Transcription

100GE-Enabled Managed SwitchesData SheetM4500 seriesHighlightsA 10G to 100G solution The M4500-32C offers 32-port QSFP28preconfigured for 100G and can support40G QSFP and 50G QSFP28 optics or DACcablesIntelligent IGMP Plus IGMP Plus multicast allows for scalablePro AV installations at Layer 2 withoutthe PIM (Protocol Independent Multicast)complexity The M4500-48XF8C offers 48-port SFP28preconfigured for 10G with 8-port 100GQSFP28 uplinks, and the SFP28 ports cansupport 10G and 25G IGMP Plus is default on VLAN 1 out of thebox and can be configured on another VLANfor automatic IGMP across M4500 andM4300 switches on that VLANFor Pro AV installations Installers opting to use M4500 switches intheir installation will find that it is alreadypreconfigured out of the boxHigher availability Meet the requirements of highperformance, high availability, fastscale out, low latency performance,and continuous serviceability in sensibleapplications True AV and multicast Zero Touch networkconfiguration: Connect AV-over-IPencoders and decoders, and power on theswitch. It just works!Page 2-3Page 4Page 5-13Page 14Page 15-19Page 20-29The trend of moving matrix switching into the Ethernet network is acceleratingand AV over IP already delivers capabilities far beyond that of a traditionalmatrix switch. Historically it has been simple to design AV over IP systems of upto 96 I/Os using a single switch and Layer-2 Multicast IGMP. However, largerinstallations required data center-class 100G Ethernet switches with morecomplex Layer-3 multicast routing techniques, adding complexity and cost tothe Ethernet infrastructure. As networked AV systems become ever larger, anew class of switches has come to market. They combine the configurability ofa matrix switch with the power and scalability of Ethernet to support hundredsof AV over IP endpoints, at a price point dramatically cheaper than comparablematrix switches. Introducing two new 100GE enabled switches for ProAV,the M4500 series. Removing the need for Layer-3 PIM routing, these newswitches offer IGMP Plus and greatly simplify system architectures with thesame well-known Layer-2 techniques across the entire AV over IP network.Installers opting to use M4500 switches in their installation will find that it isalready preconfigured out of the box. The M4500 switches offer 1 1 power and4 2 fan redundancy, an x86 Intel Atom Processor C3558 with 8GB DDR3/ECCRAM and 128GB SSD storageModels at a glanceProduct briefFeatures highlightsTarget Application (SDVoE)Components and modulesTech specs and ordering informationPage 1 of 29Industry standard management The M4500 switches come with an industrystandard command line interface (CLI), SSH,SNMP, sFlow, and MLAG An out of band 1 Gigabit Ethernet portfacilitates management, with simplifiedmacro-commands for AV-over-IPconfigurationIndustry leading warranty NETGEAR M4500 series is covered underNETGEAR ProSAFE Limited LifetimeHardware Warranty* 90 days of Technical Support via phone andemail, Lifetime Technical Support throughonline chat and Lifetime Next Business Dayhardware replacement

100GE-Enabled Managed SwitchesData SheetM4500 seriesHardware at a GlanceFRONTFormFactorModel nameM4500-32CM4500-48XF8CFull width1-unit 1Urack mountFull width1-unit 1Urack mountSwitchingFabric25GBASE-XSFP28 ports6.4 TbpsREAR100GBASE-XQSFP28 portsPSU32 ports1x100G; 1x50G;1x40G; 4x25G; 4x10GModular 2 bays2 PSU included(1 1 redundancy):2 x APS750W1x100Gdefault mode4 Tbps48 ports1x25G; 1x10G;1x1G*1x10Gdefault mode8 ports1x100G; 1x100G;1x50G; 1x40G; 4x25G;4x10G1x100Gdefault modeModular 2 bays2 PSU included(1 1 redundancy):2 x APS750W* SFP28 port speed is configurable by multiples of 4 ports (Port-1 for 1-2-3-4; Port-5 for 5-6-7-8; etc.)Front ViewM4500-32CM4500-48XF8CRear ViewM4500-32CM4500-48XF8CPage 2 of 29MANAGEMENTFansModular 6 slots6 Fans included(4 2 redundancy):6 x ATF402Front-to-back64.0dBModular 6 slots6 Fans included(4 2 redundancy):6 x mberEthernet: Out-of-band 1G port (Front)Console: RJ45 RS232 (Front)CSM4532Storage: USB (Front)Ethernet: Out-of-band 1G port (Front)Console: RJ45 RS232 (Front)Storage: USB (Front)XSM4556

100GE-Enabled Managed SwitchesData SheetM4500 seriesSoftware at a GlanceLAYER 3 Link DependencyCLI; Telnet;SSH(Enable or Disableone or more portsbased on the linkstate of one ormore differentports)SNMP, MIBsRSPANRadius Users,TACACS 1IPv4/IPv6ACL 1 Kbpsshapingrate limitCLI scheduler(Schedulefully-qualifiedEXEC mode CLIcommands to runonce, at specifiedintervals, at specified calendar datesand times, or uponsystem startup)IPv4/IPv6MulticastFilteringIGMP Plusfor VLANsSTP, QinQ)BPDU DynamicRoutingSuccessive TieringIPMultinetting/CIDRDHCP SnoopingPort,Subnet,VLANroutingDynamic ARPInspectionDHCPRelayIP Source GuardMulticaststaticroutesTrunkingPort ChannelStatic or DynamicLACP(LACPautomaticallyreverts to andfrom Static LAG)(DOT1X; MAB)Seven (7) L2/L3/L4 hashingalgorithmsMulti Chassis LinkAggregation turesModelnumberPFCAllmodelsDCBXCoSQueuingand ETSVXLANGatewayBGP4,VRF-LiteControlPacket FloodingCLI onlyPerformance at a GlanceTABLE SIZEModel nameM4500-32CMACARP/NDP32KMAC8KARPRouting /SwitchingCapacityThroughput6.4 Tbps2 atic routes:128256MbIPv4 routes:32K2.5KNDP8KARP2.5KNDP4 Tbps2 BppsStatic routes:128IPv4 routes:32KIPv6 routes:24KIP IGMP/MLD: ershipVLANsLinkAggregationPort ChannelsFlowModelnumberCSM453264-byte frames 0.13µs 100GQSFP2864 groups(LAG) 0.125µs 4x25Gbreakout2,048 IPv4256Mb64-byte frames 0.117µs 25GSFP28 0.119µs 10GSFP 0.129µs 100GQSFP28 0.129µs 50GQSFP28 0.144µs 40GQSFP Page 3 of 29802.3adwith LACPx86 IntelAtom ProcessorC3558 0.766µs 4x10GbreakoutPIM-SMv6:512Line-rateCPU 0.15µs 40GQSFP PIM-SM:153632KMACIP MulticastForwardingEntries 0.417µs 50GQSFP28IPv6 routes:24KIP IGMP/MLD: 2,048M4500-48XF8CLatency2.048 IPv68GBDDR3/ECC RAM128GBSSDstorage4K IPv4 /IPv64KVLANs32members/LAGsFlow v58 sessions416samplers63 embers/MLAGXSM4556

100GE-Enabled Managed SwitchesData SheetM4500 seriesProduct BriefIntroducing two new, preconfigured M4500 100GE switches: M450032C and M4500-48XF8C. The trend of moving matrix switching intothe Ethernet network is accelerating and a new class of switches hascome to market. Combining the configurability of a matrix switch withthe power and scalability of Ethernet, they support hundreds of AV overIP endpoints, at a price point dramatically lower than comparable matrixswitches. The Layer 3 feature set includes static and dynamic routingwith VRRP, OSPF, BGP, VRF-Lite and PIM. Removing the need for PIMrouting, these new switches offer IGMP Plus and greatly simplify systemarchitectures with the same well-known IGMP techniques across theentire AV over IP network while still operating at Layer 2. Installersopting to use M4500-48XF8C switch in their installation will find thatit is already preconfigured out of the box. It comes with 48 10G Fiberports with 8 100G uplink ports with true AV and multicast Zero Touchnetwork configuration. Connect AV over IP encoders and decoders, andpower on the switch. It just works! Then use the M4500-32C switch toaggregate the edge switches for a complete set up in large projects upto 320x320 SDVoE (10Gb) devices in a single architecture.Key features Cost effective 100G aggregation and 10G access layer for AVdeployments and redundant spine & leaf topologies Zero Touch AV-over-IP with pre-configured L2 Multicast on all models(10G AV encoders and decoders) and SDVoE-ready Advanced Layer 3 feature set including IP Multinetting/CIDR, Static,PBR, VRRPv2, OSPFv3, PIM-SM, VxLAN, BGP4, VRF-Lite Optimized for “Spine and Leaf” redundant AV installations, with orwithout MLAG between spine switches Up to 320 TX / 320 RX (10 Gigabit) Nodes all line rate with each otherin a redundant spine and leaf architecture 2 power supply units (APS750W) and 6 redudant fan trays (AFT402)pre-installed for 1 1 power and 4 2 fan redundancy Ultra-low latency (spine 0.13µs @100G; leaf 0.119µs @10G) andscalable table size (32K MAC, 8K ARP, 4K VLANs, 32K routes)Software Advanced classifier-based, time-based hardware implementation forL2 (MAC), L3 (IP) and L4 (UDP/TCP) security and prioritization Selectable Port-Channel / LAG (802.3ad - 802.1AX) L2/L3/L4 hashingfor fault tolerance and load sharing with any Ethernet channeling Up to 64 Link Aggregation Groups (LAG, Port-Channel, LACP) with 32ports per LAG and Multi-chassis Link Aggregation (MLAG) Comprehensive IPv4/IPv6 static and dynamic routing including IPMultinetting/CIDR, PBR, VRRPv2, OSPFv3, PIM-SM6, BGP4, VRF-Lite Enhanced IPv4/IPv6 multicast forwarding with IGMPv3/MLDv2 andIGMP Plus enhancement at the VLAN level IGMP Plus enhanced implementation for automatic multicast across aL2 network (igmp-plus vlan-id easy macro-command) High performance IPv4/IPv6 multicast routing with PIM-SM and PIMSM6 associated with unicast static routes, or other L3 protocol Advanced IPv4/IPv6 security including malicious code detection, DHCPSnooping, IP Source Guard, and Control Plane Policing (CoPP) Priority-Based Flow Control (PFC), DCBX Bridging, EnhancedTransmission Selection (ETS) and VXLAN Gateway for serverinstallationsAvailability Two (2) redundant, modular power supplies are pre-installedcontributingto business continuity management Six (6) hot-swappable fan trays are pre-installed for 4 2 fanredundancy Spine and leaf architecture with every leaf switch (10G/25G access)connecting to every spine switch (distributed 100G core) Up to 48 paths ECMP routing for load balancing and redundancy Link Dependency feature enables or disables ports based on the linkstate of different portsManagement Industry standard SNMP, RMON, MIB, LLDP, AAA, sFlow and RSPANremote mirroring implementation Service port for out-of-band 1 Gigabit Ethernet management (OOB) Standard RS232 straight-through RJ45 for local management console(USB 2.0 to RS232 converter with PL203 chipset is advised) Non-Disruptive Configuration for applying a new configuration filewithout disrupting the operation of unchanged features Industry standard command line interface (CLI) onlyNETGEAR Warranty M4500 series is backed by a NETGEAR ProSAFE Limited LifetimeHardware Warranty* Lifetime Next Business Day Hardware Replacement ProSUPPORT 24x7 Advanced Technical Support via phone for 90 days(Remote diagnostics performed by our technical experts for promptresolution of technical issues. ProSUPPORT coverage can be extendedby purchasing one, three, or five year contracts) ProSUPPORT Lifetime 24x7 Advanced Technical Support via chat.Page 4 of 29

100GE-Enabled Managed SwitchesData SheetM4500 seriesFeatures highlightsSwitching FeaturesVLAN Support VLANs are collections of switching ports that comprise a single broadcast domain. Packets are classifiedas belonging to a VLAN based on either the VLAN tag or a combination of the ingress port and packetcontents. Packets sharing common attributes can be groups in the same VLAN. The switch software is infull compliance with IEEE 802.1Q VLAN tagging.Double VLAN The Double VLAN feature (IEEE 802.1QinQ) allows the use of a second tag on network traffic. Theadditional tag helps differentiate between customers in the Metropolitan Area Networks (MAN) whilepreserving individual customer’s VLAN identification when they enter their own 802.1Q domain.Switching Modes The switchport mode feature helps to minimize the potential for configuration errors. The feature alsomakes VLAN configuration easier by reducing the amount of commands needed for port configuration. Forexample, to configure a port connected to an end user, you can configure the port in Access mode. Portsconnected to other switches can be configured in Trunk mode. VLAN assignments and tagging behavior areautomatically configured as appropriate for the connection type.Spanning Tree Protocols (STP) Spanning Tree Protocol (IEEE 802.1D) is a standard requirement of Layer 2 switches that allows bridgesto automatically prevent and resolve L2 forwarding loops. The STP feature supports a variety of per-portsettings including path cost, priority settings, Port Fast mode, STP Root Guard, Loop Guard, TCN Guard,and Auto Edge. These settings are also configurable per-Port-channel.Rapid Spanning Tree Rapid Spanning Tree Protocol (RSTP) detects and uses network topologies to enable faster spanning treeconvergence after a topology change, without creating forwarding loops. The port settings supported bySTP are also supported by RSTP.Multiple Spanning Tree Multiple Spanning Tree (MSTP) operation maps VLANs to spanning tree instances. Packets assignedto various VLANs are transmitted along different paths within MSTP Regions (MST Regions). Regionsare one or more interconnected MSTP bridges with identical MSTP settings. The MSTP standard letsadministrators assign VLAN traffic to unique paths. M4500 supports IEEE 802.1Q-2005, which is a version of corrected problems associated with theprevious version. It provides for faster transition-to-forwarding, and incorporates new features for a port(restricted role and restricted TCN).Bridge Protocol Data Unit (BPDU) Guard Spanning Tree BPDU Guard is used to disable the port in case a new device tries to enter the alreadyexisting topology of STP. Thus devices, which were originally not a part of STP, are not allowed to influencethe STP topology.Port-channel Up to 32 ports can combine to form a single Port-Channel (LAG). This enables fault tolerance protectionfrom physical link disruption, higher bandwidth connections and improved bandwidth granularity. A Portchannel is composed of ports of the same speed, set to full-duplex operationLink Aggregate Control Protocol (LACP) Link Aggregate Control Protocol (LACP) uses peer exchanges across links to determine, on an ongoingbasis, the aggregation capability of various links, and continuously provides the maximum level ofaggregation capability achievable between a given pair of systems. LACP automatically determines,configures, binds, and monitors the binding of ports to aggregators within the system.Multi Chassis Link Aggregation Group (MLAG) This feature enables a Port-channel to be created across two independent units, which creates a scenariowhere some member ports of the MLAG can reside on one unit and the other members of the MLAGcan reside on the other unit. The partner device on the remote side can be a MLAG unaware unit. For theMLAG unaware unit, the MLAG appears to be a single Port-channel connected to a single unit.Flow Control Support (IEEE 802.3x) Flow control enables lower speed switches to communicate with higher speed switches by requesting thatthe higher speed switch refrains from sending packets. Transmissions are temporarily halted to preventbuffer overflows.Asymmetric FlAlternate Store and Forward (ASF) When in asymmetric flow control mode, the switch responds to PAUSE frames received from peers bystopping packet transmission, but the switch does not initiate MAC control PAUSE frames. When theswitch is configured in asymmetric flow control (or no flow control mode), the device is placed in egressdrop mode. Egress drop mode maximizes the throughput of the system at the expense of packet loss ina heavily congested system, and this mode avoids head of line blocking. Asymmetric flow control is notsupported on Fast Ethernet platforms because support was introduced to the physical layer with theGigabit PHY specifications.Alternate Store and Forward (ASF) The Alternate Store and Forward (ASF) feature, which is also known as cut-through mode, reduces latencyfor large packets. When ASF is enabled, the memory management unit (MMU) can forward a packet to theegress port before it has been entirely received on the Cell Buffer Pool (CBP) memory.Page 5 of 29

100GE-Enabled Managed SwitchesData SheetM4500 seriesJumbo Frames Support Jumbo frames enable transporting data in fewer frames to ensure less overhead, lower processing time,and fewer interrupts. The maximum transmission unit (MTU) size is configurable per-port (max 9K).Auto-MDI/MDIX Support M4500 supports auto-detection between crossed and straight-through cables. Media-DependentInterface (MDI) is the standard wiring for end stations, and the standard wiring for hubs and switches isknown as Media- Dependent Interface with Crossover (MDIX).Unidirectional Link Detection (UDLD) The UDLD feature detects unidirectional links physical ports by exchanging packets containing informationabout neighboring devices. The purpose of the UDLD feature is to detect and avoid unidirectional links. Aunidirectional link is a forwarding anomaly in a Layer 2 communication channel in which a bidirectional linkstops passing traffic in one direction.Expandable Port Configuration Expandable ports allow you to configure a 100GbE port in either 4 25/10GbE mode or 1 40GbE mode.When the 100GbE port is operating in 4 25/10GbE mode, the port operates as four 25/10GbE ports,each on a separate lane. This mode requires the use of a suitable 4 25GbE to 1 100GbE pigtail cable.Expandable port capability can be enabled on 100G ports using the CLI command [no] port-mode. Achange to the port mode is made effective immediately.Port Speed Configuration M4500-48XF8C provides 48 ports SFP28 pre-configured for 10Gbps. Port speed can be 25Gbps,10Gbps or 1Gbps. SFP28 port speed is only configurable by multiples of 4 ports using the CLI command[no] port-mode. For instance, configuring Port-1 using (M4500-48XF8C) (Interface 0/1)#port-mode4x1G is actually setting all ports 1, 2, 3 and 4 at 1Gbps speed. Configuring Port-5 using (M450048XF8C) (Interface 0/5)#port-mode 4x1G is setting all ports 5, 6, 7 and 8 at 1Gbps speed.VLAN-aware MAC-based Switching Packets arriving from an unknown source address are sent to the CPU and added to the Hardware Table.Future packets addressed to or from this address are more efficiently forwarded.Back Pressure Support On half-duplex links, a receiver may prevent buffer overflows by jamming the link so that it is unavailablefor additional traffic. On full duplex links, a receiver may send a PAUSE frame indicating that the transmittershould cease transmission of frames for a specified period. When flow control is enabled, the switch willobserve received PAUSE frames or jamming signals, and will issue them when congested.Auto Negotiation Auto negotiation allows the switch to advertise modes of operation. The auto negotiation functionprovides the means to exchange information between two switches that share a point-to-point linksegment, and to automatically configure both switches to take maximum advantage of their transmissioncapabilities. The switch enhances auto negotiation by providing configuration of port advertisement. Portadvertisement allows the system administrator to configure the port speeds that are advertised.Storm Control When Layer 2 frames are forwarded, broadcast, unknown unicast, and multicast frames are flooded toall ports on the relevant virtual local area network (VLAN). The flooding occupies bandwidth, and loadsall nodes connected on all ports. Storm control limits the amount of broadcast, unknown unicast, andmulticast frames accepted and forwarded by the switch. Per-port and per-storm control type (broadcast,multicast, or unicast), the storm control feature can be configured to automatically shut down a port whena storm condition is detected on the port; or to send a trap to the system log. When configured to shutdown, the port is put into a diagnostic-disabled state. The user must manually re-enable the interfacefor it to be operational. When configured to send a trap, the trap is sent once in every 30 seconds. Whenneither action is configured, the switch rate-limits the traffic when storm conditions occur.Port Mirroring Port mirroring monitors and mirrors network traffic by forwarding copies of incoming and outgoing packetsfrom up to four source ports to a monitoring port. The switch also supports flow-based mirroring, whichallows you to copy certain types of traffic to a single destination port. This provides flexibility—insteadof mirroring all ingress or egress traffic on a port the switch can mirror a subset of that traffic. You canconfigure the switch to mirror flows based on certain kinds of Layer 2, Layer 3, and Layer 4 information.The switch supports up to four monitor sessions. Port mirroring, flow based mirroring, RSPAN, andVLAN mirroring can be configured at the same time on the switch using different sessions IDs and in anycombinations. Any two sessions cannot be identical. Multiple mirroring sessions are supported for alltypes of mirroring. A given interface can be used as a source interface for different sessions. For examplea mirroring session can be created with source interface as port A and destination interface as port B.Another session can be created with source interface as port A and destination interface as port C. Aninterface cannot be configured as a destination interface for more than one session. An IP/MAC access-listcan be attached to any mirroring session or to all sessions at the same time.sFlow sFlow is the standard for monitoring high-speed switched and routed networks. sFlow technology is builtinto network equipment and gives complete visibility into network activity, enabling effective managementand control of network resources. The switch supports sFlow version 5.Static and Dynamic MAC Address Tables You can add static entries to the switch’s MAC address table and configure the aging time for entries in thedynamic MAC address table. You can also search for entries in the dynamic table based on several differentcriteria.Page 6 of 29

100GE-Enabled Managed SwitchesData SheetM4500 seriesLink Layer Discovery Protocol (LLDP) The IEEE 802.1AB defined standard, Link Layer Discovery Protocol (LLDP), allows the switch to advertisemajor capabilities and physical descriptions. This information can help you identify system topology anddetect bad configurations on the LAN.Link Layer Discovery Protocol (LLDP) for MediaEndpoint Device The Link Layer Discovery Protocol for Media Endpoint Devices (LLDP-MED) provides an extension to theLLDP standard for network configuration and policy, device location, Power over Ethernet management,and inventory management.DHCP Layer 2 Relay This feature permits Layer 3 Relay agent functionality in Layer 2 switched networks. The switch supports L2DHCP relay configuration on individual ports, Port-channels and VLANs.MAC Multicast Support Multicast service is a limited broadcast service that allows one-to-many and many-to-many connections.In Layer 2 multicast services, a single frame addressed to a specific multicast address is received, andcopies of the frame to be transmitted on each relevant port are created.IGMP Snooping Internet Group Management Protocol (IGMP) Snooping is a feature that allows a switch to forwardmulticast traffic intelligently on the switch. Multicast IP traffic is traffic that is destined to a host group.Host groups are identified by class D IP addresses, which range from 224.0.0.0 to 239.255.255.255.Based on the IGMP query and report messages, the switch forwards traffic only to the ports that requestthe multicast traffic. This prevents the switch from broadcasting the traffic to all ports and possiblyaffecting network performance.IGMP Plus EnhancementThe IGMP Plus enhanced implementation for automatic multicast across a M4500 / M4300 L2 network(Spine and Leaf topologies) removes the need for L3 PIM routing: IGMP Plus is pre-configured on default VLAN 1 out of the box in all M4500 and M4300 models(M4300: starting 12.0.8.x release). IGMP Plus can be configured on another VLAN for automatic IGMP across switches on that VLAN (uplinkscan make part of that VLAN in trunk mode). IGMP Plus allows AV-over-IP devices (TX/Encoders and RX/Decoders) to be connected across multipleM4500 and M4300 switches in a star topology. New show igmpsnooping group command in CLI displays the Source and Group IP addresses along withtheir corresponding MAC addresses that are learnt through IGMP Snooping in a given VLAN on a giveninterface.Source Specific Multicasting (SSM) This mechanism provides the ability for a host to report interest in receiving a particular multicast streamonly from among a set of specific source addresses, or its interest in receiving a multicast stream from anysource other than a set of specific source addresses.Control Packet Flooding This feature enhances the MGMD Snooping functionality to flood multicast packets with DIP 224.0.0.xto all members of the incoming VLAN irrespective of the configured filtering behavior. This enhancementdepends on the ability of the switch to flood packets with DIP 224.0.0.x irrespective of the entries in theL2 Multicast Forwarding Tables.Flooding to mRouter Ports This feature enhances the MGMD Snooping functionality to flood unregistered multicast streams to allmRouter ports in the VLAN irrespective of the configured filtering behavior. This enhancement depends onthe ability of the switch to flood packets to specific ports in the incoming VLAN when there are no entriesin the L2 Multicast Forwarding Tables for the specific stream. In platforms that do not have the hardwarecapability, incoming multicast streams are always flooded in the ingress VLAN when the switch supports an“L2 multicast miss.”IGMP Snooping Querier When Protocol Independent Multicast (PIM) and IGMP are enabled in a network with IP multicast routing,the IP multicast router acts as the IGMP querier. However, if it is desirable to keep the multicast networkLayer 2 switched only, the IGMP Snooping Querier can perform the query functions of a Layer 3 multicastrouter.Management and Control Plane ACLs This feature provides hardware-based filtering of traffic to the CPU. An optional ‘management’ feature isavailable to apply the ACL on the CPU port. Currently, control packets like BPDU are dropped because ofthe implicit ‘deny all’ rule added at the end of the list. To overcome this rule, you must add rules that allowthe control packets. Support for user-defined simple rate limiting rule attributes for inbound as well asoutbound traffic is also available. This attribute is supported on all QoS capable interfaces - physical, Portchannel, and control-plane.Page 7 of 29

100GE-Enabled Managed SwitchesData SheetM4500 seriesRemote Switched Port Analyzer (RSPAN) Along with the physical source ports, the network traffic received/transmitted on a VLAN can bemonitored. A port mirroring session is operationally active if and only if both a destination (probe) portand at least one source port or VLAN is configured. If neither is true, the session is inactive. The switchsupports remote port mirroring. The switch also supports VLAN mirroring. Traffic from/to all the physicalports which are members of that particular VLAN is mirrored (The source for a port mirroring session canbe either physical ports or VLAN). For Flow-based mirroring, ACLs are attached to the mirroring session.The network traffic that matches the ACL is only sent to the destination port. This feature is supported forremote monitoring also. IP/MAC access-list can be attached to the mirroring session. Up to four RSPANsessions can be configured on the switch and up to four RSPAN VLANs are supported. An RSPAN VLANcannot be configured as a source for more than one session at the same time. To configure four RSPANmirroring sessions, it is required to configure 4 RSPAN VLANs.Link Dependency The Link Dependency feature supports enabling/disabling ports based on the link state of other ports (i.e.,making the link state of some ports dependent on the link state of others). In the simplest form, if portA is dependent on port B and switch detects link loss on B, the switch automatically brings down link onport A. When the link is restored to port B, the switch automatically restores link to port A. The link actioncommand option determines whether link A will come up/go down, depending upon the state of link B.IPv6 Router Advertisement Guard M4500 supports IPv6 Router Advertisement Guard (RA-Guard) to protect against attacks via rogueRouter Advertisements in accordance with RFC 6105. RA Guard supports Stateless RA-Guard, for whichyou can configure the interface to allow received router advertisements and router redirect message tobe processed/forwarded or dropped. By default, RA-Guard is not enabled on any interfaces. RA-Guard isenabled/disabled on physical interfaces or Port-channels. RA-Guard does not require IPv6 routing to beenabled.FIP Snooping The FCoE Initialization Protocol (FIP) is used to perform the functions of FC BB E device discovery,initialization, and maintenance. FIP uses a separate EtherType from FCoE to distinguish discovery,initialization, and maintenance traffic from other FCoE traffic. FIP frames are standard Ethernet size (1518Byte 802.1q frame), whereas FCoE frames are a maximum of 2240 bytes. FIP snooping is a frameinspection method used by FIP Snooping Bridges to monitor FIP frames and apply policies based upon theL2 header information in those frames. Snooping Auto-configuration of Ethernet ACLs based on information in the Ethernet headers of FIP frames. Emulation of FC point-to-point links within the DCB Ethernet network. Enhanced FCoE security/robustness by preventing FCoE MAC spoofing. The role of FIP snooping-enabled ports on the switch falls under one of t

100GE-Enabled Managed Switches Data Sheet M4500 series Page 2 of 29. Software at a Glance Performance at a Glance TABLE SIZE Model name MAC ARP/ NDP Routing / Switching Capacity Through- . VLAN Support VLANs are collections of switching ports that comprise a single broadcast domain. Packets are classified as belonging to a VLAN based on .