Juniper EX2200 EX2200-24P-4G データシート
製品コード
EX2200-24P-4G
5
Supported RFCs
• RFC 2925 MIB for remote ping, trace
• RFC 1122 Host requirements
• RFC 768 UDP
• RFC 791 IP
• RFC 783 Trivial File Transfer Protocol (TFTP)
• RFC 792 Internet Control Message Protocol (ICMP)
• RFC 793 TCP
• RFC 826 ARP
• RFC 894 IP over Ethernet
• RFC 903 Reverse ARP (RARP)
• RFC 906 TFTP bootstrap
• RFC 1027 Proxy ARP
• RFC 2068 HTTP server
• RFC 1812 Requirements for IP Version 4 routers
• RFC 1519 Classless Interdomain Routing (CIDR)
• RFC 1256 IPv4 ICMP Router Discovery (IRDP)
• RFC 1058 RIP v1
• RFC 2453 RIP v2
• RFC 1492 TACACS+
• RFC 2138 RADIUS authentication
• RFC 2139 RADIUS accounting
• RFC 3579 RADIUS Extensible Authentication Protocol (EAP)
• RFC 1122 Host requirements
• RFC 768 UDP
• RFC 791 IP
• RFC 783 Trivial File Transfer Protocol (TFTP)
• RFC 792 Internet Control Message Protocol (ICMP)
• RFC 793 TCP
• RFC 826 ARP
• RFC 894 IP over Ethernet
• RFC 903 Reverse ARP (RARP)
• RFC 906 TFTP bootstrap
• RFC 1027 Proxy ARP
• RFC 2068 HTTP server
• RFC 1812 Requirements for IP Version 4 routers
• RFC 1519 Classless Interdomain Routing (CIDR)
• RFC 1256 IPv4 ICMP Router Discovery (IRDP)
• RFC 1058 RIP v1
• RFC 2453 RIP v2
• RFC 1492 TACACS+
• RFC 2138 RADIUS authentication
• RFC 2139 RADIUS accounting
• RFC 3579 RADIUS Extensible Authentication Protocol (EAP)
support for 802.1X
• RFC 5176 Dynamic Authorization Extensions to RADIUS
• RFC 2267 Network ingress filtering
• RFC 2030 Simple Network Time Protocol (SNTP)
• RFC 854 Telnet client and server
• RFC 951, 1542 BootP
• RFC 2131 BOOTP/DHCP relay agent and DHCP server
• RFC 1591 Domain Name System (DNS)
• RFC 2474 DiffServ Precedence, including 8 queues/port
• RFC 2598 DiffServ Expedited Forwarding (EF)
• RFC 2597 DiffServ Assured Forwarding (AF)
• LLDP Media Endpoint Discovery (LLDP-MED), ANSI/TIA-1057,
• RFC 2267 Network ingress filtering
• RFC 2030 Simple Network Time Protocol (SNTP)
• RFC 854 Telnet client and server
• RFC 951, 1542 BootP
• RFC 2131 BOOTP/DHCP relay agent and DHCP server
• RFC 1591 Domain Name System (DNS)
• RFC 2474 DiffServ Precedence, including 8 queues/port
• RFC 2598 DiffServ Expedited Forwarding (EF)
• RFC 2597 DiffServ Assured Forwarding (AF)
• LLDP Media Endpoint Discovery (LLDP-MED), ANSI/TIA-1057,
draft 08
Security
• MAC limiting
• Allowed MAC addresses—configurable per port
• Dynamic ARP inspection (DAI)
• Proxy ARP
• Static ARP support
• DHCP snooping
• IP source guard
• 802.1X port-based
• 802.1X multiple supplicants
• 802.1X with VLAN assignment
• 802.1X with authentication bypass access (based on host MAC
• Allowed MAC addresses—configurable per port
• Dynamic ARP inspection (DAI)
• Proxy ARP
• Static ARP support
• DHCP snooping
• IP source guard
• 802.1X port-based
• 802.1X multiple supplicants
• 802.1X with VLAN assignment
• 802.1X with authentication bypass access (based on host MAC
address)
• 802.1X with VoIP VLAN support
• 802.1X dynamic ACL based on RADIUS attributes
• 802.1X Supported EAP types: Message Digest 5 (MD5),
• 802.1X dynamic ACL based on RADIUS attributes
• 802.1X Supported EAP types: Message Digest 5 (MD5),
Transport Layer Security (TLS), Tunneled Transport Layer
Security (TTLS), Protected Extensible Authentication Protocol
(PEAP)
Security (TTLS), Protected Extensible Authentication Protocol
(PEAP)
• Access control lists (ACLs) (Junos OS firewall filters)
• Port-based ACL (PACL)—ingress
• VLAN-based ACL (VACL)—ingress and egress
• Router-based ACL (RACL)—ingress and egress
• Port-based ACL (PACL)—ingress
• VLAN-based ACL (VACL)—ingress and egress
• Router-based ACL (RACL)—ingress and egress
Security (continued)
• ACL entries (ACE) in hardware per system: 1,500
• ACL counter for denied packets
• ACL counter for permitted packets
• Ability to add/remove/change ACL entries in middle of list
• ACL counter for denied packets
• ACL counter for permitted packets
• Ability to add/remove/change ACL entries in middle of list
(ACL editing)
• L2-L4 ACL
• Trusted Network Connect (TNC) certified
• Static MAC authentication
• MAC-RADIUS
• Control plane DoS protection
• Trusted Network Connect (TNC) certified
• Static MAC authentication
• MAC-RADIUS
• Control plane DoS protection
High Availability
• External redundant power supply (RPS) option
1
• Link Aggregation
• 802.3ad (LACP) support:
• 802.3ad (LACP) support:
- Number of LAGs supported: 32
- Maximum number of ports per LAG: 8
• LAG load sharing algorithm—Bridged Unicast Traffic:
- IP: S/D MAC, S/D IP
- TCP/UDP: S/D MAC, S/D IP, S/D Port
- Non-IP: S/D MAC
• LAG sharing algorithm—Routed Unicast Traffic:
- IP: S/D IP
- TCP/UDP: S/D IP, S/D Port
• LAG load sharing algorithm—Bridged Multicast Traffic:
- IP: S/D MAC, S/D IP
- TCP/UDP: S/D MAC, S/D IP, S/D Port
- Non-IP: S/D MAC
• LAG sharing algorithm—Routed Multicast Traffic:
- IP: S/D IP
- TCP/UDP: S/D IP, S/D Port
• Tagged ports support in LAG
Quality of Service (QoS)
• Layer 2 QoS
• Layer 3 QoS
• Ingress policing: 1 rate 2 color
• Hardware queues per port: 8
• Scheduling methods (egress): Strict Priority (SP), shaped
• Layer 3 QoS
• Ingress policing: 1 rate 2 color
• Hardware queues per port: 8
• Scheduling methods (egress): Strict Priority (SP), shaped
deficit weighted round-robin (SDWRR)
• 802.1p, DSCP /IP precedence trust and marking
• L2-L4 classification criteria: Interface, MAC address, Ethertype,
• L2-L4 classification criteria: Interface, MAC address, Ethertype,
802.1p, VLAN, IP address, DSCP/IP precedence, TCP/UDP port
numbers, etc.
numbers, etc.
• Congestion avoidance capabilities: Tail drop
Multicast
• IGMP snooping entries: 1,000
Services and Manageability
• Junos OS CLI
• Web interface (J-Web)
• Out-of-band management: Serial, 10/100BASE-T Ethernet
• ASCII configuration
• Rescue configuration
• Configuration rollback
• Image rollback
• Element management tools: Network and Security Manager
• Proactive services support via Advanced Insight Solutions (AIS)
• Simple Network Management Protocol (SNMP): v1, v2c, v3
• Remote monitoring (RMON) (RFC 2819) Groups 1, 2, 3, 9
• Network Time Protocol (NTP)
• Web interface (J-Web)
• Out-of-band management: Serial, 10/100BASE-T Ethernet
• ASCII configuration
• Rescue configuration
• Configuration rollback
• Image rollback
• Element management tools: Network and Security Manager
• Proactive services support via Advanced Insight Solutions (AIS)
• Simple Network Management Protocol (SNMP): v1, v2c, v3
• Remote monitoring (RMON) (RFC 2819) Groups 1, 2, 3, 9
• Network Time Protocol (NTP)