DES-3200-28EOL EOS
תאור
The DES-3200 Series is a member of D-Link’s Layer 2 xStack Managed Switch family designed for the Metro ETTX and FTTX market. The DES-3200 Series provides 8/16/24 100Mbps Fast Ethernet connections plus 2/4 combo Gigabit/SFP ports. The DES-3200-10/18 comes with a 9-inch desktop size and fanless feature which is suitable for ETTH deployment. The DES-3200- 28/28F provides copper or fiber connections on Fast Ethernet, an advantage in different Metro Ethernet applications. It also offers the beneficial design of 4 Gigabit/SFP Combo ports which provide up to 4Gbps uplink bandwidth or dual Ethernet ring topology support. The DES-3200-28F facilitates up to 20 km connectivity for Metro Ethernet applications.
Security & Availability
The DES-3200 series supports 802.1X Port-based/MAC-based Access Control, Guest VLAN, and RADIUS and TACAS+ Authentication for strict access control over the network. The IP-MAC-Port Binding feature allows administrators to bind a source IP address with an associated MAC for a defined port number to enhance user access control. Furthermore with the DHCP Snooping feature, the switch automatically understands the IP/MAC pairs by snooping DHCP packets and saving them to the IMPB white list. These features play a significant role in keeping the network secure and auditable. The built-in D-Link Safeguard Engine identifies and prioritizes “CPU interested” packets to prevent malicious traffic from interrupting normal network flows and protects switch operation. In addition, the Access Control List (ACL) feature enhances the network security and switch performance.
Resilience/Performance Enhancement
For mission critical environments the DES-3200 series supports 802.1D-2004 edition, 802.1w and 802.1s Spanning Tree Protocols (STP). STP allows you to configure the switch with a redundant backup bridge path, so transmission and reception of packets can be guaranteed in event of any failed switch on the network. The switches also support 802.3ad Link Aggregation, which enables you to group multiple ports in parallel to form a single port, increasing bandwidth and redundancy for higher availability. For Quality of Service (QoS), the switches support 802.1p. This standard is a mechanism that allows real-time traffic classification into 8 priority levels mapped to 4 queues. Packet classification is based on TOS, DSCP, MAC Addresses, IP Addresses, VLAN ID, TCP/ UDP port number, protocol type and user defined packet content, which enables flexible configuration especially for real-time streaming multimedia applications such as voice over IP.
Traffic & Bandwidth Control
The bandwidth control feature allows network administrators to define the throughput levels for each port to manage bandwidth. It also provides fine granularity to define the ingress/egress traffic limits down to 62.5kbps segments. The switches also support the Broadcast Storm Control feature, which minimizes the chances of a virus attack within the network. Port Mirroring helps administrators facilitate traffic diagnostics or track switch performance and alter if it is necessary. Q-in-Q also known as VLAN stacking is a powerful yet simple and cost-effective solution which can be used to provide multiple virtual connections and access to multiple services available over the Metro-Ethernet.
Multicast Applications
The DES-3200 series provides IGMP Snooping to prune multicast traffic and to optimize network performance. The MLD snooping feature minimizes multicast IPv6 packets at the port level to conserve network bandwidth.
Management Capabilities
The DES-3200 series supports standard management protocols such as SNMP, RMON, Telnet, SSH/SSL security authentication and DHCP Relay Option 82. A web-based GUI is also supported for user-friendly interface and easy management. DHCP Auto- Configuration is an enhanced management feature that allows administrators to pre-set configuration and save them to a TFTP server. Individual switches can then get IP addresses from the server for booting up and loading the pre-set configuration. The Link Layer Discovery Protocol (LLDP) allows a network device to advertise its identity and capabilities on the local network, which helps businesses better manage their network topology. Each port on the switches also supports the Cable Diagnostics feature that helps detect cable related problems such as cable length status or cable functionality. D-Link Single IP Management (SIM) simplifies and speeds up management tasks, allowing multiple switches to be configured, monitored and maintained from any workstation running a web browser through one unique IP address. Furthermore, the DES- 3200 Series also works with D-Link’s D-View 6.0 software. D-View 6.0 is a Network Management System that allows for the central management of critical network characteristics such as availability, reliability, resilience, and security in a consistent way. D-View 6.0 provides a useful set of tools for network administrators who want to effectively manage device configurations, fault tolerance, performance, and security.
מאפיינים כללים
Hardware version
• B1
Size
• Width for 19 "standard rack, 1U
Interface
• 24-port 100BASE-TX
• 2 combo ports 1000BASE-T/SFP
• 2-port 100/1000 SFP
Console port
• RJ-45
Performance
• Switching matrix: 12.8 Gb / s
• Speed forwarding 64-byte packets: 9,5 Mpps
• Size MAC Address Table: 8K
• SDRAM for CPU: 128 MB
• Buffer packets: 384 KB
• Flash-Memory: 16 MB
• Jumbo-frame (2048 bytes tagged, 2044 bytes without tag)
Indicators
• Power (per device)
• Console (per device)
• Link / Activity / Speed (per port)
Stacking
• Virtual Stacking:
Support for D-Link Single IP Management
Combining the virtual stack of up to 32 devices
Layer 2 features
• MAC Address Table: 8K
• Flow control:
802.3x Flow Control
Prevent block HOL
• Size Jumbo-frame to 2048 bytes
• Spanning Tree:
802.1D-2004 Edition STP
802.1w RSTP
802.1s MSTP
Filtering BDPU
Root Restriction
• Function Loopback Detection (LBD)
• Aggregation:
Compatible with 802.1AX and 802.3ad
DES-3200-10: Max. number of groups 5, 8 ports per group
DES-3200-18: Max. number of groups 9, 8 ports per group
DES-3200-26: Max. number of groups 9, 8 ports per group
DES-3200-28/28F: Max. number of groups 14, 8 ports per group
• Port mirroring:
Support for group 1 mirroring
Modes: One-to-One, Many-to-One, Flow-based (ACL)
• Technology Ethernet Ring Protection Switching (ERPS)
• Layer 2 Tunneling Protocol
Multicast Layer 2
• IGMP Snooping:
IGMP v1/v2 Snooping, IGMP v3 Awareness
Supports 1K groups
IGMP Snooping Fast Leave on a port-based
• Restricting Multicast IP-mailing:
Up to 24 profiles filtering IGMP, 128 ranges in profile
• MLD Snooping:
MLD v1/v2 Snooping, MLD v2 Awareness
Supports 1K groups
• IGMP Authentication
VLAN
• 802.1Q Tagged VLAN
• Group VLAN:
Max. 4K VLAN
• VLAN port-based
• VLAN based on MAC addresses
• GVRP:
Max. 255 Dynamic VLAN
• 802.1v VLAN-based protocol
• VLAN Trunking
• Asymmetric VLAN
• Double VLAN (Q-in-Q):
Q-in-Q port-based
Selective Q-in-Q
• ISM VLAN
• VLAN Translation
Functions of Level 3
• Gratuitous ARP
Quality of Service (QoS)
• Bandwidth Management:
Based on the port (inbound / outbound, in increments of up to 62.5 kbit / s)
Based on the flow (incoming, in increments of up to 62.5 kbit / s)
• 4 queues per port
• DSCP
• 802.1p
• Processing queues:
Strict Priority
Weighted Round Robin (WRR)
Strict • WRR4
• CoS based on:
Switch Port
VLAN ID
802.1p Priority Queues
MAC address
Ether Type
IPv4/v6-adresa
Class of IPv6 traffic
IPv6 flow labels
IP-address
TOS
DSCP
Type of protocol
TCP / UDP port
The contents of the package, a user-defined
• QoS based on the time
• Support for the following streams:
Setting priorities for 802.1p tag
Tagging ToS / DSCP
Bandwidth Management
Statistics stream
Access Control Lists (ACL)
• Up to 512 Access Rules
• ACL based on:
Switch Port
VLAN ID
802.1p priority
MAC address
Ether Type
IPv4/v6-adresa
Class of IPv6 traffic
IPv6 flow labels
ToS
DSCP
Type of protocol
Non TCP / UDP port
Contents of the package, a user-defined
• ACL on the basis of time
• Statistics ACL
• CPU Interface filtering
Security
• SSH v2
• SSL v1/v2/v3
• Port Security
Up to 64 MAC addresses per port
• Office of broadcast / multicast / unicast storm
• Traffic Segmentation
• IP-MAC-Port Binding (IMPB):
Support for D-Link IMPB v3.3
Checking the ARP packets
DHCP Snooping
• D-Link Safeguard Engine
• Prevent DoS attacks
• Prevention of ARP Spoofng
• Prevent attacks BPDU
AAA
• 802.1X:
Access control based on port
Access control based on hostname
Dynamic VLAN assignment
Identity-driven security policy assignment: QOS, VLAN
• Access Control MAC-based
Access control based on port
Access control based on hostname
Dynamic VLAN assignment
Authentication Database Failover
Identity-driven security policy assignment: QoS, ACL, VLAN
• Microsoft ® NAP (IPv4/v6):
Supports 802.1x NAP
Supports DHCP NAP
• Guest VLAN
• RADIUS
• TACACS +
• XTACACS +
• A trusted host (Trusted Host)
• Maintain RADIUS accounting
• Two levels of user account
Management
• Web-interface (supports IPv4/v6)
• Command Line Interface (CLI)
• Telnet-server/klient (support IPv4/v6)
• TFTP-Client (supports IPv4/v6)
• Z-modem
• SNMP v1/v2c/v3
• SNMP Traps
• Syslog
• RMON v1:
Support for Groups 1, 2, 3, 9
• RMON v2:
Support groups ProbeConfig
• BootP / DHCP-client
• DHCP automatically
• DHCP Relay
• DHCP Relay Option 12
• DHCP Relay Option 82
• Add a tag PPPoE Circuit-ID
• Support for the two versions of the software
• Monitoring CPU
• SNTP
• LLDP
• Debug commands
• Encryption of passwords
• SMTP
• Ping (support IPv4/v6)
• Traceroute (support for IPv4)
• Command Logging
• ICMPv6
• Support for Microsoft ® NLB (Network Load Balancing)
OAM
• Cable Diagnostics
• 802.3ah Ethernet Link OAM
• Dying Gasp
• 802.1ag Connectivity Fault Management (CFM)
• 802.3ah D-Link Extension: D-Link Unidirectional Link Detection (DULD) 4
MIB
• RFC 1065, 1066, 1155, 1156, 2578 MIB Structure
• RFC 1157, 2571-2576 SNMP MIB
• RFC 1212 Concise MIB Definitions
• RFC 1213 MIB II
• RFC 1215 MIB Traps Convention
• RFC 1398, 1643, 1650, 2358, 2665 Ether-like MIB
• RFC 1493 Bridge MIB
• RFC 1757, 2819 RMON MIB
• RFC 1907 SNMPv2 MIB
• RFC 2021 RMONv2 MIB
• RFC 2233, 2863 IF MIB
• RFC 2618 RADIUS Authentication Client MIB
• RFC 2620 MIB RADIUS client account
• RFC 2674, 4363 802.1p MIB
• RFC 2925 PING & TRACEROUTE MIB
• RFC 4188 Bridge MIB
Standard IETF ®
• RFC 768, UDP
• RFC 783, TFTP
• RFC 791, IP
• RFC 792, 2463, 4443 ICMP
• RFC 793, TCP
• RFC 826, ARP
• RFC 854, Telnet
• RFC 951, 1542 BootP
• RFC 1321, 2284, 2865, 3580, 3748 Extensible Authentication Protocol (EAP)
• RFC 1492, TACACS
• RFC 1981, Path MTU Discovery for IPv6
• RFC 2068, HTTP
• RFC 2460, IPv6
• RFC 2461, 4861 Neighbor Discovery for IPv6
• RFC 2462, 4862 IPv6 Stateless Address Auto Configuration
• RFC 2463, 4443 ICMPv6
• RFC 2464, IPv6 Ethernet and definition
• RFC 2474, 3260 Definition of the DS field in the IPv4 and IPv6 Headers
• RFC 2544, Benchmarking Methodology for Network Interconnect Devices
• RFC 2571, 2572, 2573, 2574 SNMP
• RFC 2866, RADIUS Accounting
• RFC 2893, 4213 IPv4/IPv6 dual-stack
• RFC 3513, 4291, the architecture of IPv6 Addresses