G-3
Network Out-of-Band Management (OOBM)
Concepts
Figure D-1. C-class enclosure OA Management port
Out-of-band management (OOBM) operates on a “management plane” that is
separate from the “data plane” used by data traffic on the switch and by in-
band management traffic. That separation means that out-of-band manage-
ment can continue to function even during periods of traffic congestion,
equipment malfunction, or attacks on the network. In addition, it can provide
improved switch security: a properly configured switch can limit management
access to the management port only, preventing malicious attempts to gain
access via the data ports.
Network OOBM typically occurs on a management network that connects
multiple switches. It has the added advantage that it can be done from a central
location and does not require an individual physical cable from the manage-
ment station to each switch’s console port.
The table below summarizes the switch management ports.
Table A-1. Switch Management Ports
In Band Out Of Band
Networked Directly connected Networked
Management interface command line (CLI), menu, Web command line (CLI), menu command line (CLI), menu
Communication plane data plane management plane management plane
Connection port any data port dedicated serial or USB
console port
dedicated networked
management port
Connector type usually RJ-45; also CX4, SFP,
SFP+, and XFP
OA C-class DB9 serial Mini-b USB
management port
(networked, out of band)
