Access Control Lists (ACLs)
Access Control Lists enable inspection of incoming frames and classify them based on various criteria. Specific actions can then be applied to these frames in order to more effectively manage the network traffic. Typically ACLs are used as a security mechanism, either permitting or denying entry (hence the name Access Control) for frames in a group, but can also be applied to QoS.
Supported ACL types are:
•IP ACLs – applicable to IP packet type. All classification fields are related to IP packets.
•MAC ACLs – classification fields are based on Layer 2 fields.
Technical Specifications
System Configuration
Dimensions | 44cm x 25.7cm x 4.32cm |
(W x D x H) | (17.32” x 10.16” x 1.7”) |
Weight | 3.50kg (7.71lb) |
Mounting | 19” |
| included |
System Capacity
128MB RAM
16MB flash memory Up to 4,096 VLAN ID 8,000 MAC address
Performance
Wirespeed switching on all Ethernet ports for all packet sizes including jumbo frames up to 10Kbytes
Throughput up to | 50.6Mpps |
Switching capacity | 68Gbps |
Switch fabric speed | 88Gbps |
Port speed: |
|
10/100TX | |
10/100/1000T | |
1000SX, 1000LX | SFP slot |
Console RS232 |
Interface Standards
IEEE 802.3 | 10T and 10FL | |
IEEE 802.3u | 100TX | |
IEEE | 802.3z | 1000SX |
IEEE 802.3ab | 1000T | |
General Standards | ||
IEEE | 802.1D | Bridging |
IEEE | 802.3x | BackPressure/flow control |
Redundancy Standards | ||
IEEE | 802.1D | |
|
| fast link capability |
IEEE | 802.1W | Rapid |
IEEE | 802.1s | Multiple |
IEEE | 802.3ad | LACP link aggregation |
|
| (with up to eight members per |
|
| group and up to eight groups per |
|
| device) |
Static | port trunk |
|
Quality of Services (QoS)
QoS in Layer 2 (IEEE 802.1p compliant Class of Service)
Traffic prioritization using IEEE 802.1p, ToS, DSCP fields Map IEEE 802.1p priorities to CoS queues to prioritize
traffic at egress
Strict scheduling and weighted round robin
VLANs
IEEE 802.1Q VLAN tagging
Up to 256 active VLANs
Private VLANs
GARP VLAN Registration Protocol (GVRP)
Multicast Standards |
| |||
RFC | 1112 | IGMP | snooping | (ver. 1) |
RFC | 2236 | IGMP | snooping | (ver. 2) |
RFC | 3376 | IGMP | snooping | (ver. 3) |
RFC | 3376 | IGMP | querier |
|
Management and Monitoring
WEB, CLI, Telnet, SSH, serial console port
RFC 1157 | SNMPv1/v2c | ||
RFC 2570 | SNMPv3 |
| |
RFC | 1213 |
| |
RFC | 1573 | Evolution of | |
RFC 1215 | TRAP MIB | ||
RFC 1493 | Bridge MIB | ||
RFC | 2863 | Interfaces | group MIB |
RFC | 1643 | Ethernet | like MIB |
RFC 1757 | RMON 4 groups: | ||
|
| Stats, History, Alarms, Events | |
RFC 2674 | IEEE 802.1Q MIB | ||
RFC 1866 | HTML |
| |
RFC 2068 | HTTP |
| |
RFC | 854 | Telnet |
|
RFC 783 | TFTP |
| |
IP address | allocation |
| |
RFC | 951/ RFC 1542 | BootP/ DHCP manual | |
RFC | 2030 | SNTP, Simple | Network Time Protocol |
Syslog event
Dual software images
Stacking:
Up to six units with a mix of
Single system appearance Single IP management Backup master
Redundant ring stacking topology with 20Gbps performance
Link | aggregation/trunking across stack | |
Port | mirroring across stack | |
VLAN across | stack | |
Security | ||
Management | security: username and | |
password | protection | |
SSHv2 for Telnet management | ||
SSLv3 for Web management | ||
RFC 1492 | TACACS+ | |
RFC | 2618 | RADIUS authentication |
RFC | 2865 | IEEE 802.1x |
|
| network access control |
Guest VLANs
ACL – Access Control Lists
Fault Protection
Broadcast storm control
Allied Telesis | www.alliedtelesis.com |