Beruflich Dokumente
Kultur Dokumente
2
Layer 2 features Figure 4. Multi-Link Trunking (MLT)
VLAN support
Up to 255 port-based VLANs can be Ethernet Switch 325-24G
3
Port security Traffic management and QoS Username and password
authentication
IEEE 802.1x 802.1p priority queuing
The Ethernet Switch 325 provides local
For added security, Ethernet Switch 325 802.1p priority queuing is standards-
switch management using username and
models support the 802.1x-based secu- based and enables priority to the order
password authentication. The network
rity feature EAP. Based on the IEEE in which the switch forwards packets on
manager can assign Read Only or
802.1x standard, EAP limits access to a per-port basis. For example, if messages
Read/Write privileges to different users
the network based on user credentials. A from a specific segment are crucial to
for management access to the switch.
user is required to “login” to the network the network, the switch port connected
using a username/password; the user to that segment can be set to a higher
Java Device Manager
database is maintained on the authenti- priority level. Up to four queues can be
cation server (not the switch). set on an Ethernet Switch 325 model The process of configuration begins
with IEEE 802.1p. with a single device but finishes across
EAP prevents network connectivity multiple devices. Java Device Manager is
without password authorization for the device configuration tool for those
DSCP recognition
added security and control in physically functions that require communicating
non-secure areas. It is used where the This feature enables the possibility to
with a single device. It uses a common
network is not 100 percent physically map the DiffServ Code Point (DSCP)
user interface and workflow that supports
secure or where physical security needs field within the ingressing IP frames to
many Nortel Ethernet switches. This
enhancement; for example, banks, one of the eight possible values of the
commonality allows the network manager
trading rooms or classroom training 802.1p priorities.
to become familiar with one tool instead
facilities. EAP supports client access to of multiple tools.
Broadcast Rate Limiting
the network and interoperates with
Microsoft Windows XP and other Broadcast Rate Limiting allows you to Secure Shell Access (SSH)
compliant 802.1x clients. configure threshold limits on the switch
SSHv2 supports strong authentication
for either broadcast or multicast packets
and encrypted communications. It allows
MAC address-based security ingressing on a port for a given time
you to log into the switch from an SSH
BaySecure MAC address-based security interval (in packets per second). If the
client and perform a secure Telnet session
allows authentication of all access, not configured threshold exceeds on a port,
using CLI commands. This feature is
only to the switches for management the switch will drop extra packets
ideal for security-conscious customers
and configurations, but also access to received. No SNMP trap or syslog is
such as federal governments.
the infrastructure through these switches. generated in case of congestion.
This software feature limits access to HTTP port number change
only network-authorized and trusted Switch management
This feature allows you to specify the
personnel, including full tracking of Ethernet Switch Operating UDP/TCP port number to be used for
network connections. With BaySecure, System Software Hypertext Transfer Protocol (HTTP)
network access is granted or denied via
Ethernet Switch Operating System switch connections. Beginning with
proper MAC address identification (up
Software for Ethernet Switch 325 switches software release 3.5, you can configure
to a maximum of 448).
is a single software image that is used the HTTP port. This feature provides
for both Ethernet Switch 325 models. enhanced security and network access.
Destination Address
The Ethernet Switch Operating System
(DA) filtering
Software platform is supported across all Web Quick Start
DA filtering allows the use of the MAC other Nortel switches for seamless inte- The Web Quick Start feature allows the
address-based security feature (BaySecure) gration into the network. administrator to set up basic configura-
to configure the switch to drop all
tions on the switch using a single screen.
packets with specified MAC DAs. You
can enter up to 10 specific MAC DAs
you want filtered.
4
Web-based management dynamically but is not saved to the flash Recovery configuration
Web-based network management makes memory. Network administrators must file support
managing the Ethernet Switch 325 then explicitly save the configuration The configuration file feature allows for
models easy with a Web browser. using the CLI or menu. storing of switch configuration parame-
Summary, configuration, fault, statistics, ters on a TFTP server. Configuration
Software updates
application, administration and support parameters can be retrieved automati-
pages can be provided. Real-time Trivial File Transfer Protocol (TFTP) cally to configure a replacement switch
sampling provides up-to-date LED client support allows software upgrades with the same configuration. For new
statistical information. The Web inter- and SNMP agent updates over the installations or when a switch has failed,
face also allows for static configuration network. Additionally, after the image has this feature saves time in reconfiguring
of numerous parameters of the device. been downloaded onto the switch, the another switch.
network manager is allowed to predictably
reset the switch in order for the new soft- Additionally, the Ethernet Switch 325
RADIUS
ware to take effect, providing control over models allow you to make changes to
The RADIUS-based security feature the configuration of the switch and if
allows you to set up network access the timing of the upgrade.
those configurations changes are incor-
control using the RADIUS security rect, the switch will re-boot after a user
IP-based switch management
protocol to authenticate local console pre-defined amount of time and restore
and Telnet logins. In the event that the BootP support provides centralized
the original configuration using the new
RADIUS server is unreachable, the switch IP address assignment and, in the
reload command.
network manager can use the local event that a static IP address is not
switch password to log into the switch. assigned, the switch will automatically
Nortel Command Line
look for a BootP server, simplifying
Interface (NNCLI)
No Banner and Control-Y Skip initial IP address assignment.
The NNCLI is used to automate general
The No Banner and Control-Y Skip management and configuration of
Port mirroring
feature allows you to configure the Ethernet Switch 325 models. NNCLI
switch to prevent the banner being seen The port mirroring feature (sometimes
provides a common industry look and feel
when you log into the console or Telnet referred to as ‘conversation steering’)
to the CLI commands, thus helping to
into the switch. The configuration also allows the network administrator to
reduce training and operational costs. The
eliminates the Control-Y key sequence. designate a single switch port as a traffic
NNCLI is used through a Telnet session
monitor for a specified port. Port
or through the serial port on the console.
Autosave Disable mirroring copies packets flowing into a
By default, every sixty seconds the specified port and sends the replicated
ASCII configuration file
Ethernet Switch checks to see if a data to the mirrored port for in-depth
analysis of switched traffic patterns to Ethernet Switch 325 models can down-
configuration change has occurred or if load a user-editable ASCII configuration
a log message has been written to non- troubleshoot problems and optimize
network configurations. Additionally, an file from a TFTP server. The ASCII
volatile storage. If one of these two configuration file can be loaded auto-
events has occurred, the system auto- external probe device can be attached to
the designated monitor port. The matically at boot time or on-demand
matically saves its configuration and the using the management systems (console
non-volatile log to the flash memory. Ethernet Switch 325 family supports
both ingress and egress port mirroring. menus or CLI). Once downloaded, the
Also, the system automatically saves the configuration file automatically config-
configuration file if a system reset ures the switch or stack according to the
User interface push-button
command is invoked. NNCLI commands in the file. This
The user interface push-button on the
The autosave disable feature prevents feature allows the flexibility of creating
front panel is provided for ease of use in
saving the configuration changes to the command configuration files that can be
configuring the unit. It can be used for
flash memory. When changing configu- used on several switches or stacks with
the purpose of resetting the unit or
ration, runtime configuration changes minor modifications.
setting a default IP address for ease of
installation.
5
ASCII configuration Topology View inform the network RMON
file generator manager of how a particular event is Network management begins with the
This feature works by reading the affecting the physical connectivity device. Ethernet Switch 325 switches
current configuration on the switch and within the network. The ‘End Node support four groups of Remote
generating the appropriate NNCLI Locate’ tool provides the ability to locate Monitoring (RMON) on all ports and
commands to recreate that configura- a failing end node and, with one mouse are SNMPv1, v2 and v3 compliant. The
tion. It provides the ability to view and click, provides access to the RMON four groups of RMON are Alarms,
store the switch configuration in a text, statistics for the failing Ethernet port Events, History and Statistics. RMON2
editable format. The generated file can supporting that end node. These solu- support is achievable via port mirroring
be stored on an external server and also tions provide visual and statistical tools and the use of an external probe. The
used to restore the switch configuration. necessary to quickly resolve network SNMP agent software resides in the
events or to manage performance in switch and uses the information it
Port naming alias real-time. The Ethernet Switch 325 collects to provide management for all
switches support “syslog” capability that ports in the stack providing comprehen-
This feature gives the ability to name, or
helps in troubleshooting network issues. sive network monitoring capabilities.
specify a text string for, each port to
enable easy identification of the
802.1ab auto-topology SNMPv1 and v2 support
connected users.
Nortel’s Ethernet Switch 325 family Full SNMP manageability is supported
LED indicators supports the 802.1ab auto-topology across the Ethernet Switch 325 family.
standard in addition to Nortel auto- Users can configure SNMP communi-
The LED indicators on the front panel
topology. 802.1ab provides a method ties as well as establish access levels.
make it easy to monitor the switch and
for the switch and other devices that Traps are also supported with the addi-
port status and help in isolating and
support 802.1ab within the LAN, to tional ability to change the UDP port to
diagnosing switch problems.
advertise their identification, configura- which traps are sent for security.
tion and capabilities to neighboring
Network management devices. Each 802.1ab supporting device SNMPv3
Enterprise Switch Manager saves the information they learn inter-
SNMPv3 provides user authentication
nally, which allows the network manage-
Enterprise Switch Manager* (ESM) is a and data encryption for higher security.
ment system to model the topology of
Java-based, real-time, configuration It also offers secure configuration and
the network by interrogating each device.
management application for Nortel monitoring.
Ethernet products including Ethernet
Simple Network Time Protocol
Switch 325 switches. It enables network Summary
Simple Network Time Protocol (SNTP)
managers to discover, view and configure With more than 100 years in telecom-
allows you to configure the switch to
more than 500 network devices and munications, Nortel is uniquely posi-
synchronize Universal Coordinated
their physical links on a topology map. tioned to help your business reduce cost
Time (UCT) to an accuracy of one
Configuration is stored in NVRAM by combining voice and data into an
second. This feature adheres to the
(Non-Volatile Random Access Memory). integrated system. Why take a chance
IEEE RFC 2030 (MIB is the s5agent).
With this feature, the system can obtain on a vendor that only understands part
Fault management
the time from any RFC 2030-compliant of the equation? Let us show you how
and resolution
NTP/SNTP server. Additionally, the the Ethernet Switch 325, along with
With Enterprise Network Management other Nortel products, can increase your
Ethernet Switch supports the capability
System (ENMS), the network manager profitability, streamline your business
to modify the time zone reported by the
has quick access to the information operations, increase productivity and
switch and automatically adjust the time
required to manage and isolate all help you gain the competitive edge.
for daylight savings.
network events on Ethernet Switch 325
switches. Tools such as Physical
6
Technical specifications
Physical specifications
Weight: 3 kg (6.61 lb)
Height: 4.37 cm (1.72 in)
Width: 43.82 cm (17.25 in)
Depth: 22.91 cm (9.02 in)
Performance
Switch fabric bandwidth 16 Gbps
Frame forwarding rate
Ethernet Switch 325-24T 3.6 million packets per second (Mpps)
Ethernet Switch 325-24G 6.6 million packets per second (Mpps)
Switched 10 Mbps forwarding rate 14,880 pps maximum
Switched 100 Mbps forwarding rate 148,810 pps maximum
Switched 1000 Mbps forwarding rate 1,488,810 pps maximum
Memory 16MB memory architecture shared by all ports
4MB Flash Memory
16MB SDRAM
Address database size 8,000 entries at line rate
Addressing 48-bit MAC address
Frame length 64 to 1518 bytes (IEEE 802.1Q Untagged)
68 to 1522 bytes (IEEE 802.1Q Tagged)
Interface options
10BASE-T/100BASE-TX RJ-45 (8-pin modular) connectors for Auto
MDI/MDI-X interface with auto-polarity
10BASE-T/100BASE-TX/1000BASE-T RJ-45 (8-pin modular) connectors for MDI-X
RFC support
RFC 1213 (MIB-II); RFC 1493 (Bridge MIB); RFC 2863 (Interfaces Group MIB); RFC 2665 (Ethernet MIB); RFC 2737 (Entity MIBv2);
RFC 2819 (RMON MIB); RFC 1757 (RMON); RFC 1271 (RMON); RFC 1157 (SNMP); RFC 2570 (SNMPv3); RFC 2571 (SNMP Frameworks);
RFC 2573 (SNMPv3 Applications); RFC 2574 (SNMPv3 USM); RFC 2575 (SNMPv3 VACM); RFC 2576 (SNMPv3);
RFC 2572 (SNMP Message Processing; RFC 791 (IP); RFC 792 (ICMP); RFC 793 (TCP); RFC 783 (TFTP); RFC 826 (ARP);
RFC 768 (UDP); RFC 854 (TELNET); RFC951 (Bootp); RFC 2236 (IGMPv2); RFC 1112 (IGMPv1); RFC 1945 (HTTP v1.0);
RFC 2138 (RADIUS); RFC 894 (IP over Ethernet); RFC 2674 (Q MIB)
Environmental
Operating temperature: 0° to 40°C (32° to 104°F)
Storage temperature: -25° to 70°C (-13° to 158°F)
Operating humidity: 10 to 85% maximum relative humidity, noncondensing
Storage humidity: 10 to 95% maximum relative humidity, noncondensing
Operating altitude: Up to 3,024 m (10,000 ft.) above sea level
Storage altitude: Up to 3,024 m (10,000 ft.) above sea level
Electrical
Input voltage (AC version): 100 to 240 VAC @ 47 to 63 Hz
Input power consumption (AC version): 46 W maximum
Input current (AC version): 2 A @ 120 VAC, 1 A @ 240 VAC
Maximum thermal output: 75 BTU/hour
Electromagnetic immunity
Ethernet Switch 325 meets the EN55024:1998/A1:2001 standard.
Ordering information
Order number Description
AL2012?45** Ethernet Switch 325-24T with 24 10BASE-T/100BASE-TX ports (includes rack mount kit)
AL2012?46** Ethernet Switch 325-24G with 24 10BASE-T/100BASE-TX ports plus 2 10BASE-T/100BASE-TX/1000BASE-T ports (includes rack mount kit)
AL2011013 Console Cable for use with Ethernet switches
** The seventh character (?) of the switch order number must be replaced with the proper code to indicate desired product nationalization:
“A” – No power cord included
“B” – Includes European “Schuko” power cord common in Austria, Belgium, Finland, France, Germany, The Netherlands, Norway, and Sweden
“C” – Includes power cord commonly used in the United Kingdom and Ireland
“D” – Includes power cord commonly used in Japan
“E” – Includes North American power cord
“F” – Includes Australian power cord, also commonly used in New Zealand and the People’s Republic of China
Nortel is a recognized leader in delivering communications capabilities that enhance In the United States:
Nortel, 35 Davis Drive
the human experience, ignite and power global commerce, and secure and protect the
Research Triangle Park, NC 27709 USA
world’s most critical information. Serving both service provider and enterprise customers,
In Canada:
Nortel delivers innovative technology solutions encompassing end-to-end broadband, Nortel, 8200 Dixie Road, Suite 100
Voice over IP, multimedia services and applications, and wireless broadband designed to Brampton, Ontario L6T 5P6 Canada
help people solve the world’s greatest challenges. Nortel does business in more than 150 In Caribbean and Latin America:
countries. For more information, visit Nortel on the Web at www.nortel.com. Nortel, 1500 Concorde Terrace
Sunrise, FL 33323 USA
For more information, contact your Nortel representative, or call 1-800-4 NORTEL or
In Europe:
1-800-466-7835 from anywhere in North America. Nortel
Nortel, the Nortel logo and the Globemark are trademarks of Nortel Networks. Microsoft Maidenhead Office Park, Westacott Way
Maidenhead Berkshire SL6 3QH UK
Windows XP is a registered trademark of Microsoft Corporation. All other trademarks are
Phone: 00800 8008 9009 or
the property of their owners. +44 (0) 870-907-9009
Copyright © 2006 Nortel Networks. All rights reserved. Information in this document is In Asia Pacific:
subject to change without notice. Nortel assumes no responsibility for any errors that Nortel
Nortel Networks Centre, 1 Innovation Drive
may appear in this document. Macquarie University Research Park
Macquarie Park NSW 2109 Australia
Tel: +61 2 8870 5000
N N 1 0 8 8 2 0 - 0 5 2 4 0 6
In Greater China:
Nortel, Sun Dong An Plaza
138 Wang Fu Jing Street
Beijing 100006, China
Phone: (86) 10 6510 8000