|
General |
|
Security |
| - |
True QoS via
EXTREMEWare and Policy-Based Bandwidth |
|
- |
Routing protocol MD5 authentication (see above) |
| |
control and
application prioritization |
|
- |
Secure Shell (SSHv2),Secure Copy (SCPv2) and SFTP with
|
| - |
Eight queues
per port |
|
|
encryption/authentication |
| - |
Auto-negotiating 100/1000BASE-T |
|
- |
SNMPv3 user based security, with |
| - |
Up to 131,000
Layer 2 addresses |
|
|
encryption/authentication (see above) |
| - |
Up to 131,000
Layer 3 addresses |
|
- |
RFC 1492 TACACS+ |
| - |
4,096 VLANs |
|
- |
RFC 2138 RADIUS Authentication |
|
Protocols and Standards |
|
- |
RFC 2139 RADIUS Accounting |
|
General Routing and Switching |
|
- |
RADIUS Per-command Authentication |
| - |
RFC 1812
Requirements for IP Version 4 Routers |
|
- |
Access Profiles on All Routing Protocols |
| - |
RFC 1519 CIDR |
|
- |
Access Profiles on All Management Methods |
| - |
RFC 1256 IPv4
ICMP Router Discovery (IRDP) |
|
- |
Network Login (web-based DHCP / HTTP/ RADIUS |
| - |
RFC 1122 Host
Requirements |
|
|
mechanism) |
| - |
RFC 768 UDP |
|
- |
RFC 2246 TLS 1.0 + SSL v2/v3 encryption for web-based |
| - |
RFC 791 IP |
|
|
Network Login |
| - |
RFC 792 ICMP |
|
- |
Multiple supplicants for Network Login (web-based and |
| - |
RFC 793 TCP |
|
|
802.1x modes) |
| - |
RFC 826 ARP |
|
- |
MAC Address Security - Lockdown and Limit |
| - |
RFC 894 IP
over Ethernet |
|
- |
IP
Address Security with DHCP Option 82, DHCP |
| - |
RFC 1027 Proxy
ARP |
|
|
Enforce / Duplicate IP Protection via ARP Learning
Disable |
| - |
RFC 2338 VRRP |
|
- |
Network Address Translation (NAT) |
| - |
RFC 3619
Ethernet Automatic Protection Switching (EAPS) |
|
- |
Layer 2/3/4/7 Access Control Lists (ACLs) |
| |
and EAPSv2 |
|
Denial of Service Protection |
| - |
IEEE 802.1D -
1998 Spanning Tree Protocol (STP) |
|
- |
RFC 2267 Network Ingress Filtering |
| - |
IEEE 802.1w
2001 Rapid Reconfiguration for STP, RSTP |
|
- |
RPF (Unicast Reverse Path Forwarding) Control via ACLs |
| - |
IEEE 802.1Q -
1998 Virtual Bridged Local Area Networks |
|
- |
Wire-speed ACLs |
| - |
EMISTP,
EXTREME Multiple Instances of Spanning |
|
- |
Rate Limiting / Shaping by ACLs |
| |
Tree Protocol |
|
- |
IP
Broadcast Forwarding Control |
| - |
PVST+, Per
VLAN STP (802.1Q interoperable) |
|
- |
ICMP and IP-Option Response Control |
| - |
EXTREME
Standby Router Protocol (ESRP) |
|
- |
Server Load Balancing with Layer 3,4 Protection of
Servers |
| - |
Static Unicast
Routes |
|
- |
SYN attack protection |
| - |
Software
Redundant Ports |
|
- |
FDB table resource protection via IPDA Subnet Lookup |
| - |
IPX RIP/SAP
Router specification |
|
- |
CPU DOS protection with ACL integration: Identifies
packet |
|
VLANs |
|
|
floods to CPU and sets an ACL automatically,
configurable |
| - |
IEEE 802.1Q
VLAN Tagging |
|
- |
Traffic ratelimiting to management CPU / Enhanced |
| - |
IEEE 802.3ad
Static configuration and dynamic (LACP) |
|
|
DoS Protect |
| |
for server
attached |
|
- |
Uni-directional Session Control |
| - |
IEEE 802.1v:
VLAN classification by Protocol and Port |
|
- |
Robust against common Network Attacks |
| - |
Port-based
VLANs |
|
|
CERT (http://www.cert.org) |
| - |
MAC-based
VLANs |
|
|
•
|
CA-2003-04:
“SQL Slammer” |
| - |
Protocol-based
VLANs |
|
|
•
|
CA-2002-36:
“SSHredder” |
| - |
Multiple STP
domains per VLAN |
|
|
•
|
CA-2002-03:
SNMP vulnerabilities |
| - |
RFC-3069 VLAN
Aggregation for Efficient IP |
|
|
•
|
CA-98-13: tcp-denial-of-service |
| |
Address
Allocation |
|
|
•
|
CA-98.01:
smurf |
| - |
Virtual MANs (vMANs) |
|
|
•
|
CA-97.28:Teardrop_Land -Teardrop and “LAND " attack |
| - |
VLAN
Translation |
|
|
•
|
CA-96.26: ping |
|
Quality of Service and Policies |
|
|
•
|
CA-96.21:
tcp_syn_ooding |
| - |
IEEE 802.1D
-1998 (802.1p) Packet Priority |
|
|
•
|
CA-96.01:
UDP_service_denial |
| - |
RFC 2474
DiffServ Precedence, including 8 queues/port |
|
|
•
|
CA-95.01:
IP_Spoofing_Attacks_and_Hijacked |
| - |
RFC 2598
DiffServ Expedited Forwarding (EF) |
|
|
•
|
Terminal_Connections |
| - |
RFC 2597
DiffServ Assured Forwarding (AF) |
|
|
•
|
IP Options
Attack |
| - |
RFC 2475
DiffServ Core and Edge Router Functions |
|
|
Host Attacks |
| - |
RED as
described in “Random Early Detection Gateways |
|
|
Teardrop, fraggle, Latierra, boink, papasmurf, Winnuke, |
| |
for Congestion
Avoidance, Sally Floyd and Van Jacobson” |
|
|
opentear, synk4, Simping, jolt2, raped, Sping, newtear, |
| - |
RED as
recommended in RFC 2309 |
|
|
winfreeze, Ascend, nestea, ping f, Stream, syndrop, |
| - |
Bi-directional
Rate Shaping |
|
|
ping of death, Land, smurf, pepsi5, Octopus |
| - |
Layer 1-4,
Layer 7 (user NAME) Policy-Based Mapping |
|
Physical and Environmental |
| - |
Policy-Based
Mapping/Overwriting of DiffServ code |
|
- |
Dimensions: |
| |
points, .1p
priority |
|
|
(H) 3.50 in x (W) 17.25 in x (D) 19.0 in |
| - |
Network
Login/802.1x and DLCS (Dynamic Link Context |
|
|
(H) 8.90 cm x (W) 43.87 cm x (D) 48.31 cm |
| |
System, WINS
snooping) based integration with |
|
- |
Weight: 22 lbs (9.90 Kg) |
| |
EPICenter
Policy Manager for dynamic user/device |
|
- |
Operating Temperature: -40° C to 40° C (-40° F to 104°
F) |
| |
based policies |
|
- |
Storage Temperature: -10° C to 70° C (14° F to 158° F) |
|
RIP |
|
- |
Humidity: 10% to 95% non-condensing |
| - |
RFC 1058 RIP
v1 |
|
- |
Power: 85-250 VAC, 50-60 Hz, 1.4 A max. |
| - |
RFC 2453 RIP
v2 |
|
- |
Heat Dissipation: 556 BTU/hr (163 watts) |
|
OSPF |
|
Regulatory |
| - |
RFC 2328 OSPF
v2 (including MD5 authentication) |
|
Safety |
| - |
RFC 1587 OSPF
NSSA Option |
|
- |
UL
1950 3rd Edition, Listed |
| - |
RFC 1765 OSPF
Database Overflow |
|
- |
TUV/GS and GOST to EN60825-1 and EN60950: |
| - |
RFC 2370 OSPF
Opaque LSA Option |
|
|
1992/A3:1995+ZB/ZC Deviations |
|
IS-IS |
|
- |
cUL Listed to CSA 22.2#950-95 |
| - |
RFC 1142 (ISO
10589), IS-IS protocol |
|
EMI/EMC |
| - |
RFC 1195, Use
of OSI IS-IS for routing in TCP/IP |
|
- |
FCC Part 15 Class A |
| |
and dual
environments |
|
- |
ICES-0003 Class A |
| - |
RFC 2104, HMAC:
Keyed-Hashing for Message |
|
- |
VCCI Class 1 |
| |
Authentication, IS-IS HMAC-MD5 Authentication |
|
- |
EN55022 Class A |
| - |
RFC 2763
(Dynamic Host NAME Exchange for IS-IS) |
|
- |
CISPR 22 Class A |
|
BGP4 |
|
- |
EN55024 |
| - |
RFC 1771
Border Gateway Protocol 4 |
|
Environmental |
| - |
RFC 1965
Autonomous System Confederations for BGP |
|
- |
EN60068 to EXTREME IEC68 schedule |
| - |
RFC 2796 BGP
Route Reflection (supersedes RFC 1966) |
|
Reliability |
| - |
RFC 1997 BGP
Communities Attribute |
|
- |
Minimum 93,352 hrs calculated MTBF with 1 PSU to Mil |
| - |
RFC 1745 BGP4/IDRP
for IP—OSPF Interaction |
|
|
HDBK 17F Notice 1, Parts Stress Method |
| - |
RFC 2385 TCP
MD5 Authentication for BGPv4 |
|
- |
Minimum 103,393 hrs calculated MTBF with 2 PSUs to Mil |
| - |
RFC 2439 BGP
Route Flap Damping |
|
|
HDBK 217F Notice 1, Parts Stress Method |
|
IP
Multicast |
|
Acoustic |
| - |
RFC 2362
PIM-SM |
|
- |
58
dB/pW Weighted Sound Power Level to EN27779 |
| - |
PIM-DM Draft
IETF PIM Dense Mode v2-dm-03 |
|
|
and EN29295 |
| - |
PIM Snooping |
|
|
|
| - |
DVMRP v3 draft
IETF DVMRP v3-07 |
|
|
|
| - |
RFC 1112 IGMP
v1 |
|
|
| - |
RFC 2236 IGMP
v2 |
|
|
|
| - |
IGMP Snooping
with Configurable Router |
|
|
|
| |
Registration
Forwarding |
|
|
|
| - |
IGMP Filters |
|
|
|
| - |
Static IGMP
Membership |
|
|
|
| - |
Static
Multicast Routes |
|
|
|
| - |
Mtrace,
draft-ietf-idmr-traceroute-ipm-07 |
|
|
|
| - |
