4 ContentsStacking Features . . . . . . . . . . . . . . . . . . . . 56High Port Count . . . . . . . . . . . . . . . . . . . 56Single IP Management . . . . . . . . . . . . . . . 56Automatic Firmware Upgrade for NewStack Members . . . . . . . . . . . . . . . . . . . 56Master Failover with Transparent Transition . . . . 57Nonstop Forwarding on the Stack . . . . . . . . . 57Hot Add/Delete and Firmware Synchronization . . 57Security Features . . . . . . . . . . . . . . . . . . . . 57Configurable Access and AuthenticationProfiles . . . . . . . . . . . . . . . . . . . . . . . 57Password-Protected Management Access . . . . 58Strong Password Enforcement . . . . . . . . . . . 58TACACS+ Client . . . . . . . . . . . . . . . . . . . 58RADIUS Support . . . . . . . . . . . . . . . . . . 58SSH/SSL. . . . . . . . . . . . . . . . . . . . . . . 59Inbound Telnet Control . . . . . . . . . . . . . . . 59Denial of Service . . . . . . . . . . . . . . . . . . 59Captive Portal . . . . . . . . . . . . . . . . . . . . 59Dot1x Authentication (IEEE 802.1X) . . . . . . . . . 60MAC-Based 802.1X Authentication . . . . . . . . . 60Dot1x Monitor Mode . . . . . . . . . . . . . . . . 60MAC-Based Port Security . . . . . . . . . . . . . 60Access Control Lists (ACL) . . . . . . . . . . . . . 61Time-Based ACLs . . . . . . . . . . . . . . . . . . 61IP Source Guard (IPSG) . . . . . . . . . . . . . . . 61DHCP Snooping . . . . . . . . . . . . . . . . . . . 62Dynamic ARP Inspection . . . . . . . . . . . . . . 62Protected Ports (Private VLAN Edge). . . . . . . . 62Switching Features . . . . . . . . . . . . . . . . . . . 63Flow Control Support (IEEE 802.3x) . . . . . . . . . 63Head of Line Blocking Prevention . . . . . . . . . 63