S5624P-2Z 三层全网管PoE++交换机(24*10GBASE-T,2*100Gb),可升级供电模块

  • 高密度高速率接口,低延迟
  • IGMP组播
  • 易用的配置界面
  • 热插拔电源和风扇模块
  • 全三层网管功能

功能亮点:

  1. QinQ
  2. BGP
  3. OSPF
  4. MLAG
  5. IPv6
  6. VxLan
  7. MPLS
  8. Multi-Gigabit
  9. Layer 3 high-function
  10. POE++ 90W

应用场景:

  1. 企业网/园区网
  2. 运营商网络
Get a quote  

Description

采用运营商级、高性能以太网核心交换芯片

S5600系列路由交换机,采用国产自研高性能以太网核心交换芯片,可满足城域网、企业网、数据中心、超融合等应用的需求。

丰富的端口形态

支持1G/ 10G/ 100G等多种端口形态,可适应各种网络部署需求。

绿色节能的系统设计

采用智能的风扇调速方案,支持实时功耗检测,为客户降低运维成本,打造绿色节能数据中心。

可灵活配置的转发表项满足不同业务部署场景

灵活的表项管理技术FTM,支持根据不同的应用场景需求,调整各类硬件转发表项的大小。

智能以太网OAM:完整的故障管理和性能保证

基于IEEE802.1ag和ITU-T Y.1731协议的端到端OAM,使得以太网服务供应商能够主动监控他们的业务,测量端到端的性能并保证客户得到符合签约SLA水平的业务。

故障管理包括CCM / LTM / LBM,性能测量包括测量帧时延和帧时延的变化。

S5600系列交换机支持基于802.3ah标准的EFM,支持对端发现,链路监控,故障通告,远端环回,MIB参数回传等功能。

数据中心DCB特性

支持前沿的数据中心功能:基于优先级的流量控制(PFC),显式拥塞通知(ECN),数据中心的TCP等。

支持MLAG(Multi-Chassis Link Aggregation),实现跨设备链路聚合,通过将两台聚合交换机上的接口进行跨设备链路聚合,从而把链路可靠性从单板级提高到了设备级,组成Active-Active系统. 在两台聚合交换机的中间通过一条Peer-link链路进行连接,使其在逻辑上如同一台设备。两台设备上的端口共同形成聚合端口,使得所有端口可以共同参与数据流量的转发。与堆叠相比,组成MLAG的设备在管理上仍然需要分别管理,但是MLAG配置相对简单,且配置完成后不需重启,同时转发决策都在本地,正常情况下流量不需要通过设备间互连路径转发,避免了互连路径带宽成为瓶颈,同时也降低了延时。

支持Overlay技术(包括VXLAN / NVGRE / GENEVE等隧道技术),通过VXLAN / NVGRE / GENEVE等头部封装完整的内层以太网报文,使得二层报文可以跨越三层网络,解决传统二层网络中设备MAC表项规格对网络规模的限制、VLAN ID数量对网络隔离能力的限制、以及传统网络中VLAN / VPN技术无法满足网络动态调整需求等问题。以VXLAN为例,24bit的VNI标识符最多可支持16777215个逻辑网络,通过VXLAN构建的大二层网络,在虚拟机迁移时IP / MAC等地址参数可保持不变。

MLAG和Overlay在数据中心网络交换机上都是理想的选择。

S5600系列支持通过开放的API接口实现SDN(软件定义网络Software Defined Network)。SDN是一种创新的网络架构体系, 通过将网络的控制层和数据转发层进行分离,大幅简化了网络的管理及维护难度。

高可靠性

现场可插拔模块化电源,支持AC或DC 1+1备份;风扇支持2 +1备份和智能调速;支持对芯片组的温度、电源与风扇的状态进行实时监控。

支持LACP / ECMP / VRRP / VARP / STP/RSTP/MSTP / Smart Link / BFD / ERPS / G.8031 / G.8032 / Load-Balancing等特性,全面且高效的保护网络中的数据流量。

专利功能Sysmon,可以检测CPU状态,并在软件出错的情况下采取保护措施。

出色的QoS管理

S5600系列路由交换机为每个端口提供了10个(8个单播队列+1个组播队列+1个镜像队列)硬件队列。支持多阶调度WDRR(Weighted Deficit Round Robin) / SP(Strict Priority)和TD(Tail Drop) / WRED(Weighted Random Early Detection) 等拥塞保护机制。并且运用了灵活的队列调度算法来实现针对队列或者针对端口的流量整形。

入口和出口方向的策略管理提供智能带宽监测功能,可根据端口的速率灵活调整监测的颗粒度。支持srTCM(单速率三色标记)和trTCM(双速率三色标记)。

三网合一服务支持与带宽保证的高品质应用

S5600系列为三网合一服务(IPTV,视频监控等)提供了高带宽。内置的QoS功能和灵活的队列技术可保障高品质的服务。

丰富的组播协议集(IGMP snooping / IGMP v1/v2/v3 / PIM-SM),支持2K组播组,每组4K逻辑复制。采用自研软件,完美支持IPTV业务,有效控制组播时延。。

全面的网络安全策略

S5600系列支持用户级、交换机级和网络级的安全控制。

基本的IPv4 / IPv6 / MAC ACL可以分别过滤IPv4 / IPv6/non-IP报文,并且,额外提供扩展的IPv4 / IPv6 ACL可以在一个规则内同时匹配报文的二、三、四层信息。以上ACL均可以应用到物理端口、VLAN、端口组和VLAN组上,端口组或VLAN组内的成员共享一套ACL规则,可以节省TCAM资源。

ARP检测和IP源防护功能,防止网络遭受恶意ARP攻击。 提供CPU流量保护、风暴控制功能,优化CPU负载功能。集中式的802.1x认证,禁止非法用户访问网络。

出色的管理特性

支持丰富的管理接口,包括Console、带内网口和带外网口、USB口;支持SNMPv1/v2/v3,支持CLI命令行,Web网管,TELNET及FTP配置,支持OAM,使设备管理更方便,并且支持SSH2.0、SSL等加密方式,使得管理更加安全。

规格

硬件特性

Product Name S5624P-2Z S5624T-2Z S5624P-8N S5624T-8N
Ethernet Ports – 24 * 100M/1G/2.5G/5G/

10GBASE-T

– 2*100Gb QSFP28

– 24*100M/1G/2.5G/5G/

10G BASE-T

– 8*25G/10G SFP28

802.3BT POE++ Ports 24 N/ 24 N/A
Power Supplies 2*600W/900W/1200W PoE Hot-swappable Power Supplies 2*350W (1+1 Redundancy) Hot-swappable Power Supplies 2*600W/900W/1200W PoE Hot-swappable Power Supplies 2*350W (1+1 Redundancy) Hot-swappable Power Supplies
Management Ports 1*Console Port (RJ45)

1* Ethernet Management Port(RJ45)

1* USB Port

Fans 2*Hot-swappable Fan Module (2 Fans Peer Module)
Airflow Front-to-Rear
Flash Memory 8GB EMMC (OS)

4MB SPI Flash(Boot)

DRAM 2GB
Switching Capacity 880Gbps
MAC address 98304
Size 442mm*356.5mm*43.6mm
Weight 6.96kg (Include 2 Power Modules)
Operating Temperature 0ºC to 45ºC
Storage Temperature -40ºC to 70ºC
Operating Humidity 10% to 90% (Non-condensing)
Storage Humidity 0 to 95% (Non-condensing)
Temperature Alarm 50ºC

软件特性列表

支持●   不支持○

类别 特性 描述  license
EB MS MA
Ethernet interface Ethernet interface operating modes(full duplex, half duplex, and auto-negotiation)
Ethernet interface operating rates
Jumbo Frame
port-xconnect
Flow-control Flow-control tx/rx
storm-control Port based storm-control
Port-block Port-block(know-unicast/unknow-unicast/know-multicast/unknow-multicast/broadcast)
Port-isolate L2/L3/All  Port-isolate
Uni-direction isolate
L2 Protocol Tunnel L2 Protocol Tunnel(support CDP/CFM/DOT1X/LLDP/SLOW-PROTO/STP/VTP
Forward mode Store-and-forward
Cut-through
VLAN VLAN Access mode Access/Trunk
Default VLAN
VLAN Classification VLAN Classification(port based/mac based/ip based/protocal based)
QinQ Basic QinQ
Selective QinQ
VLAN Mapping(1:1 VLAN Translation)
VLAN Statistics VLAN Statistics
Private VLAN Private VLAN
Voice VLAN Voice VLAN
Guest VLAN Guest VLAN
MAC MAC Address Table Automatic learning and aging of MAC addresses
Hardware Learning
Static and dynamic  MAC address entries
blackhole MAC
MAC Flapping detect MAC Flapping detect
Port Bridge Port Bridge
LAG Link aggregation Static-LAG & LACP
LAG load balance(SLB)
LAG load balance(DLB)
LAG load balance(RR)
LAG Self-healing
xSTP STP Spanning-Tree Protocol
RSTP Rapid Spanning-Tree Protocol
MSTP Multi-instance Spanning-Tree Protocol
Spanning-Tree Protocol Protection BPDU Filter/Guard
Root Guard
Loop Guard
Anti TC-BPDU attack
ERPS ERPS Single ERPS ring
tangent ERPS rings
intersecting ERPS rings
compatible with RRPP
G.8031 G.8031 G.8031(Ethernet Linear Network Protection)
G.8032 G.8032 G.8032 V1 & V2
Single Ring
Sub Ring
Loopback Detect Loopback Detect Loopback-detection
Layer2 Multicast IGMP Snooping IGMPv1/v2/v3 Snooping
Fast leave
Static IGMP snooping group
MVR MVR(Multicast VLAN Registration)
ARP ARP Static and dynamic ARP entries
Aging of ARP entries
Gratuitous ARP
ARP proxy basic ARP-Proxy
local ARP-Proxy
IPv4 Unicast Routing IPv4 Static Routes IPv4 Static Routes
blackhole Routes
co-work with IP SLA
VRF(Virtual Routing and Forwarding)
uRPF check
RIP RIPv1/v2
OSPFv2 OSPFv2
IS-IS IS-IS
BGP IBGP
EBGP
Route policy Route-map
IPv4 prefix-list
PBR PBR(Policy-based Routing)
ICMP ICMP redirect
ICMP unreachables
ECMP ECMP(SLB)
ECMP(DLB)
ECMP(RR)
ECMP Self-healing
IPv4 Multicast Routing IGMP IGMPv1/v2/v3
IGMP-Proxy
IGMP SSM Mapping
PIM PIM-SM
PIM-SSM
PIM-DM
IPv6 Basic Protocol ICMPv6 ICMPv6
NDP NDP
PMTU PMTU
IPv6 Unicast Routing IPv6 Static Routes IPv6 Static Routes
RIPng RIPng
OSPFv3 OSPFv3
IPv6 Multicast Routing MLD v1/v2 MLD v1/v2
MLD v1/v2 Snooping MLD v1/v2 Snooping
MVR6 MVR6
PIM-SM v6 PIM-SM v6
IP Tunnel IPv6 over IPv4 Tunnel IPv6 over IPv4 Tunnel
6to4 Tunnel 6to4 Tunnel
ISATAP Tunnel ISATAP Tunnel
IPv6 Service DHCPv6 DHCPv6 Relay
DHCPv6 Snooping
IPv6 Prefix List IPv6 Prefix-list
BFD BFD BFD for Static route
BFD for OSPFv2
BFD for VRRP/Track
BFD for PBR
VRRP VRRP VRRP
Track for VRRP
Smart Link Smart Link multi-instance
load balance
Multi-Link
Monitor-link
MLAG MLAG MLAG basic
MLAG orphan Port
EFM EFM (802.3ah) Auto detection
Network fault detetion
Network fault handle
remote loopback
CFM CFM (802.1ag) Hardware CCM detect
MAC Ping
MAC Trace
Y.1731 Y.1731 Latency and jitter measure
PoE System Power management Power supply on-spot detection
Power supply capability detection
Power capability auto configuration (PSE)
Power Supply Management Legacy PD detection
PD max power management
PD priority management
  Power Supply Task Plan management
PD Mandatory power supply
operations management PSE log
PSE Chipset temperature inquire
PSE firmware update
QoS Traffic classification Traffic classification based on COS/DSCP (simple classification)
Traffic classification based on ACL ( complex classification)
Traffic classification based on inner header of the tunnel packets
Traffic behaviors Queue scheduling
Remark the priority fields(COS/DSCP) of the packet based on ACL
Remark the priority fields(COS/DSCP) of the packet based on Table Map
Flow redirection
Flow mirror
Traffic policing Traffic policing based on direction(in/out)  of Port
Traffic policing based on direction(in/out) of VLAN
Traffic policing based on direction(in/out) of flow
Traffic policing based on direction(in/out) of aggregated flow
Traffic shaping Queue based traffic shaping
Port based traffic shaping
Congestion management SP(Strict Priority)scheduling
WDRR(Weighted Deficit Round Robin)scheduling
SP + WDRR mixed scheduling
Congestion avoidance TD(Tail Drop)
WRED(Weighted Random Early Detection)
Traffic statistics Packet counts and bytes statistics based on traffic classification
Packet counts and bytes statistics based on the color after traffic policing
Forwarded and discarded packet counts and bytes statistics
ECN (Explicit congestion notification) ECN tags based on Tail Drop
ECN tags based on WRED
VARP Virtual gateway VARP(Virtual-ARP)
VARP subnet
Tunnel VxLAN Manual configure VxLAN tunnel
VxLAN distributed gateway
VxLAN active-active access
Interconnect across Datacenters based on VxLAN
 L2 Protocol packet passthrough
Edit DSCP in VxLan outer header
BGP EVPN
Support to enable/disable overlay split horizon per-VNI
GRE Tunnel GRE Tunnel
NVGRE Tunnel NVGRE Tunnel
GENEVE Tunnel GENEVE Tunnel
DCB DCBX LLDP support DCBX TLV
PFC PFC
IPRAN LDP LDP
MPLS Forwarding MPLS Forwarding
VPWS VPWS
VPLS VPLS
MPLS OAM MPLS OAM
MPLS Stats MPLS Stats
L3VPN L3VPN
ACL MPLS ACL
QoS MPLS QoS
System Security SSH SSHv1/v2
RSA Key generation
RADIUS RADIUS
TACAS+ TACAS+
AAA Authentication
Authorization
Accounting
Dot1x Port based dot1x
MAC based dot1x
Guest VLAN
ACL MAC/IP ACL
Basic Mode ACL
Port-group ACL
VLAN-group ACL
IPv6 ACL
ACL UDF
Time Range
ARP Inspection ARP Inspection
IP Source Guard IP Source Guard
Port Security Limitation on MAC address learning on interface
VLAN Security Limitation on MAC address learning on VLAN
Control Plane Policy (COPP) Black list/wihte list
Rate limit
CPU Traffic Limit CPU Traffic Limit
Prevent DDOS attack Prevent DDOS attack (ICMP Flood/Smurf/Fraggle/LAND/SYN Flood)
Login filter Telnet/SSH ACL filtering
Telnet/SSH IPv6 ACL filtering
MAC Security MacSec(802.1AE)
Link-Flapping detection Link-Flapping detection
Network Management DHCP DHCP Server
DHCP Relay
DHCP Snooping
DHCP Client
DHCP Option82
DHCP Option252
RMON RMON
sFlow sFlow v4/v5
IP SLA IP SLA
Latency/Buffer Monitor Latency Monitor
Buffer Monitor
EFD Elephant Flow Detection
NTP NTP(Network Time Protocol)
Errdisable Errdisable detection and recovery
DNS Static DNS Client
LLDP LLDP
Terminal Services Command Line Interface Configurations through CLI (Command Line Interface)
Help information Banner configuration
Help information in English
Terminal service Vty Terminal service
Console Terminal service
Configuration Management Management interface Inband management interface and configuration
Outband management interface and configuration
User privilege management privileged user proirity and privileged commands
SNMP Network management based on SNMPv1/v2c/v3
Public and private MIB
Public and private Trap
WEB Configuration and management based on WEB UI
RPC-API Configuration and management based on RPC-API
SmartConfig SmartConfig(Automatically configuration when system start)
OVSDB Configuration and management based on OVSDB
system profile configuration change the system specifications by choose different STM Profiles
License control Feature configuration based on License
Restore factory default configuration Restore factory default configuration
File System File system File system(support directory and file management)
Upload and download Upload and download files through FTP or TFTP
Upload and download files through Xmodem
Debugging And Maintenance Debug per-module Debug features
ICMP Debug
BHM Software process monitor: BHM(Beat Heart Monitor)
Hardware Watch Dog
Log & alarm CPU usage display and  alarm
Memory  usage display and  alarm
Device temperature、PSU、FAN、status display and alarm
User operation logs
Management of logs, alarms, and debugging information
VCT VCT(Virtual Cable Test)
system diagnostics Detailed Diagnostic-information collection
Reboot Manual reboot
Schedule Reboot
Reboot Information logging
network diagnostics Ping
IPv6 Ping
Traceroute
mirror Port mirror
Flow mirror
Remote mirror
Multi-destination mirror(m:n)
Use CPU as mirror source
Use CPU as mirror destination and analyze packet
ERSPAN
CPU statistics To CPU/From CPU packets statistics
L2 Ping layer2 network connectivity detection – L2Ping (MAC Ping/Trace)
UDLD UDLD(Unidirectional Link Detection)
unidirectional unidirectional forwarding of the fiber
Loopback port loopback
hardware loopback(internal/external)
System time Time configuration
Timezone
Version Upgrade system soft ware upgrade upgrade with the local image file
upgrade with the remote TFTP server
Uboot upgrade Online upgrade Uboot

Performers Table

Class Feature Sub Spec   Note
Default Profile Extended-buffer IPv6 Profile Layer3 Profile Ipran Profile
Ethernet Basic Jumbo frame Maximum Jumbo frame size 9600 9600 9600 9600 9600
Unicast MAC MAC address Capacity 98304 12288 98304 98304 98304
MAC Learning Rate (SW) > 4000pps
MAC Learning Rate (HW) > 10Gbps
Blackhole MAC address capacity 128
Multicast MAC MAC address Capacity 2048 1024 1024 1024 2048
VLAN VLAN IDs 4094
VLAN Instances 4094
VLANs to enable statistics 256
VLAN Mapping Maximum mapping table 64
Maximum rules Num 1024
EVC Maximum EVC Num 4094
Link Aggregation (Static&LACP) Maximum Member Num per group No limitation
Maximum Group Num 64
Load balance key mode static/dlb/rr/resilient/self-healing
Convergence time < 50ms
VLAN Classification Maximum Rule Num 4096
Maximum Group Num 1
Base MAC Capacity 512
Base IPv4 Capacity 448
Base IPv6 Capacity 32
Base Protocal Capacity 7
Ethernet Ring protection STP Convergence time < 30s
RSTP Convergence time < 1s
MSTP Instance Num 64
Convergence time < 1s
ERPS Domain Num 16
Ring Num 1 Primary ring/domain
2 Sub ring/domain
Protection instance Num per Ring 64
Switchover time < 50 ms
G.8031 Group numbers 256
Switchover time < 50 ms
G.8032 Rings 256
Maximum member ports per Ring 256
Switchover time < 50 ms
Ethernet OAM CFM(802.1ag) Maximum Session Num 1024
Maximum domain Num 8
CCM Interval types 7
CCM minimum Interval 3.3ms
Maximum Down MEP Num 1024
Maximum Up MEP Num 1024
Maximum LMEP Num 1024
IPv4 unicast ARP ARP Capacity 12288 4096 6144 16384 12288
IPv4 FIB 57344 28672 12288 57344 57344
ECMP ECMP Group 240 (share with IPv6)
PBR Policy Route Map 64
Policy Based Routing ACE 256
OSPF Maximum Static Neighbors 256
Maximum Summar address 2000
IPv4 multicast IPMC Multicast Routing Table 2048 512 1024 2048 1024
Multicast routing downstream 4096 2048 routed 2048 5120 2048
interfaces interfaces
IGMP Snooping Maximum Groups Num 2048
Maximum Member Num N/A
MVR Maximum Group Num 2048 2048 (Share with V6) 1024 2048 1024
Maximum Member Num 4096
IPv6 unicast Host Route NDP Capacity 2048 1024 4096 0 2048
IPv6 FIBv6 4096 1024 6144 0 1024
ECMP Group 240 (share with IPv4)
IPv6 multicast IPMC Multicast Routing Table 256 256 512 0 0
Number of interfaces that support 512 1536 1024 0 0
Multicast routing table
MVR V6 Maximum Entry Num 256 2048 (Share with IPv4) 512 0 0
Maximum Member Num 512 4096 1024 0 0
IP tunnel IP Tunnel Tunnel Peer Capacity 8
QoS Per-port Queue Num Unicast Queue 10
Multicast Queue
Monitor Queue
Packet Buffer System Packet Buffer Capacity 4.5MByte 9MByte 4.5MByte 4.5MByte 4.5MByte
Granularity Policer granularity 0~2M: 10K
2M~100M: 40K
100M~1G: 80K
1G~2G: 120K
2G~4G: 250K
Queue Shape granularity 4G~10G: 500K
Port Shape granularity 10k
Flow entry Ingress Port qos ipv4 flow entries 1532
Ingress Port qos ipv6 flow entries
Ingress Port qos flow stats entries 511
ACL IPv4 ACL Ingress Port ACL for IPv4 1488 Ingress and  The Ingress IPv4/IPv6/MAC ACL rule share the Ingress resource and the Egress rules share the Egress resource
Ingress VLAN ACL for IPv4
Egress Port ACL for IPv4 464
Egress VLAN ACL for IPv4
IPv6 ACL Ingress Port ACL for IPv6 744
Ingress VLAN ACL for IPv6
Egress Port ACL for IPv6 232
Egress VLAN ACL for IPv6
ACL Flow stats Ingress  ACL flow stats entries 1022 Egress ACL rules use separate resource pool
Egress  ACL flow stats entries 511
CoPP CoPP rules 249
CoPP flow stats entries 249
UDF UDF rules 256
UDF flow stats entries 128
Security IP Source Guard IPv4 maximum rules Num 768
IPv6 maximum rules Num 64
802.1x base MAC Maximum Entries 512 256 256 256 256
DHCP Snooping Maximum bound entry 4096
IPFIX IPFIX IPFIX Member 4096
Reliability BFD Maximum Session Num share 128
S-BFD Maximum Session Num
VRRP Maximum Group Num 63
Smart Link Maximum Group Num 16
Maximum Instance Num 64
Switchover time <50ms
Monitor Link Maximum group Num 16
Maximum up-link Num per group 16