H3C IE4320 Comware V7 series rack type industrial switch
Date:2022-11-21Click:1260
H3C IE4320 series industrial switch is a new generation of industrial Ethernet switch independently developed by Xinhuasan Technology Co., Ltd. (hereinafter referred to as H3C). The new H3C proprietary intellectual property operating system Comware V7 is adopted to ensure the rich software features and further provide strong hardware protection capability. It can work in the harsh environment of - 40~85 ℃ for a long time, with IP40 protection level and fanless heat dissipation characteristics.
SmartMC (Intelligent Management Center)
With the increase of network scale, network edge needs to use a large number of access devices, which makes the management of these devices very cumbersome. The main purpose of SmartMC is to solve the centralized management problem of a large number of decentralized network devices. It is designed to solve the operation and maintenance tasks of small enterprises mainly based on switches. SmartMC realizes the unified operation, maintenance and management of the network by means of built-in equipment and graphical operation
The four business segments of SmartMC simplify the operation, maintenance and management of small and medium-sized parks:
Intelligent management: It mainly includes device role selection, FTP server configuration, global configuration, network management interface configuration, etc
Intelligent operation and maintenance: It mainly includes group management, equipment or group upgrade backup, monitoring, and equipment failure replacement
Visualization: Mainly including network topology visualization and management, equipment list display, etc
Intelligent business: It mainly includes user management, etc.: After the network access users are created and successfully activated, these users can access the internal SmartMC network through the one click defense port.
H3C IE4320 series industrial switches can be used as the managed devices of SmartMC, and connected to the SmartMC network as the managed devices to achieve easy maintenance.
Rich business performance
It supports Internet broadband access, mainly supports gigabit access of SME network users, supports VOD and other multimedia services, and supports delay sensitive voice services such as VoIP. It provides multicast audio and video services, gigabit port access, and gigabit or gigabit uplink. Support Jumbo Frame, 802.1X, MAC authentication, port security, LACP protocol, 4K VLANs, maximum 16K MAC address, black hole MAC and other features, automatic port based priority mapping of Layer 2 and Layer 3, port based mirroring, redirection, port isolation, access control list, and port speed limit, Support Ethernet OAM: 802.3ah and 802.1ag (CFD: Connectivity Fault Detection) and other rich IPv6 functions.
IRF2 (the second generation intelligent elastic architecture)
H3C IE4320 series industrial switches support IRF2 (the second generation intelligent elastic architecture) technology, which connects multiple physical devices to each other, making them virtual as a logical device. In other words, users can manage and use these multiple devices as a single device. The IE4320 series switches can be virtualized not only through the 10 gigabit optical interface, but also through the gigabit optical interface and gigabit electrical interface. The IRF2 function can be realized through the network cable. The gigabit optical ports of the IE4320 series can work at 2.5G and 5G speeds when using stacked cables to improve the stack bandwidth.
IRF can bring the following benefits to users:
After the formation of the simplified management IRF architecture, you can connect to any port of any device to log in to the unified logical device. By configuring a single device, you can manage the entire intelligent elastic system and all member devices in the system, instead of physically connecting to each member device to configure and manage them separately.
The various control protocols running in the logical devices formed by the simplified service IRF also operate uniformly as a single device. For example, the routing protocol will be calculated uniformly as a single device. With the application of cross device link aggregation technology, it can replace the original spanning tree protocol, which can eliminate the interaction of a large number of protocol packets between devices, simplify the network operation, and shorten the convergence time in case of network turbulence.
Elastic expansion can realize elastic expansion according to user needs to ensure user investment. In addition, when adding or leaving the IRF architecture, the new devices can be "hot swapped" without affecting the normal operation of other devices.
The high reliability of IRF is embodied in three aspects: link, equipment and protocol. The physical ports between member devices support the aggregation function, and the physical connection between the IRF system and the upper and lower layer devices also supports the aggregation function, which improves the reliability of the link through multi link backup; The IRF system is composed of multiple member devices. Once the master device fails, the system will quickly and automatically elect a new master to ensure uninterrupted business through the system, so as to achieve device level 1: N backup; The IRF system will have a real-time protocol hot backup function to back up the protocol configuration information to all other member devices, so as to achieve 1: N protocol reliability.
High performance For Ethernet switches, the improvement of performance and port density will be limited by the hardware structure. The performance and port density of the IRF system are the sum of the performance of all devices and the number of ports in the IRF. Therefore, IRF technology can easily expand the switching capacity of the device and the density of user ports several times, thus greatly improving the performance of the device.
Support IEEE1588v2 clock synchronization protocol
IEEE 1588v2 is a master-slave synchronization system. During the synchronization of the system, the master clock periodically releases the PTP time synchronization protocol and time information, receives the time stamp information from the master clock port, and the system calculates the time delay and master-slave time difference of the master-slave line, and uses the time difference to adjust the local time, so that the time of the slave device remains the same frequency and phase as the time of the master device. IEEE1588v2 can realize frequency synchronization and time synchronization at the same time. The accuracy of time transmission mainly depends on the frequency accuracy of the two conditional counters and the symmetry of the link. Compared with traditional time service technology, IEEE1588v2 has obvious advantages. It adopts bidirectional channel, with accuracy of ns level, low cost, and can adapt to different access environments. In the context of the increasing demand for accuracy in the industry, IEEE1588v2 has become an inevitable trend of development.
Complete security control strategy
H3C IE4320 series industrial switches support the innovative single port multi authentication Triple function. In the network environment with diverse client forms, different clients support different access authentication methods. For example, some clients can only authenticate MAC addresses (such as printer terminals), some user hosts can only authenticate 802.1X, and some user hosts only want to authenticate Portal through Web access. In order to flexibly adapt to the multi authentication requirements of this network environment, IE4320 series industrial switches support the unified deployment mode of single port multi authentication, allowing users to choose any suitable authentication mechanism for authentication, and only one mode of authentication is required to achieve access. The client provides the Guest VLAN function, so that the authorized access terminal can only access specific resources, and will take corresponding strategies, such as obtaining 802.1X clients, upgrading clients, or obtaining other upgrading programs. Supporting Secure Shell V2 (SSH V2) features can provide Secure information assurance and powerful authentication functions to protect Ethernet switches from attacks such as IP address fraud and plaintext password interception.
ARP attacks and ARP viruses are the first threats to LAN security. H3C IE4320-28S switches support rich ARP defense functions, such as ARP Detection, which enables user legitimacy check and ARP message validity check, ARP speed limit, and prevents a large number of ARP messages from impacting the CPU.
H3C IE4320 series industrial switches support the EAD (terminal access control) function, and can integrate terminal security measures such as terminal anti-virus and patch repair with network access control, access control and other network security measures into a linked security system by cooperating with the background system. Through the inspection, isolation, repair, management and monitoring of network access terminals, the whole network can be changed from passive defense to active defense Changing single point defense to comprehensive defense and decentralized management to centralized policy management has improved the overall defense capability of the network against emerging security threats such as viruses and worms.
Rich QoS policies
H3C IE4320 series industrial switches support L2 (Layer 2)~L4 (Layer 4) packet filtering, and provide flow classification based on source MAC address, destination MAC address, source IP address, destination IP address, TCP/UDP port number, protocol type, and VLAN. It provides a flexible column scheduling algorithm, which can be set based on ports and queues at the same time. It supports SP, WRR, and SP+WRR modes. At the same time, it also supports bidirectional ACL in/out direction, CAR function for traffic supervision, and port/stream image in/out direction, which is used to monitor messages on designated ports and copy packets on ports to monitoring ports for network detection and troubleshooting. At the same time, IE4320 series industrial switches also support the sFlow function, sampling data packets on the network, and accurately monitoring network traffic on gigabit/gigabit high-speed networks for statistical analysis and control of network traffic.
SDN (Software Defined Network)
Software Defined Network (SDN) is an innovative Network architecture. Its core technology, Openflow, greatly simplifies the difficulty of network management and maintenance by separating the control layer and data forwarding layer of the network. More importantly, it realizes flexible control of network traffic and provides a good network platform for the creation of core networks and applications.
IE4320 series industrial switches can support OPENFLOW 1.3 standard, support switching between normal mode and OPENFLOW mode, support large flow tables, and cooperate with H3C SDN controller to easily realize large-scale two-layer architecture networking and provide the function of quickly adding users to existing networks; While greatly simplifying the difficulty of network management, it can significantly reduce the cost of network maintenance. IE4320 series industrial switches can also be integrated into H3C's SNA Prophet network architecture to design world's advanced network architecture and solutions for customers. SNA provides a network scheme design template library, which is built with common enterprise networking scheme models. Based on the customer's intention, and referring to the successful experience of other customers in the industry in network construction, SNA helps customers design intelligent network architecture; SNA can also build a good network for customers to meet business needs in seconds. SNA's network automatic configurator, network automatic deployment, policy automatic distribution, fault replacement and plug and play, both Uderlay infrastructure construction and Overlay network cloud business deployment are automatically executed, completely eliminating the command line; SNA can also provide network prophetic analyzer and share operation and maintenance knowledge and experience based on big data; The analyzer will connect all version defect databases and online problem experience databases to share the operation and maintenance experience of the world; Secondly, based on AI algorithm, we can gain insight into the status of customer network and business, give early warning in advance, so that network failures can be predicted, and we can really take precautions.
Excellent management
H3C IE4320 series industrial switches support SNMPv1/v2/v3 (Simple Network Management Protocol), general network management platforms such as Open View and iMC intelligent management center. It supports CLI command line, Web network management and TELNET to make device management more convenient, and supports encryption methods such as SSH2.0 to make management more secure.
H3C IE4320 series industrial switches support VLAN division based on MAC address, which well solves the intelligent and flexible management of mobile office; Combining unique global and VLAN based
The ACL policy is issued to simplify the user configuration and greatly save the hardware resources.
H3C IE4320 series industrial switches support BIMS protocol, can automatically download configuration files and applications from the server, achieve zero configuration startup, and greatly reduce the initial configuration workload of large networks and complex networks.
H3C IE4320 series industrial switches support gRPC based telemetry technology, netconf, and python programming for chips.
high reliability
H3C IE4320 series industrial switches have multiple reliability protection at device level and link level. The fan free heat dissipation energy circuit design is adopted, and multiple heat dissipation structures such as built-in heat sink and heat dissipation rubber guide are designed to ensure consistent performance in various harsh environments, and the operating temperature range can reach - 40-85 ° C. It supports lightning protection and can adapt to various outdoor harsh environments.
In addition to device level reliability, the product also supports rich link level reliability technologies, including LACP/STP/RSTP/MSTP/Smart Link and other protection protocols. It supports IRF2 intelligent elastic architecture, supports 1: N redundant backup, supports ring stacking, supports cross device link aggregation, and greatly improves network reliability. When the network carries multiple services and large traffic, it does not affect the convergence time of the network, so as to ensure the normal development of services. Professional lightning protection function
H3C IE4320 series industrial switches support RRPP and ERPS ring network protocols, as well as smart link, monitor link, loopback detection port redundancy guarantee technology.
Green energy conservation
H3C IE4320 series industrial switches adopt new energy-saving chips and innovative architecture design scheme to achieve low power consumption of gigabit switches, bring users green, environment-friendly and energy-saving new network access products, and reduce user maintenance costs.
At the same time, H3C IE4320 series industrial switches adopt a variety of green energy-saving designs, including auto power down. If the interface status is always down for a period of time, the system will automatically stop supplying power to the interface and automatically enter the energy-saving mode; The EEE energy saving function is supported. If the port is idle for a continuous period of time, the system will set the port to the energy saving mode. When there is a message receiving and sending, the system will wake up the port through the monitoring code stream sent regularly to recover the service, so as to achieve the energy saving effect.
H3C IE4320 series industrial switches adopt a shallow body with a combo port design. The power under normal working conditions does not exceed 30W, which is suitable for more scenarios.