HP E4510-24G SWITCH CPNT IN
E4510-24G
The HP E4510G Switch Series provides advanced Gigabit Ethernet access and distribution for medium-sized businesses and smaller enterprise organizations seeking to build a secure converged network. HP E4510G switches support security, and management features, and accommodate up to four optional 10 GbE high-speed links, enabling connectivity to a core network or high-performance servers. The combination of high-performance Gigabit Ethernet switching, quality of service (QoS), and traffic management features help ensure that essential applications receive appropriate priority for efficient utilization of network resources. The series also offers single address management.
Key features:
- Enterprise-class security features;
- Wire-speed switching capacity up to 176 Gbps;
- Dual-personality copper/fiber ports;
- Single IP address management;
- IEEE 802.1X network access control.
Quality of Service (QoS)
Layer 4 prioritization: enables prioritization based on TCP/UDP port numbers.
Traffic prioritization (IEEE 802.1p): allows real-time traffic classification into eight priority levels mapped to eight queues.
Class of Service (CoS): sets the IEEE 802.1p priority tag based on IP address, IP Type of Service (ToS), Layer 3 protocol, TCP/UDP port number, source port, and DiffServ.
Rate limiting: sets per-port ingress enforced maximums and per-port, per-queue guaranteed minimums.
Bandwidth shaping:
- Rate limiting: provides per-port, ingress-based enforced bandwidth maximums;
- Guaranteed minimums: provides per-port, per-queue egress-based guaranteed bandwidth minimums.
Broadcast control: allows limitation of broadcast traffic rate to cut down on unwanted broadcast traffic on the network.
Management
- Remote configuration and management: is available through a secure Web browser or a command-line interface (CLI);
- Manager and operator privilege levels: enable read-only (operator) and read-write (manager) access on CLI and Web browser management interfaces;
- Management VLAN: segments traffic to and from management interfaces, including CLI/telnet, a Web browser interface, and SNMP;
- RADIUS accounting support: separates RADIUS accounting server support per SSID; provides detailed session, usage, and billing information for each client activity;
- Multiple configuration files: can be stored to the flash image;
- Dual flash images: provide independent primary and secondary operating system files for backup while upgrading;
- Secure Web GUI: provides a secure, easy-to-use graphical interface for configuring the module via HTTPS;
- Command-line interface (CLI): provides a secure, easy-to-use command-line interface for configuring the module via SSH or a switch console; provides direct real-time session visibility;
- SNMPv1, v2c, and v3: facilitate centralized discovery, monitoring, and secure management of networking devices;
- Port mirroring: enables traffic on a port to be simultaneously sent to a network analyzer for monitoring;
- 3Com-heritage Comware Operating System: CLI and Web user interface in common with HP E4xxx and E55xxx series switches.
Connectivity
- Auto-MDIX: automatically adjusts for straight-through or crossover cables on all 10/100 and 10/100/1000 ports;
- Dual-personality functionality: includes four 10/100/1000 ports or SFP slots for optional fiber connectivity such as Gigabit-SX, -LX, -LH, or 100-FX;
- IEEE 802.3af Power over Ethernet (PoE): provides up to 15.4 W per port to IEEE 802.3af-compliant PoE-powered devices such as IP phones, wireless access points, and security cameras;
- Optional 10 Gigabit Ethernet ports: allow the addition of 10 Gigabit Ethernet connections for uplinks or high-bandwidth server connections; flexibly supports XFP, SFP+, or CX4 local connections.
Manageability
- RMON (remote monitoring): provides advanced monitoring and reporting capabilities for statistics, history, alarms, and events;
- Dual flash images: provides independent primary and secondary operating system files for backup while upgrading;
- Full-featured console: provides complete control of the switch with a familiar command-line interface (CLI);
- Web interface: allows configuration of the switch from any Web browser on the network;
- Multiple configuration files: allow multiple configuration files to be stored to flash image;
- Software updates: free downloads from the Web;
- sFlow (RFC 3176): wire-speed traffic accounting and monitoring;
- IEEE 802.1AB Link Layer Discovery Protocol (LLDP): automated device discovery protocol provides easy mapping using network management applications.
Layer 2 switching
- VLAN support and tagging: support IEEE 802.1Q, with 4094 simultaneous VLAN IDs;
- GARP VLAN Registration Protocol (GVRP): allows automatic learning and dynamic assignment of VLANs;
- IP multicast snooping and data-driven IGMP: automatically prevents flooding of IP multicast traffic;
- Jumbo packet support: supports up to 9220-byte frame size to improve performance of large data transfers;
- IEEE 802.1ad QinQ: increases the scalability of an Ethernet network by providing a hierarchical structure; connects multiple LANs on a high-speed campus or metro network.
Layer 3 routing
- Static IP routing: provides manually configured routing; includes ECMP capability;
- Routing Information Protocol (RIP): provides RIPv1 and RIPv2 routing.
Security
- Access control lists (ACLs): provide IP Layer 3 filtering based on source/destination IP address/subnet and source/destination TCP/UDP port number;
- RADIUS/TACACS+: eases switch management security administration by using a password authentication server;
- Secure Shell (SSHv2): encrypts all transmitted data for secure, remote command-line interface (CLI) access over IP networks;
- Secure Web management with HTTPS and SSL: encrypts all HTTP traffic, allowing secure access to the browser-based management GUI in the switch;
- IEEE 802.1X and RADIUS network logins: control port-based access for authentication and accountability;
- Port security: allows access only to specified MAC addresses, which can be learned or specified by the administrator;
- MAC address lockout: prevents particular configured MAC addresses from connecting to the network;
- Secure File Transfer Protocol (FTP): allows secure file transfer to and from the switch; protects against unwanted file downloads or unauthorized copying of switch configuration file;
- Switch management logon security: can require either RADIUS or TACACS+ authentication for secure switch CLI logon;
- Secure management access: securely encrypts all access methods (CLI, GUI, or MIB) through SSHv2, SSL, and/or SNMPv3;
- Custom banner: displays security policy when users log in to the switch;
- Automatic VLAN assignment: automatically assigns users to the appropriate VLAN based on their identity and location and the time of day;
- Management password: provides security so that only authorized access to the Web browser interface is allowed;
- STP BPDU port protection: blocks Bridge Protocol Data Units (BPDUs) on ports that do not require BPDUs, preventing forged BPDU attacks Dynamic IP lockdown: works with DHCP protection to block traffic from unauthorized hosts, preventing IP source address spoofing;
- DHCP protection: blocks DHCP packets from unauthorized DHCP servers, preventing denial-of-service attacks;
- Dynamic ARP protection: blocks ARP broadcasts from unauthorized hosts, preventing eavesdropping or theft of network data;
- STP Root Guard: protects root bridge from malicious attack or configuration mistakes.
Convergence
- IEEE 802.1AB Link Layer Discovery Protocol (LLDP): is an automated device discovery protocol for easy mapping by network management applications;
- Automated voice VLAN assignment: recognizes IP phones and automatically assigns voice traffic to a dedicated VLAN for IP phones.