Port monitoring for network threats
: provides sampled port traffic using sFlow technology to the HP Network Immunity
Manager (NIM) application for Network Behavior Anomaly Detection (NBAD) analysis to detect and mitigate threats at the port
where the threat originated
Source-port filtering
: allows only specified ports to communicate with each other
RADIUS/
: eases switch management security administration by using a password authentication server
Secure shell
: encrypts all transmitted data for secure remote CLI access over IP networks
Secure FTP
: allows secure file transfer to and from the switch; protects against unwanted file downloads or unauthorized
copying of a switch configuration file
Secure Sockets Layer
(SSL): encrypts all HTTP traffic, allowing secure access to the browser-based management GUI in the
switch
Port security
: allows access only to specified MAC addresses, which can be learned or specified by the administrator
MAC address lockout
: prevents particular configured MAC addresses from connecting to the network
Switch management logon security
: helps secure switch CLI logon by optionally requiring either RADIUS or
authentication
STP BPDU port protection
: blocks Bridge Protocol Data Units (BPDUs) on ports that do not require BPDUs, preventing forged
BPDU attacks
USB Secure Autorun
(requires HP PCM+): deploys, diagnoses, and updates a switch using a USB flash drive; works with a secure
credential to prevent tampering
STP Root Guard
: protects the root bridge from malicious attacks or configuration mistakes
Custom banner
: displays security policy when users log in to the switch
Per-port broadcast throttling
: selectively configures broadcast control on heavy traffic port uplinks
Convergence
IP multicast snooping and data-driven IGMP
: automatically prevent flooding of IP multicast traffic
LLDP-MED
(Media Endpoint Discovery): is a standard extension of LLDP that stores values for parameters such as QoS and VLAN
to automatically configure network devices such as IP phones
IEEE 802.1AB Link Layer Discovery Protocol
(LLDP): is an automated device discovery protocol that provides easy mapping of
network management applications
PoE and PoE+ allocations
: support multiple methods (automatic, IEEE 802.3at dynamic, LLDP-MED fine-grain, IEEE 802.3af
device class, or user specified) to allocate and manage PoE/PoE+ power for more efficient energy savings
Monitor and diagnostics
Port mirroring
: enables traffic on a port to be simultaneously sent to a network analyzer for monitoring
Warranty and support
Lifetime warranty
: for as long as you own the product with advance replacement and next-business-day delivery (available in
most countries)†
Electronic and telephone support
: limited electronic and telephone support is available from HP; to reach our support centers,
refer to
www.hp.com/networking/contact-support
; for details on the duration of support provided with your product purchase,
refer to
www.hp.com/networking/warrantysummary
Software releases
: to find software for your product, refer to
www.hp.com/networking/support
; for details on the software
releases available with your product purchase, refer to
www.hp.com/networking/warrantysummary
†HP warranty includes repair or replacement of hardware for as long as you own the product, with next business day advance
replacement (available in most countries). The disk drive included with HP AllianceOne Advanced Services and Services zl Modules, HP
Threat Management Services zl Module, HP AllianceOne Extended zl Module with Riverbed Steelhead, HP MSM765zl Mobility Controller
and HP Survivable Branch Communication zl Module powered by Microsoft Lync has a five-year hardware warranty. For details, refer to
QuickSpecs
HP 2910 al Switch Series
Overview
DA - 13280 North America — Version 20 — December 12, 2013
Page 4
