ZTE Confidential Proprietary
2013 ZTE CORPORATION. All rights reserved
3
ZXR10 5250 Product Description
2.3
POE Features
ZXR10 5250 series supports full-port POE and POE+ power supply, conforming to
802.3af and 802.3at standard. It is also compatible with PD equipment which doesn
’t
conform to 802.3af or 802.3at standard. The maximal power supply of POE is 15.4W and
the maximal power supply of POE+ is 30W.
The port supports time-sharing POE power supply configuration. It can automatically
forcefully shut down POE power supply of the electrical interface during the period when
power supply is unneeded.
2.4
Better video service experience
ZXR10 5250 supports MVR, provides various rules and channel combination, and
supports multicast QoS. It solves traffic engineering management problem brought by
multiple egress duplication of multicast services, optimizes delay, jitter and packet loss
problem of video flow, and reduces join-in and offline delay of users
’ video services. At
the same time, it supports multicast service access control, which guarantees security of
multicast service access and users
’ high-quality video service experience.
2.5
Perfect security design
The security design of ZXR10 5250 is based upon two aspects: one is to guarantee the
normal operation of the device, the other is to ensure the security of the data.
For self security design, some restrictions to peer-end broadcasting message, multicast
message, unknown unicast message. Therefore, these messages will have less impact
to CPU. For CPU, the device uses control plane security service to classify and control
the speed of the protocol messages that CPU needs to process. This mechanism makes
sure that the speed of the delivered the message for the protocol stacking is within a
proper range, which avoids the breakdown of CPU caused by exceeding messages.
Besides common user name and password management, ZXR10 5250 supports multiple
logins such as SSH to prevent the administrative users being spoofed.
For user data security, besides PVLAN service, ZXR10 5250 also uses DHCP snooping
plus IP source guard to make sure user
’s validity. For the messages which do not satisfy
bounding table, they will be discarded.
The device is also capable of DAI service. So that it can effectively restrict ARP-based
DOS attack. The device not only can discard arp message which does not accord with
the condition, but also can restrict the number of arp one port learns. This mechanism
successfully prevents equipment table entity from being occupied maliciously, which
makes sure other people can use the resource normally.
Содержание ZXR10 5250-28TC
Страница 1: ...ZXR10 5250 Product Description ...
Страница 2: ......