Product Specifications

Features

SIMPLIFIED MANAGEABILITY

Dual image and dual configuration file storage provides backup

Intuitive Alcatel-Lucent CLI with familiar interface reducing training costs

Extensive user manuals with examples

Easy to use, point-and-click web based element manager (WebView) with built-in help for easy configuration of new technology features

Remote telnet management or secure shell access using SSH over IPv4 and IPv6

Secured file upload using SFTP, or SCP

Human readable ASCII based config files for offline editing and bulk configuration

IGMPv1/v2/v3 snooping to optimize multicast traffic

BootP/DHCP client allows auto-config of switch IP information to simplify deployment

DHCP relay to forward client requests to a DHCP server

Auto-negotiating 10/100/1000 ports automatically configure port speed and duplex setting

Auto MDI/MDIX automatically configures transmit and receive signals to support straight through and crossover cabling

SNMPv1/v2/v3

Integration with SNMP manager Alcatel- Lucent OmniVista for network wide management

Supports RFC 2819 RMON group (1-Statistics, 2-History, 3-Alarm & 9-Events)

Network Time Protocol (NTP) for network wide time synchronization

Alcatel-Lucent Mapping Adjacency Protocol (AMAP) for building topology maps within OmniVista

802.1AB – Link Layer Discovery Protocol with MED extentions

Port based mirroring for troubleshooting and lawful interception, supports four sessions with multiple sources-to-one destination configuration

Policy based mirroring – Allows selection of the type of traffic to mirror by using QoS policies

Remote port mirroring

Port monitoring feature that allows capture of Ethernet packets to a file, or for on-screen display to assist in troubleshooting

sFlow v5 support to monitor and effectively control and manage the network usage

Local (on the flash) and remote logging (Syslog)

GVRP for 802.1Q-compliant VLAN pruning and dynamic VLAN creation

Auto QoS for switch management traffic as well as traffic from Alcatel-Lucent IP phones

UDLD for detecting one way connections

HIGH AVAILABILITY

Ring Rapid Spanning Tree optimized for ring topology to provide less than 100ms convergence time

802.1w rapid recovery spanning tree allows subsecond failover to redundant link

14 Alcatel-Lucent OmniSwitch 6850

Alcatel-Lucent per-VLAN spanning tree (1x1)

802.1D spanning tree for loop free topology and link redundancy

802.1s multiple spanning tree

Fast forwarding mode on user ports to bypass 30-second delay for spanning tree

Static and 802.3ad dynamic link aggregation that supports automatic configuration of link aggregates with other switches

Broadcast storm control

Redundant 1:1 power provided by the OS6850-BPS

BPDU blocking – automatically shuts down switch ports being used as user ports if a spanning tree BPDU packet is seen. Prevents unauthorized spanning-tree enabled attached bridges from operating.

Priority queues: eight hardware-based queues per port

CONVERGENCE/ TRIPLE PLAY

Traffic prioritization: Flow-based QoS with internal and external (a.k.a., remarking) prioritization

Bandwidth management: flow based bandwidth management, ingress policing/egress shaping and port based egress shaping

Queue management: Random Early Detect/Discard (RED), configurable de-queuing algorithm; Strict Priority, Weighted and Deficit Round Robin.

Power-over-Ethernet: IEEE 802.3af – maximum total power of 380W for PoE

ADVANCED SECURITY

802.1X multi-client, multi-VLAN support for perclient authentication and VLAN assignment

IEEE 802.1X with group mobility

IEEE 802.1X with MAC based authentication, group mobility or “guest” VLAN support

MAC-based authentication for non-802.1X host

Authenticated VLAN that challenges users with username and password and supports dynamic VLAN access based on user

Captive Portal – A new Access Guardian Policy that uses embedded web portal for user authentication.*

PKI authentication for SSH access

Support for host integrity check and remediation VLAN

Support for Alcatel-Lucent Quarantine Manager and quarantine VLAN

Learned Port Security (LPS) or MAC address lockdown allows only known devices to have network access preventing unauthorized network device access

RADIUS and LDAP admin authentication prevents unauthorized switch management

TACACS+ client allows for authentication authorization and accounting with a remote TACACS+ server

Secure Shell (SSH), Secure Socket Layer (SSL) for HTTPS access and SNMPv3 for encrypted remote management communication

Access control lists to filter out unwanted traffic including denial of service attacks; Flow based filtering in hardware (L1-L4)

Support of Microsoft Network Access Protection (NAP)**

* Contact for avaliabliity

**NAP will be supported when available.

Switch protocol security

MD5 for RIPv2, OSPFv2 and SNMPv3

SSH for secure CLI session with PKI support

SSL for secure HTTP session

DHCP Snooping, DHCP IP Spoof protection

Enmbedded traffic anomaly detection

ARP poisoning detection

RESIDENTIAL METRO TRIPLE-PLAY ETHERNET ACCESS

DHCP Option 82 – configurable relay agent information

QinQ (Vlan stacking)

Ethernet OAM compliant with 802.1ag version 7.0

L3 ROUTING PROTOCOLS (IPV4)

IP Routing

Static routing

RIP v1 & v2

OSPF v2

BGP v4

ISIS Multicast

IGMP v1, v2 & v3 snooping

PIM-SM

PIM-DM

DVMRP

Network Protocol

TCP/IP stack

ARP

DHCP relay

Generic UDP relay per VLAN Resilience

VRRP v2

L3 ROUTING PROTOCOLS (IPV6)

IP Routing

Static routing

RIP ng

OSPF v3 Multicast

MLD snooping

PIM-SM

PIM-DM Network protocol

TCP/IP stack

DHCP relay (including generic UDP relay)

ARP Resilience

VRRP v3

LAYER-3 ROUTING (IPX)

IP Routing

Static routing

RIP/SAP

POWER OVER ETHERNET

IEEE 802.3af (supported on all POE chassis)

STACKING

Two 10 Gbps built-in stacking ports to provide fault tolerant looped stacking configuration

Stacking capacity: 40 Gbps

Page 14
Image 14
Riverstone Networks 6850 manual Simplified Manageability, High Availability, CONVERGENCE/ Triple Play, Advanced Security