Rostm Features

Cyber Security

Cyber security is an urgent issue in many industries where advanced automation and communications networks play a crucial role in mission critical applications and where high reliability is of paramount importance. Key ROS™ features that address security issues at the local area network level include:

.Passwords - Multi-level user passwords secures switch against unauthorized configuration

.SSH / SSL - Extends capability of password protection to add encryption of passwords and data as they cross the network

.Enable / Disable Ports - Capability to disable ports so that traffic can not pass

.802.1q VLAN - Provides the ability to logically segregate traffic between predefined ports on switches

.MAC Based Port Security - The ability to secure ports on a switch so only specific Devices / MAC addresses can communicate via that port

.802.1x Port Based Network Access Control - The ability to lock down ports on a switch so that only authorized clients can communicate via this port

.Radius - Provides centralized password management .SNMPv3 - encrypted authentication and access security

The ROS™ cyber security features are included to help address the various industry specific security standards such as NERC CIP, ISA S99, AGA 12, IEC 62443, ISO 17799:2005 and PCSRF SPP-ICS.

Enhanced Rapid Spanning Tree Protocol (eRSTP™)

RuggedCom eRSTP allows the creation of fault-tolerant ring and mesh Ethernet networks that incorporate redundant links that are 'pruned' to prevent loops. eRSTP yields worst-case fault recovery1 of 5ms times the 'bridge diameter' and allows rings of up to 80 switches. For example, a ring of ten switches will have fault recovery times under 50ms. eRSTP implements both STP and RSTP to ensure interoperability with commercial switches unlike other proprietary 'ring' solutions.

Quality of Service (IEEE 802.1p)

Some networking applications such as real-time control or VoIP (voice over IP) require predictable arrival times for Ethernet frames. Switches can introduce latency in times

of heavy network traffic due to the internal queues that buffer frames and then transmit on a first come first serve basis. ROS™ supports 'Class of Service' in accordance with IEEE 802.1p that allows time critical traffic to jump ahead to the front of the queue thus minimizing latency and reducing jitter to allow such demanding applications to operate correctly. ROS™ allows priority classification by port, tags, MAC address, and IP type of service (TOS).

RuggedSwitch™ M2200

MIL-STD 9-Port Managed Gigabit Ethernet Switch

A configurable "weighted fair queuing" algorithm controls how frames are emptied from the queues.

VLAN (IEEE 802.1q)

Virtual local area networks (VLAN) allow the segregation of a physical network into separate logical networks with independent broadcast domains. A measure of security is provided since hosts can only access other hosts on the same VLAN and traffic storms are isolated. ROS™ supports 802.1q tagged Ethernet frames and VLAN trunks. Port based classification allows legacy devices to be assigned to the correct VLAN. GVRP support is also provided to simplify the configuration of the switches on the VLAN.

Link Aggregation (802.3ad)

The link aggregation feature provides the ability to aggregate several Ethernet ports into one logical link (port trunk) with higher bandwidth. This provides an inexpensive way to set up a high speed backbone to improve network bandwidth. This feature is also known as "port trunking", "port bundling", "port teaming", and "ethernet trunk".

IGMP Snooping

ROS uses IGMP snooping (Internet Group Management Protocol v1&v2) to intelligently forward or filter multicast traffic streams (e.g. MPEG video) to or from hosts on the network. This reduces the load on network trunks and prevents packets from being received on hosts that are not involved. ROS™ has a very powerful implementation of

IGMP snooping that:

.Can be enabled on a per VLAN basis.

.Detects and filters all multicast streams regardless of whether subscribers exist.

.Supports "router-less" operation by supporting an "active" mode.

.Restores traffic streams immediately after an RSTP topology change.

SNMP (Simple Network Management Protocol)

SNMP provides a standardized method for network management stations the ability to interrogate devices from different vendors. SNMP versions supported by ROS™ are v1, v2c, and v3. SNMPv3 in particular provides security features (such as authentication, privacy, and access control) not present in earlier SNMP versions. ROS™ also supports numerous standard MIBs (Management Information Base) allowing for easy integration with any network management system (NMS).

1eRSTP fault recovery times may be approximated as follows: For 100 Mbps, fault recovery performance is <5ms/hop For 1,000 Mbps, fault recovery performance

is <5ms/hop + 20ms

www.RuggedCom.com	RuggedSwitchTM M2200	3

m2200 specifications

The RuggedCom M2200 is an advanced networking solution designed specifically for harsh and demanding environments. Suitable for industries such as transportation, utilities, oil and gas, and mining, the M2200 provides robust and reliable communication capabilities in the field where conventional networking equipment may fail.

One of the standout features of the RuggedCom M2200 is its high-quality environmental resilience. It is engineered to withstand extreme temperatures ranging from -40°C to +85°C, ensuring uninterrupted operation in severe climatic conditions. The device also boasts an IP40 enclosure rating, providing a solid defense against dust and moisture, which significantly extends its lifespan in challenging industrial settings.

In terms of connectivity, the M2200 supports a wide range of port options, including Ethernet and serial support, enabling seamless integration with existing infrastructure. With up to 24 Gbps of switching capacity, it is capable of handling substantial data flow, which is critical in modern applications where data traffic is continuously increasing.

The M2200 employs advanced Power over Ethernet (PoE) technology, allowing for efficient power distribution directly through the Ethernet cable to connected devices like cameras and Wi-Fi access points. This feature simplifies installation and reduces the need for additional power sources, making it easier to deploy network devices in remote or hard-to-reach locations.

Security also plays a crucial role in the design of the RuggedCom M2200. It incorporates industry-standard encryption protocols for secure communication and features such as access control lists (ACLs) to restrict unauthorized access. This is particularly important in sectors such as utility management, where safeguarding sensitive data is essential.

Additionally, the M2200 supports various networking protocols, such as IEC 61850 and DNP3, making it an ideal choice for utility and automation applications. Its capability for redundancy, including support for Rapid Spanning Tree Protocol (RSTP), ensures high availability, which is vital in environments where network downtime can be costly or dangerous.

Overall, the RuggedCom M2200 stands out as a reliable and versatile networking solution, combining rugged durability with advanced features that meet the needs of industries operating in challenging conditions. Its combination of environmental resilience, connectivity options, security features, and compliance with industry standards makes it an indispensable tool for modern industrial communication networks. Organizations can trust the M2200 to deliver consistent performance, ensuring that they maintain connectivity and data integrity even in the most demanding environments.

RuggedCom m2200 manual Rostm Features

Models: m2200