Advanced system architecture
Advanced CLOS multilevel multiplane switching architecture provides continuous bandwidth upgrade capability.
Orthogonal network board design: S10500X business board card and exchange network board using completely orthogonal design (90 degrees), cross line card traffic directly on the exchange network board through the orthogonal connector, support cell exchange, backplane wiring is reduced to zero (greatly avoid signal attenuation), greatly improve the system bandwidth and evolution ability, the capacity of the whole machine can be smoothly expanded to 100 Tbps;
Supports 40GE and 100GE Ethernet standards, fully meeting the application and future development requirements of non-blocking campus networks.
Independent switch board. The hardware of the control engine and switch board are independent. The multi-switch plane design supports N+M redundancy of the switch board, which maximizes device reliability and ensures continuous bandwidth upgrade of subsequent products.
Redundant fan and power modules can cope with emergencies and greatly improve the overall reliability of the device.
Innovative distributed multi-engine design
S10500X adopts innovative hardware design, through fully distributed independent control engine, detection engine, maintenance engine to provide powerful control capabilities and millisecond level of high reliability guarantee for the system;
Distributed control engine, all business boards provide a powerful control and processing system, easy to process a variety of protocol messages and control messages, and support protocol message fine control, to provide the system with perfect anti-protocol message attack capability;
The distributed detection engine enables all SPUs to rapidly detect faults, such as BFD and OAM, and interworks with the protocols of the control plane. It supports fast protection switching and fast convergence, realizing millisecond level fault detection and ensuring service continuity.
Distributed maintenance engine and intelligent CPU The system supports intelligent power management and sequential power-on and power-off of boards to reduce the power impact caused by simultaneous power-on of boards, improve device service life, reduce electromagnetic radiation, and reduce system power consumption, and check device online status.
IRF2 (Second Generation Intelligent Elastic Architecture -- Horizontal Virtualization)
To meet the requirements of horizontal service integration of the campus network, the S10500X supports IRF2 (second-generation intelligent elastic architecture) technology, which virtualizes multiple high-end devices into one logical device. It is the core switch product of Xinhua 3 Professional that supports four virtualization frames. It has strong advantages in reliability, distribution, and easy management, which are mainly embodied in the following three aspects:
Reliability: Through the routing hot backup technology, all information on the control plane and data plane is redundant backup and uninterrupted three-layer forwarding in the entire virtual architecture, which greatly enhances the reliability and performance of the virtual architecture, eliminates the single point of failure, and avoids service interruption.
Distribution: The distributed cross-device link aggregation technology is used to realize load balancing and mutual backup of multiple uplink links, thus improving the redundancy of the entire network architecture and the utilization of link resources.
Manageability: The entire elastic architecture uses the same IP address to manage network devices, simplify network topology management, improve operation efficiency, and reduce maintenance costs.
Data center virtualization and network convergence technology
As the core device of enterprise cloud computing data center, S10500X provides a series of technical solutions in cloud computing data center virtualization and network convergence:
TRILL/SPB:
As the scale of servers and switches increases, data center networks tend to adopt flat network architecture for easy maintenance and management, which requires the construction of a large layer 2 network. The S10500X supports TRILL or SPB technology to build large Layer 2 networks in data centers. TRILL (Transparent Interconnection of Lots of Links), SPB (Shortest Path Bridging, The shortest path bridging protocol combines the simplicity and flexibility of Layer 2 with the stability, scalability, and performance of Layer 3. It can provide a higher density of ports and a flatter network architecture, meeting the access requirements of large-scale servers in data centers.
EVI (Ethernet Virtual Interconnection) technology
EVI is an advanced "MAC in IP" technology. The EVI solution is simple to deploy, based on existing IP networks, and provides flexible layer-2 interconnection for dispersed physical sites. The EVI solution is simple to deploy, compatible with the user's existing network, and protects the user's investment.
Virtual eXtensible LAN (VXLAN)
VXLAN is a Layer 2 VPN technology based on IP networks and encapsulated in MAC in UDP packets. Based on the existing service provider or enterprise IP network, the VXLAN can provide Layer 2 interconnection for scattered physical sites and isolate services for different tenants.
EVB (Edge Virtual Bridging)
The Virtual Ethernet Port Aggregator (VEPA) technology is used to upload network traffic generated by VMS to the physical switch connected to the server for processing. In this way, traffic is forwarded between VMS, and problems such as VM traffic monitoring and access control policy deployment are solved.
Fibre Channel over Ethernet (FCoE) protocol.
FCoE technology is mainly used to solve the problem of heterogeneous integration of LAN and storage networks in cloud computing data centers. Converged Converged Ethernet (FCoE) and CEE (Converged Enhanced Ethernet) technologies converged front-end network and back-end network architecture of data centers and converged data, computing, and storage networks, greatly reducing data center procurement and capacity expansion costs.
Highly available M-LAG architecture
S10500X series switches support the M-LAG (Multichassis Link Aggregation Group) cross-device link aggregation technology (the original DRNI technology). By virtualizing two physical devices into one device at the forwarding layer, the cross-device link aggregation is realized and the control layer is independent. This improves board level reliability to device level reliability.
Multi-service integration based on open architecture
S10500X series adheres to the design concept of H3C's open architecture -- Open Application Architecture (OAA). It redefines the simple function of message forwarding from L2 to L3 of the traditional campus network core switches as deep service perception integrating L2 to L7, wired and wireless integration, active and passive integration, and IPv4/IPv6 integration. Network traffic analysis and control and other services in one multi-service bearer platform.
The S10500X series supports security control modules such as firewall modules, IPS modules, and load balancers to extend the security protection function to each switch port. Supports the virtual firewall function, which provides network firewall rental services for VPN users. Network services and security services are seamlessly integrated.
S10500X series supports Eaglevision /SDN module. Eaglevision control plate provides a variety of business capabilities, including asset inventory, monitoring in network equipment, perception of iot terminals, accurate identification, etc., providing customers with a manageable, controllable and secure network networking scheme. The S10500X supports the ADCampus scheme to be deployed on switches, enabling integrated deployment of network products and SDN schemes.
The S10500X series supports future-oriented open service platforms and integrates third-party software with switches to enhance service convergence.
Super Eagle Vision /SDN fusion service capability
The new generation of wired wireless integration scheme
The S10500X series switches support the next-generation wired and wireless integrated solution. The switch supports the converged AC function and can directly manage wireless aps. Compared with the single wireless AC card solution, the deployment is more flexible and simple. S10500X series switches also support the large-capacity professional wireless AC card solution and can perfectly combine the AC function with switches to form a unique layered AC solution. This solution solves complex management problems in large-scale wireless deployment environments and makes the wired and wireless integration solution more flexible and convenient.
The AC can be integrated with the IRF2 virtualization technology, enabling one device to manage wired and wireless devices on the entire network, greatly simplifying network operation and maintenance.
A comprehensive IPv6 solution
The S10500X series switches fully support the IPv6 protocol family, including IPv6 static routing, RIPng, OSPFv3, IS-ISv6, and BGP4+ routing protocols, and support a variety of IPv4 to IPV6 transition technologies, including: Tunnel technologies such as IPv6 manual tunnel, 6to4 tunnel, ISATAP tunnel, GRE tunnel, and IPv4 compatible automatic Configuration tunnel ensure smooth transition from IPv4 to IPv6.
Hardware-level encryption
The S10500X supports hardware level encryption technology Macsec (802.1ae). Different from traditional soft encryption technology for end-to-end basic application layer protection, Macsec protects and manages the bridge network and other data control protocols by authenticating data source cryptography, protecting information integrity and providing reprotection and security services. By confirming the frame sent by this station, the Layer 2 protocol can be protected from attack.
Centralized monitoring capability
The S10500X supports an independent monitoring board to monitor the operating status of the hardware in real time, including load and power adjustment, automatic fan speed adjustment, and dynamic power consumption allocation.
Audited Supplier 
){kind=link}
){kind=link}