General |
|
Security |
- |
True QoS via ExtremeWare and Policy-Based
Bandwidth |
|
- |
Routing protocol MD5
authentication (see above) |
|
control and application
prioritization |
|
- |
Secure Shell (SSHv2),Secure Copy
(SCPv2) and SFTP with |
- |
Eight queues per port |
|
|
encryption/authentication |
- |
Auto-negotiating 100/1000BASE-T |
|
- |
SNMPv3 user based security,
with |
- |
Up to 131,000 Layer 2 addresses |
|
|
encryption/authentication (see
above) |
- |
Up to 131,000 Layer 3 addresses |
|
- |
RFC 1492 TACACS+ |
- |
4,096 VLANs |
|
- |
RFC 2138 RADIUS
Authentication |
Protocols and
Standards |
|
- |
RFC 2139 RADIUS
Accounting |
General Routing and
Switching |
|
- |
RADIUS Per-command
Authentication |
- |
RFC 1812 Requirements for IP Version 4
Routers |
|
- |
Access Profiles on All Routing
Protocols |
- |
RFC 1519 CIDR |
|
- |
Access Profiles on All
Management Methods |
- |
RFC 1256 IPv4 ICMP Router Discovery
(IRDP) |
|
- |
Network Login (web-based DHCP /
HTTP/ RADIUS |
- |
RFC 1122 Host Requirements |
|
|
mechanism) |
- |
RFC 768 UDP |
|
- |
RFC 2246 TLS 1.0 + SSL v2/v3
encryption for web-based |
- |
RFC 791 IP |
|
|
Network Login |
- |
RFC 792 ICMP |
|
- |
Multiple supplicants for Network
Login (web-based and |
- |
RFC 793 TCP |
|
|
802.1x modes) |
- |
RFC 826 ARP |
|
- |
MAC Address Security - Lockdown
and Limit |
- |
RFC 894 IP over Ethernet |
|
- |
IP Address Security with DHCP
Option 82, DHCP |
- |
RFC 1027 Proxy ARP |
|
|
Enforce / Duplicate IP
Protection via ARP Learning Disable |
- |
RFC 2338 VRRP |
|
- |
Network Address Translation
(NAT) |
- |
RFC 3619 Ethernet Automatic Protection
Switching (EAPS) |
|
- |
Layer 2/3/4/7 Access Control
Lists (ACLs) |
|
and EAPSv2 |
|
Denial of Service
Protection |
- |
IEEE 802.1D - 1998 Spanning Tree Protocol
(STP) |
|
- |
RFC 2267 Network Ingress
Filtering |
- |
IEEE 802.1w 2001 Rapid Reconfiguration
for STP, RSTP |
|
- |
RPF (Unicast Reverse Path
Forwarding) Control via ACLs |
- |
IEEE 802.1Q - 1998 Virtual Bridged Local
Area Networks |
|
- |
Wire-speed ACLs |
- |
EMISTP, Extreme Multiple Instances of
Spanning |
|
- |
Rate Limiting / Shaping by
ACLs |
|
Tree Protocol |
|
- |
IP Broadcast Forwarding
Control |
- |
PVST+, Per VLAN STP (802.1Q
interoperable) |
|
- |
ICMP and IP-Option Response
Control |
- |
Extreme Standby Router Protocol
(ESRP) |
|
- |
Server Load Balancing with Layer
3,4 Protection of Servers |
- |
Static Unicast Routes |
|
- |
SYN attack protection |
- |
Software Redundant Ports |
|
- |
FDB table resource protection
via IPDA Subnet Lookup |
- |
IPX RIP/SAP Router specification |
|
- |
CPU DOS protection with ACL
integration: Identifies packet |
VLANs |
|
|
floods to CPU and sets an ACL
automatically, configurable |
- |
IEEE 802.1Q VLAN Tagging |
|
- |
Traffic ratelimiting to
management CPU / Enhanced |
- |
IEEE 802.3ad Static configuration and
dynamic (LACP) |
|
|
DoS Protect |
|
for server attached |
|
- |
Uni-directional Session
Control |
- |
IEEE 802.1v: VLAN classification by
Protocol and Port |
|
- |
Robust against common Network
Attacks |
- |
Port-based VLANs |
|
|
CERT
(http://www.cert.org) |
- |
MAC-based VLANs |
|
|
|
CA-2003-04: ¡°SQL Slammer¡± |
- |
Protocol-based VLANs |
|
|
|
CA-2002-36: ¡°SSHredder¡± |
- |
Multiple STP domains per VLAN |
|
|
|
CA-2002-03: SNMP vulnerabilities |
- |
RFC-3069 VLAN Aggregation for Efficient
IP |
|
|
|
CA-98-13: tcp-denial-of-service |
|
Address Allocation |
|
|
|
CA-98.01: smurf |
- |
Virtual MANs (vMANs) |
|
|
|
CA-97.28:Teardrop_Land -Teardrop and ¡°LAND
" attack |
- |
VLAN Translation |
|
|
|
CA-96.26: ping |
Quality of Service and
Policies |
|
|
|
CA-96.21: tcp_syn_?ooding |
- |
IEEE 802.1D -1998 (802.1p) Packet
Priority |
|
|
|
CA-96.01: UDP_service_denial |
- |
RFC 2474 DiffServ Precedence, including 8
queues/port |
|
|
|
CA-95.01:
IP_Spoofing_Attacks_and_Hijacked |
- |
RFC 2598 DiffServ Expedited Forwarding
(EF) |
|
|
|
Terminal_Connections |
- |
RFC 2597 DiffServ Assured Forwarding
(AF) |
|
|
|
IP Options Attack |
- |
RFC 2475 DiffServ Core and Edge Router
Functions |
|
|
Host Attacks |
- |
RED as described in ¡°Random Early
Detection Gateways |
|
|
Teardrop, fraggle, Latierra,
boink, papasmurf, Winnuke, |
|
for Congestion Avoidance, Sally Floyd and
Van Jacobson¡± |
|
|
opentear, synk4, Simping, jolt2,
raped, Sping, newtear, |
- |
RED as recommended in RFC 2309 |
|
|
winfreeze, Ascend, nestea, ping
f, Stream, syndrop, |
- |
Bi-directional Rate Shaping |
|
|
ping of death, Land, smurf,
pepsi5, Octopus |
- |
Layer 1-4, Layer 7 (user name)
Policy-Based Mapping |
|
Physical and
Environmental |
- |
Policy-Based Mapping/Overwriting of
DiffServ code |
|
- |
Dimensions: |
|
points, .1p priority |
|
|
(H) 3.50 in x (W) 17.25 in x (D)
19.0 in |
- |
Network Login/802.1x and DLCS (Dynamic
Link Context |
|
|
(H) 8.90 cm x (W) 43.87 cm x (D)
48.31 cm |
|
System, WINS snooping) based integration
with |
|
- |
Weight: 22 lbs (9.90
Kg) |
|
EPICenter Policy Manager for dynamic
user/device |
|
- |
Operating Temperature: -40° C to
40° C (-40° F to 104° F) |
|
based policies |
|
- |
Storage Temperature: -10° C to
70° C (14° F to 158° F) |
RIP |
|
- |
Humidity: 10% to 95%
non-condensing |
- |
RFC 1058 RIP v1 |
|
- |
Power: 85-250 VAC, 50-60 Hz, 1.4
A max. |
- |
RFC 2453 RIP v2 |
|
- |
Heat Dissipation: 556 BTU/hr
(163 watts) |
OSPF |
|
Regulatory |
- |
RFC 2328 OSPF v2 (including MD5
authentication) |
|
Safety |
- |
RFC 1587 OSPF NSSA Option |
|
- |
UL 1950 3rd Edition,
Listed |
- |
RFC 1765 OSPF Database Overflow |
|
- |
TUV/GS and GOST to EN60825-1 and
EN60950: |
- |
RFC 2370 OSPF Opaque LSA Option |
|
|
1992/A3:1995+ZB/ZC
Deviations |
IS-IS |
|
- |
cUL Listed to CSA
22.2#950-95 |
- |
RFC 1142 (ISO 10589), IS-IS protocol |
|
EMI/EMC |
- |
RFC 1195, Use of OSI IS-IS for routing in
TCP/IP |
|
- |
FCC Part 15 Class A |
|
and dual environments |
|
- |
ICES-0003 Class A |
- |
RFC 2104, HMAC: Keyed-Hashing for
Message |
|
- |
VCCI Class 1 |
|
Authentication, IS-IS HMAC-MD5
Authentication |
|
- |
EN55022 Class A |
- |
RFC 2763 (Dynamic Host Name Exchange for
IS-IS) |
|
- |
CISPR 22 Class A |
BGP4 |
|
- |
EN55024 |
- |
RFC 1771 Border Gateway Protocol 4 |
|
Environmental |
- |
RFC 1965 Autonomous System Confederations
for BGP |
|
- |
EN60068 to Extreme IEC68
schedule |
- |
RFC 2796 BGP Route Reflection (supersedes
RFC 1966) |
|
Reliability |
- |
RFC 1997 BGP Communities Attribute |
|
- |
Minimum 93,352 hrs calculated
MTBF with 1 PSU to Mil |
- |
RFC 1745 BGP4/IDRP for IP?OSPF
Interaction |
|
|
HDBK 17F Notice 1, Parts Stress
Method |
- |
RFC 2385 TCP MD5 Authentication for
BGPv4 |
|
- |
Minimum 103,393 hrs calculated
MTBF with 2 PSUs to Mil |
- |
RFC 2439 BGP Route Flap Damping |
|
|
HDBK 217F Notice 1, Parts Stress
Method |
IP Multicast |
|
Acoustic |
- |
RFC 2362 PIM-SM |
|
- |
58 dB/pW Weighted Sound Power
Level to EN27779 |
- |
PIM-DM Draft IETF PIM Dense Mode
v2-dm-03 |
|
|
and EN29295 |
- |
PIM Snooping |
|
|
|
- |
DVMRP v3 draft IETF DVMRP v3-07 |
|
|
|
- |
RFC 1112 IGMP v1 |
|
|
- |
RFC 2236 IGMP v2 |
|
|
|
- |
IGMP Snooping with Configurable
Router |
|
|
|
|
Registration Forwarding |
|
|
|
- |
IGMP Filters |
|
|
|
- |
Static IGMP Membership |
|
|
|
- |
Static Multicast Routes |
|
|
|
- |
Mtrace,
draft-ietf-idmr-traceroute-ipm-07 |
|
|
|
- |
Mrinfo |
|
|
|
Management and Traffic
Analysis |
|
|
|
- |
RFC 2030 SNTP, Simple Network Time
Protocol v4 |
|
|
|
- |
RFC 1866 HTML web-based device
management and |
|
|
|
|
Network Login |
|
|
|
- |
RFC 2068 HTTP server |
|
|
|
- |
RFC 854 Telnet client and server |
|
|
|
- |
RFC 783 TFTP Protocol (revision 2) |
|
|
|
- |
RFC 951, 1542 BootP |
|
|
|
- |
RFC 2131 BOOTP/DHCP relay agent and DHCP
server |
|
|
|
- |
RFC 1591 DNS (client operation) |
|
|
|
- |
RFC 1155 Structure of Mgmt Information
(SMIv1) |
|
|
|
- |
RFC 1157 SNMPv1 |
|
|
|
- |
RFC 1212, RFC 1213, RFC 1215 MIB-II,
Ethernet-Like |
|
|
|
|
MIB & TRAPs |
|
|
|
- |
RFC 1573 Evolution of Interface |
|
|
|
- |
RFC 1650 Ethernet-Like MIB (update of RFC
1213 |
|
|
|
|
for SNMPv2) |
|
|
|
- |
RFC 1901 1908 SNMP Version 2c, SMIv2
and |
|
|
|
|
Revised MIB-II |
|
|
|
- |
RFC 2570 2575 SNMPv3, user based
security, |
|
|
|
|
encryption and authentication |
|
|
|
- |
RFC 2576 Coexistence between SNMP Version
1, Version |
|
|
|
|
2 and Version 3 |
|
|
|
- |
RFC 2665 Ethernet-Like-MIB |
|
|
|
- |
RFC 1757 RMON 4 groups: Stats, History,
Alarms |
|
|
|
|
and Events |
|
|
|
- |
RFC 2021 RMON2 (probe configuration) |
|
|
|
- |
RFC 2613 SMON MIB |
|
|
|
- |
RFC 2668 802.3 MAU MIB |
|
|
|
- |
RFC 1643 Ethernet MIB |
|
|
|
- |
RFC 1493 Bridge MIB |
|
|
|
- |
RFC 2737 Entity MIB, Version 2 |
|
|
|
- |
RFC 2674 802.1p / 802.1Q MIBs |
|
|
|
- |
RFC 1354 IPv4 Forwarding Table MIB |
|
|
|
- |
RFC 2737 Entity MIB v2 |
|
|
|
- |
RFC 2233 Interface MIB |
|
|
|
- |
RFC 1354 IP Forwarding Table MIB |
|
|
|
- |
RFC 1724 RIPv2 MIB |
|
|
|
- |
RFC 1850 OSPFv2 MIB |
|
|
|
- |
RFC 1657 BGPv4 MIB |
|
|
|
- |
RFC 2787 VRRP MIB |
|
|
|
- |
RFC 2925 Ping / Traceroute / NSLOOKUP
MIB |
|
|
|
- |
Draft-ietf-bridge-rstpmib-03.txt
Definitions of Managed |
|
|
|
|
Objects for Bridges with Rapid Spanning
Tree Protocol |
|
|
|
- |
Draft-ietf-bridge-8021x-01.txt
(IEEE8021-PAE-MIB) |
|
|
|
- |
IEEE 802.1x 2001 MIB |
|
|
|
- |
Extreme extensions to 802.1x-MIB |
|
|
|
- |
Secure Shell (SSHv2) clients and
servers |
|
|
|
- |
Secure Copy (SCPv2) client and server |
|
|
|
- |
Secure FTP (SFTP) server |
|
|
|
- |
sFlow version 5 |
|
|
|
- |
NetFlow version 1 export |
|
|
|
- |
Configuration logging |
|
|
|
- |
Multiple Images, Multiple Configs |
|
|
|
- |
BSD System Logging Protocol (SYSLOG), with
Multiple |
|
|
|
|
Syslog Servers |
|
|
|
- |
999 Local Messages (criticals stored
across reboots) |
|
|
|
|
|
|
|
|
ExtremeWare vendor MIBs (includes ACL, MAC
FDB, IP |
|
|
|
FDB,MAC Address Security, Software Redundant
Port, |
|
|
|
NetFlow, DoS-Protect MIB, QoS policy, Cable
Diagnostics, |
|
|
|
VLAN config,vMAN, VLAN Translation and
VLAN |
|
|
|
Aggregation MIBs. |
|
|
|