
0026d9004a4f03487c44c27e2d545fa9.ppt
- Количество слайдов: 81
ENTERPRISE PRODUCTS SWITCHES
OSI Seven Layer Model • Layer 7 – Application (where Email, FTP, Telnet, etc. access the network) (data) • Layer 6 – Presentation (Encoding of Mpeg / Jpeg / Ascii / Text) (data) • Layer 5 – Session (allows applications to establish & end dialog) (data) • Layer 4 – Transport (TCP / UDP – error corrects, Max Tx Unit) (segments) • Layer 3 – Network Layer (IP /IPX addresses the data for WAN routing) (packets) • Layer 2 – Data Link Layer (puts raw bits into frames, MAC Address) (frames) • Layer 1 – Physical Layer (Cable type) (bits)
Connecting the Layer 1 cables – Bus Topology (Obsolete) • Each computer is connected to a co-ax cable or “bus” • Thin Ethernet used BNC connectors 50 ohm Terminators prevents signal reflection
Mac Address • As there may be many PCs on the same wire or “Sub net”, we must uniquely identify each PC • Every PC Ethernet interface is programmed with a “MAC address” at time of manufacture. (MAC = Media Access Control). • MAC address is unique to that Ethernet Interface, it can’t be changed • The MAC address is 6 bytes (48 bit). • It is written in Hex e. g. : – – – 00 -00 -cd-00 -99 -1 f 00 -00 -f 4 -ae-d 2 -0 b 00 -a 0 -d 2 -1 b-59 -d 3 • The first three bytes are reserved for the vendor ID (over 16 million) • The last three bytes are reserved as a unit identifier (over 16 million)
How does Ethernet work? Layer 2 • CSMA/CD • (Carrier Sense Multiple Access / Collision Detect) • Protocol used by Ethernet • Half Duplex on Single wire transmission medium (Like Walkie Talkie only one person talks at a time) • Full Duplex possible if separate transmit & receive paths available (Both ends can talk at the same time)
CSMA/CD single wire transmission • • Station A wants to send data to B A Listens out (Carrier Sense) If nothing heard, A transmits Data received by all stations • B matches MAC address in data to own MAC address • B acts on data received A B C
CSMA/CD single wire transmission • • Station A wants to send data Listens out (Carrier Sense) If nothing heard, it transmits All stations have equal entitlement to send data • If station C listened at the same time, it could also transmit • Ethernet can sense when this happens (Collision Detection) A B C
CSMA/CD single wire transmission • After collision all stations back off for random time period • Listen out and Re transmit data • Process repeated until successful (no collisions) • More collisions in larger Bus networks as more transmitting stations, and longer propagation times A B C
Problems with Bus technology • Expensive to terminate co-ax cable • Two cables to each computer • One break in the network will bring entire network down 50 ohm Terminators prevents signal reflection
Connecting the Layer 1 Cables - Star Topology • Every computer connected to a central hub using UTP cable & RJ 45 connectors • If a cable or computer disconnected the network remains operational! • System uses CSMA/CD protocol and MAC addresses in the same way
Hub Operation • Transmission from one device is received by all other devices on the network
Hub Operation cont’d • If two devices transmit at the same time a collision occurs on those ports • Hub transmits ‘Jam’ signal until collision has cleared • No other ports can transmit until collision cleared Jam Collision
How does switch know where to send data? As data goes through the switch, it learns what MAC addresses are on which port by looking at MAC address data coming in to each port. Every time the switch gets data, it first studies its table to see if it has a record of which port to send it out of. If there is no record in the table, it has to broadcast the data like a hub. Mac Address info lives in table for typically 300 seconds.
Switches – Complete Offer • Unmanaged • Web Smart • Managed Top L 3 Switches – L 2 switches – L 3 switches Strong L 2/L 2+ Managed portflio Fast and Giga Ethernet Unmanaged Web Smart
Telsey Switch Selector Telsey Switches Layer 2 MANAGED WEB-MANAGED UNMANAGED (SMART) Fast FS 100 series Gigabit Layer 2+ Layer 3 Ethernet Fast Ethernet Gigabit Ethernet GS 100 series GS 500 series FM 1000 series GM 6000 series & SM 6000 series
Basic Switch Selector
L 2 Unmanaged Switches FS 100= Fast. Ethernet Switches Unmanaged GS 100= Gigabit. Ethernet Switches Unmanaged www. telsey. com – info@telsey. com
Unmanaged Switches • • • All switches in robust metal housing Compliant with Ethernet Standards Plug an play Wire speed switching Long life Limited life time warranty
Unmanaged Fast Ethernet Switches 10/100 Mbps Unmamaged • FS 105 5 x 10/100 T, ext. P. S. • FS 108 8 x 10/100 T, ext. P. S. • FS 116 16 x 10/100 T, int. P. S. 19“ • FS 124 24 x 10/100 T , int. P. S. 19“ • FS 126 24 x 10/100 T + 2 x 1000 T int. P. S. 19“ • • • Unmanaged Store and Forward Switching Method VLAN transparent Metal case No Fan • Applications • SOHO • Schools • Offices
Unmanaged Gigabit Switches • 1 Gbps Unmanaged • GS 105 5 x 10/100 T , ext. P. S. • GS 108 8 x 10/100 T , ext. P. S. • GS 116 16 x 10/100 T , int. P. S. 19“ • GS 124 24 x 10/100 T , int. P. S. 19“ • • • Unmanaged Store and Forward Switching Method VLAN transparent Metal case No Fan • Applications • SOHO • Schools • Offices
L 2 Managed Switches www. telsey. com – info@telsey. com
Overview of Managed Switches • L 2 FE Switches – FM 1024 S/2 x. G – FM 1048 S/2 x. G L 2 Stackable 48 x 10/100 TX + 2 x active SFP bays + 2 x 10/1000 T Ports (RJ-45) – FM 1016/1 x. G L 2 Standalone 16 x 10/100 TX + 1 x active SFP bay + 1 x 10/1000 T Ports (RJ-45) – FM 1024 SPo. E/2 x. G • L 2 Stackable 24 x 10/100 TX + 2 x active SFP bays + 2 x 10/1000 T Ports (RJ-45) L 2 Stackable 24 x 10/100 TX Po. E ports + 2 x active SFP bays + 2 x 10/1000 T Ports (RJ-45) L 2+ GE Switches – GM 1024 S • L 2+ Stackable 24 x 10/1000 BASE-T + 2 SFP bays L 3 GE Switches – GM 6024 S L 3 Stackable 24 x 10/1000 BASE-T + 4 x shared SFP bays – GM 6048 S L 3 Stackable 48 x 10/1000 BASE-T + 4 x shared SFP bays – SM 6024/2 x 10 G L 3 Standalone 24 x SFP ports + 4 x shared 10/1000 BASE-T ports + 2 x 10 Gb. E Modules – GM 6048 S/2 x 10 G L 3 Stackable 48 x 10/1000 BASE-T + 4 x shared SFP bays + 2 x 10 Gb. E Modules
Functionality and Speed of Managed Switches Functionality GM 6048 S/2 x 10 G GM 6048 S Layer 3 SM 6024/2 x 10 G GM 6024 S Layer 2+ Layer 2 GM 1024 S FM 1048 S/2 x. G FM 1024 SPo. E/2 x. G FM 1024 S/2 x. G FM 1016/1 x. G Fast Ethernet Port Density & Speed Gigabit Ethernet
Features we expect from Layer 2 Managed Switches • Allows configuration of – Port speed & duplex – VLANs – Spanning Tree Rapid Spanning Tree – Port Mirroring – Port Trunking – Port Security – Co. S – SNMP / remote management – IGMP Snooping (for multicasting TV) • Provide ongoing operational statistics • Simplifies troubleshooting
L 2 Managed Switch Technology VLANs in action No traffic passes between the two departments Untagged port – eg pvid 10 L 2 Switch Floor II Tagged link carries both VLANs Tagged port L 2 Switch Floor I 2 VLans look like 2 NIC cards when configuring VLAN 1 & 2 Server VLAN 1 Sales Department VLAN 2 Accounts Department
Types of VLANs • Port Based • 802. 1 Q – Port based – MAC Based – IP Based – Protocol Based • Qin. Q, Double Tagging, VMAN, Native VLANs ….
Layer 2 Resilience Spanning Tree Protocol • Resilient link is added switch 1 to switch 2. • What happens if a link fails? • A loop in the network will create a Broadcast storm • STP activates standby path. • ST calculates which link to close Work Station B Work Station C Work Station A Switch 1 Path 2 Loop Switch 3 Switch 2 Server A Server B Work Station D
Layer 2 resilience Spanning Tree Protocol • Force Root Bridge – At default all switches have same bridge priority – If all switches same priority, lowest MAC address becomes Root Bridge – Network will configure itself lowest number of hops to Root Bridge • Ensure OS are updated • Only enable ports that need STP to minimise convergence time • Understand what STP should be doing – Watch it at work on the network - Alliedware – “show stp port=25, 26” – Listening, learning forwarding / blocking • Test STP configuration by pulling links.
Layer 2 Resilience - Spanning Tree Protocol Spanning Tree (IEEE 802. 1 d) Default Failover Time 40 seconds Three lots of Hello timer, two lots of Listen / Learn timer. Default timers can be adjusted to reduce failover down to 15 sec (dependent on network design). Don’t mess with them unless you fully understand the effect you will have! Rapid Spanning Tree (IEEE 802. 1 w) Failover Time 1 second (Knows where it will fail over to, and can therefore fail over quicker)
MSTP (Multiple Spanning Tree) IEEE 802. 1 s STP / RSTP VLAN 1 MSTP VLAN 2 VLAN 3 STP / RSTP wastes potential bandwidth Forwarding Blocked
L 2 Managed Switch Technology Stacking Advantages • • To make several switches appear as one switch to the network To be able to manage the entire stack from one console In good systems one command acts on all switches simultaneously In good systems you can update all switches in the stack simultaneously Stacking Switch
L 2 Managed Switch Technology - Qo. S - Quality of Service What Applications need high priority (Low Latency) • • Voice over IP Citrix – thin Client Applications (business critical) Broadcast Video (TV) Video on Demand (Film) What Applications should be assigned low priority? • • • Web access Email FTP
L 2 Managed Switch Technology Qo. S – Quality of Service Terms • Latency - measurement of delay through the network • Jitter - measurement of inconsistent delay through the network • Robustness - measurement of dropping of packets What Qo. S required for what Application ? • Low Latency - important for Vo. IP, not important for TV & film • Low Jitter - important for Vo. IP, not important for TV & film • Robustness - important for Video, not important for Vo. IP How the L 2 switches reduce Qo. S problems ? • Latency - jump time sensitive data to the front of the buffer • Jitter - jump time sensitive data to the front of the buffer • Robustness - jump data to the front of the buffer, buffer rear end drops
Layer 2 Switch Technology Port Trunking – IEEE 802. 3 ad • Can trunk using 10/100, 1000 Base. T or GBICs • Some servers support 802. 1 ad port trunking to increase bandwidth Switched 10/100 Mbps Floor 2 Copper • Port Trunking provides Resilience Gigabit Ethernet • Port Trunking provides additional bandwidth Floor 3 Fibre Switched 10/100 Mbps • Some switches allow 4 ports in one port trunk Switched 10/100 Mbps Floor 1 Gigabit Ethernet Server Farm
802. 1 x – Encrypted port security / VLAN Authentication “Authentication Server” (Radius server) Server 2 “Supplicant” (802. 1 x built into Windows XP) 3 Authenticator (switch) 1 4 1. Supplicant tries to access network, Authenticator sends back challenge, Supplicant answers with username/password or offers digital certificate. 2. Authenticator passes info to Authentication Server for verification in Radius format 3. Authentication Server informs authenticator of VLAN to access (or not) 4. If granted access, session may be encrypted with rotating WEP keys
Easy Web Management of Complex Devices In addition to the market standard CLI Telsey managed switches have excellent Web interface!
What additional facilities can we expect from Layer 2+ managed switches? • • Spanning Tree Enhancements – Multiple STP Classifiers & IP Filters Port Security Enhancements – 802. 1 x Authenticated VLANs Virus Quarantining Do. S Attack prevention Private VLANs (Hotel & Managed Office Applications) Secure Management SSH / SSL SNMP V 3
L 2 WEB-Managed Switches • GS 516 • GS 524 www. telsey. com – info@telsey. com
Web Smart Switches • • Easy Web Management 16 and 24 x 10/100 + 2 x SFP VLANs, 802. 1 Q VLAN tagging Broadcast Storm Control Qo. S Packet Filtering Port Aggregation Mirroring • Applications: – – Education Hospitality Government offices ISP access for FTTB
L 2 WEB-Managed Switches Gigabit L 2 WEB-Smart Switches • GS 516 16 x 10/1000 T + 2 x shared SFP bays, 802. 1 q VLAN tagging, metal case 1 U, 19" • GS 524 24 x 10/1000 T + 2 x shared SFP bays, 802. 1 q VLAN tagging, metal case 1 U, 19"
Ports • 24 10/1000 M RJ 45 Ports with NWAY and Auto MDI/MDI-X • 2 shared Gigabit SFP slots, • Auto-Negotiation between cooper ports and optical slots
Other characteristics • Support IEE 802. 3 x Flow Control for full-duplex mode, and back pressure flow control for half-duplex mode • Backplane bandwidth up to 48 Gbps, support Nonblocking Full Wire-Speed throughput • Store and forward architecture, 5 K MAC Address Table • Static MAC Address Table management supported • Port bandwidth control, 64 kbps
Qo. S, Port Security, BSCI, Port Mirroring • Qo. S, 4 Priority Queues • Port Security Control, support Port MAC address aging, learning, binding, 128 MAC Addresses binding per port • Broadcast Strom Intelligent Control, broadcast type control, broadcast setting supported • Port Mirroring
• Support IP address setting of Fixed IP or DHCP client automatic distributing • Web-Managed, Multi-Language Supported • Support Firmware upgrade based on HTTP • Cable diagnose • Support Flow Static, dynamic display packet storing , filtering and transferring of port and switch • Internal power supply, Standard 19 -inch rack-mountable Steel Case, 1 U height
VLAN, Port trunking • Support Port-based VLAN of up to 24 groups, IEE 802. 1 q, Tag-based VLAN, VLAN ID from 1 -4094 • Support Port Trunking of up to 4 groups, each group includes up to 4 ports
L 2 Managed Switches • FM 1024 S/2 x. G • FM 1048 S/2 x. G • FM 1024 SPo. E/2 x. G • FM 1016/1 XG/1 x. G www. telsey. com – info@telsey. com
Managed L 2/L 2+ Switches • Stackable and standalone devices for the access in Enterprise and ISP networks • Po. E models for IP Phones, Web Cameras and other from the network powered devices • Robust design guarantees more then 250000 hours MTBF! • Applications: • Government networks • Education • NSP access
L 2 Managed Fast. Ethernet Switches • FM 1024 S/2 x. G 24 x 10/100 TX + 2 x 10/1000 T + 2 x SFP bays Stackable • FM 1048 S/2 x. G 48 x 10/100 TX + 2 x 10/1000 T + 2 x SFP bays Stackable • FM 1024 SPo. E/2 x. G 24 x 10/100 TXPo. E + 2 x 10/1000 T + 2 x. SFP bays Stackable • FM 1016/1 XG/1 x. G 16 x 10/100 TX + 1 x 10/1000 T + 1 x. SFP bays Standalone
Key Advantages • • Carrier Platform from Marvell Heating Sensors Fan Rotation Sensors CLI, Web, SNMP detection of the problem
Supported Firmware Functionality Port Attribution: • 24/48 10/100 BASE-T auto-sensing Fast Ethernet switching ports • Additional 2 Copper Gb. E ports PLUS 2 optional Fiber Gb. E via SFP transceivers • Integrated Copper Gb. E ports provide resilient stacking • Auto-negotiation for speed, duplex mode and flow control • Auto MDI/MDIX • Port mirroring • Broadcast storm control • Power-Over-Ethernet (IEEE 802. 3 af) with port prioritization up to 15. 4 W per port • Power-Over-Ethernet supported across all 24 ports without additional hardware (native 370 W power available for Po. E functionality)
Performance • • • Switch Fabric Capacity 12. 8 Gb/s Forwarding Rate 9. 5 Mpps Up to 8, 000 MAC Addresses
VLAN • • • VLAN support for tagging and port-based as per IEEE 802. 1 Q Up to 256 VLANs supported Dynamic VLAN with GVRP support
Quality of Service • • • Layer 2 Trusted Mode (IEEE 802. 1 p tagging) Layer 3 Trusted Mode (DSCP) 4 Priority Queues per Port
Multicast • • Static IP multicast IGMP snooping for IP Multicast Support
Other Switching • • • Link Aggregation with support for up to 8 aggregated links per switch and up to 8 member ports per Aggregated link (IEEE 802. 3 ad) LACP support (IEEE 802. 3 ad)
Management • • • • Web-based management interface Industry-standard CLI accessible via Telnet or local serial port SNMPv 1, SNMPv 2 c and SNMPv 3 supported 4 RMON groups supported (history, statistics, alarms and events) TFTP transfers of firmware and configuration files Dual firmware images on-board Multiple Configuration file upload/download supported Statistics for error monitoring and performance optimization including port summary tables Boot. P/DHCP IP address management supported Syslog remote logging capabilities Temperature sensors for environmental monitoring Virtual Cable Tester by Marvell. TM and fiber transceiver diagnostics for advanced troubleshooting Stacking support, max 192 stacking ports
Security • • IEEE 802. 1 x based edge authentication Switch access password protection User-definable settings for enabling or disabling Web, SSH, Telnet, SSL management access Port-based MAC Address alert and lock-down IP Address filtering for management access via Telnet, HTTPS/SSL, SSH and SNMP RADIUS and TACACS+ remote authentication for switch management access SSLv 3 and SSHv 2 encryption for switch management traffic
Availability • • • Spanning Tree (IEEE 802. 1 D) and Rapid Spanning Tree (IEEE 802. 1 w) with Fast Link support Multiple Spanning Trees (IEEE 802. 1 s) External redundant power support with Power. Connect RPS-600 (sold separately) Virtual Cable Tester provided by Marvell. TM for providing cable diagnostics Optical transceiver diagnostics
GM 1024 S L 2+ • • • L 3 chipset 24 ports 10/1000 BASE-T L 2 switch with 4 SFP bays (unpopulated) VLAN support for tagging and portbased as per IEEE 802. 1 Q Up to 256 VLANs supported IEEE 802. 1 x authentication support Switch access password protection User-definable settings for enabling or disabling Web, Telnet management access RADIUS remote authentication for switch management access Access Control Lists (ACLs) for Traffic and Management ……
L 3 Managed Gigabit Switches • GM 6024 S • GM 6048 S/2 x 10 G • SM 6024 S/2 x 10 G www. telsey. com – info@telsey. com
What is L 3? • • • Routing IP Xy. LAN L 2 separates VLAN L 3 routes traffic between them • Separates IP sub networks • Possible to filter the traffic
L 3 Switches • • • Aggregation that provides Qo. S for mission critical applications Provides security within the LAN Traffic switching between the work groups (VLANs) across the enterprise network (routing) Large number of abbreviations supported (OSPF, IGMP, VRRP etc. ) Stackable and standalone solutions • Applications: • Government networks • NSP access
Communicating between VLANs • External router could route between VLANs… – Require a physical interface per VLAN – Routers are WAN devices – 10 & 20 Mbps packet forwarding by a CPU, a bottleneck on LAN Layer 2 Switch Router
How to build a simple L 3 network • Low cost L 2 switches at the edge • Layer 3 switch at the core L 2 Switch Gig L 3 Switch L 2 Switch Server WAN Router
L 3 Managed Gigabit Switches • GM 6024 S 24 x 10/1000 TX + 4 x shared SFP bays • GM 6048 S 48 x 10/1000 TX + 4 x shared SFP bays
L 3 Managed Gigabit switches with 10 Gbps Uplinks • GM 6048 S/2 x 10 G 48 x 10/1000 TX + 4 x shared SFP bays + 2 x 10 Gb. E Modules Stackable • SM 6024 S/2 x 10 G 24 x. SFP bays + 4 x shared 10/1000 TX + 2 x 10 Gb. E Modules Standalone
Supported Firmware Functionality Port Attributes: • 24/48 10/1000 BASE-T auto-sensing Gigabit Ethernet switching ports (+ 2 x 10 Gb. E ) • 4 SFP combo ports for fiber media support • 10 Gigabit Ethernet uplink modules (optional) • 48 Gbps Stacking module (optional) • Auto-negotiation for speed, duplex mode and flow control • Auto MDI/MDIX • Port mirroring • Flow-based port mirroring • Broadcast storm control
Performance, Availability Performance: • Up to 16, 000 MAC Addresses Availability: • Spanning Tree (IEEE 802. 1 D) and Rapid Spanning Tree (IEEE 802. 1 w) with Fast Link Support: • Multiple spanning trees (IEEE 802. 1 s) • Supports Virtual Redundant Routing Protocol (VRRP) • External redundant power support • Cable diagnostics • Optical transceiver diagnostics
Layer 3 Features and Routing Protocols • • • Static routes Routing Information Protocol (RIP) v 1/v 2 Open Shortest Path First (OSPF) v 1/v 2/v 3 Classless Inter-Domain Routing (CIDR) ICMP Router Discover Protocol (IRDP) Virtual Redundant Routing Protocol (VRRP) Internet Group Management Protocol (IGMP) v 2 Distance-Vector Multicast Routing Protocol (DVMRP) DHCP – Helper/Relay
VLANs • • VLAN support for tagging and port-based as per IEEE 802. 1 Q Double VLAN tagging (Qin. Q) Up to 4096 VLANs supported Dynamic VLAN with GVRP support
Quality of Service • • Layer 2 Trusted Mode (IEEE 802. 1 p tagging) Layer 3 Trusted Mode (DSCP) Layer 4 Trusted Mode (TCP/UDP) Layer 2/3/4 flow-based Policies 8 Priority Queues per Port Adjustable Weighted-Round-Robin (WRR) and Strict Queue Scheduling Port-based Qo. S Services Mode Flow-based Qo. S Services Mode
Multicast • • • Static IP Multicast Dynamic Multicast Support – 256 Multicast groups supported in IGMP Snooping IGMP snooping for IP multicast support IGMP Querier Protocol Independent Multicast (PIM-DM, PIM-SM)
Management and Monitoring • • • • Web-based management interface Command Line Interface (CLI) accessible via Telnet or Local Serial Port SNMPv 1 support SNMP v 2 c support SNMPv 3 support 4 RMON groups supported (history, statistics, alarms and events) TFTP transfers of firmware and configuration files Dual Firmware images on-board Multiple Configuration file upload/download support Statistics for error monitoring and performance optimization including port summary tables Boot. P/DHCP IP address management supported Syslog remote logging capabilities Temperature sensors for environmental monitoring
Other Features • Link Aggregation with support for up to 8 aggregated links per switch and up to 8 member ports per aggregated link; LACP support (IEEE 802. 3 ad)
Security • • • IEEE 802. 1 x based edge authentication (single and multiple host access, guest access, voice authorization, and Microsoft Active Directory) Switch access password protection User-definable settings for enabling or disabling Web, SSH, Telnet, SSL management access Port-based MAC Address alert and lock-down IP Address filtering for management access via Telnet, HTTPS/SSL, SSH and SNMP RADIUS and TACACS+ remote authentication for switch management access Access Control Lists (ACLs) support; SSLv 3 and SSHv 2 encryption for switch management traffic Management access filtering via Management Access Profiles
SOHO Router • FM 600400//2 XA www. telsey. com – info@telsey. com
FM 600400//2 XA Special Router/Switch with Vo. IP • All in one device for SOHO or branch offices • • • Ethernet or ADSL 2+ WAN 4 port LAN switch 4 x FXS ports for Vo. IP No PBX needed Firewall protection VPN support etc. • Applications: • NSP CPE • Enterprise branch office device
Ongoing Process - Roadmap • • Managed media converters Protocol converters Optical switches 10 GE aggregators
FM 600400//2 XA Special Router/Switch with Vo. IP WAN Network Interfaces: 1 Ethernet 10/100 Base. T 1 ADSL 2+ LAN Data interfaces: 4 Ethernet switch Analog/ISDN Telephone interfaces
Cooperation • Data Centers • Metro Ethernet • High-demanding enterprize • BGP for NSPs • Highest density of GE and 10 GE today!
Q&A Thank You for Your attention!