180 watts of available PoE power, the SG300-28PP 24-Port 10/100 Gigabit PoE Managed Switchfrom Cisco is designed to support a variety of PoE devices from access points to VoIP phones, and much more. On the switch you will find a total of 26 Gigabit ports, 24 of which are PoE+ compatible, with the other two providing combo mini-GBIC connectivity. The two dedicated mini-GBIC ports offer fiber connectivity for devices such as local area storage networks where enhanced data transfer rates are essential. This switch supports a switching capacity of 56.0 Gbps (41.67 mpps) ensuring it can handle large amounts of data with reduced network lag.
Cisco has also built in a variety of network security features into this switch including access control lists, guest VLANs, IEEE 802.1x port security, IPv6 First Hop Security, DOS attack prevention, and much more. These built-in security features give the network administrator full control of nearly every aspect of the network to ensure critical portions of the infrastructure remain secure.
Secure Desktop Connectivity
The Cisco SG300-28PP switch can simply and securely connect employees working in small offices with each other and with all of the servers, printers and other devices they use. High performance and reliable connectivity helps speed file transfers and data processing, improves network uptime and keeps your employees connected and productive.
Secure Connectivity
Power over Ethernet, Auto Smartports, QoS, VLAN and Access Control features allow the Cisco 300 Series Switch to add Business Grade wireless to an SMB network.
Unified Communications
As a managed network solution, the Cisco SG300-28PP switch provides the performance and advanced traffic-handling intelligence you need to deliver all communications and data over a single network. The Cisco SG300-28PP is tested to help ensure easy integration and full compatibility with Cisco and other products, providing a complete small business solution.
Secure Guest Connectivity
The Cisco SG300-28PP switch lets you extend highly secure network connectivity to guests in a variety of settings, such as a hotel, an office waiting room or any other area open to non-employee users. Using powerful but easy-to-configure security and traffic segmentation capabilities, you can isolate your vital business traffic from guest services and keep guests' network sessions private from each other.
High Performance and Reliability
The Cisco SG300-28PP Switch is tested to deliver high availability and performance. The solution speeds up file transfer times and improves slow, sluggish networks, while keeping your vital business applications available and preventing costly downtime. As a managed switching solution, the Cisco SG300-28PP also gives you the flexibility to manage and prioritize high-bandwidth traffic such as voice. That means you can empower your employees with state-of-the-art communication and productivity solutions, without draining the performance of your other business applications.
User-Friendly Setup and Configuration
The Cisco SG300-28PP switch is designed to be easy to use and managed by small businesses and the partners who serve them. The included device manager software provides an intuitive, web-based interface to simplify setup, security and quality of service (QoS) traffic prioritization, allowing even users without IT expertise to configure the switch in minutes. It also provides a Cisco FindIT Network Discovery Utility. This utility works through a simple toolbar on the user's web browser to discover Cisco devices in the network and display basic information, such as serial numbers and IP addresses, to aid in the configuration and deployment of Cisco Small Business products. The switch uses Cisco Discovery Protocol as well as Link Layer Discovery Protocol (LLDP-MED) to automatically detect all the devices connected to your network and then automatically configures them for the appropriate connectivity and instructs the devices to use appropriate voice VLAN or QoS parameters. For more advanced capabilities and hands-on control, the switch supports Smartport roles which configure the ports with specific levels of security, QoS and availability according to the type of connected device, based on Cisco practices and pretested configurations. The Auto Smartports feature applies the intelligence delivered through the Smartport roles and applies it automatically to the port based on the devices discovered over CDP or LLDP-MED. This facilitates zero touch deployments. Although the Cisco SG300-28PP is designed to be deployed without using a command-line interface, Cisco Textview is available for those who prefer to use text-based configuration. Together, these features reduce the time your staff must devote to network deployment, management and troubleshooting.
Security
The Cisco SG300-28PP switch provides a high level of security and gives you the control to safeguard your network from unauthorized users. Its features include: Embedded security to protect management data traveling to and from the switch and encrypt network communications.
Extensive access control lists to restrict sensitive portions of the network from unauthorized users and guard against network attacks.
Guest virtual LANs let you provide Internet connectivity to non-employee users while isolating critical business services from guest traffic.
Support for advanced network security applications such as IEEE 802.1X port security to tightly limit access to specific segments of your network.
Security mechanisms such as Bridge Protocol Data Unit Guard and broadcast/multicast/unknown unicast storm control, protect the network from invalid configurations or malicious intent.
Secure Core Technology helps ensure that the switch will receive and process management and protocol traffic no matter how much traffic is received.
Power over Ethernet
The Cisco SF300-28PP switch features 24 PoE ports of fast Ethernet. This capability simplifies advanced technology deployments such as IP telephony, wireless and IP surveillance by allowing you to connect and power network endpoints over a single Ethernet cable. With no need to install separate power supplies for IP phones or wireless access points, you can take advantage of advanced communications technologies quickly and at a low cost.
IP Telephony Support
The Cisco SG300-28PP switch includes embedded QoS intelligence to prioritize delay-sensitive services such as voice and video, simplify unified communications deployments and help ensure consistent network performance for all services. For example, automated voice VLAN capabilities let you plug any IP phone (including third-party phones) into your IP telephony network and receive an immediate dial tone. The switch automatically configures the device with the right VLAN and QoS parameters to prioritize voice traffic.
Advanced Network Management Capabilities
As a managed switch, the Cisco SG300-28PP switch lets you use a variety of advanced features to control traffic over your network. Features include:
Static-routing/Layer 3 switching between VLANs: This capability allows you to segment your network into separate workgroups and communicate across VLANs without degrading application performance. As a result, you can manage internal routing with your switch and dedicate your router to external traffic and securities, helping your network run more efficiently.
IPv6 support: As the IP network addressing scheme evolves to accommodate more devices, you can make sure that your network is ready. The Cisco SG300-28PP switch provides native support for IPv6, the newest version of the Internet Protocol, as well as the previous IPv4 standard. As a result, you will be able to move up to the next generation of networking applications and operating systems without an extensive equipment upgrade.
Dual image support: With the ability to maintain dual images of your switches, you can perform software upgrades without having to take the network offline and without worrying about an outage during an upgrade.
Remote management: Using Simple Network Management Protocol, you can set up and manage all switches and other Cisco devices in your network remotely, instead of having to directly connect to them.
Optimal Energy Efficiency
The Cisco SG300-28PP "green" switch designed with power-saving features optimizes power use to protect the environment and reduces energy costs, without compromising performance. Power-saving features include: The application-specific integrated circuits, using low-power 65-nanometer technology (these chipsets allow for low power consumption and thin designs).
Automatic power shutoff on PoE ports when a link is down.
Embedded intelligence to adjust signal strength based on cable length.
Fanless design which reduces power consumption, increases reliability and provides a quiet operation.
Expansion Ports
The Cisco SG300-28PP switch provides ports per Gigabit Ethernet switch than traditional switch models, giving you more flexibility to connect and empower your business. It also offers mini gigabit interface converter (mini-GBIC) expansion slots that give you the option to add fiber-optic or Gigabit Ethernet uplink connectivity to the switch. With the ability to increase the connectivity range of the switch, you have flexibility to design your network around your business environment and to easily connect switch on different floors or across the business.
Multi-Language
The Cisco 300 Series is available in seven languages: English, French, German, Italian, Spanish, Japanese, and simplified Chinese. All product user interfaces and documentation are translated, giving you the ability to select your preferred language.
Security and Investment Protection
The Cisco SG300-28PP switch offers the reliable performance, investment protection and peace of mind you expect from a Cisco switch. When you invest in the Cisco SG300-28PP switch, you gain the benefit of:
Rigorous testing helps ensure easy integration and compatibility with other Cisco networking and communications products, including the complete Cisco Small Business portfolio.
Service and Support
The Cisco SG300-28PP switch is backed by the Cisco Small Business Support Service, which provides affordable peace-of-mind coverage. This subscription-based service helps you protect your investment and derive maximum value from Cisco Small Business products. This service includes software updates, access to the Cisco Small Business Support Center, and extends technical service to three years. Cisco Small Business products are supported by professionals in Cisco Small Business Support Center locations worldwide who are specifically trained to understand your needs. The Cisco Small Business Support Community, an online forum, enables you to collaborate with your peers and reach Cisco technical experts for support information.
Performance | 41.67 Mp/s (64-byte packets) |
Switching Capacity | 56.0 Gb/s |
Layer 2 Switching |
Spanning Tree Protocol: Standard 802.1d Spanning Tree support Fast convergence using 802.1w (Rapid Spanning Tree), enabled by default Multiple Spanning Tree instances using 802.1s Port Grouping: Support for IEEE 802.3ad Link Aggregation Control Protocol Up to 8 groups Up to 8 ports per group with 16 candidate ports for each (dynamic) 802.3ad link aggregation VLAN: Support for up to 256 VLANs simultaneously (out of 4096 VLAN IDs) Port-based and 802.1Q tag-based VLANs MAC-based VLAN Management VLAN Private VLAN Edge, also known as protected ports, with multiple uplinks Guest VLAN Unauthenticated VLAN Voice VLAN: Voice traffic is automatically assigned to a voice-specific VLAN and treated with appropriate levels of QoS Q-in-Q VLAN: VLANs transparently cross a service provider network while isolating traffic among customers Generic VLAN Registration Protocol/Generic Attribute Registration Protocol: Protocols for automatically propagating and configuring VLANs in a bridged domain Dynamic Host Configuration Protocol Relay at Layer 2: Relay of DHCP traffic to DHCP server in different VLAN. Works with DHCP Option 82 Internet Group Management Protocol Versions 1, 2 and 3 Snooping: IGMP limits bandwidth-intensive multicast traffic to only the requesters; supports 256 multicast groups (source-specific multicasting is also supported) IGMP Querier: IGMP querier is used to support a Layer 2 multicast domain of snooping switches in the absence of a multicast router Head-of-Line (HOL) Blocking: HOL blocking prevention |
Layer 3 |
IPv4 Routing: Wirespeed routing of IPv4 packets Up to 32 static routes and up to 32 IP interfaces Classless Inter-Domain Routing: Support for CIDR DHCP Relay at Layer 3: Relay of DHCP traffic across IP domains User Datagram Protocol Relay: Relay of broadcast information across Layer 3 domains for application discovery or relaying of BootP/DHCP packets |
Security |
Secure Shell Protocol: SSH secures Telnet traffic to and from the switch; SSH v1 and v2 are supported Secure Sockets Layer: SSL Support: Encrypts all HTTPS traffic, allowing highly secure access to the browser-based management GUI in the switch IEEE 802.1X (Authenticator Role): RADIUS authentication and accounting, MD5 hash; guest VLAN; unauthenticated VLAN, single/multiple host mode and single/multiple sessions Supports time-based 802.1X Dynamic VLAN assignment STP Bridge Protocol Data Unit Guard: A security mechanism to protect the network from invalid configurations. A port enabled for BPDU Guard is shut down if a BPDU message is received on that port STP Root Guard: This prevents edge devices not in the network administrator's control from becoming Spanning Tree DHCP Snooping: Filters out DHCP messages with unregistered IP addresses and/or from unexpected or untrusted interfaces. This prevents rogue devices from behaving as a DHCP Server IP Source Guard (IPSG): When IP Source Guard is enabled at a port, the switch filters out IP packets received from the port if the source IP addresses of the packets have not been statically configured or dynamically learned from DHCP snooping. This prevents IP Address Spoofing Dynamic ARP Inspection (DAI): The switch discards ARP packets from a port if there are no static or dynamic IP/MAC bindings or if there is a discrepancy between the source or destination address in the ARP packet. This prevents man-in-the-middle attacks IP/Mac/Port Binding (IPMB): The features (DHCP Snooping, IP Source Guard, and Dynamic ARP Inspection) above work together to prevent DOS attacks in the network, thereby increasing network availability Secure Core Technology: Ensures that the switch will receive and process management and protocol traffic no matter how much traffic is received Secure Sensitive Data (SSD): A mechanism to manage sensitive data (such as passwords, keys, etc.) securely on the switch, populating this data to other devices, and secure autoconfig. Access to view the sensitive data as plaintext or encrypted is provided according to the user configured access level and the access method of the user Layer 2 Isolation Private VLAN Edge (PVE) with community VLAN: PVE (also known as protected ports) provides Layer 2 isolation between devices in the same VLAN, supports multiple uplinks Port Security: Locks MAC addresses to ports, and limits the number of learned MAC addresses RADIUS/TACACS+: Supports RADIUS and TACACS authentication. Switch functions as a client Storm Control: Broadcast, multicast, and unknown unicast DoS Prevention: DoS attack prevention Congestion Avoidance: A TCP congestion avoidance algorithm is required to minimize and prevent global TCP loss synchronization ACLs: Support for up to 512 rules Drop or rate limit based on source and destination MAC, VLAN ID or IP address, protocol, port, differentiated services code point/IP precedence, TCP/ UDP source and destination ports, 802.1p priority, Ethernet type, Internet Control Message Protocol packets, IGMP packets, TCP flag |
Quality of Service (QoS) |
Priority Levels: 4 hardware queues Scheduling: Strict priority and weighted round-robin Queue assignment based on DSCP and class of service (802.1p/CoS) Class of Service: Port based; 802.1p VLAN priority based; IPv4/v6 IP precedence/type of service/DSCP based; Differentiated Services (DiffServ); classification and re-marking ACLs, trusted QoS Rate Limiting: Ingress policer; egress shaping and rate control; per VLAN, per port and flow based |
Standards | IEEE 802.3 10BASE-T Ethernet, IEEE 802.3u 100BASE-TX Fast Ethernet, IEEE 802.3ab 1000BASE-T Gigabit Ethernet, IEEE 802.3ad LACP, IEEE 802.3z Gigabit Ethernet, IEEE 802.3x Flow Control, IEEE 802.1D (STP, GARP, and GVRP),IEEE 802.1Q/p VLAN, IEEE 802.1w RSTP, IEEE 802.1s Multiple STP, IEEE 802.1X Port Access Authentication, IEEE 802.3af, IEEE 802.3at, RFC 768, RFC 783, RFC 791, RFC 792, RFC 793, RFC 813, RFC 879, RFC 896, RFC 826, RFC 854, RFC 855, RFC 856, RFC 858, RFC 894, RFC 919, RFC 922, RFC 920, RFC 950, RFC 951, RFC 1042, RFC 1071, RFC 1123, RFC 1141, RFC 1155, RFC 1157, RFC 1350, RFC 1533, RFC 1541, RFC 1542, RFC 1624, RFC 1700, RFC 1867, RFC 2030, RFC 2616, RFC 2131, RFC 2132, RFC 3164, RFC 3411, RFC 3412, RFC 3413, RFC 3414, RFC 3415, RFC 2576, RFC 4330, RFC 1213, RFC 1215, RFC 1286, RFC 1442, RFC 1451, RFC 1493, RFC 1573, RFC 1643, RFC 1757, RFC 1907, RFC 2011, RFC 2012, RFC 2013, RFC 2233, RFC 2618, RFC 2665, RFC 2666, RFC 2674, RFC 2737, RFC 2819, RFC 2863, RFC 1157, RFC 1493, RFC 1215, RFC 3416 |
IPv6 |
IPv6: IPv6 host mode IPv6 over Ethernet Dual IPv6/IPv4 stack IPv6 neighbor and router discovery IPv6 stateless address auto-configuration Path maximum transmission unit discovery Duplicate address detection ICMP version 6 IPv6 over IPv4 network with Intra-Site Automatic Tunnel Addressing Protocol support IPv6 QoS: Prioritize IPv6 packets in hardware IPv6 ACL: Drop or rate, limit IPv6 packets in hardware Multicast Listener Discovery Snooping: Deliver IPv6 multicast packets only to the required receivers |
Management |
Web User Interface: Built-in switch configuration utility for easy browser-based device configuration (HTTP/HTTPS). Supports configuration, system dashboard, system maintenance and monitoring SNMP: SNMP versions 1, 2c, and 3 with support for traps, and SNMP version 3 user-based security model Remote Monitoring: Embedded RMON software agent supports 4 RMON groups (history, statistics, alarms and events) for enhanced traffic management, monitoring and analysis IPv4 and IPv6 Dual Stack: Coexistence of both protocol stacks to ease migration Firmware Upgrade: Web browser upgrade (HTTP/HTTPS) and TFTP Upgrade can be initiated through console port as well Dual images for resilient firmware upgrades Port Mirroring: Traffic on a port can be mirrored to another port for analysis with a network analyzer or RMON probe. Up to 8 source ports can be mirrored to one destination port. A single session is supported VLAN Mirroring: Traffic from a VLAN can be mirrored to a port for analysis with a network analyzer or RMON probe. Up to 8 source VLANs can be mirrored to one destination port. A single session is supported Dynamic Host Configuration Protocol (Options 66, 67, 82, 129 and 150): DHCP Options facilitate tighter control from a central point (DHCP server) to obtain IP address, auto-configuration (with configuration file download), DHCP relay, and hostname Secure Copy (SCP): Securely transfer files to and from the switch Auto-configuration with Secure Copy (SCP) File Download: Enables secure mass deployment with protection of sensitive data Text-Editable Config Files: Config files can be edited with a text editor and downloaded to another switch, facilitating easier mass deployment Smartports: Simplified configuration of QoS and security capabilities Auto Smartports: Applies the intelligence delivered through the Smartport roles and applies it automatically to the port based on the devices discovered over CDP or LLDP-MED. This facilitates zero touch deployments Textview CLI: Scriptable command-line interface. A full CLI as well as a menu-based CLI is supported Cloud Services: Support for Cisco Small Business FindIT Network Discovery Utility Localization: Localization of GUI and documentation into multiple languages Other Management: Traceroute; single IP management; HTTP/HTTPS; SSH; RADIUS; port mirroring; TFTP upgrade; DHCP client; BOOTP; SNTP; Xmodem upgrade; cable diagnostics; ping; syslog; Telnet client (SSH secure support) Time-Based Port Operation: Link up or down based on user-defined schedule (when the port is administratively up) Login Banner: Configurable multiple banners for web as well as CLI |
Power Efficiency |
Energy Detect: Automatically turns off power off on Gigabit Ethernet RJ-45 port when detecting link down Active mode is resumed without loss of any packets when the switch detects the link up Cable Length Detection: Adjusts the signal strength based on the cable length. It reduces the power consumption for cables shorter than 10 m Disable Port LEDs: LEDs can be manually turned off to save on Energy |
General Features |
Jumbo Frames: Frame sizes up to 9 KB supported on 10/100 and Gigabit interfaces MAC Table: Up to 16K (16384) MAC addresses |
Discovery |
Bonjour: Bonjour locates devices such as printers, other computers and the services that those devices offer on a local network using multicast Domain Name System (mDNS) service records Link Layer Discovery Protocol (802.1ab) with LLDP-MED Extensions: LLDP allows the switch to advertise its identification, configuration and capabilities to neighboring devices that store the data in a MIB. LLDP-MED is an enhancement to LLDP that adds the extensions needed for IP phones Cisco Discovery Protocol (CDP): CDP is a proprietary data link layer and network layer protocol which is used to share information about other directly connected Cisco equipment, such as the operating system version and IP address |
PoE Features |
IEEE 802.3af PoE delivered over any of the RJ-45 ports within the listed power budgets Power Dedicated to PoE: 180W (PoE+ supported) Number of Ports That Support PoE: 24 |
Power Consumption |
Power Savings Mode: Energy Detect System Power Consumption: 110 V, 31.9 W 220 V, 33.0 W Power Consumption Case: 110 V, 218.57 W 220 V, 213.35 W Heat Dissipation: 727.98 BTU/hr |
Ports |
Total System Ports: 28 x Gigabit Ethernet RJ-45 Ports: 26 x Gigabit Ethernet Combo Ports (RJ-45 + SFP): 2 x Gigabit Ethernet Combo |
Buttons | Reset button |
Cabling Type | Unshielded twisted pair Category 5 or better for 10BASE-T/100BASE-TX; UTP Category 5 Ethernet or better for 1000BASE-T |
LEDs | System, Link/Act, PoE, Speed, LED power saving option |
Flash | 16 MB |
CPU | 128 MB |
Packet Buffer Memory | 8 MB |
Power Supply | 100 to 240 V, 47 to 63 Hz, internal, universal |
Fan | 2 Pieces |
Acoustic Noise | 40.4 dB |
MTBF | At 113°F (45°C): 310,755 hours |
Certifications | UL (UL 60950), CSA (CSA 22.2), CE mark, FCC Part 15 (CFR 47) Class A |
Environmental Requirements |
Operating Temperature: 32 to 113°F (0 to 45°C) Storage Temperature: -4 to +158°F (-20 to +70°C) Operating Relative Humidity: 10 to 90% (non-condensing) Storage Relative Humidity: 10 to 90% (non-condensing) |
Minimum Requirements |
Web Browser: Mozilla Firefox version 8 or later; Microsoft Internet Explorer version 7 or later Category 5 Ethernet network cable TCP/IP, network adapter and network operating system (such as Microsoft Windows, Linux, or Mac OS X) installed on each computer in the network |
Dimensions | 17.30 x 1.45 x 10.10" (44.00 x 4.44 x 25.70 cm) |
Weight | 8.71 lb (3.95 kg) |
Packaging Info | |
Package Weight | 11.85 lb |
Box Dimensions (LxWxH) | 21.1 x 15.2 x 3.8" |