Alef KC Switching v4.0

Switching Technologies
Redler Sándor
CCNP, CCIP
sandor.redler@alefnula.com
KC Switching 2.2 © 2004 Cisco Systems, Inc. All rights reserved. 1

Agenda
• Ethernet Switching Fundamentals

• Cisco Catalyst Switches Family
ME01
9173_01_2004_c2 © 2004 Cisco Systems, Inc. All rights reserved. 2
Ethernet - Introduction

Ethernet History
OSI Reference Model
Layers
• Invented by Bob Metcalfe and
Application
developed by Xerox in 1970s –
3 Mbps Presentation
Session
• Ethernet defines set of physical Transport
and data link protocols
Network
• CSMA/CD Data Link
Ethernet Physical
• Ethernet frame formats:
Ethernet V2
(a.k.a. DIX Ethernet—
DEC Intel Xerox) - 1982
IEEE 802.3 – 1983/1985
IEEE 802.2 – LLC and MAC sublayers
LLC
IEEE 802.1Q - tagged Ethernet frame MAC
Reconciliation Sub-Layer (RS)/ GMII/MII
Medium
ME01
Ethernet Addressing
• To deliver a packet between two workstations, the source

workstation uses a 48 bit hexadecimal Media Access Control
(MAC) address to define the destination.
• The 48-bit address is made up of two portions:
A 24-bit vendor specific MAC portion called the Organizationally
Unique Identifier (OUI)
The remaining 24 bits being vendor assigned.
• These addresses are universally unique and are administered
by the IEEE.
• Broadcast Address is FFFF.FFFF.FFFF.
• Multicast addresses in the following range: 0100.5exx.xxxx
LSB on first byte is I/G (Individual/Group)
ME01
Ethernet Frame Formats
• Ethernet Frame Format
Preamble Destination Source TYPE Data
SFD MAC Address MAC Address 2 Bytes FCS
46 to 1500 Bytes
8 Bytes 6 Bytes 6 Bytes (>1536) [4]
Example: IP
• Ethernet 802.3 with 802.2 LLC

Preamble Destination Source Length DSAP SSAP CTRL
SFD MAC Address
Payload FCS
MAC Address 2 Bytes [1] [1] [1]
8 Bytes 6 Bytes 6 Bytes (<1536) [4]
• Ethernet 802.3 with 802.2 LLC and SNAP Header

Preamble Destination Source
SFD MAC Address MAC Address Length
DSAP SSAP CTRL OUI Proto Payload FCS
2 Bytes [1] [1] [1] [3] [2] [4]
8 Bytes 6 Bytes 6 Bytes AA AA 03
Minimum Frame Size: 64 Bytes—Maximum: 1518

ME01
Ethernet Medium Access
A B C D
CSMA/CD
Carrier Sense
Multiple Access
Collision Detection
ME01
Collision and Broadcast Domains
Collision
Ethernet Ethernet
Domain
Collision
Domain Bridge
Broadcast Domain
• Different collision domains on each port of the bridge

• Collision domain: A shared Ethernet segment where multiple station
can be connected and collision can occure.
• A broadcast domain is a collection of Ethernet segments where
broadcast is propagated. Broadcast stops on L3 devices (routers).
• Broadcast generated in the network are forwarded to all segment.
ME01
Ethernet Switches
Virtual LANs - VLAN

What Is a Switch
MAC: 0200.2222.2222
• Use the same logic and
protocols as a transparent B
bridge
• Self learns MAC Addresses
by examining source MAC
address in received frames 2
• Forward Broadcast, A C
Multicast and unknown 1 3
Unicast to all Ports MAC: 0200.1111.1111 MAC: 0200.3333.3333
• Forwards known Unicast to
the port associated in the
MAC address Bridge Table
• Creates multiple LAN MAC Address Port
segments, each segment 0200.1111.1111 1
being connected to one port
• Use Spanning-Tree like a 0200.2222.2222 2
bridge 0200.3333.3333 3
ME01
Virtual LAN (VLAN)
• A Virtual LAN is a closed 0200.1111.1111 0200.2222.2222

user group that is a group PC PC
of Physical ports that
belong to a common VLAN 1
logical group
Commonly a IP Subnet
Broadcast
• Switches Separate MAC Domains
Address table per VLAN
• A VLAN is a broadcast VLAN 2
domain and is used to
reduce the size of PC
broadcast domains 0200.3333.3333 0200.4444.4444
• Provide a way to isolate
group of users on Layer 2 MAC address Port VLAN
0200.1111.1111 Port 1 1
0800.2222.2222 Port 2 1
0800.3333.3333 Port 3 2
0800.4444.4444 Port 4 2
ME01
IEEE 802.1Q
MAC address Port VLAN
0200.1111.1111 Port 1 1
0800.2222.2222 Port 2 1
0800.3333.3333 Port 3 2
802.1Q Trunk
VLAN 1
Switch 1 VLAN 2 Switch 2

DA SA Type VLAN 1 Payload
802.1Q
VLAN tag
• With the IEEE 802.1Q, each frame is being tagged with an 802.1Q
VLAN tag that contains VLAN membership information.
• In this example:
Switch 1 adds a header that identifies the VLAN
Switch 2 can look at the frame header to identify the VLAN number
Switch 2 perform a table lookup in VLAN address table
ME01
IEEE 802.1Q VLAN Tagging
• Tag added inside of original frame behind DMAC and SMAC

• The tag may carry additional information, such as Quality of
Service (QoS) information - 802.1p
• Valid format for ―VLAN unaware‖ devices
Source and destination MAC are unchanged
• The 802.1Q tag is 4 bytes long
• Additional 4 byte tag creates ―baby giants‖
802.1 has persuaded 802.3 to increase the maximum frame size
from 1518 to 1522 (four extra bytes) — IEEE 802.3ac
ME01
IEEE 802.1Q VLAN Tagging
New Field, 4 Bytes

Ethernet
802.1Q
v2.0
TYPE
PREAM. SFD DA SA TAG TYPE DATA FCS
8100
Octets 7 1 6 6 2 2 2 42–1500 4
TYPE
PREAM. SFD DA SA TAG LEN DATA FCS
8100
IEEE
802.3
ME01
What‘s in the Tag?
6 Destination Address
6 Source Address 3 bits 1 bit 12 bits
2 EtherType = 8100 QoS VLAN
VLAN
TAG CFI ID
2 Tag Control Information
Priority ID
2 TYPE or LEN User priority:

802.1p/CoS
42 to 1500 DATA
Canonical Format Indicator:
Used if Encapsulating TR
4 FCS
VLAN ID:
ME01
12 Bits (4096 VLANs)
The Native VLAN in 802.1Q
• Single non-encapsulated VLAN—I.e. no Tag

• Defined and mandatory in 802.1Q spec
• Can be any VLAN, not necessarily VLAN 1 but must
be same on both ends
Untagged Native VLAN

802.1Q Trunk
Switch 1 Switch 2
ME01
Ethernet Switches
Spanning Tree
ME01
Spanning Tree—802.1D
• Purpose:
Calculate and Maintain loop-free topologies in
redundant/resilient layer 2 topologies
Provide automatic path recovery upon link or device failure
• By default, convergence is typically 30 to 50
seconds.
• Cisco added many enhancements for scalability
and convergence speed – UplinkFast and
BackboneFast
ME01
Why Do We Need the Spanning Tree?
BROADCAST
A Port 1
Port 3 1 2
Port 2
B
3 4
A 2
1
CONTINUOUS
FLOODING
B
3 4
u Traffic Storms!
ME01
Spanning Tree Basics
One switch is elected the Root based on lowest Bridge

ID (Priority and MAC Address Concatenated)
F
A F F
Root F
F F Port Logically
A ‗Tree-like‘ Blocks: Does Not
Loop-free Topology Send/receive
Traffic
XB
Is Established
F
F F B
Loop-Free Connectivity
ME01
Default Spanning Tree Timers
IEEE 802.1D Defaults Max_Age + 2× Fwd_Delay

• Hello - 2 seconds (min. 1 sec.)
Time
• Forward delay - 15 seconds
(min. 4 sec.) Blocking
• Maximum age - 20 seconds 20 Sec Max–Age
(min. 6 sec.) Listening
LinkUp
LISTENING 15 Sec Pre-Forwarding 1
Learning
MAX-AGE FWD-DELAY
15 Sec Pre-Forwarding 2
802.1D
BLOCKING (STP) Forwarding
LEARNING
STATE FWD-DELAY Potentially up to

TRANSITION
FORWARDING
50 Seconds Total!
ME01
Practical Example
Towards Enterprise Core
• Campus network Distribution
Switches
Single VLAN example F F
Root
Ensures path recovery
F F
Ensures loop-free topology
Both gateways reachable X
Link Failure
Quick fail-over required X

F B
Wiring
Closet Switch
ME01
Spanning Tree Protocol Family

The Evolution of Spanning Tree
• IEEE 802.1D: MAC Bridges (Spanning Tree Protocol)

• Cisco PVST: Per VLAN Spanning Tree
• Cisco PVST+: Per VLAN Spanning Tree Plus
• IEEE 802.1w: Rapid Spanning Tree Protocol (RSTP)
• IEEE 802.1s: Multiple Spanning Tree Protocol (MST)
• Cisco PVRST+: Per VLAN Rapid Spanning Tree
(uses 802.1w)
ME01
IEEE 802.1w
Rapid Spanning Tree Protocol (RSTP)
• IEEE 802.1w is an evolution of IEEE 802.1D that uses an

explicit handshake mechanism to negotiate port states
• Compatible with 802.1D running bridges
• Faster convergence
IF only point-to-point FDX Links are used
IF all edge ports are correctly identified
IF no 802.1D interaction required
• Incorporates Cisco‘s 802.1D extensions Backbonefast,
Uplinkfast and Portfast
ME01
IEEE 802.1w Overview
• Handshake mechanism
uses Proposal-agreement Root
messages:
―I want to become designated, Proposal Agreement
Do you agree?‖ j k
• No more network-wide
timers when all switches Proposal Agreement
run 802.1w l m
• Can achieve sub-second
convergence
• Defines four port roles
ME01
―Classic‖ Transition to Forwarding
802.1D
Root R A A
• R and A start designated, in listening state

• A becomes root port and stop sending BPDUs
• R and A go to forwarding through listening and
learning stages (2x15 = 30 seconds)
ME01
Rapid Transition to Forwarding
802.1w
Proposal
Root R A A
Agreement
• R and A start in designated role, blocking state

set the proposal bit in their BPDUs
• A becomes Root Port, goes forwarding sends back
BPDU with agreement bit set to Root
• As soon as R receives the agreement, it goes
forwarding ( <1 sec)
ME01
IEEE 802.1w Port Roles
R Root Port:
Port receiving the best BPDU for the Root
bridge—shortest path to the Root in D D
terms of path cost

D Designated Port: R
A
R
B
Port sending the best BPDU on a segment A D B
A Alternate Port:
Port blocked by BPDUs from a different bridge—
redundant path to the Root
B Backup Port:
Port blocked by BPDUs sent from the same bridge—
ME01
redundant path to a segment
IEEE 802.1s/w Neighbor Protocol Detection
• RSTP or MST reverts to 802.1D BPDUs and TCN on a segment

if it detects presence of legacy switch
• Migration-delay timer (4 seconds) acts as protocol state lock
until neighbors state is detected
RSTP A
Switch
RSTP
Switch BPDU
BPDU RSTP  802.1D BPDU
RSTP  802.1D 802.1D 802.1D
B C Switch
• After power OFF C, A and B still continue to use 802.1D!

• Administrative manual STP protocol re-detection
ME01
IEEE 802.1s Multi-Instance
Spanning Tree (MST)
• Purpose: Allows more

than one VLAN to share a
single spanning tree
Root
instance (active topology)
• Up to 64 unique logical
topologies
• MST F B
High administrative complexity B: Blocking
Saves bandwidth and CPU F: Forwarding
VLAN 10
VLAN 20
resources
64 instances
ME01
Flex Link – redundantion without STP
ME01
Cisco Discovery Protocol

Cisco Discovery Protocol (CDP)
• What is CDP?
Advertisement protocol
Media independent
Protocol independent Cisco
Visibility into adjacencies Discovery
Protocol
On all major devices
ME01
• CDP agent listens to

neighboring devices
• Device parameters periodically
exchanged
• Each device maintains ―CDP‖ Cisco
cache table and populates a Discovery
CDP MIB Protocol
• Tables can be read by

management application
DISCOVERY EXCHANGE
• IP address • Native VLAN
• Device type • VTP domain name
• Software revision • Capabilities
• Device ID • Port ID, duplex
ME01
• Uses multicast address 01-00-0C-CC-CC-CC

• Uses SNAP encapsulation (OUI=Cisco, Proto=0x2000)
• Enabled by default
• Selectively tuned by device/interface/
sub-interface
• Default advertisement interval is 60 seconds
• Default time-to-live is 180 seconds
• CDP packets redirected to supervisor,
not flooded – one hop protocol
ME01
Autonegotiation and
Uni-Directional Link Detection
Protocol

Ethernet Autonegotiation
• Autonegotiation allows a Fast Ethernet card or

switch to determine the speed and duplex of the
adjacent device
• Support for half duplex or full duplex is negotiated
• Autonegotiation uses a series of Fast Link Pulses
(FLPs) to communicate with the device on the other
end of the cable
ME01
Unidirectional Link Detection (UDLD)
• What is UDLD?
Detects one-way logical
connectivity
Physical layer errors are Faulty Gbic?
detected by auto-negotiation
RX TX
Detects faults at Layer 2
TX RX
6500-1>sh int g2/1

GigabitEthernet2/1 is up, line protocol is up
ME01
Why Are Uni-Dir Links a Bad Thing?
• Root xmits BPDUs Uni-dir link

ROOT TX
• Neighbor doesn‘t receive RX
them and thinks the root is RX
dead wnow claims it‘s the TX
new root TX RX
RX
TX
• Bottom switch opens up its
blocked port uloop in the UDLD
network
• Network goes down,
troubleshooting RX TX
TX RX
very difficult
RX
ME01
UDLD Specifics
• Dest. mcast 01-00-0C-CC-CC-CC

Protocol Type 0x2111 RX
TX
• UDLD disabled by default TX
RX
• Both ends must run UDLD RX
TX RX
TX
• Update/timeout configurable
(7 seconds minimum) UDLD
• Configurable per switch port
RX TX
• Two modes: Aggressive and RX
TX
normal (normal: detects one
way traffic and misconnected
ports; Aggressive: on P-2-P
links, tries to reconnect device
with 8 fast messages, else ERR-
DISABLE interface)
ME01
Other Detectable Configurations
• More problems than

just a broken fiber UP! UP!
• One-way connections
can also cause TX RX TX RX
STP loops
FIBER
• All interfaces look ‗UP‘ PATCH
without UDLD! TX PANEL TX
RX RX
• UDLD UP! TX RX TX RX UP!
resolves these UP! UP!
ME01
Etherchannel Protocols

EtherChannel Protocol (PAgP and 802.3ad)
• A logical aggregation of
same links (up to 8)—
10/100/1000/10GE ports
• Operates between switches,
routers, and certain vendors‘ NICs
• Channel always point-to-point
and viewed as one logical link EtherChannel
by protocols
• Two flavors:
Cisco‘s PAgP (Port Aggregation
Protocol); destination MAC address
0100.CCCC.CCCC and SNAP
encapsulation (OUI=Cisco,
Proto=0x0104)
IEEE 802.3ad LACP; destination
MAC address 0180.C200.0002 and
Ethertype 0x8809
ME01
Multichassis Cisco EtherChannel Links (MEC)
• Spans more than a single

physical switch
• All ports within the
multichassis Cisco
EtherChannel link have the
same source index regardless
of the chassis in which they are
physically present
• Just like Etherchannel
ME01
EtherChannel Load Balancing
• How does it load share?

Layer 2 devices
Source/destination MAC Layer 3
Switch or
Layer 3 devices Router
Source/destination MAC
Source/destination IP
Source/destination L4 port
Server
Server NICs
Source/destination MAC Layer 2
Switch
ME01
EtherChannel Administrative States
• Administrator configurable channel states with PAgP and LACP

ON I want to be a channel and I don‘t care what you think!
(doesn‘t generate/process LACP/PAgP)
OFF I don‘t want to be a channel and I don‘t care what you think!
(valid both for PAgP and LACP)
Desirable I‘m willing to become a channel. Are you interested?
(Used when you are interested in being a channel)
Auto I‘m willing to go with whatever you want!
(Used as the default mode for plug-and-play)
Active Similar to Desirable LACP Terminology

Passive Similar to Auto Active-active,Active-passive,On-on
(Keepalives Are Sent Every 30 Seconds)

ME01
Cisco Catalyst Switches

Line of Fixed Configuration LAN Products
ME01
Cisco Catalyst Express 500
Series Switches

Catalyst Express 500 Series Switches
ME01
ME01
Performance
• 32MB DRAM 16MB flash memory
• Switching capacity:
8.8 Gbps for Cisco Catalyst Express 500-24TT, Catalyst Express 500-24LC,
Catalyst Express 500-24PC
24 Gbps for Cisco Catalyst Express 500G-12TC
• Forwarding rate:
6.6-Mpps wire-speed performance for Cisco Catalyst Express 500-24TT,
Catalyst Express 500-24LC, Catalyst Express 500-24PC
18-Mpps wire-speed performance for Cisco Catalyst Express 500G-12TC
• 8000 MAC addresses
• Virtual LANs (VLANs):

Up to 32 VLANs (1000 range) and support for 802.1Q trunking using Cisco Smartports
ME01
SmartPorts
ME01
Cisco Catalyst Express 520
Series Switches

ME01
Product Name Description
Cisco Catalyst Express • 8 10/100 access ports with PoE
520-8PC Switch • 1 10/100/1000BASE-T or Small Form-Factor Pluggable (SFP) uplink
Cisco Catalyst Express • 24 10/100 access ports for desktop connectivity

520-24TT Switch • 2 10/100/1000BASE-T ports for uplink or server connectivity
Cisco Catalyst Express • 20 10/100 access ports for desktop connectivity
520-24LC Switch • 4 10/100 access ports with PoE for desktop, wireless access point,
IP telephony, or closed-circuit TV camera connectivity
• 2 10/100/1000BASE-T or SFP ports for flexible uplink or server
connectivity
Cisco Catalyst Express • 24 10/100 access ports with PoE for desktop, wireless, IP telephony,
520-24PC Switch or closed-circuit TV camera connectivity
• 2 10/100/1000BASE-T or SFP ports for flexible uplink or server
connectivity
Cisco Catalyst Express • 24 10/100/1000BASE-T ports for uplink or server connectivity
520G-24TC Switch • 2 10/100/1000BASE-T or SFP ports for flexible uplink or server
connectivity
ME01
• What is the difference between the Cisco Catalyst Express 500 and 520
Series?
• Both of them are designed for small and medium businesses with fewer
than 250 users.
• Both of them are configured and managed by the Cisco Network Assistant.
• The Catalyst Express 520 Series is a component of the Cisco Smart
Business Communication System (SBCS). It was designed to easily
integrate into SBCS a complete system of advanced voice, data, video, and
wireless networking products designed specifically for SMBs.
• Additionally, the Catalyst Express 520 includes an eight-port PoE switch
(WS-CE520-8PC-K9) and 24-port Gigabit switch (WS-CE520-24TC-K9) for
desktop aggregation.
ME01
Cisco ESW 500 Series

ME01
Cisco ESW 500 Series features
• Fast and gigabit Ethernet connectivity
• Integrated security
• QoS
• PoE
• Provide complete data, voice, video and wireless
solution
• Advanced network security
• Simplified configuration
• Enhanced five-year warranty, including next-
business-day advance replacement and free
software fixes
ME01
Forwarding
Product Uplink Access PoE
rate
Maximum 15.4W to
ESW-520-8P 1 SFP 8 10/100 Mbps 2.7 mpps any 10/100 port,
60W total
2 uplink and
ESW-520-24 2 SFP
24 10/100 Mbps 9.5 mpps No PoE
Maximum 15.4W to
2 uplink and
ESW-520-24P 2 SFP
24 10/100 Mbps 9.5 mpps any 10/100 port,
180W total
2 uplink and
ESW-520-48 2 SFP
48 10/100 Mbps 13 mpps No PoE
Maximum 15.4W to
2 uplink and
ESW-520-48P 2 SFP
48 10/100 Mbps 13 mpps any 10/100 port,
370W total
ME01
Forwarding
Product Uplink Access PoE
rate
Maximum 15.4W to
123W total
ESW-540-24 4 SFP 24 10/100 Mbps 35.7 mpps No PoE
Maximum 15.4W to
280W total
ESW-540-48 4 SFP 48 10/100 Mbps 71 mpps No PoE
ME01
Cisco Catalyst 2960 Series Switches

Cisco Catalyst 2960 Series
KCKC
switching v3.0
Switching 2.2 Copyright Alef Nula, a.s.
© 2004 Cisco Systems, Inc. All rights reserved. www.alef0.cz 65
65
Catalyst 2960 LAN Lite Software
KCKC
switching v3.0
Switching 2.2 Copyright Alef Nula, a.s.
66
Performance
• 32 Gbps switching fabric
(Catalyst 2960G-24TC, Catalyst 2960G-48TC)
(Catalyst 2960-24TT, 2960-24TC, 2960-48TT, 2960-48TC)
• Forwarding rate based on 64-byte packets:
Catalyst 2960-24TT: 6.5 Mpps
Catalyst 2960-24TC: 6.5 Mpps
Catalyst 2960-48TT: 10.1 Mpps
Catalyst 2960G-24TC: 35.7 Mpps
• Configurable up to 8000 MAC addresses
• Configurable up to 255 IGMP groups
ME01
Cisco Catalyst 2960 Differentiation
ME01
Cisco Catalyst Series
Power over Ethernet

Power over Ethernet Specifics
• Type of PoE endpoints supported

• Number of PoE endpoints supported simultaneously
• Power conservation through classification
• Investment protection
ME01
Type of Power over Ethernet Endpoint Supported
• Cisco pre-standard Power over Ethernet endpoints

– Cisco IP Phones and Wireless LAN Access Points
• All IEEE 802.3af compliant endpoints

– IP phones, Access Points, IP Video Cameras, etc
– Vendor of the PD is irrelevant, as long as it is compliant
• Catalyst 3750 can power Cisco pre-standard and IEEE

802.3af compliant endpoints
It automatically detects the PD type
It provides appropriate power without any user configuration
ME01
IEEE 802.3af Power Classification
Class Usage Minimum Power Maximum Power
levels Output at Levels at the PD
the PSE
0 Default 15.4 watts 0.44 to 12.95 watts
1 Optional 4.0 watts 0.44 to 3.84 watts
4 Reserved for Treat as Class 0 Reserved for

Future Use Future Use: A
class 4
signature
cannot be
provided by a
compliant PD
Note: Difference between PSE port and PD includes power loss on the cable
Class 0 : PD is detectable but doesn‘t provide power requirements
ME01
Power Conservation through Classification
• Enables flexible power provisioning per port to allow

a higher number of Powered Devices to be supported
for a given power budget
– The switch only budgets sufficient power to cover the
maximum power reported by the powered devices (these
devices may or may not advertise a lower than max power
requirement – this is optional in the standard)
– Switch support for power classification is an optional
feature in the 802.3af standard.
– In conjunction with this, Cisco devices use CDP to further
refine the power allocation for maximum power conservation
• Power conservation through the IEEE 802.3af
optional classification scheme should be a key
consideration when making a PoE switch decision
ME01
Catalyst 2960-S PoE+
• Supported standards:
• 802.3at (30W) PoE+ Plus compliant
• 802.3af (15.4W) compliant – maintain backward compatibility
• Full PoE functionality
• 48 ports of full 15.4 W per switch
• 24 port of 30 W per switch
• No external RPS needed
• PoE power models available:
• 740W PoE available power budget
• 370W PoE available power budget
• Capable of supporting 802.3at and 802.3af PDs simultaneously
ME01
Cisco Catalyst 2960-S series
• Fixed Uplink options: 4x1G or 2x10G SFP+

• FlexStack technology
• Power over Ethernet on every port
• Sustainability – GREEN
• LAN Lite and LAN Base software options
• DRAM: 128 MB
• Flash: 64 MB
ME01
Catalyst 2960-S model comparison
Cisco FlexStack 10G SFP+ 1G SFP 10/100/1000 Full PoE

Model Stacking Ports Ports Ports (15.4W) ports PoE Budget
10G Uplink Ports
WS-C2960S-48FPD-L √ 2 48 48 740W (PoE+)
WS-C2960S-48LPD-L √ 2 48 24 370W (PoE+)
WS-C2960S-48TD-L √ 2 48
WS-C2960S-24PD-L √ 2 24 24 370W (PoE+)
WS-C2960S-24TD-L √ 2 24
1G Uplink Ports
WS-C2960S-48FPS-L √ 4 48 48 740W (PoE+)
WS-C2960S-48LPS-L √ 4 48 24 370W (PoE+)
WS-C2960S-48TS-L √ 4 48
WS-C2960S-24PS-L √ 4 24 24 370W (PoE+)
WS-C2960S-24TS-L √ 4 24
LAN Lite 1G Uplink Ports
WS-2960S-48TS-S 2 48
WS-2960S-24TS-S
ME01 2 24
Catalyst 2960-S FlexStack
• FlexStack optional modul

• 2x10G port
• Up to 4 switches in stack
• Unified management, control and data plane
• 3 FlexStack cabel length are avaible:
• 0.5 meter, 1 meter, 3 meter
ME01
Catalyst 2960-S SFP+ 10Gig
• SFP+ supported in 10 Gig models

• SFP/SFP+ interchangable
• 100MB SFP not supported in 10Gig models
SFP+ Module Description

SFP+
Copper 10Gig SFP+ modules
SFP-H10GB-CU1M= 1-m , 3-m, 5-m 10G SFP+ Twinax cable
SFP-H10GB-CU3M= assembly
SFP-H10GB-CU5M=
Optical 10Gig SFP+ modules

SFP-10G-SR= 10GBASE-SR SFP+ transceiver module for
SFP-10G-LR= MMF
SFP-10G-LRM= 10GBASE-LR SFP+ transceiver module for
10GBASE-LRM SFP+ transceiver module for
MMF
ME01

10 Gigabit Ethernet
ME01
• 48 10/100/1000 downlink, 2 10 Gigabit Ethernet X2 uplink

• Cisco TwinGig Converter Modul
• Modular fan and AC or DC power supply
• 2350-48TD-S with 265W AC power supply
• 2350-48TD-SD with 265W DC power supply
• Out-of-band management
• Limited lifetime hardware warranty
ME01
Performance
• Switching fabric: 128 Gbps

• DRAM: 128 MB
• Flash: 64 MB
• VLANs: 128
• Forwarding rate: 101.2 Mpps
• MAC address: 6000
ME01
Intelligent
Switching Infrastructure

Identity Services
RADIUS
802.1x
Protects network access by
allowing RADIUS server to
authenticate user
allowing/disallowing access to 802.1x Switched
LAN
the network
Wiring Closet
Dynamic VLANs
Requires
Provides authentication 802.1x Clients
capabilities and user
segmentation by placing
specific users in separate
VLANs
ME01
Perimeter Security
ACLs Port
Wire-Speed ACLs Security
Including Port-based and VLAN-based

access control lists to assist in
accepting or denying access to
sensitive portions of the network
Port Security
Provides another means to ensure Note: Forwarding performance is
the appropriate user is on the not compromised when
network by limiting access based on implementing ACL-based
MAC addresses security in the network.
ME01
Secure Connectivity
Secure Shell (SSH)

SSH encrypts administration traffic
during Telnet sessions while
configuring or troubleshooting
switches
SNMPv3 (with crypto support) Encrypted Data
Provides network security by
encrypting administrator traffic
during SNMP session to
configure/troubleshoot switch
Kerberos
Authenticates users and network
services using a trusted third party
to perform secure verification
ME01
802.1x Authentication
How It Works:
Each person trying to enter the network must receive authorization
based on personal username and password
Valid Username
Valid Password
Yes
RADIUS
No
Invalid Username RADIUS

Invalid Password Server
Client Accessing
Switch
ME01
Standard 802.1X/VLAN Assignment
ME01
Security - Mitigating Plug and Players
ME01
Security - Secure Connectivity
ME01
Security - Securing Layer 2 – Port security
ME01
Security - DHCP Spoofing Attack
ME01
Security - DHCP Snooping
ME01
Multicast Benefits Server Load
Unicast Example
Increased Server
Processing
Network
Packet flow
Multicast Example
Efficient Multicast
Network
ME01
Multicast Benefits Network Load
Unicast Example
Multicast Example
ME01
IGMP Snooping
• Default behavior of a Layer 2 switch is to flood multicast

packets to ports in the ingress VLAN
• This behavior is not desirable—IGMP Snooping resolves this
issue
• Implemented in hardware
―Snoops‖ or intercepts IGMP Joins and Leaves received on interfaces
from hosts
Enable or disable on a global or per VLAN basis
Ingress port parses packet and sends to CPU for processing, CPU
suppresses redundant IGMP joins and sends one proxy report to
router
Overrides forwarding or flooding in VLAN
ME01
Cisco Catalyst IOS Packages
Catalyst IOS Packages (from 12.2.25SEB)
ME01
Power over Ethernet Switches
Intelligent Features Summary
Quality of Service
• IP Unicast Routing • IBNS through 802.1x • Queue servicing:
- Static, RIPv1/v2, OSPF, • Access Control Lists - Shaped round robin and
IGRP, EIGRP, BGPv4 strict priority queuing
• Unicast MAC filtering
• IP Multicast Routing • SSH, Kerberos, SNMPv3
- Weighted tail drop
- PIM, DVMRP tunneling - Ingress traffic policing
• Private VLAN Edge
• Hot Standby Router Protocol (HSRP) • DHCP interface tracker
- Egress traffic shaping
• Web Cache Comm. Protocol (WCCP) • 802.1p CoS and DSCP
• DHCP Snooping Option 82
• Policy Based Routing (PBR) • Congestion avoidance
• CMS security wizard
• Spanning-Tree Protocol • Private VLAN edge
- Granular rate limiting
enhancements - Auto QoS
• Port security
- UplinkFast, BackboneFast,PortFast
- 802.1s/w
• MAC address notification Manageability
• Autoconfiguration
• Port Grouping
• Cisco Intelligent Power
- EtherChannel (Gigabit, Fast) Management
- 802.3ad • Cisco CMS Software
- Port Aggregation Protocol (PAgP) • CiscoWorks
- Link Agg. Control Protocol (LACP) • Cisco Express Setup
• Layer 2 load balancing (PVST) Wire-speed switching and routing • Voice VLAN
• Layer 3 load balancing (ECR) 48 port version: 13.1 Mpps • Dynamic VLAN
• Cisco® Express Forwarding 24 port version: 6.6 Mpps • SmartPorts
• Redundant Power Supply (RPS 675) Wire-speed ACLs • DHCP Server
ME01
Model Overview
ME01
Performance
• 32 Gbps forwarding bandwidth
• Forwarding rate based on 64-byte packets:
6.5 Mpps (Cisco Catalyst 3560-24TS and Catalyst 3560-24PS)
13.1 Mpps (Cisco Catalyst 3560-48TS and Catalyst 3560-48PS);
38.7 Mpps (Cisco Catalyst 3560G-48TS, Catalyst 3560G-48PS,
Catalyst 3560G-24TS and Catalyst 3560G-24PS)
• 128 MB DRAM
• Configurable up to 12,000 MAC addresses
• Configurable up to 11,000 unicast routes
• Configurable up to 1000 IGMP groups and multicast routes
ME01
Catalyst 2960 and 3560 PoE Positioning
ME01
Power over Ethernet Switches
Raising Stackables to a New Level
• Intelligent Power over Ethernet

Ability to support both Cisco prestandard Power over Ethernet and IEEE 802.3af
Intelligent power management features
Innovative Stacking
• Ease of management
Sets New Standards
One IP address and configuration file for entire stack for
Extends Web-based Cluster Management Suite Ease of Use and
to Layer 2/3/4 services Management
• Ease of deployment
Automatic configuration of new units then connected to the stack
Automatic Cisco IOS version check of new units with ability
to load images from Master flash
Auto-MDIX and Express Web setup for ease of initial deployment
ME01
Intelligent Features Overview
Availability Security Quality of Service
• IP Unicast Routing • IBNS through 802.1x • Queue servicing:
- Static, RIPv1/v2, OSPF, • Access Control Lists - Shaped round robin and
IGRP, EIGRP, BGPv4 strict priority queuing
• Unicast MAC filtering
• IP Multicast Routing • SSH, Kerberos, SNMPv3
- Weighted tail drop
- PIM, DVMRP tunneling - Ingress traffic policing
• Private VLAN Edge
• Hot Standby Router Protocol (HSRP) • DHCP interface tracker
- Egress traffic shaping
• Web Cache Comm. Protocol (WCCP) • 802.1p CoS and DSCP
• DHCP Snooping Option 82
• Policy Based Routing (PBR) • Congestion avoidance
• CMS security wizard
• Spanning-Tree Protocol • Private VLAN edge
- Granular rate limiting
enhancements - Auto QoS
• Port security
- UplinkFast, BackboneFast,PortFast
- 802.1s/w
• MAC address notification Manageability
• Autoconfiguration
• Port Grouping
• Cisco Intelligent Power
- EtherChannel (Gigabit, Fast) Management
- 802.3ad • Cisco CMS Software
- Port Aggregation Protocol (PAgP) • CiscoWorks
- Link Agg. Control Protocol (LACP) • Cisco Express Setup
• Layer 2 load balancing (PVST) Wire-speed switching and routing • Voice VLAN
• Layer 3 load balancing (ECR) 48 port version: 13.1 Mpps • Dynamic VLAN
• Cisco® Express Forwarding 24 port version: 6.6 Mpps • SmartPorts
• Redundant Power Supply (RPS 675) Wire-speed ACLs • DHCP Server
ME01
Cisco Catalyst 3750 Series Switches—
Current Model Overview
ME01
Performance
• Stack-forwarding rate of 38.7 mpps for 64-byte packets
• Forwarding rate:
6.5 mpps (Cisco Catalyst 3750-24TS, Catalyst 3750-24FS,
Catalyst 3750-24PS),
13.1 mpps (Catalyst 3750-48TS and Catalyst 3750-48PS),
17.8 mpps (Catalyst 3750G-12S),
35.7 mpps (Catalyst 3750G-24T and Catalyst 3750G-16TD),
38.7 mpps (Catalyst 3750G-24TS, Catalyst 3750G-24WS,
Catalyst 3750G-24PS, Catalyst 3750G-48TS,
Catalyst 3750G-48PS)
• Configurable up to 12,000 MAC addresses
• Configurable up to 11,000 unicast routes (up to 20,000 Catalyst 3750G-12S)
• Configurable up to 1000 IGMP groups and multicast routes
ME01
Cisco Catalyst 3750 – Stackwise
• 32-Gbps Stack Interconnect Unified Stacking,

• Stack up to 9 Units Behaving As a Single Unit
• Separate Stacking Port
• 1:N Master Redundancy
• Autoconfiguration and Cisco
IOS® Version Check/update
• Cross-Stack EtherChannel and
QoS
• Line-Speed Performance with
QoS and ACLs for Gigabit
Ethernet
• Hot Add and Delete of Gigabit
Ethernet and Fast Ethernet
Chassis in Same Stack
• Patented Cable Connector
ME01
KC switching v3.0
9173_01_2004_c2 Copyright Alef Nula, a.s.
115
StackWise
• StackWise is switching fabric

• made up from two 16 Gbps counter rotating rings
• loopback self-healing in milliseconds
ME01
Cisco WS-C4948
ME01
Performance
• Layer 2 hardware forwarding at 72 Mpps
• Layer 3 hardware-based IP Cisco Express Forwarding routing at 72 Mpps
• Layer 4 TCP or User Datagram Protocol (UDP) hardware-based filtering at 72 Mpps
• No performance penalty with advanced Layer 3 and 4 services enabled (ASICs)
• Software-based learning at a sustained rate of 500 hosts per second
• Support for 32,768 MAC addresses
• Support for 32,000 entries in routing table (shared between unicast and multicast)
• Support for 512 ingress policers and 512 egress policers
• Support for 32,000 ACL and QoS entries
• Scalability to 2048 virtual ports (VLAN port instances)
• Scalability to 8000 IGMP snooping entries
• Scalability to 1500 STP instances
• Bandwidth aggregation up to 16 Gbps through Gigabit EtherChannel technology
• Hardware-based wire-speed ACLs
• Layer 2 multicast addresses: 16,384
• Latency: 6 microseconds for 64-byte packets
ME01
Cisco WS-C4948-10GE
ME01
Performance
• 136-Gbps switching fabric

• Layer 2 hardware forwarding at 102 mpps
• Layer 3 hardware-based IP Cisco Express Forwarding routing at 102 mpps
• Layer 4 TCP/User Datagram Protocol (UDP) hardware-based filtering at 102 mpps
• Software-based learning at a sustained rate of 3000 hosts per second
• Support for 55,000 unicast and 16000 multicast MAC addresses
• Support for 32,000 entries in routing table (shared between unicast and multicast)
• Scalability to 2000 virtual ports (VLAN port instances)
• Bandwidth aggregation up to 40 Gbps using Gigabit EtherChannel technology
• Hardware-based ACLs, router ACLs (RACLs), VLAN ACLs
• Layer 2 traceroute
• Remote SPAN (RSPAN)
• SPAN ACL filtering
• Time Domain Reflectometry (TDR)
ME01
Cisco Catalyst 3560-E, 3750-E Series
Catalyst 3750-E
ME01
Catalyst 3750-E Models
ME01
Catalyst 3560-E Models
ME01
Stack Wise Plus
ME01
Field Replaceable Power Supplies
ME01
Out of Band Management
 Two management ports

RS-232 serial console port
10/100BASE-TX Ethernet port
 Out-of-band management
supports Telnet, TFTP, and
SSHv2
 One interface can manage the
entire stack of switches
 If multiple out-of-band ports are
connected to different switches
in a stack, one is selected for
active use
ME01
KC switching v3.0
9173_01_2004_c2 Copyright Alef Nula, a.s.
128
Catalyst 3750-X and 3560-X Series
Catalyst 3750-X Series  Next Generation Gigabit Ethernet 24 and 48 port,

Data and PoE+ Switches
 Three IOS feature sets:
 LAN Base
 IP Base
 IP Services
 Innovative features, StackPower, PoE+, MACSec
Catalyst 3560-X Series Encryption, Dual redundant PS, Network modules
 Enhanced LLW:
 Next business day (NBD) advance hardware
replacement
 90 Day access to Cisco Technical Assistance
Center (TAC) support
 Full Energy-Wise support
ME01
Catalyst 3750-X & 3560-X
Model comparison
IOS Model Stackable StackPower Full PoE PoE+ Description
WS-C3750X-24T-L Yes - - 24-port 10/100/1000, 350W AC, LAN Base

Available
LAN Base
WS-C3750X-48T-L Yes - - 48-port 10/100/1000, 350W AC, LAN Base

with
WS-C3750X-24P-L Yes Yes Yes 24-port PoE+ 10/100/1000, 715W AC, LAN Base
upgrade
WS-C3750X-48P-L Yes - Yes 48-port PoE+ 10/100/1000, 715W AC, LAN Base
to IP Base
WS-C3750X-48PF-L Yes Yes Yes 48-port PoE+ 10/100/1000, 1100W AC, LAN Base
Optional 10G / 1G Network Modules

WS-C3750X-24T-S Yes Yes - - 24-port 10/100/1000, 350W AC, IP Base
WS-C3750X-48T-S Yes Yes - - 48-port 10/100/1000, 350W AC, IP Base
IP Base
WS-C3750X-24P-S Yes Yes Yes Yes 24-port PoE+ 10/100/1000, 715W AC, IP Base
WS-C3750X-48P-S Yes Yes - Yes 48-port PoE+ 10/100/1000, 715W AC, IP Base
WS-C3750X-48PF-S Yes Yes Yes Yes 48-port PoE+ 10/100/1000, 1100W AC, IP Base
WS-C3560X-24T-L - - - - 24-port 10/100/1000, 350W AC, LAN Base
LAN Base
WS-C3560X-48T-L - - - - 48-port 10/100/1000, 350W AC, LAN Base

WS-C3560X-24P-L - - Yes Yes 24-port PoE+ 10/100/1000, 715W AC, LAN Base
WS-C3560X-48P-L - - - Yes 48-port PoE+ 10/100/1000, 715W AC, LAN Base
WS-C3560X-48PF-L - - Yes Yes 48-port PoE+ 10/100/1000, 1100W AC, LAN Base
WS-C3560X-24T-S - - - - 24-port 10/100/1000, 350W AC, IP Base
WS-C3560X-48T-S - - - - 48-port 10/100/1000, 350W AC, IP Base
IP Base
WS-C3560X-24P-S - - Yes Yes 24-port PoE+ 10/100/1000, 715W AC, IP Base

WS-C3560X-48P-S - - - Yes 48-port PoE+ 10/100/1000, 715W AC, IP Base
WS-C3560X-48PF-S - - Yes Yes 48-port PoE+ 10/100/1000, 1100W AC, IP Base
ME01 IP Base Models can be upgraded to IP services feature set at the time of order
StackPower Industry
Main features Leadership
• Innovative technology, aggregates and

shares available input power capacity in
a Stack
• Flexible arrangement of power supplies in
a stack
–Up to 8.8kW power in a stack
• Supports a ―zero-footprint‖ RPS
deployment
• Intelligent power shedding
• Up to 4 switches can be part of Stackpower
–Independent from Stackwise (Stackwise
Plus)
ME01
PoE+ Support
Main features
• Support for new standard 802.3at

– 30W per port Vs. 15.4W per port
• Ability to provide 30W per port on all 48-ports

simultaneously
• Ability to assign priorities (high/low) to each port

– Useful for intelligent power shedding!
ME01
StackWise Plus
• StackWise Plus increases the effective stacking

throughput to 64Gbps using spatial reuse
• Same great features as the original StackWise
4
3
2
1
ME01
Power supply
Redundant Power Supply –RPS 2300
ME01
New eXpandable Power System (XPS)
Overview
• Work as an RPS or complements StackPower

– Redundant and Power-share modes
• Star topology Only!

– up to 9 switches, stackable or standalone
• Offers full PoE+ redundancy to a 48-port switch

– That is 30W each on all 48 ports
• Works with the X-series switches only; Will not

replace the RPS 2300 (which will NOT work with the
ME01
X-series)
Q&A

Alef KC Switching v4.0

Hochgeladen von

Dokumentinformationen

Copyright

Verfügbare Formate

Dieses Dokument teilen

Dokument teilen oder einbetten

Freigabeoptionen

Stufen Sie dieses Dokument als nützlich ein?

Sind diese Inhalte unangemessen?

Copyright:

Verfügbare Formate

Alef KC Switching v4.0

Hochgeladen von

Copyright:

Verfügbare Formate

Switching Technologies

KC Switching 2.2 © 2004 Cisco Systems, Inc. All rights reserved. 1

• Ethernet Switching Fundamentals

KC Switching 2.2 © 2004 Cisco Systems, Inc. All rights reserved. 3

• To deliver a packet between two workstations, the source

• Ethernet 802.3 with 802.2 LLC

• Ethernet 802.3 with 802.2 LLC and SNAP Header

Minimum Frame Size: 64 Bytes—Maximum: 1518

• Different collision domains on each port of the bridge

KC Switching 2.2 © 2004 Cisco Systems, Inc. All rights reserved. 9

• A Virtual LAN is a closed 0200.1111.1111 0200.2222.2222

Switch 1 VLAN 2 Switch 2

• Tag added inside of original frame behind DMAC and SMAC

New Field, 4 Bytes

2 TYPE or LEN User priority:

• Single non-encapsulated VLAN—I.e. no Tag

Untagged Native VLAN

One switch is elected the Root based on lowest Bridge

IEEE 802.1D Defaults Max_Age + 2× Fwd_Delay

STATE FWD-DELAY Potentially up to

Quick fail-over required X

KC Switching 2.2 © 2004 Cisco Systems, Inc. All rights reserved. 23

• IEEE 802.1D: MAC Bridges (Spanning Tree Protocol)

• IEEE 802.1w is an evolution of IEEE 802.1D that uses an

• R and A start designated, in listening state

• R and A start in designated role, blocking state

terms of path cost

• RSTP or MST reverts to 802.1D BPDUs and TCN on a segment

• After power OFF C, A and B still continue to use 802.1D!

• Purpose: Allows more

High administrative complexity B: Blocking

Saves bandwidth and CPU F: Forwarding

KC Switching 2.2 © 2004 Cisco Systems, Inc. All rights reserved. 33

• CDP agent listens to

• Tables can be read by

• Uses multicast address 01-00-0C-CC-CC-CC

KC Switching 2.2 © 2004 Cisco Systems, Inc. All rights reserved. 37

• Autonegotiation allows a Fast Ethernet card or

6500-1>sh int g2/1

• Root xmits BPDUs Uni-dir link

• Dest. mcast 01-00-0C-CC-CC-CC

• More problems than

KC Switching 2.2 © 2004 Cisco Systems, Inc. All rights reserved. 43

• Spans more than a single

• How does it load share?

• Administrator configurable channel states with PAgP and LACP

Active Similar to Desirable LACP Terminology

(Keepalives Are Sent Every 30 Seconds)

KC Switching 2.2 © 2004 Cisco Systems, Inc. All rights reserved. 48

KC Switching 2.2 © 2004 Cisco Systems, Inc. All rights reserved. 50

• 8000 MAC addresses

• Virtual LANs (VLANs):

KC Switching 2.2 © 2004 Cisco Systems, Inc. All rights reserved. 55

Cisco Catalyst Express • 24 10/100 access ports for desktop connectivity

KC Switching 2.2 © 2004 Cisco Systems, Inc. All rights reserved. 59

ESW-540-24 4 SFP 24 10/100 Mbps 35.7 mpps No PoE

ESW-540-48 4 SFP 48 10/100 Mbps 71 mpps No PoE

KC Switching 2.2 © 2004 Cisco Systems, Inc. All rights reserved. 64

KC Switching 2.2 © 2004 Cisco Systems, Inc. All rights reserved. 69

• Type of PoE endpoints supported

• Cisco pre-standard Power over Ethernet endpoints

• All IEEE 802.3af compliant endpoints

• Catalyst 3750 can power Cisco pre-standard and IEEE

1 Optional 4.0 watts 0.44 to 3.84 watts