fastpath smb networking software software brief broadcom® fastpath® smb production-ready...
TRANSCRIPT
SOFTWARE BRIEF
FASTPATH® SMB Networking Software
FASTPATH SMB 8.2
A 48-port managed Ethernet switch devel-oped with FASTPATH SMB can providefull-featured layer-2 switching with layer-3static routing and advanced Quality-of-Ser-vice in fixed or stackable configurations.
FULL-FEATURED SWITCHING WITHBASIC ROUTING & ADVANCED QOSThe Broadcom® FASTPATH® SMB production-ready networking software offers impressivetime-to-market advantages for manufacturers,introducing new managed Ethernet productsfor Small-to-Medium Business markets. FAST-PATH SMB has been developed for use in busi-nesses with 50 – 500 users, requiring full-featured switching and basic routing withadvanced QoS.
SCALABLE FLEXIBILITYThe unique architecture of FASTPATH SMB soft-ware is modular and scalable, and it providesgreat flexibility for Broadcom’s OEM customers.FASTPATH SMB has been integrated with Broad-com's market-leading switching silicon. The soft-ware provides an extensive feature set fordeveloping layer-2 switches with layer-3 staticrouting.
FASTPATH SMB also supports advanced stack-ing functionality for “buy as you grow” deploy-ments and network resiliency applications. Inaddition, FASTPATH SMB can support integratedunified wireless switching functionality, offeringsophisticated control of wireless deployments.
FASTPATH SMB supports numerous industry-standard RFCs, standards, and protocols. Theproduct uses Linux as the operating system fordeveloping the most cost-effective solutions.
FASTPATH SMB FEATURESFASTPATH SMB Release 8.2 includes thefollowing software modules:
• Switching
• Management
• Layer-3 Routing
• Quality of Service
• Stacking
1
• IEEE 802.1AB—Link Layer DiscoveryProtocol (LLDP)
• IEEE 802.1D—Spanning tree compati-bility
• IEEE 802.1p—Ethernet priority withuser provisioning and mapping
• IEEE 802.1s—Multiple spanning treecompatibility
• IEEE 802.1Q—Virtual LANs with port-based VLANs
• IEEE 802.1X—Port-based authentica-tion with Guest VLAN support
• IEEE 802.1W—Rapid spanning treecompatibility
• IEEE 802.3—10BASE-T
• IEEE 802.3u—100BASE-T
• IEEE 802.3ab—1000BASE-T
• IEEE 802.1ak—Virtual Bridged LocalArea Networks - Amendment 07: Multi-ple Registration Protocol
• IEEE 802.3ac—VLAN tagging
• IEEE 802.3ad—Link aggregation
• IEEE 802.3x —Flow control
• GARP—Generic Attribute RegistrationProtocol: clause 12, IEEE 802.1D-2004
• GMRP—Dynamic L2 multicast registra-tion: clause 10, IEEE 802.1D-2004
• GVRP—Dynamic VLAN registration:clause 11.2, IEEE 802.1Q-2003
• RFC 4541—Considerations for InternetGroup Management Protocol (IGMP)Snooping Switches
• ANSI/TIA-1057—LLDP-Media EndpointDiscovery (MED)
• RFC 5171—Unidirectional Link Detec-tion (UDLD) Protocol
Advanced Layer-2 Features
• Authentication, Authorization, andAccounting (AAA)
• Broadcast Storm Recovery
• Broadcast/Multicast/Unknown unicaststorm recovery
• DHCP Snooping
• IGMP Snooping Querier
• Port MAC locking
• Port mirroring
• Protected ports
• Static MAC filtering
• TACACS+
• Voice VLANs
• Unauthenticated VLAN
• Internal 802.1X Authentication Server
• CLI Filtering
• Switchport mode configuration
• Link Dependency
• IPv6 RA Guard (Stateless)
SYSTEM FACILITIES• Event and error logging facility
• Run-time and configuration downloadcapability
• PING utility
• Xmodem
• FTP Transfers via IPv4/IPv6
• Malicious Code Detection
• RFC 768—UDP
• RFC 783—TFTP
• RFC 791—IP
• RFC 792—ICMP
• RFC 793—TCP
• RFC 826—ARP
• RFC 894—Transmission of IP data-grams over Ethernet networks
• RFC 896—Congestion control in IP/TCP networks
• RFC 951—BOOTP
• RFC 1034—Domain names - conceptsand facilities
• RFC 1035—Domain names - implemen-tation and specification
• RFC 1321—Message digest algorithm
• RFC 1534—Interoperability betweenBOOTP and DHCP
• RFC 2021—Remote network monitoring
vendor extensions
• RFC 2819—Remote Network Monitor-ing Management Information Base
• RFC 2865—RADIUS client
• RFC 2866—RADIUS accounting
• RFC 2868—RADIUS attributes for tun-nel protocol support
• RFC 2869—RADIUS Extensions
• RFC 3579—RADIUS support for EAP
• RFC 3580—IEEE 802.1X RADIUSusage guidelines
• RFC 3164—The BSD syslog protocol
• RFC 3580—802.1X RADIUS UsageGuidelines
• RFC 5176—Dynamic AuthorizationServer (Disconnect-Request process-ing only)
• RFC 5424—The Syslog Protocol
MANAGEMENT• Industry-standard CLI
• IPv6 management
• Password management
• Autoinstall support for firmware imagesand configuration files
• SNMP v1, v2, and v3
• SSH 1.5 and 2.0
– RFC 4252: SSH authenticationprotocol
– RFC 4253: SSH transport layerprotocol
– RFC 4254: SSH connection protocol– RFC 4251: SSH protocol architecture– RFC 4716: SECSH public key file
format– RFC 4419: Diffie-Hellman group
exchange for the SSH transport layerprotocol
• SSL 3.0 and TLS 1.0
– RFC 2246: The TLS protocol, version1.0
– RFC 2818: HTTP over TLS– RFC 3268: AES cipher suites for
transport layer security
• Secure Copy (SCP)
SWITCHINGCore Switching Features
• Multicast VLAN Registration (MVR)
• Independent VLAN Learning (IVL)support
• IPv6 Classification APIs
• Jumbo Ethernet frame support
management information base version 2
• RFC 2030—Simple Network Time Pro-tocol (SNTP)
• RFC 2131—DHCP relay
• RFC 2132—DHCP options and BOOTP
• Telnet
• Web
2
• Java Plug-in 1.6.0_01 and JavaScript 1.3
• RESTCONF
• RFC 6020—A Data Modeling Languagefor NETCONF
• RFC 6415—Web Host Metadata
• RFC 6536—NETCONF Access ControlModel
• RFC 7223—YANG Data Model for Inter-face Management
• RFC 7277—YANG Data Model for IPManagement
• RFC 7317—YANG Data Model for Sys-tem Management
• draft-ietf-netmod-syslog-model-03
• draft-ietf-netconf-yang-library-00
• draft-ietf-httpauth-basicauth-update-03
Advanced Management Features
• Industry Standard CLI with the followingfeatures:
– Scripting capability– Command completion– Context sensitive help
• Optional user password encryption
• Multi-session Telnet server
LAYER-3 ROUTING• Policy Based Routing
• RFC 1256—ICMP router discoverymessages
• RFC 1812—Requirements for IP Ver-sion 4 routers
• RFC 2131—DHCP Relay
• RFC 3021—Using 31-bit prefixes onipv4 point-to-point links
• RFC 3046—DHCP relay agent informa-tion option
QUALITY OF SERVICEAccess Control Lists (ACLs)
• Permit/deny actions for inbound IP andLayer-2 traffic classification based on:
– Time-Based ACL– Source/Destination IP address– TCP/UDP Source/Destination port– IP Protocol Type– Type of Service (ToS) or differentiated
services (DSCP) field– Source/Destination MAC address– EtherType– IEEE 802.1p user priority (outer and/
or inner VLAN tag)– VLAN ID (outer and/or inner VLAN
tag)
• RFC 1858—Security Considerations forIP Fragment Filtering
Optional ACL Rule Attributes
• Assign flow to a specific Class of Ser-vice (CoS) queue
• Redirect matching traffic flows
Differentiated Services (DiffServ)
• Classify traffic based on same criteriaas ACLs and optionally:
– Mark the IP DSCP or Precedenceheader fields
– Police the flow to a specific rate withtwo-color aware support
• RFC 2474—Definition of the differenti-ated services field (DS field) in the IPv4and IPv6 headers
• RFC 2475—An architecture for differen-tiated services
• RFC 2597—Assured forwarding Per-Hop Behavior (PHB) group
• RFC 2697—Single-rate policing
• RFC 3246—An expedited forwardingPHB
• RFC 3260—New terminology andclarifications for DiffServ
Class of Service (CoS) Queue Mapping
Configuration
• AutoVoIP–Automatic CoS settings forVoIP
• IP DSCP-to-queue mapping
• Configurable interface trust mode(IEEE 802.1p, DSCP, or untrusted)
• Interface egress shaping rate
• Strict priority versus weighted schedul-ing per queue
3
SOFTWARE BRIEF | FASTPATH® SMB Networking Software
Broadcom Corporation
5300 California Avenue, Irvine, CA 92617Phone: 949-926-5000 • Fax: 949-926-5203
PLATFORM SPECIFICATIONS• VLANs: 255
• MAC Addresses:
– 16k
• MSTP instances: 4
• LAGs: 6
• ACLs: 50 with 10 rules per port
• Traffic Classes (Queues): 8 (7 withstacking)
ADVANCED STACKING• Single IP management of entire stack
• Cross-stack functionality such as LAGs,MSTP instances, VLANs, etc., spanningstack member units
• Centralized control plane
• Configuration and firmware synchroni-zation
• Automatic stack initialization and unitaddition/removal and master failover
• Four member units supported in a stack
• Serviceability features for monitoringand diagnosing unit status
SNMP MIBSSwitching MIBs
• IEEE 802.1X MIB (IEEE 802.1-PAE-MIB 2004 Revision)
• IEEE 802.3AD MIB (IEEE 802.3-AD-MIB)
• IANAifType-MIB
• FASTPATH Enterprise MIBs for full con-figuration support of switching features
• RFC 1213—MIB II
• RFC 1493—Bridge MIB
• RFC 1612—DNS resolver MIB exten-sions
• RFC 1643—Definitions of managedobjects for the Ethernet-like interfacetypes
• RFC 2233—Interfaces group MIB usingSMI v2
• RFC 2613—SMON MIB
• RFC 2618—RADIUS authenticationclient MIB
• RFC 2620—RADIUS accounting MIB
• RFC 2674—VLAN MIB
• RFC 2737—Entity MIB version 2
• RFC 2819—RMON groups 1, 2, 3, and9
• RFC 2863—IF-MIB
• RFC 2925—Definitions of ManagedObjects for Remote Ping, Traceroute,and Lookup Operations
• RFC 3273—RMON Groups 1, 2, and 3
• RFC 3291—Textual conventions forInternet network addresses
• RFC 3434—RMON Groups 1, 2, and 3
• RFC 4022—TCP-MIB
• RFC 4113—UDP-MIB
Routing MIBs
• FASTPATH Enterprise MIBs for full con-figuration support of routing features
• RFC 2096—IP forwarding table MIB
• RFC 3636—MAU MIB
Quality of Service MIBs
• FASTPATH Enterprise MIBs for full con-figuration support of DiffServ, ACL, andCoS functionality
• RFC 3289—Management informationbase for the DiffServ architecture (read-only)
FOR MORE INFORMATIONwww.broadcom.com
© 2015 Broadcom Corporation. All rights reserved. Broadcom®, the pulse logo, Connecting everything, the Connecting every-thing logo, and FASTPATH® are among the trademarks of Broadcom Corporation and/or its affiliates in the United States, certainother countries and/or the EU. Any other trademarks or trade names mentioned are the property of their respective owners.
FASTPATH-SB415-R
November 02, 2015
4