Netis ST3326GF [2/12] High scalability
Макгруп McGrp.ru
Задайте вопрос
Зарегистрироваться

Netis ST3326GF [2/12] High scalability

Netis ST3326GF [2/12] High scalability
Security Features
The switch supports DHCP snooping, which generates user binding entries
based on users' access interfaces, MAC addresses, IP addresses, IP address
leases, VLAN IDs. The DHCP snooping function protects enterprises from
common attacks such as bogus IP packet attacks, man-in-the-middle attacks,
and bogus DHCP server attacks.
The switch can limit the number of MAC addresses that can be learned on an
interface to prevent attackers from exhausting MAC address entries by using
bogus source MAC addresses. This function minimizes packet flooding, which
occurs when users' MAC addresses cannot be found in the MAC address table.
The switch can also limit the number of ARP entries to prevent ARP spoofing
attacks. In addition, it provides an IP source check function to prevent malicious
users from using spoofed IP addresses to initiate DoS attacks.
The switch supports centralized MAC address authentication and 802.1x
authentication. It authenticates users based on statically or dynamically bound
user information such as IP address, MAC address, VLAN ID, access port
number, QoS policies, and ACLs can be dynamically applied to users.
High Scalability
The switch uses Intelligent Stack (IPStack) to virtualize multiple switches into a
single logical device to ease user management and configuration and expand
the system switching capacity. IPStack improves switching capacity, reliability,
and scalability. Additionally, after the stack is established, all the member
switches in a stack use the same IP address. You can use a single IP address
to manage and maintain the switches uniformly. This greatly reduces system
operation and maintenance costs.
Besides traditional STP, RSTP, and MSTP, the switch supports enhanced
Ethernet technologies such as Smart Link and RRPP, implements
millisecond-level protection switchover for links, and ensures the network
quality.
QoS Policies
The switch supports complex traffic classification based on packets' TCP/UDP
port numbers, VLAN IDs, source MAC/IP addresses, destination MAC/IP
addresses, IP protocols, or priorities. By limiting the traffic rate based on traffic
classification results, the switch implements line-speed forwarding on each port
to ensure high-quality voice, video, and data services. Each port supports a
maximum of eight queues and multiple queue scheduling lgorithms, such as
WRR, SP, and WRR+SP.
Green Energy
The switch supports IEEE 802.3az Energy Efficient Ethernet (EEE) for
1000Base-T, 100Base-TX in full duplex operation, and supports 10Base-Te for
10Base-T in full/half duplex. The Energy Efficient Ethernet (EEE) operational
mode combines the IEEE 802.3 Media Access Control (MAC) Sub-layer with a
family of Physical Layers defined to support operation in Low Power Idle (LPI)
Mode. When Low Power Idle Mode is enabled, systems on both sides of the link
can disable portions of the functionality and save power during periods of low link
utilization.
Flexible Service Control
The switch supports various ACLs. ACL rules can be applied to VL ANs to
flexibly control ports.
The switch supports port-based VLAN assignment, these secure and flexible
VLAN assignment modes are used in networks where users move frequently.
The switch supports GARP VLAN Registration Protocol (GVRP), which
dynamically distributes, registers, and propagates VLAN attributes to ensure
correct VLAN configuration and reduce network administrator workloads. In
addition, the switch supports SSH v2, HWT ACACS, RMON, and port-based
traffic statistics.
FEATURES

Содержание

Похожие устройства

Скачать