Lantronix SISGM1040-284-LRT Installation Guide Rev E - Page 10

Layer 3 Switching, Security, Quality of Service, Internet Control Message Protocol ICMP packets

Get Lantronix SISGM1040-284-LRT PDF manuals and user guides View all Lantronix SISGM1040-284-LRT manuals
Add to My Manuals
Save this manual to your list of manuals

Page 10 highlights

Lantronix SISGM1040-284-LRT Install Guide Snooping IGMP Querier IGMP Proxy MLD v1/v2 Snooping Multicast VLAN Registration (MVR) Layer 3 Switching IPv4 Static Routing IPv6 Static Routing Security Secure Shell (SSH) Secure Sockets Layer (SSL) IEEE 802.1X Layer 2 Isolation Private VLAN Edge Port Security IP Source Guard RADIUS/ TACACS+ Storm Control DHCP Snooping ACLs Loop Protection Rate-limiting Quality of Service Hardware Queue Supports 1024 multicast groups IGMP querier is used to support a Layer 2 multicast domain of snooping switches in the absence of a multicast router IGMP snooping with proxy reporting or report suppression actively filters IGMP packets in order to reduce load on the multicast router Delivers IPv6 multicast packets only to the required receivers Uses a dedicated manually-configured VLAN, called the multicast VLAN, to forward multicast traffic over Layer 2 network in conjunction with IGMP snooping. IPv4 Unicast: Static routing IPv6 Unicast: Static routing SSH secures Telnet traffic in or out of the switch, SSH v1 and v2 are supported SSL encrypts the http traffic, allowing advanced secure access to the browser-based management GUI in the switch  IEEE802.1X: RADIUS authentication, authorization and accounting, MD5 hash, guest VLAN, single/multiple host mode and single/multiple sessions  Supports IGMP-RADIUS based 802.1X  Dynamic VLAN assignment PVE (also known as protected ports) provides L2 isolation between clients in the same VLAN. Supports multiple uplinks. Locks MAC addresses to ports, and limits the number of learned MAC address Prevents illegal IP address from accessing to specific port in the switch Supports RADIUS and TACACS+ authentication. Switch as a client Prevents traffic on a LAN from being disrupted by a broadcast, multicast, or unicast storm on a port A feature acts as a firewall between untrusted hosts and trusted DHCP servers Supports up to 256 entries. Drop or rate limitation based on:  Source and destination MAC, VLAN ID or IP address, protocol, port,  Differentiated services code point (DSCP) / IP precedence  TCP/ UDP source and destination ports  802.1p priority  Ethernet type  Internet Control Message Protocol (ICMP) packets  TCP flag Prevents unknown unicast, broadcast and multicast loops in Layer 2 switching configurations. Protection mechanism to protect your devices from brute-force downloading Supports 8 hardware queues 33808 Rev. E https://www.lantronix.com/ 10

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
Lantronix
SISGM1040-284-LRT Install Guide
33808 Rev. E
10
Snooping
Supports 1024 multicast groups
IGMP Querier
IGMP querier is used to support a Layer 2 multicast domain of snooping switches in the
absence of a multicast router
IGMP Proxy
IGMP snooping with proxy reporting or report suppression actively filters IGMP
packets in order to reduce load on the multicast router
MLD v1/v2 Snooping
Delivers IPv6 multicast packets only to the required receivers
Multicast VLAN
Registration (MVR)
Uses a dedicated manually-configured VLAN, called the multicast VLAN, to forward
multicast traffic over Layer 2 network in conjunction with IGMP snooping.
Layer 3 Switching
IPv4 Static Routing
IPv4 Unicast: Static routing
IPv6 Static Routing
IPv6 Unicast: Static routing
Security
Secure Shell (SSH)
SSH secures Telnet traffic in or out of the switch, SSH v1 and v2 are supported
Secure Sockets Layer
(SSL)
SSL encrypts the http traffic, allowing advanced secure access to the browser-based
management GUI in the switch
IEEE 802.1X
IEEE802.1X: RADIUS authentication, authorization and accounting, MD5 hash, guest
VLAN, single/multiple host mode and single/multiple sessions
Supports IGMP-RADIUS based 802.1X
Dynamic VLAN assignment
Layer 2 Isolation
Private VLAN Edge
PVE (also known as protected ports) provides L2 isolation between clients in the same
VLAN. Supports multiple uplinks.
Port Security
Locks MAC addresses to ports, and limits the number of learned MAC address
IP Source Guard
Prevents illegal IP address from accessing to specific port in the switch
RADIUS/ TACACS+
Supports RADIUS and TACACS+ authentication. Switch as a client
Storm Control
Prevents traffic on a LAN from being disrupted by a broadcast, multicast, or unicast
storm on a port
DHCP Snooping
A feature acts as a firewall between untrusted hosts and trusted DHCP servers
ACLs
Supports up to 256 entries. Drop or rate limitation based on:
Source and destination MAC, VLAN ID or IP address, protocol, port,
Differentiated services code point (DSCP) / IP precedence
TCP/ UDP source and destination ports
802.1p priority
Ethernet type
Internet Control Message Protocol (ICMP) packets
TCP flag
Loop Protection
Prevents unknown unicast, broadcast and multicast loops in Layer 2 switching
configurations.
Rate-limiting
Protection mechanism to protect your devices from brute-force downloading
Quality of Service
Hardware Queue
Supports 8 hardware queues