Huawei S6700 Product Characteristics

Huawei Campus Switch includes S1700, S2300, S2700, S3300, S3700, S5300, S5700, S600-E, S6300, S6700, S7700, S7900, S9300, S9300X, S9700, S12700 Series. In this article, HongTelecom will introduce the Huawei S6700 Product Characteristics.

S6700 Product Characteristics

The S6700 series Ethernet switches (S6700 for short) are next-generation 10G fixed switches. The S6700 can function as an access switch in an Internet data center (IDC) or a core switch on a campus network.

The S6700 has industry-leading performance and provides line-speed 10GE access ports and line-speed 40GE uplink ports (40GE is supported since V200R008C00). It can be used in a data center to provide 10 Gbit/s access to servers or function as a core switch on a campus network to provide 40 Gbit/s traffic aggregation. In addition, the S6700 provides a wide variety of services, comprehensive security policies, and various QoS features to help customers build scalable, manageable, reliable, and secure data centers.

Enabling networks to be more agile for services

The high-speed Ethernet Network Processor (ENP) embedded in the S6720-HI is tailored for Ethernet. The chip’s flexible packet processing and traffic control capabilities can meet current and future service requirements, helping build a highly scalable network.

The ENP has a fully programmable architecture, on which enterprises can define their own forwarding models, forwarding behaviors, and lookup algorithms. Microcode programmability makes it possible to provide new services within six months, without the need of replacing the hardware. In contrast, traditional ASIC chips use a fixed forwarding architecture and follow a fixed forwarding process. For this reason, new services cannot be provisioned until new hardware is developed to support the services one to three years later.

Delivering abundant services more agilely

The S6720-HI integrates the AC function, so customers do not need to buy independent AC devices or hardware components.

With the unified user management function, the S6720-EI, S6720S-EI, and S6720-HI authenticate both wired and wireless users, ensuring a consistent user experience no matter whether they are connected to the network through wired or wireless access devices. The unified user management function supports various authentication methods, including 802.1X, MAC address, and Portal authentication, and is capable of managing users based on user groups, domains, and time ranges. These functions visualize user and service management and boost the transformation from device-centric management to user-centric management.

The S6720 provides excellent quality of service (QoS) capabilities and supports queue scheduling and congestion control algorithms. Additionally, it adopts innovative priority queuing and multi-level scheduling mechanisms to implement fine-grained scheduling of data flows, meeting service quality requirements of different user terminals and services.

Providing fine granular network management more agilely

The S6720-HI uses the Packet Conservation Algorithm for Internet (iPCA) technology that changes the traditional method of using simulated traffic for fault location. iPCA technology can monitor network quality for any service flow anywhere, anytime, without extra costs. It can detect temporary service interruptions in a very short time and can identify faulty ports accurately. This cutting-edge fault detection technology turns “extensive management” to “fine granular management.”

The S6720-HI supports Two-Way Active Measurement Protocol (TWAMP) to accurately check any IP link and obtain the entire network’s IP performance. This protocol eliminates the need of using a dedicated probe or a proprietary protocol.

The S6720-HI supports SVF and functions as a parent switch. With this virtualization technology, a physical network with the “Small-sized core/aggregation switches + Access switches + APs” structure can be virtualized into a “super switch”, offering the industry’s simplest network management solution.

Large-Capacity, High-Density, 10 Gbit/s Access and 40 Gbit/s Uplink

To provide sufficient bandwidth for users, many servers use 10G network adapters, especially servers in data centers. The S6700 can be used in data centers to provide high forwarding performance and 10GE ports.

The S6700 has the highest density of 10GE ports and largest switching capacity among counterpart switches. These ports support 1GE and 10GE access and can identify optical module types, maximizing the return on investment and allowing users to deploy service flexibly.

The S6700 has a large buffer capacity and uses advanced buffer scheduling mechanism to ensure non-blocking transmission of high traffic volume in data centers.

Comprehensive Security Control Policies

The S6700 provides multiple security measures to defend against Denial of Service (DoS) attacks (such as SYN, Land, Smurf, and ICMP Flood), attacks to networks (STP BPDU/root attacks), and attacks to users (bogus DHCP server attacks, man-in-the-middle attacks, IP/MAC spoofing attacks, DHCP request flood attacks, and attacks with variable CHADDR field of packets). DHCP snooping discards invalid packets that do not match any binding entries, such as ARP spoofing packets and IP spoofing packets. This prevents man-in-the-middle attacks that hackers initiate using ARP packets. The interface connected to a DHCP server can be configured as a trusted interface to protect the system against bogus DHCP server attacks.

The S6700 supports strict ARP learning, which prevents ARP spoofing from exhausting ARP entries to ensure normal Internet normally access. The switch also provides IP source check to prevent DoS attacks caused by MAC address spoofing, IP address spoofing, and MAC/IP spoofing. The unicast reverse path forwarding (URPF) function protects a network against source address spoofing attacks by reversely checking packet transmission paths.

The S6700 supports centralized MAC address authentication and 802.1X authentication. It authenticates users based on static or dynamic bindings of information such as the user name, IP address, MAC address, VLAN ID, interface number, and antivirus software installation flag. VLANs, QoS policies, and ACLs can be applied to users dynamically. The S6700 can limit the number of MAC addresses learned on an interface to prevent attackers from exhausting MAC address entries using bogus source MAC addresses. This function minimizes packet flooding that occurs when MAC addresses of users cannot be found in the MAC address table.

Comprehensive Reliability Mechanisms

The S6700 supports redundant power supplies. You choose a single power supply or use two power supplies to ensure power reliability. With two swappable fans, the S6700 has a longer MTBF time than counterpart switches. The S6700 supports multi-process MSTP that enhances the existing STP, RSTP, and MSTP implementation by increasing the number of MSTIs supported on a network. It also supports enhanced Ethernet reliability technologies such as Smart Link and RRPP, which implement millisecond-level protection switching to ensure network reliability. Smart Link and RRPP both support multiple instances to implement load balancing among links, improving the bandwidth efficiency.

The S6700 supports enhanced trunk (E-Trunk) that enables a CE to be dual-homed to two PEs using Eth-Trunk links. This implements inter-device link aggregation and link load balancing, and greatly improves reliability of access devices.

The S6700 supports the Smart Ethernet Protection (SEP) protocol, a ring network protocol applied to the link layer of an Ethernet network. SEP features simplicity, high reliability, high switching performance, convenient maintenance, and flexible topology, enabling users to manage and plan networks conveniently.

The S6700 supports G.8032, also called Ethernet Ring Protection Switch (ERPS). ERPS is based on traditional Ethernet MAC and bridging functions and uses mature Ethernet OAM and Ring Automatic Protection Switching (Ring APS or R-APS) technologies to implement fast protection switching on Ethernet networks. ERPS supports multiple services and provides flexible networking, reducing the OPEX and CAPEX. Two S6700s can form a VRRP group to ensure nonstop communication. Multiple equal-cost routes to an upstream device can be configured on the S6700 to provide route redundancy. When an active route is unreachable, traffic is switched to a backup route.

Extensive QoS Control Mechanisms

The S6700 implements complex traffic classification based on packet information such as the 5-tuple, IP preference, ToS, DSCP, IP protocol type, ICMP type, TCP source port, VLAN ID, Ethernet protocol type, and CoS. ACLs can be applied to inbound or outbound direction to filter packets. The S6700 supports a per flow two-rate three-color CAR. Each port supports eight priority queues, multiple queue scheduling algorithms such as WRR, WDRR, PQ, WRR+PQ, and WDRR+PQ, and congestion avoidance algorithm WRED. All of these ensure the quality of voice, video, and data services.

High Scalability

The S6700 supports the intelligent stack (iStack) function that allows switches far from each other to set up a stack. A port of the S6700 can be configured as a stack port for flexible stack deployment. The distance between stacked switches is further increased when the switches are connected with optical fibers. Compared with a single device, iStack provides higher expansibility, reliability, and performance. New member switches can be added to a stack without interrupting services when the system capacity needs to be increased or a member switch fails. Compared with stacking of modular switches, iStack can increase system capacity and port density without restricted by the hardware structure. Multiple stack switches are managed as one logical device with a single IP address, which greatly reduces system expansion, operation, and maintenance costs.

Convenient Management

The S6700 supports automatic configuration, plug-and-play, USB-based deployment, and batch remote upgrade. These capabilities simplify device management and maintenance while reducing maintenance costs. The S6700 supports SNMPv1/v2c/v3 and provides flexible device management methods. You can manage the S6700 using the CLI, Web system, or Telnet. The NQA function helps you with network planning and upgrades. In addition, the S6700 supports NTP, SSH v2, HWTACACS, RMON, log hosts, and port-based traffic statistics collection. The switch supports GVRP, which dynamically distributes, registers, and propagates VLAN attributes to reduce the manual configuration workload of network administrators and ensure correct VLAN configuration.

The S6700 supports MUX VLAN that isolates Layer 2 traffic between interfaces in a VLAN. Interfaces in a subordinate separate VLAN can communicate with interfaces in the principal VLAN but cannot communicate with each other. This function prevents communication between network devices connected to certain interfaces or interface groups but allows the devices to communicate with the default gateway. MUX VLAN is usually used on an enterprise intranet to isolate user interfaces from each other but allow them to communicate with server interfaces.

The S6700 supports BFD, which provides millisecond-level fault detection for protocols such as OSPF, IS-IS, VRRP, and PIM to improve network reliability. Complying with IEEE 802.3ah and 802.1ag, the S6700 supports point-to-point Ethernet fault management and can detect faults in the last mile of an Ethernet link to users. Ethernet OAM improves the Ethernet network management and maintenance capabilities and ensures a stable network.

Various IPv6 Features

The S6700 hardware supports IPv4/IPv6 dual stack and IPv6 over IPv4 tunnels (including manual tunnels, 6to4 tunnels, and ISATAP tunnels). S6700 switches can be deployed on IPv4 networks, IPv6 networks, or networks that run both IPv4 and IPv6. This makes networking flexible and enables smooth network migration from IPv4 to IPv6.

The S6700 supports various IPv6 routing protocols including RIPng and OSPFv3. It uses the IPv6 Neighbor Discovery Protocol (NDP) to manage packets exchanged between neighbors. It also provides the Path MTU Discovery (PMTU) mechanism to select a proper MTU on the path from the source to the destination, optimizing network resources and obtaining the maximum throughput.

Cloud-based Management

Huawei provides the Cloud Managed Network Solution based on a public cloud. The S6720-EI/S6720S-EI/S6720-HI/S6720-SI/S6720S-SI (since V200R012C00) and S6720S-LI (since V200R013C00) can be managed by a cloud management platform. In the Huawei Cloud Managed Network solution, cloud-managed switches are plug-and-play. They automatically connect to the cloud management platform and use bidirectional certificate authentication to ensure management channel security. The cloud-managed switches provide the NETCONF and YANG interfaces, through which the cloud management platform delivers configurations to them. In addition, remote maintenance and fault diagnosis can be performed on the cloud-managed switches using the cloud management platform.

VXLAN features

The S6720-EI, S6720S-EI, and S6720-HI support VXLAN L2 and L3 gateway functions, which can be configured using NETCONF/YANG. Based on this feature, multiple service networks or tenant networks can be deployed together on the same physical network. Service networks or tenant networks are isolated from each other, achieving one network for multiple purposes. This helps meet data bearing requirements of different services or customers while reducing network construction costs and improving network resource utilization efficiency.

Clock synchronization

The S6720-HI supports the IEEE 1588v2 protocol, which implements low-cost, high-precision, and high-reliability time and clock synchronization. This feature can meet strict requirements of power and transportation industry customers on time and clock synchronization.

Open Programmability System (OPS)

The S6720 provides open interfaces, and customers can make executable Python scripts based on specified events to implement intelligent device management, lowering O&M costs and simplifying operations.

Related Content

Support Community

About Us

As a world leading Huawei networking products supplier, Hong Telecom Equipment Service LTD(HongTelecom) keeps regular stock of Huawei router and switch and all cards at very good price, also HongTelecom ship to worldwide with very fast delivery.

For related articles, visit the HongTelecom Blog and HongTelecom WordPress.
For real pictures of related product, visit the HongTelecom Gallery.
To buy related product, visit the HongTelecom Online Shop.

何诗名片

Huawei S5700 Product Characteristics

Huawei Campus Switch includes S1700, S2300, S2700, S3300, S3700, S5300, S5700, S600-E, S6300, S6700, S7700, S7900, S9300, S9300X, S9700, S12700 Series. In this article, HongTelecom will introduce the Huawei S5700 Product Characteristics.

management more agilely

The S5720-HI and S5730-HI use the Packet Conservation Algorithm for Internet (iPCA) technology that changes the traditional method of using simulated traffic for fault location. iPCA technology can monitor network quality for any service flow anywhere and anytime, without extra costs. It can detect temporary service interruptions in a very short time and can identify faulty ports accurately. This cutting-edge fault detection technology turns “extensive management” to “fine granular management.”

The S5720-HI and S5730-HI support Two-Way Active Measurement Protocol (TWAMP) to accurately check any IP link and obtain the entire network’s IP performance. This protocol eliminates the need of using a dedicated probe or a proprietary protocol.

The S5720-HI and S5730-HI support SVF and functions as a parent switch. With this virtualization technology, a physical network with the “Small-sized core/aggregation switches + Access switches + APs” structure can be virtualized into a “super switch”, offering the industry’s simplest network management solution.

With the Easy Deploy function, the S5720-HI and S5730-HI manage access switches in a similar way an AC manages APs. In deployment, access switches and APs can go online with zero-touch configuration. In the Easy Deploy solution, the Commander collects topology information about the connected clients and stores the clients’ startup information based on the topology. Clients can be replaced with zero-touch configuration. The Commander can deliver configurations and scripts to clients in batches and query the delivery results. In addition, the Commander can collect and display information about power consumption on the entire network.

Various Port Combinations

The S5700-EI, S5710-EI, and S5720-EI, S5730-SI, and S5730S-EI support various extension cards that provide high-density GE/10GE/40GE uplink ports. This flexibility in port combinations ensures that customer’s bandwidth expansion requirements can be met in a cost effective way.

  • The S5710-EI has four fixed 10GE SFP+ ports. With different extended subcards installed, the S5710-EI can provide different combinations of ports, such as 64xGE + 4x10GE, 48xGE + 8x10GE, and 56xGE + 6x10GE.
  • The S5720EI with subcards has four fixed 10GE SFP+ ports. With different extended subcards installed, the S5720EI with subcards can provide different combinations of ports, such as 4x10GE optical ports, 6x10GE optical ports, and 4x10GE optical ports + 2x10GE electrical ports.
  • The S5730-SI/S5730S-EI has four fixed 10GE SFP+ ports and supports extended subcards with 4x40GE optical ports. With these subcards installed, the S5730-SI/S5730S-EI can provide different combinations of ports, such as 48xGE + 4x10GE + 4x40GE and 48xGE + 16GE (each 40GE interface being split into four 10GE interfaces) + 4x10GE.

Intelligent Stack

The S5700 supports intelligent stack (iStack). This technology combines multiple switches into a logical switch.

Member switches in a stack back up each other to improve device reliability and establish inter-device link aggregation to improve link reliability. iStack provides high network scalability and allows for flexible expansion of ports, bandwidth, and processing capacity by simply adding member switches to the stack. iStack also simplifies device configuration and management by virtualizing multiple physical switches into one logical device. You can log in to any member switch to manage all the stack member switches.

The S5720-SI, S5720S-SI, S5720I-SI, S5720-EI, S5720-LI, and S5720S-LI switches support stack connections using electrical ports.

Innovative AHM Energy Saving Technologies

The S5700-LI series (except the S5700-52X-LI-48CS-AC, S5700-28P-LI-BAT and S5700-28P-LI-24S-BAT) and S5720-LI/S5720S-LI series smart energy-saving switches reduce power consumption without compromising the system performance or user experience. The S5700-LI series uses innovative energy-saving technologies including energy efficient Ethernet (EEE), port power detection, dynamic CPU frequency adjustment, and device sleeping. These technologies reduce power consumption by adjusting power depending on the Up/Down link states, presence/absence of optical modules, shutdown and undo shutdown operations on ports, and peak/off-peak hours. The S5700-LI series is the industry’s first switch series that supports complete device sleeping, and it provides three energy saving modes to adapt to different usage scenarios: standard, basic, and deep.

Comprehensive VPN Technologies

The S5700 supports the multi-VPN-instance CE (MCE) function, which allows users in different VPNs to connect to the same switch and isolates users through multi-instance routing. These users connect to a PE device through the same physical uplink port, which reduces the network deployment costs.

The S5710-EI, S5700-HI, S5710-EI, S5700-HI, S5710-HI, S5720-EI, S5720-HI, and S5730-HI support Multiprotocol Label Switching (MPLS) QoS, MPLS traffic engineering (TE), virtual leased line (VLL), virtual private LAN service (VPLS), and Layer 3 virtual private network (L3VPN). They provide high-quality private line access services for enterprises and are cost-effective fixed MPLS switches.

Easy Operations and Maintenance

The S5700 supports EasyDeploy, USB-based deployment, batch remote upgrade and is a plug-and-play product. These functions facilitate device deployment, upgrade, service provisioning, and other management and maintenance operations. They also greatly reduce operations and maintenance costs. The S5700 can be managed and maintained using Simple Network Management Protocol (SNMP) V1, V2c, and V3, command line interface (CLI), web system, Telnet, or Secure Shell (SSH) V2.0. Additionally, it supports remote network monitoring (RMON), multiple log hosts, interface traffic statistics collection, and network quality analysis that help in network consolidation and reconstruction.

The S5700 can use the GARP VLAN Registration Protocol (GVRP) to dynamically distribute, register, and propagate VLAN attributes, reducing manual configuration workload and ensuring correct VLAN configuration. Moreover, the S5700 supports the MUX VLAN function, which involves a principal VLAN and multiple subordinate VLANs. Subordinate VLANs are classified as group and separate VLANs. Ports in the principal VLAN can communicate with ports in subordinate VLANs. Ports in a subordinate group VLAN can communicate with each other, whereas ports in a subordinate separate VLAN can communicate only with ports in the principal VLAN.

Excellent Network Traffic Analysis

The S5700 supports NetStream and can function as a NetStream data exporter. It periodically collects data traffic statistics, encapsulates the statistics in standard V5, V8, or V9 packets, and sends the packets to the NetStream data collector depending on how NetStream is configured. The collected statistics are then processed to dynamically generate reports, analyze traffic attributes, and generate alarms on abnormal traffic. NetStream helps you optimize network structure and adjust resource deployment on-demand.

The S5700 also supports sFlow. Using a method defined in the sFlow standard, the switch samples traffic passing through it and sends sampled traffic to the collector in real time. The collected traffic statistics are used to generate statistical reports, helping enterprises maintain their networks.

Flexible Ethernet Networking

In addition to traditional Spanning Tree Protocol (STP), Rapid Spanning Tree Protocol (RSTP), and Multiple Spanning Tree Protocol (MSTP), the S5700 supports Huawei-developed Smart Ethernet Protection (SEP) technology and the latest Ethernet Ring Protection Switching (ERPS) standard.

SEP is a ring protection protocol specific to the Ethernet link layer, and applies to various ring network topologies, such as open ring, closed ring, and cascading ring. This protocol is reliable and easy to maintain.

ERPS is defined in ITU-T G.8032. It provides millisecond-level protection switching based on traditional Ethernet MAC and bridging functions.

The S5700 supports Smart Link and Virtual Router Redundancy Protocol (VRRP) for uplink backup. One S5700 switch can connect to multiple aggregation switches with multiple links, significantly improving access device reliability. In addition, the S5700 provides multiple connection fault detection mechanisms, including Ethernet OAM (IEEE 802.3ah/802.1ag /ITU Y.1731) and Bidirectional Forwarding Detection (BFD).

Diversified Security Control

The S5700 supports MAC address and 802.1X authentication and can dynamically deliver policies (VLAN, QoS, and ACL) for users.

The S5700 provides a series of mechanisms to defend against:

  • DoS attacks: including SYN flood, Land, Smurf, and ICMP flood
  • User-targeted attacks: including bogus DHCP server attacks, IP/MAC address spoofing, DHCP request flood, and attack packets with variable DHCP CHADDR values

The S5700 collects and maintains information about access users, such as IP addresses, MAC addresses, IP address leases, VLAN IDs, and access interfaces in a DHCP snooping binding table. With this information, it can defend against DHCP attacks on the network. You can specify trusted and untrusted interfaces to ensure that users connect only to the authorized DHCP server.

The S5700 supports strict ARP learning. This feature prevents ARP spoofing attackers from exhausting ARP entries so that users can connect to the Internet normally.

Mature IPv6 Technologies

The S5700 uses the Versatile Routing Platform (VRP) and supports IPv4/IPv6 dual-stack, IPv6 routing protocols (RIPng, OSPFv3, BGP4+, and IS-IS for IPv6), and IPv6 over IPv4 tunnels (manual, 6-to-4, and ISATAP tunnels). With these IPv6 features, the S5700 can be deployed on a pure IPv4 network, a pure IPv6 network, or a shared IPv4/IPv6 network, supporting a smooth evolution from IPv4 to IPv6.

Innovative Built-in Battery

The S5700-LI-BAT series (S5700-28P-LI-BAT and S5700-28P-LI-24S-BAT) is the industry’s first switch model that has a built-in lithium battery as a backup power supply. It ensures uninterrupted services when power failures occur frequently at the access layer. The S5700-LI-BAT has the following advantages:

  • Once a mains power outage occurs, the battery can power the switch to ensure nonstop services.
  • The switch saves space in an equipment room and is easy to install.
  • Intelligent power management ensures a long standby time.
  • Battery LAN switches on the entire network can be managed centrally using a web system, facilitating network operations and maintenance. As the battery lifetime is predictable, there are no costs on unnecessary battery replacement.
  • The built-in battery provides alarm and protection functions. It will trigger overtemperature protection when the temperature is beyond the operating temperature range.

Ground-Free Design

The S5720-12TP-LI-AC uses a ground-free design. Only the 220 V power module in the switch needs to be grounded. This design facilitates switch deployment in a place where grounding is difficult, such as corridor.

Suitable for outdoor extreme environment

The S5720I-SI supports broad operating temperature range. So the switch can be working in the outdoor cabinet in the very cold and very hot environments. The typical scenario is the access of the camera for outdoor video surveillance and ETTx.

The S5720I-SI supports ±6kV lightning protection, suitable for outdoor extreme environment.

High-Density Access and Increased Bandwidth on CSFP Ports

The S5700 CSFP models support CSFP modules on downlink ports. Each downlink port with a CSFP GE optical module and a pair of fibers can provide 2 Gbit/s bidirectional bandwidth, which is twice the bandwidth of a standard SFP optical module. The 24 CSFP downlink ports can provide 48 Gbit/s bidirectional bandwidth, allowing for high-density access (equivalent to 48 standard SFP ports) and saving costs of fibers and optical modules.

Cloud-based Management

Huawei provides the Cloud Managed Network Solution based on a public cloud. The S5720-SI/S5720S-SI (since V200R010C00), S5720-LI (since V200R011C00), S5720S-LI (since V200R011C10), S5720I-SI (since V200R012C00), S5720-EI (since V200R013C00), and S5730-HI (since V200R013C00) can be managed by a cloud management platform. In the Huawei Cloud Managed Network solution, cloud-managed switches are plug-and-play. They automatically connect to the cloud management platform and use bidirectional certificate authentication to ensure management channel security. The cloud-managed switches provide the NETCONF and YANG interfaces, through which the cloud management platform delivers configurations to them. In addition, remote maintenance and fault diagnosis can be performed on the cloud-managed switches using the cloud management platform.

VXLAN features

The S5720-HI and S5730-HI support VXLAN Layer 2 and Layer 3 gateway functions, which can be configured using NetConf/Yang. Based on this feature, multiple service networks or tenant networks can be deployed on the same physical network. These service or tenant networks are isolated from each other. In this way, one network is used for multiple purposes, enabling data transmission of different services or customers, reducing the costs of repeated network construction, and improving network resource usage efficiency.

PoE++ power supply

The S5720-SI, S5720I-SI, S5720-LI, S5730-HI, S5730-SI, and S5730S-EI series PoE switches provide a maximum of 90 W, 60 W, or 30 W PoE output power on a single interface, and can provide power for high-power terminals such as APs and surveillance cameras. This solves the problem of power supply in specific scenarios.

Open Programmability System (OPS)

The S5710-X-LI, S5720-LI, S5720S-LI, S5720-SI, S5720S-SI, S5720I-SI, S5720-EI, S5720-HI, S5730-HI, S5730-SI, and S5730S-EI provide open interfaces, and customers can make executable Python scripts based on specified events to implement intelligent device management, lowering O&M costs and simplifying operations.

Related Content

Support Community

About Us

As a world leading Huawei networking products supplier, Hong Telecom Equipment Service LTD(HongTelecom) keeps regular stock of Huawei router and switch and all cards at very good price, also HongTelecom ship to worldwide with very fast delivery.

For related articles, visit the HongTelecom Blog and HongTelecom WordPress.
For real pictures of related product, visit the HongTelecom Gallery.
To buy related product, visit the HongTelecom Online Shop.

何诗名片

Huawei S2700 Product Characteristics

Huawei Campus Switch includes S1700, S2300, S2700, S3300, S3700, S5300, S5700, S600-E, S6300, S6700, S7700, S7900, S9300, S9300X, S9700, S12700 Series. In this article, HongTelecom will introduce the Huawei S2700 Product Characteristics.

S2700 Product Characteristics

The S2700 series Ethernet switches (S2700 for short) are next-generation energy-saving 100M Ethernet intelligent switches.

The S2700 utilizes cutting-edge switching technologies and Huawei Versatile Routing Platform (VRP) software to meet the demand for multi-service provisioning and access on Ethernet networks. It is easy to install and maintain and supports flexible VLAN deployment, comprehensive security and QoS policies, and energy-saving technologies. These features help enterprise customers build next-generation IT networks.

Easy Operations and Maintenance

The S2700 supports Easy-Operation, which simplifies installation, configuration, monitoring, and troubleshooting. This technology greatly reduces installation, configuration, and engineering costs, and improves the upgrade efficiency. The S2700 provides the command line interface (CLI) and web platform, supports alarm management and visualized configuration, and automatic command synchronization to a replacement switch.

The S2700 uses the ASIC chip and fanless design, which reduces mechanical faults and protects the equipment against damages caused by condensed water and dusts.

Flexible Service Control

The S2700 supports various ACLs. ACL rules can be applied to VLANs to flexibly control traffic on interfaces and schedule resources in VLANs.

The S2700 supports VLAN assignment based on interfaces, MAC addresses, protocols, and IP subnets. The flexibility in VLAN assignment facilitates network deployment and security guarantee, and is especially suitable for networks where users move frequently.

The S2700 supports GVRP, which dynamically distributes, registers, and propagates VLAN attributes to reduce the manual configuration workload of network administrators and ensure correct VLAN configuration. In addition, the S2700 supports SSHv2, HWTACACS, RMON, interface-based traffic statistics collection, and NQA to help in network planning and upgrade.

Comprehensive Security Measures

The S2700 supports DHCP snooping and generates user binding entries based on MAC addresses, IP addresses, IP address leases, VLAN IDs, and interface numbers of users. The DHCP snooping function protects networks against common attacks, such as bogus IP packet attacks, man-in-the-middle attacks, and bogus DHCP server attacks.

The S2700 can limit the number of MAC addresses learned on an interface to prevent packet flooding that occurs when an attacker frequently changes source MAC addresses. The switch supports strict ARP learning that prevents ARP spoofing from exhausting ARP entries to ensure normal Internet access. It also supports IP source check to prevent DoS attacks caused by IP address spoofing.

The S2700 supports centralized MAC address authentication and 802.1X authentication. It authenticates users based on static or dynamic bindings of user information such as the user name, IP address, MAC address, VLAN ID, and interface number. VLANs and ACLs can be applied to users dynamically.

Extensive Reliability Mechanisms

The S2700 supports intelligent stack (iStack), which virtualizes multiple switches into one logical switch. iStack improves the switching capacity and enhances reliability and scalability. The stacked switches are managed using a single IP address, which greatly reduces system operations and maintenance costs.

In addition to STP, RSTP, and MSTP, the S2700 also supports enhanced Ethernet reliability technologies such as Smart Link and RRPP, which implement millisecond-level protection switching to ensure network reliability.

The S2700 supports the Smart Ethernet Protection (SEP) protocol, a ring network protocol applied to the link layer of an Ethernet network. SEP provides fast switching within milliseconds without interrupting services, as well as simplicity, high reliability, convenient maintenance, and flexible topology, enabling users to manage and plan networks conveniently.

The S2700 supports G.8032, also called Ethernet Ring Protection Switch (ERPS). ERPS is based on traditional Ethernet MAC and bridging functions and uses the mature Ethernet OAM and Ring Automatic Protection Switching (Ring APS or R-APS) technologies to implement fast protection switching on Ethernet networks. ERPS supports multiple services and provides flexible networking, reducing the OPEX and CAPEX.

Comprehensive QoS Policies

The S2700 supports complex traffic classification based on VLAN IDs, MAC addresses, IP protocols, source addresses, destination addresses, priorities, or TCP/UDP port numbers of packets. By limiting the traffic rate on a per flow basis, the S2700 provides line-rate forwarding on each interface to ensure high quality of the voice, video, and data services. Each interface supports eight queues and multiple queue scheduling algorithms, such as WRR, SP, and WRR+SP.

Powerful Surge Protection Capability

The S2700 adopts a patented surge protection technology to prevent lightning induced overvoltage. The patented surge protection technology greatly reduces the possibility of lightning damages on the equipment even in atrocious environments or in scenarios where grounding cannot be implemented.

Energy-Saving Design

The S2700 uses an energy-saving integrated circuit design to ensure efficient heat dissipation. Idle ports can enter the sleeping mode to reduce power consumption. The S2700 generates no noises because it does not have any fans. Radiation of the S2700 is within the range of radiation standards for electric appliances and has no harm to the human body.

Related Content

Support Community

About Us

As a world leading Huawei networking products supplier, Hong Telecom Equipment Service LTD(HongTelecom) keeps regular stock of Huawei router and switch and all cards at very good price, also HongTelecom ship to worldwide with very fast delivery.

For related articles, visit the HongTelecom Blog and HongTelecom WordPress.
For real pictures of related product, visit the HongTelecom Gallery.
To buy related product, visit the HongTelecom Online Shop.

何诗名片

Introduction to Huawei Fixed Switches

Huawei Campus Switch includes S1700, S2300, S2700, S3300, S3700, S5300, S5700, S600-E, S6300, S6700, S7700, S7900, S9300, S9300X, S9700, S12700 Series. In this article, HongTelecom will introduce the Huawei Fixed Switches .

Distinguish Switch Models Based on Layer 3 Features

Huawei fixed switches consist of the S1700, S2700, S3700, S5700 and S6700 series.

Figure 1 S2700, S3700 and S5700

Figure 1 S2700, S3700 and S5700

In terms of product functions, the S1700, S2700, S5700LI are Layer 2 switches, while the S3700, S5700 (except the S5700LI) and S6700 are Layer 3 switches.

(Compared with Layer 2 switches, Layer 3 switches support Layer 3 features such as dynamic routing protocols in addition to Layer 2 features. I have made a summary in the Tips at the bottom of the post to tell you what Layer 3 features are.)

Diversified S5700 Models Adapt to Customers’ Requirements

The S5700 series is the first series developed by Huawei for enterprise networking and has the most product models. Why is the S5700LI a Layer 2 switch, different from other S5700s?

The S5700LI, which is a lightweight S5700 model and a star product of Huawei, is designed to accommodate customized demands of various projects. For example, in a project, the customer wanted a bargain because he just wanted to use S5700s for transparent transmission and did not need Layer 3 features on the switch. But he also pointed out that the S5700 must have forty-eight GE electrical interfaces.

Figure 2 S5700LI&SI&EI&HI

Figure 2 S5700LI&SI&EI&HI

While there are demands for lightweight S5700s, there are demands for enhanced S5700s. Therefore, Huawei developed an enhanced version (S5700EI) and an advanced version (S5700HI). In addition, the standard version of the S5700 was renamed S5700SI following consistent naming conventions. The richness of functions and features provided by these versions is in the following order: S5700LI < S5700SI < S5700EI < S5700HI. The following table lists their support for differences features.

Supported Feature

Switch Model

S5700LI

S5700SI

S5700EI

S5700HI

RIP/RIPng

N

Y

Y

Y

OSPF/BGP/PIM/ Netstream

N

N

Y

Y

MPLS/Netstream/Hardware-based Ethernet OAM/BFD

N

N

N

Y

 

S6700, Keystone in the Era of the 10GE Ports

Huawei developed the S6700EI based on the S5700 to embrace the era of 10GE ports.

Figure 3 S6700EI

Figure 3 S6700EI

The S6700 is one of the switches featuring an industry-leading performance and provides a maximum of 48 line-rate 10GE ports.

l  In data centers, the S6700 switches function as access switches to provide 10G access.

l  On a campus network, the S6700 switches connect to access switches through GE interfaces, and connect to core switches through 10GE optical interfaces, providing a large switching capacity. The network provides 10 Gbit/s rate for the backbone layer and 100 Mbit/s access rate for terminals, meeting requirements for high bandwidth and multi-service operations.

S2750, Designed for 100M-to-the-Desktop Access

While the S6700 switches provide a solution to the 10GE backbone, Huawei developed the 100M switch S2750 as a solution to 100M-to-the-desktop.

Figure 4 S2750EI

Figure 4 S2750EI

On a campus network, the S2750 switches connect to terminals using 100M electrical interfaces, and connect to aggregation switches using GE interfaces. With functions such as PoE, voice VLAN and NAC, the S2750 provides various desktop access functions.

Summary of Fixed Switches’ Network Locations

The S3700 also has 100M downstream interfaces and can be considered an S2700 with some Layer 3 features. Huawei has stopped releasing new versions of the S3700 since 2014. The S1700 can be seen as a hardware branch model of the S2700. Here, I am not going to waste your time nagging more. In conclusion, the following table lists the recommended deployment locations of Huawei fixed switches on networks:

Recommended deployment locations S1700 S2700 S5700 S6700
SOHO/Terminal Access Access
Small campus Access layer Aggregation layer/Access layer
Medium campus Access layer Aggregation layer
Large campus Access layer Aggregation layer
Data center Access layer

Figure 5 Locations of the S5700 on a large enterprise network

Figure 5 Locations of the S5700 on a large enterprise network

[Tips]

Question: What are Layer 3 features?

Answer: Layer 3 features include URPF, BFD, VRRP, sub-interfaces, switching between Layer 2 and Layer 3 interfaces, E-Trunk, VLAN aggregation, MSTP multi-process, redirection, DHCPv6 servers, DHCPv6 relay, MDNS relay, Bonjour relay, PIM, multicast route management, MRM, NAP, observing port groups, MPLS, LDP, RSVP, Seamless, GRE, L3VPN, VLL, PWE3, VPLS, PW, RIP, IS-IS, OSPF, BGP, routing policy, and policy-based routing (PBR).

About Us

As a world leading Huawei networking products supplier, Hong Telecom Equipment Service LTD(HongTelecom) keeps regular stock of Huawei router and switch and all cards at very good price, also HongTelecom ship to worldwide with very fast delivery.

For related articles, visit the HongTelecom Blog and HongTelecom WordPress.
For real pictures of related product, visit the HongTelecom Gallery.
To buy related product, visit the HongTelecom Online Shop.

何诗名片

Huawei S2720-EI Series Switches Product

Product overview

The S2720-EI is a next-generation access switch that provides flexible 100M, GE access ports and GE uplink ports. Building on next-generation, high-performance hardware and the Huawei Versatile Routing Platform (VRP), the S2720-EI supports intelligent Stack (iStack), flexible Ethernet networking, and diversified security control. It provides customers with a green, easy-to-manage, easy-to-expand, and cost-effective 100M to the desktop solution.

Product appearance

Model Description

S2720-12TP-EI

  • 4 x Ethernet 10/100 Base-Tx ports, 4 x Ethernet 10/100/1,000 Base-T ports, 2 x Gig SFP ports, and 2 x Combo Gig ports
  • AC power supply
  • Forwarding performance: 12.6 Mpps
  • Switching capacity: 68 Gbit/s

S2720-12TP-PWR-EI

  • 4 x Ethernet 10/100 Base-Tx ports, 4 x Ethernet 10/100/1,000 Base-T ports, 2 x Gig SFP ports, and 2 x Combo Gig ports
  • AC power supply
  • PoE+
  • Forwarding performance: 12.6 Mpps
  • Switching capacity: 68 Gbit/s

S2720-28TP-PWR-EI-L

  • 16 x Ethernet 10/100 Base-Tx ports, 8 x Ethernet 10/100/1,000 Base-T ports, 2 x Gig SFP ports, and 2 x Combo Gig ports
  • 8 x PoE+ ports
  • AC power supply
  • Forwarding performance: 20.4 Mpps
  • Switching capacity: 68 Gbit/s

S2720-28TP-EI

  • 16 x Ethernet 10/100 Base-Tx ports, 8 x Ethernet 10/100/1,000 Base-T ports, 2 x Gig SFP ports, and 2 x Combo Gig ports
  • AC power supply
  • Forwarding performance: 20.4 Mpps
  • Switching capacity: 68 Gbit/s

S2720-28TP-PWR-EI

  • 16 x Ethernet 10/100 Base-Tx ports, 8 x Ethernet 10/100/1,000 Base-T ports, 2 x Gig SFP ports, and 2 x Combo Gig ports
  • AC power supply
  • PoE+
  • Forwarding performance: 20.4 Mpps
  • Switching capacity: 68 Gbit/s

S2720-52TP-EI

  • 32 x Ethernet 10/100 Base-Tx ports, 16 x Ethernet 10/100/1,000 Base-T ports, and 4 x Gig SFP ports
  • AC power supply
  • Forwarding performance: 34.8 Mpps
  • Switching capacity: 336 Gbit/s

S2720-52TP-PWR-EI

  • 32 x Ethernet 10/100 Base-Tx ports, 16 x Ethernet 10/100/1,000 Base-T ports, and 4 x Gig SFP ports
  • AC power supply
  • PoE+
  • Forwarding performance: 34.8 Mpps
  • Switching capacity: 336 Gbit/s

Product features and highlights

Flexible Ethernet networking

  • In addition to traditional Spanning Tree Protocol (STP), Rapid Spanning Tree Protocol (RSTP), and Multiple Spanning Tree Protocol (MSTP), the S2720-EI supports Huawei-developed Smart Ethernet Protection (SEP) technology and the latest Ethernet Ring Protection Switching (ERPS) standard. SEP is a ring protection protocol specific to the Ethernet link layer, and applies to various ring network topologies, such as open ring topology, closed ring topology, and cascading ring topology. This protocol is reliable, easy to maintain, and implements fast protection switching within 50 ms. ERPS is defined in ITU-T G.8032. It implements millisecond-level protection switching based on traditional Ethernet MAC and bridging functions.
  • The S2720-EI supports Smart Link, which implements backup of uplinks. One S2720-EI switch can connect to multiple aggregation switches through multiple links, significantly improving reliability of access devices.
  • The S2720-EI supports Ethernet OAM (IEEE 802.3ah/802.1ag) to fast-detect link faults.

Diversified security control

  • The S2720-EI supports 802.1x authentication, MAC address authentication, and combined authentication on a per port basis and implements dynamic policy delivery (VLAN, QoS, and ACL) to users.
  • The S2720-EI collects and maintains information about access users, such as IP addresses, MAC addresses, IP address leases, VLAN IDs, and interface numbers in a DHCP snooping binding table. In this way, IP addresses and access interfaces of DHCP users can be tracked. You can specify DHCP snooping trusted and untrusted ports to ensure that users connect only to the authorized DHCP server.
  • The S2720-EI supports strict ARP learning. This feature prevents ARP spoofing attackers from exhausting ARP entries so that users can connect to the Internet normally.

Easy maintenance

  • The S2720-EI can be managed and maintained using Simple Network Management Protocol (SNMP) V1, V2, and V3, Command Line Interface (CLI), web-based network management system, or Secure Shell (SSH) V2.0.
  • The S2720-EI supports Super Virtual Fabric (SVF), which virtualizes the “Core/aggregation + Access switch + AP” structure into a logical device. The S2720-EI enables the simplest network management solution in the industry. It allows plug-and-play access switches and APs. In addition, the S2720-EI supports service configuration templates. The templates are configured on core devices and automatically delivered to access devices, enabling centralized control, simplified service configuration, and flexible configuration modification. The S2720-EI functions as a client in an SVF system.
  • The S2720-EI can use the GARP VLAN Registration Protocol (GVRP) to implement dynamic distribution, registration, and propagation of VLAN attributes. GVRP reduces manual configuration workload and ensures correct configuration. Additionally, the S2720-EI supports MUX VLAN, which involves a principal VLAN and multiple subordinate VLANs. Subordinate VLANs are classified into group VLANs and separate VLANs. Ports in the principal VLAN can communicate with ports in subordinate VLANs. Ports in a subordinate group VLAN can communicate with each other, whereas ports in a subordinate separate VLAN can communicate only with ports in the principal VLAN. The S2720-EI also supports VLAN Central Management Protocol (VCMP) and VLAN-Based Spanning Tree (VBST) protocol.

iStack

  • The S2720-EI supports intelligent Stack (iStack). This technology combines multiple switches into a logical switch. Member switches in a stack implement redundancy backup to improve device reliability and use inter-device link aggregation to improve link reliability. iStack provides high network scalability. You can increase ports, bandwidth, and processing capacity of a stack by simply adding member switches to the stack. iStack also simplifies device configuration and management. After a stack is set up, multiple physical switches are virtualized into one logical device. You can log in to any member switch in the stack to manage all the member switches in the stack.

Excellent network traffic analysis

  • The S2720-EI supports the sFlow function. It uses a method defined in the sFlow standard to sample traffic passing through it and sends sampled traffic to the collector in real time. The collected traffic statistics are used to generate statistical reports, helping enterprises maintain their networks.

Product specifications

Item S2720-12TP-EI
S2720-12TP-PWR-EI
S2720-28TP-PWR-EI-L
S2720-28TP-EI
S2720-28TP-PWR-EI
S2720-52TP-EI
S2720-52TP-PWR-EI
Fixed Ports 4 x Ethernet 10/100 Base-Tx ports, 4 x Ethernet 10/100/1,000 Base-T ports, 2 x Gig SFP ports, and 2 x Combo Gig ports 16 x Ethernet 10/100 Base-Tx ports, 8 x Ethernet 10/100/1,000 Base-T ports, 2 x Gig SFP ports, and 2 x Combo Gig ports 32 x Ethernet 10/100 Base-Tx ports, 16 x Ethernet 10/100/1,000 Base-T ports, and 4 x Gig SFP ports
MAC Address Table 16K MAC address entries
MAC address learning and aging
Static, dynamic, and blackhole MAC address entries
Interface-based MAC learning limiting
VLAN Features 4K VLANs
Guest VLAN and voice VLAN
GVRP
MUX VLAN
VLAN assignment based on MAC addresses, protocols, IP subnets, policies, and interfaces
1:1 and N:1 VLAN mapping
Ethernet Loop Protection RRPP ring topology and RRPP multi-instance
Smart Link tree topology and Smart Link multi-instance, providing millisecond-level protection switchover
SEP
ERPS (G.8032)
STP (IEEE 802.1d), RSTP (IEEE 802.1w), and MSTP (IEEE 802.1s)
Reliability EFM OAM (802.3ah)
CFM OAM (802.1ag)
ITU-Y.1731
DLDP
LACP
IP Routing Static route, RIP, RIPng, and OSPF
IPv6 Features Neighbor Discovery (ND)
Path MTU (PMTU)
IPv6 ping, IPv6 tracert, and IPv6 Telnet
Multicast IGMP v1/v2/v3 snooping
Controllable multicast
Interface-based multicast traffic statistics
Multicast Listener Discovery (MLD) v1/v2 snooping
QoS/ACL Rate limiting by an interface
Eight queues on each interface
WRR, DRR, SP, WRR + SP, and DRR + SP queue scheduling algorithms
Re-marking of the 802.1p priority and DSCP priority
Rate limiting in each queue and traffic shaping on interfaces
Security Port isolation, port security, and sticky MAC
MFF
Blackhole MAC address entries
Limit on the number of learned MAC addresses
IEEE 802.1x authentication and limit on the number of users on an interface
AAA authentication, RADIUS authentication, HWTACACS+ authentication, and NAC
SSH V2.0
Hypertext Transfer Protocol Secure (HTTPS)
CPU defense
Blacklist and whitelist
DHCP relay, DHCP server, and DHCP snooping
DHCPv6 relay, DHCPv6 server, and DHCPv6 snooping
Lightning Protection Service interface: 7 kV
Super Virtual Fabric (SVF) Works as an SVF client that is plug-and-play with zero configuration
Automatic loading of the system software package and patches of clients One-click
Automatic delivery of service configurations
Supports independent running client
Management and Maintenance iStack
Virtual Cable Test (VCT)
Remote configuration and maintenance using Telnet
SNMP v1/v2c/v3
RMON
eSight and web-based NMS
HTTPS
LLDP/LLDP-MED
System logs and multi-level alarms
802.3az EEE
Interoperability Supports VBST (Compatible with PVST/PVST+/RPVST)
Supports LNP (Similar to DTP)
Supports VCMP (Similar to VTP)
Operating Environment Operating temperature: 0m to 1,800m: 0°C to 45°C; 1,800m to 5,000m (decreases 1°C for every 220m increase in altitude)
Relative humidity: 5% to 95% (non-condensing)
Input Voltage AC:
Rated voltage range: 100V to 240V AC, 50 Hz/60 Hz
Maximum voltage range: 90V to 264V AC, 47 Hz/63 Hz
Dimensions
(W x D x H)
  • S2720-12TP-EI: 250 mm x 180 mm x 43.6 mm
  • S2720-12TP-PWR-EI: 320 mm x 220 mm x 43.6 mm
  • S2720-28TP-PWR-EI: 442 mm x 310 mm x 43.6 mm
  • S2720-28TP-EI/S2720-28TP-PWR-EI-L: 442 mm x 220 mm x 43.6 mm
  • S2720-52TP-EI: 442 mm x 220 mm x 43.6 mm
  • S2720-52TP-PWR-EI: 442 mm x 310 mm x 43.6 mm
Maximum Power Consumption
  • S2720-12TP-EI: 12.85W
  • S2720-12TP-PWR-EI: without PD: 15.61W; with PD: 160.5W (PoE: 123.2W)
  • S2720-28TP-PWR-EI: without PD: 37.8W; with PD: 444.9W (PoE: 370W)
  • S2720-28TP-EI: 20.1W
  • S2720-28TP-PWR-EI-L: without PD: 24.8W; with PD: 167W (PoE: 123.2W)
  • S2720-52TP-EI: 40.3W
  • S2720-52TP-PWR-EI: without PD: 53.7W; with PD: 435W (PoE: 370W)

Applications

The S2720-EI provides 100M desktop access functions for a high performance network, such as voice VLAN, and NAC.

S2720-EI-cy-zuwang-en

Product List

S2720-12TP-EI (4 x Ethernet 10/100 Base-Tx ports, 4 x Ethernet 10/100/1,000 Base-T ports, 2 x Gig SFP ports, 2 x Combo Gig ports, AC 110V/220V)
S2720-12TP-PWR-EI (4 x Ethernet 10/100 Base-Tx ports, 4 x Ethernet 10/100/1,000 Base-T ports, 2 x Gig SFP ports, 2 x Combo Gig ports, 124W PoE AC 110V/220V)
S2720-28TP-PWR-EI (16 x Ethernet 10/100 Base-Tx ports, 8 x Ethernet 10/100/1,000 Base-T ports, 2 x Gig SFP ports, 2 x Combo Gig ports, 370W PoE AC 110V/220V)
S2720-28TP-PWR-EI-L (16 x Ethernet 10/100 Base-Tx ports, 8 x Ethernet 10/100/1,000 Base-T ports, 2 x Gig SFP ports, 2 x Combo Gig ports, 8 ports PoE+, 124W PoE AC 110V/220V)
S2720-28TP-EI (16 x Ethernet 10/100 Base-Tx ports, 8 x Ethernet 10/100/1,000 Base-T ports, 2 x Gig SFP ports, 2 x Combo Gig ports, AC 110V/220V)
S2720-52TP-EI (32 x Ethernet 10/100 Base-Tx ports, 16 x Ethernet 10/100/1,000 Base-T ports, 4 x Gig SFP ports, AC 110V/220V)
S2720-52TP-PWR-EI (32 x Ethernet 10/100 Base-Tx ports, 16 x Ethernet 10/100/1,000 Base-T ports, 4 x Gig SFP ports, 370W PoE AC 110V/220V)

About Us

As a world leading Huawei networking products supplier, Hong Telecom Equipment Service LTD(HongTelecom) keeps regular stock of Huawei S5300/ S2300/ S9300/ S1700/ S2700/ S5700/S6720/ S7700/ S9700/ S12700 all cards at very good price, also Hong Telecom Equipment Service LTD ship to worldwide with very fast delivery.

Huawei S5730-SI Series Standard Gigabit Ethernet Switches

Product overview

The S5730-SI series switches (S5730-SI for short) are next-generation standard gigabit Layer 3 Ethernet switches that provide flexible full gigabit access and cost-effective fixed GE ports and 10 GE uplink ports, meanwhile can provide 40 GE uplink ports with an interface card. The S5730-SI was developed based on next-generation high-performing hardware and the Huawei Versatile Routing Platform (VRP). The S5730-SI supports simplified Operations and Maintenance (O&M), intelligent Stack (iStack), flexible Ethernet networking. It also provides enhanced Layer 3 features and mature IPv6 features. The S5730-SI can be used in various scenarios. For example, it can be used as an access or aggregation switch on a campus network or as an access switch in a data center.

Models and appearances

The following models are available in the S5730-SI series.

Appearance Description

S5730-48C-SI-AC

24 Ethernet 10/100/1,000 ports, 8 x 10 Gig SFP+
One interface slot
Dual pluggable AC or DC power supplies, one 150W AC power supply equipped by default
Forwarding performance: 240 Mpps
Switching capacity: 680 Gbit/s

S5730-48C-PWR-SI-AC

24 Ethernet 10/100/1,000 ports, 8 x 10 Gig SFP+
One interface slot
One 500W AC power supply equipped by default
PoE+
Forwarding performance: 240 Mpps
Switching capacity: 680 Gbit/s

S5730-68C-SI-AC

48 Ethernet 10/100/1,000 ports, 4 x 10 Gig SFP+
One interface slot
Dual pluggable AC or DC power supplies, one 150W AC power supply equipped by default
Forwarding performance: 240 Mpps
Switching capacity: 680 Gbit/s

S5730-68C-PWR-SI-AC

48 Ethernet 10/100/1,000 ports, 4 x 10 Gig SFP+,
One interface slot
One 500W AC power supply equipped by default
PoE+
Forwarding performance: 240 Mpps
Switching capacity: 680 Gbit/s

S5730-68C-PWR-SI

48 Ethernet 10/100/1,000 ports, 4 x 10 Gig SFP+, PoE+
One interface slot
PoE+
Forwarding performance: 240 Mpps
Switching capacity: 680 Gbit/s

Product features and highlights

Powerful service processing capability and multiple security control mechanisms

  • The S5730-SI supports many Layer 2/Layer 3 multicast protocols such as PIM SM, PIM DM, PIM SSM, MLD, and IGMP snooping, to support multi-terminal high-definition video surveillance and video conferencing services.
  • The S5730-SI supports multiple Layer 3 features including OSPF, IS-IS, BGP, and VRRP, meeting enterprises’ requirements for access and aggregation service transmission, and enabling a variety of voice, video, and data applications.
  • The S5730-SI supports MAC address authentication, 802.1x authentication, and Portal authentication, and implements dynamic delivery of policies (VLAN, QoS, and ACL) to users.
  • The S5730-SI provides a series of mechanisms to defend against DoS and user-targeted attacks. DoS attacks are targeted at switches and include SYN flood, Land, Smurf, and ICMP flood attacks. User-targeted attacks include bogus DHCP server attacks, IP/MAC address spoofing, DHCP request flood, and change of the DHCP CHADDR value.
  • The S5730-SI sets up and maintains a DHCP snooping binding table, and discards the packets that do not match the table entries. You can specify DHCP snooping trusted and untrusted ports to ensure that users connect only to the authorized DHCP server.
  • The S5730-SI supports strict ARP learning, which protects a network against ARP spoofing attacks to ensure normal network access.

Easy O&M

  • The S5730-SI supports Super Virtual Fabric (SVF), which virtualizes the “Core/aggregation + Access switch + AP” structure into a logical device. The S5730-SI provides the simplest network management solution in the industry to simplify device management. It allows plug-and-play access switches and APs. In addition, the S5730-SI supports service configuration templates. The templates are configured on core devices and automatically delivered to access devices, enabling centralized control, simplified service configuration, and flexible configuration modification. The S5730-SI functions as a client in an SVF system.
  • The S5730-SI supports zero-touch deployment, replacement of faulty devices without additional configuration, USB-based deployment, batch configuration, and batch remote upgrade. The capabilities facilitate device deployment, upgrade, service provisioning, and other management and maintenance operations, and also greatly reduce O&M costs. The S5730-SI can be managed using SNMP v1/v2c/v3, CLI, web-based network management system, or SSH v2.0. Additionally, it supports RMON, multiple log hosts, port traffic statistics collection, and network quality analysis, which facilitate network optimization and reconstruction.
  • The S5730-SI supports the Sampled Flow (sFlow) function. It uses a method defined in the sFlow standard to sample traffic passing through it and sends sampled traffic to the collector in real time. The collected traffic statistics are used to generate statistical reports, helping enterprises maintain their networks.

Multiple reliability mechanisms

  • The S5730-SI supports iStack. This technology can virtualize up to nine physical switches into one logical switch. Downlink electrical ports support iStack. Member switches in a stack implement redundancy backup to improve device reliability and use inter-device link aggregation to improve link reliability. iStack provides high network scalability. You can increase a stack’s ports, bandwidth, and processing capacity by simply adding member switches. iStack also simplifies device configuration and management. After a stack is set up, multiple physical switches are virtualized into one logical device. You can log in to any member switch in the stack to manage all the member switches in the stack.
  • The S5730-SI is equipped with two removable power modules that can work in 1+1 redundancy backup mode. Mixed installation of AC and DC power modules is supported, allowing for flexible configuration of AC or DC power modules according to service requirements.
  • In addition to traditional STP, RSTP, and MSTP, the S5730-SI supports Huawei-developed Smart Ethernet Protection (SEP) technology and the latest Ethernet Ring Protection Switching (ERPS) standard. SEP is a ring protection protocol specific to the Ethernet link layer, and applies to various ring network topologies, such as open ring topology, closed ring topology, and cascading ring topology. This protocol is reliable, easy to maintain, and implements fast protection switching within 50 ms. ERPS is defined in ITU-T G.8032. It implements millisecond-level protection switching based on traditional Ethernet MAC and bridging functions.
  • The S5730-SI supports Smart Link. One S5730-SI switch can connect to multiple aggregation switches through multiple links, implementing backup of uplinks and significantly improving reliability of access devices.
  • The S5730-SI supports Ethernet OAM (IEEE 802.3ah/802.1ag) to detect link faults quickly.

Mature IPv6 technologies

  • The S5730-SI uses the mature, stable VRP platform and supports IPv4/IPv6 dual stack, IPv6 RIPng, and IPv6 over IPv4 tunnels (including manual, 6-to-4, and ISATAP tunnels). With these IPv6 features, the S5730-SI can be deployed on a pure IPv4 network, a pure IPv6 network, or a shared IPv4/IPv6 network, helping achieve IPv4-to-IPv6 transition.

Applications

Large-sized enterprise campus networks

The S5730-SI provides various terminal security management features, and supports functions such as PoE, voice VLAN, and QoS. The switch can be used for desktop access and provides gigabit access speed.

1

The S5730-SI provides various security features including ARP security, IP security, IP source guard, and user access control policies such as NAC and ACLs, to control access of user terminals.

In addition, the switch supports the Link Aggregation Control Protocol (LACP) to provide multi-link access for servers, improving link bandwidth and reliability.

In terms of device management, the S5730-SI provides EasyOperation and USB-based deployment, which facilitates device deployment and management.

Small and mid-sized enterprise campus network

The S5730-SI switches can be located at the aggregation layer to build a high-performance, reliable enterprise campus network.

2

On an enterprise network or campus network, the S5730-SI switches connect to access switches through gigabit or 10 gigabit interfaces, provide high performance and large switching capacity, and connect to core switches through 10 gigabit optical interfaces. The network provides 10 Gbit/s rate for the backbone layer and 100 Mbit/s access rate for terminals, meeting requirements for high bandwidth and multi-service.

The S5730-SI provides SEP and RRPP to implement millisecond-level protection switchover. The switches form a stack system by using iStack technology to implement the distributed forwarding structure and fast fault recovery. The stack system increases the number of user interfaces and improves packet processing capability. The member switches can be managed in a uniform manner to facilitate network management and maintenance.

Small-sized enterprise campus network

Other than that, the S5730-SI switches can be used as the core switches of a small-sized enterprise campus network, which have powerful aggregation and routing capabilities. The S5730-SI switches use iStack to ensure high reliability. The switches provide various access control policies to achieve centralized user management and simplify configuration.

Ordering information

The following table lists ordering information of the S5730-SI series switches.

S5730-48C-SI-AC S5730-48C-SI Bundle (24 x Ethernet 10/100/1,000 ports, 8 x 10 Gig SFP+, with 1 interface slot, with 150W AC power supply)

S5730-48C-SI-AC S5730-48C-SI Bundle (24 x Ethernet 10/100/1,000 ports, 8 x 10 Gig SFP+, with 1 interface slot, with 150W AC power supply)

S5730-48C-PWR-SI-AC S5730-48C-PWR-SI Bundle (24 x Ethernet 10/100/1,000 ports, 8 x 10 Gig SFP+, PoE+, with 1 interface slot, with 500W AC power supply)

S5730-68C-SI-AC S5730-68C-SI Bundle (48 x Ethernet 10/100/1,000 ports, 4 x 10 Gig SFP+, with 1 interface slot, with 150W AC power supply)

S5730-68C-PWR-SI-AC S5730-68C-PWR-SI Bundle (48 x Ethernet 10/100/1,000 ports, 4 x 10 Gig SFP+, PoE+, with 1 interface slot, with 500W AC power supply)

S5730-68C-PWR-SI S5730-68C-PWR-SI (48 x Ethernet 10/100/1,000 ports, 4 x 10 Gig SFP+, PoE+, with 1 interface slot, without power module)

ES5D21Q04Q01 4-port 40 GE QSFP+ interface card

ES0W2PSA0150 150W AC Power Module (Black)

ES0W2PSD0150 150W DC Power Module (Black)

PAC-500WA-BE 500W AC PoE Power Module (Black, power panel side exhaust)

PDC-650WA-BE 650W DC PoE Power Module (Black, power panel side exhaust)

W2PSA1150 1,150W AC Power Module

About Us

As a world leading Huawei networking products supplier, Hong Telecom Equipment Service LTD(HongTelecom) keeps regular stock of Huawei S5300/ S2300/ S9300/ S1700/ S2700/ S5700/S6720/ S7700/ S9700/ S12700 all cards at very good price, also Hong Telecom Equipment Service LTD ship to worldwide with very fast delivery.

 

Huawei S6720-LI Series Switches Product

The S6720-LI series switches (S6720-LI) are next-generation simplified 10 GE fixed switches and can be used as 10 GE access switches on campus networks and data center networks.

The S6720-LI provides line-rate 10 GE access ports and 40 GE uplink ports. In addition, the S6720-LI delivers a wide variety of services, comprehensive security control policies, and various QoS features to help customers build scalable, reliable, manageable, and secure campus and data center networks.

Product appearance

The S6720-LI series provides the following models.

Appearance Description

S6720-16X-LI-16S-AC

S6720S-16X-LI-16S-AC

  • 16 x 10 GE SFP+ ports
  • Built-in AC power supply and Redundant Power Supply (RPS)
  • USB
  • Packet forwarding rate: 240 Mpps
  • Switching capacity: 1.28 Tbit/s, 12.8 Tbit/s

S6720-26Q-LI-24S-AC

S6720S-26Q-LI-24S-AC

  • 24 x 10 GE SFP+ ports, 2 x 40 GE QSFP+ ports
  • Built-in AC power supply and RPS
  • USB
  • Packet forwarding rate: 240 Mpps
  • Switching capacity: 1.28 Tbit/s, 12.8 Tbit/s

S6720-32X-LI-32S-AC

S6720S-32X-LI-32S-AC

  • 32 x 10 GE SFP+ ports
  • Built-in AC power supply and RPS
  • USB
  • Packet forwarding rate: 240 Mpps
  • Switching capacity: 1.28 Tbit/s, 12.8 Tbit/s

Product features and highlights

High-density 10 GE access and 40 GE uplink

  • To provide sufficient bandwidth for users, more and more servers use 10G network adapters. The S6720-LI has the highest density of 10 GE ports and largest switching capacity among counterpart switches. Each S6720-LI provides up to 32 line-rate 10 GE ports and two line-rate QSFP+ ports.
  • Ports of the S6720-LI support GE access and 10 GE access and can identify optical module types, maximizing the return on investment and allowing users to flexibly deploy services.

Comprehensive security control policies

  • The S6720-LI provides multiple security measures to defend against Denial of Service (DoS) attacks, as well as attacks against networks or users. DoS attacks include SYN flood, Land, Smurf, and ICMP flood attacks. Attacks to networks refer to STP BPDU/root attacks. Attacks to users include bogus DHCP server attacks, man-in-the-middle attacks, IP/MAC spoofing attacks, and DHCP request flood attacks. DoS attacks that change the CHADDR field in DHCP packets are also attacks against users.
  • The S6720-LI supports DHCP snooping, which generates user binding entries. DHCP snooping discards invalid packets that do not match any binding entries, such as ARP spoofing packets and IP spoofing packets. This prevents hackers from using ARP packets to initiate attacks on campus networks. DHCP snooping trusted ports can be specified to ensure that users connect only to the authorized DHCP server.
  • The S6720-LI supports strict ARP learning. This feature prevents ARP spoofing attackers from exhausting ARP entries so that users can connect to the Internet normally. The S6720-LI supports IP source check to prevent DoS attacks caused by MAC address spoofing, IP address spoofing, and MAC/IP spoofing.
  • The S6720-LI supports centralized MAC address authentication and 802.1X authentication. It authenticates users based on statically or dynamically bound user information such as the user name, IP address, MAC address, VLAN ID, port number, and flag indicating whether antivirus software is installed. VLANs, QoS policies, and ACLs can be applied to users dynamically.
  • The S6720-LI can limit the number of MAC addresses learned on a port to prevent attackers from exhausting MAC address entries by using bogus source MAC addresses. This function minimizes packet flooding that occurs when MAC addresses of users cannot be found in the MAC address table.

Comprehensive reliability mechanisms

  • The S6720-LI supports MSTP multi-process that enhances the existing STP, RSTP, and MSTP implementation. This function increases the number of MSTIs supported on a network. It also supports enhanced Ethernet reliability technologies such as Smart Link and RRPP, which implement millisecond-level protection switchover and ensure network reliability. Smart Link and RRPP both support multi-instance to implement load balancing among links, improving bandwidth use efficiency.
  • The S6720-LI supports enhanced trunk (E-trunk). A CE can be dual-homed to two PEs through Eth-Trunk links. This implements inter-device link aggregation and link load balancing, and greatly improves reliability of access devices.
  • The S6720-LI supports the Smart Ethernet Protection (SEP) protocol, a ring network protocol applied to the link layer of an Ethernet network. SEP can be used on open ring networks and provides millisecond-level switchover to ensure nonstop services. SEP features simplicity, high reliability, fast switchover, easy maintenance, and flexible topology, facilitating network planning and management.
  • The S6720-LI supports G.8032, also called Ethernet Ring Protection Switching (ERPS). ERPS is based on traditional Ethernet MAC and bridging functions. It uses the mature Ethernet OAM and Ring Automatic Protection Switching (Ring APS or R-APS) technologies to implement millisecond-level protection switchover on Ethernet. ERPS supports multiple services and provides flexible networking, reducing the OPEX and CAPEX.
  • The S6720-LI supports VRRP. Two S6720-LIs can form a VRRP group to ensure nonstop and reliable communication. Multiple equal-cost routes to an upstream device can be configured on the S6720-LI to provide route redundancy. When an active route is unreachable, traffic is switched to a backup route.

Various QoS control mechanisms

  • The S6720-LI implements complex traffic classification based on packet information such as the 5-tuple, IP preference, ToS, DSCP, IP protocol type, ICMP type, TCP source port, VLAN ID, Ethernet protocol type, and CoS. ACLs can be applied to inbound or outbound direction to filter packets. The S6720-LI supports a flow-based two-rate three-color CAR. Each port supports eight priority queues and multiple queue scheduling algorithms such as WRR, DRR, PQ, WRR + PQ, and DRR + PQ. All of these ensure the quality of voice, video, and data services.

High scalability

  • The S6720-LI supports intelligent Stack (iStack) and virtualizes multiple switches into one logical switch. A port of the S6720-LI can be configured as a stack port using a command for flexible stack deployment. The distance between stacked switches is further increased when the switches are connected with optical fibers. Compared with a single device, iStack has advantages on scalability, reliability, performance, and overall architecture. A new switch can join a stack to increase the system capacity or replace a faulty member switch without interrupting services. Compared with stacking of modular switches, the iStack function can increase system capacity and port density with no restriction of the hardware architecture. Multiple devices in a stack can be considered as one logical device. These switches can be managed using a single IP address, which greatly reduces system expansion and O&M costs.

Convenient management

  • The S6720-LI supports automatic configuration, plug-and-play, deployment using a USB flash drive, and batch remote upgrade. These capabilities simplify device management and maintenance, and greatly reduce maintenance costs.
  • The S6720-LI supports SNMP v1/v2/v3 and provides flexible methods for managing and maintaining devices, such as CLI and Web NMS. The NQA function helps users with network planning and upgrades. In addition, the S6720-LI supports NTP, SSH v2, HWTACACS, RMON, log hosts, and port-based traffic statistics.
  • The S6720-LI supports GVRP, which dynamically distributes, registers, and propagates VLAN attributes to reduce the manual configuration workloads of network administrators and ensure correct VLAN configuration.
  • The S6720-LI supports MUX VLAN that isolates Layer 2 traffic between ports in a VLAN. MUX VLAN defines principal VLANs and subordinate VLANs. Subordinate VLANs can communicate with the MUX VLAN but cannot communicate with each other. This function prevents communication between network devices connected to certain ports or port groups but allows the devices to communicate with the default gateway. MUX VLAN is usually used on an enterprise intranet to isolate user ports from each other but allow them to communicate with server ports.
  • Complying with IEEE 802.3ah and 802.1ag, the S6720-LI supports point-to-point Ethernet fault management and can detect faults in the last mile of an Ethernet link to users. Ethernet OAM improves the Ethernet network management and maintenance capabilities and ensures a stable network.

Various IPv6 features

  • The S6720-LI supports various IPv6 routing protocols including RIPng and OSPFv3. It uses the IPv6 Neighbor Discovery Protocol (NDP) to manage packets exchanged between neighbors. It also provides the Path MTU Discovery (PMTU) mechanism to select a proper MTU on the path from the source to the destination, optimizing network resources and obtaining the maximum throughput.

Networking and applications

Data center networks

As shown in the following figure, the S12700 agile switches function as core switches in a data center and use firewall and load balancer cards to ensure security and perform load balancing. The S6720-LIs function as access switches and provide high-density 10 GE ports to connect to 10G servers.

Data center networks

Campus networks

The S6720-LI series switches can be used as access or aggregation switches on small and medium-sized campus networks and provide high-density line-rate 10 GE ports, rich service features, and comprehensive security mechanism. All of those make the S6720-LI cost effective on campus networks.

Campus networks

Ordering information

S6720-16X-LI-16S-AC (16 x 10 GE SFP+, AC power supply)
S6720S-16X-LI-16S-AC (16 x 10 GE SFP+, AC power supply)
S6720-26Q-LI-24S-AC (24 x 10 GE SFP+, 2 x 40 GE QSFP+, and AC power supply)
S6720S-26Q-LI-24S-AC (24 x 10 GE SFP+, 2 x 40 GE QSFP+, and AC power supply)
S6720-32X-LI-32S-AC (32 x 10 GE SFP+, AC power supply)
S6720S-32X-LI-32S-AC (32 x 10 GE SFP+, AC power supply)

About Us

As a world leading Huawei networking products supplier, Hong Telecom Equipment Service LTD(HongTelecom) keeps regular stock of Huawei S5300/ S2300/ S9300/ S1700/ S2700/ S5700/S6720/ S7700/ S9700/ S12700 all cards at very good price, also Hong Telecom Equipment Service LTD ship to worldwide with very fast delivery.

Huawei S6720-EI Series Switches Product

Product overview

The S6720-EI series switches are next-generation 10G box switches. The S6720-EI can function as an access switch in an Internet Data Center (IDC) or a core/aggregation switch on a campus network. The S6720-EI has industry-leading performance, provides line-speed 10 GE access ports, and line-speed 40 GE uplink ports. It can be used in a data center to provide 10 Gbit/s access to servers or function as a core switch on a campus network to provide 10 Gbit/s traffic aggregation. In addition, the S6720-EI provides a wide variety of services, comprehensive security policies, and various QoS features to help customers build scalable, manageable, reliable, and secure data centers.

S6720S-26Q-EI-24S is a compact switch with 220 mm depth, perfectly suitable in a 300 mm deep cabinet, saving installation space for customers.

Product appearance

Appearance Description

 S6720-30C-EI-24S-AC

S6720-30C-EI-24S-DC

  • 24 x 10 GE SFP+, 2 x 40 GE QSFP+ ports
  • One extended slot for 4 x 40 GE QSFP+ interface cards
  • Double hot-swappable AC/DC power supplies
  • Forwarding performance: 720 Mpps
  • Switching capacity: 2.56 Tbit/s

S6720-54C-EI-48S-AC

S6720-54C-EI-48S-DC

  • 48 x 10 GE SFP+, 2 x 40 GE QSFP+ ports
  • One extended slot for 4 x 40 GE QSFP+ interface cards
  • Double hot-swappable AC/DC power supplies
  • Forwarding performance: 1,080 Mpps
  • Switching capacity: 2.56 Tbit/s

S6720S-26Q-EI-24S-AC

S6720S-26Q-EI-24S-DC

  • 24 x 10 GE SFP+, 2 x 40 GE QSFP+ ports
  • Double hot swappable AC/DC power supplies
  • Forwarding performance: 480 Mpps
  • Switching capacity: 2.56 Tbit/s

Product features

Large-capacity, high-density, 10 Gbit/s access and 40 Gbit/s uplink

  • To provide sufficient bandwidth for users, many servers, particularly those in data centers, use 10G network adapters. The S6720-EI can be used in data centers to provide high forwarding performance and 10 GE ports. The S6720-EI has the high density of 10 GE ports and the largest switching capacity in the industry. Each S6720-EI provides a maximum of 6 line-speed QSFP+ ports and 48 line-speed 10 GE ports.
  • S6720-EI ports support 1 GE and 10 GE access and can identify optical module types, maximizing the return on investment and allowing users to flexibly deploy services.
  • The S6720-EI has a large buffering capacity and uses an advanced buffer scheduling mechanism to ensure non-block transmission when data center traffic volume is high.

Comprehensive security policies

  • The S6720-EI provides multiple security measures to defend against Denial of Service (DoS) attacks, as well as attacks against networks or users. DoS attack types include SYN Flood attacks, Land attacks, Smurf attacks, and ICMP Flood attacks. Attacks to networks refer to STP BPDU/root attacks. Attacks to users include bogus DHCP server attacks, man-in-the-middle attacks, IP/MAC spoofing attacks, and DHCP request flood attacks. DoS attacks that change the CHADDR field in DHCP packets are also attacks against users.
  • The S6720-EI supports DHCP snooping, which generates user binding entries based on users’ access interfaces, MAC addresses, IP addresses, IP address leases, and VLAN IDs. DHCP snooping discards invalid packets that do not match any binding entries, such as ARP spoofing packets and IP spoofing packets. This prevents hackers from using ARP packets to initiate attacks on campus networks. The interface connected to a DHCP server can be configured as a trusted interface to protect the system against bogus DHCP server attacks.
  • The S6720-EI supports strict ARP learning, which prevents ARP spoofing attacks that exhaust ARP entries. The S6720-EI also provides an IP source check to prevent DoS attacks caused by MAC address spoofing, IP address spoofing, and MAC/IP spoofing. URPF, provided by the S6720-EI, authenticates packets by checking the packet transmission path in reverse, which can protect the network against source address spoofing attacks.
  • The S6720-EI supports centralized MAC address authentication and 802.1x authentication. The S6720-EI authenticates users based on statically or dynamically bound user information such as the user name, IP address, MAC address, VLAN ID, access interface, and flag indicating whether anti-virus software is installed. VLANs, QoS policies, and ACLs can be dynamically applied to users.
  • The S6720-EI can limit the number of MAC addresses learned on an interface to prevent attackers from exhausting MAC address entries by using bogus source MAC addresses. This function minimizes the packet flooding that occurs when users’ MAC addresses cannot be found in the MAC address table.

Higher reliability mechanism

  • The S6720-EI supports redundant power supplies. You can choose a single power supply or use two power supplies to ensure device reliability. With two fans, the S6720-EI has a longer MTBF time than its counterpart switches.
  • The S6720-EI supports MSTP multi-process that enhances the existing STP, RSTP, and MSTP implementation. This function increases the number of MSTPs supported on a network. It also supports enhanced Ethernet reliability technologies such as Smart Link and RRPP, which implement millisecond-level protection switchover and ensure network reliability. Smart Link and RRPP both support multi-instance to implement load balancing among links, optimizing bandwidth usage.
  • The S6720-EI supports the Enhanced Trunk (E-Trunk) feature. When a CE is dual-homed to two S6720s (PEs), E-Trunk protects the links between the CE and PEs and implements backup between the PEs. E-trunk enhances link reliability between devices.
  • The S6720-EI supports the Smart Ethernet Protection (SEP) protocol, a ring network protocol applied to the link layer on an Ethernet network. SEP can be used on open ring networks and can be deployed on upper-layer aggregation devices to provide fast switchover (within 50 ms), ensuring the non-stop transmission of services. SEP features simplicity, high reliability, fast switchover, easy maintenance, and flexible topology, facilitating network planning and management.
  • The S6720-EI supports Ethernet Ring Protection Switching (ERPS), also referred to as G.8032. As the latest ring network protocol, ERPS was developed based on traditional Ethernet MAC and bridging functions and uses mature Ethernet OAM function and a Ring Automatic Protection Switching (R-APS) mechanism to implement millisecond-level protection switching. ERPS supports various services and allows flexible networking, helping customers build a network with lower OPEX and CAPEX.
  • The S6720-EI supports VRRP. Two S6720s can form a VRRP group to ensure non-stop reliable communication. Multiple equal-cost routes to upstream devices can be configured on the S6720-EI to provide route redundancy. When an active route is unreachable, traffic is switched to a backup route.

Enhanced QoS control mechanism

  • The S6720-EI implements complex traffic classification based on packet information, such as the 5-tuple, IP preference, ToS, DSCP, IP protocol type, ICMP type, TCP source port, VLAN ID, Ethernet protocol type, and CoS. ACLs can be applied to inbound or outbound directions on an interface. The S6720-EI supports a flow-based two-rate three-color CAR. Each port supports eight priority queues, multiple queue scheduling algorithms, such as WRR, DRR, SP, WRR + SP, and DRR + SP, and WRED, a congestion avoidance algorithm. All of these features ensure high-quality voice, video, and data services.

High scalability

  • The S6720-EI supports the iStack function, which allows switches that are far apart to form a stack. A port on the S6720-EI can be configured as a stack port using a command for flexible stack deployment. The distance between stacked switches is further increased when the switches are connected with optical fibers. A stack is easier to expand, is more reliable, and has a higher performance rate than a single switch. New member switches can be added to a stack without interrupting services when the system capacity needs to be increased or a member switch fails. Compared with the stacking of chassis-shaped switches, the iStack function can increase system capacity and port density without being restricted by hardware. Multiple devices in a stack can function as one logical device, which simplifies network management and configuration.

Convenient management

  • The S6720-EI supports automatic configuration, plug-and-play, deployment using a USB flash drive, and batch remote upgrades. These capabilities simplify device management and maintenance and reduce maintenance costs.
  • The S6720-EI supports SNMP v1/v2c/v3 and provides flexible methods for managing devices. Users can manage the S6720-EI using the CLI, Web NMS and Telnet. The NQA function assists users with network planning and upgrades. In addition, the S6720-EI supports NTP, SSH v2, HWTACACS, RMON, log hosts, and port-based traffic statistics.
  • The S6720-EI supports GARP VLAN Registration Protocol (GVRP), which dynamically distributes, registers, and propagates VLAN attributes to reduce network administrator workloads and ensure correct VLAN configuration. In a complex network topology, GVRP simplifies VLAN configuration and reduces network communication faults caused by incorrect VLAN configuration.
  • The S6720-EI supports Multiplex VLAN (MUX VLAN). MUX VLAN isolates Layer 2 traffic between interfaces in a VLAN. Interfaces in a subordinate separate VLAN can communicate with ports in the principal VLAN, but cannot communicate with each other. MUX VLAN is typically used on an enterprise intranet to isolate user interfaces from each other while still allowing them to communicate with server interfaces. This function prevents communication between network devices connected to certain interfaces or interface groups, but allows these devices to communicate with the default gateway.
  • The S6720-EI supports BFD, which provides millisecond-level fault detection for protocols, such as OSPF, IS-IS, VRRP, and PIM, to improve network reliability. Complying with IEEE 802.3ah and 802.1ag, the S6720-EI supports point-to-point Ethernet fault management and can detect faults in the last mile of an Ethernet link to users. Ethernet OAM improves Ethernet network management and maintenance capabilities and ensures a stable network.

Various IPv6 features

  • The S6720-EI supports IPv4/IPv6 dual stack and can migrate from an IPv4 network to an IPv6 network. S6720-EI hardware supports IPv4/IPv6 dual stack, IPv6 over IPv4 tunnels (including manual tunnels, 6to4 tunnels, and ISATAP tunnels), and Layer 3 line-speed forwarding. The S6720-EI can be deployed on IPv4 networks, IPv6 networks, or networks that run both IPv4 and IPv6. This makes networking flexible and enables a network to migrate from IPv4 to IPv6.
  • The S6720-EI supports various IPv6 routing protocols, including RIPng and OSPFv3. The S6720-EI uses the IPv6 Neighbor Discovery Protocol (NDP) to manage packets exchanged between neighbors. It also provides a Path MTU (PMTU) discovery mechanism to select a proper MTU on the path from the source to the destination, optimizing network resource utilization and obtaining the maximum throughput.

Applications

Data center networks

As shown in the following figure, the S6720-EI are located at the access layer to build a high-performance, reliable data center network and provides high-density 10 GE ports to connect to 10G servers.

Data center networks

Application in campus networks

The S6720-EI can be used for small and medium campus network as core switches. It provides industry-leading high-density 10-gigabit ports to meet the increasing bandwidth demand. Abundant features and perfect security control mechanisms enable the S6720-EI to be the most cost-effective choice for campus network.

Application in campus networks

Ordering information

S6720-30C-EI-24S-AC bundle (24 x 10 GE SFP+, 2 x 40 GE QSFP+ ports, with 1 extended slot, with 600W AC power supply)
S6720-54C-EI-48S-AC bundle (48 x 10 GE SFP+, 2 x 40 GE QSFP+ ports, with 1 extended slot, with 600W AC power supply)
S6720-30C-EI-24S-DC bundle (24 x 10 GE SFP+, 2 x 40 GE QSFP+ ports, with 1 extended slot, with 350W DC power supply)
S6720-54C-EI-48S-DC bundle (48 x 10 GE SFP+, 2 x 40 GE QSFP+ ports, with 1 extended slot, with 350W DC power supply)
S6720S-26Q-EI-24S-AC bundle (24 x 10 GE SFP+, 2 x 40 GE QSFP+ ports, with 170W AC power supply)
S6720S-26Q-EI-24S-DC bundle (24 x 10 GE SFP+, 2 x 40 GE QSFP+ ports, with 170W DC power supply)
4 x 40 GE QSFP+ interface card (used in S6720-EI series)
Fan box (B, FAN panel side exhaust)
600W AC power module
350W DC power module
170W AC power module
170W DC power module

About Us

As a world leading Huawei networking products supplier, Hong Telecom Equipment Service LTD(HongTelecom) keeps regular stock of Huawei S5300/ S2300/ S9300/ S1700/ S2700/ S5700/S6720/ S7700/ S9700/ S12700 all cards at very good price, also Hong Telecom Equipment Service LTD ship to worldwide with very fast delivery.

Huawei NE5000E Cluster Router Product

Huawei NetEngine5000E cluster router (NE5000E) delivers industry-leading huge capacity, carrier-level availability and green design,which fully guarantees the network robustness, service flexibility and TCO saving for service providers. Powered advanced backplane connection design, distributed and highly scalable Versatile Routing Platform (VRP) operating system, NE5000E, a super-core routing platform, service steadily and high-efficiency at internet backbone, metro core, internet data center and Internet bearer network.

Offering the innovative and advanced solutions such as the industry-largest capacity board, back-to-back cluster system and hybrid-chassis cluster system, the NE5000E makes network configured on demand and helps customer improve earnings, as well as save TCO.

The NE5000E has two parts in hardware: Cluster Central Chassis (CCC) and Cluster Line Chassis (CLC). CLC is used to forward service flow and CCC is used to connect CLC’s control plane and data plane in cluster system.

Product Characteristics

Huge capacity, Sustainable evolution

Huawei was the first to launch NE5000E 2+8 cluster with 40G Line Process Unit (LPU) in April 2008, leading the Internet to 10T era. The capacity can be up to 25T with 100G LPUs and 102.4T with 400G LPUs.

NE5000E cluster system supports single chassis mode and multi chassis cluster modes, such as back-to-back, 2+4, 2+8. The future-oriented design ensures the cluster system to be expanded to 16+64 multi-chassis with 819Tbps system capacity. The large capacity of cluster can meet the requirement of extra-large bandwidth service deployment.

Huawei continuously devotes high-end router R&D, and helps customers build more efficient network. Huawei firstly launched NE5000E 2+8 cluster with 40G LPUs in 2008 and led the 10T era of Internet. The end-to-end 100G solution combining 100GE+100G WDM was released by Huawei next year. Huawei released the 200G LPU in 2011, and won the InfoVision award. The high density 480G fixed LPU and 400G flexible LPU both were released in 2012. The LPUF-400 supports flexible sub-card deployed on demand. The latest release is the 100T 2+8 cluster based on 400G LPUs and new 1Tbps LPU in 2013.

High availability, Enhanced network robustness

NE5000E provides all-round protections for reliability guarantee. For device-level protection, NE5000E has a passive backplane, with all the key parts of the device hot-swappable, hot-pluggable and hot-backup. NE5000E supports non-stop routing (NSR) for control and data plane. NE5000E provides hot-patching and comprehensive In-Service Software Upgrade (ISSU) technology for smooth upgrade of the software. For network-level protection, NE5000E supports comprehensive high-availability mechanisms, such as IGP fast convergence, IP/LDP/TE FRR, BGP/ISIS Auto FRR, BGP/ISIS/OSPF/LDP/PIM GR, VRRP, BFD and Trunk, which will effectively ensure the network operation with high reliability. As a result, NE5000E system exceeds 99.999% carrier-class reliability.

Adopting innovative In-service Hardware Expansion (ISHE) technology, NE5000E can be expanded smoothly. It is the most flexible core router in industry and meets the requirement of continuous expansion. High-speed Optical Flexible Card (OFC) of cluster can be configured on demand and the switch mode of fabric chipset can be configured flexibly. All these innovative core features are integral part of In-service Hardware Expansion (ISHE) technology, which not only improves the availability of network, but also protects investment of the customers for decades to come.

Green philosophy, TCO saving greatly

Huawei released industry 1st NE5000E back-to-back cluster in 2006, and less site room space and power consumption, reducing 45% TCO for customers. The back-to-back cluster with 400G LPUs supports 25.6Gbps of system capacity, and meets the requirement of business development in 3-5 years. NE5000E back-to-back cluster smoothly upgrades to multi chassis system, and is the most cost-effective cluster solution.

Product Specifications

Attribute Description
Throughput capability Non-block switch fabric, support multi Chassis

The maximum system capacity: 819Tbps/64 Chassis (400G)

Port capacity 15Tbps/ single Chassis (480G)
Interface Types GE、10GE、155M POS、622M POS、2.5G POS、10G POS、40G POS、40GE、100GE
Routing protocol IPv4 static route, OSPF, IS-IS, BGP, PIM, MSDP, MBGP
IPv6 IPv4 & IPv6 dual stack; IPv6 line speed forwarding based on hardware

IPv6 static route, BGP4+, RIPng, OSPFv3, IS-ISv6

IPv6 peer discovery, PMTU discovery, TCP6, ping IPv6, Tracert IPv6, socket IPv6, TFTP IPv6 client, IPv6 policy route , IPv6 NetStream, etc

Manually configured tunnel, automatic tunnel, 6 to 4 tunnel

High Availability 1:1 standby for MPU, 3+1 backup switching fabric, 8+8 backup for power supply and 2+2 back for fan

hot swappable based on state,Non-stop Forwarding (NSF) and Non-stop Routing (NSR)

BFD for VRRP/BGP/OSPF/ISIS/TE LSP/LDP/ LSP/TE and PIM

IGP/BGP/Multicast Fast Convergence

IP/LDP/BGP/TE Fast Re-Route (FRR), BGP/ISIS Auto FRR, ETH Trunk, IP Trunk

In-Service Software Upgrade (ISSU), Automatic fault diagnosis function, Hot Patching

Configuration Management

Bi-Direction Compatible

CLC Specification

Attribute Description
Dimension (W×D×H) 442mm × 650mm ×1778mm (17.4 in. × 25.6 in. × 70.0 in.)
Max. Power Consumption 10000 W (full configuration of 400G LPUs)
Weight 364kg(802 lb) (full configuration of 400G LPUs)

CCC Specification

Attribute Description
Dimension (W×D×H) 442mm × 850mm × 1955mm (17.4 in. × 33.5 in. × 77.0 in.)
Power Consumption 4300W(2+2 Cluster based on full configuration of 400G LPU)
Weight 420kg (925.9 lb)

Ordering Information

  • NE5000E, Integrated Chassis Components(DC Power)
  • NE5000E, Integrated Chassis Components(AC Power)
  • CR5D0MPUB560, NE5000E Main Processing Unit B5
  • CR5DSFUIK06A, 400G Switch Fabric Unit A for Single Chassis(SFUI-400-A)
  • CR5DSFUFA06C, 100G Switch Fabric Unit C(SFUF-100-C)
  • CR5P5KOFCA60, NetEngine5000E Cluster OFC-100 Bundle Configuration(Include 8*OFC-100)
  • CR5P5KSFUK01, NetEngine5000E 400G SFU Bundle Configuration(Include 4*SFU-400-B)
  • CR5P5KBASD64, NetEngine5000E-X16A 100G Basic Configuration DC
  • CR5P5KBTBA60, NetEngine5000E-X16 Basic(BTB) Configuration(Include 2*NE5000E-X16 Chassis,4*MPUB4,8*SFUF-100,8*2G Memory,8*1G CF Card,16*AC Power,without Software Charge and Document)
  • CR5P5KBTBD60, NetEngine5000E-X16 Basic(BTB) Configuration(Include 2*NE5000E-X16 Chassis,4*MPUB4,8*SFUF-100,8*2G Memory,8*1G CF Card,16*DC Power,without Software Charge and Document)
  • CR5P5KBASD6A, NetEngine5000E-X16A 400G Basic Configuration DC for Multi Chassis-12 pcs PM
  • CR5P5KBASA6A, NetEngine5000E-X16A 400G Basic Configuration AC for Multi Chassis-10 pcsPM
  • CR5P5KBASD66, NetEngine5000E-X16A 400G Basic Configuration DC for Single Chassis
  • CR5P5KBASA66, NetEngine5000E-X16A 400G Basic Configuration AC for Single Chassis
  • CR5P5KBTBD61, NetEngine5000E-X16A 100G (BTB) BasicConfiguration DC
  • CR5P5KBTBA61, NetEngine5000E-X16A 100G (BTB) Basic Configuration AC
  • CR5P5KBTBA62, NetEngine5000E-X16A 400G (BTB) Basic Configuration AC
  • CR5P5KBASD60, NetEngine5000E-X16 Basic Configuration(Include NE5000E-X16 Chassis,2*MPUB4,4*SFUF-100,4*2G Memory,4*1G CF Card,8*DC Power,without Software Charge and Document)
  • CR5P5KBASA64, NetEngine5000E-X16A 100G Basic Configuration AC
  • CR5P5KSFEB60, NetEngine5000E SFEB Bundle Configuration(Include 4*SFEB)
  • CR5B0BKP166B, NE5000E-X16A Integrated Chassis Components(AC Power)
  • CR5B0BKP1660, Huawei NE5000E-X16 Integrated Chassis Components
  • CR5B0BKP1660 (Include 8*DC Power)CR5P5KCCCA51, Huawei NE5000E 100G Cluster(2+X) Configuration
  • CR5P5KCCCA51 (Include 2*Central Chassis,16*SFUI-100,16*ECU-100,4*MPUA4,2*ICU,8*2G Memory,8*2G CF Card,12*AC Power,without Software Charge and Document)
  • CR5P5KCCCD51, Huawei NE5000E 100G Cluster(2+X) Configuration
  • CR5P5KCCCD51 (Include 2*Central Chassis,16*SFUI-100,16*ECU-100,4*MPUA4,2*ICU,8*2G Memory,8*2G CF Card,4*DC Power,without Software Charge and Document)
  • CR5P5KCCCA52, Huawei NE5000E 100G Cluster(2+2) Configuration
  • CR5P5KCCCA52 (Include 2*Central Chassis,16*SFUI-100,4*ECU-100,4*MPUA4,2*ICU,8*2G Memory,8*2G CF Card,12*AC Power,without Software Charge and Document)
  • CR5P5KCCCD52, Huawei NE5000E 100G Cluster(2+2) Configuration
  • CR5P5KCCCD52 (Include 2*Central Chassis,16*SFUI-100,4*ECU-100,4*MPUA4,2*ICU,8*2G Memory,8*2G CF Card,4*DC Power,without Software Charge and Document)
  • CR5P5KCCCD53, NetEngine5000E Upgrade 40G CCC to 100G CCC DC Bundle
  • CR5P5KCCCA53, NetEngine5000E Upgrade 40G CCC to 100G CCC AC Bundle
  • CR5P5KBTBD62, NetEngine5000E-X16A 400G (BTB) Basic Configuration DC
  • CR5P5KSFUK02, NE5000E-X16A 400G CLC Switch Fabric Unit Bundle for Single Chassis(Include 4*SFUI-400-A)
  • CR5P5KSFU06B, NE5000E Cluster 400G SFUI Bundle
  • CR5B0BKP166A, NE5000E-X16A Integrated Chassis Components(DC Power)
  • CR5B00BKPB50, NE5000E Cluster Chassis B
  • 100G Cluster Central Switch Fabric Unit A(SFUI-100-A)
  • 400G Cluster Central Switch Fabric Unit A(SFUF-400-A)
  • 100G Cluster Electric Cross Unit A(ECU-100-A)
  • Cluster Central Main Processing Unit B
  • Cluster Internal Communication Unit A
  • 100G Cluster Optical Flexible Card
  • 400G Cluster Optical Flexible Card
  • CR5P5KOFCK51, CCC-A Cluster OFC-400 Bundle Configuration (Include 16*OFC-400)
  • CR5B0BKPCA50, NE5000E CCC-A Cluster AC Chassis
  • CR5B0BKPCD50, NE5000E CCC-A Cluster DC Chassis
  • CR5P5K2C2A5B, CCC-A 400G Cluster (2+2) CCC AC Base Configuration-12 pcs PM
  • CR5P5K2C2D5B, CCC-A 400G Cluster (2+2) CCC DC Base Configuration-12 pcs PM

About Us

As a world leading Huawei networking products supplier, Hong Telecom Equipment Service LTD(HongTelecom) keeps regular stock of Huawei CE5800/ CE7800/ CE8800/ S5300/ S2300/ S9300/ S1700/ S2700/ S5700/S6720/ S7700/ S9700/ S12700 all cards at very good price, also Hong Telecom Equipment Service LTD ship to worldwide with very fast delivery.

Huawei CE8800 Series Data Center Switch

Product Overview

Huawei CloudEngine 8800 series (CE8800) switches are 100G Ethernet switches designed for data centers and high-end campus networks. The switches provide high-performance, high-density 100 GE/40 GE/25 GE/10 GE ports, and low latency. Using the Huawei VRP8 software platform, CE8800 switches provide extensive data center service features and high stacking capability. In addition, the airflow direction (front-to-back or back-to-front) can be changed. CE8800 switches can work with CE12800/CE8800/CE6800/CE5800 switches to build an elastic, virtualized, high-quality fabric for cloud-computing data centers.

CE8800 switches can function as core or aggregation switches on data center networks to help enterprises and carriers build a scalable data center network platform in the cloud computing era. They can also be used as aggregation or core switches for enterprise campus networks.

Product appearance

  • The CE8800 series is available in the following models:
Model and appearance Description
CE8860-4C-EI Data Center Switch

CE8860-4C-EI

  • 2U high, supporting four flexible cards of half the standard width

CE8850-32CQ-EI

  • 32 x 100 GE QSFP28 ports
  • 2 x 10 GE SFP+ ports
  • CE8860 supports the following models of cards:
Model and appearance Description
CE88-D24S2CQ Data Center Switch

CE88-D24S2CQ

  • 24 x 10 GE (SFP+) or 25 GE (SFP28) and 2 x 100 GE (QSFP28) cards
CE88-D24T2CQ Data Center Switch

CE88-D24T2CQ

  • 24 x 10 GE (BASE-T) and 2 x 100 GE (QSFP28) cards
CE88-D8CQ Data Center Switch

CE88-D8CQ

  • 8 x 100 GE (QSFP28) cards
CE88-D16Q Data Center Switch

CE88-D16Q

  • 16 x 40 GE (QSFP+) cards

Product characteristics

Industry’s first 25 GE access switch

  • CE8860 supports 25 GE (SFP28)/10 GE (SFP+) auto-sensing interfaces and is applicable to scenarios of high-density 25 GE/10 GE server access.
  • CE8860 supports a maximum of 32 x 100 GE, 64 x 40 GE, or 128 x 25 GE/10 GE ports, delivering high-density access and aggregation capabilities through flexible card combinations.
  • CE8850 supports a maximum of 32 x 100 GE, 32 x 40 GE, 128 x 25 GE, or 130 x 10 GE ports, delivering high-density access and aggregation capabilities.

High-density 100 GE/40 GE aggregation and outstanding switching capacity

  • The CE8800 provides 6.4 Tbit/s switching capacity, forwarding performance of 3,200 Mpps, and supports L2/L3 line-speed forwarding.
  • The CE8860 provides a maximum of 32 x 100 GE QSFP28 or 64 x 40 GE QSFP+ ports, and can function as the core or aggregation switch on a data center or campus network.
  • The 100 GE QSFP28 port supports 100 GE optical modules. Each 100 GE port can be used as four 25 GE SFP28 ports. The 100 GE QSFP28 port also supports 40 GE QSFP+ optical modules. 40 GE ports can be converted to 10 GE ports through QSFP+ breakout cable.
  • The CE8860 supports 100 GE/40 GE/25 GE/10 GE flexible cards, delivering flexible networking capability. It can work with CE12800/CE7800/CE6800/CE5800 series data center switches to build a non-blocking network platform.

Highly reliable, high-performance stacking

Support 9-member stack system
A stack system of 9 member switches has a maximum of 864 x 25 GE access ports that provide high-density server access in a data center
Multiple switches in a stack system are virtualized into one logical device, making it possible to build a scalable, easy-to-manage data center network platform
A stack system separates the control plane from the data plane. This eliminates the risk of single-point failures and greatly improves system reliability
Long-distance stacking
The CE8800 can use service ports as stack ports. A stack system can be established with switches in the same rack or different racks, and even over long distances
Service and stack bandwidths can be allocated based on the network’s scale so that network resources can be used more efficiently

Large-scale routing bridge, on-demand scalability

  • The CE8800 supports the IETF Transparent Interconnection of Lots of Links (TRILL) protocol. A TRILL network can contain more than 500 nodes, enabling flexible service deployments and large-scale Virtual Machine (VM) migrations.
  • The TRILL protocol uses a routing mechanism similar to IS-IS and sets a limited Time-To-Live (TTL) value in packets to prevent Layer 2 loops. This significantly improves network stability and speeds up network convergence.
  • On a TRILL network, all data flows are forwarded quickly using Shortest Path First (SPF) and Equal-Cost Multi-Path (ECMP) routing. SPF and ECMP avoid the sub-optimal path selection problem in STP and increase link bandwidth efficiency to 100%.
  • The CE8800 supports TRILL-based Layer 2 equal-cost paths, greatly improving links’ load balancing capabilities. The network has a fat-tree architecture that enhances expansion.

Converged enhanced Ethernet, data, storage, and computing traffic over one network

  • The CE8800 supports Fiber Channel over Ethernet (FCoE), which permits storage, data, and computing services to be transmitted on one network, reducing the costs of network construction and maintenance.
  • The CE8800 supports centralized FCoE/FC gateway deployment, which makes network O&M simpler.
  • Various CE8800 features ensure lossless transmission: Priority-based Flow Control (PFC), Enhanced Transmission Selection (ETS) and Data Center Bridging eXchange (DCBX). These features ensure low latency and zero packet loss for FC storage and high-speed computing services.

Programmable network device, flexible customization

  • The CE8800 uses the Open Programmability System (OPS) embedded in the VRP8 software platform to provide programmability at the control plane.
  • The OPS provides open APIs. APIs can be integrated with mainstream cloud platforms, including commercial and open cloud platforms, and third-party controllers. The OPS enables services to be flexibly customized and provides automatic management.
  • Users or third-party developers can use open APIs to develop and deploy specialized network management policies to implement extension of fast service functions, automatic deployment, and intelligent management. The OPS also implements automatic operation and maintenance, and reduces management costs.
  • The OPS provides seamless integration of data center services and the network in addition to a service-oriented, Software-Defined Networking (SDN).

Virtualized gateway achieves fast service deployment

  • The CE8800 can work with a mainstream virtualization platform. As the high-performance hardware gateway of an overlay network (VXLAN), the CE8800 can support more than 16 million tenants.
  • The CE8800 can connect to a cloud platform through an open API to provide unified management of software and hardware.
  • This function implements fast service deployment without changing the network and protects customer investments.

Zero-configuration deployment, automatic O&M

  • The CE8800 supports Zero-Touch Provisioning (ZTP). ZTP enables the CE8800 to automatically obtain and load version files from a USB flash drive or file server, freeing engineers from on-site configuration or deployment. ZTP reduces labor costs and improves device deployment efficiency.
  • ZTP provides built-in scripts for users through open APIs. Data center personnel can use the programming language they are familiar with, such as Python, to provide unified configuration of network devices.
  • ZTP decouples configuration time of new devices from device quantity and area distribution, which improves service provisioning efficiency.

Flexible airflow design saves energy

Front-to-back/back-to-front design
The CE8800 uses a front-to-back/back-to-front airflow design to isolate cold air and hot air channels. This design meets heat dissipation requirements in data center equipment rooms
Air can flow from front to back or back to front depending on the fans and power modules used
Redundant power modules and fans can be configured to ensure uninterrupted service transmission
Energy-saving technologies
The CE8800 has energy-saving chips that can measure system power consumption in real time. Fan speed can be adjusted dynamically based on system consumption. These technologies reduce O&M costs and contribute to a greener data center

Clear indicators, simple maintenance

Clear indicators
Port indicators clearly show port status and port speeds. The port indicators also show the state of all the 10 GE ports derived from the 40 GE ports
State and stack indicators on both the front and rear panels enable operators to maintain the switch from either side
The CE8800 supports remote positioning. Operators can turn on remote positioning indicators on the switches they want to maintain, so that they can find switches easily in an equipment room full of devices
Simple maintenance
The management port, fans, and power modules are on the front panel, which facilitates device maintenance
Data ports are located at the rear, facing servers. This simplifies cabling

Product specifications

Item CE8860-4C-EI CE8850-32CQ-EI
Ports 4 slots, different cards can be flexibly used in combinations to achieve a maximum of:

32 x 100 GE QSFP28 or

64 x 40 GE QSFP+ or

128 x 25 GE SFP28 or

128 x 10 GE SFP+ ports

32 x 100 GE QSFP28 and 2 x 10 GE SFP+
Switching Capacity 6.4 Tbit/s
Forwarding Performance 3,200 Mpps
Airflow Design Front-to-back or back-to-front
Device Virtualization iStack
For details about the configuration, please see: http://support.huawei.com/onlinetoolsweb/virtual/en/dc/stack_index.html?dcb
M-LAG
Network Virtualization VXLAN routing and bridging
BGP-EVPN
TRILL
QinQ access VXLAN
IPv6 over VXLAN
SDN Agile Controller
VMware NSX
Network Convergence FCoE
DCBX, PFC, ETS
Programmability OPS
CE modules for Ansible released on open source websites
Traffic Analysis NetStream
sFlow
VLAN Adding access, trunk, and hybrid interfaces to VLANs
Default VLAN
QinQ
MUX VLAN
GVRP
ACL Ingress: 2,000; Egress: 1,000
MAC Address Table Maximum: 136k
Dynamic learning and aging of MAC addresses
Static, dynamic, and black hole MAC address entries
Packet filtering based on source MAC addresses
MAC address limiting based on ports and VLANs
ARP Maximum: 84k
IPv4 FIB Maximum: 128k
IP Routing IPv4 routing protocols, such as RIP, OSPF, BGP, and IS-IS
IPv6 routing protocols, such as RIPng, OSPFv3, IS-ISv6, and BGP4+
IPv6 FIB Maximum: 64k
ND Maximum: 32k
IPv6 IPv6 Neighbor Discovery (ND)
Path MTU Discovery (PMTU)
TCP6, ping IPv6, tracert IPv6, socket IPv6, UDP6, and Raw IP6
Multicast FIB Maximum: 8k
Multicast IGMP, PIM-SM, PIM-DM, MSDP, and MBGP
IGMP snooping
IGMP proxy
Fast leave of multicast member interfaces
Multicast traffic suppression
Multicast VLAN
MPLS MPLS
Reliability LACP
STP, RSTP, VBST, and MSTP
BPDU protection, root protection, and loop protection
Smart Link and multi-instance
DLDP
ERPS (G.8032)
VRRP, VRRP load balancing, and BFD for VRRP
BFD for BGP/IS-IS/OSPF/Static route
QoS Traffic classification based on Layer 2 headers, Layer 3 protocols, Layer 4 protocols, and 802.1p priority
Actions of ACL, CAR, re-marking, and scheduling
Queue scheduling algorithms, including PQ, WRR, DRR, PQ + WRR, and PQ + DRR
Congestion avoidance mechanisms, including WRED and tail drop
Traffic shaping
Configuration and Maintenance Console, Telnet, and SSH terminals
Network management protocols, such as SNMP v1/v2c/v3
File upload and download through FTP and TFTP
BootROM upgrade and remote upgrade
802.3az Energy Efficient Ethernet (EEE)
Hot patches
User operation logs
Zero-Touch Provisioning (ZTP)
Security and Management 802.1x authentication
Command line authority control based on user levels, preventing unauthorized users from using commands
DoS, ARP, and ICMP attack defenses
Port isolation, port security, and sticky MAC
Binding of the IP address, MAC address, interface and VLAN
Authentication methods, including AAA, RADIUS, and HWTACACS
Remote Network Monitoring (RMON)
Dimensions (W x D x H) 442 mm x 600 mm x 88.1 mm 442 mm × 420 mm × 43.6 mm
Weight (fully loaded) 21.2 kg (46.7 lb) 9 kg (19.8 lb)
Environment Parameters Operating temperature: 0°C to 40°C (32°F to 104°F) (0m to 1,800m)

Storage temperature: -40°C to 70°C (-40°F to 158°F)

Relative humidity: 5% RH to 95% RH, non-condensing

Operating Voltage Rated voltage: 100V AC to 240V AC, 50 Hz to 60 Hz

Maximum voltage: 90V DC to 290V AC, 47 Hz to 63 Hz

240V high-voltage DC power voltage: 188V to 290V DC

380V high-voltage DC rated voltage: 240V to 380V DC

380V high-voltage DC maximum voltage: 188V to 400V DC

Rated voltage range: 100V AC to 240V AC; 50 Hz to 60 Hz

Maximum voltage range: 90V DC to 290V AC; 47 Hz to 63 Hz

Maximum Power Consumption 750W 453W

Ordering information

Mainframe
CE8860-4C-EI-F CE8860-4C-EI Mainframe (with 4 Subcard Slots, 2 x FAN Box, Port-side Exhaust, Without Power Module)
CE8860-4C-EI-B CE8860-4C-EI Mainframe (with 4 Subcard Slots, 2 x FAN Box, Port-side Intake, Without Power Module)
CE8860-4C-EI CE8860-4C-EI Mainframe (with 4 Subcard Slots, Without FAN Box, Without Power Module)
CE8850-EI-F-B0A CE8850-32CQ-EI Switch (32-Port 100 GE QSFP28, 2-Port 10 GE SFP+, 2 x AC Power Module, 2 x FAN Box, Port-side Exhaust)
CE8850-EI-B-B0A CE8850-32CQ-EI Switch (32-Port 100 GE QSFP28, 2-Port 10 GE SFP+, 2 x AC Power Module, 2 x FAN Box, Port-side Intake)
CE8850-32CQ-EI CE8850-32CQ-EI Switch (32-Port 100 GE QSFP28 Optical, 2 x FAN Box, Port-side Exhaust, Without Power Module)
Subcard
CE88-D8CQ CE8860: 8 Port 100 GE QSFP28 Interface Card
CE88-D16Q CE8860: 16 Port 40 GE QSFP+ Interface Card
CE88-D24T2CQ CE8860: 24 Port 10 GE Base-T and 2 Port 100 GE QSFP28 Interface Card
CE88-D24S2CQ CE8860: 24 Port 25 GE SFP28 and 2 Port 100 GE QSFP28 Interface Card
Fan box
Part Number Product Description Support Product
FAN-180A-F Fan box (F, FAN panel side intake ) CE8860-4C-EI
FAN-180A-B Fan box (B, FAN panel side exhaust) CE8860-4C-EI
FAN-40HA-F Fan box (HA, front to back, FAN panel side intake) CE8850-32CQ-EI
FAN-40HA-B Fan box (HA, back to front, FAN panel side exhaust) CE8850-32CQ-EI
Power module
Part Number Product Description Support Product
PAC-1K2WA-F 1,200W AC & 240V DC Power Module (power panel side intake) CE8860-4C-EI
PAC-1K2WA-B 1,200W AC & 240V DC Power Module (power panel side exhaust) CE8860-4C-EI
PHD-1K2WA-F 1,200W HVDC Power Module (power panel side intake) CE8860-4C-EI
PHD-1K2WA-B 1,200W HVDC Power Module (power panel side exhaust) CE8860-4C-EI
PAC-600WA-F 600W AC Power Module (front to back, power panel side intake) CE8850-32CQ-EI
PAC-600WA-B 600W AC Power Module (back to front, power panel side exhaust) CE8850-32CQ-EI
Software
CE88-LIC-NPV CloudEngine 8800 FCOE NPV Function
CE88-LIC-FCF16 CloudEngine 8800 FCF 16 Ports
CE88-LIC-FCFAL CloudEngine 8800 FCF All Ports
CE88-LIC-VXLAN CloudEngine 8800 VXLAN Function

About Us

As a world leading Huawei networking products supplier, Hong Telecom Equipment Service LTD(HongTelecom) keeps regular stock of Huawei CE5800/ CE7800/ CE8800/ S5300/ S2300/ S9300/ S1700/ S2700/ S5700/S6720/ S7700/ S9700/ S12700 all cards at very good price, also Hong Telecom Equipment Service LTD ship to worldwide with very fast delivery.