Netgear XSM4348CS Product Data Sheet - Page 33

ProSAFE® Intelligent Edge Managed Switches Data Sheet M4300 series CPU Rate Limiting ICMP throttling Management Management ACL (MACAL) Max Rules Out of band Management Radius accounting TACACS+ Malicious Code Detection Network Traffic Access Control Lists (ACLs) Time-based ACLs Protocol-based ACLs ACL over VLANs Dynamic ACLs IEEE 802.1x Radius Port Access Authentication 802.1x MAC Address Authentication Bypass (MAB) Network Authentication Successive Tiering Port Security IP Source Guard DHCP Snooping Dynamic ARP Inspection IPv6 RA Guard Stateless Mode MAC Filtering Port MAC Locking Private Edge VLAN Private VLANs QUALITY OF SERVICE (QOS) - SUMMARY Access Lists L2 MAC, L3 IP and L4 Port ACLs Ingress Egress 802.3ad (LAG) for ACL assignment Binding ACLs to VLANs ACL Logging Support for IPv6 fields Yes Applied to IPv4 and IPv6 multicast packets with unknown L3 addresses when IP routing/multicast enabled Yes Restrict ICMP, PING traffic for ICMP-based DoS attacks Yes Protects management CPU access through the LAN 64 Yes In-band management can be shut down entirely when out-of-band management network Yes RFC 2565 and RFC 2866 Yes Yes Software image files and Configuration files with digital signatures L2 / L3 / L4 Yes Yes Yes Yes Yes Yes Yes Yes MAC, IPv4, IPv6, TCP, UDP Yes Yes Yes Yes Up to 48 clients (802.1x) per port are supported, including the authentication of the users domain Supplemental authentication mechanism for non802.1x devices, based on their MAC address only Dot1x-> MAP -> Captive Portal successive authentication methods based on configured time-outs Yes IPv4 / IPv6 IPv4 / IPv6 IPv4 / IPv6 Yes Yes Yes A protected port doesn't forward any traffic (unicast, multicast, or broadcast) to any other protected port - same switch Scales Private Edge VLANs by providing Layer 2 isolation between ports across switches in same Layer 2 network Yes Yes Yes Yes Yes Yes Yes Yes Yes Page 33 of 49