Cisco WS-C3550-12G Switch Guide - Page 184

Cisco StackPower Technology, Service Module, 10GB-T Module

Get Cisco WS-C3550-12G PDF manuals and user guides View all Cisco WS-C3550-12G manuals
Add to My Manuals
Save this manual to your list of manuals

Page 184 highlights

Fixed-Configuration Switches: Cisco Catalyst 3750-X Series Cisco Catalyst 3750-X Spotlight Cisco StackPower Technology The Cisco Catalyst 3750-X Series introduces Cisco StackPower technology, an innovative power interconnect system that allows the power supplies in a stack to be shared as a common resource among all the switches. Cisco StackPower unifies the individual power supplies installed in the switches and creates a pool of power, directing that power where it is needed. This feature is available in all Cisco Catalyst 3750-X Series Switches feature sets*. Up to four switches can be configured in a StackPower stack with the special connector at the back of the switch using the StackPower cable**. StackPower can be deployed in either power sharing mode or redundancy mode. In power sharing mode, the power of all the power supplies in the stack is aggregated and distributed among the switches in the stack. In redundant mode, when the total power budget of the stack is calculated, the wattage of the largest power supply is not included. That power is held in reserve and used to maintain power to switches and attached devices when one power supply fails, enabling the network to operate without interruption. StackPower eliminates the need for an external redundant power system or installation of dual power supplies in all the stack members. * Available in LAN Base in the 15.0(2)SE software release ** For LAN Base, cables need to be purchased separately Service Module The new Cisco Service Module offers enhaced security and Flexible Netflow (FNF) features on the uplink ports of the Catalyst 3750-X and 3560-X. The service module is supported with IP Base or IP Services feature set. It can be used with SFP or SFP+ at 1G or 10G speeds. The new Cisco Service Module has custom dedicated hardware for FNF monitoring, separate from the dedicated hardware for MACSec. Therefore there is no impact on packet forwarding performance & latency. It offers flexibility with the user being able to define flows. The new Cisco Service Module enables the following services: • Line rate (40G) Flexible NetFlow for Network Monitoring and Security Anomaly Detection −− Supported version 9 −− 32,000 simultaneous flows −− 128 of simultaneous active monitors • Line rate (40G) MACsec encryption (please refer to MACsec section below) FNF is a networking monitoring technology. A NetFlow table can be used to collect flow statistics. The flow information can be used by customers for a variety of use cases like understanding: 1. Applications running on the network, and identify undesired applications, P2P etc 2. Granular Local and aggregated Campus view (Top N applications, drill down etc). 3. Top talkers (ports, users, applications) for application usage, productivity and asset utilization etc. 4. Security Anomaly Detection by examining flows that do not traverse trust boundaries for inside the perimeter attacks 5. Impacts of network and application changes 6. Compliance conformation 7. Traffic patterns for capacity planning Enabling FNF at the access switch ensures you get all flows. The access switch is the most logical place in the network for collecting statistics and monitoring all flows. With Netflow, you can obtain MAC-address and access port information associated with the flow, to get directly to the source of the flow. Most collectors are able to leverage the location based on MAC-address and interface port number provided by the access switch to the collector. Thus by enabling FNF at the access switch you are able to get the location information of the flow. The access switch has a variety of identity mechanism for user authentication and adding user awareness is the natural progression that can be developed. Access switches are an order of magnitude greater than distribution and core which makes them scale well for FNF and ensure there are no performance impacts of oversubscription at aggregation and core. 10GB-T Module The new Cisco 10G Base-T module is hot-swapable and can operate at either 10GE or GE speed (with manual configuration). 182

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164
  • 165
  • 166
  • 167
  • 168
  • 169
  • 170
  • 171
  • 172
  • 173
  • 174
  • 175
  • 176
  • 177
  • 178
  • 179
  • 180
  • 181
  • 182
  • 183
  • 184
  • 185
  • 186
  • 187
  • 188
  • 189
  • 190
  • 191
  • 192
  • 193
  • 194
  • 195
  • 196
  • 197
  • 198
  • 199
  • 200
  • 201
  • 202
  • 203
  • 204
  • 205
  • 206
  • 207
  • 208
  • 209
  • 210
  • 211
  • 212
  • 213
  • 214
  • 215
  • 216
  • 217
  • 218
  • 219
  • 220
  • 221
  • 222
  • 223
  • 224
  • 225
  • 226
  • 227
  • 228
  • 229
  • 230
  • 231
  • 232
  • 233
  • 234
  • 235
  • 236
  • 237
  • 238
  • 239
  • 240
  • 241
  • 242
  • 243
  • 244
  • 245
  • 246
  • 247
  • 248
  • 249
  • 250
  • 251
  • 252
  • 253
  • 254
  • 255
  • 256
  • 257
  • 258
  • 259
  • 260
  • 261
  • 262
  • 263
  • 264
  • 265
  • 266
  • 267
  • 268
  • 269
  • 270
  • 271
  • 272
  • 273
  • 274
  • 275
  • 276
  • 277
  • 278
Fixed-Configuration Switches: Cisco Catalyst 3750-X Series
182
Cisco Catalyst 3750-X Spotlight
Cisco StackPower Technology
The Cisco Catalyst 3750-X Series introduces
Cisco StackPower technology, an innovative power
interconnect system that allows the power supplies
in a stack to be shared as a common resource
among all the switches. Cisco StackPower unifies
the individual power supplies installed in the
switches and creates a pool of power, directing that
power where it is needed. This feature is available
in all Cisco Catalyst 3750-X Series Switches feature
sets*. Up to four switches can be configured in a
StackPower stack with the special connector at the
back of the switch using the StackPower cable**.
StackPower can be deployed in either power
sharing mode or redundancy mode. In power
sharing mode, the power of all the power supplies
in the stack is aggregated and distributed among
the switches in the stack. In redundant mode, when
the total power budget of the stack is calculated, the
wattage of the largest power supply is not included.
That power is held in reserve and used to maintain
power to switches and attached devices when one
power supply fails, enabling the network to operate
without interruption. StackPower eliminates the
need for an external redundant power system or
installation of dual power supplies in all the stack
members.
* Available in LAN Base in the 15.0(2)SE software release
** For LAN Base, cables need to be purchased
separately
Service Module
The new Cisco Service Module offers enhaced
security and Flexible Netflow (FNF) features on the
uplink ports of the Catalyst 3750-X and 3560-X.
The service module is supported with IP Base or
IP Services feature set. It can be used with SFP or
SFP+ at 1G or 10G speeds. The new Cisco Service
Module has custom dedicated hardware for FNF
monitoring, separate from the dedicated hardware
for MACSec. Therefore there is no impact on packet
forwarding performance & latency. It offers flexibility
with the user being able to define flows. The new
Cisco Service Module enables the following
services:
• Line rate (40G) Flexible NetFlow for Network
Monitoring and Security Anomaly Detection
Supported version 9
32,000 simultaneous flows
128 of simultaneous active monitors
• Line rate (40G) MACsec encryption (please refer
to MACsec section below)
FNF is a networking monitoring technology. A
NetFlow table can be used to collect flow statistics.
The flow information can be used by customers for
a variety of use cases like understanding:
1.
Applications running on the network, and
identify undesired applications, P2P etc
2.
Granular Local and aggregated Campus view
(Top N applications, drill down etc).
3.
Top talkers (ports, users, applications) for
application usage, productivity and asset
utilization etc.
4.
Security Anomaly Detection by examining flows
that do not traverse trust boundaries for inside
the perimeter attacks
5.
Impacts of network and application changes
6.
Compliance conformation
7
.
Traffic patterns for capacity planning
Enabling FNF at the access switch ensures you
get all flows. The access switch is the most logical
place in the network for collecting statistics and
monitoring all flows. With Netflow, you can obtain
MAC-address and access port information
associated with the flow, to get directly to the source
of the flow. Most collectors are able to leverage
the location based on MAC-address and interface
port number provided by the access switch to
the collector. Thus by enabling FNF at the access
switch you are able to get the location information of
the flow. The access switch has a variety of identity
mechanism for user authentication and adding
user awareness is the natural progression that can
be developed. Access switches are an order of
magnitude greater than distribution and core which
makes them scale well for FNF and ensure there
are no performance impacts of oversubscription at
aggregation and core.
10GB-T Module
The new Cisco 10G Base-T module is hot-swapable
and can operate at either 10GE or GE speed (with
manual configuration).