Описание:Cisco Catalyst 1000 - это сетевой коммутатор корпоративного класса в фиксированной конфигурации, ориентированный на малые предприятия и филиалы. Устройство работает на операционной системе Cisco IOS, которая обеспечивает расширенный функционал безопасности, высокую эффективность и надёжность работы, а также простое управление сетевым оборудованием и сетью вцелом через интерфейс командной строки или встроенный веб-интерфейс.
Технические характеристикиProduct ID*
Gigabit Ethernet / FE ports
Uplink interfaces
PoE+power budget
Fanless
Dimensions
(WxDxH in inches)
Weight (kg)
C1000-48T-4X-L
48 10/100/1000 RJ45 Data
4 SFP+
-
N
17.48 x 10.73 x 1.73
3.95
Аппаратная часть коммутатора8-port models
16-port models
24-port models (1/10G uplinks)
48-port models (1/10G uplinks)
USB-A port for storage and Bluetooth console
1
1
1
1
CPU
ARM v7 800 MHz
ARM v7 800 MHz
ARM v7 800 MHz
ARM v7 800 MHz
DRAM
512 MB
512 MB
512 MB
512 MB
Flash memory
256 MB
256 MB
256 MB
256 MB
Forwarding bandwidth
10 Gbps
18 Gbps
FE: 6.4 Gbps1G: 28 Gbps10G: 64 Gbps
FE: 8.8 Gbps1G: 52 Gbps10G: 88Gpbs
Switching bandwidth
20 Gbps
36 Gbps
FE: 12.8 Gbps1G: 56 Gbps10G: 128 Gbps
FE: 17.6 Gbps1G: 104 Gbps10G: 176 Gbps
Forwarding rate
(64‑byte L3 packets)
14.88 Mpps
26.78 Mpps
FE: 9.52 Mpps1G: 41.67 Mpps10G: 95.23 Mpps
FE: 13.09 Mpps1G: 77.38 Mpps10G: 130.94
MAC addresses
16000
16000
16000
16000
IPv4 unicast direct routes
542
542
542
542
IPv4 unicast indirect routes
256
256
256
256
IPv6 unicast direct routes
414
414
414
414
IPv6 unicast indirect routes
128
128
128
128
IPv4 multicast routes and IGMP groups
1024
1024
1024
1024
IPv6 multicast groups
1024
1024
1024
1024
IPv4/MAC security ACEs
600
600
600 (FE: 384)
600 (FE: 384)
IPv6 security ACEs
600
600
600 (FE: 256)
600 (FE: 256)
Maximum active VLANs
256
256
256
256
VLAN IDs available
4094
4094
4094
4094
Maximum STP instances
64
64
64
64
Maximum SPAN sessions
4
4
4
4
MTU-L3 packet
9198 bytes
9198 bytes
9198 bytes
9198 bytes
Jumbo Ethernet frame
10,240 bytes
10,240 bytes
10,240 bytes
10,240 bytes
Dying Gasp
Yes
Yes
Yes (FE: No)
Yes (FE: No)
MTBF in hours (data)
2,171,669
2,165,105
2,026,793
1,452,667
MTBF in hours (PoE)
1,786,412, 1,706,649 (External PS)
706,983
698,220
856,329
MTBF in hours (Full PoE)
1,706,649
-
698,220
856,329
Функционал:Network securityCisco Catalyst 1000 Series Switches provide a range of security features to limit access to the network and mitigate threats, including:●
Comprehensive 802.1X features to control access to the network, including flexible authentication, 802.1X monitor mode, and RADIUS change of authorization.●
802.1X support with Network Edge Access Topology (NEAT), which extends identity authentication to areas outside the wiring closet (such as conference rooms).●
IEEE 802.1X user distribution, which enables you to load-balance users with the same group name across multiple different VLANs.●
Ability to disable per-VLAN MAC learning to allow you to manage the available MAC address table space by controlling which interface or VLANs learn MAC addresses.●
Multidomain authentication to allow an IP phone and a PC to authenticate on the same switch port while being placed on the appropriate voice and data VLANs.●
Authentication,
Authorization,
and Accounting (AAA) command authorization in PnP to enable seamless PnP provisioning.●
Access Control Lists (ACLS) for IPv6 and IPv4 security and Quality-of-Service (QoS) ACL elements (ACEs).●
Port-based ACLs for Layer 2 interfaces to allow security policies to be applied on individual switch ports.●
SSH, Kerberos, and SNMP v3 to provide network security by encrypting administrator traffic during Telnet and SNMP sessions. SSH, Kerberos, and the cryptographic version of SNMP v3 require a special cryptographic software image because of U.S. export restrictions.●
SPAN, with bidirectional data support, to allow the Cisco Intrusion Detection System (IDS) to take action when an intruder is detected.●
TACACS+ and RADIUS authentication to facilitate centralized control of the switch and restrict unauthorized users from altering the configuration.●
MAC address notification to notify administrators about users added to or removed from the network.●
MAC Authentication Bypass (MAB) and WebAuth with downloadable ACLs to allow per-user ACLs to be downloaded from the Cisco Identity Services Engine (ISE)as policy enforcement after authentication using MAB or web authentication in addition to IEEE 802.1X.●
Web authentication redirection to enable networks to redirect guest users to the URL they had originally requested.●
Multilevel security on console access to prevent unauthorized users from altering the switch configuration.●
BPDU Guard to shut down Spanning Tree PortFast-enabled interfaces when BPDUs are received, to avoid accidental topology loops.●
IP Source Guard to restrict IP traffic on nonrouted Layer 2 interfaces by filtering traffic based on the Dynamic Host Configuration Protocol (DHCP) snooping binding database or by manually configuring IP source bindings.●
SSH v2 to allow use of digital certificates for authentication between user and server.●
Spanning Tree Root Guard (STRG) to prevent edge devices that are not in the network administrator’s control from becoming Spanning Tree Protocol (STP) root nodes.●
Internet Group Management Protocol (IGMP) filtering to provide multicast authentication by filtering out nonsubscribers and to limit the number of concurrent multicast streams available per port.●
Dynamic VLAN assignment through implementation of VLAN Membership Policy Server client capability to provide flexibil