N3K C3172PQ 10GE Cisco Ethernet Switch Nexus 3172P Chassis 48 X SFP+ And 6 QSFP+ Ports Cisco Ethernet Switch​ Description The Cisco Nexus 3172PQ Switch is a dense, high-performance Layer 2 and 3 10- and 40-Gbps switch that is a member of the Cisco Nexus 3100 switches. The Nexus 3100 switches are the second-generation Cisco Nexus 3000 series switches and offers improved port density, scalability, and features compared to the first-generation switches. The Cisco Nexus 3172PQ comes in a compact one-rack-unit (1RU) form factor and runs the industry-leading Cisco NX-OS Software operating system, providing customers with comprehensive features and functions that are widely deployed. It supports both forward and reverse (port side exhaust and port side intake) airflow schemes with AC and DC power inputs. The Cisco Nexus 3172PQ is well suited for data centers that require a cost-effective, power-efficient line-rate Layer 2 and 3 top-of-rack (ToR) switch. The Cisco Nexus 3172PQ switch is a dense, high-performance Layer 2 and 3 10 and 40-Gbps switch that is a member of the Cisco Nexus 3100 switches. The Cisco Nexus 3172PQ is well suited for data centers that require a cost-effective, power-efficient line-rate Layer 2 and 3 top-of-rack (ToR) Cisco Ethernet Switch Table 1 shows the Quick Specs. Product Code N3K-C3172PQ-10GE Cisco Ethernet Switch Performance *1.4-Tbps switching capacity *Forwarding rate of up to 1 bpps *Line-rate traffic throughput (both Layer 2 and 3) on all ports *Configurable maximum transmission units (MTUs) of up to 9216 bytes (jumbo frames) System memory 4 GB Number of power supplies 2 Typical operating power 143 W Maximum power 293W Weight 18.6 lb (8 4 kg) Dimensions (H x W x D ) 1.72 x 17.3 x 17 in. (4.4 x 43.9 x 43.2 cm) The SFP Transceiver and Cable Options Table 2 shows the recommended elements for the N3K-C3172PQ-10GE. Model Description SFP-H10GB-CU1M 10GBASE-CU SFP+ Cable 1 Meter SFP-H10GB-ACU7M Active Twinax cable assembly, 7m SFP-H10GB-CU1-5M 10GBASE-CU SFP+ Cable 1.5 Meter SFP-10G-LR 10GBASE-LR SFP Module SFP-10G-SR 10GBASE-SR SFP Module Software Features Layer 2 ● Layer 2 switch ports and VLAN trunks ● IEEE 802.1Q VLAN encapsulation ● Support for up to 4096 VLANs ● Rapid Per-VLAN Spanning Tree Plus (PVRST+) (IEEE 802.1w compatible) ● MSTP (IEEE 802.1s): 64 instances ● Spanning Tree PortFast ● Spanning Tree Root Guard ● Spanning Tree Bridge Assurance ● Cisco EtherChannel technology (up to 32 ports per EtherChannel) ● LACP: IEEE 802.3ad ● Advanced port-channel hashing based on Layer 2, 3, and 4 information ● vPC ● Jumbo frames on all ports (up to 9216 bytes) ● Storm control (unicast, multicast, and broadcast) ● Private VLANs ● NvGRE entropy ● Resilient hashing Layer 3 ● Layer 3 interfaces: Routed ports on interfaces, switch virtual interfaces (SVIs), port channels, and subinterfaces (total: 1024) ● 64-way ECMP ● 4000 ingress and 1000 egress ACL entries ● IPv6 routing: Static, OSPFv3, and BGPv6 ● Routing protocols: Static, RIPv2, EIGRP, OSPF, and BGP ● Bidirectional Flow Detection (BFD) for BGP, OSPF, and IPv4 static routes ● HSRP and VRRP ● ACL: Routed ACL with Layer 3 and 4 options to match ingress and egress ACLs ● VRF: VRF-lite (IP VPN), VRF-aware unicast (BGP, OSPF, and RIP), and VRF-aware multicast ● Unicast Reverse-Path Forwarding (uRPF) with ACL, strict and loose modes ● Jumbo frame support (up to 9216 bytes) ● Generic Routing Encapsulation (GRE) tunneling ● Advanced BGP features including BGP add-path for eBGP and iBGP, remove-private-as enhancements and eBGP next hop unchanged ● IP-in-IP Tunnel support Multicast ● Multicast: PIMv2, PIM-SM, and PIM-SSM ● Bootstrap router (BSR), Auto-RP, and Static RP ● MSDP and Anycast RP ● Internet Group Management Protocol (IGMP) Versions 2 and 3 Quality of Service (QoS) ● Layer 2 IEEE 802.1p (class of service [CoS]) ● 8 hardware queues per port ● Per-port QoS configuration ● CoS trust ● Port-based CoS assignment ● Modular QoS CLI (MQC) compliance ● ACL-based QoS classification (Layers 2, 3, and 4) ● MQC CoS marking ● Differentiated services code point (DSCP) marking ● Weighted Random Early Detection (WRED) ● CoS-based egress queuing ● Egress strict-priority queuing ● Egress port-based scheduling: Weighted Round-Robin (WRR) ● Explicit Congestion Notification (ECN) ● Configurable ECN marking per port ● Priority Flow Control (with 3 no-drop queues and 1 default queue with strict priority scheduling between queues ● Policy Based Routing (PBR) Security ● Ingress ACLs (standard and extended) on Ethernet ● Standard and extended Layer 3 and 4 ACLs include IPv4, Internet Control Message Protocol (ICMP), TCP, and User Datagram Protocol (UDP) ● VLAN-based ACLs (VACLs) ● Port-based ACLs (PACLs) ● Named ACLs ● ACLs on virtual terminals (vtys) ● DHCP snooping with Option 82 ● Port number in DHCP Option 82 ● DHCP relay ● Dynamic Address Resolution Protocol (ARP) inspection ● Configurable CoPP ● SPAN with ACL filtering Cisco Nexus Data Broker ● Topology support for TAP and SPAN aggregation ● Support for QinQ to tag input source TAP and SPAN ports ● Configuration of symmetric hashing to load-balance traffic to multiple tools ● Traffic filtering based on Layer 1 through Layer 4 header information ● Traffic replication and forwarding to multiple monitoring tools ● Robust RBAC ● Northbound representational state transfer (REST) API for all programmability support Management ● POAP ● Python scripting ● Cisco EEM ● Switch management using 10/100/1000-Mbps management or console ports ● CLI-based console to provide detailed out-of-band management ● In-band switch management ● Locator and beacon LEDs ● Configuration rollback ● SSHv2 ● Secure Copy (SCP) server ● Telnet ● AAA ● AAA with RBAC ● RADIUS ● TACACS+ ● Syslog ● Syslog generation on system resources (for example, FIB tables) ● Embedded packet analyzer ● SNMP v1, v2, and v3 ● Enhanced SNMP MIB support ● XML (NETCONF) support ● Remote monitoring (RMON) ● Advanced Encryption Standard (AES) for management traffic ● Unified username and passwords across CLI and SNMP ● Microsoft Challenge Handshake Authentication Protocol (MS-CHAP) ● Digital certificates for management between switch and RADIUS server ● Cisco Discovery Protocol Versions 1 and 2 ● RBAC ● SPAN on physical layer, port channel, and VLAN ● Tunable buffer allocation for SPAN ● Encapsulated Remote SPAN (ERSPAN) ● Ingress and egress packet counters per interface ● PTP (IEEE 1588) boundary clock ● Network Time Protocol (NTP) ● Cisco OHMS ● Comprehensive bootup diagnostic tests ● Cisco Call Home ● Cisco DCNM ● Advanced buffer utilization monitoring ● sFlow Management ● POAP ● Python scripting ● Cisco EEM ● Switch management using 10/100/1000-Mbps management or console ports ● CLI-based console to provide detailed out-of-band management ● In-band switch management ● Locator and beacon LEDs ● Configuration rollback ● SSHv2 ● Secure Copy (SCP) server ● Telnet ● AAA ● AAA with RBAC ● RADIUS ● TACACS+ ● Syslog ● Syslog generation on system resources (for example, FIB tables) ● Embedded packet analyzer ● SNMP v1, v2, and v3 ● Enhanced SNMP MIB support ● XML (NETCONF) support ● Remote monitoring (RMON) ● Advanced Encryption Standard (AES) for management traffic ● Unified username and passwords across CLI and SNMP ● Microsoft Challenge Handshake Authentication Protocol (MS-CHAP) ● Digital certificates for management between switch and RADIUS server ● Cisco Discovery Protocol Versions 1 and 2 ● RBAC ● SPAN on physical layer, port channel, and VLAN ● Tunable buffer allocation for SPAN ● Encapsulated Remote SPAN (ERSPAN) ● Ingress and egress packet counters per interface ● PTP (IEEE 1588) boundary clock ● Network Time Protocol (NTP) ● Cisco OHMS ● Comprehensive bootup diagnostic tests ● Cisco Call Home ● Cisco DCNM ● Advanced buffer utilization monitoring ● sFlow Software Features Layer 2 ● Layer 2 switch ports and VLAN trunks ● IEEE 802.1Q VLAN encapsulation ● Support for up to 4096 VLANs ● Rapid Per-VLAN Spanning Tree Plus (PVRST+) (IEEE 802.1w compatible) ● MSTP (IEEE 802.1s): 64 instances ● Spanning Tree PortFast ● Spanning Tree Root Guard ● Spanning Tree Bridge Assurance ● Cisco EtherChannel technology (up to 32 ports per EtherChannel) ● LACP: IEEE 802.3ad ● Advanced port-channel hashing based on Layer 2, 3, and 4 information ● vPC ● Jumbo frames on all ports (up to 9216 bytes) ● Storm control (unicast, multicast, and broadcast) ● Private VLANs ● NvGRE entropy ● Resilient hashing Layer 3 ● Layer 3 interfaces: Routed ports on interfaces, switch virtual interfaces (SVIs), port channels, and subinterfaces (total: 1024) ● 64-way ECMP ● 4000 ingress and 1000 egress ACL entries ● IPv6 routing: Static, OSPFv3, and BGPv6 ● Routing protocols: Static, RIPv2, EIGRP, OSPF, and BGP ● Bidirectional Flow Detection (BFD) for BGP, OSPF, and IPv4 static routes ● HSRP and VRRP ● ACL: Routed ACL with Layer 3 and 4 options to match ingress and egress ACLs ● VRF: VRF-lite (IP VPN), VRF-aware unicast (BGP, OSPF, and RIP), and VRF-aware multicast ● Unicast Reverse-Path Forwarding (uRPF) with ACL, strict and loose modes ● Jumbo frame support (up to 9216 bytes) ● Generic Routing Encapsulation (GRE) tunneling ● Advanced BGP features including BGP add-path for eBGP and iBGP, remove-private-as enhancements and eBGP next hop unchanged ● IP-in-IP Tunnel support Multicast ● Multicast: PIMv2, PIM-SM, and PIM-SSM ● Bootstrap router (BSR), Auto-RP, and Static RP ● MSDP and Anycast RP ● Internet Group Management Protocol (IGMP) Versions 2 and 3 Quality of Service (QoS) ● Layer 2 IEEE 802.1p (class of service [CoS]) ● 8 hardware queues per port ● Per-port QoS configuration ● CoS trust ● Port-based CoS assignment ● Modular QoS CLI (MQC) compliance ● ACL-based QoS classification (Layers 2, 3, and 4) ● MQC CoS marking ● Differentiated services code point (DSCP) marking ● Weighted Random Early Detection (WRED) ● CoS-based egress queuing ● Egress strict-priority queuing ● Egress port-based scheduling: Weighted Round-Robin (WRR) ● Explicit Congestion Notification (ECN) ● Configurable ECN marking per port ● Priority Flow Control (with 3 no-drop queues and 1 default queue with strict priority scheduling between queues ● Policy Based Routing (PBR) Security ● Ingress ACLs (standard and extended) on Ethernet ● Standard and extended Layer 3 and 4 ACLs include IPv4, Internet Control Message Protocol (ICMP), TCP, and User Datagram Protocol (UDP) ● VLAN-based ACLs (VACLs) ● Port-based ACLs (PACLs) ● Named ACLs ● ACLs on virtual terminals (vtys) ● DHCP snooping with Option 82 ● Port number in DHCP Option 82 ● DHCP relay ● Dynamic Address Resolution Protocol (ARP) inspection ● Configurable CoPP ● SPAN with ACL filtering Cisco Nexus Data Broker ● Topology support for TAP and SPAN aggregation ● Support for QinQ to tag input source TAP and SPAN ports ● Configuration of symmetric hashing to load-balance traffic to multiple tools ● Traffic filtering based on Layer 1 through Layer 4 header information ● Traffic replication and forwarding to multiple monitoring tools ● Robust RBAC ● Northbound representational state transfer (REST) API for all programmability support Management ● POAP ● Python scripting ● Cisco EEM ● Switch management using 10/100/1000-Mbps management or console ports ● CLI-based console to provide detailed out-of-band management ● In-band switch management ● Locator and beacon LEDs ● Configuration rollback ● SSHv2 ● Secure Copy (SCP) server ● Telnet ● AAA ● AAA with RBAC ● RADIUS ● TACACS+ ● Syslog ● Syslog generation on system resources (for example, FIB tables) ● Embedded packet analyzer ● SNMP v1, v2, and v3 ● Enhanced SNMP MIB support ● XML (NETCONF) support ● Remote monitoring (RMON) ● Advanced Encryption Standard (AES) for management traffic ● Unified username and passwords across CLI and SNMP ● Microsoft Challenge Handshake Authentication Protocol (MS-CHAP) ● Digital certificates for management between switch and RADIUS server ● Cisco Discovery Protocol Versions 1 and 2 ● RBAC ● SPAN on physical layer, port channel, and VLAN ● Tunable buffer allocation for SPAN ● Encapsulated Remote SPAN (ERSPAN) ● Ingress and egress packet counters per interface ● PTP (IEEE 1588) boundary clock ● Network Time Protocol (NTP) ● Cisco OHMS ● Comprehensive bootup diagnostic tests ● Cisco Call Home ● Cisco DCNM ● Advanced buffer utilization monitoring ● sFlow Software Features Layer 2 ● Layer 2 switch ports and VLAN trunks ● IEEE 802.1Q VLAN encapsulation ● Support for up to 4096 VLANs ● Rapid Per-VLAN Spanning Tree Plus (PVRST+) (IEEE 802.1w compatible) ● MSTP (IEEE 802.1s): 64 instances ● Spanning Tree PortFast ● Spanning Tree Root Guard ● Spanning Tree Bridge Assurance ● Cisco EtherChannel technology (up to 32 ports per EtherChannel) ● LACP: IEEE 802.3ad ● Advanced port-channel hashing based on Layer 2, 3, and 4 information ● vPC ● Jumbo frames on all ports (up to 9216 bytes) ● Storm control (unicast, multicast, and broadcast) ● Private VLANs ● NvGRE entropy ● Resilient hashing Layer 3 ● Layer 3 interfaces: Routed ports on interfaces, switch virtual interfaces (SVIs), port channels, and subinterfaces (total: 1024) ● 64-way ECMP ● 4000 ingress and 1000 egress ACL entries ● IPv6 routing: Static, OSPFv3, and BGPv6 ● Routing protocols: Static, RIPv2, EIGRP, OSPF, and BGP ● Bidirectional Flow Detection (BFD) for BGP, OSPF, and IPv4 static routes ● HSRP and VRRP ● ACL: Routed ACL with Layer 3 and 4 options to match ingress and egress ACLs ● VRF: VRF-lite (IP VPN), VRF-aware unicast (BGP, OSPF, and RIP), and VRF-aware multicast ● Unicast Reverse-Path Forwarding (uRPF) with ACL, strict and loose modes ● Jumbo frame support (up to 9216 bytes) ● Generic Routing Encapsulation (GRE) tunneling ● Advanced BGP features including BGP add-path for eBGP and iBGP, remove-private-as enhancements and eBGP next hop unchanged ● IP-in-IP Tunnel support Multicast ● Multicast: PIMv2, PIM-SM, and PIM-SSM ● Bootstrap router (BSR), Auto-RP, and Static RP ● MSDP and Anycast RP ● Internet Group Management Protocol (IGMP) Versions 2 and 3 Quality of Service (QoS) ● Layer 2 IEEE 802.1p (class of service [CoS]) ● 8 hardware queues per port ● Per-port QoS configuration ● CoS trust ● Port-based CoS assignment ● Modular QoS CLI (MQC) compliance ● ACL-based QoS classification (Layers 2, 3, and 4) ● MQC CoS marking ● Differentiated services code point (DSCP) marking ● Weighted Random Early Detection (WRED) ● CoS-based egress queuing ● Egress strict-priority queuing ● Egress port-based scheduling: Weighted Round-Robin (WRR) ● Explicit Congestion Notification (ECN) ● Configurable ECN marking per port ● Priority Flow Control (with 3 no-drop queues and 1 default queue with strict priority scheduling between queues ● Policy Based Routing (PBR) Security ● Ingress ACLs (standard and extended) on Ethernet ● Standard and extended Layer 3 and 4 ACLs include IPv4, Internet Control Message Protocol (ICMP), TCP, and User Datagram Protocol (UDP) ● VLAN-based ACLs (VACLs) ● Port-based ACLs (PACLs) ● Named ACLs ● ACLs on virtual terminals (vtys) ● DHCP snooping with Option 82 ● Port number in DHCP Option 82 ● DHCP relay ● Dynamic Address Resolution Protocol (ARP) inspection ● Configurable CoPP ● SPAN with ACL filtering Cisco Nexus Data Broker ● Topology support for TAP and SPAN aggregation ● Support for QinQ to tag input source TAP and SPAN ports ● Configuration of symmetric hashing to load-balance traffic to multiple tools ● Traffic filtering based on Layer 1 through Layer 4 header information ● Traffic replication and forwarding to multiple monitoring tools ● Robust RBAC ● Northbound representational state transfer (REST) API for all programmability support Management ● POAP ● Python scripting ● Cisco EEM ● Switch management using 10/100/1000-Mbps management or console ports ● CLI-based console to provide detailed out-of-band management ● In-band switch management ● Locator and beacon LEDs ● Configuration rollback ● SSHv2 ● Secure Copy (SCP) server ● Telnet ● AAA ● AAA with RBAC ● RADIUS ● TACACS+ ● Syslog ● Syslog generation on system resources (for example, FIB tables) ● Embedded packet analyzer ● SNMP v1, v2, and v3 ● Enhanced SNMP MIB support ● XML (NETCONF) support ● Remote monitoring (RMON) ● Advanced Encryption Standard (AES) for management traffic ● Unified username and passwords across CLI and SNMP ● Microsoft Challenge Handshake Authentication Protocol (MS-CHAP) ● Digital certificates for management between switch and RADIUS server ● Cisco Discovery Protocol Versions 1 and 2 ● RBAC ● SPAN on physical layer, port channel, and VLAN ● Tunable buffer allocation for SPAN ● Encapsulated Remote SPAN (ERSPAN) ● Ingress and egress packet counters per interface ● PTP (IEEE 1588) boundary clock ● Network Time Protocol (NTP) ● Cisco OHMS ● Comprehensive bootup diagnostic tests ● Cisco Call Home ● Cisco DCNM ● Advanced buffer utilization monitoring ● sFlow Management ● POAP ● Python scripting ● Cisco EEM ● Switch management using 10/100/1000-Mbps management or console ports ● CLI-based console to provide detailed out-of-band management ● In-band switch management ● Locator and beacon LEDs ● Configuration rollback ● SSHv2 ● Secure Copy (SCP) server ● Telnet ● AAA ● AAA with RBAC ● RADIUS ● TACACS+ ● Syslog ● Syslog generation on system resources (for example, FIB tables) ● Embedded packet analyzer ● SNMP v1, v2, and v3 ● Enhanced SNMP MIB support ● XML (NETCONF) support ● Remote monitoring (RMON) ● Advanced Encryption Standard (AES) for management traffic ● Unified username and passwords across CLI and SNMP ● Microsoft Challenge Handshake Authentication Protocol (MS-CHAP) ● Digital certificates for management between switch and RADIUS server ● Cisco Discovery Protocol Versions 1 and 2 ● RBAC ● SPAN on physical layer, port channel, and VLAN ● Tunable buffer allocation for SPAN ● Encapsulated Remote SPAN (ERSPAN) ● Ingress and egress packet counters per interface ● PTP (IEEE 1588) boundary clock ● Network Time Protocol (NTP) ● Cisco OHMS ● Comprehensive bootup diagnostic tests ● Cisco Call Home ● Cisco DCNM ● Advanced buffer utilization monitoring ● sFlow Software Features Layer 2 ● Layer 2 switch ports and VLAN trunks ● IEEE 802.1Q VLAN encapsulation ● Support for up to 4096 VLANs ● Rapid Per-VLAN Spanning Tree Plus (PVRST+) (IEEE 802.1w compatible) ● MSTP (IEEE 802.1s): 64 instances ● Spanning Tree PortFast ● Spanning Tree Root Guard ● Spanning Tree Bridge Assurance ● Cisco EtherChannel technology (up to 32 ports per EtherChannel) ● LACP: IEEE 802.3ad ● Advanced port-channel hashing based on Layer 2, 3, and 4 information ● vPC ● Jumbo frames on all ports (up to 9216 bytes) ● Storm control (unicast, multicast, and broadcast) ● Private VLANs ● NvGRE entropy ● Resilient hashing Layer 3 ● Layer 3 interfaces: Routed ports on interfaces, switch virtual interfaces (SVIs), port channels, and subinterfaces (total: 1024) ● 64-way ECMP ● 4000 ingress and 1000 egress ACL entries ● IPv6 routing: Static, OSPFv3, and BGPv6 ● Routing protocols: Static, RIPv2, EIGRP, OSPF, and BGP ● Bidirectional Flow Detection (BFD) for BGP, OSPF, and IPv4 static routes ● HSRP and VRRP ● ACL: Routed ACL with Layer 3 and 4 options to match ingress and egress ACLs ● VRF: VRF-lite (IP VPN), VRF-aware unicast (BGP, OSPF, and RIP), and VRF-aware multicast ● Unicast Reverse-Path Forwarding (uRPF) with ACL, strict and loose modes ● Jumbo frame support (up to 9216 bytes) ● Generic Routing Encapsulation (GRE) tunneling ● Advanced BGP features including BGP add-path for eBGP and iBGP, remove-private-as enhancements and eBGP next hop unchanged ● IP-in-IP Tunnel support Multicast ● Multicast: PIMv2, PIM-SM, and PIM-SSM ● Bootstrap router (BSR), Auto-RP, and Static RP ● MSDP and Anycast RP ● Internet Group Management Protocol (IGMP) Versions 2 and 3 Quality of Service (QoS) ● Layer 2 IEEE 802.1p (class of service [CoS]) ● 8 hardware queues per port ● Per-port QoS configuration ● CoS trust ● Port-based CoS assignment ● Modular QoS CLI (MQC) compliance ● ACL-based QoS classification (Layers 2, 3, and 4) ● MQC CoS marking ● Differentiated services code point (DSCP) marking ● Weighted Random Early Detection (WRED) ● CoS-based egress queuing ● Egress strict-priority queuing ● Egress port-based scheduling: Weighted Round-Robin (WRR) ● Explicit Congestion Notification (ECN) ● Configurable ECN marking per port ● Priority Flow Control (with 3 no-drop queues and 1 default queue with strict priority scheduling between queues ● Policy Based Routing (PBR) Security ● Ingress ACLs (standard and extended) on Ethernet ● Standard and extended Layer 3 and 4 ACLs include IPv4, Internet Control Message Protocol (ICMP), TCP, and User Datagram Protocol (UDP) ● VLAN-based ACLs (VACLs) ● Port-based ACLs (PACLs) ● Named ACLs ● ACLs on virtual terminals (vtys) ● DHCP snooping with Option 82 ● Port number in DHCP Option 82 ● DHCP relay ● Dynamic Address Resolution Protocol (ARP) inspection ● Configurable CoPP ● SPAN with ACL filtering Cisco Nexus Data Broker ● Topology support for TAP and SPAN aggregation ● Support for QinQ to tag input source TAP and SPAN ports ● Configuration of symmetric hashing to load-balance traffic to multiple tools ● Traffic filtering based on Layer 1 through Layer 4 header information ● Traffic replication and forwarding to multiple monitoring tools ● Robust RBAC ● Northbound representational state transfer (REST) API for all programmability support Management ● POAP ● Python scripting ● Cisco EEM ● Switch management using 10/100/1000-Mbps management or console ports ● CLI-based console to provide detailed out-of-band management ● In-band switch management ● Locator and beacon LEDs ● Configuration rollback ● SSHv2 ● Secure Copy (SCP) server ● Telnet ● AAA ● AAA with RBAC ● RADIUS ● TACACS+ ● Syslog ● Syslog generation on system resources (for example, FIB tables) ● Embedded packet analyzer ● SNMP v1, v2, and v3 ● Enhanced SNMP MIB support ● XML (NETCONF) support ● Remote monitoring (RMON) ● Advanced Encryption Standard (AES) for management traffic ● Unified username and passwords across CLI and SNMP ● Microsoft Challenge Handshake Authentication Protocol (MS-CHAP) ● Digital certificates for management between switch and RADIUS server ● Cisco Discovery Protocol Versions 1 and 2 ● RBAC ● SPAN on physical layer, port channel, and VLAN ● Tunable buffer allocation for SPAN ● Encapsulated Remote SPAN (ERSPAN) ● Ingress and egress packet counters per interface ● PTP (IEEE 1588) boundary clock ● Network Time Protocol (NTP) ● Cisco OHMS ● Comprehensive bootup diagnostic tests ● Cisco Call Home ● Cisco DCNM ● Advanced buffer utilization monitoring ● sFlow