Software-defined networking (SDN) is an innovative network architecture that separates the control plane from the forwarding plane, typically by using OpenFlow. SDN significantly simplifies network management, reduces maintenance complexity and cost, enables flexible traffic management, and offers a good platform for core network and application innovations.
The S5560S-EI network switch series supports a large network flow table. Combined with H3C SDN controller, it can easily implement a two-layer network architecture and quickly add functions in existing network in order to drastically reduces network management complexity while substantially lowers network maintenance cost.
Comprehensive security control policies
Endpoint Admission Defense (EAD), in conjunction with the backend system, integrates endpoint security (including anti-virus and patching) and network security (including network access control and access right control) into an interactive security system. By checking, isolating, repairing, managing, and monitoring the endpoints, this system turns reactive single-point defense to proactive, all-round defense, and dispersed management to centralized policy management. This system enhances the overall network protection against numerous security threats and improves the responsiveness to new threats.
The switch supports unified MAC address authentication, 802.1x authentication, and portal authentication; dynamic or static binding of user identifiers such as user account, IP address, MAC address, VLAN, and port number; and dynamic application of user profiles or policies (such as VLAN, QoS, and ACL) on users. Using the switch in conjunction with H3C IMC, you can manage and monitor online users in real time and take prompt action on illegitimate behaviors.
The switch offers a large number of inbound and outbound ACLs and VLAN-based ACL assignment.
The switch supports Unicast Reverse Path Forwarding (uRPF), which protects a network against source spoofing attacks, preventing DoS and DDoS attacks.
The switch supports 1+1 power module redundancy and 1+1 fan tray redundancy. You can select AC or DC power modules for the switch as needed. The switch automatically monitors power module and fan tray status and adjusts fan speed based on the change in temperature. When a power or temperature event occurs, the switch generates alarms.
In addition to hardware redundancy, the switch provides a variety of node and link redundancy and protection mechanisms, including:
- Ethernet link aggregation, including LACP.
- Spanning tree protocols, including STP, RSTP and MSTP.
- Smart Link, which protects faster link switchover for dual uplink network.
- Rapid Ring Protection Protocol (RRPP).
- IRF 2 ring topology in conjunction with multichassis link aggregation.
Abundant QoS features
The switch offers abundant QoS features, including:
- Packet filtering based on packet header fields from Layer 2 through Layer 4, including source MAC, destination MAC, source IP, destination IP, TCP/UDP port number, protocol type, and VLAN.
- Flexible queuing and scheduling algorithms configured on a per-port or per-queue basis, including strict priority (SP), weighted round robin (WRR), and SP+WRR.
- Committed access rate (CAR) with the minimum granularity at 8 kbps.
- Port mirroring in both outbound and inbound directions for network monitoring and troubleshooting.
Outstanding management capacity
The switch provides a variety of management features and is easy to manage. It offers the following device management features:
- Provides multiple management interfaces, including the console port, micro USB port, and out-of-band management Ethernet port.
- Supports configuration and management from CLI or a general-purpose Web-based manager, including H3C IMC Intelligent Management Center and OpenView.
- Supports multiple access methods, including SNMPv1/v2c/v3, Telnet, and more secure SSH 2.0.
- To help customers gain visibility into network application traffic, the switch provides a variety of traffic monitoring and analytic tools, including local port mirroring and Layer 2 remote port mirroring. With these tools, customers can specify multiple monitor ports and collect network traffic data to evaluate network health status, create traffic analysis reports, perform traffic engineering, and optimize resource allocation.
Smart Management Center (SmartMC)
SmartMC is H3C’s latest offering and innovation that helps small and middle size enterprise network to address management issue and is free of charge, easy to use web management tool. SmartMC is embedded network management tool into the switch, it includes commander switches and other access switches.
SmartMC delivers the following benefits:
- Intelligent operation: once the switch is powered on and SmartMC function is enabled, topology will be created automatically and user can go enhanced web GUI to check the latest status.
- Centralized management: all management can be achieved via commander switch such as centralized configuration backup, and software version management, increasing working efficiency.
- One key device replacement: in case of one switch failure, the new added same type switch can download the same configuration and work as old switch immediately