Cisco 3520 Guía de instalación descargar pdf (Pagina 14)

Release Notes for the Catalyst 3750 Switch Cisco IOS Release 12.1(14)EA1

OL-4215-01

New Features

• Rapid per-VLAN Spanning-Tree plus (Rapid-PVST+) based on IEEE 802.1W Rapid Spanning Tree

Protocol (RSPT) for rapid convergence of the spanning tree upon network failure and topology

changes

• Trusted boundary to detect the presence of a Cisco IP phone, to trust the Class of Service (CoS)

value received, and to ensure port security

• Automatic quality of service (QoS) to simplify the deployment of existing QoS features by

classifying traffic and configuring ingress and egress queues (voice over IP only)

• Link Aggregation Control Protocol (LACP) to facilitate the automatic creation of EtherChannels by

exchanging packets between Ethernet interfaces. LACP is defined in IEEE 802.3AD.

• Support for these new security features:

–

802.1X with per-user access control lists for providing different levels of network access and

service to an 802.1X-authenticated user

–

802.1X with VLAN assignment for restricting 802.1X-authenticated users to a specified VLAN

–

802.1X with port security for controlling access to 802.1X ports

–

802.1X with voice VLAN to detect the presence of a Cisco IP phone and permit the IP phone

access to voice VLAN irrespective of the authorized or unauthorized state of the port

–

802.1X with guest VLAN to provide limited services to clients that might not be

802.1X-compliant

• SPAN and RSPAN support of Intrusion Detection Systems (IDS) to monitor, repel, and report

network security violations

• VLAN1 minimization for reducing the risk of spanning-tree loops or storms by allowing VLAN1 to

be disabled on any individual VLAN trunk link. With this feature enabled, no user traffic is sent or

received on the trunk. The switch CPU continues to send and receive control protocol frames.

• Port security enhancements, including support for CISCO-PORT-SECURITY-MIB, trunk ports and

sticky MAC addresses, and the maximum number of secure MAC addresses specified in the SDM

template

• Automatic media-dependent interface crossover (Auto MDIX) capability on 10/100 and

10/100/1000 Mbps interfaces that enables the interface to automatically detect the required cable

connection type (straight through or crossover) and configure the connection appropriately

• Support for standard and extended IP access control lists (ACLs) and extended MAC ACLs in the

inbound direction on Layer 2 interfaces (port ACLs).

• In-band management access through SNMPv3. SNMP version 3 AuthPriv mode requires the

cryptographic (encrypted) version of the switch software image SMI and EMI.

• A new show interface capability privileged EXEC command to display configuration capability of

a port

• Support for the 10/100/1000BASE-T and 1000BASE-ZX SFP modules

• Border Gateway Protocol (BGP) Version 4 (requires the enhanced multilayer image)

• Policy-based routing (PBR) for configuring defined policies for traffic flows

• Support for the Catalyst 3750G-12S

• In-band management access for up to five simultaneous, encrypted Secure Shell (SSH) connections

for multiple CLI-based sessions over the network (requires the cryptographic [that is, supports

encryption] versions of the SMI and EMI)

• Kerberos security system to authenticate requests for network resources by using a trusted third

party (requires the cryptographic [that is, supports encryption] versions of the SMI and EMI)

1 2 ... 9 10 11 12 13 14 15 16 17 18 19 ... 33 34

Comentarios a estos manuales

Sin comentarios

Cisco 3520 Guía de instalación Pagina 14

Comentarios a estos manuales