Extreme networks Summit48si AC 15601 Data Sheet
Product codes
15601
Extreme Networks Data Sheet
© 2009 Extreme Networks, Inc. All rights reserved.
Summit48si—Page 3
Extreme Networks Data Sheet
Technical Specifications
ExtremeWare 7.7 Supported
Protocols
Protocols
General Routing and Switching
• RFC 1812 Requirements for IP Version 4
• •
Routers
• RFC 1519 CIDR
• RFC 1256 IPv4 ICMP Router Discovery (IRDP)
• RFC 1122 Host Requirements
• RFC 768 UDP
• RFC 791 IP
• RFC 792 ICMP
• RFC 793 TCP
• RFC 826 ARP
• RFC 894 IP over Ethernet
• RFC 1027 Proxy ARP
• RFC 2338 VRRP
• RFC 3619 Ethernet Automatic Protection
• RFC 1256 IPv4 ICMP Router Discovery (IRDP)
• RFC 1122 Host Requirements
• RFC 768 UDP
• RFC 791 IP
• RFC 792 ICMP
• RFC 793 TCP
• RFC 826 ARP
• RFC 894 IP over Ethernet
• RFC 1027 Proxy ARP
• RFC 2338 VRRP
• RFC 3619 Ethernet Automatic Protection
• • •
Switching (EAPS) and EAPSv2
• IEEE 802.1D – 1998 Spanning Tree Protocol
•
(STP)
• IEEE 802.1w – 2001 Rapid Reconfiguration for
STP, RSTP
• IEEE 802.1s – 2004 Multiple Instances of STP,
MSTP
• Extreme Multiple Instances of Spanning Tree
Protocol (EMISTP)
• PVST+, Per VLAN STP (802.1Q interoperable)
• Extreme Standby Router Protocol (ESRP)
• IEEE 802.1Q – 2003 Virtual Bridged Local Area
• Extreme Standby Router Protocol (ESRP)
• IEEE 802.1Q – 2003 Virtual Bridged Local Area
Networks
• Extreme Discovery Protocol (EDP)
• Static Unicast Routes
• Extreme Loop Recovery Protocol (ELRP)
• Software Redundant Ports
• IPX RIP/SAP Router specification
• Static Unicast Routes
• Extreme Loop Recovery Protocol (ELRP)
• Software Redundant Ports
• IPX RIP/SAP Router specification
VLANs
• IEEE 802.1Q VLAN Tagging
• IEEE 802.3ad Static configuration and dynamic
• IEEE 802.3ad Static configuration and dynamic
(LACP) for server attached
• IEEE 802.1v: VLAN classification by Protocol
•
and Port
• Port-based VLANs
• MAC-based VLANs
• Protocol-based VLANs
• Multiple STP domains per VLAN
• RFC-3069 VLAN Aggregation for Efficient IP
• MAC-based VLANs
• Protocol-based VLANs
• Multiple STP domains per VLAN
• RFC-3069 VLAN Aggregation for Efficient IP
• •
Address Allocation
• Virtual MANs (vMANs)
• VLAN Translation
• VLAN Translation
Quality of Service and Policies
• IEEE 802.1D – 1998 (802.1p) Packet Priority
• RFC 2474 DiffServ Precedence, including 8
• RFC 2474 DiffServ Precedence, including 8
queues/port
• RFC 2598 DiffServ Expedited Forwarding (EF)
• RFC 2597 DiffServ Assured Forwarding (AF)
• RFC 2475 DiffServ Core and Edge Router
• RFC 2597 DiffServ Assured Forwarding (AF)
• RFC 2475 DiffServ Core and Edge Router
Functions
• RED as described in “Random Early Detection
Gateways for Congestion Avoidance, Sally Floyd
and Van Jacobson”
and Van Jacobson”
• RED as recommended in RFC 2309
• Bidirectional Rate Shaping
• Ingress Rate Limiting
• Layer 1-4, Layer 7 (user name) Policy-Based
• Bidirectional Rate Shaping
• Ingress Rate Limiting
• Layer 1-4, Layer 7 (user name) Policy-Based
Mapping
• Policy-Based Mapping/Overwriting of DiffServ
code points, .1p priority
• Network Login/802.1x and DLCS (Dynamic Link
Context System, WINS snooping) based
integration with EPICenter Policy Manager for
dynamic user/device based policies
integration with EPICenter Policy Manager for
dynamic user/device based policies
RIP
• RFC 1058 RIP v1
• RFC 2453 RIP v2
• RFC 2453 RIP v2
OSPF
• RFC 2328 OSPF v2 (including MD5
•
authentication)
• RFC 1587 OSPF NSSA Option
• RFC 1765 OSPF Database Overflow
• RFC 2370 OSPF Opaque LSA Option
Note: OSPF Edge License includes 2 active
interfaces, router priority 0
• RFC 1765 OSPF Database Overflow
• RFC 2370 OSPF Opaque LSA Option
Note: OSPF Edge License includes 2 active
interfaces, router priority 0
IS-IS
• RFC 1142 (ISO 10589), IS-IS protocol
• RFC 1195, Use of OSI IS-IS for routing in TCP/
• RFC 1195, Use of OSI IS-IS for routing in TCP/
IP and dual environments
• RFC 2104, HMAC: Keyed-Hashing for Message
Authentication, IS-IS HMAC-MD5 Authentication
• RFC 2763 (Dynamic Host Name Exchange for
IS-IS)
BGP4
• RFC 1771 Border Gateway Protocol 4
• RFC 1965 Autonomous System Confederations
• RFC 1965 Autonomous System Confederations
for BGP
• RFC 2796 BGP Route Reflection (supersedes
•
RFC 1966)
• RFC 1997 BGP Communities Attribute
• RFC 1745 BGP4/IDRP for IP-OSPF Interaction
• RFC 2385 TCP MD5 Authentication for BGPv4
• RFC 2439 BGP Route Flap Damping
• RFC 1745 BGP4/IDRP for IP-OSPF Interaction
• RFC 2385 TCP MD5 Authentication for BGPv4
• RFC 2439 BGP Route Flap Damping
IP Multicast
• RFC 2362 PIM-SM
• PIM-DM Draft IETF PIM Dense Mode v2-dm-03
• PIM Snooping
• DVMRP v3 draft IETF DVMRP v3-07
• RFC 1112 IGMP v1
• RFC 2236 IGMP v2
• IGMP Snooping with Configurable Router
• PIM-DM Draft IETF PIM Dense Mode v2-dm-03
• PIM Snooping
• DVMRP v3 draft IETF DVMRP v3-07
• RFC 1112 IGMP v1
• RFC 2236 IGMP v2
• IGMP Snooping with Configurable Router
• • •
Registration Forwarding
• IGMP Filters
• Static IGMP Membership
• Static Multicast Routes
• Mtrace, draft-ietf-idmr-traceroute-ipm-07
• Mrinfo
• Static IGMP Membership
• Static Multicast Routes
• Mtrace, draft-ietf-idmr-traceroute-ipm-07
• Mrinfo
Management and Traffic Analysis
• RFC 2030 SNTP, Simple Network Time Protocol
v4
• RFC 1866 HTML – web-based device manage-
ment and Network Login
• RFC 2068 HTTP server
• RFC 854 Telnet client and server
• RFC 783 TFTP Protocol (revision 2)
• RFC 951, 1542 BootP
• RFC 2131 BOOTP/DHCP relay agent and DHCP
• RFC 854 Telnet client and server
• RFC 783 TFTP Protocol (revision 2)
• RFC 951, 1542 BootP
• RFC 2131 BOOTP/DHCP relay agent and DHCP
server
• RFC 1591 DNS (client operation)
• RFC 1155 Structure of Mgmt Information
• RFC 1155 Structure of Mgmt Information
(SMIv1)
• RFC 1157 SNMPv1
• RFC 1212, RFC 1213, RFC 1215 MIB-II,
• RFC 1212, RFC 1213, RFC 1215 MIB-II,
Ethernet-Like MIB & TRAPs
• RFC 1573 Evolution of Interface
• RFC 1901 – 1908 SNMP Version 2c, SMIv2
• RFC 1901 – 1908 SNMP Version 2c, SMIv2
and Revised MIB-II
• RFC 2570 – 2575 SNMPv3, user based
security, encryption and authentication
• RFC 2576 Coexistence between SNMP Version
1, Version 2 and Version 3
• RFC 2665 Ethernet-Like-MIB
• RFC 1757 RMON 4 groups: Stats, History,
• RFC 1757 RMON 4 groups: Stats, History,
Alarms and Events
• RFC 2021 RMON2 (probe configuration)
• RFC 2613 SMON MIB
• RFC 2668 802.3 MAU MIB
• RFC 2613 SMON MIB
• RFC 2668 802.3 MAU MIB
• RFC 1643 Ethernet MIB
• RFC 1493 Bridge MIB
• RFC 2737 Entity MIB, Version 2
• RFC 2674 802.1p/802.1Q MIBs
• RFC 1354 IPv4 Forwarding Table MIB
• RFC 2233 Interface MIB
• RFC 2096 IP Forwarding Table MIB
• RFC 1724 RIPv2 MIB
• RFC 1850 OSPFv2 MIB
• RFC 1657 BGPv4 MIB
• RFC 2787 VRRP MIB
• RFC 2925 Ping/Traceroute/NSLOOKUP MIB
• RFC 2932 – IPv4 Multicast Routing MIB
• RFC 2933 – Internet Group Management Protocol
• RFC 1493 Bridge MIB
• RFC 2737 Entity MIB, Version 2
• RFC 2674 802.1p/802.1Q MIBs
• RFC 1354 IPv4 Forwarding Table MIB
• RFC 2233 Interface MIB
• RFC 2096 IP Forwarding Table MIB
• RFC 1724 RIPv2 MIB
• RFC 1850 OSPFv2 MIB
• RFC 1657 BGPv4 MIB
• RFC 2787 VRRP MIB
• RFC 2925 Ping/Traceroute/NSLOOKUP MIB
• RFC 2932 – IPv4 Multicast Routing MIB
• RFC 2933 – Internet Group Management Protocol
MIB
• RFC 2934 – Protocol Independent Multicast MIB
for IPv4
• Draft-ietf-bridge-rstpmib-03.txt – Definitions of
Managed Objects for Bridges with Rapid
Spanning Tree Protocol
Spanning Tree Protocol
• draft-ietf-bridge-8021x-01.txt (IEEE8021-PAE-MIB)
• IEEE 802.1x – 2001 MIB
• Extreme extensions to 802.1x-MIB
• Secure Shell (SSHv2) clients and servers
• Secure Copy (SCPv2) client and server
• Secure FTP (SFTP) server
• sFlow version 5
• NetFlow version 1 export
• Configuration logging
• Multiple Images, Multiple Configs
• BSD System Logging Protocol (SYSLOG), with
• IEEE 802.1x – 2001 MIB
• Extreme extensions to 802.1x-MIB
• Secure Shell (SSHv2) clients and servers
• Secure Copy (SCPv2) client and server
• Secure FTP (SFTP) server
• sFlow version 5
• NetFlow version 1 export
• Configuration logging
• Multiple Images, Multiple Configs
• BSD System Logging Protocol (SYSLOG), with
Multiple Syslog Servers
• Local Messages (criticals stored across reboots)
• IEEE 802.1ab LLDP
ExtremeWare vendor MIBs: Includes ACL, MAC FDB,
IP FDB, MAC Address Security, Software Redundant
Port, NetFlow, DoS-Protect MIB, QoS policy, Cable
Diagnostics, VLAN config, vMAN, VLAN Translation
and VLAN Aggregation MIBs
• IEEE 802.1ab LLDP
ExtremeWare vendor MIBs: Includes ACL, MAC FDB,
IP FDB, MAC Address Security, Software Redundant
Port, NetFlow, DoS-Protect MIB, QoS policy, Cable
Diagnostics, VLAN config, vMAN, VLAN Translation
and VLAN Aggregation MIBs
Security
• Routing protocol MD5 authentication (see above)
• Secure Shell (SSHv2),Secure Copy (SCPv2) and
• Secure Shell (SSHv2),Secure Copy (SCPv2) and
SFTP with encryption/authentication
• SNMPv3 user based security, with encryption/
authentication (see above)
• RFC 1492 TACACS+
• RFC 2865 RADIUS Authentication
• RFC 2866 RADIUS Accounting
• RFC 3579 RADIUS Support for Extensible
• RFC 2865 RADIUS Authentication
• RFC 2866 RADIUS Accounting
• RFC 3579 RADIUS Support for Extensible
Authentication Protocol (EAP)
• RFC 3580 802.1X RADIUS
• RADIUS Per-command Authentication
• MAC based Network Login using RADIUS
• Access Profiles on All Routing Protocols
• Access Profiles on All Management Methods
• Network Login (web-based DHCP/HTTP/RADIUS
• RADIUS Per-command Authentication
• MAC based Network Login using RADIUS
• Access Profiles on All Routing Protocols
• Access Profiles on All Management Methods
• Network Login (web-based DHCP/HTTP/RADIUS
mechanism)
• RFC 2246 TLS 1.0 + SSL v2/v3 encryption for
web-based Network Login
• IEEE 802.1x – 2001 Port-Based Network Access
Control for Network Login
• Multiple supplicants for Network Login (web-
based and 802.1x modes)
• Guest VLAN for 802.1x
• MAC Address Security – Lockdown, limit and aging
• IP Address Security with DHCP Option 82, DHCP
• Enforce/Duplicate IP Protection via ARP Learning
• MAC Address Security – Lockdown, limit and aging
• IP Address Security with DHCP Option 82, DHCP
• Enforce/Duplicate IP Protection via ARP Learning
Disable
• Network Address Translation (NAT)
• Layer 2/3/4/7 ACLs
• Source IP Lockdown – Dynamic filtering against
• Layer 2/3/4/7 ACLs
• Source IP Lockdown – Dynamic filtering against
invalidly sourced traffic