Advanced security – Cisco 4948 User Manual

Page 6

Advertising
background image

© 2005 Cisco Systems, Inc. All rights reserved.

Important notices, privacy statements, and trademarks of Cisco Systems, Inc. can be found on cisco.com.

Page 6 of 14


Manageable through CiscoWorks Windows network-management software on a per-port and per-switch basis, providing a common management

interface for Cisco routers, switches, and hubs

SNMPv1, v2, and v3 instrumentation, delivering comprehensive in-band management

CLI-based management console to provide detailed out-of-band management

Remote Monitoring (RMON) software agent to support four RMON groups (history, statistics, alarms, and events) for enhanced traffic

management, monitoring, and analysis

Support for all nine RMON groups through the use of a Cisco SwitchProbe

®

analyzer (Switched Port Analyzer [SPAN]) port, which permits

traffic monitoring of a single port, a group of ports, or the entire switch from a single network analyzer or RMON probe

Analysis support, including ingress port, egress port, and VLAN SPAN

Layer 2 traceroute

Remote SPAN (RSPAN)

Cisco SmartPort macros

SPAN ACL filtering

Dynamic Host Configuration Protocol (DHCP) client autoconfiguration

Enhanced SNMP MIB support

HTTPS

Time Domain Reflectometry (TDR)

Advanced Security

TACACS+ and RADIUS, which help enable centralized control of the switch and restrict unauthorized users from altering the configuration

Standard and extended ACLs on all ports

802.1x user authentication (with VLAN assignment, voice VLAN, port security, guest VLAN, private guest VLAN, private VLAN, RADIUS

Supplied Session Timeout extensions)

802.1x accounting

802.1x authentication failure

802.1x Private VLAN assignment

802.1x Private Guest VLAN

802.1x Radius-supplied time out

Trusted boundary

Router ACLs (RACLs) on all ports (no performance penalty)

VLAN ACLs (VACLs)

Port ACLs (PACLs)

Private VLANs (PVLANs) on access and trunk ports

DHCP snooping

DHCP Option 82

DHCP Option 82 insertion

DHCP Option 82 Pass Through

Port security

Sticky port security

SSHv1 and SSHv2

VLAN Management Policy Server (VMPS) client

Unicast MAC filtering

Unicast port flood blocking

Dynamic Address Resolution Protocol (ARP) inspection

Advertising