The S5720-EI series enhanced gigabit Ethernet switches (S5720-EI for short) are next-generation switches

Category: Switch

 

HUAWEI S5720-EI Series Switches

The S5720-EI series enhanced gigabit Ethernet switches (S5720-EI for short) are next-generation switches 

that provide flexible GE access ports (including optical, electrical, and combo ports) and 10GE uplink 
ports. Built on next-generation high-performing processors and the Huawei Versatile Routing Platform 
(VRP), the S5720-EI provides larger table sizes and higher hardware processing capabilities than equivalent 
switches. Besides, comprehensive service processing capabilities, enhanced security control, and mature 
IPv6 features, and supports MACsec, intelligent stack (iStack), flexible Ethernet networking, and easy 
operations and maintenance (O&M). With all these advantages, the S5720-EI is widely used for access/
aggregation in enterprise campus networks or gigabit access in data center networks.

 
Easy O&M
 
• The S5720-EI models with power sockets on the front panel can be installed in a 300 mm deep cabinet
and maintained from the front panel. This simplifies equipment O&M and allows more flexible cabinet
deployment. The small-sized cabinets can be placed against a wall or back to back to save space in the
equipment room.
 
• The S5720-EI allows management personnel to remotely switch on the SYS indicator on the front panel.
After configuration commands are used, the SYS indicator quickly blinks within a certain period, helping
the management personnel locate the device in the equipment room quickly and efficiently.
 
• The S5720-EI supports Super Virtual Fabric (SVF), which virtualizes the "Core/aggregation + Access switch
+ AP" structure into a logical device. The S5720-EI enables the simplest network management solution in
the industry. It allows plug-and-play access switches and APs. In addition, the S5720-EI supports service
configuration templates. The templates are configured on core devices and automatically delivered to
access devices, enabling centralized control, simplified service configuration, and flexible configuration
modification. The S5720-EI functions as a client in an SVF system.
 
• The S5720-EI supports Easy Operation, a solution that provides zero-touch deployment, replacement of
faulty devices without additional configuration, USB-based deployment, batch configuration, and batch
remote upgrade. The Easy Operation solution facilitates device deployment, upgrade, service provisioning,
and other management and maintenance operations, greatly reducing O&M costs. The S5720-EI can be
managed using Simple Network Management Protocol (SNMP) v1/v2c/v3, command line interface (CLI),
web-based network management system, or Secure Shell (SSH) V2.0. Additionally, it supports remote
network monitoring (RMON), multiple log hosts, port traffic statistics collection, and network quality
analysis, which facilitate network optimization and reconstruction.
 
• The S5720-EI supports Two-Way Active Measurement Protocol (TWAMP) to accurately check any IP link
and obtain the entire network's IP performance. This protocol eliminates the need of using a dedicated
probe or a proprietary protocol.
 
Multiple reliability mechanisms
 
• The S5720-EI supports iStack. This technology can virtualize up to nine physical switches into one logical
switch. Member switches in a stack implement redundancy backup to improve device reliability and use
inter-device link aggregation to improve link reliability. iStack provides strong network expansion capability,
enables easy increase of ports, bandwidth, and processing capacity of a stack, and simplifies configuration
and management.
 
• The S5720-EI is equipped with two removable power modules that can work in 1+1 redundancy backup
mode. Mixed installation of AC and DC power modules is supported, allowing for flexible configuration of 
AC or DC power modules according to service requirements. The S5720-EI provides two removable fan 
modules. The fan speed can be adjusted according to working temperatures of the device, improving
device reliability.
 
• In addition to traditional STP, RSTP, and MSTP, the S5720-EI supports Huawei-developed Smart Ethernet
Protection (SEP) technology and the latest Ethernet Ring Protection Switching (ERPS) standard. SEP is a ring 
protection protocol specific to the Ethernet link layer, and applies to various ring network topologies, such 
as open ring topology, closed ring topology, and cascading ring topology. This protocol is reliable, easy to 
maintain, and implements fast protection switching within 50 ms. ERPS is defined in ITU-T G.8032. It 
implements millisecond-level protection switching based on traditional Ethernet MAC and bridging
functions.
 
• The S5720-EI supports Smart Link and Virtual Router Redundancy Protocol (VRRP), which implement
backup of uplinks. One S5720-EI switch can connect to multiple aggregation switches through multiple
links, significantly improving reliability of access devices.
• In addition, the S5720-EI provides multiple connection fault detection mechanisms, including Ethernet
OAM (IEEE 802.3ah/802.1ag/ITU Y.1731) and Bidirectional Forwarding Detection (BFD). 
 
Enhanced service processing capability and comprehensive security control mechanisms
• The S5720-EI supports the multi-VPN-instance CE (MCE) function, which allows users in different VPNs to
connect. The switch supports large multi-instance routing tables to isolate users in different VPNs. Users in
multiple VPNs connect to a provider edge (PE) device through the same physical port on the switch, which
reduces the cost on VPN network deployment. The S5720-EI supports Multiprotocol Label Switching
 
(MPLS) L3VPN, MPLS L2VPN (VPWS\VPLS), MPLS-TE, and MPLS QoS. It is one of a few cost-effective MPLScapable fixed switches.
• The S5720-EI provides excellent quality of service (QoS) capabilities and supports queue scheduling and
congestion control algorithms. Additionally, it adopts innovative priority queuing and multi-level scheduling
mechanisms to implement fine-grained scheduling of data flows, meeting service quality requirements of
different user terminals and services.
 
• With enhanced network admission control (NAC) functions, the S5720-EI supports 802.1x authentication, 
MAC address authentication, Portal authentication, and hybrid authentication, and can dynamically 
delivery user policies such as VLANs, QoS policies, and access control lists (ACL). It also supports user 
management based on user groups. You can specify authentication-free IP network segments and enable 
redirection of HTTP connection requests to realize fast deployment of clients. If clients do not support 
HTTP access, the S5720-EI can trigger Portal authentication for the clients.

The S5720-EI provides a series of mechanisms to defend against DoS and user-targeted attacks. DoS
attacks are targeted at switches and include SYN flflood, Land, Smurf, and ICMP flflood attacks. User
targeted attacks include bogus DHCP server attacks, IP/MAC address spoofifing, DHCP request flflood, and
change of the DHCP CHADDR value.
 
• The S5720-EI sets up and maintains a DHCP snooping binding table, and discards the packets that do not
match the table entries. You can specify DHCP snooping trusted and untrusted ports to ensure that users
connect only to the authorized DHCP server.
 
• The S5720-EI supports strict ARP learning, which protects a network against ARP spoofifing attacks to
ensure normal network access.
 
Mature IPv6 technologies
• The S5720-EI uses the mature, stable VRP software platform and supports IPv4/IPv6 dual stack, IPv6
routing protocols (RIPng, OSPFv3, BGP4+, and IS-ISv6), and IPv6 over IPv4 tunnels (including manual, 6-
to-4, and ISATAP tunnels). With these IPv6 features, the S5720-EI can be deployed on a pure IPv4
network, a pure IPv6 network, or a shared IPv4/IPv6 network, helping achieve IPv4-to-IPv6 transition.

 
 
Product Specififications

OPS(Open Programmability System)
• Open Programmability System (OPS) is an open programmable system based on the Python language.
IT administrators can program the O&M functions of a switch through Python scripts to quickly
innovate functions and implement intelligent O&M.
 
Perpetual PoE
• When a PoE switch is rebooted by running the reboot command or the software version is upgraded,
the power supply to PDs is not interrupted. This capability ensures that PDs are not powered off during
the switch reboot.
 
111111.JPG
02.JPG03.JPG04.JPG05.JPG06.JPG

 

 1213.JPG1214.JPG1215.JPG