Juniper EX4200 EX4200-48T-TAA データシート
製品コード
EX4200-48T-TAA
4
Carrier-Class Operating System
The EX4200 runs on Junos OS, the same operating system
software used by Juniper Networks routers to power the world’s
largest and most complex networks.
software used by Juniper Networks routers to power the world’s
largest and most complex networks.
By utilizing a common operating system, Juniper delivers a
consistent implementation and operation of control-plane
features across all products. To maintain that consistency, Junos
OS adheres to a highly disciplined development process that
utilizes a single source code, follows a single quarterly release
train, and employs a highly available modular architecture that
prevents isolated failures from bringing an entire system down.
consistent implementation and operation of control-plane
features across all products. To maintain that consistency, Junos
OS adheres to a highly disciplined development process that
utilizes a single source code, follows a single quarterly release
train, and employs a highly available modular architecture that
prevents isolated failures from bringing an entire system down.
These attributes are fundamental to the core value of the
software, enabling all products powered by Junos OS to be
updated simultaneously with the same software release. All
features are fully regression-tested, making each new release a
true superset of the previous version; customers can deploy the
software with complete confidence that all existing capabilities
will be maintained and operate in the same way.
software, enabling all products powered by Junos OS to be
updated simultaneously with the same software release. All
features are fully regression-tested, making each new release a
true superset of the previous version; customers can deploy the
software with complete confidence that all existing capabilities
will be maintained and operate in the same way.
Converged Networks
The EX4200 line of Ethernet switches provide the highest levels
of availability for the most demanding converged data, voice
and video environments, delivering the most reliable platform for
unifying enterprise communications.
of availability for the most demanding converged data, voice
and video environments, delivering the most reliable platform for
unifying enterprise communications.
By providing Class 3 PoE with 15.4 watts on some or all ports to
power voice over IP (VoIP) telephones, closed-circuit security
cameras, wireless access points, and other IP-enabled devices, the
EX4200 delivers a future-proofed solution for converging disparate
networks onto a single IP infrastructure. Furthermore, any PoE port
can provide up to 18.6 watts to power wireless access points and
other PoE powered devices requiring more than Class 3, 15.4 watts
of PoE. EX4200 PoE+ switches also support 802.3at standards-
based PoE+ for powering networked devices like multiple radio
IEEE 802.11n wireless access points, and video phones that may
require more power than available with IEEE 802.3af.
power voice over IP (VoIP) telephones, closed-circuit security
cameras, wireless access points, and other IP-enabled devices, the
EX4200 delivers a future-proofed solution for converging disparate
networks onto a single IP infrastructure. Furthermore, any PoE port
can provide up to 18.6 watts to power wireless access points and
other PoE powered devices requiring more than Class 3, 15.4 watts
of PoE. EX4200 PoE+ switches also support 802.3at standards-
based PoE+ for powering networked devices like multiple radio
IEEE 802.11n wireless access points, and video phones that may
require more power than available with IEEE 802.3af.
LLDP-MED-based granular PoE management allows the EX4200
to negotiate PoE usage down to a fraction of a watt on powered
devices, enabling more efficient PoE utilization across the switch.
to negotiate PoE usage down to a fraction of a watt on powered
devices, enabling more efficient PoE utilization across the switch.
To ease deployment, the EX4200 supports the industry-
standard Link Layer Discovery Protocol (LLDP) and LLDP-Media
Endpoint Discovery (LLDP-MED), which enable the switches to
automatically discover Ethernet-enabled devices, determine their
power requirements and assign virtual LAN (VLAN) parameters.
standard Link Layer Discovery Protocol (LLDP) and LLDP-Media
Endpoint Discovery (LLDP-MED), which enable the switches to
automatically discover Ethernet-enabled devices, determine their
power requirements and assign virtual LAN (VLAN) parameters.
In addition, the EX4200 supports rich quality of service (QoS)
functionality for prioritizing data, voice and video traffic. The
switches support eight QoS queues on every port, enabling them to
maintain multi-level, end-to-end traffic prioritizations. The EX4200
also supports a wide range of policy options, including priority and
shaped deficit weighted round-robin (SDWrr) queuing.
functionality for prioritizing data, voice and video traffic. The
switches support eight QoS queues on every port, enabling them to
maintain multi-level, end-to-end traffic prioritizations. The EX4200
also supports a wide range of policy options, including priority and
shaped deficit weighted round-robin (SDWrr) queuing.
Security
The EX4200 line of Ethernet switches fully integrate with
the Juniper Networks Unified Access Control (UAC), which
consolidates all aspects of a user’s identity, device and location,
enabling administrators to enforce access control and security
down to the individual port or user levels.
the Juniper Networks Unified Access Control (UAC), which
consolidates all aspects of a user’s identity, device and location,
enabling administrators to enforce access control and security
down to the individual port or user levels.
Policy orchestration, enabled via Juniper UAC Enhancement
Protocol (JUEP), enables the EX4200 to construct dynamic
ACLs on a port-by-port basis by associating role/resource access
policies with authorization table entries. This allows the switch
to dynamically create thousands of ACLs or role-based access
policies in a scaled environment.
Protocol (JUEP), enables the EX4200 to construct dynamic
ACLs on a port-by-port basis by associating role/resource access
policies with authorization table entries. This allows the switch
to dynamically create thousands of ACLs or role-based access
policies in a scaled environment.
Additionally, a captive portal redirection feature redirects
UrLs from the EX4200 to the Infranet Controller (IC) for user
authentication and authorization, making the IC a “single source
of truth” for user and device authentication and for enforcing role-
based security policies.
UrLs from the EX4200 to the Infranet Controller (IC) for user
authentication and authorization, making the IC a “single source
of truth” for user and device authentication and for enforcing role-
based security policies.
Working as an enforcement point within the UAC, the EX4200
provides both standards-based 802.1X port-level access
control as well as Layer 2–4 policy enforcement based on user
identity, location and/or device. A user’s identity, device type,
machine posture check and location can be used to determine
whether access should be granted and for how long. If access is
granted, the switch assigns the user to a specific VLAN based on
authorization levels. The switch can also apply QoS policies or
mirror user traffic to a central location for logging, monitoring or
threat detection by intrusion prevention systems.
provides both standards-based 802.1X port-level access
control as well as Layer 2–4 policy enforcement based on user
identity, location and/or device. A user’s identity, device type,
machine posture check and location can be used to determine
whether access should be granted and for how long. If access is
granted, the switch assigns the user to a specific VLAN based on
authorization levels. The switch can also apply QoS policies or
mirror user traffic to a central location for logging, monitoring or
threat detection by intrusion prevention systems.
Policy Manager
Firewall Enforcer
UAC Agent
AAA
IC Series UAC Appliances
Firewall/VPN
EX4200
Steel-Belted Radius
Protected Servers
• Access granted
• VLAN assigned
• QoS policies applied
• VLAN assigned
• QoS policies applied
CORPORATE
NETWORK
Figure 4: The EX4200 works with the Juniper Networks UAC to enforce access control
down to the individual port level.