Efficient Networks 5400 Manual de usuario descargar pdf (Pagina 7)

ProVision ASIC confers security,

convergence, and mobility benefits

The ProVision ASIC is a continuation of HP ASIC

innovation over the past many years starting with the

HP AdvanceStack Switch 2000 and continuing through

the HP 5300xl Switch Series and now the 5400

and 3500 series.

The raw performance of the ProVision ASIC architecture

beats most competition while delivering unparalleled

intelligence at the port.

More specifically, the ProVision ASIC offers the

following benefits:

Wire-speed policy enforcement engine—The ProVision

ASIC enables users to deploy more secure and granular

policy at wire speed across all ports for better protection

of information assets and support for applications that

require bandwidth and QoS control. The ProVision

ASIC’s policy engine is superior due to implementation

of a multi-stage classifier and Ternary Content

Addressable Memory (TCAM). The multi-stage classifier

allows the traffic to be processed efficiently, and the

ProVision ASIC’s TCAM can match more policy rules

simultaneously at wire speed than competitive offerings

in this class. This capability results in more granular and

better performing policy enforcement.

Built-in resiliency—The ProVision ASIC is architected to

operate continuously and withstand error conditions and

malicious network attacks. The 5400 and 3500 Switch

Series use a combination of software and ProVision

ASIC functionality to verify whether all the data packets

are sent to the CPU. Excessive packets from malicious

attacks or network misconfiguration can be identified

and demoted to lower-priority queues before they

overwhelm and shut down the CPU and the switch.

The HP 5400 and 3500 Switch Series excel at supporting applications in three main areas:

Security

In today’s environment, security is a top

concern for all network managers. The

HP 5400 and 3500 Switch Series help

with security in a number of ways, including

the following:

•Granularper-userpolicyenforcementwith

wire-speed packet processing and selection

for Remote Intelligent Mirroring, ACLs, QoS,

rate limiting, and other features

•MitigationofmaliciousattacksthroughVirus

Throttle, ICMP throttling, CPU DoS protection,

and detection of malicious attacks

•SecurenetworkaccesswithIEEE802.1X,

Web/MAC authentication, identity-driven

and per-port ACLs, MAC-based VLAN,

protection for network with DHCP protection,

BPDU port protection, port protection,

Dynamic ARP protection, Dynamic IP

lockdown, and STP Root Guard

•SecurenetworkmanagementviaTACACS+,

SSHv2, FTP, and encryption of all access

methods—CLI, GUI, or MIB—through SSHv2,

SSL, and SNMPv3

•Dynamicper-userpolicy,whenintegrated

with HP Identity Driven Manager (IDM), the

HP 5400/3500 Switch Series provides

fast and effective means to set and enforce

switch-level individual user policies

(for example, ACL, QoS, and rate-limiting)

automatically

Convergence

Mainstream convergence applications such as

IP telephony and video-over-IP are providing

new and better ways for businesses to serve

their customers, reduce cost, and increase

productivity. But traffic from these applications

place different requirements on the switch

infrastructure. The HP 5400 and 3500 Switch

Series offer the following features to help

enable that converged traffic is delivered

according to more stringent requirements:

•Multicastsupportviadata-drivenIGMP,PIM

Dense, and PIM Sparse

•AdvancedQoS,includingeighthardware

priority queues and selectable queue

configuration, set and enforce prioritization

based on multiple match criteria such as

Layer 2 (IEEE 802.1p, VLAN ID), Layer 3

(DSCP, IP address), and Layer 4 (TCP/UDP

port) markings

•Bandwidthshapingbyenforcing

ingress/egress maximum and egress

guaranteed minimum bandwidths

•SupportforIPtelephonythrough

interoperability with industry-leading

IP telephony vendors; LLDP-MED, which

enables automatic configuration of QoS

and VLAN; RADIUS VLAN, which uses

standard RADIUS attributes to automatically

configure VLAN for IP phones

•Supportforjumboframe,whichimproves

the performance of Ethernet storage area

network solutions using the iSCSI standard

Mobility

The HP 5400 and 3500 Switch Series

allow network managers to respond to

users’ increasing mobility with support for

wireless LAN access points and to provide

IEEE 802.3af and pre-standard PoE support.

With the addition of the HP MSM765 zl

Module, the HP 5400 Switch Series provides

centralized wireless LAN configuration and

management of advanced wireless services.

This centralized, approach to wired and

wireless management streamlines device

configuration and enables network monitoring

and response to wired and wireless network

threats, as well as administration of security and

role-based user policies that are enforced at

the edge of the network, regardless of how or

where the user connects.

•Layer3radio-portadoptionsupports

network wide and auto-configuration of

HP radio ports, enabling rapid deployment

of a wireless LAN with minimal network

reconfiguration

•Wirelessmobilitydomainprovidesseamless

client network connectivity as mobile users

roam across subnet boundaries

•Robustguestaccountadministrationprovides

secure yet easy-to-implement browser-based

network access for guest users

•WirelessLANself-healingandRFinterference

avoidance provides network resiliency and

sustainable wireless network availability

Requires Premium License

Table 2:

Support for network applications

1 2 3 4 5 6 7 8 9 10 11 12

Comentarios a estos manuales

Sin comentarios

Efficient Networks 5400 Manual de usuario Pagina 7

Comentarios a estos manuales

Relacionado con productos y manuales para Redes Efficient Networks 5400