62 63
Cisco Data Center Switching Solutions (continued)
Modular Switches
Model/Series Nexus 7000 Series Catalyst 6500 Series
Integrated Security
Access Control Lists
H/W-based Access Control Entry • •
Dedicated Hardware Resources for Security
ACLs
• •
(ACE) Counters • •
Router ACL • •
VLAN ACL • •
Port ACL • •
Port ACL (for IPv6) • •
Role Based ACL •
Reflexive ACL •
Time-based ACL • •
VACL with Redirect/Capture/Logging of
Denied Traffic
• •
Context-based Access Control • •
Order-dependent ACL Merge • •
ACL Scalability (ACE Entries) 128,000 32,000
IPv6 RA Guard •
IPv6 URPF • •
Attack Mitigation
Control Plane Policing (Multiple CPU Rate
Limiters)
• •
IP Source Guard • •
DHCP Snooping/Option 82 • •
Dynamic ARP Inspection • •
MAC Address Notification • •
Port Security • •
H/W-based uRFP Check • •
H/W-based MAC Learning • •
H/W-assisted MAC Aging • •
Routing Protocol Pass Through •
ARP Policing • •
H/W-based Directed Broadcast • •
ACL Dry Run and Atomic Commit •
Fixed-Configuration Switches
Nexus 5000 Series Nexus 3000 Series Catalyst 4948E/4900M
• • •
• • •
• • •
• • •
• • •
• • •
•
•
•
•
4000 2000 128,000
•
•
• • •
• • •
• • •
• • •
• • •
•
• • •
• •
• •
• • •
• •
Introduction
To Next Page
Loading...
Need help?
General