Gabriel Catalyst2950
-
Upload
jonny-rojas -
Category
Documents
-
view
220 -
download
0
Transcript of Gabriel Catalyst2950
-
8/12/2019 Gabriel Catalyst2950
1/18
Cisco Systems, Inc.All contents are Copyright 19922003 Cisco Systems, Inc. All rights reserved. Important Notices and Privacy Statement.
Page 1 of 18
Data Sheet
Cisco Cat a l y s t 2 9 5 0 S e r i e s S w i t ch eswith Enhanced Image Software
Cisco Cata lys t 2950Series Switches
Pro d u c t Ov e rv i ew
Cisco Catalyst 2950 Series sw itches are
xed-conguration models that provide
w ire-speed Fast Ethernet and G igabit
Ethernet connectivity for small and
medium-sized netw orks. The Cisco
Ca talyst 2950 Series is an affordableproduct line that brings intelligent services,
such as enhanced security, high availability,
and a dvanced q uality of service (Qo S), to
the network edgewhile maintaining the
simplicity of trad itional LAN switching.
Embedded in C isco C ata lyst 2950 Series
switches is Cisco C luster M ana gement
Suite (CM S) Software, which allow s
users to simultaneously congure and
troubleshoot multiple Ca talyst desktop
switches using a standard Web browser.In addition to Cisco CM S Software,
Cisco Ca talyst 2950 Series switches provide
extensive management tools using Simple
Network M anagement Protocol (SNM P)
network management platforms such as
CiscoWorks. With the newly launched
Cisco Express Setup, users now have the
option to set up the switch through a Web
brow ser, eliminating the need for more
complex terminal emulation progra ms
and knowledge of the command-line
interface (CLI). C isco Express Setup
reduces the cost of deployment by enabling
less-skilled personnel to quickly and simply
set up switches.
This product l ine offers two dist inct sets of
softw are features and several
congurations to allow small,
medium-sized, and enterprisebranch of ces
to select the right combination for the
network edge. Cisco Standard Image
software offers Cisco IOS Software
capabil it ies for basic data, voice, and video
services. For netw orks that require
additional security, advanced QoS, andhigh availability, Cisco Enhanced Image
software delivers intelligent services such as
rate limiting, Q oS reclassifying, and
security ltering for d eployment at the
netwo rk edge.
Cisco Catalyst 2950 Series switches consist
of the follow ing devices, w hich are only
available with Enhanced Image software
for the Cisco Cata lyst 2950 Series.
Cisco Catalyst 2950G-48 48 10/100ports and 2 Gigabit Interface Converter
(GBIC )-based G igabit Ethernet ports
Cisco Catalyst 2950G-24 24 10/100ports and 2 G BIC ports
Cisco Catalyst 2950G-24-DC 24 10/100 ports, 2 GBIC ports, DC power
Cisco Catalyst 2950G-12 12 10/100ports 2 G BIC ports
-
8/12/2019 Gabriel Catalyst2950
2/18
Cisco Systems, Inc.All contents are Copyright 19922003 Cisco Systems, Inc. All rights reserved. Important Notices and Privacy Statement.
Page 2 of 18
Cisco Catalyst 2950T-24 24 10/100 por ts and 2 xed 10/100/1000BASE-T uplink por ts
Cisco Catalyst 2950C-24 24 10/100 ports a nd 2 xed 100BASE-FX uplink po rtsThis complete set of sw itches offers network ma nagers exibility w hen selecting a migra tion pat h to G igabit
Ethernet. The tw o built-in G igabit Ethernet ports on the Cisco C ata lyst 2950G-12, 2950G-24 and 2950G -48
accommod ate several GB IC tra nsceivers, including the Cisco Giga Stack , 1000BASE-SX, 1000BASE-LX/LH ,
1000BASE-ZX , 1000BASE-T, and coarse w avelength-division multiplexing (CWDM ) G BICs. The dual G BIC-based
G igabit Ethernet implementation providescustomers w ith tremendous deployment exibilitygiving them increased
availability with redundant uplinks. In sum, the conguration permits customers to implement one type of stacking
and uplink congurat ion today, while preserving the option to migrate to another congurat ion in the future. High
levelsof stack resiliency can also be implemented by deploying dual-redundant Gigabit Ethernet uplinks, a redundant
Cisco G igaStack G BIC loopback ca ble, UplinkFast and Cro ssStack UplinkFast technologies for high-speed uplink
and stack intercon nection fa ilover, and Per-VLAN Spanning Tree Plus (PVST+ ) for uplink load b ala ncing.
In addition, the Cisco Catalyst 2950T-24 offers small and medium-sized enterprises server connectivity and an easy
migration pa th to G igabit by using existing copper cabling infrastructure. Implementing G igabit Ethernet over
copper allow s network ma nagers to boo st netwo rk performance and ma ximize infrastructure investments in
Ca tegory 5 copper cabling.
Maximum power availability for a converged voice and data network is attainable when a Cisco Catalyst 2950
Switch is combined w ith the Cisco Redundant Po w er System 675 for protection aga inst internal pow er supply
failures and a n uninterruptable pow er supply (UPS) system to safeguard aga inst pow er outages.
A d d i t io n a l C i s c o C a t a l y s t 2 9 5 0 S e r i e s S w i t c h e s
Cisco Catalyst 2950 Series with Standard Image Software
The C isco C at alyst 2950SX-48-SI, 2950T-48-SI, 2950SX-24, 2950-24 a nd 2950-12 are sta nda lone,
xed-con guration, mana ged 10/100 switches providing basic w orkgroup connectivity for small to medium-sized
companies. These wire-speed desktop switches come w ith C isco Sta ndard Image softw are features and offer
Cisco IOS Softw are functions for basic data , video, and vo ice services at the edge of the netw ork.
Cisco Catalyst 2950 Series Long-Reach Ethernet (LRE) Switches
Cisco Catalyst 2950ST-24-L RE 24 LRE ports, 2 xed 10/100/1000BASE-T ports, a nd 2 Sma ll Form-Factor
Pluggable (SFP) ports (two of the four uplinks active at one time)
Ci sco Cataly st 295 0ST-8-L RE Eight LRE ports, two xed 10/100/1000BASE-T ports, and two SFP ports (two
of t he four uplinks active at one time)
The Cisco Catalyst 2950 Series LRE solution delivers cost-effective, high-performance broadband access overexisting phone w iring in enterprise campusenvironments and multi-tenant buildings (for example, hotels, apartment
buildings, and of ce buildings). C isco C ata lyst 2950 LRE switches include the Cisco Enhanced Image softw are
feat ures, enab ling enterprise an d service provid er customers to ext end intelligent services over tra ditio nal w iring
(Category 1/2/3)to distances up to 5000 feet. Cisco is the only company with the breadth of technologies that allows
customers to deliver intelligent network services across any combination of wired and wireless infrastructures. Refer
to the C isco C ata lyst 2950 LRE Series D ata Sheet for more informatio n.
-
8/12/2019 Gabriel Catalyst2950
3/18
Cisco Systems, Inc.All contents are Copyright 19922003 Cisco Systems, Inc. All rights reserved. Important Notices and Privacy Statement.
Page 3 of 18
In t e l l i g en ce i n t h e Ne t w o rk
Netw orks of tod ay a re evolving to ad dress four new developments at t he netw ork edge: Increase in desktop computing pow er Introduction of bandw idth-intensive applications
Expansion of highly sensitive data on the network
Presence of multiple device types, such as IP phones and LAN access points
These new d emand s are contending fo r resources w ith ma ny existing mission-critical a pplicatio ns. As a result, IT
professionals must view the edge of the network a s critical to effectively ma nage the delivery of informa tion a nd
applications.
As companiesincreasingly rely on the network as the strategic businessinfrastructure, it is moreimportant than ever
to ensure their high availability, security, scalability, and control. By adding Cisco intelligent functions to the wiring
closet, customers can no w d eploy netw ork-w ide intelligent services that a dd ress these requirements in a consistent
w ay, from t he desktop to the core and thro ugh the WAN.
With C isco Ca talyst sw itches, C isco enables companies to realize the full benets of ad ding intelligent services into
their netw orks. Ca pabilities that ma ke the netw ork infrastructure highly a vailable to a ccommoda te time-critical
needs, scalable to accommodate growth, secure enough to protect condential information, and capable of
differentiating and controlling trafc ows are critical to further optimizing network operations.
Network Security Through Advanced Security Features
C isco Ca ta lyst 2950 Series sw itches off er enha nced dat a security through several security feat ures. These
features allow customers to enhance LAN security with ca pabilities to secure netwo rk mana gement traf c
through the protection of passw ords and con guration informat ion; to provide options for netw ork security
based on users, ports, and M AC ad dresses; and to enable more immediate reactions to intruder and ha cker
detection. These enhancements are available free of cha rge by dow nloading t he latest softw are release for the
Cisco Ca talyst 2950 Series.
SecureShell version 2 (SSHv2)a nd Simple Network Management Protocol version 3 (SNMPv3) protects information
from eavesdropping or being tampered w ith by encrypting information being passed on the netwo rk, thereby
guarding a dministrative informa tion. Private VLAN Edge isolates ports on a sw itch, ensuring that tra f c travels
directly from theentry point to theaggregat ion devicethrough a virtual path and cannot be directed to another port .
Local Prox y Address Resolution Pro tocol (ARP) w orks in conjunction w ith Private VLAN Edg e to minimize
broadcasts and ma ximize available bandwidth.
Port-based Access Control Parameters (ACPs) restrict sensitive portions of the network by denying packets based
on source and d estination M AC ad dresses, IP ad dresses, or TCP/UD P ports. ACP lookups are done in hardw are;
therefore, forw arding performance is not compromised w hen implementing this type of security in the netwo rk.In add ition, Time-based Access Co ntrol Lists (ACLs allow con guration of d ifferentiated services based o n time
periods. ACLs can a lso be applied to lter tra f c based on D ifferentiated Services Code Point (D SCP) values. Port
security provides another means to ensure that the a ppropriate user is on the netw ork, by limiting access based o n
MAC add resses.
For authentication of users w ith a Terminal Access Controller AccessC ontrol System (TACACS+ ) or RADIUS server,
802.1x provid es port-level security. 802.1x, in conjunction w ith a R ADIUS server, allow s for dyna mic port-based
user authentication. 802.1x-based user a uthentication can be extended to dyna mically assign a VLAN ba sed o n a
-
8/12/2019 Gabriel Catalyst2950
4/18
Cisco Systems, Inc.All contents are Copyright 19922003 Cisco Systems, Inc. All rights reserved. Important Notices and Privacy Statement.
Page 4 of 18
specic user, regardless of where they connect on the network. This intelligent adaptability allows ITdepartments to
offer greater exibility and mobility to their stratied user populations. By combining access control and user proles
with secure network connectivity, services, and applications, enterprises can more effectively manage user mobility
and drastically reduce the overhead a ssociated w ith granting a nd ma naging a ccess to network resources.
With multilayer C isco C ata lyst 2950 Series sw itches, netwo rk mana gers can implement high levels of console
security. M ultilevel access security on t he switch co nsole and t he Web-ba sed mana gement interfa ce prevent
unauthorized users from a ccessing or a ltering switch con gurations. TACACS+ or R ADIUS authentication enables
centralized accesscontrol of the switch and restricts unauthorized users from altering the conguration. Security can
be deployed thro ugh Cisco C MS Softw are security w izards, w hich ease the deployment of security features that
restrict user a ccess to a server, a portion o f the netw ork, or access to t he network.
Network Control Through Advanced Quality of Service and Rate Limiting
The Cisco C ata lyst 2950 Series offers superior, highly gra nular Q oS based on Layer 2 to 4 informa tion, helping toensure that netw ork tra f c is classied a nd prioritized, and that congestion is avoid ed in the best possible manner.
Congurat ion of QoS isgreat ly simplied through automatic QoS (auto-QoS), a feature that detects Cisco IP phones
and automatically congures the switch for the appropriate classication and egress queuing. This optimizes trafc
prioritization and network availability without the challenge of a complex conguration.
C isco Ca ta lyst 2950 Series switches can cla ssify, reclassify, police (determine if the packet is in or out of
predetermined pro les and affect a ctions on the packet), and ma rk or d rop the incoming packets before the packet
is placed in t he shared buffer. Pa cket classication allow s the network elements to discriminate between various
trafc ows and to enforce policies based on Layer 2 and Layer 3 QoS elds.
To implement QoS, theseswitches rst identify trafc ow s, or packet groups, and classify or reclassify thesegroups
using the Diff Serv Cod e Point (DSC P) eld in the IP packet an d/or the 802.1p class of service (CoS) eld in the
Ethernet packet. Classication and reclassication can also be based on criteria as specic as the source/destination
IP ad dress, source/destinat ion M AC ad dress, or the Layer 4 Transmission C ont rol Pro toco l (TC P)/User Da ta gra m
Protocol (UDP) ports. At the ingress (incoming port) level, the Catalyst switches also perform policing and marking
of the packet.
After the packet goes through classication, policing, a nd ma rking, it is assigned t o the a ppropriate queue before
exiting the switch. C isco C ata lyst 2950 Series sw itches support fo ur egress (outgoing port) q ueues per port, w hich
allow s the netw ork ad ministrato r to be more discriminating and specic in a ssigning priorities for the various
applica tions on t he LAN. At the egress level, the swit ch performs scheduling, w hich is an a lgorit hm (process) that
determines the order in w hich the q ueues are processed. The sw itches support Weighted R ound Ro bin (WRR )
scheduling or strict priority scheduling. The WRR scheduling algorithm ensures that lower-priority packets are not
entirely starved for b andw idth a nd a re serviced w ithout compromising the priority settings administered by thenetwo rk mana ger. Strict priority scheduling ensures that the highest priority pa ckets w ill alw ays get serviced a head
of a ll other traf c, and that the other three queues will be serviced using WRR best effort.
These features allow network administrators to prioritize mission-critical and/or bandw idth-intensive traf c, such as
enterprise resource planning (ERP) (Ora cle, SAP, an d so on ), voice (IP telephony t raf c), and C AD/C AM o ver less
time-sensitive applications such as FTP or e-mail (Simple Mail Transport Protocol [SMTP]). For example, it would
be highly undesirable to have a large le download destined to one port on a wiring closet switch and have quality
-
8/12/2019 Gabriel Catalyst2950
5/18
Cisco Systems, Inc.All contents are Copyright 19922003 Cisco Systems, Inc. All rights reserved. Important Notices and Privacy Statement.
Page 5 of 18
implications, such as increased latency in voice traf c, destined t o a nother port on this sw itch. This condition is
avoided by ensuring that voice traf c is properly classi ed and prioritized throughout the netwo rk. Other
applications, such as Web brow sing, can be treated as low -priority and handled on a b est-effort ba sis.
Cisco C ata lyst 2950 Series switches are capab le of allocating b andw idth ba sed on several criteria, including MAC
source/destinat ion a dd ress, IP source/destinat ion a dd ress, and TC P/UD P port number. Ban dw idth a llocat ion is
essential in netw ork environments requiring service-level agr eements, or w hen it is necessary f or the netw ork
mana ger to control t he bandw idth given to certain users. Cisco Ca talyst 2950 Series switches support up to six
policers per Fast Ethernet port and up to 60 policers on a Gigabit Ethernet port. Thisgives thenetwork administrator
granular control of LAN bandw idth.
Network Availability
To provid e ef cient use of resources for band w idth-intensive applica tions like multica sts, Cisco Ca ta lyst 2950
Series Intelligent Ethernet Switches support Internet G roup M ana gement Pro tocol Version 3 (IGM Pv3) snoopingin hardw are. Through the support and conguration of IG MP snooping through Cisco C MS Softw are, Cisco
Ca talyst 2950 Series switches deliver outstand ing performance and ease of use in ad ministering and ma naging
multicast applications on the LAN.
TheIG MPv3 snooping featureal lows theswitch to l isten in on theIGM P conversat ion between hosts and routers.
When a swi tch hearsan IGMP jo in request f rom a host fo r a g iven mul ticast g roup, the swi tch adds thehost s por t
number to the Group Dest ina tion Address (GD A) li st fo r tha t g roup . And, when the swi tch hearsan IGMP leave
request, it removes the hosts port from the C ontent Addressable M emory (CAM) ta ble entry.
PVST+ allows users to implement redundant uplinks while also distributing trafc loads across multiple links. This
is not possiblew ith standard Spanning-Tree Protocol implementations. Cisco UplinkFast technology helps to ensure
immediatetransfer to the secondary uplink; much better than the traditional 30-to-60 second convergence time. This
is yet anot her enhancement of the Spanning Tree Protocol implementatio n. An a dditiona l feature tha t enhances
performanceis Voice VLAN. Thisfeature allows network administratorsto assign voice trafc to a VLAN dedicated
to IP telephonysimplifying phone installations and providing easier netw ork traf c administration a nd
troubleshooting.
Multicast VLAN R egistration (MVR) is designed for a pplications using w ide-scale deployment of multicast traf c
across an Ethernet ring-based service provider network (for example, the broadcast of multiple television channels
over a service-provider network). M VR a llows a subscriber on a po rt to subscribe and unsubscribe to a multicast
stream on the netw ork-w ide multicast VLAN.
Network Management
Cisco Cluster Management Suite (CMS Software is Web-based and embedded in Cisco Catalyst 3750, 3550, 2970,2950, 2940, 3500 XL, 2900 XL, a nd 2900 LRE X L switches. Through C isco Sw itch Clustering technology, users
access Cisco CMS Softwarew ith any standard Web browser to manage up to 16 of these switches at once, regardless
of their geographic proximitywith the opt ion of using a single IP address for the ent ire cluster i f desired . With the
addition of Cisco Catalyst 3550 switches, Cisco CMS Software now extends beyond routed boundaries for even
more exibility in ma naging a Cisco cluster.
-
8/12/2019 Gabriel Catalyst2950
6/18
Cisco Systems, Inc.All contents are Copyright 19922003 Cisco Systems, Inc. All rights reserved. Important Notices and Privacy Statement.
Page 6 of 18
Cisco C MS Sof tw are provides an integrated mana gement interface for delivering intelligent services, such as
multilayer switching, QoS, multicast, and security ACLs. Cisco CMS Software allows administrators to take
advantage of benets formerly reserved for only the most advanced networks without having to learn the CLI, or
even the details of the technology.
The new Cisco C MS Softw are G uide Mod e leads the user step-by-step through the cong uration o f a dvanced
features and provides enhanced online help for context-sensitive assistance. In addition, Cisco AVVID (Architecture
for Voice, Video and Integrated Data) Wizards provide automated congurat ion of the switch to optimally support
video streaming or video conferencing, voice over IP (VoIP), and mission-critical applications. These Wizards can
save hours of time for netw ork ad ministrat ors, eliminate human errors, and ensure that the congura tion of t he
switch is optimized fo r these applications.
Cisco C MS Soft w are supports stand ards-based connectivity options such as Ethernet, Fast Ethernet, Fast
EtherChannel , G igabit Ethernet, and G igabit EtherCha nnel connectivity. Because Cisco Switch C lustering
technology is not limited to a single stack of switches, C isco C MS Softw are expands the traditiona l cluster domain
beyond a single wiring closet and saves time and effort fo r netwo rk administrators.
Cisco Catalyst 2950 Series switches can be congured ei ther as command or member switches in a Cisco switch
cluster. Cisco CMS Software also allows the network administrator to designate a standby or redundant command
switch , which takes the commander dut ies should the primary command switch fail . Other key features include the
ability to congure multiple ports and switches simultaneously, to perform software updatesa cross the entire cluster
at once, and to clone congurations to other clustered switches for rapid network deployments. Bandwidth graphs
and l ink reports provide useful d iagnost ic information , and the topology map gives network administrators a quick
view of the network status.
In addit ion to Cisco CMS Software, Cisco Catalyst 2950 Series switches provide extensive management tools using
Simple Netwo rk Ma nagement Protocol (SNMP ) netw ork ma nagement platforms such as CiscoWorks .Cisco Catalyst 2950 Series switches deliver a comprehensive set of management tools to provide the required
visibility and control in the network. Managed with CiscoWorks, Cisco Catalyst switches can be congured and
mana ged to deliver end-to-end d evice, VLAN, traf c, and policy mana gement. C oupled w ith C iscoWorks, Cisco
Resource Ma nager Essentials, a Web-based mana gement to ol, o ffers automa ted inventory collection, softw are
deployment, easy tracking of network changes, views into device availability, and quick isolation of error conditions.
Cisco Express Setup is a new feature that simplies initial con guration o f a switch. Users now ha ve the option to
set up the switch through a Web browser, el iminat ing the need for more complex terminal emulation programs and
know ledge of the C LI. C isco Express Setup reduces the cost of deployment by enab ling less-skilled personnel to
quickly and simply set up switches.
-
8/12/2019 Gabriel Catalyst2950
7/18
Cisco Systems, Inc.All contents are Copyright 19922003 Cisco Systems, Inc. All rights reserved. Important Notices and Privacy Statement.
Page 7 of 18
Pro d u c t Fea t u re s an d Ben e f i t s
Feature Benef it
Availability
Superiorredundancyfor faultbackup
IEEE 802.1D Spanning- Tree Protocol support for redundant backbone connections and loop-freenetworks simplies network conguration and improves fault tolerance.
Support for Cisco Spanning- Tree Protocol enhancements such as UplinkFast, BackboneFast, andPortFasttechnologies helps to ensure quick fail-over recovery,enhancing overall network stabilityand availability.
IEEE 802.1w Rapid Spanning- Tree Protocol (RSTP) provides rapid convergence of the spanningtree, independent of spanning-tree timers.
Cisco CrossStack UplinkFast technology extends UplinkFast to a stack to ensure quick fail-overrecovery, enhancing network stability and availability.
Support for Ciscos optional, 675-watt redundant AC power system provides a backup power
source for up to four units or six units, respectively, for improved fault tolerance and networkuptime. Redundant stacking connections provide support for a redundant loopback connection for top
and bottom switches in an independent stack backplane cascaded conguration. Command switch redundancy enabled in the Cisco Cluster Management Suite (CCMS) Software
allows customers to designate a backup command switch that takes over cluster managementfunctions if the primary command switch fails.
Provides unidirectional linkdetection (UDLD) and AggressiveaggressiveUDLD for detecting anddisabling unidirectional links on ber-optic interfaces caused by incorrect ber-optic wiring orport faults.
IntegratedCisco IOSSoftwarefeatures
forbandwidthoptimization
Bandwidth aggregation up to 4 Gbps (two ports full duplex) through Gigabit EtherChanneltechnology and up to 16 Gbps (eight ports full duplex) through Fast EtherChannel technologyenhances fault tolerance and offers higher-speed aggregated bandwidth between switches, torouters and individual servers. Port Aggregation Protocol (PAgP) is available to simplify
conguration. VLAN1 minimization allows VLAN1 to be disabled on any individual VLAN trunk link Per-port broadcast, multicast, and unicast storm control prevent faulty end stations from
degrading overall systems performance. Per virtual LAN (VLAN) Spanning Tree Plus (PVST+allows for Layer 2 load sharing on redundant
links, to efciently use the extra capacity inherent in a redundant design. IEEE 802.1s Multiple Spanning Tree Protocol (MSTP) allows a spanning-tree instance per VLAN,
enabling Layer 2 load sharing on redundant links. VLAN Trunking Protocol (VTP) pruning limits bandwidth consumption on VTP trunks by ooding
broadcast trafc only on trunk links required to reach the destination devices. Dynamic TrunkingProtocol (DTP) enables dynamic trunk conguration across all ports in the switch.
Internet Group Management Protocol version 3 (IGMPv3) snooping provides for fast client joinsand leaves of multicast streams, and limits bandwidth-intensive video trafc to only therequestors. Multicast VLAN Registration MVR, IGMP ltering, and fast-join and immediate leave
are available as enhancements. The number of IGMP groups can be limited with IGMP throttling. MVR continuously sends multicast streams in a multicast VLAN while isolating the streams from
subscriber VLANs for bandwidth and security reasons. Supports additional frame formats: Ethernet II (tagged and untagged) and 802.3 (Subnetwork
Access Protocol [SNAP] encapsulated tagged and untagged frames).
-
8/12/2019 Gabriel Catalyst2950
8/18
Cisco Systems, Inc.All contents are Copyright 19922003 Cisco Systems, Inc. All rights reserved. Important Notices and Privacy Statement.
Page 8 of 18
Security
Network-securityfeatures
Filtering of incoming trafc ows based on Layer 2, Layer 3 or Layer 4 access control parameters(ACPs) prevents unauthorized data ows.
The following Layer 2 ACPs or a combination can be used for security classication of incomingpackets: source Media Access Control (M AC) address, destination MAC address, and 16-bitEthertype.
The following Layer 3 and Layer 4 elds or a combination can be used for security classicationof incoming packets: source/destination IP address, TCP source/destination port number, UserDatagram Protocol (UDP) source, or destination port number. ACLs can also be applied to lter
based on DSCP-values. Time-based ACLs allow conguration of differentiated services based on time-periods. Private VLAN edge provides security and isolationbetween ports on a switch, ensuring that voice
trafc travels directly from its entry point to the aggregation device through a virtual path andcannot be directed to a different port.
Support for the 802.1x standard allows users to be authenticated regardless of which LAN portthey are accessing, and provides unique benets to customers who have a large base of mobile(wireless) users accessing the network. 802.1x with VLAN assignment allows a dynamic VLAN assignment for a specic user
regardless of where the user is connected. 802.1x with voice VLAN to permit an IP phone access to the voice VLANirrespective of the
authorized or unauthorized state of the port. 802.1x with port security for authenticating the port and managing network access for all M AC
addresses, including that of the client.
SSHv2 and SNMPv3 provide network security by encrypting administrator trafc during Telnetand SNMP sessions. SSHv2 and the crypto version of SNMPv3 require a special crypto softwareimage due to US export restrictions
Port Security and unicast MAC ltering secures the access to a port based on MAC addresses . The aging feature of port security removes the MAC address from the switch after a specictimeframe to allow another device to connect to the same port. Unicast MAC ltering allowsnon-IP packets to be ltered as well.
With unknown unicast/multicast port blocking, the switch will not ood packets with unknowndestination M AC addresses to all Ethernet ports. Unknown unicast/multicast port blockingdisables ooding on a per-portbasis. (Catalyst 2950G-24, 2950G-48, 2950G-12, 2950G-24-DC only)
MAC Address Notication allows administrators to be notied of new users added or removedfrom the network.
Spanning-tree root guard (STRG) prevents edge devices not in the network administrator'scontrol from becoming Spanning-Tree Protocol root nodes.
The Spanning-Tree Protocol PortFast/bridge protocol data unit (BPDU) guard feature disablesaccess ports with SpanningTree Protocol PortFastenabled upon reception of a BPDU, andincreases network reliability, manageability, and security.
Multilevel security on console access prevents unauthorized users from altering the switchconguration.
TACACS+and RADIUS authentication enable centralized control of the switch and restrictunauthorized users from altering the conguration.
The user-selectable address-learning mode simplies conguration and enhances security. Trusted Boundary provides the ability to trust the QoS priority settings if an IP phone is present,
and to disable the trust settings in the event that the IP phone is removed. This prevents a rogueuser from overriding prioritization policies in the network.
IGMP Filtering provides multicast authentication by ltering out nonsubscribers and limits thenumber of concurrent multicast streams available per port.
Support for dynamic VLAN assignment through implementation of VLAN Membership PolicyServer (VMPS) client provides exibility in assigning ports to VLANs. Dynamic VLAN enables fastassignment of IP address.
Cisco CMS Software Security Wizards ease the deployment of security features for restrictinguser access to a server, a portion of the network or access to the network.
Feature Benef it
-
8/12/2019 Gabriel Catalyst2950
9/18
-
8/12/2019 Gabriel Catalyst2950
10/18
Cisco Systems, Inc.All contents are Copyright 19922003 Cisco Systems, Inc. All rights reserved. Important Notices and Privacy Statement.
Page 10 of 18
Management
Superiormanageability
An embedded Remote Monitoring (RMON) software agent supports four RMON groups (history,statistics, alarms, and events) for enhanced trafc management, monitoring, and analysis.
The switch supports all nine RMON groups through the use of a Cisco SwitchProbe Analyzer(Switched Port Analyzer [SPAN]) port, permitting trafc monitoring of a single port, a group of ports, or the entire switch from a single network analyzer or RM ON probe.
A SPAN port monitors trafc of a single port from a single network analyzer or RMON probe. RemoteSPAN (RSPAN) allows networkadministrators to locally monitor ports in a Layer 2 switch
network from any other switch in the same network. Bidirectional RSPAN is supported when theCatalyst 2950 is a source switch, but not a intemediate or destination switch.
DHCP Snooping Option 82 enables more sophisticated IP address assignment by the DHCPserver.
The Domain NameSystem (DNS) provides IP address resolution with user-dened device names.
Trivial File Transfer Protocol (TFTP) reduces the cost of administering software upgrades bydownloading from a centralized location.
Network Timing Protocol (NTP) provides an accurate and consistent time stamp to all switcheswithin the intranet.
Layer 2 traceroute eases troubleshooting by identifying thephysical path thata packet takes fromthe source device to a destination device.
Crash information support enables switches to generate a crash le for improvedtroubleshooting.
Show-interface-capabilities provide information on conguration capabilities of any interface. RTTMON-MIB allows users to monitor network performancebetween a Cisco Catalystswitch and
a remote device. Multifunction LEDs per port for port status, half-duplex/full-duplex, 10BASE-T/100BASE-TX/
1000BASE-T indication, as well as switch-level status LEDs for system, redundant power supply,and bandwidth utilization, provide a comprehensive and convenient visual management system.
Feature Benef it
-
8/12/2019 Gabriel Catalyst2950
11/18
Cisco Systems, Inc.All contents are Copyright 19922003 Cisco Systems, Inc. All rights reserved. Important Notices and Privacy Statement.
Page 11 of 18
Cisco ClusterManagementSuite (CMS)Software
Cisco CMS Software allows the user to manage up to 16 interconnected Cisco Catalyst 3750,3550, 2970, 2950, 2940, 3500 XL, 2900 XL, and 2900 LRE XL switches without the limitation of being physically located in the same wiring closet, and with the option of using a single IPaddress for the entire cluster if desired. Full backward compatibility helps to ensure that anycombination of the above switches can be managed with a Cisco Catalyst 2950 Series switch.
Cisco Architecture for Voice, Video, and Integrated Data (AVVID) wWizards use just a few userinputs to automatically congure the switch to optimally handle different types of trafc: voice,video, multicast, and/or high-priority data.
A security wizard is provided to restrict unauthorized access to servers and networks, and torestrict certain applications on the network.
One-click software upgrades can be performed across the entire cluster simultaneously, andconguration cloning enables rapid deployment of networks.
Cisco CMS Software has been extended to include multilayer feature congurations such asACPs and QoS parameters.
Cisco CMS Software Guide Mode assists users in the conguration of powerful advancedfeatures by providing step-by-step instructions.
Cisco CMS Software provides enhanced online help for context-sensitive assistance. Easy-to-use GUI provides both a topology map and front-panel view of the cluster. Multidevice and multiport conguration capabilities allow network administrators to save time
by conguring features across multiple switches and ports simultaneously. Ability to launch Web-based management for a Cisco Aironet Wireless Access Point by simply
clicking on its icon in the topology map. User-personalized interface allows users to modify polling intervals, table views, and other
settings within Cisco CMS Software, and to retain these settings the next time they useCisco CMS.
Alarm notication provides automated e-mail notication of network errors and alarmthresholds.
Support forCiscoWorks Manageable through CiscoWorks network management software on a per-port and per-switchbasis, providing a common management interface for Cisco routers, switches, and hubs. Simple Network Management Protocol (SNMP v1, v2, and v3 (noncryptographic) and Telnet
interface support delivers comprehensive in-band management, and a CLI-based managementconsole provides detailed out-of-band management.
Cisco Discovery Protocol Versions 1 and 2 enable a CiscoWorks network management stationto automatically discover the switch in a network topology.
Supported by the CiscoWorks 2000 LAN Management Solution.
Feature Benef it
-
8/12/2019 Gabriel Catalyst2950
12/18
-
8/12/2019 Gabriel Catalyst2950
13/18
Cisco Systems, Inc.All contents are Copyright 19922003 Cisco Systems, Inc. All rights reserved. Important Notices and Privacy Statement.
Page 13 of 18
P r o du c t S p e c i f i c a t i o n s
Feature Desc ription
Performance 13.6 Gbps switching fabric Cisco Catalyst 2950G-48: 13.6 Gbps maximum forwarding bandwidth Cisco Catalyst 2950G-24: 8.8 Gbps maximum forwarding bandwidth Cisco Catalyst 2950G-24-DC: 8.8 Gbps maximum forwarding bandwidth Cisco Catalyst 2950G-12: 6.4 Gbps maximum forwarding bandwidth Cisco Catalyst 2950T-24: 8.8 Gbps maximum forwarding bandwidth Cisco Catalyst 2950C-24: 5.2 Gbps maximum forwarding bandwidth(Forwarding rates based on 64-byte packets.) Cisco Catalyst 2950G-48: 10.1 Mpps wire-speed forwarding rate Cisco Catalyst 2950G-24: 6.6 Mpps wire-speed forwarding rate Cisco Catalyst 2950G-24-DC: 6.6 Mpps wire-speed forwarding rate
Cisco Catalyst 2950G-12: 4.8 Mpps wire-speed forwarding rate Cisco Catalyst 2950T-24: 6.6 Mpps wire-speed forwarding rate Cisco Catalyst 2950C-24: 3.9 Mpps wire-speed forwarding rate 8-MB memory architecture shared by all ports Up to 16 MB SDRAM and 8 MB Flash memory Congurable up to 8000 MAC addresses Congurable maximum transmission unit (MTU) of up to 1530 bytes (Cisco Catalyst 2950G switches only)
-
8/12/2019 Gabriel Catalyst2950
14/18
Cisco Systems, Inc.All contents are Copyright 19922003 Cisco Systems, Inc. All rights reserved. Important Notices and Privacy Statement.
Page 14 of 18
Management BRIDGE-MIB CISCO-BULK-FILE-MIB CISCO-2900-MIB CISCO-CDP-MIB CISCO-CLASS-BASED-QOS-MIB CISCO-CLUSTER-MIB CISCO-CONFIG-COPY-MIB CISCO-CONFIG-MAN-MIB CISCO-ENVMON-MIB CISCO-FLASH-MIB CISCO-FTP-CLIENT-MIB CISCO-IMAGE-MIB CISCO-IPMROUTE-MIB CISCO-MAC-NOTIFICATION-MIB CISCO-MEMORY-POOL-MIB CISCO-PAGP-MIB CISCO-PING-MIB CISCO-PROCESS-MIB CISCO-PRODUCTS-MIB CISCO-RTTMON-MIB CISCO-SMI CISCO-STACKMAKER-MIB CISCO-STP-EXTENSIONS-MIB CISCO-SYSLOG-MIB CISCO-TC
CISCO-TCP-MIB CISCO-VLAN-MEMBERSHIP-MIB CISCO-VTP-MIB ENTITY-MIB IANAifType-MIB IF-MIB (RFC 1573) OLD-CISCO-CHASSIS-MIB OLD-CISCO-CPU-MIB OLD-CISCO-INTERFACES-MIB OLD-CISCO-IP-MIB OLD-CISCO-MEMORY-MIB OLD-CISCO-SYSTEM-MIB OLD-CISCO-TCP-MIB
OLD-CISCO-TS-MIB RFC1213-MIB (MIB-II) RFC1398-MIB (ETHERNET-MIB) RMON-M IB (RFC 1757) RS-232-MIB SNMPv2-MIB SNMPv2-SMI SNMPv2-TC TCP-MIB UDP-MIB
Feature Desc ription
-
8/12/2019 Gabriel Catalyst2950
15/18
-
8/12/2019 Gabriel Catalyst2950
16/18
Cisco Systems, Inc.All contents are Copyright 19922003 Cisco Systems, Inc. All rights reserved. Important Notices and Privacy Statement.
Page 16 of 18
Powerconnectors
Customers can providepower to a switch by using the internal power supply, the Cisco RPS 675. The connectors are located at the back of the switch.Internal power supply connector: The internal power supply is an autoranging unit. The internal power supply supports input voltages between 100 and 240 VAC. Use the supplied AC power cord to connect the AC power connector to an AC power outlet.Cisco RPS 675 Connector: Theconnector offers connection for an optional Cisco RPS 675 thatuses AC input and supplies
DC output to the switch. The connector offers a 675-watt redundant power system that supports six external network
devices and provides power to one failed device at a time. The connector automatically senses when the internal power supply of a connected device
fails and provides power to the failed device, preventing loss of network trafc.
Attach only the Cisco RPS 675 (model PWR675-AC-RPS-NI=) to the redundant power supplyreceptacle with this connector.
Indicators Per-port status LEDs: link integrity, disabled, activity, speed, and full-duplex indications. System status LEDs: system, RPS, and bandwidth utilization indications.
Environmentalranges
Operating temperature: 32 to 113F (0 to 45 C) Storage temperature: -13 to 158 F (-25 to 70 C) Operating relative humidity: 10 to 85 percent (noncondensing) Operating altitude: Up to 10,000 ft (3000 m) Storage altitude: Up to 15,000 ft (4500 m) Not intended for use on top of desktops or in open ofce environments
Powerrequirements
Power consumption: 30W maximum, 102 BTUs per hour (Cisco Catalyst 2950T-24, 2950C-24,2950G-12, and 2950G-24)
Power consumption: 45W maximum, 154 BTUs per hour (Cisco Catalyst 2950G-48) AC input voltage: 100 to 127, 200 to 240 VAC (autoranging) AC input frequency: 47 to 63 Hz DC input voltages for Cisco RPS 675: +12V @ 4.5A
Acoustic noise ISO 7770, bystander position, operating to an ambient temperature of 30 C: WS-C2950-24, WS-C2950-12, WS-C2950C-24, and WS-C2950T-24: 46 dBa WS-C2950G-12, WS-C2950G-24: 46 dBa WS-C2950G-48: 48 dBa
Predicted meantime betweenfailure (MTBF)
482,776 hours (Cisco Catalyst 2950G-12) 468,884 hours (Cisco Catalyst 2950G-24) 479,086 hours (Cisco Catalyst 2950G-24-DC) 159,026 hours (Cisco Catalyst 2950G-48) 297,144 hours (Cisco Catalyst 2950T-24) 268,292 hours (Cisco Catalyst 2950C-24)
Fiber portspecicationsfor CiscoCatalyst2950C-24 Switch
Fiber-port power levels: Optical transmitter wavelength: 1300 nm Optical receiver sensibility: -14 dBm2 Optical transmitter power: -19dBm to -14 dBm Transmit: -19dBm to -14 dBm
Feature Desc ription
-
8/12/2019 Gabriel Catalyst2950
17/18
Cisco Systems, Inc.All contents are Copyright 19922003 Cisco Systems, Inc. All rights reserved. Important Notices and Privacy Statement.
Page 17 of 18
C i s c o S e r v i c e a n d S u p p o r t
The services and support programs described in Table 2 are available as part of the Cisco Desktop Switching Serviceand Support solution, a nd a re available directly from C isco a nd thro ugh resellers.
Regulatory Agency Approvals
Safetycertications
UL 1950/CSA 22.2 No. 950 IEC 950-EN 60950 AS/NZS 3260, TS001 CE Marking
Electromagneticemissionscertications
EN 55022: 1998 Class A (CISPR22 Class A) EN 55024: 1998 (CISPR24) VCCI Class A AS/NZS 3548 Class A CE Marking CNS 13438 BSMI Class A MIC
Network EquipmentBuildingStandards(NEBS) (forWS-C2950G-24-EI-DC only)
Bellcore GR-1089-CORE GR-63-CORE SR-3580 Level 3
Warranty Limited lifetime warranty
Service and S upport Features Benef its
Advanced Services
Total ImplementationSolutions (TIS) availabledirect from Cisco
Packaged TotalImplementation Solutions(Packaged TIS) availablethrough resellers
Project management Site survey, conguration deployment Installation, text, and cutover Training Major MAC Design review and product staging
Supplements existing staff Ensures that functions meet client
needs Mitigates risk
Technical Support Services
Cisco SMARTnet
and SMARTnetOnsite availabledirect from Cisco
Packaged Cisco SMARTnetsupport availablethroughresellers
24x7 access to software updates Web access to technical repositories Telephone support through the Cisco
Technical Assistance Center (TAC) Advance replacement of hardware
parts
Enables proactive or expedited issueresolution
Lowers cost of ownership by usingCisco expertise and knowledge
Minimizes network downtime
Feature Desc ription
-
8/12/2019 Gabriel Catalyst2950
18/18