Cisco Catalyst 4500 Series Supervisor Engine II-Plus [Cisco Network Modules]

Cisco Catalyst 4500 Series Supervisor Engine for Medium-Sized Enterprises and Small Branch Offices

The Cisco® Catalyst® 4500 Series Supervisor Engine II-Plus (Figure 1) integrates resiliency for advanced control of converged networks.

Figure 1. Cisco Catalyst 4500 Series Supervisor Engine II-Plus

Overview

The Cisco Catalyst 4500 Series Supervisor Engine II-Plus meets the needs of value-conscious customers seeking a flexible and scalable LAN solution. Optimized for end-user connectivity for medium-sized enterprises, small enterprises, or branch offices, this supervisor engine provides the resiliency and control for converged data, voice, and video networks.

The Cisco Catalyst 4500 Series Supervisor Engine II-Plus delivers nonblocking Layer 2, 3, and 4 intelligent services to power-resilient, multilayer-switching solutions for converged data, voice, and video networks. It allows customers to deploy networkwide intelligent services, such as advanced quality of service (QoS), comprehensive security, and management with optimal control and resiliency.

Compatible with the Cisco Catalyst 4503, Catalyst 4506, Catalyst 4507R, Catalyst 4503E, Catalyst 4506E, and Catalyst 4507E chassis, and with Cisco Catalyst 4500 Series classic line cards, the Cisco Catalyst 4500 Series Supervisor Engine II-Plus helps to ensure an extended window of deployment of the modular Cisco Catalyst 4500 Series (refer to Table 1).

Table 1. Supported Chassis for Cisco Supervisor Engine II-Plus

	Cisco Catalyst 4503 and 4503E Chassis	Cisco Catalyst 4506 and 4506E Chassis	Cisco Catalyst 4507R and 4507E Chassis	Cisco Catalyst 4510R and 4510E Chassis
Cisco Catalyst 4500 Series Supervisor Engine II-Plus (WS-X4013+)	Supported 28 Gbps, 21 mpps	Supported 64 Gbps, 48 mpps	Supported 64 Gbps, 48 mpps	Not supported

The Cisco Catalyst 4500 Series

The Cisco Catalyst 4500 Series Supervisor Engine II-Plus is optimized for wiring closets for medium-sized enterprises, education customers, or small enterprise or branch offices. In scenarios that require enhanced routing (Interior Gateway Routing Protocol [IGRP], Enhanced IGRP [EIGRP], Open Shortest Path First [OSPF], Intermediate System-to-Intermediate System [IS-IS], and Border Gateway Protocol [BGP]), NetFlow services, or higher performance and scalability, customers should consider other Layer 3-capable supervisor engines. For more information, visit: http://www.cisco.com/en/US/products/hw/switches/ps4324/products_data_sheets_list.html.

Table 2 compares the features of the Cisco Catalyst 4500 Series supervisor engines specifically for Layer 2 access.

Table 2. Cisco Catalyst Supervisor Engines for Layer 2 Access Only

Feature	Supervisor Engine II-Plus-TS	Supervisor Engine II-Plus	Supervisor Engine II-Plus-10GE
Layer 2-4 Performance	48 mpps and 64 Gbps	48 mpps and 64 Gbps	81 mpps and 108 Gbps
Multilayer switching	Basic Layer 2-4 services	Basic Layer 2-4 services	Basic Layer 2-4 services
EIGRP, OSPF, IS-IS, and BGP	No	No	No
EIGRP Stub	Yes	Yes	Yes
Redundant-capable	No	Yes	Yes
CPU (MHz)	266 MHz	266 MHz	667 MHz
NetFlow support	No	No	No
IP Forwarding Information Base (FIB) entries	32,000	32,000	32,000
Chassis support	Cisco Catalyst 4503, 4503E chassis	Cisco Catalyst 4503, 4506, 4507R, 4503E, 4506E, 4507E chassis	Cisco Catalyst 4503, 4506, 4507R, 4503E, 4506E, 4507E chassis
QoS sharing	Nonblocking Gigabit Ethernet (GE) only	Nonblocking GE only	All ports
Broadcast suppression	Software*	Software**	Hardware
Multicast suppression	No	No	Hardware
802.1Q-in-801.1Q (QinQ)	No	No	In hardware
Active redundant supervisor engine uplinks	No	Two 1-GE uplinks	Two 10-GE uplinks and four 1-GE uplinks
Synchronous Dynamic RAM (SDRAM)	256 MB	256 MB	256 MB (512 MB optional upgrade)
Onboard Flash memory	32 MB	32 MB	64 MB
Active VLANs	2000	2000	2000
Multicast entries	8000	8000	8000
Spanning Tree Protocol instances	1500	1500	1500
Switched Virtual Interfaces (SVIs)	1000	1000	1000
IGMP snooping	Yes (16,000)	Yes (16,000)	Yes (16,000)
Security/QoS hardware entries	32,000	32,000	32,000
Policers	512 egress; 512 ingress	512 egress; 512 ingress	512 egress; 512 ingress

* Hardware performance for nonblocking Gigabit Ethernet ports, and software performance for all other ports

** Hardware performance for nonblocking Gigabit Ethernet ports, and software performance for all other ports

Cisco Catalyst 4500 Series Supervisor Engine Ii-Plus Redundancy for Business Resiliency

The Cisco Catalyst 4507R chassis has been designed with optional 1 + 1 redundant supervisor capability using the Cisco Catalyst 4500 Series Supervisor Engine II-Plus for integrated resiliency. One of these supervisor engines is designated as the primary (active) and is responsible for normal system operation; the other (secondary) serves as a standby, monitoring the operation of the primary supervisor.

Stateful Switchover (SSO) offers continuous packet forwarding during supervisor engine switchover. Information is fully synchronized between supervisors to allow the standby supervisor to immediately take over in subsecond time if the primary fails. In Service Software Upgrade (ISSU) allows customers to upgrade or downgrade complete Cisco IOS® Software images with minimal to no disruption to the network when using a redundant Catalyst 4500 Series system with dual supervisors. It enables rapid, nondisruptive software upgrade for new line cards, new power supplies, new features, or bug fixes. ISSU offers continuous packet forwarding during the supervisor engine switchover running different Cisco IOS Software versions.

SSO and ISSU dramatically improve the network reliability and availability in a Layer 2 or Layer 3 environment. SSO and ISSU are essential for business-critical applications such as voice over IP (VoIP) to help ensure that VoIP calls are not dropped.

When the primary supervisor fails, the secondary supervisor assumes control of the chassis. This algorithm prevents oscillations between primary and secondary supervisors. Alerts are generated to the network-monitoring software if either fails. A supervisor switchover can be forced by software, or by the user through the console or with the Simple Network Management Protocol (SNMP).

Predictable Performance and Scalability

The Cisco Catalyst 4500 Series Supervisor Engine II-Plus delivers a 64-Gbps switching fabric with a 48-million-packets-per-second (mpps) forwarding rate in hardware for Layer 2-4 traffic. Switching performance is independent of the number of route entries or advanced Layer 3 and 4 services enabled. The Cisco Catalyst 4500 Series is optimized for multimedia applications with its advanced multicast support and wire-speed switching in hardware. Protocol Independent Multicast (PIM) and Source Specific Multicast (SSM) are supported, providing end users with additional scalability to support multimedia applications.

The Cisco Catalyst 4500 Series Supervisor Engine II-Plus supports Internet Group Management Protocol (IGMP) snooping in hardware, enhancing the performance of multimedia applications and reducing network traffic by allowing a switch to dynamically add and remove hosts from a multicast group.

Intelligent Network Services with QoS and Sophisticated Traffic Management

The Cisco Catalyst 4500 Series Supervisor Engine II-Plus offers superior per-port QoS features to help ensure that network traffic is optimally classified, prioritized, and scheduled to efficiently handle multimedia, time-sensitive (voice), and mission-critical applications. This supervisor engine can classify, police, and mark incoming packets, allowing the administrator to differentiate between traffic flows and to enforce policies based on granular QoS fields. Sharing, shaping, and strict priority configurations determine scheduling of egress traffic. This supervisor engine also supports Dynamic Buffer Limiting (DBL), a congestion-avoidance feature.

For details about the QoS features (including DBL), refer to the QoS overview at: http://www.cisco.com/en/US/products/hw/switches/ps4324/prod_white_papers_list.html.

Comprehensive Management

The Cisco Catalyst 4500 Series Supervisor Engine II-Plus features a single console port and a single IP address to manage all features of the system. Remote in-band management is available with SNMP, Telnet client, BOOTP, and Trivial File Transfer Protocol (TFTP). Support for local or remote out-of-band management is delivered through a terminal or modem attached to the console interface. This supervisor engine delivers a comprehensive set of management tools to provide the visibility and control required in the network. The supervisor engine can be managed with CiscoWorks or Cisco Network Assistant. Cisco Catalyst switches can be configured and managed to deliver end-to-end device, VLAN, traffic, and policy management. The LAN management solution bundle offers tools such as CiscoWorks Resource Manager Essentials and CiscoView. These Web-based management tools offer numerous services, including automated inventory collection, software deployment, easy tracking of network changes, views into device availability, and quick isolation of error conditions.

Cisco Catalyst 4500 Series Supervisor II-Plus Features

Layer 2 Features

• Layer 2 hardware forwarding at 48 mpps

• Layer 2 switch ports and VLAN trunks

• IEEE 802. 1Q VLAN encapsulation

• Inter-Switch Link (ISL) VLAN encapsulation (excluding blocking ports on WS-X4418-GB)

• Dynamic Trunking Protocol (DTP)

• VLAN Trunking Protocol (VTP) and VTP domains

• Support for 2048 active VLANs and 4096 VLAN IDs per switch

• Spanning-tree PortFast and PortFast guard

• Spanning-tree UplinkFast and BackboneFast

• 802.1s

• 802.1w

• 802.3ad

• Spanning-tree root guard

• Cisco Discovery Protocol

• IGMP snooping v1, v2, and v3

• Cisco EtherChannel® technology, Cisco Fast EtherChannel technology, and Cisco Gigabit EtherChannel technology across line cards

• Port Aggregation Protocol (PAgP)

• Unidirectional Link Detection Protocol (UDLD) and aggressive UDLD

• Q-in-Q pass-through

• Jumbo frames (up to 9216 bytes)

• Baby giants (up to 1600 bytes)

• Unidirectional Ethernet

• Stateful switchover (S SO) in subsecond failover time

• Storm control (broadcast suppression)

• Forced 10/100 autonegotiation

• Web Content Communication Protocol (WCCP) Version 2 Layer 2 Redirect

• Private VLAN Promiscuous Trunk

• Match class of service (CoS) for non-IPv4 traffic

• L2PT over trunk port

• Class of Service (CoS) mutation

• Per-VLAN Control Traffic Intercept

Layer 3 Features

• Hardware-based IP Cisco Express Forwarding routing at 48 mpps

• Static IP routing

• Routing Information Protocol (RIP) and RIP2

• IGMP v1, v2, and v3

• IGMP filtering on access and trunk ports

• IP Multicast routing protocols (PIM, SSM, and Distance Vector Multicast Routing Protocol [DVMRP])

• Cisco Group Multicast Protocol (GMP) server

• Full Internet Control Message Protocol (ICMP) support

• ICMP Router Discovery Protocol

• IPv6 software switched

• EIGRP stub

• IP unnumbered for SVI

• SVI Autostate Exclude

Sophisticated QoS and Traffic Management

• Per-port QoS configuration

• Support for four queues per port in hardware

• Strict priority queuing

• IP differentiated services code point (DSCP) and IP Precedence

• Classification and marking based on IP type of service (ToS) or DSCP

• Classification and marking based on full Layer 3 and 4 headers (IP only)

• Input and output policing based on Layer 3 and 4 headers (IP only)

• Support for 512 policers on ingress and 512 policers on egress configured as aggregate or individual

• Shaping and sharing output queue management

• DBL (congestion-avoidance feature)

• No performance penalty for granular QoS functions

• Auto-QoS command-line interface (CLI) for VoIP deployment

• Per-port, per-vlan QoS

• Selective Dynamic Buffer Limiting

Predictable Performance

• 64-Gbps switching fabric

• Layer 2 hardware forwarding at 48 mpps

• Layer 3 hardware-based IP Cisco Express Forwarding routing at 48 mpps

• Layer 4 TCP and UDP hardware-based filtering at 48 mpps

• No performance penalty with advanced Layer 3 and 4 services enabled

• Software-based learning at a sustained rate of 500 hosts per second

• Support for 32,768 MAC addresses

• Support for 32,000 entries in routing table (shared between unicast and multicast)

• Bandwidth aggregation up to 16 Gbps through Cisco Gigabit EtherChannel technology

• Hardware-based multicast management

• Hardware-based ACLs, router ACLs (RACLs), VLAN ACLs (VACLs)

Comprehensive Management

• Manageable through Cisco Network Assistant

• Single console port and single IP address to manage all system features

• Software configuration management, including local and remote storage

• Manageable through CiscoWorks Windows network-management software on a per-port and per-switch basis, providing a common management interface for Cisco routers, switches, and hubs

• SNMPv1, v2, and v3 instrumentation, delivering comprehensive in-band management

• CLI-based management console to provide detailed out-of-band management

• Remote Monitoring (RMON) software agent to support four RMON groups (history, statistics, alarms, and events) for enhanced traffic management, monitoring, and analysis

• Support for all nine RMON groups through the use of a Cisco SwitchProbe® analyzer (Switched Port Analyzer [SPAN]) port, which permits traffic monitoring of a single port, a group of ports, or the entire switch from a single network analyzer or RMON probe

• Analysis support, including ingress port, egress port, and VLAN SPAN

• Layer 2 traceroute

• Remote SPAN (RSPAN)

• Cisco SmartPort macros

• SPAN ACL filtering

• SPAN CPU port

• Dynamic Host Configuration Protocol (DHCP) client autoconfiguration

• Enhanced SNMP MIB support

• HTTPS

• Time Domain Reflectometry (TDR)

• MAC Address Notification

Advanced Security

• TACACS+ and RADIUS, which help enable centralized control of the switch and restrict unauthorized users from altering the configuration

• Standard and extended ACLs on all ports

• 802.1x user authentication (with VLAN assignment, voice VLAN, port security, guest VLAN, private guest VLAN, private VLAN, and RADIUS Supplied Session Timeout extensions)

• 802.1x accounting

• 802.1x authentication failure

• 802.1x Private VLAN assignment

• 802.1x Private Guest VLAN

• 802.1x RADIUS-supplied time out

• NAC Layer 2 802.1x

• NAC Layer 2 IP

• Trusted boundary

• Router ACLs (RACLs) on all ports (no performance penalty)

• VLAN ACLs (VACLs)

• Port ACLs (PACLs)

• Private VLANs (PVLANs) on access and trunk ports

• DHCP snooping

• DHCP Option 82

• DHCP Option 82 insertion

• DHCP Option 82 Pass Through

• Port security

• Sticky port security

• SSHv1 and SSHv2

• VLAN Management Policy Server (VMPS) client

• Unicast MAC filtering

• Unicast port flood blocking

• Dynamic Address Resolution Protocol (ARP) inspection

• IP source guard

• Community Private VLANs

• Trunk Port Security

• 802.1x Inaccessible Authentication Bypass

• MAC Authentication Bypass

• Control Plane Policing

• 802.1x Unidirectional Controlled Port

• Voice VLAN Sticky Port Security

• Secure Copy Protocol (SCP)

• EtherChannel Trunk Port security

• IP Source Guard for Static Hosts

• IEEE 802.1x Multi Domain Authentication

High Availability

• Stateful Switchover (SSO)

• In Service Software Upgrade (ISSU)

• SSO in subsecond failover time

• Hot Standby Router Protocol (HSRP)

• SSO-Aware HSRP

• Virtual Router Redundancy Protocol (VRRP)

• Cisco Generic Online Diagnostics (GOLD)

Hardware Requirements

• Redundant supervisor engines must match (a Cisco Catalyst 4500 Series Supervisor Engine II-Plus, IV, or V cannot be mixed in the same Cisco Catalyst 4507R chassis, for example).

• The Cisco Catalyst 4500 Series Supervisor Engine II-Plus is not supported in a Cisco Catalyst 4510R chassis; the Supervisor Engine V is required as a minimum for the Cisco Catalyst 4510R.

Technical Specifications

Cisco Catalyst 4500 Series Supervisor Engine II-Plus Performance and Switching Specifications

• 64-Gbps nonblocking switch fabric

• 48-mpps Layer 2 forwarding (hardware)

• 48-mpps Layer 3 and 4 forwarding, Cisco Express Forwarding-based (hardware)

• Layers 2, 3, and 4 hardware-based switch engine (ASIC-based)

• Centralized design

• Unicast and multicast routing entries: 32,000

• Layer 2 multicast addresses: 16,384

• MAC addresses: 32,768

• VLANs: 2048 active VLANs

• Per-VLAN Spanning Tree Plus (PVST+) and Per-VLAN Rapid Spanning Tree Protocol (PVRST)

• Uplinks: Dual 1000-Mbps Gigabit Ethernet (gigabit interface converter [GBIC])

Traffic and Congestion Management

• Number of queues: four queues per port

• Type of buffers: dynamic

Switch Architecture Specifications

• Store-and-forward switching

• Functionally transparent line-card architecture

• Packet buffering: dynamic, 16 MB shared memory

Management

• CiscoWorks LAN Management Solution (LMS), including Cisco Works Resource Manager Essentials

• CiscoView

• Cisco Network Assistant

• BGP4-MIB.my

• BRIDGE-MIB.my (RFC 1493)

• CISCO-BULK-FILE-MIB.my

• CISCO-CDP-MIB.my

• CISCO-CLASS-BASED-QOS-MIB.my

• CISCO-CONFIG-COPY-MIB.my

• CISCO-CONFIG-MAN-MIB.my

• CISCO-ENTITY-ASSET-MIB.my

• CISCO-ENTITY-EXT-MIB.my

• CISCO-ENTITY-FRU-CONTROL-MIB.my

• CISCO-ENTITY-SENSOR-MIB.my

• CISCO-ENTITY-VENDORTYPE-OID-MIB.my

• CISCO-ENVMON-MIB.my

• CISCO-FLASH-MIB.my

• CISCO-FTP-CLIENT-MIB.my

• CISCO-HSRP-MIB.my

• CISCO-IETF-IP-MIB.my

• CISCO-IETF-IP-FORWARD-MIB.my

• CISCO-IETF-ISIS-MIB.my

• CISCO-IF-EXTENSION-MIB.my

• CISCO-IGMP-FILTER-MIB.my

• CISCO-IMAGE-MIB.my

• CISCO-IPMROUTE-MIB.my

• CISCO-L2-TUNNEL-CONFIG-MIB.my

• CISCO-L2L3-INTERFACE-CONFIG-MIB.my

• CISCO-LAG-MIB.my

• CISCO-MEMORY-POOL-MIB.my

• CISCO-NDE-MIB.my

• CISCO-PAGP-MIB.my

• CISCO-PAE-MIB.my

• CISCO-PING-MIB.my

• CISCO-PORT-SECURITY-MIB.my

• CISCO-PORT-STORM-CONTROL-MIB.my

• CISCO-PRIVATE-VLAN-MIB.my

• CISCO PROCESS MIB.my

• CISCO-PRODUCTS-MIB.my

• CISCO-RF-MIB.my

• CISCO-RMON-CONFIG-MIB.my

• CISCO-RTTMON-MIB.my

• CISCO-STP-EXTENSIONS-MIB.my

• CISCO-SYSLOG-MIB.my

• CISCO-VLAN-IFTABLE-RELATIONSHIP-MIB.my

• CISCO-VLAN-MEMBERSHIP-MIB.my

• CISCO-VTP-MIB.my

• DOT3-MAU-MIB.my (RFC 3636)

• ENTITY-MIB.my

• ETHERLIKE-MIB.my

• EXPRESSION-MIB.my

• HC-RMON-MIB.my

• IEEE8021-PAE-MIB.my

• IEEE8023-LAG-MIB.my (802.3ad)

• IF-MIB.my

• IGMP-MIB.my

• IPMROUTE-MIB.my

• NOVELL-IPX-MIB.my

• NOVELL-RIPSAP-MIB.my

• OLD-CISCO-TS-MIB.my

• PIM-MIB.my

• RFC1213-MIB.my (MIB-II)

• RFC1243-MIB.my (APPLETALK MIB)

• RFC1253-MIB.my (OSPF-MIB)

• RMON-MIB.my (RFC 1757)

• RMON2-MIB.my (RFC 2021)

• SMON-MIB.my (Internet-Draft)

• SNMP-FRAMEWORK-MIB.my (RFC 2571)

• SNMP-MPD-MIB.my (RFC 2572)

• SNMP-NOTIFICATION-MIB.my (RFC 2573)

• SNMP-TARGET-MIB.my (RFC 2573)

• SNMP-USM-MIB.my (RFC 2574)

• SNMP-VACM-MIB.my (RFC 2575)

• SNMPv2-MIB.my

• TCP-MIB.my

• UDP-MIB.my

• RIP SNMP MIB

Industry Standards

• Ethernet: IEEE 802.3, 10BASE-T

• Fast Ethernet: IEEE 802.3u, 100BASE-TX, 100BASE-FX

• Gigabit Ethernet: IEEE 802.3z, 802.3ab

• IEEE 802.3af Power over Ethernet (PoE)

• IEEE 802. 1D Spanning Tree Protocol

• IEEE 802.1w rapid reconfiguration of spanning tree

• IEEE 802. 1s multiple VLAN instances of spanning tree

• IEEE 802.3 ad Link Aggregation Control Protocol (LACP)

• IEEE 802. 1p class-of-service (CoS) prioritization

• IEEE 802.1Q VLAN

• IEEE 802. 1x user authentication

• 1000BASE-X (GBIC)

• 1000BASE-X (Small Form-Factor Pluggable [SFP])

• 1000BASE-SX

• 1000BASE-LX/LH

• 1000BASE-ZX

• RMON I and II standards

Supported Catalyst 4500 Series Classic Line Cards

• WS-X4148-FE-BD-LC: Cisco Catalyst 4500 Fast Ethernet Switching Module, 48-port 100BASE-BX-D SMF (LC)

• WS-X4124-FX-MT: Cisco Catalyst 4000 Fast Ethernet Switching Module, 24-port 100BASE-FX (MT-RJ)

• WS-X4148-FX-MT: Cisco Catalyst 4500 Fast Ethernet Switching Module, 48-port 100BASE-FX multimode fiber (MMF)

• (MT-RJ)

• WS-X4124-RJ45: Cisco Catalyst 4500 10/100 Module, 24 ports (RJ-45)

• WS-X4148-RJ: Cisco Catalyst 4500 10/100 Module, 48 ports (RJ-45)

• WS-X4148-RJ21: Cisco Catalyst 4500 10/100 Module, 48-port telco (4 x RJ-21)

• WS-X4248-RJ21V: Cisco Catalyst 4500 PoE 802.3af 10/100, 48 ports (RJ-21)

• WS-X4224-RJ45V: Cisco Catalyst 4500 PoE 803.3af 10/100, 24 ports (RJ-45)

• WS-X4248-RJ45V: Cisco Catalyst 4500 PoE 802.3af 10/100, 48 ports (RJ-45)

•

Hierarchical Navigation

Cisco Network Modules

Cisco Catalyst 4500 Series Supervisor Engine II-Plus

Downloads