746 OSPF Interactions
• RFC 1765 OSPF Database Overflow
• RFC 1771 A Border Gateway Protocol 4 (BGP-4)
• RFC 1772 Application of BGP in the Internet
• RFC 1773 Experience with the BGP-4 protocol
• RFC 1774 BGP-4 Protocol Analysis
• RFC 1812 General Routing/RIP Requirements
•
RFC 1886 DNS Extensions to support IP version 6
• RFC 1924 A Compact Representation of IPv6 Addresses
•
RFC 1930 Guidelines for creation, selection, and registration of an
Autonomous System (AS)
• RFC 1966 BGP Route Reflection
•
RFC 1981 Path MTU Discovery for IPv6
•
RFC2408 Internet Security Association and Key Management Protocol
(ISAKMP)
•
RFC 2439 BGP Route Flap Damping
• RFC 2450 Proposed TLA and NLA Assignment Rule
•
RFC 2453 RIPv2
• RFC 2460 IPv6 Specification
• RFC 2461 Neighbor Discovery for IPv6
• RFC 2462 IPv6 Stateless Address Autoconfiguration
• RFC 2463 ICMPv6
• RFC 2464 Transmission of IPv6 over Ethernet
• RFC 2473 Generic Packet Tunneling in IPv6 Specification
• RFC 2474 Definition of DS Field in the IPv4/v6 Headers
• RFC 2519 A Framework for Inter-Domais Route Aggregation
• RFC 2545 BGP Multiprotocol Extensions for IPv6
• RFC 2553 BasiCSocket Interface Extensions for IPv6
• RFC 2710 IPv6 Router Alert Option
• RFC 2711 Multicast Listener Discovery (MLD) for IPv6
• RFC 2740 OSPF for IPv6
•
RFC 2763 Dynamic Hostname Exchange Mechanism for IS-IS
• RFC 2784 Generic Routing Encapsulation Ready
• RFC 2796 BGP Route Reflection
• RFC 2858 Multiprotocol Extensions for BGP-4
• RFC 2894 Router Renumbering
• RFC 2918 Route Refresh Capability for BGP
• RFC 2966 Prefix Distribution with Two-Level IS-IS
Page 10
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Standards and Protocols (cont.)
• RFC 2973 IS-IS Mesh Groups
• RFC 4360 BGP Extended Communities Attribute
• RFC 3031 Multi Protocol Label Switching Ready
•
• RFC 3065 Autonornous System Confederations for BGP
• RFC 4443 ICMPv6 for IPv6
• RFC 3345 BGP Persistent Route Oscillation
• RFC 4456 BGP Route Reflection
•
• RFC 4486 Subcodes for BGP Cease Notification Message
RFC 3359 TLV Codepoints in IS-IS
RFC 4384 BGP Communities for Data Collection
(MED) Considerations
• RFC 3373 Three-Way Handshake for IS-IS
• RFC 4451 BGP MULTI
•
RFC 3376 IGMPv3
• RFC 4541 MLD Snooping
•
RFC 3392 Capabilities Advertisernent with BGP-4
• RFC 4552 Authentication/Confidentiality for OSPFv3
• RFC 3446 Anycast RP mechanism using PIM and MSDP
• RFC 4601 PIM-SM
• RFC 3484 Default Address Selection for IPv6
• RFC 4604 IGMPv3 & MLDv2 & Source-Specific Multicast
• RFC 3493 Basic Socket Interface Extensions for IPv6
• RFC 4607 Source-Specific Multicast for IP
• RFC 3513 RFC 3513 IPv6 Addressing Architecture
• RFC 4608 PIM--SSM in 232/8
•
RFC 3542 Advanced Sockets API for IPv6
• RFC 4610 Anycast-RP Using PIM
•
RFC 3562 Key Mgt Considerations for TCP MD5 Signature Opt
• RFC 4632 Classless Inter-Domais Routing (CIDR)
•
RFC 3567 IS-IS Cryptographic Authentication
• RFC 4724 Graceful Restart Mechanism for BGP
•
RFC 3587 IPv6 Global Unicast Address Format
• RFC 4760 Multiprotocol Extensions for BGP-4
• RFC 3590 RFC 3590 MLD Multicast Listener Discovery
• RFC 4835 CryptoAlgorithm Requirements for ESP and AH
• RFC 3595 Textual Conventions for IPv6 Flow Label
• RFC 4861 Neighbor Discovery for IPv6
• RFC3596 DNS Extensions to Support IP Version 6
• RFC 4862 IPv6 Stateless Address Autoconfiguration
• RFC 3719 Recommendations for Interop Networks using IS-IS
• RFC 4884 Extended ICMP Multi-Part Messages
• RFC 3768 VRRP
• RFC 4893 BGP Support for Four-octet AS Number Space
• RFC 3769 Requirements for IPv6 Prefix Delegation
• RFC 5059 Bootstrap Router (BSR) Mechanism for (PIM)
• RFC 3787 Recommendations for Interop IS-IS IP Networks
•
• RFC 3810 MLDv2 for IPv6
• RFC 5095 Deprecation of Type O Routing Headers in IPv6
• RFC 3847 Restart signaling for IS-IS
• RFC 5186 IGMPv3/MLDv2/MCAST Routing Protocol Interaction
• RFC 3879 Deprecating Site Local Addresses
• RFC 5187 OSPFv3 Graceful Restart
• RFC 3956 Embedding the RP Address in IPv6 MCAST Address
• RFC 5240 PIM Bootstrap Router MIB
• RFC 4007 IPv6 Scoped Address Architecture
• RFC 5250 The OSPF Opaque LSA Option
• RFC 4193 Unique Local IPv6 Unicast Addresses
• RFC 5291 Outbound Route Filtering Capability for BGP-4
• RFC 4213 Basic Transition Mechanisms for IPv6
• RFC 5292 Address-Prefix-Outbound Route Filter for BGP-4
• RFC 4222 Prioritized Treatment of OSPFv2 Packets
• RFC 5301 Dynarnic Hostname Exchange Mechanism for IS-IS
• RFC 4264 BGP Wedgies
•
RFC 5302 Dornain-wide Prefix Distribution with IS-IS
• RFC 4271 A Border Gateway Protocol 4 (BGP-4)
•
RFC 5303 3Way Handshake for IS-IS P2P Adjacencies
• RFC 4272 BGP Security Vulnerabilities Analysis
•
RFC 5304 IS-IS Cryptographic Authentication
• RFC 4273 Managed Objects for BGP-4 using SMIv2
•
RFC 5306 Restart Signaling for IS-IS
RFC 5308 Routing IPv6 with IS-IS
RFC 5065 Autonomous System Confederations for BGP
• RFC 4274 BGP-4 Protocol Analysis
•
• RFC 4276 BGP-4 Implementation Report
• RFC 5309 P2P operation over LAN in link-state routing
•
RFC 4277 Experience with the BGP-4 protocol
• RFC 5310 IS-IS Generic Cryptographic Authentication
•
RFC 4291 IP Version 6 Addressing Architecture
• RFC 5340 OSPF for IPv6
•
RFC 4294 IPv6 Node Requirements
•
•
RFC 4301 Security Architecture for IP
• RFC5398 AS Number Reservation for Documentation Use
• RFC 4302 IP Authentication Header
RFC 5396 Textual Representation AS Numbers
• RFC 5492 Capabilities Advertisement with BGP-4
RFC 5798 Virtual Router Redundancy Protocol (VRRP) Version 3
•
RFC 4303 IP Encapsulating Security Payload (ESP)
•
•
RFC 4305 Crypto Algorithm Requirements for ESP and AH
• RFC 6164 Using 127-Bit IPv6 Prefixes on Inter-Router Línks
•
RFC 4308 Cryptographic Suites for IPSec
Page 11
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Standards and Protocols (cont.)
Network Security and Policy Management
Management, Control and Analysis
• 802.1X Port-based Authentication
• SNMP vl/v2c/v3
• Web-based Authentication
• Web-based Management Interface
•
• Industry Common Command Line Interface
MAC-based Authentication
• Convergence Endpoint Discovery with Dynamic Policy Mapping
• Multiple Software Image Support with Revision Roll Back
(Siemens HFA, Cisco VoIP, H.323, and SIP)
• Multi-configuration File Support
•
Multiple Authentication Types per Port Simultaneously
• Editable Text-based Configuration File
•
Multiple Authenticated users per Port with unique policies per user/
End System (VLAN association independent)
• COM Port Boot Prom and Image Download via ZMODEM
•
RFC 3580 IEEE 802.1 RADIUS Usage Guidelines, with VLAN to
Policy Mapping
• Secure Shell (SSHv2) Server and Client
• Worm Prevention (Flow Set-Up Throttling)
•
Broadcast Suppression
• ARP Storni Prevention
• MAC-to-Port Locking
• Span Guard (Spanning Tree Protection)
• Stateful Intrusion Detection System Load Balancing
• Stateful Intrusion Prevention System and Firewall Load Balancing
• Behavioral Anomaly Detection/Flow Collector (non-sampled Netflow)
• Static Multicast Group Provisioning
• Multicast Group, Sender and Receiver Policy Control
• Telnet Server and Client
• Cabletron Discovery Protocol
• Cisco Discovery Protocol vl/v2
• Syslog
• FTP Client
• Simple Network Time Protocol (SNTP)
• Netflow version 5 and version 9
•
RFC 2865 RADIUS
•
RFC 2866 RADIUS Accounting
• TACACS+ for Management Access Control
• Management VLAN
•
Class of Service
• Strict Priority Queuing
• Weighted Fair Queuing with Shaping
•
•
11 Transmit Queues per Port
Up to 3,072 rate limiters for S130 Class products and up to 12,288
rate limiters for 5150 Class products
15 Many to-One-port, One-to-Many Ports, VLAN Mirror Sessions
IETF and IEEE MIB Support
•
RFC 1156/1213 & RFC 2011 IP-MIB
•
RFC 1493 Bridge MIB
•
RFC 1659 RS-232 MIB
• RFC 1724 RIPv2 MIB
• Packet Count or Bandwidth based Rate Limiters. (Bandwidth
Thresholds between 8 Kbps and 4 Gbps)
• RFC 1850 OSPF MIB
•
• RFC 2579 SNMPv2-TC
IP ToS/DSCP Marking/Remarking
•
RFC 2578 SNMPv2 SMI
• 802.1D Priority-to-Transrnit Queue Mapping
• RFC 3417 SNMPv2-TM
Enterasys Network Management Suite (NMS)
• RFC 3418 SNMPv2 MIB
•
NMS Console
• RFC 2012 TCP MIB
•
NMS Policy Manager
• RFC 2013 UDP MIB
•
NMS Inventory Manager
• RFC 2096 IP Forwarding Table MIB
•
NMS Automated Security Manager
• RFC 3411 SNMP Framework MIB
•
NMS NAC Manager
• RFC 3412 SNMP-MPD MIB
•
RFC 3413 SNMPv3 Applications
Page 12
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Standards and Protocols (cont.)
• RFC 3414 SNMP User-Based SM MIB
Private M I Bs
•
RFC 2276 SNMP-Cornmunity MIB
• Ct-broadcast MIB
•
RFC 2613 SMON MIB
• Ctron-CDP MIB
• RFC 2674 802.1p/Q MIB
• Ctron-Chassis
• RFC 2737 Entity MIB
• Ctron-igmp MIB
•
RFC 2787 VRRP MIB
• Ctron-q-bridge-inib-ext MIB
•
RFC 2819 RMON MIB (Groups 1-9)
• Ctron-rate-policying MIB
•
RFC 3273 HC RMON MIB
• Ctron-tx-queue-arbitration MIB
• RFC 2863 1F MIB
• Ctron-alias MIB
• RFC 2864 IF Inverted Stack MIB
• Cisco-TC MIB
• RFC 2922 Physical Topology MIB
• Cisco-CDP MIB
• RFC 3291 INET Address MIB
• Cisco-netflow MIB
•
RFC 3621 Power Ethernet MIB
• Enterasys-configuration-rnanagement MIB
• RFC 3415 SNMP View Based ACM MIB
• Enterasys-MAC-Iocking MIB
• RFC 3635 EtherLike MIB
• Enterasys-convergence-endpoint MIB
• RFC 3636 MAU MIB
• Enterasys-notification-authorization MIB
• RFC 4022 MIB for the Transmission Control Protocol (TCP)
• Enterasys-netfow MIB
•
•
RFC 4087 IP Tunnel MIB
Enterasys-license-key MIB
• RFC 4113 MIB for the User Datagram Protocol (UDP)
• Enterasys-aaa-policy MIB
• RFC 4275 BGP-4 MIB Implementation Survey
• Enterasys-class-of-service MIB
•
• Enterasys-multi-auth MIB
RFC 4292 IP Forwarding MIB
• RFC 4293 MIB for Internet Protocol (IP)
• Enterasys-mac-authentication MIB
• RFC 444 MIB for IS-IS
• Enterasys-pwa MIB
• RFC 4750 OSPFv2 MIB
• Enterasys-upn-tc MIB
• RFC 5060 PIM MIB
• Enterasys-policy-profile MIB
• RFC 5240 PIM Bootstrap Router MIB
•
RFC 5643 OSPFv3 MIB
•
IEEE 8023 LAG MIB
• RSTP MIB
•
USM Target Tag MIB
• U Bridge MIB
•
Draft-ietf-idmr-dvmrp-v3-10 MIB
• Draft-ietf-pim-sm-v2-new-09 MIB
• SNMP-REARCH MIB
•
IANA-address-family-numbers MIB
•
IEEE 802.1PAE MIB
Page 13
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Specifications
Physical Specifications
•
S8-Chassis dimensions (H x W x D): 63.96 cm x 44.70 cm x 47.32 crn
(25.19" x 17.60" x 18.63"), 14.5U
•
S8-Chassis-P0E4 dirnensions (H x W x D): 72.8:7 cm x 44.70 cm x
47.32 cm (28.69" x 17.60" x 18.63"), 16.5U
•
S8-Chassis-POE8 dirnensions (H x W x D): 77.31 cm x 44.70 cm x
47.32 cm (30.44" x 17.60" x 18.63"), 17.5U
•
S6-Chassis dirnensions (H x W x D): 88.7 cm x 44.70 cm x 47.35 cm
(34.92" x 17.59" x 18.64"), 20U
•
S6-Chassis-POE4 dirnensions (H x W x D): 97.5 cm x 44.70 cm x
47.35 cm (38.39" x 17.59" x 18.64"), 22U
•
S4-Chassis dimensions (H x W x D): 40.00 cm x 44.70 cm x 47.32 cm
(15.75" x 17.60" x 18.63"), 9U
•
S4-Chassis-POE4 dimensions (H x W x D): 48.90 cm x 44.70 cm x
47.32 cm (19.25" x 17.60" x 18.63"), 11U
•
S3-Chassis dimensions (H x W x D): 31.11 cm x 44.70 cm x 47.32 cm
(12.25" x 17.60" x 18.63"), 7U
•
S3-Chassis-POE4 dimensions (H x W x D): 37.46 cm x 44.70 cm x
47.32 cm (14.75" x 17.60" x 18.63"), 9U
•
S1-Chassis dimensions (HxWxD): 8.69cm x 44.88cm x 60.27cm
(3.42" x 17.67" x 23.73"), 2U
•
S-Series Stand Alone (SSA) dimensions (H x W x D): 4.44 cm x
44.70 cm x 59.43 cm (1.75" x 17.60" x 23.40"), 1U
Environmental Specifications
•
Operating Temperature: +5 °C to +40 °C (41 °F to 104 ° F.)
•
Storage Temperature: -30 °C to +73 'C (-22 °F to 164 ° F)
•
Operating Humidity: 5% to 95% relative humidity, non-condensing
•
Storage Humidity: 5% to 95% relative humidity, non-condensing
•
Power Requirements: 100 to 125 VAC or 200 to 250 VAC; 50 to 60 Hz
•
Operational Altitude: 10K Feet
Agency and Standards Specifications
•
Safety: UL 60950-1, FDA 21 CFR 1040.10 and 1040.11, CAN/CSA
C22.2 No. 60950-1, EN 60950-1, EN 60825-1, EN 60825-2, IEC
60950-1, 2006/95/EC (Low Voltage Directive)
•
Electrornagnetic compatibility: FCC 47 CFR Part 15 (Class A), ICES003 (Class A), EN 55022 (Class A), EN 55024, EN 61000-3-2, EN
61000-3-3, AS/NZ CISPR-22 (Class A). VCCI V-3. CNS 13438 (BSMI),
2004/108/EC (EMC Directive)
Power over Ethernet (PoE) Specifications
•
IEEE 802.3af
•
IEEE 802.3at
•
Total PoE Power: 16,000 Watts @ 240vAC input or 9,600 Watts @
120vAC input (8 Bay PoE power system)
•
Total PoE Power: 8,000 Watts @ 240vAC input or 4,800 Watts @ 120vAC
input (4 Bay PoE power system)
• Maximum available PoE power for the SSA switch is 650 watts with two
power supplies installed in redundant mode and 1,650 watts in additive
mode when using 1000 watt power supplies
•
Automated or manual PoE power distribution
•
Per-port enable/disable, power levei, priority safety, overload, and shortcircuit protection
•
System power monitor
Ordering Information
Part Number
Description
S8 Chassis
S-Series S8 Chassis and fan trays (Power supplies ordered separately)
58-Chassis
S8-Chassis-POE8
1
.
i
S-Series S8 Chassis and fa:n trays with 4 bay PoE sUbsystem (System and PoE Power su pplies ordered separately)
-S-Series S8 Chassis and fari trays with 8 bay PoE subsystem (System and, PoE Power supplies ordered separately)
S8-POE-8BAY-UGK
1
S-Series 8 bay PoE upgrade kit for the S8 (PoE Power supplies ordered separately)
.
,
.-,
S-Series 4 bay PoE upgrade kit for the S8 (PoE Power supplies ordered separately)
i
5-Series S8 Chassis 19" midmount installation rack kit, can be used with ali S8 chassis types
S8-Chassis-POE4
S8-POE-4BAY-UGK
S8-Midmount-Kit
....,.:.
S6 Chassis
S6-Chassis
S-Series 56 Chassis and fan trays. Front to back ccoling. (Power supplies ordered separately)
S6-Chassis-POE4
S-Series S6 Chassis and fan tray with 4 bay POE subsystem. Front to back cooling.
(System and POE power supplies ordered separately)
.. .
S-Series S6 Chassis 19' midmount installation rack kit, can be used with ali S6 chassis types
S6-Midmount-Kit
S6-FAN
!
S-Series Fan Tray (For use w/.S6)
S4 Chassis .
5-Sei ies S4 Chassis and fan tray (Power suppies added separately)
S4-Chassis
S4-Chassis-P0E4
i
S4-Midmount-Kit
•
S3 Chassis
F- '
•
/
S3-Chassis
S-Series S4 Chassis and fan tray with 4 bay i'dESUbsystern (System and PoE Power supplies ordered separately)
S-Series 4 bay PoE upgrade kit for the S4 (PoE Power supplies ordered separately)
S4-POE-4BAY-UGK
i
S-Series S4 Chassis 19" midmount installation rad< kit, can be used with ali S4 chassis types
5-s er i e s S3 iiii,iiissis and fan tray (Power supplies ordered separately)
S3-Chassis-POE4
S-Series S3 Chassis and Fan Tray with 4 bay PoE subsystem (System and PoE Power supplies ordered separately)
S3-POE-4BAY-UGK
S-Series 4 bay PoE upgrade kit for the S3 (PoE Power supplies ordered separately)
S3-Midmount-Kit
S-Series S3 Chassis 19" rnidmount installation rack kit, can be used with ali S3 chassis types
Page 14
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Ordering Information (cont.)
eart Number
SI-Chassis
Si-Chassis
S-Series Si Chassis and fan tray. Compatible with Fabric Modules only. (SSA 1000W Power supplies orclered separately)
S1-Mount-kit
S-Series SI Chassis 19" accessory mounting kit. Supports midrnount and rail kit installation options for 2 and 4 post racks, can be used
with the. S1 chassis
SI-FAN
Si Chassis fari tray, Soare (For use w/ S1)
—
Power Supplies & Fa s
S-AC-PS
S-Sü , ies AC power supply. 20A, 100-240 VAC input (1200/1600 W) (For Use w/ S3/S4/S6/S8)
S-AC-PS-15A
S-Series AC power supply, 15A, 100-240VAC input(930/1600W) (For use wl S31S4/S6/S8)
S-POE-PS
S-Series PoE power supply, 20A, 100-240 VAC input, (1200/2000 W) (For Use in 4/8 Bay PoE power subsystems)
S-DC-PS
S-Sedes 48-60v DC Power Supply (For Use w/ S3/S4/56/S8) (1200W)
S-FAN
S-Series Fan Tray (For use w/ S3/S4/S8)
• S130 Class "1/0 Fabile Modules.
S-Series1/0-Fabric S130 Class Module, 1280Gbps Load Sharing - 48 Porto 10/10011000BASE-TX via RJ45 with PoE (802.3a1) and ore Type2
option slot (Used in Sl/S41S6/S8)
I
ST4106-0348-F6
, •
•
S130 Class.:: 1/0,.Mod
Modules
ules
.,.
1
,,.
S-Series 1/0 S130 Class Module - 48 Ports 10/100/1000BASE-T via R.145 with PoE (802.3at) and one Typel option slot (Used in S3/S4/S6,'S8)
ST4106-0248
S-Series I/O S130 Class Module - 48 Porta 1000BASE-X porto via SFP and one Typel option slot (Used in S3/S4/S6/S8)
—..,..,
-, S150 :Class 1/0 Fabric Modtiles' ,-• ••,,
..,
SG4101-0248
S-Series 1/0-Fabric S150 Module, 1280Gbps Load Sharing - 48 Porta i0/100/1000BASE-T via RJ45 with PUS (802.3at) and two Type2 ontion
slots (Used in S1/S4/S6/S8)
I
ST1206-0848-F6
SG1201-0848-F6
S-Series1/0-Eabric S150 Module:, 1280Gbps Load Sharing - 48 Ports 1000BASE-X ports via SFP and two Type2 options siou (Used in S1/S4/S6/38)
SK 1208-0808-F6
S-Series1/0-Fabric S150 tylodL»e, 1280Gbps Load Sharing - 8 Ports 10GBASE-X Ethernet via SFP+ and two Type2 option slots (Used in 5I/S413:61S8)
S150 Cfass"1/0'MOdules '
S-Series 1/0 S150 Module - 48 Ports 10/1.00/1000BASE-T via RJ45 with PoE (802.3at) and two Type2 option slots (Used in 34/S6/S8)
—
S-Series 1/0 S150 Module - 48 Ports 1000BASE-X porta via SFP and two Type2 optioris slots (Used in S4/S6/S8)
,
f
I
ST1206-0848
SG1201-0848
1 S-Series I/O S150 Module -16 Ports 10GBASE-X Ethernet via SFP+ (Used in S4/S6/S8)
SK1008-0816
,. .
S155 Class 1/0 Fabric Modules
.".e.
.....,,, ..,.-r-
S-Series S155 Class 1/0-Fabric Module, 1280Gbps Load Sharing - 8 Porta 10GBASE-X via SFP+ and two Type2 option alota (Used in S1iS4/S6/S8)
SK5208-0808-F6
I
ST5206-0848-F6
" S-Series S155 Class 1/0-Fabric Module, 1280Gbps Load Sharing - 48 Ports 10/100/1000BASE-T via RJ45 with PoE (802.3at) and two Type2
Icotio°
■
, slots (Used in Si/S4/S6/S8)
.„ ......... _......,.........,......
SG5201-0848-F6
--,,, ---..--e—,----.
Option Modules
S-Series S155 Class1/0-Fabric Module, 1280Gbps Load Sharing - 48 Porto 1000BASE-X via SFP and two Type2 optioris slots (Used in S1/3486,S8)
I
SOK 1208-0102
S-Series Option Module (Typel) - 2 10GBASE-X Ethernet porta via SFP+ (Compatible with Typel & Type2 option slots)
S0K1208-0104
S-Series Option Module (Typel) - 4 10GBASE-X Ethernet ports via SFP+ (Compatible with Typel & Type2 option slots)
S0K1208-0204
S-Series Option Module (Type2) - 4 10GBASE-X Ethernet ports via SFP+ (Compatible with Type2 option siots)
1
.
SOG1201-0112
S-Series Option Module (Typel) - 12 1000BASE-X porta via SFP (Compatible with Typel & Type2 option slots)
S0T1206-0112
S-Series Option Module (Typel) - 12 Ports 10/100I1000BASE-TX via RJ45 with PoE (802.3at) (Compatible with Typel & Tyoe2 option slots)
SSA (S•Series Stand Alone
SSA-T4068-0252
SSA-T1068-0652
,
,
,
.
"4."
,
.. -.;, ,.:-.• ,
...
-.
—I
S-Series Stand Alone (SSA) - S130 Class - 48 Porto 1011.00/1000BASE-T via RJ45 with PoE (802.3at) and 4 10GBASE-X Ethernet porto via SFP+
(Power supplies not included - Please order separately)
...
..
,
S-Series Stand Alone (SSA) - S150 Class - 48 Ports 10/100/1000BASE-T via RJ45 with PoE (802.3at) and 4 10GBA.SE-X Ethernet porto via
SFP+ (Power supplies not included - Please order separately)
SSA-G1018-0652
S-Series Stand Alone (SSA) - S150 Class - 48 Ports 1000BASE-X via SFP and 4 10GBASE-X Ethernet porto via SFP+ (Power supplies not
included - Please order separately)
SSA-AC-PS-625W
S-Series Standalone (SSA S130 and S150 Class) - AC power supply, 15A, 100-240VAC input, (625W)
SSA-AC-PS-1000W
S-Series Standalone (SSA S130 and S150 Class) and S1 Chassis- AC and PoE power supply. 15A. 110-240VAC input. (1000/1200W)
SSA-FAN-KIT
S-Series Stand Alone (SSA) - Replacement fen assembly (Single Fan)
Page 15
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Ordering Information (cont.)
Part Number
Description
Optional Lidenses .
S-EOS-L3-S150
S-Series Advancul Routing License, (For us,.. ,„ 3150 Cioso Modules), (Enablers L3 GRE tunnels)
S-EOS-L3-S130
S-Serles Advanced Routing License (For use on -130 Class Modules) (Enables VRF, BGP)
S-EOS-PPC
S-E0S-VSB
S-Series Per Port User Capacity License Upgrade (For use ao 5130 Class Modules)
i
I
SSA-EOS-VSB
SSA-EOS-2XUSER
S1-EOS-VSB
S-Series Multi-slot Virtual Switch Bonding License Upgrade (For use on S130/S150 Class Modules)
S-Sei ies SSA Virtual Switch Bonding License. Upgrade (For use on SSA Only)
i
SSA 5150 double user capacity license
S-Series 5
•
Chassis Virtual Switch Bonding License Upgrade (For use on SI-Chassis Only)
,I Biindles•:.
S1-S150-10G-BUN
Si Ch
S3-108SFP-BUN
S3 Chassis SFP Bundle, 108 Ports SFP, 4 ports SM+
S4-64SFPP-BUN
S4 Chassis SFP+ Bundle, 64 Paris SFP+
S6-96SFPP-BUN
S6 Chassis SFP+ Bundle, 96 Ports SFP+
S8-348TRPL-BUN
S8 Chassis Triple Speed Bundle, 348 Ports Triple Speed, 4 ports SFP+
and fan tray, (2) 1000W
p04:: r s
!?.„
16 r Di:s SFP+
Transceivers
(SK1208-0808-F6 and (2) SOK1208-0204)
Service and Support
Enterasys transceivers provide connectivity options for Ethernet over
twisted pair copper and fiber optic cables with transmission speeds
from 100 Megabits per second to 10 Gigabits per second. All Enterasys
transceivers meet the highest quality for extended life cycle and the best
possible return on investrnent. For detailed specifications, compatibility
and ordering information please go to hitp://www.entgrasy.s.com/.products/
Enterasys Networks provides comprehensive service offerings that range
from Professional Services to design, deploy and optimize customer
networks, customized technical training, to service and support tailored
to individual customer needs. Please contact your Enterasys account
executive for more information about Enterasys Service and Support.
Additional Information
Warranty
For additional information on the Enterasys S-Series please visit
The Enterasys S-Series comes with a one year hardware warranty. For full
warranty terras and conditions please go to http://www.enterasys.com/
filltp:liwww,enterasys.:com/productslswitchingl
sWiPoltiwarraritY,251.2x
Contact Us
For more information, call Enterasys Networks toll free at 1-877-801-7082,
or +1-978-684-1000 and visit us on the Web at enterasys.com
Thought Leadership
Patented Innovation
(.0 2012 lote:asso lietworks. inc. Ail nghts reserved. E011 300 Networks reserves the right ir crime
sseeiticaotes wohoul notiee. ?lesse contact sou, representative to sonhim turrem specifications.
Nesse iesit ;tte.i.'ivvegesterasys.comfeempiinv,trademarks.ases for trademark Information.
5511?
enterasysSecure Networks^
Delivering on our promises. 0n-time. On-budget.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
HP 5800 Switch Series
Data sheet
Procuct overview
Key features
HP 5800 series switches offer an unmatched
• For enterprise core, distribution, data center
combination of Gigabit and 10-Gigabit Ethernet port
• Flex chassis with modular resiliency
density, high-availability architecture, and full Layer 2
and Layer 3 dual-stack IPv4 and IPv6 capabilities. In
• Support for up to 84 ports
addition to wire-speed line-rate performance on all
• OAA module for flexible deployment
ports, the switches include patented Intelligent Resilient
• Redundant, hot-swappable power supplies, fans
Framework (IRF) technology and Rapid Ring Protection
Protocol (RRPP), which allow local or geographically
distributed HP 5800 switches to be interconnected for
higher resiliency and performance. Available in PoE
and non-PoE models as well as 1 RU and 2 RU flex
chassis configurations, HP 5800 switches are built on
open standards and include an open application
architecture (OAA) module slot that enables flexible
deployment options for new services. These versatile
switches are ideal for use in the network core of
buildings or departments, or as high-performance
switches in the convergence layer or network edge of
enterprise campus networks.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
5
Features and benefits
Connectivity
• High-density port connectivity: supports up to
84 1-Gigabit ports per unit/612 per stack
Quality of Service (QoS)
• Powerful QoS feature: creates traffic classes
based on access control lists (ACLs), IEEE 802.1 p
precedence, IP, and DSCP or Type of Service (ToS)
precedence; supports filter, redirect, mirror, or
remark; supports the following congestion actions:
strict priority (SP) queuing, weighted round robin
(WRR), weighted fair queuing (WFQ), weighted
random early discard (WRED), weighted deficit
round robin (WDRR), and SP+WDRR
• Integrated network services: with support for
open application architecture (OAA) modules,
extends and integrates application capability into
the network
• Ring ResiliencyProtection Protocol (RRPP):
provides fast recovery for ring Ethernet-based
topology; provides consistent application
performance for applications such as VoIP
Management
• Remote configuration and management: is
available through a secure Web browser or a
command-line interface (C11)
• IEEE 802.1ab LLDP discovery: advertises and
receives management information from adjacent
devices on a network
• USB support:
—File copy: allows users to copy switch files to
and from a USB flash drive
• DHCP options:
— DNS Relay and SMTP Redirection
—DHCP: Server (RFC 2131), Client, and Option-82
Relay (RFC 3046)
• Auto-MDIX: automatically adjusts for
straight-through or crossover cables on all 10/100
ports
• Jumbo frames: on Gigabit Ethernet and
10-Gigabit ports, have maximum frame length of
9K; allow high-performance remote backup and
disaster-recovery services
• IEEE 802.3af Power over Ethernet (PoE):
provides up to 15.4 W per port to IEEE
802.3af-compliant PoE-powered devices such as IP
phones, wireless access points, and security
comeras
• IEEE 802.3at Power over Ethernet (PoE+):
provide up to 30 W per port that allows support of
the latest PoE+-capable devices such as IP phones,
wireless access points, and security cameras, as
well as any IEEE 802.3af-compliant end device;
eliminates the cosi for additional electrical cabling
and circuits that would otherwise be necessary in IP
phone and WLAN deployments
• IPv6 native support:
—IPv6 host: enables switches to be managed and
deployed at the IPv6 network's edge
— Dual stack (IPv4/IPv6): transitions from IPv4
to IPv6, supporting connectivity for both protocols
—MLD snooping: forwards IPv6 multicast traffic to
the appropriate interface
—IPv6 ACL/QoS: supports ACL and QoS for IPv6
network traffic, preventing traffic flooding
— IPv6 routing: supports IPv6 static routes and
IPv6 versions of RIP, OSPF, IS-IS, and BGP routing
protocols
Performance
• sFlow: provides scalable, ASIC-based network
monitoring and accounting; this allows network
operators to gather a variety of sophisticated
network statistics and information for capacity
planning and real-time network monitoring purposes
• SNMPv1, v2c, and v3: facilitate centralized
discovery, monitoring, and secure management of
networking devices
• Hardware-based wire-speed access control
lists (ACLs): feature-rich ACL implementation
(TCAM-based) helps ensure high levels of security
and ease of administration without impacting
network performance
• Unique Flex-Chassis Architecture: supports
the best of both fixed chassis and modular
configurations
• Network Time Protocol (NTP): synchronizes
timekeeping among distributed time servers and
clients; keeps consistent timekeeping among all
clock-dependent devices within the network so that
the devices can provide diverse applications based
on the consistent time
2
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Resiliency and high availability
Layer 3 services
• Data center—optimized design: HP
• Address Resolution Protocol (ARP):
5800AF-48G Switch (JG225A) supports
front-to-back/back-to-front airflow for hot/cold
aisles, rear rack mounts, and redundant
hot-swappable AC or DC power and fans
• determines the MAC address of another IP host in
• the same subnet; supports static ARPs; gratuitous
ARP allows detection of duplicate IP addresses;
proxy ARP allows normal ARP operation between
subnets or when subnets are separated by a Layer 2
Manageability
• Full-featured console: provides complete control
of the switch with a familiar command-line interface
(CLI)
• Web interface: allows configuration of the switch
from any Web browser on the network
• RMON and sFlow: provide advanced monitoring
and reporting capabilities for statistics, history,
alarms, and events
• Multiple configuration files: allow multiple
configuration files to be stored to a flash image
• Troubleshooting:
—Ingress and egress port monitoring:
network
• Dynamic Host Configuration Protocol
(DHCP): simplifies the monagement of large IP
networks and supports client and server; DHCP
Relay enables DHCP operation across subnets
Layer 3 routing
• Layer 3 IPv4 routing: provides routing of IPv4 at
media speed; supports static routes, RIP and RIPv2,
OSPF, IS-IS, and BGP
• Ri? and RIPng support: provides complete
support of RIP for both IPv4 and IPv6
• OSPF and OSPFv3 support: provides complete
support of OSPF for both IPv4 and IPv6
enable network problem solving
—Tracert and Ping: enable testing of network
connectivity
—Virtual Cable Tests: provide visibility to cable
problems
• IS-IS and IS-ISv6 support: provides complete
support of IS-IS for both IPv4 and IPv6
• Layer 3 IPv6 routing: provides routing of IPv6 at
media speed; supports static routes, RIPng, OSPFv3,
IS-ISv6, and BGP4+
Layer 2 switching
• GARP VLAN Registration Protocol: allows
• Bidirectional Forwarding Detection (BFD):
enables link connectivity monitoring and reduces
automatic learning and dynamic assignment of
network convergente time for RIP, OSPF, BGP, IS-IS,
VLANs
VRRP, MPLS, and IRF
• 32K MAC addresses: provide access to many
Layer 2 devices
• 4,094 port-based VLANs: provide security
between workgroups
• IEEE 802.1ad QinQ and Selective QinQ:
increase the scalability of an Ethernet network by
providing a hierarchical structure; connect multiple
LANs on a high-speed compus or metro network
• Gigabit Ethernet port aggregation: allows
grouping of ports to increase overall data
throughput to a remote device
• 10 GbE port aggregation: allows grouping of
ports to increase overall data throughput to a remote
device
• Spanning Tree/MSTP, RSTP, and STP Root
Guard: preveni network loops
• IPFIX/sFlow: allows traffic sampling
• Virtual Router Redundancy Protocol (VRRP)
and VRRP Extended: allow quick failover of
router ports
• Policy-based routing: makes routing decisions
based on policies set by the network administrator
• IGMPv1, v2, and v3: allow individual hosts to
be registered on a particular VLAN
• PIM-SSM, PIM-DM, and PIM-SM (for IPv4
and IPv6): support IP Multicast address
management and inhibition of DoS attacks
• Equal-Cost Multipath (ECMP): enables multiple
equal-cost links in a routing environment to increase
link redundancy and scale bandwidth
• 1.É-,11/ MPLS support: provides extended support
of MPLS, including MPLS VPNs and MPLS Traffic
Engineering (MPLS TE)
• NEW VPLS support: provides extended support
of VPLS for data center to data center
communication at Layer 2; provides support of
hierarchical VPLS for scalability
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Security
Convergence
• Unicast Reverse Path Forwarding (URPF):
• Voice VLAN: automatically assigns VLAN and
allows normal packets to be forwarded correctly,
but discards the attaching packet due to lack of
reverse path route or incorrect inbound interface;
prevents source spoofing and distributed attacks;
supports distributed UFPF
• Defense-in-depth security: provides integrated
and distributed security enforcement that can be
managed from a central location, such as the HP
Intelligent Management Center (IMC)
• Advanced processor queuing mechanism:
helps prevent denial-of-service (DoS) attacks, while
DHCP snooping helps ensure that devices can only
receive an IP address from a legitimate DHCP server
on the network
• IEEE 802.1X-based dynamic delivery of
QoS, ACLs, and VLANs: allows complete control
priority for IP phones, simplifying network
configuration and maintenance
•
• Internet Group Management Protocol
(IGMP): is used by IP hosts to establish and
maintain multicast groups; supports IGMPv1, v2,
and v3; utilizes Any-Source Multicast (ASM) or
Source-Specific Multicast (SSM) to manage IPv4
multicast networks
• Protocol Independent Multicast (PIM): is used
for IPv4 and IPv6 multicast applications; supports
PIM Dense Mode (DM), Sparse Mode (SM), and
Source-Specific Mode (SSM)
• LLDP-MED (Media Endpoint Discovery): is a
standard extension of LLDP that stores values for
parameters such as QoS and VLAN to automatically
configure network devices such as IP phones
over user network access
• Guest VLAN: similar to IEEE 802.1 X, it provides a
browser-based environment to authenticated clients
Monitor and diagnostics
• Port mirroring: enables traffic on a port to be
• Port isolation: secures and adds privacy, and
simultaneously sent to a network analyzer for
monitoring
prevents malicious attackers from obtaining user
information
• OAM (IEEE 802.3ah): detects data link layer
• MAC-based zruthentication: allows or denies
problems that occurred in the "last mile"; monitors
the status of the link between the two devices
access to the switch based on a client MAC address
• IP Source Guard: helps prevent IP spoofing
attacks
• HTTPS management: provides secure Web
• CFD (IEEE 802.1 ag): connectivity fault detection
(CFD) provides a Layer 2 link Operations,
Administration and Maintenance (OAM) mechanism
used for link connectivity detection and fault locating
management
• Multi-Customer Edge (MCE)-Multicast
Virtual Routing and Forwarding (MVRF):
provide MPLS Edge router support
• Public Key Infrastructure (PKI): is used to
control access
• RADIUS/HWTACACS: eases switch management
security administration by using a password
authentication server
• Secure Shell (SSHv2): encrypts all transmitted
data for secure, remote CLI access over IP networks
• IP Source Guard: filters packets on a per-port
basis, which prevents illegal packets from being
forwarded
4
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Additionai information
• Intelligent Resilient Framework (IRF):
—Creates virtual resilient switching fabrics, where
two or more switches perform as a single Layer 2
switch and Layer 3 router
—Switches do not have to be co-located and can be
part of a disaster-recovery system
—Servers or switches can be attached using
standard LACP for automatic load balancing and
high availability
—Simplifies network operation by eliminating the
complexity of Spanning Tree Protocol, ECMP, or
VRRP
• OAA modules: support wireless network
management and high-performance security
applications; leverage network infrastructure
investment
• Green IT and power: use the latest advances in
silicon development, shut off unused ports, and use
variable-speed fans to improve energy efficiency
Worranty and support
• Lifetime warranty: for as long as you own the
product with advance replacement and
next-business-day delivery (available in most
countries)t
• Electronic and telephone support: limited
electronic and telephone support is available from
HP; to reach our support centers, refer to
, icontact-support; for
www.hp.com/networkirg
details on the duration of support provided with your
product purchase, reter to
N,vww.hp.com/networking/warrantysummary
• Software releases: to find software for your
product, refer to www.hp.cominetworkinglsupport
for details on the software releases available with
your product purchase, refer to
www.h.p.cominetworkíng/warranty.summary
HP warroniy includes repair or replacement of hardware for as long as you own the product, with next business day advance replacement (available mosi munes) The dist,
drive included with HP AllionceOne Advanced Seivices ond Senlices zl Modules, HP Threat Monogement Services el Module, HP AllianceOne Eytendecl zl Modula wIth R,velbed
Sleelhead, HP MSM765zIMobility Controller and HP Survivoble Branch Communicotion zl Module powered by Microsoh lync has a fiveyear hardware warranty For oelcms. re'er
to lhe Software license and hardwore warranly stotemems
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
HP 5800 Switch Series
Specifications
Porto
24 R1-45 autosensing 10/100/1000 porto (IEEE
802.3 Type 10BASE-T, IEEE 802.3u Type
100BASE-TX, IEEE 802.3ob Type 1000BASE-T);
Duplex: 10BASE-T/100BASE.TX: holf or fali;
1000BASE.T: fali only
24 R1-45 autosensing 10/100/1000 ports (IEEE
802.3 Type 10BASE.T, IEEE 802.3u Type
100BASE-TX, IEEE 802.3ab Type 1000BASE-T);
Duplex: 10BASE•T/100BASE.TX: holt or fali;
1000BASE.T: fali only
24 SFP fixed Gigabit Ethernet SFP ports
1 extended module slot
1 extended module slot
1 R1.45 serial console port
4 f ixed 1000/10000 SFP+ porto
4 fixed 1000/10000 SFP+ ports
1 R1•45 seriol console port
1 R1-45 serial console port
Power supplies
1 extended module slot
4 fixed 1000/10000 SFP+ ports
2 power supply slots
1 minirnum power supply required (ordered
separately)
Physical chorocteristics
17.3(w) x 16.8(d) x 1.71(h) in (43.94 x 42.67 x
4.34 cm) (1 U height)
17.32(w) x 14.35(d) x 1.72(h) in (44.0 x 36.45 x
4.36 cm) (1 U height)
17.32(w) x 16.81(d) x 1.72(h) in (44.0 x 42.7 x
4.36 cm) (1U height)
17.64 Ib (8 kg)
13.23 lb (6 kg)
18.74 lb (8.5 kg)
1024 MB SDRAM, 512 MB flash; packet buffer
size: 4 MB
1024 MB SDRAM, 512 MB flash; packet buffer
size: 4 MB
1024 MB SDRAM, 512 MB flash; packet buffer
size: 4 MB
Lotency
4.02 ps (Store and Forward) (64.byte packets)
4.02 lis (Store and Forward) (64-byte packets)
4.02 ps (Store and Forward) (64.byte packets)
Throug hput
155 million pps
155 million pps
155 million pps
Routing/Switching copacity
208 Gbps
208 Gbps
208 Gbps
Woight
Memory and processor
Performance
Routing table size
16000 entries
16000 entries
16000 entries
MAC address table size
32000 entries
32000 entries
32000 entries
Operating temperature
32 ° F to 113°F (0 °C to 45"C)
32° F to 113 °F (0°C to 45 °C)
32"F to 113"F (0"C to 45"C)
Operating relotive humidity
10% to 90%
10% to 90%
10% to 90%
Acoustic
Low.speed fon: 47.5 dB, High-speed fon: 52.4 dB
low.speed fon: 42.3 dB, High.speed fon: 52.9 dB
Low-speed fon: 49.6 dB, High-speed fon: 58.1 dB
maximum heal dissipation
2968 BTU/hr (3131.24 kJ/hr)
Voltage
100.120/200.240 VAC
358 BTU/hr (377.69 kl/hr)
100-120-240 VAC
498 BTU/hr ( 525 . 39 Wh')
100.120/200.240 VAC
Frequency
50/60 Hz
50/60 Hz
50/60 Hz
Sa fe ty
UL 60950.1; EN 60825-1 Safety of Laser
Products-Part 1; EN 60825.2 Safety of Laser
Products-Part 2; IEC 60950.1; CAN/CSA.C22.2
No. 60950.1; Anatel; ULAR; GOST; EN
60950-1/A11; FDA 21 CFR Subchapter 1; NOM;
ROHS Compliance
UL 60950.1; EN 60825-1 Safety of laser
Products-Port 1; EN 60825.2 Safety of Laser
Products.Port 2; IEC 60950.1; CAN/CSA-C22.2
No. 60950-1; Anafei; ULAR; GOST; EN
60950-1/A11; FDA 21 CFR Subchapter1; NOM;
ROHS Compliance
UL 60950.1; EN 60825-1 Safety of Laser
Products-Port 1; EN 60825-2 Safety of Laser
Products•Pari 2; IEC 60950.1; CAN/CSA-C22.2
No. 60950.1; Anotei; ULAR; GOST; EN
60950-1/A11; FDA 21 CFR Subchapter 1; NOM;
ROHS Compliance
Emissions
VCCI Class A; EN 55022 Class A; ICES-003 Class
A; ANSI C63.4 2003; AS/NZS CISPR22 Class A;
EN 61000-3-2:2006; EN 61000-3-3:1995
+A1:2001+A2:2005; EMC Directiva
2004/108/EC; FCC (CFR 47, Port 15) Class A
VCCI Class A; EN 55022 Class A; ICES-003 Class
A; ANSI C63.4 2003; AS/NZS CISPR22 Class A;
EN 61000-3-2:2006; EN 61000-3-3:1995
+Al :200I+A2:2005; EMC Directiva
2004/108/EC; FCC (CFR 47, Pad 15) Class A
VCCI Class A; EN 55022 Class A; ICES-003 Class
A; ANSI C63.4 2003; AS/NZS CISPR22 Class A;
EN 61000-3-2:2006; EN 61000-3.3:1995
+A1:2001+A2:2005; EMC Directiva
2004/108/EC; FCC (CFR 47, Part 15) Class A
Generic
ETSI EN 300 386 V1.3.3
ETSI EN 300 386 V1.3.3
ETSI EN 300 386 V1.3.3
EN
EN 55024:1998+ A1:2001 + A2:2003
EN 55024:1998+ A1:2001 + A2:2003
EN 55024:1998+ A1:2001
ESD
EN 61000-4-2; IEC 61000-4-2
EN 610044.2; IEC 61000-4-2
EN 61000-42; IEC 61000.4.2
Rodiated
EN 61000-4-3; IEC 61000.4.3
EN 61000-4-3; IEC 61000.43
EN 61000-4.3; IEC 61000.4.3
EFT/Burst
EN 61000-4.4; IEC 61000.4-4
EN 61000-4.4; IEC 61000.4.4
EN 61000-4.4; IEC 61000.4.4
Surge
EN 61000-4-5; IEC 61000.4-5
EN 61000-4.5; IEC 61000-4-5
EN 61000-4-5; IEC 61000.4.5
Conducted
EN 61000-4-6; IEC 61000.4-6
EN 61000-4-6; IEC 61000.4.6
EN 61000-4-6; IEC 61000-4-6
Power frequency magnetic field
IEC 61000.4.8; EN 61000-4-8
IEC 61000-4.8; EN 61000-4-8
IEC 61000.4.8; EN 61000.4.8
Voltoge dips and interruptions
EN 61000-4-11; IEC 61000-4.11
EN 61000-4-11; IEC 61000-4.11
EN 61000-4-11; IEC 61000.4.11
Hormonics
EN 61000-3.2, IEC 61000-3-2
EN 61000-3.2, IEC 61000.3-2
EN 61000-3-2, IEC 61000.3.2
Flicker
EN 61000-3-3, IEC 610003.3
EN 61000-3-3, IEC 61000.33
EN 61000.3-3, IEC 61000-33
Management
IMC - Intelligent Management Center; commandline
interface; Web browser; SNMP Manager; Telnel;
HTTPS; RMON1; FTP
IMC • Intelligent Management Center; command.line
interface; Web browser; SNMP Manager; Telnel;
HTTPS; RMON1; FTP
IMC • Intelligent Management Center; cornmandline
interface; Web browser; SNMP Manager; Telnel;
HTTPS; RMON1; FTP
Environment
Electrical characteristics
DC voltoge
-48 VDC to -60 VDC
immunity
A2:2003
6
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
HP 5800 Switch Series
Specifications (continued)
HP 5800-24G.PoE+ Switch (1C099A)
HP 5800- 24G Switch (.1C100A)
Customer must arder a power supply, as the device
does not come with a PSU. At least onelD362A or
1D366A is reguired.
Notes
Servires
HP 5800 - 24G - SFP Switch (1C103A)
3-year, 4-hour onsite, 13x5 coverage for hardware
(UV882E)
3-yeor, 4-hour onsite, I3x5 coveroge for hardware
(UV882E)
3.year, 4-hour onsite, 13x5 coveroge lor hardware
(UV882E)
3-year, 4-hour onsite, 24x7 coveroge for hardware
(UV885E)
3-year, 4-hour onsite, 24x7 coveroge for hardware
(UV885E)
3-year, 4-hour onsite, 24x7 coverage for hardware
(UV885E)
3.year, 4-hour onsite, 24x7 coveroge for hardware,
24x7 5W phone support and SW updates
(UV888E)
3-yeor, 4-hour onsite, 24x7 coveroge for hardware,
24x7 SW phone support and SW updates
(UV888E)
3-year, 4-hour onsite, 24x7 coverage for hardware,
24x7 SW phone suppori and SW updates
(UV888E)
3-yeor, 24x7 SW phone support, software updotes
(UV891E)
3-year, 24x7 SW phone support, software updates
(UV891E)
3.year, 24x7 SW phone support, software updates
(UV891E)
1.year, postwarranty, 4-hour onsite, 24x7 coverage
for hardware (HR565E)
1-year, postwarranty, 4-hour onsite, 24x7 coverage
for hardware (HR565E)
1.year, post-warronly, 4-hour onsite, 24x7 coveroge
for hardware (HR565E)
1.year, post-warranly, 4-hour onsite, 24x7 coverage
for hardware, 24x7 software phone support
(HR566E)
1-year, postwarranty, 4-hour onsite, 24x7 coverage
for hardware, 24x7 software phone suppod
(HR566E)
1.year, post-warronty, 4-hour onsite, 24x7 coverage
for hordwore, 24x7 software phone support
(HR566E)
4-yeor, 4-hour onsite, 13x5 coveroge for hardware
(UV883E)
Installation with minimum configuration,
system-based pricing (UW451E)
4-year, 4-hour onsite, 24x7 coveroge for hardware
(UV886E)
4-year, 4-hour onsite, I3x5 coveroge for hardware
(UV883E)
4-year, 4-hour onsite, 13x5 coveroge for hordwore
(UV883E)
4-year, 4-hour onsite, 24x7 coverage for hardware,
24x7 software phone (UV889E)
4-year, 4-hour onsite, 24x7 coveroge for hardware
(UV886E)
4-year, 4-hour onsite, 24x7 coverage for hardware
(UV886E)
4-yeor, 24x7 SW phone support, software updotes
(UV892E)
4-yeor, 4-hour onsite, 24x7 coveroge for hardware,
24x7 software phone (UV889E)
4-year, 4-hour onsite, 24x7 coverage for hardware,
24x7 software phone (UV889E)
5.year, 4-hour onsite, 13x5 coveroge for hardware
(UV884E)
4-year, 2407 SW phone support, software updates
(UV892E)
4-year, 24x7 5W phone support, software updates
(UV892E)
5-year, 4-hour onsite, 24x7 coveroge for hardware
(UV887E)
5-year, 4-hour onsite, I3x5 coverage for hardware
(UV884E)
5-yeor, 4-hour onsite, 1305 coveroge for hardware
(UV884E)
5-year, 4-hour onsite, 24x7 coverage for hardware,
24x7 software phone (UV890E)
5.year, 4-hour onsite, 24x7 coverage for hardware
(UV887E)
5.year, 4-hour onsite, 24x7 coveroge lor hardware
(UV887E)
5-year, 24x7 SW phone suppod, software updates
(UV893E)
5-year, 4-hour onsite, 24x7 coveroge for hardware,
24x7 software phone (UV890E)
5.year, 4-hour onsite, 24x7 coveroge for hordwore,
24x7 software phone (UV890E)
3 Yr 6 hr Coll-to-Repoir Onsite (UW969E)
5-year, 245,7 SW phone support, software updates
(UV893E)
5-year, 2407 SW phone support, softwore updotes
(UV893E)
4 Yr 6 hr Call-to-Repair Onsite (UW970E)
3 Yr 6 hr Coll.to-Repair Onsite (UW969E)
3 Yr 6 hr Coll-to-Repair Onsite (UW969E)
5 Yr 6 hr Coll.to.Repair Onsite (UW971 E)
4 Yr 6 hr Coll.to-Repair Onsite (UW970E)
4 Yr 6 hr Call-to-Repoir Onsite (UW970E)
1.year, 6 hour Call.To.Repair Onsite for hordwore
(HR568E)
5 Yr 6 hr Coll-to-Repoir Onsite (UW971E)
5 Yr 6 hr Call-to-Repoir Onsite (UW971E)
1-year, 24x7 software phone support, software
updates (HR567E)
1-year, 6 hour Coll-To-Repoir Onsite for hardware
(HR568E)
1-year, 24x7 software phone support, software
updates (HR567E)
1-year, 24x7 software phone suppod, software
updotes + Next Business Day Hardware Exchange
(H5650E)
1-year, 24x7 software phorr.support, software
updates (HR567E)
1-year, 24x7 software phone support, software
updotes + Next Business Day Hardware Exchange
(HS650E)
1.year, 24x7 software phone support, software
updotes + 4 hour hardware exchange (HS651E)
1-year, 24x7 software phone support, software
updates + Next Business Day Hardware Exchange
(HS650E)
1-year, 24x7 software phone support, software
updotes + 4 hour hordwore exchange (1-15651E)
3.year, 24x7 software phone suppod, software
updates + Next Business Day Hardware Exchange
(H5652E)
1 -year, 24x7 software phone supporl, software
updates 4 hour hordwore exchange (HS651E)
3-year, 24x7 software phone support software
updates + Next Business Doy Hardware Exchange
(H5652E)
3-year, 24x7 software phone support, software
updates + 4 hour Hardware Exchange (HS653E)
3-year, 24x7 software phone suppod, software
updates + Next Business Day Hardware Exchange
(H5652E)
3-year, 24x7 software phone support, softwore
updates + 4 hour Hardware Exchange (HS653E)
4.year, 24x7 software phone support, softwore
updates + Next Business Day Hardware Exchange
(HS654E)
3.year, 24x7 software phone support, software
updates + 4 hour Hardware Exchange (HS653E)
4-year, 24x7 software phone support, software
updotes + Next Business Day Hardware Exchange
(HS654E)
4-year, 24x7 software phone suppod, software
updates + 4 hour Hardware Exchange (HS655E)
4-yeor, 24x7 software phone support, software
updates + Next Business Day Hardware Exchange
(HS654E)
4-year, 24x7 software phone support, software
updotes + 4 hour Hardware Exchange (HS655E)
5-year, 24x7 software phone support, software
updates + Next Business Day Hardware Exchange
(HS656E)
4-year, 24x7 software phone support, software
updates + 4 hour Hardware Exchange (HS655E)
5-year, 24x7 software phone support, software
updates + Next Business Day Hardware Exchange
(HS656E)
5-year, 24x7 software phone support, software
updates + 4 hour Hardware Exchange (H5657E)
5.year, 24x7 software phone supporl, software
updates + Next Business Day Hardware Exchange
(HS656E)
5.year, 24x7 software phone suppori, software
updates + 4 hour Hardware Exchange (HS657E)
,Instollation with minimurn configurotion
system-based pricing (UW45IE)
7
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
HP 5800 Switch Series
Specifications (continued)
HP 5800- 24G- PoE+ Switch (1C099A)
HP 5800- 24G Switch (1C100A)
HP 5800 - 24G•SFP Switch (1C103A)
Reter to the HP website at
~..hp.cQpVinetworkingíserviçes for details on the
service-levei descriptions and product numbers. For
details about services and response limes in your
orca, please contact your local HP soles office.
5-year, 24x7 software phone support, software
updates + 4 hour Hardware Exchonge (HS657E)
Reter to the HP website at
www.hp,corninetWo!lingiservices for details on the
service-level descriptions and produci numbers. For
details about services and response limes in your
area, please contact your local HP soles office.
Reter to the HP website at
Ww.W..bR,C9int.O.C.RriOrkin9LsorKke for details on the
service-level descriptions and product numbers. For
details about services and response times in your
arco, please contact your local HP soles office.
Standards and protocols
(applies to ali products in series)
General protocols
IEEE 802.1ag Service Layer OAM
IEEE 802.1D MAC Bridges
IEEE 802.1 p Priority
IEEE 802.10 VIANs
IEEE 802.1s (MSTP)
IEEE 802.1v VLAN classilicotion by Protocol and
Port
IEEE 802.1w Rapid Reconfiguration of Spanning
Tree
IEEE 802.1X PAE
IEEE 802.3ad link Aggregotion Control Protocol
(LACP)
IEEE 802.3ae 10-Gigabit Ethernet
IEEE 802.3af Power over Ethernet
IEEE 802.3at
IEEE 802.3x Flow Control
RFC 768 UDP
RFC 792 ICMP
RFC 793 TCP
RFC 826 ARP
RFC 854 TELNET
RFC 925 Multi•LAN Address Resolution
RFC 951 BOOTP
RFC 1058 RIPvl
RFC 1350 TFTP Protocol (revision 2)
RFC 1519 CIDR
RFC 1542 BOOTP Extensions
RFC 2131 DHCP
RFC 2453 RIPv2
RFC 3046 DHCP Relay Agent Information Option
RFC 3576 Ext to RADIUS (CoA only)
RFC 3768 VRRP
RFC 4675 RADIUS VLAN & Priority
802.1 r • GARP Proprielary Altribule Registration
Protocol )GPRF)
IP multicast
RFC 2934 Protocol Independent Multicast MIE for
IPv4
RFC 3376 IGMPv3 (host joins only)
RFC 3618 Multicast Source Discovery Protocol
(MSDP)
RFC 3973 Droft 2 PIM Dense Mode
RFC 4601 PIM Sparse Mode
IPv6
RFC 2080 RIPng for IPv6
RFC 2460 IPv6 Specification
RFC 2710 Multicast listener Discovery (M1D) for
IPv6
RFC 2740 OSPFv3 for IPv6
RFC 2925 Remote Operations MIE (Ping only)
RFC 3019 MLDvl MIB
RFC 3162 RADIUS and 'Piá
RFC 3315 DHCPv6 (client and relay)
RFC 3315 DHCPv6 (client only)
RFC 3810 MLDv2 (host joins only)
RFC 4022 MIB for TCP
RFC 4251 SSHw5 Architecture
RFC 4252 SSHv6 Authentication
RFC 4253 SSHv6 Transport Layer
RFC 4254 SSHv6 Connection
RFC 4293 MIB for IP
RFC 4419 Key Exchange for SSH
RFC 4443 ICMPv6
RFC 4541 IGMP & MIO Snooping Switch
RFC 4861 IPv6 Neighbor Discovery
RFC 4862 IPv6 Staleless Address Auto•configuration
RFC 2787 VRRP MIE
RFC 2819 RMON MIE
RFC 2925 Ping MIB
RFC 3414 SNMP-User based•SM MIB
RFC 3415 SNMP-View based-ACM MIB
RFC 3418 MIE for SNMPv3
RFC 3621 Power Ethernet MIB
RFC 3826 AES for SNMP's USM MIE
RFC 4133 Entity MIB (Version 3)
LLDP-EXT-DOT 1 •MIB
LLDP-EXT-DOT3-MIB
IIDP-MIE
Network management
IEEE 802.1 AB link Layer Discovery Protocol (LLDP)
RFC 2819 Four groups of RMON: 1 (stotistics), 2
(history), 3 (alarm) and 9 (events)
RFC 3176 sFlow
ANSI/TIA-1057 LLDP Media Endpoint Discovery
(LLDP-MED)
SNMPvl/v2c/v3
OSPF
MIBs
IEEE 8021•PAE•MIB
IEEE 8023-LAG-MIB
RFC 1213 MIE II
RFC 1493 Bridge MIB
RFC 1657 BGP-4 MIB
RFC 1724 RIPv2 MIB
RFC 1850 OSPFv2 MIE
RFC 2011 SNMPv2 MIB for IP
RFC 2013 SNMPv2 MIB for UDP
RFC 2233 Interface MIB
RFC 2273 SNMP•NOTIFICATION-MIE
RFC 2452 IPV6-TCP-MIB
RFC 2454 IPV6•UDP-M113
RFC 2465 IPv6 MIE
RFC 2466 ICMPv6 MIE
RFC 2571 SNMP Framework MIB
RFC 2572 SNMP-MPD MIB
RFC 2573 SNMP-Notification MIE
RFC 2618 RADIUS Client MIB
RFC 2620 RADIUS Accounting MIE
RFC 2665 Ethernet-Like-MIB
RFC 2674 802.1p and IEEE 802.10 Bridge MIB
RFC 2688 MAU-MIE
RFC 2328 OSPFv2
RFC 3101 OSPF NSSA
Security
IEEE 802.1X Port Bosed Network Access Control
RFC 1492 TACACS+
RFC 2865 RADIUS (client only)
RFC 2866 RADIUS Accounting
Secure Sockets layer (SR)
SSHv2 Secure Shell
8
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
a
HP 5800 Switch Series
Specifications (continued)
HP 5800 - 48G Switch (.1C105A)
Ports
48 RJ-45 autosensing 10/100/1000 ports (IEEE 802.3 Type 10BASE-T, IEEE
802.3u Type 100BASE-TX, IEEE 802.3ab Type 1000BASE-T); Duplex:
10BASE-T/100BASE-TX: hall or fon; 1000BASE-T: full only
48 R1-45 autosensing 10/100/1000 ports (IEEE 802.3 Type 10BASE-T, IEEE
802.3u Type 100BASE-TX, IEEE 802.3ab Type 1000BASE-T); Duplex
only
10BASE-T/100BASE-DC hall or full; 1000BASE-T:
1 extended module slot
1 extended module slot
4 fixed 1000/10000 SFP+ ports
4 fixed 1000/10000 SFP+ ports
1 RJ-45 serial console port
1 R1-45 serial console port
17.32(w) x 16,81(d) x 1.72(h) in (44.0 x 42.7 x 4.36 cm) (1U heighl)
17.32(w) x 14.45(d) x 1.72(h) in (44.0 x 36.7 x 4.36 cm) (IU height)
18.74 lb (8.5 kg)
14.33 lb (6.5 kg)
1024 MB SDRAM, 512 MB flash; packet buffer size: 8 MB
1024 MB SDRAM, 512 MB flash; packet buffer size: 8 MB
4.02 as (Store and Forward) (64-byte packets)
Physical characteristics
Weight
Memory and processar
Performance
latency
4.02 ps (Store and Forward) (64-byte packets)
Throughpul
190 million pps
190 million pps
Routing/Swilching capacity
256 Gbps
256 Gbps
Routing lab)e size
16000 entries
16000 entries
MAC address table size
32000 entries
32000 entries
Environment
Operating temperature
32 ° F to 113 ° F (0 °C to 45 °C)
32 ° F to 113°E (0°C to 45°C)
Operating relotive humidity
10% to 90%
10% to 90%
Acoustic
Low-speed fon: 50.5 dB, High-speed fon: 57.9 dB
Low-speed fon: 45.3 dB, High-speed íon: 56.5 dB
Electrical charaderistics
Maximum heal dissipotion
3320 BTU/hr (3502.6 kJ/hr)
557 BTU/hr (587.64 Id/hr)
Voltoge
100.120/200-240 VAC
100-120/200-240 VAC
Frequency
50/60 Hz
50/60 Hz
Safety
UL 60950-1; EN 60825-1 Safety of Laser Products-Part 1; EN 60825.2 Safety
of Laser Products-Part 2; IEC 60950-1; CAN/CSA-C22.2 No. 609501; Anotei
ULAR; GOST; EN 60950-1/A11; FDA 21 CFR Subchopter J; NOM; ROHS
Compliance
Emissions
VCCI Class A; EN 55022 Class A; ICES-003 Class A; ANSI C63.4 2003;
AS/NZS CISPR22 Class A; EN 61000-3-2:2006; EN 61000-3-3:1995
+A1:2001+A2:2005; EMC Directive 2004/108/EC; FCC (CFR 47, Part 15)
Class A
AS/NZS CISPR22 Class A; EN 61000-3-2:2006; EN 61000.3-3:1995
+A1:2001+A2:2005; EMC Directive 2004/108/EC; FCC (CFR 47, Part 15)
Class A
Generic
ETSI EN 300 386 V1.3.3
ETSI EN 300 386 V1.3.3
EN
EN 55024:1998+ A1:2001 + A2:2003
EN 55024:1998+ A1:2001 + A2:2003
ESD
EN 61000-4-2; IEC 61000-4.2
EN 61000-4-2; IEC 61000-4-2
Rodiated
EN 61000-4-3; IEC 61000-4-3
EN 61000-4-3; IEC 61000.4-3
EFT/BursI
EN 61000-4-4; IEC 61000-4-4
EN 61000-4.4; IEC 61000-4-4
Surge
EN 61000-4-5; IEC 61000-4-5
EN 61000-4-5; IEC 61000-4-5
Conducted
EN 61000-4-6; IEC 610004-6
EN 61000-4.6; IEC 61000-4-6
UL 60950-1; EN 60625-1 Safety of Laser Products-Pari I; EN 60825.2 Safety
of laser Products-Pare 2; IEC 60950-1; CAN/CSA-C22.2 No. 60950-1; Anotei;
ULAR; GOST; EN 60950-1/A11; FDA 21 CFR Subchapter 1; NOM; ROHS
_Compliance
VCCI Class A; EN 55022 Class A; ICES-003 Class A; ANSI C63.4 2003;
Immunity
Power frequency magnetic field
IEC 61000-4-8; EN 61000-4-8
IEC 61000-4-8; EN 61000-4-8
Voltage dips and interruptions
EN 61000-4-11; IEC 61000-4.11
EN 61000-4-11; 180 61000-4-11
Harmonia
EN 61000-3-2, IEC 61000-3-2
EN 61000-3.2, IEC 61000-3-2
Flicker
EN 61000.3-3, IEC 61000.3-3
EN 61000-3-3, IEC 61000-3-3
Management
IMC - Intelligent Management Center; commond-line interface; Web browser;
SNMP Manager; Telnet; HTTPS; RMON1; FTP
IMC - Intelligent Management Center; corninond-line interface, Web browser;
SNMP Manager; Telnet; HTTPS; RMON1; FTP
Services
3-year, 4-hour onsite, 13x5 coverage for hardware (H0063E)
3-year, 4-hour onsite, 13x5 coverage lor hardware (H0063E)
3-year, 4-hour onsite, 24x7 coverage for hardware (H0064E)
3-year, 4-hour onsite, 24x7 coverage for hardware (H0064E)
3-year, 4-hour onsite, 24x7 coverage for hardware, 24x7 SW phone support
and SW updates (HQ067E)
3-year, 4-hour onsite, 24x7 coverage for hardware, 24x7 SW phone support
and SW updates (H0067E)
3-year, 24x7 SW phone suppod, software updates (H0066E)
3-year, 24x7 SW phone supporl, software updates (H0066E)
1-year, post-warronty, 4-hour onsite, 13x5 coverage for hardware (HR569E)
1-year, postwarronly, 4-hour onsite, 13x5 coverage for hardware (HR569E)
1-year, post.warranty, 4-hour onsite, 24x7 coverage for hardware (HR570E)
1-year, postworronty, 4-hour onsite, 24x7 coverage for hardware (HR570E)
Installation with minimurn configurotion, system-bosed pricing (UW451E)
Installation with minimum configurotion, systern-based pricing (UW451E)
4-year, 4-hour onsite, 13x5 coverage for hardware (HQ068E)
4-year, 4-hour acoite, 13x5 coverage for hardware (H0068E)
4-yeor, 4-hour onsite, 2407 coverage for hardware (H0069E)
4-year, 4-hour onsite, 24a7 coverage for hardware (H0069E)
9
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
HP 5800 Switch Series
Specifica
Standards and protocols
(applies to all products in series)
continued)
HP 5800-48G-PoE Switch (1C104A)
HP 5800-48G Switch (.1C105A)
4-year, 4-hour onsite, 24x7 coverage for hordware, 24x7 software phone
(H0076E)
4-year, 4-hour onsite, 24x7 coverage lor hardware, 24x7 software phone
(H0076E)
4-year, 24x7 S phone suppork software updates (H0074E)
4-year, 24x7 SW phone support, software updates (H0074E)
5-year, 4-hour onsite, 13x5 coverage for hardware (H0071E)
5-year, 4-hour onsite, 13x5 coverage for hardware (H0071E)
5-year, 4-hour onsite, 24x7 coveroge for hardware (H0072E)
5-yeor, 4-hour onsite, 24x7 coverage for hordware (H0072E)
5-year, 4-hour onsite, 24x7 coverage for hardware, 24x7 software phone
(H0077E)
5-year, 4-hour onsite, 24x7 coveroge for hardware, 24x7 software phone
(H0077E)
5-year, 24x7 SW phone support, software updates (H0075E)
5.year, 24x7 SW phone support, software updates (H0075E)
3 Yr 6 hr Call-to-Repoir Onsite (H0065E)
3 Yr 6 hr Coll-to-Repair Onsite (HQ065E)
4 Yr 6 hr Call.to-Repair Onsite (H0070E)
4 Yr 6 hr Call-to-Repoir Onsite (H0070E)
5 Yr 6 hr Call.to-Repair Onsite (H0073E)
5 Yr 6 hr Callto-Repair Onsite (HQ073E)
1-year, 6 hour Call-To.Repair Onsite for hardware (HR573E)
1.year, 6 hour Call-To.Repair Onsite for hardware (HR573E)
1-year, 24x7 software phone support, software updates (HR572E)
1.year, 24x7 software phone support, software updotes (HR572E)
1-yeor, 4-hour omite, 24x7 coverage for hardware, 24x7 software phone
support and software updates (HR571E)
1 -year, 4-hour onsite, 24x7 coveroge for hardware, 24x7 software phone
support and software updates (HR571E)
1-year, 24x7 software phone support, software updates + Next Business Day
Hardware Exchange (HS666E)
1-year, 24x7 software phone support, software updotes + Next Business Day
Hardware Exchange (HS666E)
1-year, 24x7 software phone support, software updates + 4 hour hardware
exchange (HS667E)
1.year, 24x7 software phone support, software updates + 4 hour hordware
exchange (HS667E)
Refer to the HP website at www,bp.._conVnelwortnnsánryices for details on the
service-level descriptions and product numbers. For details abou' services and
response times in your orca, pleose contact your local HP soles office.
Refer to the HP website at y,É.yvy,j)p.çpningh.ypek,nni_soryÉ:n;" for detoils on the
servicelevel descriptions and product numbers. For details abou/ services and
response times in your arca, please contoct your local HP soles office.
General protocols
IEEE 802.1ag Service Layer OAM
IEEE 802.1D MAC Bridges
IEEE 802.1 p Priority
IEEE 802.10 VIANs
IEEE 802.1s (MSTP)
IEEE 802.1v VLAN classification by Protocol and
Port
IEEE 802.1w Ropid Reconfiguration of Spanning
Tree
IEEE 802.1X PAE
IEEE 802.3od Link Aggregation Control Protocol
(LACP)
IEEE 802.3oe 10-Gigabit Ethernet
IEEE 802.3af Power over Ethernet
IEEE 802.3at
IEEE 802.3x Flow Control
RFC 768 UDP
RFC 792 ICMP
RFC 793 TCP
RFC 826 ARP
RFC 854 TELNET
RFC 925 Multi-LAN Address Resolution
RFC 951 BOOTP
RFC 1058 RIPvl
RFC 1350 TFTP Protocol (revision 2)
RFC 1519 CIDR
RFC 1542 BOOTP Extensions
RFC 2131 DHCP
RFC 2453 RIPv2
RFC 3046 DHCP Relay Agent Information Option
RFC 3576 Ext to RADIUS (CoA only)
RFC 3768 VRRP
RFC 4675 RADIUS VLAN & Priority
802.1 r - GARP Proprietary Attribute Registration
Protocol (GERE)
IP multicast
RFC 2934 Protocol Independent Multicast MIB for
IPv4
RFC 3376 IGMPv3 (host joins only)
RFC 3618 Multicast Source Discovery Protocol
(MSDP)
RFC 3973 Draft 2 PIM Dense Mode
RFC 4601 PIM Sparse Mode
11%6
RFC 2080 RIPng for IPv6
RFC 2460 IPv6 Specificalion
RFC 2710 Multicast Listener Discovery (MLD) for
IPv6
RFC 2740 OSPFv3 for IPv6
RFC 2925 Remote Operations MIB (Ping only)
RFC 3019 MLDvl MIE
RFC 3162 RADIUS and IPv6
RFC 3315 DHCPv6 (client and relay)
RFC 3315 DHCPv6 (client only)
RFC 3810 MLDv2 (host joins only)
RFC 4022 MIE for TCP
RFC 4251 SSHv6 Architecture
RFC 4252 SSHv6 Authentication
RFC 4253 SSHv6 Transpor' Layer
RFC 4254 SSHv6 Connection
RFC 4293 MIB for IP
RFC 4419 Key Exchange for SSH
RFC 4443 ICMPv6
RFC 4541 IGMP & MLD Snooping Switch
RFC 4861 IPv6 Neighbor Discovery
RFC 4862 IPv6 Stateless Address Auto.configuration
MlBs
IEEE 8021-PAE-MIE
IEEE 8023-LAG.MIB
RFC 1213 MIB II
RFC 1493 Bridge MIE
RFC 1657 BGP-4 MIE
RFC 1724 RIPv2 MIE
RFC 1850 OSPFv2 MIB
RFC 2011 SNMPv2 MIB for IP
RFC 2013 SNMPv2 MIB for UDP
RFC 2233 Interface MIE
RFC 2273 SNMP.NOTIFICATION.MIE
RFC 2452 IPV6-TCP-MIE
RFC 2454 IPV6-UDP-MIE
RFC 2465 IPv6 MIB
RFC 2466 ICMPv6 MIB
RFC 2571 SNMP Framework MIE
RFC 2572 SNMP-MPD MIE
RFC 2573 SNMP.Notification MIE
RFC 2618 RADIUS Client MIE
RFC 2620 RADIUS Accounting MIB
RFC 2665 Ethernet-Like-MIE
RFC 2674 802.1 p and IEEE 802.10 Bridge MIE
RFC 2688 MAU-MIE
RFC 2787 VRRP MIE
RFC 2819 RMON MIE
RFC 2925 Ping MIE
RFC 3414 SNMP-User based.SM MIE
RFC 3415 SNMP-View bosed.ACM MIB
RFC 3418 MIE for SNMPv3
RFC 3621 Power Ethernet MIE
RFC 3826 AES for SNMP's USM MIE
RFC 4133 Entity MIE (Version 3)
LLDP.EXT-DOTI-MIE
LLDP-EXT-DOT3.mIE
LLDP-MIB
Network ma nagement
IEEE 802.1 AB Link Layer Discovery Protocol (LLDP)
RFC 2819 Four groups of RMON: 1 (statistics), 2
(history), 3 (alarm) and 9 (events)
RFC 3176 sFlow
ANSI/TIA.1057 LLDP Media Endpoint Discovery
(ILDP.MED)
SNMPvl/v2c/v3
OSPF
RFC 2328 OSPFv2
RFC 3101 OSPF NSSA
Security
IEEE 802.1 X Port Based Nelwork Access Control
RFC 1492 TACACS+
RFC 2865 RADIUS (client only)
RFC 2866 RADIUS Accounting
Secure Sockets Loyer (SSL)
SSHv2 Secure Shell
10
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
t
HP 5800 Switch Series
Specifications (continued)
Ports
Power supplies
48 R1-45 autosensing 10/100/1000 ports (IEEE 802.3 Type 10BASE-T, IEEE
802.3u Type 100BASE-TX, IEEE 802.3ab Type 1000BASE-T); Duplex:
10BASE-T/100BASE•TX: holf or full; 1000BASE-T: full only
48 R1-45 autosensing 10/100/1000 ports (IEEE 802.3 Type 10BASE-T, IEEE
802.3u Type 100BASE-TX, IEEE 802.3ab Type 1000BASE-T); Duplex.
10BASE-T/100BASE-TX: hall orfull; 1000BASE-T: lull only
2 extended module slots
6 fixed 1000/10000 SFP+ ports
1 open module slot
1 R1-45 serial console port
4 SFP fixed Gigabit Ethernet SFP ports
1 RJ-45 out-of•bond monagement port
1 R1•45 serial console port
1 USB 2.0
2 power supply slots
1 minimum power supply required (ordered separotely)
2 power supply slots
1 minimum power supply required (ordered separotely)
2 fan tray slots
lhe customer must order fon trays, as fon trays ore sol included with the switch.
This system requires two somedirection oirflow fon trays to lunction properly
lhe system should not be operated with only one fan troy for more Mon 24
hours. The system should not be operated without o lan troy more than two
minutes. The system should not be operated outside of the temperature range of
32 ° F (0°C) to 113°F (45°C). Failurc to comply with these operaling
requirements may void the product warranty.
Fan tray
Physical characteristics
Weighl
17.32(w) x 18.31(d) x 3.39(h) in (44.0 x 46.5 x 8.61 cm) (2U height)
17.32(w) x 25.98(d) x 1.72(h) in (43.99 x 65.99 x 4.37 cm) (1U height)
39.7 Ib (18.0 kg)
22.05 Ib (10 kg), Fully loaded
1024 MB SDRAM, 512 MB flash; packet bulfer size: 8 MB
1024 MB flash, 512 MB SDRAM; packet buffer size: 8 MB
o 5 ps (64-byte pockets)
Memory and processor
Performance
Latency
4.02 ps (Store and Forward) (64-byte pockets)
Throughput
211 million pps
161 million pps
Routing/Switching capocity
284 Gbps
216 Gbps
Routing table size
16000 entries
16000 entries
MAC address table size
32000 estries
32000 entries
Operating temperature
32°F to 113°F (0 °C to 45 °C)
32°F to 113°F (0°C to 45°C)
Operating relotive humidity
10% to 90%
10% to 90%
Acouslic
Low•speed fan: 54 dB, High•speed fan: 58.5 dB
Low•speed fan: 60.1 dB, High-speed fan: 69.9 dB
maximum heot dissipotion
6278 BTU/hr (6623.29 Id/hr)
426 BTU/hr (449.43 kl/hr)
Voltoge
100-120/200.240 VAC
100-120/200.240 VAC
DC voltage
300 W DC: -48 VDC to -60 VDC; 750 W DC: -54 VDC to -57 VDC
650W DC: -36 VDC to -72 VDC
Frequency
50/60 Hz
50/60 Hz
Safety
UL 60950-1; EN 60825.1 Salety of Laser Products-Port 1; EN 60825-2 Safety
of Laser Products•Port 2; IEC 60950-1; CAN/CSA-C22.2 No. 60950-1; Anotei;
ULAR; GOST; EN 60950-1/A11; FDA 21 CFR Subchapter1; NOM; ROHS
Compliance
UL 60950-1; EN 60825.1 Safety of laser Products-Pare 1; EN 60825.2 Sofety
of Laser Products-Pad 2; IEC 60950-1; CAN/CSA-C22.2 No. 60950-1; Anotei;
ULAR; GOST; EN 60950.1/A11; FDA 21 CFR Subchopter1; NOM; ROHS
Complíance
Emissions
VCCI Class A; EN 55022 Class A; ICES-003 Class A; ANSI C63.4 2003;
AS/NZS CISPR22 Class A; EN 61000.3-2:2006; EN 61000.13:1995
+A1:2001+A2:2005; EMC Directive 2004/108/EC; FCC (CFR 47, Port 15)
Class A
VCCI Class A; EN 55022 Class A; Id5-003 Class A; ANSI C63.4 2003;
AS/NZS CISPR22 Class A; EN 61000-3-2:2006; EN 51000.33:1995
+A1:2001+A2:2005; EMC Directive 2004/108/EC; FCC (CFR 47, Port 15)
Class A
Generic
ETSI EN 300 386 V1.3.3
ETSI EN 300 386 V1.3.3
EN
EN 55024:1998+ A 1:2001 + A2:2003
EN 55024:1998+ A1:2001 + A2:2003
ESD
EN 610004.2; IEC 61000.4.2
EN 61000-4-2; IEC 61000-4-2
Radioted
EN 61000-4.3; IEC 61000-4-3
EN 61000-4-3; IEC 61000.4-3
EFT/Burst
EN 61000-4-4; IEC 61000-4-4
EN 61000-4.4; IEC 61000.4-4
Surge
EN 61000-4-5; IEC 61000-4-5
EN 610004-5; IEC 61000-4-5
Conducted
EN 61000-4-6; IEC 61000-4.6
EN 61000.4-6; IEC 61000.4-6
Power frequency magnetic lield
IEC 61000.48; EN 610004-8
IEC 61000-4-8; EN 61000-4-8
Voltage dips and interruptions
EN 610004-11; IEC 61000-4.11
EN 6100041 1; IEC 61000-4-11
Harmonics
EN 61000-3-2, IEC 61000-3-2
EN 61000-3.2, IEC 61000-3-2
Flicker
EN 61000-3-3, IEC 61000-3-3
EN 61000-3-3, IEC 61000-3.3
Management
IMC - Intelligent Management Center; commondline interface; Web browser;
SNMP Manager; Telnet; HTTPS; RMON I; FTP
IMC • Intelligent Management Center; cornrnond-line interface; Web browser;
Environment
Electrical charocteristics
Immunity
SNMP Manager; Telnet; HTTPS; RMON 1; FTP
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
HP 5800 Switc .1 Series
Specifications (continued)
HP 5800-48G Switch with 2 Slots (1C101A)
HP 5800AF-48G Switch (JG225A)
Notes
The customer must order a power supply, as the device does not come with a
PSU. At least one JC087A, JC090A, or JC089A is required.
The customer must order a power supply, as the device does foi come with o
PSU. Ai least one 10680A or JC681A is required.
Services
3.year, 4-hour onsite, 13x5 coveroge for hardware (H0063E)
Reler to the HP website at 1.!•:■,y
Vmoyg>rj,¡ngl..wy¡çç for details on the
service-leve) descriptions and product numbers. For details about services and
response times in your area, please contact your local HP soles Office.
3-year, 4-hour onsite, 24x7 coveroge for hardware (HQ064E)
3-year, 4-hour onsite, 24x7 coveroge for hardware, 24x7 SW phone support
and SW updates (HQ067E)
3-year, 24x7 SW phone support, software updates (HQ066E)
1-year, post.wo•ranty, 4-hour onsite, 13x5 coverage for hardware (HR569E)
1-year, post.warrunty, 4-hour onsite, 24x7 coverage for hardware (HR570E)
Installation with minimurn configuration, system.based pricing (1JW451E)
4-year, 4-hour onsite, 13x5 coverage for hardware (HQ068E)
4-year, 4-hour onsite, 24x7 coverage for hardware (HQ069E)
4-year, 4-hour onsite, 24x7 coverage for hardware, 24x7 software phone
(H0076E)
4.year, 24x7 SW phone support, software updates (HQ074E)
5.year, 4-hour onsite, 13x5 coverage for hardware (H0071E)
5.year, 4-hour onsite, 24x7 coveroge for hardware (H0072E)
5.year, 4-hour onsite, 24x7 coverage for hardware, 24x7 software phone
(HQ077E)
5.year, 24x7 SW phone support, software updates (H0075E)
3 Yr 6 hr Coll-to-Repair Onsite (H0065E)
4 Yr 6 hr Call-to.Repair Onsite (HQ070E)
5 Yr 6 hr Call.to-Repair Onsite (HQ073E)
1.year, 6 hour CalíTo-Repair Onsite for hardware (HR573E)
1-year, 24x7 software phone support, software updates (HR572E)
1-year, 4-hour onsite, 24x7 coverage for hardware, 24x7 software phone
support and software updates (HR571E)
1.year, 24x7 software phone support, software updates + Next Business Day
Hardware Exchange (HS666E)
1-year, 24x7 software phone support, software updates + 4 hour hardware
exchonge (HS667E)
Refer to the HP website at www:hp.,çonVnetworkilig/seNb-,.es. for details on the
service-level descriptions and product numbers. For details about servires and
response limes in your arca, please contact your local HP soles office.
12
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
HP 5800 Switch Series
Specifications (continued)
HP 5800AF-48G Switch (JG225A)
HP 5800-48G Switch with 2 Slots (Jcloi A)
Standards and protocolo
(applies to oll products in series)
General protocols
IEEE 802.1og Service Layer OAM
IEEE 802.ID MAC Bridges
IEEE 802.1p Priority
IEEE 802.10 VLANs
IEEE 802. 1 s (MSTP)
IEEE 802.1v VLAN classilication by Protocol and
Port
IEEE 802.1w Rapid Reconfiguration of Sponning
Tree
IEEE 802.1X PAE
IEEE 802.3ad Link Aggregation Control Protocol
(LACE)
IEEE 802.3ae 10Gigabit Ethernet
IEEE 802.3af Power over Ethernet
IEEE 802.3at
IEEE 802.3x Flow Control
RFC 768 UDP
RFC 792 ICMP
RFC 793 TCP
RFC 826 ARP
RFC 854 TELNET
RFC 925 Multi.LAN Address Resolution
RFC 951 BOOTP
RFC 1058 RIPv 1
RFC 1350 TFTP Protocol (revision 2)
RFC 1519 CIDR
RFC 1542 BOOTP Extensions
RFC 2131 DHCP
RFC 2453 RIPv2
RFC 3046 DHCP Relay Agent Information Option
RFC 3576 Ext to RADIUS (CoA only)
RFC 3768 VRRP
RFC 4675 RADIUS VLAN & Priority
802.1 r GARP Proprietary Attribute Registration
Protocol (GERE)
IP multicast
RFC 2934 Protocol Independent Multicast MIE for
IPv4
RFC 3376 IGMPv3 (host joins only)
RFC 3618 Multicast Source Discovery Protocol
(MSDP)
RFC 3973 Draft 2 PIM Dense Mode
RFC 4601 PIM Sparse Mode
11, y6
RFC 2080 RIEng for IPv6
RFC 2460 IPv6 Specification
RFC 2710 Mullicast Listener Discovery (m10) for
IPv6
RFC 2740 OSPFv3 lor IPv6
RFC 2925 Rernote Operations MIE (Ping only)
RFC 3019 MLDvl MIE
RFC 3162 RADIUS and IPv6
RFC 331 5 DHCPv6 (client and relay)
RFC 3315 DHCPv6 (client only)
RFC 3810 MLDv2 (host joins only)
RFC 4022 MIB for TCP
RFC 4251 SSFIv6 Architecture
RFC 4252 SSHv6 Authentitalion
RFC 4253 SSFIv6 Transport Layer
RFC 4254 SSIly6 Connection
RFC 4293 MIE for IP
RFC 4419 Key Exchange for SSH
RFC 4443 ICMPv6
RFC 4541 IGMP & M1D Sr.00ping Switch
RFC 4861 IPv6 Neighbor D'iceovery
RFC 4862 IPv6 Stateless Address Auto-configurotion
RFC 2787 VRRP MIB
RFC 2819 RMON MIB
RFC 2925 Ping MIE
RFC 3414 SNMP-User bosed-SM MIE
RFC 3415 SNMP-View bosed-ACm MIE
RFC 341E1 MIB for SNMPv3
RFC 3621 Power Ethernet MIE
RFC 3826 AES for SNMP's USM MIE
RFC 4133 Entity MIE (Version 3)
LLDP-EXT-DOTI-MIE
LIDP-EXT-DOTIMIB
LIDE-MIE
Network management
IEEE 802.1AB Link Layer Discovery Protocol (LIDE)
RFC 2819 Four groups of RMON: 1 (stotistics), 2
(history), 3 (alam) and 9 (events)
RFC 3176 sFlow
ANSI/TIA.1057 LLDP Media Endpoint Discovery
(LLDP-MED)
SNMPvl/v2c/v3
OSPF
MIBs
IEEE 8021-PAE.MIB
IEEE 8023-LAG-MIB
RFC 1213 MIE II
RFC 1493 Bridge MIB
RFC 1657 BGP-4 MIE
RFC 1724 RIPv2 MIE
RFC 1850 OSPFv2 MIE
RFC 2011 SNMPv2 MIB for IP
RFC 2013 SNMPv2 MIB for UDP
RFC 2233 Interface MIE
RFC 2273 SNMP.NOTIFICATION-MIE
RFC 2452 IPV6-TCP-MIB
RFC 2454 IEVIS.UDE•MIB
RFC 2465 IPv6 MIE
RFC 2466 ICMPv6 MIE
RFC 2571 SNMP Framework MIE
RFC 2572 SNMP-MPD MIE
RFC 2573 SNMP-Notilication MIE
RFC 2618 RADIUS Client MIB
RFC 2620 RADIUS Accounting MIE
RFC 2665 Ethernet•ike.M1B
RFC 2674 802.1p and IEEE 802.10 Bridge MIE
RFC 2688 MAU-m[8
RFC 2328 OSPFv2
RFC 3101 OSPF NSSA
Security
IEEE 802. IX Port Based Network Access Control
RFC 1492 TACACS-1RFC 2865 RADIUS (client only)
RFC 2866 RADIUS Accounling
Secure Sockets Layer (SSL)
SSHv2 Secure Shell
13
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
P 5800 Switch Series accessories
Modules
Power Supply
HP 5800 4-port 10GbE SFP+ Module (JC091A)
HP 5800/5500 150W AC Power Supply (JD362A)
HP 5800 2-port 10GbE SFP+ Module (JC092B)
HP 5800/5500 150W DC Power Supply (1D366A)
HP 5800 16-port Gig-T Module (JC094A)
HP 5800 300W AC Power Supply (JC087A)
HP 5800 16-port SFP Module (JC095A)
HP 5800 300W DC Power Supply (JC090A)
Tronsceivers
HP 5800 750W AC Power Supply (JC089A)
HP X125 1G SFP LC LH40 1310nm Transceiver (JDO61A)
HP RPS 800 Redundant Power Supply (1D183A)
HP X120 1G SFP LC LH40 1550nm Transceiver (JDO62A)
HP RPS1600 Redundant Power System (JG136A)
HP X125 1G SFP LC LH70 Transceiver (JD063B)
HP RPS1600 1600W AC Power Supply (1G137A)
HP X120 1G SFP LC SX Transceiver (JD118B)
EPS/RPS
HP X120 1G SFP LC LX Transceiver (1D1 19B)
HP 5800 PoE Module (JC097B)
HP X120 1G SFP RJ45 T Transceiver (JD089B)
Fan Tray
HP Xl 20 1G SFP LC BX 10-U Transceiver (JD098B)
HP 5800 2RU Spare Fan Assembly (JC096A)
HP X120 1G SFP LC BX 10-D Transceiver (JD099B)
HP 5800 1 RU Spare Fan Assembly (JC098A)
HP Xl 10 100M SFP LC LH40 Transceiver (1D090A)
WLAN
HP X1 10 100M SFP LC LH80 Transceiver (1D091A)
HP Xl 10 100M SFP LC FX Transceiver (JD102B)
HP Xl 10 100M SFP LC LX Transceiver (JD1208)
HP Xl 30 10G SFP+ LC SR Transceiver (JD092B)
HP Xl 30 100 SFP+ LC LRM Transceiver (1D093B)
HP X130 100 SFP+ LC LR Transceiver (JD094B)
HP X130 10G SFP+ LC ER 40km Transceiver (JG234A)
HP X240 100 SFP+ to SFP+ 0.65m Direct Attach Copper
Cable (1D095C)
HP X240 1 OG SFP+ to SFP+ 1.2m Direct Attach Copper
Points (1D441 A)
HP 5800 Access Controller Module for 32-64 Access Points
(11)443A)
Appiiance
HP 5820 VPN Firewall Module (JD255A)
HP 5800-48G Switch with 2 Slots
(JC101A)
11P X240 100 SFP+ to SFP+ 3m Direct Attach Copper Cable
HP 5800 Access Controller Module for 64.256 Access
Points (JD441A)
(JD097C)
HP 5820 VPN Firewall Module (JD255A)
HP X240 10G SFP+ to SFP+ 5m Direct Attach Copper Cable
(1G081C)
HP 5800AF-48G Switch (JG225A)
Cables
HP 58x0AF 650W AC Power Supply (JC680A)
Cable (1D096C)
.
HP 5800 Access Controller Module for 64-256 Access
HP 0.5 m PremierFlex 0M3+ LC/LC Optical Cable
(BK837A)
HP 1 m PremierFlex 0M3+ LC/LC Optical Cable (BK838A)
HP 2 m PremierFlex 0M3+ LC/LC Optical Cable (BK839A)
HP 5 m PremierFlex 0M3+ LC/LC Optical Cable (BK840A)
HP 58x0AF 650W DC Power Supply (10681 A)
HP 58x0AF Back (power side) to Front (port side) Airflow
Fan Tray (JC682A)
HP 58x0AF Front (port side) to Back (power side) Airflow
Fan Tray (10583A)
HP 15 m PremierFlex 0M3+ LC/LC Optical Cable
(BK841A)
HP 30 m PremierFlex 0M3+ LC/LC Optical Cable
(BK842A)
HP 50 m PremierFlex 0M3+ LC/LC Optical Cable
(BK843A)
14
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
To learn more, visd www.hp.com/networking
eCopyright 2010.2012 Hewlett.Pockard Development Company, L.P. The information contained herein is
subject to change without notice. The only warranties for HP products and services are set forth in the express
worranty stotements occompanying such products and services. Nothing herein should be construed os
constituting on additional warranty. HP shall not be liable for technical or editorial errors or omissions contained
herein.
Microsoft is a U.S. registered trademark of Microsoft Corporation.
4AA3-0731ENW, Created August 2010; Updated May 2012, Rev. 5
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Data sheet
HP 8200 zl Switch Series
Key features
Product overview
• Core, distribution, mission-critical access layer
The HP 8200 zl Switch Series offers high performance, scalability, and
a wide range of features in a high-availability platform that
dramatically reduces complexity and provides reduced cost of
ownership. As part of a unified wired and wireless network
infrastructure solution, the 8200 zl series provides platform
technology, system software, system management, application
integration, wired and wireless integration, network security, and
support that are common across HP's modular and fixed-port
switches. Together, they deliver an agite, cost-effective,
high availability network solution. With key technologies to provide
solution longevity, the 8200 zl switch series is built to deliver
long-term investment protection without added complexity for
network core, aggregation, and high-avaitability access layer
deployments. It provides these capabilities while bringing to market
the industry's first highly available switch with a lifetime warranty.
• Advanced high-availability AllianceONE integrated
• Layer 2 to 4 and intelligent edge feature set
• Enterprise-class performance and security
• Scalable 10/100/1000 and 10 GbE connectivity
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Features and benefits
Quality of Service (Q0S)
• Advanced classifier-based QoS
classifies traffic using multiple match criteria based on Layer 2, 3,
and 4 information; applies QoS policies such as setting priority levei
and rate limit to selected traffic on a per-port or per-VLAN basis
• Layer 4 prioritization
enables prioritization based on TCP/UDP port numbers
• Traffic prioritization
allows real-time traffic ciassification into eight priority levels
mapped to eight queues
• Bandwidth shaping
• HP unified core-to-edge device/network management tools
provide HP networking portfolio-common device-level tools (CLI,
Web GUI, and Menu) plus seamless integration into HP
PCM+/Identity Driven Manager (IDM) network management
deployments
• Command authorization
leverages RADIUS to link a custom list of CLI commands to an
individual network administrator's login; also provides an audit trail
• Friendly port names
allow assignment of descriptive names to ports
• Dual flash images
provides independent primary and secondary operating system fites
for backup white upgrading or fine-tuning the switch configuration
— Port-based rate limiting
provides per-port ingress-/egress-enforced maximum bandwidth
• Multiple configuration files
can be stored to the flash image
—Classifier-based rate limiting
uses an access control list (ACL) to enforce maximum bandwidth
for ingress traffic on each port
• HP unified core-to-edge features
HP ProVision portfolio-common feature implementation allows
faster solution deployment
—Guaranteed minimum
provides per-port, per-queue egress-based guaranteed minimum
bandwidth
• NEW Comware-compatible CLI
Class of Service (CoS)
sets the IEEE 802.1 p priority tag based on IP address, IP Type of
Service (ToS), Layer 3 protocol, TCP/UDP port number, source port,
and DiffServ
HP AllianceONE integration
• HP AllianceONE Services zl Module
allows you to embed applications directly into the network, either
distributed throughout the network at the network edge, or
centralized in the core or distribution layer; for more information
about the HP AllianceONE solution, visit the HP website
Management
—Comware-compatible CLI
bridges the experiente of Comware CLI users who are using the
ProVision software CLI
—Display and fundamental Comware CLI commands
are embedded in the switch CLI as native commands; display
output formatted as on Comware-based switches; fundamental
commands provide a Comware-familiar initial switch setup
—Configuration Comware CLI commands
entered Comware CLI configuration commands elicit CLI help
formulating the correct ProVision software CLI command
Connectivity
• High-density port connectivity
provides 12 interface module slots, up to 288 wire-speed
10/100/1000 PoE-enabied ports, or 96 10-GbE ports per system
• Remote intelligent mirroring
mirrors selected ingress/egress traffic based on ACL, port, MAC
address, or VLAN to a local or remote HP 8200 zl, 6600, 6200 yl,
5400 zl, or 3500 Switch anywhere on the network
• IEEE 802.3az Energy Efficient Ethernet
lowers power consumption in periods of low-link usage (supported
on v2 zl 10/100/1000 and 10/100 modules)
• RMON, XRMON, and sFlow v5
provide advanced monitoring and reporting capabilities for
statistics, history, alarms, and events
• IEEE 802.3af Power over Ethernet (PoE)
provides up to 15.4 W per port to IEEE 802.3af-compliant
PoE-powered devices such as IP phones, wireless access points, and
security cameras
• IEEE 802.1 AB Link Layer Discovery Protocol (LLDP)
automated device discovery protocol provides easy mapping of
network management applications
• Uni-Directional Link Detection (UDLD)
monitors a cable between two switches and shuts down the ports
on both ends if the cable is broken, turning the bidirectional link into
a unidirectional one; this prevents network problems such as loops
• IEEE 802.3at Power Over Ethernet Plus
provides up to 30 W per port to IEEE 802.3 for PoE-/PoE+-powered
devices such as video IP phones, IEEE 802.11 n wireless access
points, and advanced pan/zoom/tilt security cameras
• Jumbo frames
on Gigabit Ethernet and 10-Gigabit ports, they allow
high-performance remote backup and disaster-recovery services
2
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
HP unified core-to-edge hardware
HP ProVision family-common interface and service modules, Gigabit
optics/10 GbE transceivers, and power supplies enable sparing
simplicity
• Prestandard PoE support
detects and provides power to prestandard PoE devices; see iist of
supported devices in the product FAQs at www.hp.com/networking
• Auto-MDIX
automatically adjusts for straight-through or crossover cables on
ali 10/100 and 10/100/1000 ports
• IPv6
—IPv6 host
enables switches to be managed in an IPv6 network
— Dual stack (IPv4 and IPv6)
transitions from IPv4 to IPv6, supporting connectivity for both
protocols
—MLD snooping
forwards IPv6 multicast traffic to the appropriate interface
—11%6 ACL/QoS
supports ACL and QoS for IPv6 network traffic
—IPv6 routing
supports static and OSPFv3 routing protocols
—6in4 tunneling
supports encapsulation of IPv6 traffic in IPv4 packets
• Distributed trunking
enables loop-free and redundant network topology without using
Spanning Tree Protocol; allows a server or switch to connect to two
switches using one logical trunk for redundancy and load sharing
• IEEE 802.1s Multiple Spanning Tree Protocol
provides high link availability in multiple VLAN environments by
allowing multiple spanning trees; encompasses IEEE 802.1D
Spanning Tree Protocol and IEEE 802.1w Rapid Spanning Tree
Protocol
• IEEE 802.3ad Link Aggregation Control Protocol (LACP) and HP
port trunking
support up to 60.trunks, each with up to eight links (ports) per trunk
• Proven ASIC and system architecture
the HP ProVision ASIC and platform architecture, leveraged from
HP's successful 5400 zl, 3500, 6600, and 6200 yl switch families,
reduces technology risk and provides reliable support and flexibility
• HP zl family components
employ market-proven intelligent edge switch interface modules,
optics, and power supplies to reduce technology risk and enhance
system reliability
• Hot-swappable modules
interface, management, and fabric modules as well as mini-GBIC
optics and power supplies can be removed, swapped, or added to
the system without interrupting ongoing switch operations
Performance
• Redundant, hot-swappable cooling
redundant fan design and hot-swappable fan tray provide
continuity of operation in case of a single fan failure
• High-speed/capacity architecture
1.12 Tbps crossbar switching fabric provides intra- and
inter-module switching with 739.2 million pps throughput on the
purpose-built ProVision ASICs
• Passive system design
passive chassis backplane (no traffic-forwarding active
componentry) provides system reliability and reduces the impact of
a component failure
• Selectable queue configurations
allow you to increase performance by selecting the number of
queues and associated memory buffering that best meet the
requirements of your network applications
• Virtual Route Redundancy Protocol
allows groups of two routers to dynamically back each other up to
create highly available routed environments
• Scalable system design
chassis architecture/backplane provides built-in performance
capacity/headroom to support next-generation
high-density/high-speed connectivity
Layer 2 switching
Resiliency and high availability
• Nonstop switching
improves network availability to better support criticai applications
such as unified communication and mobility; interface and fabric
modules continue switching traffic during failover from active to
standby management module
• Nonstop routing
enhances Layer 3 high availability; OSPFv2/v3 and VRRP will
continue to operate and route network traffic during failover from
an active to a standby management module
• Redundant management, fabric, and power
provide enhanced system availability and continuity of operations
• VLAN support and tagging
supports the IEEE 802.1Q standard and 2,048 VLANs simultaneously
• IEEE 802.1v protocol VLANs
isolate select non-IPv4 protocols automatically into their own
VLANs
• GARP VLAN Reg ,itration Protocol
allows automatic learning and dynamic assignment of VLANs
• IEEE 802.1ad QinQ
increases the scalability of an Ethernet network by providing a
hierarchical structure; connects multiple LANs on a high-speed
campus or metro network
• MAC-based VLAN
provides granular control and security; uses RADIUS to map a MAC
address/user to specific VLANs (requires v2 modules)
3
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
• NEW Rapid Per-VLAN Spanning Tree (RPVST+)
allows each virtual LAN (VLAN) to build a separate spanning tree to
improve link bandwidth usage; is compatible with PVST+
• Multiple user authentication methods
—IEEE 802.1X users per port
provides authentication of multiple IEEE 802.1X users per port
• NEW HP switch meshing
dynamically load balances across multiple active redundant links to
increase available aggregate bandwidth; allows concurrent Layer 3
routing with v2 modules
—Web-based authentication
authenticates from a Web browser for clients that do not support
IEEE 802.1 X supplicant
Layer 3 services
— MAC-based authentication
authenticates client with the RADIUS server based on a client's
MAC address
• User Datagram Protocol (UDP) helper function
allows UDP broadcasts to be directed across router interfaces to
specific IP unicast or subnet broadcast addresses and prevents
server spoofing for UDP services such as DHCP
Loopback interface address
defines an address in Routing Information Protocol (RIP) and OSPF
that can always be reachable, improving diagnostic capability
• Route maps
provide more control during route redistribution; allow filtering and
altering of route metrics
Layer 3 routing
• Static IP routing
provides manually configured routing for both IPv4 and IPv6
networks
• Routing Information Protocol (RIP)
provides RIPv1 and RIPv2 routing
• OSPF
provides OSPFv2 for IPv4 routing and OSPFv3 for IPv6 routing
• Policy-based routing
uses classifier to select traffic that can be forwarded based on
policy set by network administrator (requires v2 modules)
• Border Gateway Protocol (BGP)
provides IPv4 Border Gateway Protocol routing that is scalable,
robust, and flexible
Security
• Access control lists (A(Is)
provide filtering based on the IP field, source/destination IP
address/subnet, and source/destination TCP/UDP port number on a
per-VLAN or per-port basis
- Concurrent IEEE 802.1X, Web, and MAC authentication schemes
per port
accepts up to 32 sessions of IEEE 802.1X, Web, and MAC
authentications
• Virus throttling
detects traffic patterns typical of WORM-type viruses and either
throttles or entirely prevents the virus from spreading across the
routed VLANs or bridged interfaces without requiring externai
appliances
• DHCP protection
blocks DHCP packets from unauthorized DHCP servers, preventing
denial-of-service attacks
• Secure management access
securely encrypts ali access methods (CLI, GUI, or MIB) through
SSHv2, SSL, and/or SNMPv3
• Management Interface Wizard
helps ensure that management interfaces such as SNMP, telnet,
SSH, SSL, Web, and USB are secured at the desired levei
• Switch CPU protection
provides automatic protection against malicious network traffic
trying to shut down the switch
• ICMP throttling
defeats ICMP denial-of-service attacks by enabling any switch port
to automatically throttle ICMP traffic
• Identity-driven ACL
enables Implementation of a highly granular and flexible access
security policy and VLAN assignment specific to each authenticated
network user
• STP BPDU port protection
blocks Bridge Protocol Data Units (BPDUs) on ports that do not
require BPDUs, preventing forged BPDU attacks
• Dynamic IP lockdown
works with DHCP protection to block traffic from unauthorized
hosts, preventing IP source address spoofing
• Dynamic ARP protection
blocks ARP broadcasts from unauthorized hosts, preventing
eavesdropping or theft of network data
• Detection of malicious attacks
monitors 10 types of network traffic and sends a warning when an
anomaly that potentially can be caused by malicious attacks is
detected
4
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
• Port security
allows access only to specified MAC addresses, which can be learned
or specified by the administrator
• MAC address lockout
prevents particular configured MAC addresses from connecting to
the network
• Source-port filtering
allows only specified ports to communicate with each other
• RADIUS/TACACS+
eases switch management security administration by using a
password authentication server
• Secure Shell
encrypts ali transmitted data for secure remote CLI access over IP
networks
• Secure Sockets Layer (5U)
encrypts ali HTTP traffic, allowing secure access to the
browser-based management GUI in the switch
PoE allocations
support multiple methods (automatic, IEEE 802.3af class,
LLDP-MED, or user specified) to allocate PoE power for more
efficient energy savings
• NEW Auto VLAN configuration for voice
— RADIUS VLAN,
uses a standard RADIUS attribute and LLDP-MED to automatically
configure a VLAN for IP phones
— CDPv2
uses CDPv2 to configure legacy IP phones
Flexibility
• Unified wired and wireless deployment and management
employs the MSM765zI mobility controller, and offers secure,
advanced wireless services with simplified management and unified
wired and wireless operation across the network
• Secure FTP
allows secure file transfer to and from the switch; protects against
unwanted file downloads or unauthorized copying of a switch
configuration file
• Complete feature set
provides Gigabit PoE for edge VoIP solutions, scalable 10 GbE for
enterprise-class distribution-layer implementations, advanced
wireless management for comprehensive mobility solutions, and
criticai high-availability features for midmarket core network
deployments
• Switch management logon security
can require either RADIUS or TACACS+ authentication for secure
switch CLI logon
• Programmable ASIC design
allows the seamless addition of new QoS and security features over
time without costly hardware upgrades
• Security banner
displays a customized security policy when users log in to the switch
Warranty and support
• USB Secure Autorun (requires HP PCM+)
deploys, diagnoses, and updates a switch using a USB flash drive;
works with a secure credential to prevent tampering
• STP Root Guard
protects the root bridge from malicious attacks or configuration
mistakes
• Integrated Threat Management applications
includes advanced, scalable, switch-integrated security tools such
as stateful firewall, intrusion detection/prevention system
(IDS/IPS), and VPN concentrator via the HP Threat Management
Services zl Module
Convergente
• Lifetime warranty
for as long as you own the product with advance replacement and
next-business-day delivery (available in most countries)t
Electronic and telephone support
limited electronic and telephone support is available from HP; to
reach our support centers, refer to
www.hp.com/networking/contact-support; for details on the
duration of support provided with your product purchase, refer to
www.hp.com/networking/warrantysummary
• Software releases
to find software for your product, refer to
www.hp.com/neavorking/support; for details on the software
releases available with your product purchase, refer to
www.hp.com/networking/warrantysummary
• IP multicast routing
includes PIM Sparse and Dense modesto route IP multicast traffic
• IP multicast snooping (data-driven IGMP)
automatically prevents flooding of IP multicast traffic
• LLDP-MED (Media Endpoint Discovery)
is a standard extension of LLDP that stores values for parameters
such as QoS and VLAN to automatically configure network devices
such as IP phones
tHP warranty includes repair or replacement of hardware for as long as you own the product, with next business day advance replacement (available M most countries). The disk drive included with HP AllianceOne
Advanced Services and Services zl Modules, HP Threat Management Services ai Module, HP AllianceOne Extended zl Module with Riverbed Steelhead, HP MSM765zi Mobitity Controller and HP Survivable Branch
Communication zl Module powered by Microsoft Lync has a five-year hardware warranty. For details, reter to the Software ticense and hardware warranty statements at www.hp.cominetworkingiwarranty.
5
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
HP 8200 zi Switch Series
Specifications
HP 8206 ai Switch with Premium Software 096406)
HP 8212 zi Switch with Premium Software (19641A)
Included accessories
1 HP 8200 zl Management Module (190924)
2 HP 8200 á Fabric Module (190934)
1 HP 8200 zl System Support Module (J9095A)
1 HP 8200 zi Switch Premium License (19474A)
1 HP 8200 á Management Module 1190924)
2 HP 8200 á Fabric Module (19093A)
1 HP 8200 zl System Support Module (J90954)
1 HP 8200 zl Switch Premium license(194744)
Porta
6 open module slots
12 open module slots
Supports a maximum of 144 autosensing 10/100/1000 ports or 48 10-GbE ports or
144 mini-GBICs, or a combination
Supports a maximum of 288 autosensing 10/100/1000 porto or 96 10-GbE ports or
288 mini-GBICs, or a combination
2 power supply slots
1 minimum power supply required (ordered separately)
4 power suppty slots
2 minimum power supplies required (ordered separately)
Power supplies
Physical characteristics
17.42(w) x 17.49(d) x 10.35(h) in (44.25 x 44.42 x 26.29 cm) (6U height)
17.5(w) x 18.7(d) x 15.6(h) in (44.45 x 47.5 x 39.62 cm) (9U height)
48.1 lb (21.82 kg)
50.44 lb (22.88 kg)
Gigabit module
ARM9 @ 200 MHz; packet buffer size: 144 Mb QDR SDRAM
ARM9 @ 200 MHz; packet buffer size: 144 Mb QDR SDRAM
106 module
ARM9 @ 200 MHz; packet buffer size: 36 Mb QDR SDRAM
ARM9 @ 200 MHz; packet buffer size: 36 Mb QDR SUAM
Management module
Freescale PowerPC 8540 @ 666 MHz, 4 MB flash, 128 M8 compact flash, 256 MB DDR
SDRAM
Freescale PowerPC 8540 @ 666 MHz, 4 MB flash, 128 M8 compact flash, 256 MB DOR
SDRAM
Mounting
Mounts in an EIA-standard 19 in talco rack/equipment cabinet (hardware included);
horizontal surface mounting only. An optional 4-post cabinet rail is avaitable (see
ordering guide).
Mounts in an EIA-standard 19 in telco rack or equipment cabinet (hardware included);
horizontal surface mounting only. An optional 4-post cabinet rail Is available (see
ordering guide).
1000 Mb Latency
< 3.7 ps (FIFO 64-byte packets)
< 3.7 ps (FIFO 64-byte packets)
10 Gbps Latency
< 2.1 ps (FIFO 64-byte packets)
< 2.1 ps (FIFO 64-byte packets)
Throughput
up to 369.6 million pps
up to 739 million pps
Weight
Memory and processor
Performance
Routing/Switching capacity
496.8 Gbps
993.6 Gbps
Switch Fabric speed
561.6 Gbps
1.1 Tbps
Routing table size
10000 entries
10000 entries
MAC address table size
64000 entries
64000 entries
Operating temperature
32°F to 1 1 3°F (0°C to 45°C)
32°F to 113°F (0°C to 45 ° C)
Operating relative humidity
15% to 95% @ 131°F (55°C), noncondensing
15% to 95% @ 131°F (55°C), noncondensing
Nonoperating/Storage temperature
-40°F to 158°F (-40°C to 70 °C)
-40°F to 158°F (-40°C to 70°C)
Environment
Nonoperating/Storage relative humidity 15% to 95% @ 149°F (65°C), noncondensing
15% to 95% @ 149°F (65°C), noncondensing
Altitude
up to 10,000 ft (3 km)
up to 10,000 ft (3 km)
Acoustic
Power: 60.0 dB, Pressure: 41.3 dB; ISO 7779,150 9296
Power: 63.0 dB, Pressure: 47.8 dB; ISO 7779, ISO 9296
Electrical characteristicS
Achieved Miercom Certified Green Award
AchIeved 'berrem Certified Green Award
Description
Chassis ships without power supplies. Two power supply slots are avaitable; three
different power supplies are available. See power supply products for additional
specifications.
Chassis ships without power supplies. Four power supply slots are available; three
different power supplies are available. See power supply products for additional
specifications.
Maximum heat dissipation
2450 BTU/hr (2584.75 kJ/hr), (max. non-PoEI; 3700 BTU/hr (3903 kJ/hr) (max. PoE)
4900 BTU/hr (5170 kl/hr), (max. non-PoE); 7400 BTU/hr (7807 kilhr) (max. PoE)
Voltage
100-127/200-240 VAC
100-127/200-240 VAC
Frequency
50/60 Hz
50/60 Hz
Notes
Power supplies muni be ordered separatety. A minimum of one187124, 187134, or
193064 supply is required to power the system.
Power supplies must be ordered separately. A minimum of two187124,187134, or
193064 supplies are required to power the system.
Satety
CSA 22.2 No. 60950; UL 60950; IEC 60950; EN 60950; IEC 60825
CSA 22.2 No. 60950; UL 60950; IEC 60950; EN 60950; IEC 60825
Emissions
FCC Class A; FCC part 15 Class A; ICE-003, Canadian Radio Interface Regulation; VCCI
Class A; EN 55022/CISPR 22 Class A
FCC Class A; FCC part 15 Class A; ICE-003, Canadian Radio Interface Regulation; VCCI
Class A; EN 55022/CISPR 22 Class A
EN
EN 55024, CISPR 24
EN 55024, CISPR 24
ESD
IEC 61000-4-2; 4 kV CD, 8 kV AD
IEC 61000-4-2; 4 kV CD, 8 kV AD
Radiated
IEC 61000-4-3; 3 V/m
IEC 61000-4-3; 3 V/m
EFT/Burst
IEC 61000-4-4; 1.0 kV (power line), 0.5 kV (signal Une)
IEC 61000-4-4; 1.0 kV (power line), 0.5 kV (signal line)
Surge
IEC 61000-4-5; 1 kV/2 kV AC
IEC 61000-4-5; 1 kV/2 kV AC
Conducted
IEC 61000-4-6; 3 V
IEC 61000-4-6; 3 V
immunity
6
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
•
HP 8200 zi, Switch Series
Specifications (continued)
HP 8206 zi Switch with Premium Software 0964061
HP 8212 zi Switch with Premium Software 096410
Power frequency magnetic field
IEC 61000-4-8; 1 A/m, 50 or 60 Hz
IEC 61000-4-8; 1 A/m, 50 or 60 Hz
Voltage dips and interruptions
IEC 61000-4-11; >95% reduction, 0.5 period; 30% reduction, 25 periods
IEC 61000-4-11; >95% reduction, 0.5 period; 30% reduction, 25 periods
Harmonics
EN 61000-3-2, IEC 61000-3-2
EN 61000-3-2, IEC 61000-3-2
Fticker
EN 61000-3-3, IEC 61000-3-3
EN 61000-3-3, IEC 61000-3-3
Management
HP PCM.; HP PCM lincluded); command-fine interface; Web browser; configuration
menu; out-of-band management (serial RS-232C)
HP PCM (included); command-line interface; Web browser; configuration
HP
menu; out-of-band management (serial RS-2322)
Notes
Interface/Service modules, power supplies, and redundant management module must
be ordered separately.
RS-232C console port via an R1-45 connector.
When using mini-GB1Cs with this product, mini-GBICs with revision "13" or later (product
number ends with the letter "B" or later, for example, J485813,148590 are required.
Interface/Service modules, power supplies, and redundant management module must
be ordered separately.
RS-232C console port via an R1-45 connector.
When using mini-GBICs with this product, mini-GBICs with revision "13" or later (product
number ends with the letter "13" or latem, for example,1485813,148590 are required.
Servires
3-year, 4-hour onsite, 13x5 coverage for hardware (UW442E)
3-year, 4-hour onsite, 13x5 coverage for hardware (UW447E)
3-year, 4-hour onsite, 2407 coverage for hardware (UW443E)
3-year, 4-hour onsite, 24x7 coverage for hardware (UW448E)
3-year, 4-hour onsite, 24x7 coverage for hardware, 24x7 SW phone support and 5W
updates (UW444E)
3-year, 4-hour onsite, 24x7 coverage for hardware, 24x7 SW phone support and SW
updates (UW449E)
3-year, 24x7 SW phone support, software updates (UW445E)
3-year, 24x7 SW phone support, software updates (UW450E)
Installation with minimum configuration, system-based pricing (U4828E)
Installation with minimum configuration, system-based pricing (U4828E)
Installation with HP-provided configuration, system-based pricing (U4832E)
Installation with HP-provided configuration, system-based pricing (U4832E)
4-year, 4-hour onsite, 1305 coverage for hardware (UW462E)
4-year, 4-hour onsite, 13x5 coverage for hardware (UW467E)
4-year, 4-hour onsite, 24x7 coverage for hardware (UW463E)
4-year, 4-hour onsite, 24x7 coverage for hardware (UW468E)
4-year, 4-hour onsite, 247 coverage for hardware, 24x7 software phone (UW464E)
4-year, 4-hour onsite, 24,7 coverage for hardware, 24,7 software phone (UW469E)
4-year, 24x7 SW phone support, software updates (UW465E)
4-year, 24,7 5W phone support, software updates (UW4716)
5-year, 4-hour onsite, 13,5 coverage for hardware (UY921E)
5-year, 4-hour onsite, 13x5 coverage for hardware (UY926E)
5-year, 4-hour onsite, 29x7 coverage for hardware (UY922E)
5-year, 4-hour onsite, 24x7 coverage for hardware (UY927E)
5-year, 4-hour onsite, 24,7 coverage for hardware, 24x7 software phone (UY923E)
5-year, 4-hour onsite, 24x7 coverage for hardware, 24x7 software phone (UY928E)
5-year, 24x7 SW phone support, software updates (tlY924E)
5-year, 24x7 SW phone support, software updates (UV929E)
3 Yr 6 hr Call-to-Repair Onsite (UW446E)
3 Yr 6 hr Call-to-Repair Onsite (579376)
4 Yr 6 hr Call-to-Repair Onsite (UW466E)
4 Yr 6 hr Call-to-Repair Onsite (UW472E)
5 Yr 6 hr Call-to-Repair Onsite (079256)
5 Yr 6 hr Call-to-Repair Onsite (UY930E)
1-year, 4-hour onsite, 13x5 coverage for hardware (HR609E)
1-year, 4-hour onsite, 13x5 coverage for hardware (FIR614E)
1-year, 4-hour onsite, 240 coverage for hardware (FIR61061
1-year, 4-hour onsite, 24x7 coverage for hardware (HR615E)
1-year, 6 hour Call-To-Repair Onsite for hardware (HR613E)
1-year, b hour Call-To-Repair Onsite for hardware 016618E1
1-year, 24x7 software phone support, software updates 019612E)
1-year,
1-year, 4-hour onsite, 29x7 coverage for hardware, 24x7 software phone support
and software updates (HR611E)
1-year, 4-hour onsite, 24x7 coverage for hardware, 24x7 software phone support
and software updates (HR616E)
1-year, 24x7 software phone support, software updates • Next Business Day
Hardware Exchange 1457626)
1-year, 24x7 software phone support, software updates • Next Business Day
Hardware Exchange (1457549)
1-year, 24x7 software phone support, software updates • 4 hour hardware
exchange (H5763E)
1-year, 24x7 software phone support, software updates • 4 hour hardware
exchange (HS755E)
3-year, 24x7 software phone support, software updates • Next Business Day
Hardware Exchange IHS764E)
3-year, 24x7 software phone support, software updates • Next Business Day
Hardware Exchange 1)15756E)
3-year, 24x7 software phone support, software updates • 4 hour Hardware
Exchange 015765E)
3-year, 24x7 software phone support, software updates • 4 hour Hardware
Exchange (H5757E)
4-year. 24x7 software phone support, software updates • Next Business Day
Hardware Exchange (H5766E)
4-year, 24x7 software phone support, software updates • Next Business Day
Hardware Exchange (HS758E)
4-year, 24x7 software phone support, software updateS • 4 hour Hardware
Exchange (H5767E)
4-year, 24x7 software phone support, software updates • 4 hour Hardware
Exchange (H5759E)
5-year, 24,7 software phone support, software updates + Next Business Day
Hardware Exchange (H5768E)
5-year, 24x7 software phone support, software updates • Next Business Day
Hardware Exchange (H5760E)
5-year, 24x7 software phone support, software updates + 4 hour Hardware
Exchange (H5769E)
5-year, 24x7 software phone support, software updates • 4 hour Hardware
Exchange (H5761E)
Refer to the HP website at www.hp,cominetworking/services for details on the
service-level descriptions and product numbers. For details about services and
response times in your area, please contact your local HP safes office.
Refer to the HP website at www.hp.cominetworking/services for details on the
service-levet descriptions and product numbers. For details about services and
response times in your area, please contact your local HP safes of (ice.
7 software phone support, software updates (HR617E)
7
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
•
HP 8200 zi Switch Series
Specifications (continued)
1111 8206 el Switch with Premium Software 11960010
Standards and protocols
(applies to ali products in series)
BGP
RFC 1997 BGP Communities Attribute
RFC 2918 Route Refresh Capability
RFC 4271 A Border Gateway Protocol 4 (BGP-4)
RFC 4456 BGP Route Reflection: An Alternative to Full
Mesh Internai BGP (IBGP)
RFC 4724 Graceful Restart Mechanism for BGP
RFC 5492 Capabilities Advertisement with BGP-4
Dental of service protection
CPU DoS Protection
Oevlce management
RFC 1591 DNS (client)
HTML and telnet management
General protocols
IEEE 802.1 ad Q-in-Q
IEEE 802.1 AX-2008 Link Aggregation
IEEE 802.1D MAC Bridges
IEEE 802.1p Priority
IEEE 802.1Q VLANs
IEEE 802.1s Multiple Spanning Trees
IEEE 802.1v VIAS classification by Protocol and Port
IEEE 802.1w Rapid Reconfiguration of Spanning Tree
IEEE 802.3ad Link Aggregation Controt Protocol (LACP)
IEEE 802.3af Power over Ethernet
IEEE 802.3x Flow Control
RFC 768 UDP
RFC 783 TFTP Protocol (revision 2)
RFC 792 ICMP
RFC 793 TCP
RFC 826 ARP
RFC 854 TELNET
RFC 868 Time Protocol
RFC 951 BOOTP
RFC 1058 RIPv 1
RFC 1350 TFTP Protocol (revision 2)
RFC 1519 ODR
RFC 1542 BOOTP Extensions
RFC 2030 Simple Network Time Protocol (SNTP) v4
RFC 2131 DHCP
RFC 2453 RIPv2
RFC 2548 (MS-RAS-Vendar only)
RFC 3046 DHCP Relay Agent Information Option
RFC 3576 Ext to RADIUS (CoA anly)
RFC 3768 VRRP
RFC 4675 RADIUS VLAN & Priority
UDLD (Uni-directional Link Detection)
IP multicast
RFC 3376 IGMPv3 (host tains only)
HP 8212 ai Switch with Premium Software (J9641 A)
RFC 3973 PIM Dense Mode
RFC 4601 PIM Sparse Mode
IPv6
RFC 1981 IPv6 Path MTU Discovery
RFC 2375 IPv6 Multicast Address Assignments
RFC 2460 IPv6 Specification
RFC 2464 Transmission of IPv6 over Ethernet Networks
RFC 2710 Multicast Listener Discovery (MLD) for IPv6
RFC 2925 Definitions of Managed Objecte for Remote
Ping, Traceroute, and Lookup Operations (Ping only)
RFC 3019 MLDv1 MIO
RFC 3315 DHCPv6 (client and relay)
RFC 3484 Default Address Selection for IPv6
RFC 3587 IPv6 Global Unicast Address Format
RFC 3596 DNS Extension for IPv6
RFC 3810 Multicast Listener Discovery Version 2
(MLDv2) for IPv6
RFC 4022 M113 for TCP
RFC 4087 IP Tunnet M18
RFC 4113 MIB for UDP
RFC 4213 Basic Transition Mechanisms for IPv6 Hosts
and Routers
RFC 4251 5SHv6 Architecture
RFC 4252 SSHv6 Authentication
RFC 4253 5SHv6 Transport Layer
RFC 4254 5SHv6 Connection
RFC 4291 IP Version 6 Addressing Architecture
RFC 4293 MIO for IP
RFC 4294 IPv6 Node Requirements
RFC 4419 Key Exchange for SSH
RFC 4443 ICMPv6
RFC 4541 IGMP & MLD Snooping Switch
RFC 4861 IPv6 Neighbor Discovery
RFC 4862 IPv6 Stateless Address Auto-configuration
RFC 5095 Deprecation of Type O Routing Headers in IPv6
RFC 5340 OSPFv3 for IPv6
RFC 5453 Reserved IPv6 Interface Identifiers
RFC 5519 Multicast Group Membership Discovery MIO
(M1Dv2 only)
RFC 5722 Handting of OverlappinglPv6 Fragments
RFC 2668 802.3 MAU MIEI
RFC 2674 802.1p and IEEE 802.1Q Bridge MIO
RFC 2737 Entity MIB (Version 2)
RFC 2787 VRRP MI13
RFC 2863 The Interfaces Group MIEI
RFC 2925 Ping MIO
RFC 2933 IGMP MIB
Network management
IEEE 802.14B Link Layer Discovery Protocol (LLDP(
RFC 2819 Four groups of RMON: 1 (statistics), 2 (history),
3 (alarm) and 9 (events)
RFC 3176 sFlow
ANSI/TIA-1057 LIDP Media Endpoint Discovery
(LLDP-MED)
SNMPvl /v2c/v3
XRMON
OSPF
RFC 2328 OSPFv2
RFC 3101 OSPF NSSA
RFC 3623 Graceful OSPF Restart (Unplanned Outages
only)
RFC 5340 OSPFv3 for IPv6
045/CoS
RFC 2474 DiffServ Precedence, including 8 queueS/POrt
RFC 2597 DiffServ Assured Forwarding (AF)
RFC 2598 DiffServ Expedited Forwarding (EF)
Security
IEEE 802.1X Port flased Network Access Control
RFC 1492 TACACS+
RFC 2865 RADIUS (client only)
RFC 2866 RADIUS Accounting
RFC 3579 RADIUS Support For Extensible Authentication
Protocol (EAP)
Secure Sockets Layer (SSL)
SSHv2 Secure Shell
MIBs
IEEE 802.1 ap (MSTP and STP MIB's only)
RFC 1213 MIO II
RFC 1493 Bridge MIO
RFC 1724 RIPv2 MIO
RFC 1850 OSPFv2 MIB
RFC 2021 RMONv2 MIB
RFC 2096 IP Forwarding Table MIO
RFC 2613 SMON MI8
RFC 2618 RADIUS Client MIB
RFC 2620 RADIUS Accounting MIO
RFC 2665 Ethernet-Like-MIB
8
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
. HP 8200 á Switch Series
Specifications (continued)
HP 8206-446-PoE.-280 v2 et Switch with Premium Software (19638A)
HP 8212-926-Pole-210 v2 zl Switch with Premium Software (19639A)
Included accessories
1 HP 8200 21 Management Module (190924)
2 HP 8200 21Fabric Module (19093A)
1 HP 8200 21System Support Module (19095A)
1 HP 1500W PoE+ 21 Power Supply (193064)
1 HP 24-port Gig-T PoE+ v2 21 Module (19534A)
1 HP 20-port Gig-T PoE+ / 2-port 1060E SFP+ v2 21 Module (195360)
1 HP 8200 zl Switch Premium License (19474A)
1 HP 8200 zIManagement Module (19092A)
2 HP 820021 Fabril Module (190934)
1 HP 8200 zI System Support Module (J9095A)
1 HP 8200 zl Switch Premium License (19474A)
2 HP 1500W PoE+ 21 Power Supply (193064)
3 HP 24-port Gig-T PoE+ v2 zI Module (19534A)
1 HP 20-port Gig-T PoE+ / 2-port 106bE SFP+ v2 21 Module (19536A)
Pons
44 R1-45 autosensing 10/100/1000 PoE+ porto (IEEE 802.3 Type 10BASE-T, IEEE
802.3u Type 100BASE-TX, IEEE 802.3ab Type 1000BASE-T, IEEE 802.3at PoE.); Media
Type: Auto-MDIX; Duplex: 10BASE-T/100BASE-TX: half or fali; 1000BASE-T: full only
92 R1-45 autosensing 10/100/1000 PoE+ porto (IEEE 802.3 Type 10BASE-T, IEEE
802.3u Type 100BASE-TX, IEEE 802.3ab Type 1000BASE-T, IEEE 802.3at PoE*1: Media
Type: Auto-MOIX; Duplex: 10BASE-T/100BASE-TX: half or fali; 1000BASE-T: fui( only
Power supplies
2 SFP+ 10-GbE porto; Duplex: fali only
2 SFP+ 10-GbE porto; Duplex: fali only
4 open module slots
8 open module slots
Supports a maximum of 144 autosensing 10/100/1000 porto or 48 10-GbE porto or
144 mini-GBICs, or a combination
Supports a maximum of 288 autosensing 10/100/1000 porto or 96 10-GbE porto or
288 mini-GBICs, or a combination
2 power supply slots
1 minimum power supply required
includes: 1 x 19306A (HP 1500W PoE+ 21 Power Supply)
4 power supply doto
2 minimum power supplies required
includes: 2 x 19306A IHP 1500W PoE+ 21 Power Supply)
Physical characteristics
17.42(w) x 17.49(d) x 10.35(h) in (44.25 x 44.42 x 26.29 cm) (6U height)
17.5(w) x 18.7(d) x 15.6(h) in (44.45 x 47.5 x 39.62 cm) (9U height)
61.49 lb (27.89 kg)
102.7616 (46.61 kg)
Gigabit module
ARM9 @ 200 MHz; packet buffer size: 144 Mb QDR SDRAM
ARM9 @ 200 MHz; packet buffer size: 144 Mb 506 SDRAM
10G module
ARM9 @ 200 MHz; packet buffer size: 36 Mb QDR SDRAM
ARM9 @ 200 MHz; packet buffer size: 36 Mb QDR SDRAM
Management module
Freescale PowerPC 8540 @ 666 MHz, 4 MB flash, 128 MB compact flash, 256 MB DDR
SDRAM
Freescale PowerPC 8540 @ 666 MHz, 4 MB flash, 128 MB compact flash, 256 MB DOR
SDRAM
Mounting
Mounts in an EIA-standard 19 in tetro rack/equipment cabinet (hardware included);
horizontal surface mounting only. An optional 4-post cabinet rail is available (see
ordering guide).
Mounts in an EIA-standard 19 in telco rack or equipment cabinet (hardware included);
horizontal surface mounting only. An optional 4-post cabine( rail is available (see
ordering guide).
Weight
Memory and processor
Performance
1000 Mb Latency
< 3.7 ps (FIFO 64-byte packets)
< 3.7 ps (FIFO 64-byte packets)
10 Gbps Latency
< 2.1 ps (FIFO 64-byte packets)
< 2.1 ps (FIFO 64-byte packets)
Throughput
up to 369.6 million pps
up to 739 million pps
Routing/Switching capacity
496.8 Gbps
993.6 Gbps
Switch fabril speed
561.6 Gbps
1.1 Tbps
Routing table size
10000 entries
10000 entries
MAC address table size
64000 entries
64000 entries
Operating temperature
32°F to 113°F (0°C to 45°C)
32°F to 113°F (0°C to 45 ° C)
Operating relative humidity
15% to 95% @ 131°F (55°0, noncondensing
15% to 95% @ 131°F (55°C), noncondensing
Nonoperating/Storage temperature
-40°F to 158°F (-40°C to 70°C)
-40°F to 158°F (-40°C to 70°C)
Environment
Nonoperating/Storage relative humidity 15% to 95%@ 149°F (65°C), noncondensing
15% to 95% @ 149°F (65°C), noncondensing
Altitude
up to 10,000 ft (3 km)
up to 10,000 ft (3 km)
Acoustic
Power: 60.0 dB, Pressure: 41.3 dB; ISO 7779, ISO 9296
Power: 63.0 dB, Pressure: 47.8 dB; 150 7779,150 9296
Achieved
Achieved Miercom Certified Green Award
Electrical characteristics
MiL,COM
Certified Green Award
Description
Chassis ships without power supplies. Two power supply slots are available; three
different power supplies are available. See power supply products for additional
specifications.
Chassis ships without power supplies. Four power supply slots are available; three
different power supplies are available. See power supply products for additional
specifications.
Maximum heat dissipation
2450 BTU/hr (2584.75 kl/hr), (max. non-PoE); 3700 BTU/hr (39031(.1/hr) (max. PoE)
4900 BTU/hr (5170 kl/hr), (max. non-PoE); 7400 BTU/hr (78071(1/hr) (max. PoE)
Voltage
100-127/200-240 VAC
100-127/200-240 VAC
Frequency
50/60 Hz
50/60 Hz
Notes
Power supplies mus( be ordered separately. A minimum of one 18712/1,18713A, or
19306A supply is required to power the system.
Power suppties must be ordered separately. A minimum of two 18712A, 18713A, or
19306A supplies are required to power the system.
Satety
CSA 22.2 No. 60950; UL 60950; IEC 60950; EN 60950; IEC 60825
CSA 22.2 No. 60950; UL 60950; IEC 60950; EN 60950; IEC 60825
Emissions
FCC Class A; FCC part 15 Class A; ICE-003, Canadian Radio Interface Regulation; VCCI
Class A; EN 55022/C1SPR 22 Class A
FCC Class A: FCC part 15 Class A; ICE-003, Canadian Radio Interface Regulation; VCCI
Class A; EN 55022/CISPR 22 Class A
9
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
HP 8200 zi Switch Series
Specifications (continued)
HP 8206-44G-PoE.-2XG v2 et Switch with Premium Software (19638A)
HP B212-92G-PoE.-2XG v2 ai Switch with Premium Software (19639A)
EN
EN 55024, CISPR 24
EN 55024, CISPR 24
ESD
IEC 61000-4-2; 4 kV CD, 8 kV .,:, 0
IEC 61000-4-2; 4 kV CO, 8 kV AD
Radiated
IEC 61000-4-3; 3 V/m
IEC 61000-4-3; 3 V/m
EFT/Burst
IEC 61000-4-4; 1.0 kV (power line), 0.5 kV (signa) line)
IEC 61000-4-4; 1.0 kV (power line), 0.5 kV (signa' line)
Surge
IEC 61000-4-5; 1 kV/2 kV AC
IEC 61000-4-5; 1 kV/2 kV AC
Conducted
IEC 61000-4-6; 3 V
IEC 61000-4-6; 3 V
Power frequency magnetic field
IEC 61000-4-8; 1 A/m, 50 or 60 Hz
IEC 61000-4-8; 1 A/m, 50 or 60 Hz
Voltage dips and interruptions
IEC 61000-4-11; >95% reduction, 0.5 period; 30% reduction, 25 periods
IEC 61000-4-11; >95% reduction, 0.5 period; 30% reduction. 25 periods
Harmonics
EN 61000-3-2, IEC 61000-3-2
EN 61000-3-2, IEC 61000-3-2
Flicker
EN 61000-3-3, IEC 61000-3-3
EN 61000-3-3, IEC 61000-3-3
Management
HP PCM.; HP PCM (included); command-tine interface: Web browser; configuration
menu; out-of-band management (serial RS-232C)
HP PCM+; HP PCM (included): command-line interface; Web browser; configuration
menu; out-of-hand management (serial RS-232C)
Notes
Interface/Service modules, power supplies, and redundant management module must
be ordered separately.
RS-232C console port via an121-45 connector.
When using mini-GBICs with this product, mini-GBICs with revision "8" or tater (product
number ends with the letter "B" or tater, for example, 148588, 14859C) are required.
Interface/Service modules, power supplies, and redundant management module must
be ordered separately.
RS-232C console port via an RJ-45 connector.
When using mini-GBICs with this product, mini-GBICs with revision "8" or tater (product
number ends with the letter "B" or (ater, for example,1485813,14859C) are required.
Servires
3-year. 4-hour onsite, 13x5 coverage for hardware (UW442E)
3-year, 4-hour onsite, 13x5 coverage for hardware (UW447E)
3-year, 4-hour onsite, 24x7 coverage for hardware (UW443E)
3-year, 4-hour onsite, 24x7 coverage for hardware (UW448E)
3-year. 4-hour onsite, 24x7 coverage for hardware, 24x7 SW phone support and SW
updates (UW444E)
3-year, 4-hour onsite, 24x7 coverage for hardware, 24x7 SW phone support and SW
updates (UW449E)
3-year, 24x7 SW phone support, software updates (UW445E)
3-year, 24x7 SW phone support, software updates (UW450E)
Installation with minimum configuration, system-based pricing (U4828E)
Installation with minimum configuration, system-based pricing (U4828E)
Installation with HP-provided configuration, system-based pricing (U4832E)
Installation with HP-provided configuration, system-based pricing (U4832E)
4-year, 4-hour onsite, 13x5 coverage for hardware (UW462E)
4-year, 4-hour onsite, 13x5 coverage for hardware (UW467E)
4-year, 4-hour onsite, 24x7 coverage for hardware (UW463E)
4-year, 4-hour onsite, 24x7 coverage for hardware (UW468E)
4-year, 4-hour onsite, 24x7 coverage for hardware, 24x7 software abone (UW464E)
4-year, 4-hour onsite, 24x7 coverage for hardware, 24x7 software phone (UW469E)
4-year, 24x7 SW phone support, software updates (UW465E)
4-year, 24x7 SW phone support, software updates (UW471E)
5-year, 4-hour onsite, 13x5 coverage for hardware (UY921E)
5-year, 4-hour onsite, 13x5 coverage for hardware (0926E)
5-year, 4-hour onsite, 24x7 coverage for hardware (UY922E)
5-year, 4-hour onsite, 24x7 coverage for hardware (UV927E)
5-year, 4-hour onsite, 24x7 coverage for hardware, 24x7 software phone (UY923E)
5-year, 4-hour onsite, 24x7 coverage for hardware, 24x7 software phone (UY92BE)
lmmunity
5-year, 247 SW phone support, software updates (UY924E)
5-year, 24x7 SW phone support, software updates (UV929E)
3 Vr 6 hr Call-to-Repair Onsite (UW446E)
3 Yr 6 hr Call-to-Repair Onsite (UY937E)
4 Vr 6 hr Cal)-to-Repair Onsite (UW466E)
4 Yr 6 hr Call-to-Repair Onsite (UW472E)
5 Yr 6 hr Catl-to-Repair Onsite (UY925E)
5 Yr 6 hr Call-to-Repair Onsite (UY930E)
1-year. 4-hour onsite, 13x5 coverage for hardware (FIR609E)
1-year, 4-hour onsite, 13x5 coverage for hardware (HR614E)
1-year, 4-hour onsite, 29x7 coverage for hardware (HR610E)
1-year, 4-hour onsite, 24x7 coverage for hardware (HR615E)
1-year, 6 hour Call-To-Repair Onsite for hardware (HR613E)
1-year, 6 hour Call-To-Repair Onsite for hardware (HR618E)
1-year, 24x7 software phone support, software updates (VIREI 2E)
1-year, 24x7 software phone support, software updates (HR617E)
1-year, 4-hour onsite, 24x7 coverage for hardware, 24x7 software phone support
and software updates (HR611E)
1-year, 4-hour onsite, 24x7 coverage for hardware, 24x7 software phone support
and software updates (HR616E)
1-year, 24x7 software pht"e support, software updates + Next Business Day
Hardware Exchange (H5762C
1-year, 24x7 software phone support, software updates + Next Business Day
Hardware Exchange (H5754E)
1-year, 24x7 software phone support, software updates • 4 hour hardware
exchange (H5763E)
1-year, 24x7 software phone support, software updates • 4 hour hardware
exchange (H5755E)
3-year, 24x7 software phone support, software updates + Next Business Day
Hardware Exchange (HS764E)
3-year, 24x7 software phone support, software updates • Next Business Day
Hardware Exchange (H5756E)
3-year, 24x7 software phone support, software updates • 4 hour Hardware
Exchange (HS765E)
3-year, 24x7 software phone support, software updates • 4 hour Hardware
Exchange (H5757E)
4-year, 24x7 software phone support, software updates • Next Business Day
Hardware Exchange (HS766E)
4-year, 24x7 software phone support, software updates + Next Business Day
4-year, 24x7 software phone support, software updates + 4 hour Hardware
4-year, 24x7 software phone support, software updates 4 hour Hardware
Exchange tHS767E)
Exchange (HS759E)
5-year, 24x7 software phone support, software updates • Next Business Day
Hardware Exchange (HS768E)
5-year, 24x7 software phone support, software updates • Next Business Oay
Hardware Exchange (HS760E)
5-year, 24x7 software phone support, software updates + 4 hour Hardware
Exchange )H5769E)
5-year, 24x7 software phone support, software updates • 4 hour Hardware
Exchange (HS761 E)
Hardware Exchange (HS7S8E)
10
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
HP 8200 zl Switch Series
Specifications (continued)
Standards and protocols
(applies to ali products in series)
HP 8206-445-PoE•-2XG v2 ai Switch with Premium Software (19638A)
HP13212-92G-PoE.-2X6 v2 alSwItch with Premium Software (196395)
Reler to the HP website at www.hp.corninetworkIngiservices for details on the
service-level descriptions and product numbers. For details about services and
response times in your area, please contact your local HP soles office.
Reter to the HP website at www.hp.com/networking/services for details on the
service-level descriptions and product numbers. For details about services and
response times in your area, please contact your local HP soles office.
BGP
RFC 1997 BGP Communities Attribute
RFC 2918 Route Refresh Capability
RFC 4271 A Border Gateway Protocol 4 (BGP-4)
RFC 4456 BGP Route Reflection: An Alternative to Full
Mesh Internai BGP (IBGP)
RFC 4724 Graceful Restart Mechanism for BGP
RFC 5492 Capabilities Advertisement with 8GP-4
Dental of service protectIon
CPU DoS Protection
Device management
RFC 1591 UNS (client)
HTML and telnet management
General protocols
IEEE 802.1ad Q-in-C)
IEEE 802.1AX-2008 Link Aggregation
IEEE 802.10 MAC Bridges
IEEE 802.1p Priority
IEEE 802.10 VIANs
IEEE 802.1s Multiple Spanning Trees
IEEE 802.1v VLAN classification by Protocol and Port
IEEE 802.1w Rapid Reconfiguration of Spanning Tree
IEEE 802.3ad Link Aggregation Control Protocol (LACP)
IEEE 802.3af Power over Ethernet
IEEE 802.3x Flow Control
RFC 768 UDP
RFC 783 TFTP Protocol (revision 2)
RFC 7921CMP
RFC 793 TCP
RFC 826 ARP
RFC 854 TELNET
RFC 868 Time Protocol
RFC 951 BOOTP
RFC 1058 RIPvl
RFC 1350 TFTP Protocol (revision 2)
RFC 1519 CIDR
RFC 1542 BOOTP Extensions
RFC 2030 Simple Network Time Protocol (SNTP) v4
RFC 2131 DHCP
RFC 2453 RIPv2
RFC 2548 (MS-RAS-Vendor only)
RFC 3046 DHCP Relay Agent Information Option
RFC 3576 Ext to RADIUS (COA only)
RFC 3768 VRRP
RFC 4675 RADIUS VLAN & Priority
UDLD (Uni-directional Link Detection)
IP multicast
RFC 3376 IGMPv3 (host joins only)
RFC 3973 PIM Dense Mode
RFC 4601 PIM Sparse Mode
IPv6
RFC 1981 IPv6 Path MTU Discovery
RFC 2375 IPv6 Multicast Address Assignments
RFC 2460 IPv6 Specification
RFC 2464 Transmission of IPv6 over Ethernet Networks
RFC 2710 Multicast Listener Discovery (MIO) for IPv6
RFC 2925 Definitions of Managed Objecta for Remote
Ping, Traceroute, and Lookup Operations (Ping only)
RFC 3019 MLDvl MIB
RFC 3315 OHCPv6 (client and relay)
RFC 3484 Default Address Selection for IPv6
RFC 3587 IPv6 Global Unicast Address Format
RFC 3596 ONS Extension for IPv6
RFC 3810 Multicast Listener Discovery Version 2
(MLDv2) for IPv6
RFC 4022 MIS for TCP
RFC 4087 IP Tunnel MIS
RFC 4113 MIB for UDP
RFC 4213 Basic Transition Mechanisms
IPv6 Hasta
and Routers
RFC 4251 SSHv6 Architecture
RFC 4252 SSHv6 Authentication
RFC 4253 SSHv6 Transport Layer
RFC 4254 SSHv6 Connection
RFC 4291 IP Version 6 Addressing Architecture
RFC 4293 MIB for IP
RFC 4294 IPv6 Node Requirements
RFC 4419 Key Exchange for SSH
RFC 44431CMPv6
RFC 4541 IGMP & MLD Snooping Switch
RFC 4861 IPv6 Neighbor Discovery
RFC 4862 IPv6 Stateless Address Auto-configuration
RFC 5095 Deprecation of Type O Routing Headers in IPv6
RFC 5340 OSPFv3 for IPv6
RFC 5453 Reserved IPv6 Interface Identifiers
RFC 5519 Multicast Group Membership Discovery MIB
(MLDv2 only)
RFC 5722 Handling of Overlapping IPv6 Fragmenta
RFC 2668 802.3 MAU M18
RFC 2674 802.1 p and IEEE 802.1Q Bridge MI8
RFC 2737 Entity MIB (Version 2)
RFC 2787 VRRP MIB
RFC 2863 The Interfaces Group MIB
RFC 2925 Ping MIB
RFC 2933 IGMP MIB
Network management
IEEE 802.1AB Link Layer Discovery Protocol (LLOP)
RFC 2819 Four groups of RMON: 1 (statistics), 2 (history).
3 (alarm) and 9 (events)
RFC 3176 sFlow
ANSI/TIA-1057 LLDP Media Endpoint Discovery
(LLDP-MED)
SNMPv1 /02c/v3
XRMON
OSPF
RFC 2328 OSPFv2
RFC 3101 OSPF NSSA
RFC 3623 Graceful OSPF Restart (Unplanned Outages
only)
RFC 5340 OSPFv3 for IPv6
QoS/CoS
RFC 2474 DiffServ Precedence, including 8 queues/port
RFC 2597 DiffServ Assured Forwarding (AF)
RFC 2598 DiffServ Expedited Forwarding (EF)
Security
IEEE 802.1X Port Based Network Access Control
RFC 1492 TACACS+
RFC 2865 RADIUS (client only)
RFC 2866 RADIUS Accounting
RFC 3579 SADIOS Support For Extensible Authent ration
Protocol (EAP)
Secure Sockets Layer (5511
SSHv2 Secure ShelI
MlBs
IEEE 802.1 ap (MSTP and STP MIB's only)
RFC 1213 MI8 II
RFC 1493 Bridge M113
RFC 1724 RIPv2 MI8
RFC 1850 OSPFv2 MI8
RFC 2021 RMONv2 MIB
RFC 2096 IP Forwarding Table MIB
RFC 2613 SMON MIB
RFC 2618 RADIUS Client MIB
RFC 2620 RADIUS Accounting MIB
RFC 2665 Ethernet-Like-MI8
11
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
HP 8200 zi Switch Series accessories
HP X112 100M SFP LC BX-U Transceiver (J9100B)
Modules
HP X132 10G SFP+ LC LR Transceiver (19151A)
HP 8-port 10GBASE-T v2 zI Module (19546A)
HP X132 10G SFP+ LC LRM Transceiver (J9152A)
HP 8-port 10GbE SFP+ v2 zl Module (J9538A)
HP X121 1G SFP LC LH Transceiver (J4860C)
HP 4-port 10GbE CX4 zl Module (J8708A)
HP X121 1G SFP LC SX Transceiver (J4858C)
HP 4-port 10GbE X2 zl Module (18707A)
HP X121 1G SFP LC LX Transceiver (J4859C)
HP 4-port 10GbE SFP+ zl Module (J9309A)
HP X121 1G SFP RJ45 T Transceiver (18177C)
HP X132 10G SFP+ LC SR Transceiver (.19150A)
HP 20-port Gig-T PoE+ / 2-port 10GbE SFP+ v2 zl Module (J9536A)
HP X122 1G SFP LC BX-D Transceiver (J9142B)
HP 20-port Gig-T / 2-port 10GbE SFP+ v2 zl Module (J9548A)
HP X122 1G SFP LC BX-U Transceiver (J9143B)
HP 20-port Gig-T PoE+ / 4-port SFP v2 zl Module (19535A)
HP X132 10G SFP+ LC ER Transceiver (19153A)
HP 20-port Gig-T / 4-port SFP v2 zl Module (J9549A)
HP 24-port SFP v2 zl Module (J9537A)
HP 12-port Gig-T PoE+ / 12-port SFP v2 zl Module (J9637A)
HP 24-port Gig-T PoE+ v2 zl Module (J9534A)
HP 24-port Gig-T v2 zl Module (J9550A)
HP 24-port 10/100/1000 PoE zl Module (J8702A)
HP 20-port Gig-T / 4-port Mini-GBIC zl Module (J8705A)
HP 24-port Mini-GBIC zI Module (J8706A)
HP 24-port 10/100 PoE+ v2 zl Module (J9547A)
HP 24-port 10/100 PoE+ zl Module (19478A)
HP 24-port 10/100/1000 PoE+ zl Module (J9307A)
HP 20-port 10/100/1000 PoE+ / 4-port Mini-GBIC zl Module (J9308A)
HP 8200 zl System Support Module (J9095A)
HP 8200 zl Management Module (J9092A)
HP 8200 zl Fabric Module (J9093A)
HP Extended Services zl Module with Riverbed Steelhead RiOST" Application
(J9517A)
Cables
HP X242 10G SFP+ to SFP+ 1 m Direct Attach Copper Cable (19281 B)
HP X242 10G SFP+ to SFP+ 3m Direct Attach Copper Cable (J92838)
HP X242 10G SFP+ to SFP+ 7m Direct Attach Copper Cable (1928513)
HP X244 10G XFP to SFP+ 1 m Direct Attach Copper Cable (J9300A)
HP X244 10G XFP to SFP+ 3m Direct Attach Copper Cable (J9301 A)
HP X244 10G XFP to SFP+ Sm Direct Attach Copper Cable (19302A)
HP 0.5 m Multimode 0M3 LC/LC Optical Cable (AJ833A)
HP 1 m Multimode 0M3 LC/LC Optical Cable (AJ834A)
HP 2 m Multimode 0M3 LC/LC Optical Cable (AJ835A)
HP 5 m Multimode 0M3 LC/LC Optical Cable (AJ836A)
HP 15 m Multimode 0M3 LC/LC Optical Cable (AJ837A)
HP 30 m Multimode 0M3 LC/LC Optical Cable (A1838A)
HP 50 m Multimode 0M3 LC/LC Optical Cable (AJ839A)
HP 0.5 m PremierFlex 0M3+ LC/LC Optical Cable (8K837A)
HP 1 m PremierFlex 0M3+ LC/LC Optical Cable (BK838A)
HP Survivable Branch Communication zl Module powered by Microsoft° Lync
(J9485A)
HP 2 m PremierFlex 0M3+ LC/LC Optical Cable (BK839A)
HP Services zl Module for Avaya Aura Session Border Controller powered by
Acme Packet (J9486A)
HP 15 m PremierFlex 0M3+ LC/LC Optical Cable (BK841A)
HP Threat Management Services zl Module with 1-year IPS Subscription Service
(J9156A)
HP 50 m PremierFlex 0M3+ LC/LC Optical Cable (BK843A)
HP Threat Management Services zl Module (J915SA)
HP 5 m PremierFlex 0M3+ LC/LC Optical Cable (BK840A)
HP 30 m PremierFlex 0M3+ LC/LC Optical Cable (BK842A)
HP X242 10G SFP+ to SFP+ 10m Direct Attach Copper Cable (J9286B)
HP X242 10G SFP+ to SFP+ 15m Direct Attach Copper Cable (J9287B)
HP Services zI Module (19289A)
HP Advanced Services zl Module (J9483A)
Power Supply
HP Advanced Services zl Module with Microsoft° Windows° Server 2008 R2
Standard (J9666A)
HP 1500W PoE+ zl Power Supply (19306A)
HP Advanced Services zl Module with Citrix XenServer platform (19747A)
HP 875W zl Power Supply (18712A)
HP 1500W zl Power Supply (J8713A)
HP Advanced Services zl Module with VMware vSphere Platform (J9748A)
License
Transceivers
HP 8200 zl Switch Premium License (J9474A)
HP X131 10G X2 SC ER Transceiver (J8438A)
HP X131 10G X2 SC SR Transceiver (J8436A)
HP X131 10G X2 CX4 Transceiver (J8440C)
Appliance
HP PCM+ Agent with ONE Services zl Module (J9496A)
HP X111 100M SFP LC FX Transceiver (J9054C)
HP 8206 zl Switch with Premium Software (J9640A)
HP X131 10G X2 SC LR Transceiver (J8437A)
HP 20-port Gig-T / 4-port SFP v2 zl Module (J9549A)
HP X131 10G X2 SC LRM Transceiver (J9144A)
HP 8206 zl Switch Fan Tray (J9476A)
HP X112 100M SFP LC BX-D Transceiver (19099B)
12
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
. HP 8200 zi Switch Series accessories
(continued)
HP 20-port Gig-T / 4-port SFP v2 zl Module (J9549A)
HP 8212 zl Switch with Premium Software (J9641 A)
HP 8212 zl Fan Tray (J9094A)
HP 20-port Gig-T / 4-port SFP v2 zl Module (J9549A)
HP 8206-44G-PoE+-2XG v2 zl Switch with Premium Software
(J9638A)
HP 20-port Gig-T / 4-port SFP v2 zl Module (J9549A)
HP 8206 zl Switch Fan Tray (J9476A)
HP 8212-92G-PoE+-2XG v2 zl Switch with Premium Software
(J9639A)
HP 8212 zl Fan Tray (19094A)
xttxíx'
-
00
Products within this sedes have achieved suf ficient scores
in each of the rated criteria to achieve the Miercom Cenified
Green distinction Award. See the Soecifications section of
this series for more information.
To learn more, visit hp.com/networking
CO Copyright 2009-2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. The
only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing
herein should be construed as constituting an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained
herein.
Microsoft and Windows are U.S. registered trademarks of Microsoft Corporation.
4AA2-7811ENW, Created Juty 2009; Updated lune 2012, Rev. 8
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Módulo HP 5800 4 portas 10 GbE SFP+ (JC091A) especificações
http://h10010.www1.hp.com/wwpc/pt/pt/sm/WFO6c/A1-329290-6...
Portugal-Português
1111152~1~M
Pesquisa:
Contacte a HP 808200808
Soluçbes para Pequenas e Médias Empresas ft , Tudo da HP Portugal
Módulo HP 5800 4 portas 10
GbE SFP+ (JCO 91A) especificações e garantia
El
Recentemente
pesquisou
Módulo HP 5800 4 ..
Preco indicativo
Limpar histórico
sem IVA
Pronto para comprar?
Datasheets / Documentos
3179
Mapa do sito
Encontre parceiro
Encontre parceiro
Anilhar imagem
Avalie esta página.
Compatibilidade:
Ruim
excelente
Produtos compatíveis
Ver todos os produtos compatíveis
Informação rápida (Fest facts)
Nome do produto
Módulo HP 5800 4 portas 10 GbE SFP+
A HP tem o compromisso de fornecer aos seus clientes as informações sobre as substâncias químicas contidas
em seus produtos como forma de cumprir requisitos legais, como os da REACH (Regulamentação EC
1907/2006 do Parlamento e do Conselho Europeu). Um relatório de informações químicas sobre este produto
pode ser encontrado no site, v.t.vw.hp corn/goireach.
O Versão para impressão
Declaração de privacidade
Á utilizaçós deste sito significa que o utilizador
•
DRRItSIM=INIPIÉEIU9S1n25
CD 2012 Hewlett-Packard Development Company, L.P.
1 de 1
19/07/2012 09:40
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
•
Enterprise Strategy Group I Getting to the bigger truth.
HP Virtual Application Networks
By Jon Oltsik, Senhor Principal Analyst, and Bob Laliberte, Senior Analyst
April 2012
This ESG White Paper was commissioned by HP
and is distributed under license from ESG.
T) 2012, Enterprise Strategy Group, Inc., All Rights Reserved
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
White Poper: NP Virtual Application Networks
2
Contents
New IT Trends Impact the Network
3
Network Discontinuity
3
What Is Needed?
5
HP Virtual Application Networks
6
7
HP VAN Methodology
The Bigger Truth
8
All tradeinark raines are property of their re.spective companies. Information contained in this publication has base obtained by sources The
Enterprise
Grotio ;. ESG) considers to de reliabie but is net warranted by ESG. This oublication may contain ooiniqns of ESG, whist) are
..
thr, h: time This pubiication is copyrighted by The Enterprise Strategy Group, Inc. Any reproduction or redístribution ot
ttis pi.tblicatiort, i •
aart whe:her :e hard-hopy formal, electrorticaliy : or otherwise to persons rot authorized to recei ✓e it. without the
express conseni
ti
aterorise Strategy Group :
is in violation of U.S. cooyright law and will de subject to an action for
damages and : if
apoiicoble, criminai prosecotion. Should you have any questions, pense contact ESG Client Relations at 508.482.0188,
O 2012, Enterprise Strategy Group, Inc. All Rights Reserved.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
White Paper: HP Virtual Application Networks
3
New IT Trends Impact the Network
To be successful, modern businesses must be extremely agite and IT plays an ever-increasing role in enabling that
nimbleness. ESG sees a number of IT trends closely aligned with business agility that impact everything from data
center assets to remote workers. These trends will have an especially profound impact on corporate networks.
Some of these trends are:
• Aggressive data center consolidation. Large organizations are consolidating data centers to bolster
security and operational efficiency while cutting costs. According to ESG research, 63% of enterprise
respondents were either actively consolidating data centers or had just completed a data center
consolidation. Furthermore, almost half of those organizations (48%) were creating multi-tenant data
centers to accommodate separate business units'. As a result of this consolidation and multi-tenancy, the
overall network environment will become much larger and more complex, and will need to provide secure,
network segmentation for mission-criticai applications and disparate business units.
•
Increasing use of server virtualization technologies. With the proliferation of server virtualization
technology (ESG research indicates "increasing use of server virtualization" was a top IT priority for the last
three years 2 ), network traffic is steadily increasing within data centers. In addition to the greater bandwidth
requirements driven by higher virtual machine densities, this highly dynamic environment means that
networks also have to contend with rapid VM provisioning and mobility while seamlessly integrating with
virtual switches.
•
•
Wide and growing deployment of web applications. In a recent ESG research survey, 25% of large
organizations reported having deployed service-oriented architectures (SOA)- or Web-based applications
extensively while another 60% have done so to some extent. Web applications rely on bursty
communications across horizontally scalable servers. Therefore the network must accommodate an
increase in "east-west" traffic, which it may not be designed to handle.
Consumerization of IT. Employees are driving change as IT organizations are forced to support a plethora of
different mobile devices. What started as "bring your own device to work," or BYOD, is now BYO3, as
employees routinely show up with a smartphone, tablet, and PC—all of which need access to corporate
networks. In addition to the scalability requirement for campus and branch networks, mobile devices have
also led to higher volumes of consumer traffic, such as audio, video, and social networking sites. Overall,
the network is being tasked to deliver the appropriate levei of access, security, and performance for these
new devices.
Network Discontinuity
As a result of these IT trends, organizations need to deploy networks capable of rapid and massive scale that can
accommodate highly dynamic environments and the demands of new traffic patterns, without adding cost or
complexity to network operations. Unfortunately, legacy networks cannot keep pace with new technical demands
let alone address the current speed of business. ESG calls this imbalance "network discontinuity." While
networking teams struggle to fight fires and keep up with business and IT demands, ESG research points to a
growing number of cracks in the network foundation. For example, networking professionals identify challenges
because (see Figure 1):
•
Current network security policies and controls are no longer adequate. Massive data centers, server-toserver traffic, and mobile VMs make traditional security best practices and physical control obsolete. This
forces networking and security professionals to try and catch-up, but they typically lack the right technical
safeguards and skills to do so. Alarmingly, these issues are occurring as the threat landscape becomes
increasingly ominous.
Source: ESG Research Report, Data Center Networking Trends, January 2012. Ali other ESG Research referentes in this white paper come
from this report, unless otherwise noted.
2
Source: ESG Research Report, 2012 IT Spending Intentions Survey, January 2012.
O 2012, Enterprise Strategy Group, Inc. Ali Ríghts Reserved.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
White Paper: HP Virtual Application Networks
•
4
New network traffic trumps legacy network capacity. Large organizations are moving to 10GbE server-tonetwork interfaces, standardizing on 10GbE access switches, and replacing copper with fiber cabling. In
spite of these investments however, network performance remains a major challenge. Why? Legacy
networks tweaks are no match for data center scale, VM mobility, and the growing army of bandwidthhungry applications.
•
Static network management can't keep up with dynamic server virtualization and cloud computing.
Networking equipment is often provisioned, configured, and managed on a device-by-device basis using
CLIs or proprietary management software. Alternatively, virtual servers and cloud platforms are
provisioned and administered with a few mouse clicks. As enterprises further embrace cloud computing
models, stagnant network management processes and tools will lag further and further behind.
Figure 1. Biggest Challenges for the Doto Center Afetwork
What are the biggest challenges facing your networking team with regards
to data center networking? (Percent of respondents, N=280, multiple
responses accepted)
Network security
Network performance
51%
elealleellele~1 44 %
Network management
37%
Recruiting new employees with the right skill sets
29%
Lack of coordination/cooperation with other IT
functional teams
26%
Lack of knowledge about emerging networking
technology innovation
Lack of knowledge about new technologies like
server virtualization and web-based applications
0%
10%
20%
30%
40%
50%
60%
Source: Enterprise Strategy Group, 2012.
The ESG data also identifies a number of organizational problems around skills and cross-functional cooperation.
This is due to the fact that many IT departments are still organized by separate technology silos around compute,
network, and storage. These divides make it even more difficult to improve IT skills or solve the end-to-end
application to end-user delivery problem. While server and storage technologies have adapted somewhat, legacy
network architecture is still rigid and inflexible. Taken in its entirety, these points clearly illustrate the fact that
something needs to change. Networks need to evolve to address these new requirements and enable the business,
or network discontinuity will ultimately impact business operations.
CO 2012, Enterprise Strategy Group, Inc. Ali Rights Reserved.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
oe
5
White Paper: HP Virtual Application Networks
What Is Needed?
ESG believes that existing legacy networks will not be able to sustain future growth. Therefore a new "cloudfriendly" architecture is required This new architecture will support rapid growth, handle dynamic environments
based on business and IT policies, and provide sufficient leveis of automation and orchestration for rapid softwarebased deployment of end-to-end services. More specifically the network must be:
•
A foundation for connectivity and performance. Next-generation networks need to be built for "any-toany" connectivity – any application, any services, for any user – while providing high performance, low
latency, non-blocking connectivity. In networking terms, this translates to a network fabric that spans
across data centers and campus networks.
•
Virtualized and abstracted. Just as the server and storage domains have adapted to the cloud era, the
network must also. This means that control needs to be abstracted from the physical devices and
centralized for ease of operation. In other words, networks must become a "platform" that can be
provisioned, segmented, changed, and managed independently from the physical devices. This platform
will need to extend from the data center to campus and branch networks as well. With this architecture,
when the network environment rapidly scales, organizations will be able to keep pace via centraiized
management functions and not individual acts of IT heroism.
•
Tightly integrated with adjacent domains and orchestration programs. As the network environment
scales, it will be impossible to continue with manual processes. NetWorks need to be connected to higher
levei cloud and virtualization platforms for orchestration and automation. With technology domains more
interdependent than ever before, the network needs to be fully aware and tightly integrated with adjacent
technologies and management platforms. This would include north and southbound application
programming Interfaces (APIs), integration with layer 4 through 7 services such as load balancers and
security applications, and visibility into virtualized environments like virtual switches and VMs. Ultimately
networks have to become an integral part of end-to-end integration, management, and visibility for
application connectivity and delivery—from the IT infrastructure to the end-users.
Figure 2. Network Requirements for Cloud Computing Era
Applications
End-users
Data Center
Branch Office
Source: Enterprise Strategy Group, 2012.
© 2012, Enterprise Strategy Group, inc. Ali Rights Reserved.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
f1
.1 White Paper: HP Virtual Application Networks
6
As organizations adopt and deploy cloud computing environments, networks will require greater levels of
programmability. The only way this will be accomplished will be through a network abstraction layer and further
software-based functionality.
Large organizations understand that networks are in a state of transition but are often confused by the ever
changing new standards and innovations in development. For example, ESG research found that only 34% of
networking professionals are familiár with OpenFlow, a set of open APIs and software initiatives for Softwaredefined Networking (SDN). ESG believes that OpenFlow has the potential to deliver the new networking
requirements described above, but it is just starting to get traction and enterprise networking professionals are
only beginning to explore its capabilities. Networking teams cannot be expected to bridge the technology and
knowledge gap between legacy and next-generation network alone. Rather, they need help from their
networking vendors with a combination of new products, design guides, reference architectures, training, and
support.
HP Virtual Application Networks
Since the inception of HP Networking and its integration with the Enterprise Server and Storage groups ( ESSN), HP
has made significant investments in the network space and continues to improve upon the Flex Network
architecture. This includes the development of Intelligent Resilient Framework (IRF) technology and its involvement
in the Open Flow standard (16 HP switches currently support OpenFlow). Now HP introduced its Virtual Application
Networks, or VAN, which represent HP's vision for cloud networks. VANs are logical, purpose-built virtual networks
that leverage existing Flex Network architecture, and are designed to connect users to applications and services,
resulting in a scalable, agile, and secure network that streamlines operations(see Figure 3).
Figure 3. HP Virtual Application Network
Virtual Application Networks
FlexFabric
Applications
FlexCampus
FlexBranch
Source: Enterprise Strategy Group, 2012.
C) 2012, Enterprise Strategy Group, Inc. All Rights Reserved.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
White Paper: HP Virtual Application Networks
7
VANs are enabled by:
•
Integration with HP's FlexFabric, FlexCampus, and FlexBranch offerings. When combined with HP's
data center, campus, and branch solutions, VANs enable intelligent end-to-end cloud networking
connectivity and services. It accomplishes this by abstracting the control plane from the physical
devices spanning the data center, campus, and branch offices. Starting with the FlexFabric, HP's data
center solution provides high performance connectivity over a converged infrastructure. The simplified
network design allows for streamlined operations and reduced cost and complexity. The FlexCampus
and FlexBranch solutions extend the capabilities out of the data center into campus and branch office
environments, completing the end-to-end architecture. HP is currently expanding upon this vision by
supporting the Open Flow standard on generally available network switches.
•
Software control. HP's Intelligent Management Center, or IMC, can provide a single pane of glass to
monitor and manage a cloud network based on a FlexNetwork architecture The program is based on a
service-oriented architecture itself and the modular component design enables IMC to integrate
disparate management tools. Given the complexity and often heterogeneous nature of an end-to-end
network environment, this capability can be critical to ensure successful implementation with end-toend control for a complex enterprise network environment. For the data center, the IMC VAN Manager
for FlexFabric includes a plug-in that is installed on the hypervisor manager to gain visibility into VMs
and the vSwitch Manager communicates ali vSwitch activity. This includes support for Edge Virtual
Bridging (EVB) for viewing VM to VM traffic. It is this visibility and control that allows organizations to
automate the provisioning and reconfiguration of VMs in large complex environments with minimal
effort as compared to manually provisioning an application.
•
Higher levei integration and partnerships. To better enable VANs, HP has worked closely with partners
in the cloud ecosystem and supports VMware environments out of the gate, with planned support for
Microsoft Hyper-V, Citrix XenServer, and KVM for Linux. In order to facilitate connectivity to
automation and orchestration platforms, HP has developed a set of APIs to integrate with existing or
pianned platforms. These technology integrations could extend beyond L2 and L3 functions and include
higher levei layer 4 through layer 7 services as well.
HP VAN Methodology
HP leverages a comprehensive approach to designing compute, network, and storage environments, with an
overarching theme related to converged infrastructure. Its network design is based on the FlexNetwork, which
takes a software-defined networking approach to focus on end-to-end delivery of applications and services that
span data center, campus, and branch environments to end-users. To deliver this comprehensive network
architecture, HP methodology involves:
•
Characterizing the application or service that will be run across these environments. By
understanding the needs and specific characteristics of the application or service, (rich media or a high
frequency trading application), the network will be abie to adjust its service accordingly. By grouping
these applications and service types into defined categories, HP believes organizations can dramatically
speed up the provisioning process by simply associating a new application or service with a category.
•
Virtualizing the network domain. This is the act of creating a layer of abstraction from the physical
network in order to create a virtual network. In highly dynamic cloud environments, the ability to
rapidly provision or reconfigure a network segment will be critical. By creating secure and segmented
logical networks leveraging software, the underlying physical network can be quickly and easily
reconfigured to deliver the desired type of service from any connection to any connection.
•
Providing access to orchestration and automation tools. As networks continue to scale, manual
provisioning and reconfiguration processes will not be abie to keep up with demand. By automating
and orchestrating the provisioning and reconfiguration processes, organizations will be abie to
G) 2012, Enterprise Strategy Group, Inc. Ali Rights Reserved.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
White Paper: HP Virtual Application Networks
8
dramatically cave time and enable more cloud-like infrastructures. This will result in closer alignment of
server, network, and storage operations via advanced cloud orchestration frameworks.
Ultimately, this is all about enabling a comprehensive network solution to deliver applications and services from the
data center or cloud to the end-user and ensure a great experiente. Moving forward, HP has a vision for achieving
this goal and has focused its initial efforts on the data center, where scale and complexity are rapidly affecting IT's
ability to meet the needs of the business. HP's roadmap includes incorporating campus and branch networks to
deliver on its complete solution.
The Bigger Truth
Entering the cloud computing era, servers and storage have become highly virtualized, but the network
environment lags behind. It is under increasing pressure to become more agile and responsive. To keep pace, it
must become more dynamic and virtualized as well. This goes well beyond tactically replacing a switch here or
there or upgrading to a higher bandwidth core. Organizations must take a much more strategic approach to
upgrading the network so it becomes an enabler and not an obstacle to success.
ESG believes that software-defined networks are inevitable and new technologies and platforms are rapidly
emerging, but organizations must invest the time to evaluate new architectures and understand how they will fit
into their environments. Organizations should not only understand the end state, but also what steps are required
to get there. Essentially they need to understand what has to be done today and how that ties into future
deployments and capabilities. Failure to act now will find organizations struggling to keep up with competition and
decisions made now may potentially decide who will be successful in the cloud computing era and who will fali
behind.
HP has put forth a strong vision for enabling networks for the cloud computing era. Leveraging the FlexNetwork
architecture that incorporates technologies like IRF, EVB, VEPA, and Open Flow to deliver virtual application
networks that can enable organizations to virtualize their network infrastructures and provide automation and
orchestration. ESG believes HP's approach of focusing on optimizing the end-to-end delivery of applications to endusers across data center, campus, and branch networks, should be well received. This will only become more
important as the cloud computing era progresses and users expect and even demand instant access to applications
and services. Given this, organizations currently struggling with legacy network issues should evaluate whether
HP's VAN solutions can help alleviate short-term challenges while providing a flexible network for future business
and IT initiatives.
© 2012, Enterprise Strategy Group, inc. Ali Rights Reserved.
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
Enterprise Strategy Group 1 Getting to the bigger truth.
20 Asylum Street 1 Milford, MA 01757 1 Tel: 508.482.0188 Fax: 508.482.0218 1 www.enterprisestrategygroup.com
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
http://www.hp.com/rnd/support/faqs/toptools_hubs_switches.htm#q...
Support - F:M)s - HP ProCurve Networking
United States-English
» HF Nome
er*os
» Support& D ri
» Se lutior
Search:
» Contact HP
HP ProCurve Networking
HP ProCurve Networking > Technical support > FAQs
HP ProCurve Networking
» HP Networking
Products
The FAQs listed below are for these products:
J2569M HP Toptools for Hubs & Toptools for Hubs & Switches
J2569N HP Toptools for Hubs & Toptools for Hubs & Switches
J2569P HP Toptools for Hubs & Toptools for Hubs & Switches
J2569R HP Toptools for Hubs & Toptools for Hubs & Switches
Support
Network training
» View FAQs for a different group of products
Solutions
My ProCurve Sign In
FAQs
•
•
•
•
Services
All of HP US
Customer Gare
Overview
Services
Support
Software
» Warranty
FAQs
Knowledge Base
Manuais
» Reference library
Configuration examples
Support forms
» Security notices
My ProCurve gives you instant
access to software update
notifications.
» Register or log in now
Commercial
help me
» Contact ProCurve
agent
Alerts
» O: How are the Alert Page and the Alert Log database associated?
» O: How do I view closed alerts that are still saved in the Alert Log database?
Automatic management
» 0: From the Automatic Configuration Management screen (Policies - Configuration Policies Security), when trying to delete the community named "public" on the Security Policy page, why is the
warning "removing public could cause device communication problems" displayed?
O: Does the Automatic Configuration Management feature require that a "write" community name be
explicitly configured in order to perform automatic management for HP Toptools for Hubs & hubs,
switches, and routing switches?
Design options
» O: How do I configure trap receivers for the H_ P Toptools for Hubs & Advancestack 10Base-T
Switching Hubs and HP Toptools for Hubs & ProCurve 12- and 24-Port 10Base-T Hubs that I manage
via my Web browser?
Discovery
Q: Why isn't a map shown in the map window after I run Discovery when I use a non-English NT 4.0
platform?
» O: How do I force a manual discovery and mapping of my network?
Features
» O: What are the new features or fixes in HP Toptools for Hubs & Toptools for Hubs & Switches 5.5
(version R.05.17)?
Q: Are RMON and RMON2 supported in HP Toptools for Hubs & Toptools?
» Q: What are the differences between RMON, RMON2, and HP Toptools for Hubs & Extended RMON
(XRMON)?
Q: What happens if the HP Toptools for Hubs & Toptools "traffic data collector settings" is set to
"manual" and you either do not add any device to be monitored or you add one device but do not
select any of its ports for collection of HP Toptools for Hubs & extended RMON data?
Feneral product information
» O: What is HP Toptools for Hubs & Toptools for Hubs & Switches and what does it do?
. Q: What is the HP Toptools for Hubs & Toptools Device Manager?
1 de 7
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
19/07/2012 09:40
Support -
FAQs - HP ProCurve Networking
http://www.hp.com/md/support/faqs/toptools_hubs_switches.htm#q...
Q: If I change the time setting on my HP Toptools for Hubs & Toptools for Hubs & Switçhes server, do
the Performance Tools immediately recognize the change?
» O: Are there situations where both the Software Update Utility and Download Manager Utility will have
to be used to update software on a group of HP Toptools for Hubs & networking devices?
Q: What is an HP Toptools for Hubs & Toptools server? HP Toptools for Hubs & Toptools client? What
are the differences?
» O: Are dual- or multi-homed PCs supported?
» Q: Can HP Toptools for Hubs & Toptools for Hubs & Switches run on a DHCP client?
Installation
Q: Why does a directory remain after uninstalling HP Toptools for Hubs & Toptools for Hubs &
Switches?
O: How long do the Discovery and Topology operations take to complete?
Services
Q: What are HP Toptools for Hubs & Toptools Services?
» O: How do I view the status of HP Toptools for Hubs & Toptools Services?
» O: Why would I need to stop HP Toptools for Hubs & Toptools Services?
» C): How do I stop and restart HP Toptools for Hubs & Toptools Services?
» O: When I stop HP Toptools for Hubs & Toptools Services from the Windows NT Control PaneiServices window, the services do not stay off. Why?
Troubleshooting
O: Are there any known issues with HP Toptools for Hubs & Toptools for Hubs & Switches 5.5
(version R.05.17)?
» O: Why isn't a map shown in the map window after I run Discovery when I use a non-English NT 4.0
platform?
Q: From the Automatic Configuration Management screen (Policies -> Configuration Policies ->
Security), when trying to delete the community named "public" on the Security Policy page, why is the
warning "removing public could cause device communication problems" displayed?
Q: Why do I sometimes get an error trying to launch a device Closeup View if I am logged into the HP
Toptools for Hubs & Toptools Server from a client?
Q: The Security LEDs on my devices light up after I install HP Toptools for Hubs & Toptools for Hubs
& Switches. What's wrong?
O: HP Toptools for Hubs & Toptools for Hubs & Switches runs progressively slower over time. What's
wrong?
O: My network does not have a DNS server, and the browser appears to hang. What's wrong?
Q: When I request a new map view, go to a segment view, or do a Locate from Traffic Monitor or the
current map, I get an error message that I cannot connect to the server. What's wrong?
Answers
Q: What is HP Toptools for Hubs & Toptools for Hubs & Switches and what does it do?
HP Toptools for Hubs & Toptools for Hubs & Switches is a completely web-based and SNMP-based
network management application for use on LANs that have Hewlett-Packard networking devices. The
interface lets you perform at your desk most, though not all, of the device management tasks you
would otherwise perform in the wiring closet hooked up to the console port. It also lets you keep track
of traffic patterns, display topological maps of the network, and plan for network growth.
Return to top
Q: What is the HP Toptools for Hubs & Toptools Device Manager?
The HP Toptools for Hubs & Toptools Device Manager (also referred to as the "HP Toptools for Hubs &
Toptools core") is a set of services used by HP Toptools for Hubs & Toptools for Hubs & Switches. HP
Toptools for Hubs & Toptools Device Manager must be installed in order for HP Toptools for Hubs &
Toptools for Hubs & Switches to operate.
Return to top
Q: Why isn't a map shown in the map window after I run Discovery when I use a non-English NT
4.0 platform?
The display of maps is not supported when using non-English NT 4.0 platforms.
Return to top
Q: From the Automatic Configuration Management screen (Policies - Configuration Policies Security), when trying to delete the community named "public" on the Security Policy page,
why is the warning "removing public could cause device communication problems" displayed?
2 de 7
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
19/07/2012 09:40
Support - FAUs - HP ProCurve Networking
http://www.hp.com/rnd/support/faqs/toplools_hubs_switches.htm#q...
Deleting the community named "public" disables many network management functions such as
Discovery, Traffic Monitoring, and Threshold Settings. If security for network management is a concern,
it is recommended that you change the write access for the "public" community to "restricted".
» Return to top
Q: Does the Automatic Configuration Management feature require that a "write" community
name be explicitly configured in order to perform automatic management for HP Toptools for
Hubs & hubs, switches, and routing switches?
Yes. A "write" community name must be explicitly configured and displayed within the Security section
of the Automatic Configuration Management page (Policies -> Configuration Policies -> Security). By
default, the "write" community name of "public" is configured and displayed.
» Return to top
Q: If I change the time setting on my HP Toptools for Hubs & Toptools for Hubs & Switches
server, do the Performance Tools immediately recognize the change?
No. You must exit and then restart the HP Toptools for Hubs & Toptools browser before the time
change is recognized by the HP Toptools for Hubs & Toptools for Hubs & Switches Performance Tools.
Return to top
Q: Are there situations where both the Software Update Utility and Download Manager Utility
will have to be used to update software on a group of HP Toptools for Hubs & networking
devices?
Yes. For older devices, the Download Manager Utility in HP Toptools for Hubs & Toptools for Hubs &
Switches is used to update device software, whereas, for newer devices, the Software Update Utility is
used. If you select a set of devices such that some require the use of the Software Update Utility and
some require the Download Manager Utility, you will have to use both utilities. A page will be displayed
listing the devices supported by the older Download Manager Utility followed by a list of the devices
supported by the Software Update Utility. After each list is a link to launch either utility.
Return to top
Q: Why do I sometimes get an error trying to launch a device Closeup View if I am logged into
the HP Toptools for Hubs & Toptools Server from a client?
The Closeup View for devices that are not Browser manageable can only be launched directly from the
HP Toptools for Hubs & Toptools server, not from a client logged into the server. If you try to launch the
Closeup View from a client logged into the server, you will get the following error message:
Legacy Device Management Information
The device you selected can only be managed from
the HP Toptools for Hubs & Toptools Management Workstation
To obtain generic SNMP information about this device, select:
"Properties" from the Action menu on the Devices screen
To try and establish a telnet session to this device, select:
"Telnet" from the Action menu on the Devices screen
Return to top
Q: What is an HP Toptools for Hubs & Toptools server? HP Toptools for Hubs & Toptools
client? What are the differences?
The user installs and executes HP Toptools for Hubs & Toptools and its applications (such as HP
Toptools for Hubs & Toptools for Hubs & Switches) on the HP Toptools for Hubs & Toptools server. The
user may access the user interface on the server or, optionally, on a remote client running the
Microsoft Internet Explorer Web browser (version 5.0 or greater) or Netscape Communicator 4.51 or
greater. The only restrictions to using a remote client are that the user cannot access the Closeup View
for certain older devices (see the list of devices that support the web browser interface) and the user
cannot access the HP Toptools for Hubs & Download Manager for updating device software. Closeup
View and HP Toptools for Hubs & Download Manager are available on the server.
» Return to top
3 de 7
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
19/07/2012 09:40
Support - FA-Qs - HP ProCurve Networking
hup://www.hp.com/rnd/support/faqs/toptools_hubs_switches.htm "...
Q: Are dual- or multi-homed PCs supported?
Dual- or multi-homed PCs are not supported.
» Return to lop
Q: Can HP Toptools for Hubs & Toptools for Hubs & Switches run on a DHCP client?
The HP Toptools for Hubs & Toptools server may be a DHCP client, but it must receive a statically
configured IP address from the DHCP server. That is, the server's IP address must not change. This
restriction does not apply to the HP Toptools for Hubs & Toptools client.
» Return to top
Q: How long do the Discovery and Topology operations take to complete?
For 350 nodes, Discovery takes approximately 10 minutes and Topology takes approximately 35
minutes. For 400 nodes, it would take approximately 1 hour for both operations to complete. The times
will vary depending on the amount of network bandwidth available to HP Toptools for Hubs & Toptools
while the Discovery and Topology operations are running.
» Return to top
Q: What are HP Toptools for Hubs & Toptools Services?
HP Toptools for Hubs & Toptools Services control the background processes that are central to the
product.
» Return to top
Q: How do I view the status of HP Toptools for Hubs & Toptools Services?
From the HP Toptools for Hubs & Toptools navigation frame, click Settings and select HP Toptools for
Hubs & Toptools Services.
» Return to top
Q: Why would I need to stop HP Toptools for Hubs & Toptools Services?
You may wish to stop the Toptools Services when performing tasks such as server maintenance,
database repair, server shutdown, etc.
» Return to top
Q: How do I stop and restart HP Toptools for Hubs & Toptools Services?
To stop HP Toptools for Hubs & Toptools Services:
1. From the HP Toptools for Hubs & Toptools navigation frame, click
Settings and select HP Toptools for Hubs & Toptools Services.
2. Click Stop Services.
To restart HP Toptools for Hubs & Toptools Services:
1. From the HP Toptools for Hubs & Toptools navigation frame, click
Settings and select HP Toptools for Hubs & Toptools Services.
2. Click Start Services.
» Return to top
Q: When I stop HP Toptools for Hubs & Toptools Services from the Windows NT Control PaneiServices window, the services do not stay off. Why?
In most situations HP Toptools for Hubs & Toptools Services should not be stopped through the
Windows NT Control Panel-Services window. If you stop HP Toptools for Hubs & Toptools Services
through the Windows NT Control Panei, the HP Toptools for Hubs & TopTools Services will start up
again after a short while. HP Toptools for Hubs & Toptools Services should be stopped from within the
HP Toptools for Hubs & Toptools user interface as described above in the FAQ "How do 1 stop and
restart HP Toptools for Hubs & Toptools Services?"
4 de 7
19/07/2012 09:40
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
http://www.hp.com/rnd/support/faqs/toptools_hubs_switches.htm#Q..
Support - FA'Qs - HP ProCurve Networking
•
» Return to top
Q: How are the Alert Page and the Alert Log database associated?
The Alert Log database holds all new, open, and closed alerts that have not been deleted. The Alert
Page displays only those Alerts from the Alert Log database that are not being filtered. By default, all
new and open alerts are displayed in the Alert page. Closed alerts are not displayed
» Return to top
Q: How do I view closed alerts that are still saved in the Alert Log database?
Closed alerts can be viewed from the Alert Page by setting the Alerts filter as follows:
1. In the HP Toptools for Hubs & Toptools home page, click Alerts and View Alerts.
2. In the Alert page, click Choose Filters. The Choose Alerts Log Filter window will appear
3. From the "Filter by Alert State" field, select "Closed."
Deselect "New" and "Open" if you want only closed alerts to be displayed in the Alerts Page.
4. Click OK.
>, Return to top
Q: The Security LEDs on my devices light up after I install HP Toptools for Hubs & Toptools for
Hubs & Switches. What's wrong?
Using HP Toptools for Hubs & Web JetAdmin on your network along with HP Toptools for Hubs &
Toptools for Hubs & Switches will cause the security LED on network devices to light. This happens
because HP Toptools for Hubs & Web JetAdmin tries to access network devices using a nonstandard
community name, "internai". This community name conflicts with those already known to HP Toptools
for Hubs & Toptools. HP Toptools for Hubs & Web JetAdmin does not otherwise affect the operation of
your network devices.
» Return to top
Q: HP Toptools for Hubs & Toptools for Hubs & Switches runs progressively siower over time.
What's wrong?
There are two possibilities:
• Running your web browser without interruption over time consumes virtual memory. Left
unattended for a long enough period, it may slow the operation of HP Toptools for Hubs &
Toptools and other applications running on that computer. To free up the lost virtual memory,
close the browser window every couple days and re-invoke it, then bring up HP Toptools for
Hubs & Toptools.
• Your Alert Log may be overloaded. Having too many alerts in the alert database can slow down
CPU performance. Follow the instructions above in the FAO "How do I clear the Alert Log
Database?".
» Return to top
Q: My network does not have a DNS server, and the browser appears to hang. What's wrong?
If your network does not have a DNS server, there is a wait of at least 4 minutes when you attempt to
access a device through the web browser interface; the browser will appear to hang. Thereafter,
performance remains sluggish. If you do have a DNS server, this is not a problem. To workaround this
issue, add the IP address and alias of every device you want to manage to the file "drivers/etc/hosts".
This file must be edited on every PC from which net management will be done through the web
browser interface.
» Return to top
Q: When 1 request a new map view, goto a segment view, or do a Locate from Traffic Monitor or
the current map, I get an error message that I cannot connect to the server. What's wrong?
When you try to perform these actions, and if you have an incorrect version of the "vbajet32.d11" file in
"\winnt\system32\", you will get an error message stating that you cannot connect to the server. The
version of this file commonly found on computers which causes this issue is 5.0.7122. The correct
version to use with HP Toptools for Hubs & Toptools is 3.0.6908, and is included on the HP Toptools for
Hubs & Toptools for Hubs & Switches CD-ROM, and normally is installed unless the version on your
system is read-only and you choose during installation not to overwrite it. To resolve the issue, copy
5 de 7
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
19/07/2012 09:40
Support - FAOs - HP ProCurve Networking
hdp://www.hp.com/rnd/support/faqs/toptools_hubs_switches.htm#q...
the version of "vbajet32.d11" from the "\Toptools\HP Toptools for Hubs &wnd\system\" directory to your
"\winnt\system32\" directory.
Return to top
Q: How do I force a manual discovery and mapping of my network?
Select SETTINGS - DISCOVERY and scroll to the bottom of the screen.
Return to top
Q: How do I configure trap receivers for the HP Toptools for Hubs & Advancestack 10Base-T
Switching Hubs and HP Toptools for Hubs & ProCurve 12- and 24-Port 10Base-T Hubs that I
manage via my Web browser?
You cannot configure this SNMP information from the Web Browser user interface nor from the
console. To access the SNMP configuration screen for these devices, perform the following steps:
1.Select the device from the appropriate topology map:
• For HP Toptools for Hubs & Advancestack Assistant for Windows: HP Toptools for Hubs & ASA
Topology View
• For HP Toptools for Hubs & Advancestack Assistant for Openview NNM/NT: NNM Topology
Map
• For HP Toptools for Hubs & Toptools for Hubs & Switches: Maps
2.Right mouse click to bring up the popup menu.
3.Select the SNMP menu item:
• For HP Toptools for Hubs & Advancestack Assistant for Windows: 'SNMP Config'
• For HP Toptools for Hubs & Advancestack Assistant for Openview NNM/NT: 'SNMP Configure
Hub/Bridge' or use the menu selection 'Monitor->SNMP Configuration'
• For HP Toptools for Hubs & Toptools for Hubs & Switches: 'SNMPfTRAP Configuration...'
4.The "Device Configuration" window will then appear. This window has the following areas, or
tabs, for SNMP configuration: Thresholds, Trap Receivers, Community Names, & Authorized
Managers.
» Return to top
Q: What are the new features or fixes in HP Toptools for Hubs & Toptools for Hubs & Switches
5.5 (version R.05.17)?
HP Toptools for Hubs & Toptools for Hubs & Switches 5.5 (product number J2569R) supports
management for the HP Toptools for Hubs & ProCurve Switch 4108g1 (product number J4865A).
» Return to top
Q: Are RMON and RMON2 supported in HP Toptools for Hubs & Toptools?
RMON is supported, but RMON2 is not supported. HP Toptools for Hubs & Toptools does have the
ability to manipulate set RMON thresholds in HP Toptools for Hubs & ProCurve devices and receive
RMON events generated by those devices. ff does not utilize the RMON2 functionality available in the
HP Toptools for Hubs & ProCurve Switch 4108g1.
HP Toptools for Hubs & Toptools also utilizes the HP Toptools for Hubs & Extended RMON
functionality to provide the Traffic Monitor feature (which provides TopN functionality similar to RMON
groups 5 and 6) and NPA reporting.
» Return to top
Q: What are the differences between RMON, RMON2, and HP Toptools for Hubs & Extended
RMON (XRMON)?
Each of these is a specification that is supported (primarily) by devices.
• RMON is made up of 10 groups or functions. Most managed HP Toptools for Hubs & ProCurve
devices support RMON by specifically supporting:
• group 1 (statistics)
• group 2 (history)
• group 3 (alarms)
• group 9 (events)
• RMON2 adds 9 more groups. The HP Toptools for Hubs & ProCurve Switch 4108g1 supports the
RMON groups listed above and adds group 19 (probeConfig) from RMON2.
6 de 7
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
19/07/2012 09:40
Support -Til-k-Qs - HP ProCurve Networking
ot.
http://www.hp.com/rnd/support/facis/toptools_hubs_switches.htm#q...
• HP Toptools for Hubs & Extended RMON is a proprietary specification that defines a method for
statistical sampling of network traffic in order to provide traffic analysis. With XRMON, HP
Toptools for Hubs & has a solution to provide network-wide traffic analysis with very low overhead
on network resources.
» Return to top
Q: What happens if the HP Toptools for Hubs & Toptools "traffic data collector settings" is set
to "manual" and you either do not add any device to be monitored or you add one device but
do not select any of its ports for collection of HP Toptools for Hubs & extended RMON data?
You will receive a message in the NT application event log called "TrafficCD". You can ignore this
message because the traffic collector will still collect the HP Toptools for Hubs & extended RMON
data. The message does not indicate a problem with the configuration of the traffic data collector.
» Return to top
Q: Why does a directory remain after uninstalling HP Toptools for Hubs & Toptools for Hubs &
Switches?
Uninstall sometimes does not completely remove all directories. After a complete uninstall you can
manually remove the "HP Toptools for Hubs &WND" directory.
» Return to top
Q: Are there any known issues with HP Toptools for Hubs & Toptools for Hubs & Switches 5.5
(version R.05.17)?
Known issues are discussed in the "Toptools for Hubs & Switches V5.5" section of the HP Toptools for
Hubs & Toptools 5.5 Release Notes
» Return to top
Lã Printable version
Privacy statement
Usinq this site means you accept its terms
2010 Hewlett-Packard Development Company, L.P.
7 de 7
Para verificar as assinaturas, acesse www.tcu.gov.br/autenticidade, informando o código 48806118.
19/07/2012 09:40