Cisco Catalyst Switches: F E ATU R E C OMPA R IS ON
L A N S W I T C H I N G F E AT U R E S
continued
Layer 3
continued
H/W-based Policy Routing IPv4
H/W-based Policy Routing IPv6
Multiprotocol Routing (IPX, AppleTalk)
Cisco Express Forwarding (CEF)
H/W FIB Entries
VRF Lite
I N T E G R AT E D S E C U R I T Y
Access Control Lists
Reflexive ACL
Port ACL
Time-based ACL
Router ACL
VLAN ACL
VACL with Redirect/Capture/
Logging of Denied Traffic
Context-based Access Control
H/W-based Access Control Entry (ACE) Counters
Order-dependent ACL Merge
Dedicated Hardware Resources
for Security ACLs
ACL Scalability (ACE entries)
Attack Mitigation
Control Plane Policing (Multiple CPU Rate Limiters)
IP Source Guard
DHCP Snooping/Option 82
Dynamic ARP Inspection
MAC Address Notification
Port Security
H/W-based uRFP Check
H/W-based MAC Learning
H/W-assisted MAC Aging
12
M O D U L A R S W I T C H E S
Catalyst 6500
Catalyst 4500
Catalyst 4900
•
•
•
•
•
•
•
•
•
•
up to 1,000,000
up to 128,000
up to 128,000
IP Services
IP Services
IP Services
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
*
*
•
•
•
•
•
•
32,000
32,000
32,000
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
F I X E D - C O N F I G U R AT I O N S W I T C H E S
Catalyst 3750
Catalyst 3560
Catalyst 2960
IP Services
IP Services
Advanced IP
Advanced IP
Services only
Services only
•
•
up to 20,000
up to 11,000
IP Services
IP Services
•
•
•
•
•
•
•
•
•
•
capture and
capture and
logging
logging
2,000
2,000
512
•
•
•
•
•
•
•
•
•
•
•
•
•
Catalyst
Catalyst 2950
Catalyst 2940
Express 500
EI only
•
300 ACP—EI only
•
SI Option 82 only
•
•
•
•
•
•
*As part of IP ACL in VLAN MAP but not for the entire VACL.