|
Packet Forwarding
802.1D-1999 Ethernet bridging; 802.11-.802.3 bridging; 802.1Q VLAN tagging and
trunking; proxy ARP; IP packet steering-redirection
Wireless Networking
Wireless LAN: Supports 24 WLANs; multi-ESS/BSSID traffic segmentation; VLAN to ESSID mapping; auto assignment of VLANs (on RADIUS authentication); power save protocol polling; pre-emptive roaming; VLAN Pooling and dynamic VLAN adjustment; IGMP Snooping
Bandwidth management: Congestion control per WLAN; per user based on user count or bandwidth utilization; dynamic load balancing of AP300s and Adaptive APs in a cluster; bandwidth provisioning via AAA server
Layer 2 or Layer 3 deployment of thin access ports and Adaptive AP AP-51X1 802.11a/b/g and AP-7131 802.11a/b/g/n access points
Layer 3 Mobility (Inter-Subnet Roaming)
IPv6 client support
Thin Access Ports: Supports 6 “thin” 802.11a/b/g AP300 access points for L2 or L3 deployment per RFS4000 Switch/controller and 72 802.11a/b/g AP300s per cluster; Legacy support: AP100 for L2 deployments only
Adaptive AP: Supports adoption of 6 adaptive AP-51X1 802.11a/b/g and AP-7131 802.11a/b/g/n access points in adaptive mode per RFS4000 Switch/controller and 72 per cluster; multiple country configuration support; Legacy support: AP-4131 port conversion for L2 deployments only
Power-over-Ethernet: Integrated; up to a maximum of 90 watts for simultaneous operation
Radio frequency automatic channel select (ACS); Transmit power control management (TPC); Country code-based RF configuration; 802.11b, 802.11g, 802.11a, and 802.11n
Network Security
Role-based wired/wireless firewall (L2-L7) with stateful inspection for wired and wireless traffic; Active firewall sessions — 50,000 per RFS4000 Switch/controller and 600,000 per cluster; protects against IP Spoofing and ARP Cache Poisoning
Access Control Lists (ACLs): L2/L3/L4 ACLs
Wireless IDS/IPS: Multi-mode rogue AP detection, Rogue AP Containment, 802.11n Rogue Detection, Ad-Hoc Network Detection, Denial of Service protection against wireless attacks, client blacklisting, excessive authentication/association; excessive probes; excessive disassociation/deauthentication; excessive decryption errors; excessive authentication failures; excessive 802.11 replay; excessive crypto IV failures (TKIP/CCMP replay); Suspicious AP, Authorized device in ad-hoc mode, unauthorized AP using authorized SSID, EAP Flood, Fake AP Flood, ID theft, ad-hoc advertising Authorized SSID
Geofencing: Add location of users as a parameter that defines access control to the network
WIPS sensor conversion: Supported on the AP300 and the Adaptive AP-5131 and AP-7131
Anomaly Analysis: Source Media Access Control (MAC) = Dest MAC; Illegal frame sizes; Source MAC is multicast; TKIP countermeasures; all zero addresses
Authentication: Access Control Lists (ACLS); pre-shared keys (PSK); 802.1x/EAP—transport layer security (TLS), tunneled transport layer security (TTLS), protected EAP (PEAP); Kerberos Integrated AAA/RADIUS Server with native support for EAP-TTLS, EAP-PEAP (includes a built in user name/password database; supports LDAP), and EAP-SIM
Transport encryption: WEP 40/128 (RC4), KeyGuard, WPA—TKIP, WPA2-CCMP (AES), WPA2-TKIP
802.11w: Provides origin authentication, integrity, confidentiality and replay protection of management frames for Motorola’s AP300 access point
IPSec VPN gateway: Supports DES, 3DES and AES-128 and AES-256 encryption, with site-to-site and client-to-site VPN capabilities
Secure guest access (Hotspot provisioning): Local Web based authentication; URL redirection for user login; customizable login/welcome pages; support for external authentication/billing systems, usage-based charging
Wireless RADIUS Support (Standard and Motorola VendorSpecific Attributes): User Based VLANs (Standard) MAC Based Authentication (Standard) User Based QoS (Motorola VSA)Location Based Authentication (Motorola VSA) Allowed ESSIDs (Motorola VSA)
NAC support with third party systems from Microsoft and Symantec
|
System Resiliency & Redundancy
Active:Standby; Active:Active and N+1 redundancy with access port and MU load balancing; Critical resource monitoring
Virtual IP: Single virtual IP (per VLAN) for a switch/contoller cluster to use as the default gateway by mobile devices or wired infrastructure
SMART RF: Network optimization to ensure user quality of experience at all times by dynamic adjustments to channel and power (on detection of RF interference or loss of RF coverage/neighbor recovery)
Dual Firmware bank supports Image Failover capability
Real Time Locationing System (RTLS)
RSSI based triangulation for Wi-Fi assets
Tags supported: Ekahau, Aeroscout, Gen 2 Tags
RFID support: Compliant with LLRP protocol. Built-in support for the following Motorola RFID readers: fixed (XR440, XR450, XR480; mobile (RD5000) and handheld (MC9090-G RFID)
Optimized Wireless QoS
RF priority: 802.11 traffic prioritization and precedence
Wi-Fi Multimedia extensions: WMM-power save with TSPEC Admission Control; WMM U-APSD
IGMP snooping: Optimizes network performance by preventing flooding of the broadcast domain
SIP Call Admission Control: Controls the number of active SIP sessions initiated by a wireless VoIP phone
802.11k: Provides radio resource management to improve client throughput (11k client required)
Classification and marking: Layer 1-4 packet classification; 802.1p VLAN priority; DiffServ/TOS
System Extensibility
ExpressCard™ Slot: Driver support for 3G wireless cards for WAN backhaul
• AT&T (NALA) – Option GT Ultra Express
• Verizon (NALA) – Verizon Wireless V740 Express Card
• Vodaphone (EMEA) – Novatel Merlin XU870
• Vodaphone (EMEA) – Vodaphone E3730 3G Expresscard
• Telstra (Australia) – Telstra Turbo 7 series Expresscard (Aircard 880E)
• General Use (NALA/APAC) – Novatel Merlin XU870
Management
Command line interface (serial, telnet, SSH); secure Web-based GUI (SSL) for
the wireless switch and the cluster; SNMP v1/v2/v3; SNMP traps—40+ user
configurable options; Syslog; TFTP Client; secure network time protocol (SNTP);
text-based switch configuration files; DHCP (client/server/relay), switch autoconfiguration
and firmware updates with DHCP options; multiple user roles (for
switch access); MIBs (MIB-II, Etherstats, wireless switch specific monitoring and
configuration); Email notifications for critical alarms; MU naming capability
Physical Characteristics
Form factor: 1U Rack Mount Kit available
Dimensions: 1.75 in. H x 12 in. W x 10 in. D
44.45 mm H x 304.8 mm W x 254.0 mm D
Weight: 4.75 lbs./2.15 kg
Physical interfaces: 1x Uplink Port -10/100/1000 Cu/ Gigabit SFP interface, 5x 10/100/1000 Cu Ethernet Ports, 802.3af and 802.3at Draft
1x USB 2.0 Host
1x ExpressCard™ Slot
1x Serial Port (RJ45 style)
MTBF: >65,000 Hours
Power Requirements
AC input voltage: 100-240 VAC
Max AC input current: 3A
Input frequency: 47 Hz to 63 Hz
User Environment
Operating temperature: 32° F to 104° F /0° C to 40° C
Storage temperature: -40° F to 158° F/-40° C to 70° C
Operating humidity: 5% to 85% (w/o condensation)
Storage humidity: 5% to 85% (w/o condensation)
Heat dissipation: 95 BTU per hour
Regulatory
Product safety: UL / cUL 60950-1, IEC / EN60950-1
EMC compliance: FCC (USA), Industry Canada, CE (Europe), VCCI (Japan),
C-Tick (Australia/New Zealand)
Recommended Enterprise Mobility Services
Customer Services: Service from the Start Advance Exchange Support
|
