| PERFORMANCE |
- 64-Gbps nonblocking switch fabric
- Up to 3 Gbps of application switching throughput
- Up to 2 Gbps of SSL cryptographic throughput
|
| APPLICATION SWITCHING
AND LOAD BALANCING |
- Up to 3 Gbps of application switching throughput
- Up to 250,000 new Layer 4 through Layer 7 connections
per second
- Up to 2 million concurrent Layer 4 through Layer
7 connections per second
- Bidirectional application switching on HTTP header,
URI, cookie, payload, and content
- Client stickiness through switch-managed cookies
and the client source address and port
- Load balancing algorithms: weighted source address
hash, weighted random distribution, round robin,
least connections , where weighting can be statically
assigned or dynamically adjusted based on realtime
measurements of response times
- Load balancing of devices transparent to participating
end systems (caches and proxies)
- Bridge mode load balancing is supported for noninvasive
layer-3 drop-in deployments
|
| OPTIONAL VIRTUAL SWITCHING |
- Up to 10 virtual switches per system when using
Sun N2040V switches and Sun N2120V switches
- Dynamic allocation of switch resources into secure
partitions
|
| SSL ACCELERATION |
- Up to 2 Gbps symmetric key SSL cryptographic throughput
- Up to 12,500 new connections per second
- Up to 240,000 concurrent connections per second
- SSL 3.0, TLS 1.0 protocol support
- Client-side and server-side support
- Re-encryption for end-to-end security
- X.509 certificate support
|
| ACCESS CONTROL LISTS |
- Layer 3 - Layer 4: Filter by protocol, IP address,
port
- Layer 5 - Layer 7: Filter by URI, header, content
- Separate rule sets and routing domains for each
dynamic switching domain
|
| COMMON ATTACK PROTECTION |
- URL filtering to stop HTTP worms
- Rate and connection limiting to reduce flooding
- Frame filtering to filter frames for any "poison"
or unexpected data
- SYN Flood attack mitigation
- SYN cookie support to suppress programmatic TCP
static attacks
- SMURF and FRAGGLE attack nullification
- Common attack protection against the following:
- Land attack
- IP packets with multicast or broadcast source
IP address
- TCP server resource release
- TCP traffic filtering with SYN and FIN bits
set
- Packets with source/destination IP as a loop-back
address
- Ping of Death attack
- Fragmentation reassembly errors
- Source spoofed frames
|
| SECURITY SUPPORT |
- Solaris Secure Shell v2.0
- Secure Shell file transfer protocol
- HTTPS GUI
- TACACS+
- Radius
- SNMPv3
|
| MANAGEMENT SUPPORT |
- SNMP v1/v2c/v3
- HTTPS
- Telnet, SSH
- Industry-standard command line interface
- Configuration logging
- Multiple images
- Multiple syslog servers
|
| SYSTEM INTERFACES |
| Networking |
Sun N2040/N2040V switches:
- 40 10/100Base-T Ethernet ports
- Four SFF pluggable GbE ports
Sun N2120/N2120V switches:
- 12 SFF pluggable GbE ports
|
| Network Management |
DB-9
serial port, RJ-45 10/100 Ethernet port |
| POWER |
| Input Current |
- 10A at 115 VAC
- 5A at 230 VAC
- 90 to 135/180 to 265 VAC automatic select
- 47 Hz to 63 Hz
- Redundant power supplies
|
| ENVIRONMENT |
| Temperature |
Operating:
0° C to 40° C (32° F to 104° F)
Storage:
-30° C to 80° C (-22° F to 176° F) |
| Humidity |
Operating:
0% to 95% relative humidity, noncondensing |
| Heat output |
Maximum:
2050 BTU/hr, fully populated. |
| REGULATIONS |
| Meets or
exceeds the following requirements: |
| Safety |
CE,
CSA-C22.2, EN60950, IEC60950, UL60950 UL/CUL |
| RFI/EMI |
CE;
FCC Part 15, Subpart B, Class A limits; EN 55022:1998/CISPR
22 Class A; EN55022 Class A; Industry Canada ICES-003,
Class A limits; VCCI Class A |
| Immunity |
EN55024:1998 |
| FIPS 140-2 certified
cryptographic algorithms |
3DES,
DES, SA, SHA-1 |
| DIMENSIONS |
| Height |
8.89
cm (3.5 in.) |
| Width |
44.2
cm (17.4 in.) |
| Depth |
66.0
cm (26.0 in.) |
| Weight |
15.88
kg (35 lb) |
| Enclosure |
Fits
into a 2RU, 2- or 4-post, standard EIA/NEMA rack |
