About the CSX400

Bridging and Routing Protocol Filtering

Filtering is used to allow efficient usage of network resources and provide security for your network and hosts.

IP Internet Firewall — The CSX400 supports IP Internet Firewall filtering to prevent unauthorized access to your system and network resources from the Internet or a corporate Intranet. Security can be configured to permit or deny IP traffic. The security is established by configuring IP access filters, which are based on source IP address, source mask, destination IP address, destination mask, protocol type, and application port identifiers for both Transmission Control Protocol (TCP) and User Datagram Protocol (UDP) protocols. These IP access filters allow individual IP source and destination pair filtering as well as IP address ranges and wild carding to match any IP address. These Firewall filters can be defined to allow inbound only, outbound only, or bi-directional IP communication up to the UDP and TCP application port level. Firewall access filters provide a lot of flexibility to establish a powerful IP security barrier. The CSX400 supports the IP Access Control (from the ctip-mib) Internet Firewall Filter.

Bridge Filtering — Bridge filtering allows a network administrator to control the flow of packets across the CSX400. Bridge filtering can be used to “deny” or “allow” packets based on a “matched pattern” using a specified position and hexadecimal content within the packet. This enables restricting or forwarding of messages based on address, protocol, or data content. Common uses include preventing access to remote networks, controlling unauthorized access to the local network, and limiting unnecessary traffic.

The CSX400 supports the following Bridge Filters:

dot1dStatic Filters (IETF RFC1493)

Ethernet Special Filtering Database (from the ctbridge-mib)

System Passwords

System passwords allow you to control access to the CSX400 by establishing three passwords. Each password provides varying levels of access to the CSX400. The default password for each access level is pre-set to public. If you do not wish to establish a password, press ENTER, the default password is automatically selected.

The following definitions explain each of the three levels of access:

read-onlyThis access level allows reading of device parameters not including system passwords.

18 CSX400 and CSX400-DC User’s Guide

Page 31 Page 33
Page 32
Image 32
Cabletron Systems CSX400-DC manual Bridging and Routing Protocol Filtering, System Passwords
Page 31 Page 33

CSX400-DC, CSX400 specifications

Cabletron Systems was a leading developer of networking solutions, and its CSX400 and CSX200 series of high-performance switches represent some of the key innovations in the field of enterprise networking during their time. Both models were geared towards enhancing network reliability, efficiency, and speed, particularly in environments where heavy data traffic and complex networking demands were prevalent.

The CSX400, designed for larger enterprises, boasts a robust architecture capable of handling significant throughput. One of its standout features is its stackable design, allowing multiple switches to be interconnected and managed seamlessly as a single unit. This scalability provides organizations with the flexibility to expand their networks without significant infrastructure overhauls. The CSX400 supports various Ethernet standards, including 10/100 Ethernet and Gigabit Ethernet, positioning it to effectively manage both legacy and modern networking requirements.

In addition to its scalability, the CSX400 is distinguished by its advanced Layer 2 and Layer 3 routing capabilities. This dual-layer functionality enables efficient data handling and is instrumental in managing traffic between different network segments. Moreover, the switch incorporates features like VLAN (Virtual Local Area Network) support and Quality of Service (QoS) prioritization, allowing for enhanced performance of critical applications and streamlined bandwidth allocation.

On the other hand, the CSX200 series is tailored for smaller enterprises or branch offices needing a reliable yet efficient networking solution. Despite its compact design, the CSX200 is equipped with essential features that promote effective network management and security. It offers a simplified management interface, making it user-friendly for network administrators. The switch also provides essential access control measures, employing technologies like IEEE 802.1X for network access security.

Both the CSX400 and CSX200 prioritize performance through the incorporation of advanced switching technologies. They support features such as Spanning Tree Protocol (STP), enabling loop-free topologies and enhanced network resilience. These attributes are particularly crucial in dynamic networking environments where downtime can have significant repercussions on business operations.

Overall, Cabletron Systems' CSX400 and CSX200 series represent a blend of scalability, advanced routing capabilities, and user-friendly management, making them vital assets for organizations looking to optimize their network infrastructure during a period of rapid technological evolution. With their rich feature sets and unwavering performance, these switches helped pave the way for modern networking solutions that cater to diverse enterprise needs.
Top Page Image Contents