Cisco SG300-10SF SG300-10SFP-K9-NA Ficha De Dados
Códigos do produto
SG300-10SFP-K9-NA
© 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information.
Page 3 of 19
Data Sheet
QoS parameters. For more advanced capabilities and hands-on control, the switches support
Smartport roles which configure the ports with specific levels of Security, QoS, and availability
according to the type of connected device, based on Cisco best practices and pretested configurations.
The Auto Smartports feature applies the intelligence delivered through the Smartport roles and applies
it automatically to the port based on the devices discovered over CDP or LLDP-MED. This facilitates
zero touch deployments. Although the Cisco 300 Series is designed to be deployed without using a
command-line interface (CLI), Cisco Textview is available for those who prefer to use text-based
configuration. Together, these features reduce the time your staff must devote to network deployment,
management, and troubleshooting.
●
Strong security: The Cisco 300 Series Switches provide a high level of security and give you fine-
grained control to safeguard your network from unauthorized users. Advanced security features
include:
◦
Embedded security to protect management data traveling to and from the switch and encrypt
network communications.
◦
Extensive access control lists (ACLs) to restrict sensitive portions of the network from unauthorized
users and guard against network attacks.
◦
Guest virtual LANs (VLANs) to let you provide Internet connectivity to nonemployee users while
isolating critical business services from guest traffic.
◦
Support for advanced network security applications such as IEEE 802.1X port security to tightly limit
access to specific segments of your network. Web based authentication provides a consistent
interface to authenticate all types of host devices and operating systems, without the complexity of
deploying IEEE 802.1X clients on each endpoint.
◦
Time based ACLs and Port Operation restrict access to the network during predesignated times,
such as business hours.
◦
Security mechanisms such as, Bridge Protocol Data Unit (BPDU) Guard and
broadcast/multicast/unknown unicast storm control, protect the network from invalid configurations or
malicious intent.
◦
Secure Core Technology (SCT) helps ensure that the switch will receive and process management
and protocol traffic no matter how much traffic is received.
◦
Advanced defense mechanisms, including Dynamic ARP Inspection (DAI), IP Source Guard, and
Dynamic Host Configuration Protocol (DHCP) snooping, detect and block deliberate network attacks.
Combinations of these protocols are also referred to as IPMB (IP-MAC-port binding).
◦
IPv6 First Hop Security extends the advanced threat protection to IPv6. This comprehensive security
suite includes ND inspection, RA guard, DHCPv6 guard and neighbor binding integrity check,
providing unparalleled protection against a vast range of address spoofing and man in the middle
attack on IPv6 networks.
◦
DOS (denial-of-service) attack prevention maximizes network uptime in the presence of an attack.
◦
Protection of management sessions using Radius, TACACS+ and local database authentication as
well as secure management sessions over SSL, SSH, and SNMPv3.