Cisco Systems 3130 QoS and CoS Features

1-10

Cisco Catalyst Blade Switch 3130 for Dell Software Configuration Guide

OL-13270-01

Chapter1 Overview

Features

–

Voice VLAN to permit a Cisco IP Phone to access the voice VLAN regardless of the authorized

or unauthorized state of the port

–

IP phone detection enhancement to detect and recognize a Cisco IP phone

–

Guest VLAN to provide limited services to non-IEEE 802. 1x- co mplia nt u s ers

–

Restricted VLAN to provide limited services to users who are IEE E 802 .1x com pl ian t, but do

not have the credentials to authenticate via the standard I EEE 802 .1 x p roce sses

–

IEEE 802.1x accounting to track network usage

–

IEEE 802.1x with wake-on-LAN to allow dormant PCs to be powered on based on the receipt

of a specific Ethernet frame

•MAC authentication bypass to authorize clients based on the client MAC address.

•Network Admission Control (NAC) features:

–

NAC Layer 2 IEEE 802.1x validation of the antivirus condition or posture of endpoint systems

or clients before granting the devices network access.

For information about configuring NAC Layer 2 IEEE 802.1x validation, see the “Configuring

NAC Layer 2 IEEE 802.1x Validation” section on page9-41.

–

NAC Layer 2 IP validation of the posture of endpoint systems or clients before granting the

devices network access.

For information about configuring NAC Layer 2 IP validation, see the Network Admission

Control Software Configuration Guide.

–

IEEE 802.1x inaccessible authentication bypass.

For information about configuring this feature, see the “Configuring the Inaccessible

Authentication Bypass Feature” section on page 9-37.

–

Authentication, authorization, and accounting (AAA) down policy for a NAC Layer 2 IP

validation of a host if the AAA server is not available when the posture validation occurs.

For information about this feature, see the Network Admission Control Software Configuration

Guide.

•TACACS+, a proprietary feature for managing network security through a TACACS server

•RADIUS for verifying the identity of, granting access to, and tracking the actions of remote users

through AAA services

•Kerberos security system to authenticate requests for network resources by using a trusted third

party (requires the cryptographic universal software image)

•Secure Socket Layer (SSL) Version 3.0 support for the HTT P 1.1 ser v er authen ticati on, encr ypti on,

and message integrity and HTTP client authentication to allow secure HTTP communications

(requires the cryptographic universal software image)

QoS and CoS Features

These are the QoS and CoS features:

•Automatic QoS (auto-QoS) to simplify the deployment of existing QoS features by classifying

traffic and configuring egress queues

•Cross-stack QoS for configuring QoS features to all switches in a switch stack rather than on an

individual-switch basis