Technical overview HP ProCurve Switch 5400zl, 3500yl, and 6200yl Series Table of contents Executive summary.............................................................................................. 4 Introduction.......................................................................................................... 4 Product positioning .............................................................................................. 5 Overview ...........................................................
Specifications ................................................................................................. 18 Management module .................................................................................. 18 Line interface modules ............................................................................... 19 HP ProCurve Switch 3500yl Series ................................................................... 24 Specifications ...................................................................
Appendix C: Power over Ethernet ..................................................................... 47 PoE device types ............................................................................................ 47 Power delivery options ................................................................................... 48 PoE negotiation .............................................................................................. 48 Additional PoE power—external supplies ...............................
Executive summary HP ProCurve Networking has an extensive line of networking products built around the concept of the HP ProCurve Adaptive EDGE Architecture™ (AEA) that provides the security, mobility, and convergence capabilities that businesses demand while giving IT administrators the ability to adapt to the changing needs of their organizations and control their infrastructure centrally.
Product positioning Overview A widely used method for segmenting the areas in which switches are installed calls for three different classifications: access, distribution, and core. Access switches provide aggregation of end nodes for connection to a distribution or core switch and are usually found in wiring closets. Distribution switches aggregate the links from access switches and possibly server farms. Distribution switches anchor the network in a building, or, for small networks, across a campus.
• Diagnostic—remote intelligent mirroring, loopback interface, UDLD, sFlow support • Investment protection—upgradable management engine and CPU (for 5400zl and 8200zl Series), upgradable to Premium License feature group, add-in modules and power supplies (for 5400zl and 8200zl Series), Versatile Intelligent Ports, programmable ASICs HP ProCurve Switch 5400zl and 3500yl Series The HP ProCurve Switch 5400zl and 3500yl series consist of the most advanced intelligent edge switches in the HP ProCurve product li
Figure 1. ProVision ASIC Architecture for HP ProCurve Switch 5406zl The diagram above illustrates an example of the logical interconnection of the ProVision ASICs on the 6-slot 5406zl series switch. All of the key elements are connected to the active backplane. The active backplane contains the switch fabric and distributes power to all modules. The HP ProCurve Switch 5412zl, 3548yl, 3524yl, and 6224yl have similar architectural components.
Policy Enforcement Engine The ProVision ASICs on each line interface module contain the Policy Enforcement Engine. This engine provides fast packet classification to be applied to ACLs, QoS, Rate Limiting, and some other features through an onboard TCAM. Some of the variables that can be used include source and destination IP addresses (can follow specific users), TCP/UDP port numbers, and ranges (apply ACLs to an application that uses fixed port numbers or ranges).
ProVision ASIC CPU Each ProVision ASIC contain its own CPU for learning of Layer 2 nodes, packet sampling for the XRMON function, handling local MIB counters, and running other module-related operations. Overall, the local CPU offloads the master CPU by providing a distributed approach to general housekeeping tasks associated with every packet. MIB variables, which need to be updated with each packet, can be done locally. The Layer 2 forwarding table is kept fresh through the use of this CPU.
HP ProCurve Switch 5400zl Series The HP ProCurve Switch 5400zl series is a high-end edge switch. This switch series has been designed to be a feature-oriented high-performance wiring closet switch. It can also be used as a low-to-medium distribution switch when used with Premium License, described later in this document. The 5400zl series is the latest generation of managed chassis products from HP ProCurve.
ProCurve Switch 5400zl Chassis ProCurve Switch 5406zl ProCurve Switch 5400zl Bundles ProCurve Switch 5406zl-48G (J8699A) (J8697A) ProCurve Switch 5412zl ProCurve Switch 5412zl-96G (J8698A) (J8700A) Figure 2. HP ProCurve Switch 5400zl Chassis and Bundles The HP ProCurve Switch 5406zl-48G Intelligent Edge (J8699A) and 5412zl-96G Intelligent Edge (J8700A) are preconfigured bundles that offer a pretested environment and a lower cost starter switch to which additional modules can be added.
However, when the management module is removed, all ports lose communication and the system will be powered down. Figure 3. HP ProCurve Switch 5406zl chassis layout Figure 4.
The internal power supplies are inserted in the back slots. These slots are labeled PS1 and PS2 on the 5406zl and PS1 through PS4 on the 5412zl. A power supply is hot-swappable provided at least one other power supply is operational. If the 5412zl has only two power supplies and one of them fails, then only the upper six slots (slots A through F) will receive power. Power supplies There are two different power supplies available for the HP ProCurve Switch 5400zl series.
Both internal supplies have over-current, over-temperature, and over-voltage protection, as well as integrated fans. Hot swapping is allowed, taking into account that disconnecting the power supplies may interrupt PoE operation. An external power shelf, the HP ProCurve Switch zl Power Supply Shelf, is available to house up to two switch zl power supplies.
In the event of an individual fan failure, an SNMP trap and event log entry are generated. Figure 6. Fan tray for switch 5406zl (J8697-60005) zl modules Management module All configurations of the HP ProCurve Switch 5400zl series include a single management module that oversees the operation of the line interface modules and switch fabric. The management module incorporates an RS-232 serial port for local management and configuration. To connect to the console, a standard null modem cable is used.
Each of the copper-based line interface modules provides integrated PoE capability. 24-port 10/100/1000 20-port 10/100/1000 + 4-port Mini-GBIC 24-port Mini-GBIC 4-port 10-GbE X2 4-port 10-GbE CX4 Wireless Edge Services Module HP ProCurve ONE Services zl Module Figure 8. HP ProCurve Switch 5400zl series line interface modules Power supply configurations The Switch 5406zl provides slots for two internal supplies and requires at least one internal power supply.
Switch model Minimum internal Maximum internal Internal + external 5406zl 1 2 4 5412zl 2 4 6 Table 1. Minimum and maximum power supply support When deciding on which and how many power supplies to configure for a 5400zl series switch, the following criteria can be used to guide the decision: • How much power will be required for each PoE port, full (15.
Note that two 875W internal power supplies cannot supply sufficient PoE power to a 5406zl switch fully populated with 24-port line interface modules (144 ports). Two 1500W power supplies can be used to supply full PoE power (15.4 watts) to 116 ports. Number of PoE ports at 15.
Figure 9. HP ProCurve Switch 5406zl management module block diagram Processor The CPU processor is a Freescale PowerPC 8540 operating at 667 MHz. Memory SDRAM Synchronous Dynamic RAM is used for the storage of uncompressed executable code and data structures. The SDRAM consists of a 256 MB DDR-1 DIMM in the base module, expandable up to 1 GB. The DDR-1 interface is 64 bits running at 166 MHz bus speed (333 MHz data rate).
HP ProCurve Switch 5400zl 24p 10/100/1000 PoE Module (J8702A) Description This line interface module has 24 10/100/1000Base-T ports that provide Gigabit-over-copper connectivity for wiring closets, enabling high-density Gigabit connectivity to the desktop over Category 5 copper cabling. Each port is capable of providing IEEE 802.3af compliant Power over Ethernet (PoE) to power IP phones, wireless access points, and other devices. Pre-standard powered devices can also be supported.
• • • • • • • J4860C HP ProCurve Gigabit-LH-LC Mini-GBIC J8177C HP ProCurve Gigabit 1000Base-T Mini-GBIC J9142B HP ProCurve 1000-BX-D SFP-LC Mini-GBIC J9143B HP ProCurve 1000-BX-U SFP-LC Mini-GBIC J9099B HP ProCurve 100-BX-D SFP-LC Transceiver J9100B HP ProCurve 100-BX-U SFP-LC Transceiver J9054B HP ProCurve 100-FX SFP-LC Transceiver HP ProCurve Switch 5400zl 24-port Mini-GBIC Module (J8706A) Description This line interface module has 24 mini-GBIC ports and is appropriate for use as an aggregator in a di
Transceivers supported (ordered separately) • J8436A HP ProCurve 10-GbE X2-SC SR Optic • J8437A HP ProCurve 10-GbE X2-SC LR Optic • J8438A HP ProCurve 10-GbE X2-SC ER Optic • J8440A HP ProCurve 10-GbE X2-CX4 Transceiver • J9144A HP ProCurve 10-GbE X2-SC LRM Optic HP ProCurve Switch 5400zl 4-port 10-GbE CX4 Module (J8708A) Description This line interface module has 4 10-GbE CX4 ports. Ports 4 10-Gigabit Ethernet ports (IEEE 802.
services, enabling a resilient, highly secure, mobile multi-service network. Each “WES” Module can control up to 156 HP ProCurve Radio Ports (light access points) to provide Layer 2/3 seamless roaming and a secure mobility environment. Wireless sFlow support provides leveraged network management for both wired and wireless connections.
HP ProCurve Switch 3500yl Series The HP ProCurve Switch 3500yl series is another of the most advanced intelligent edge switches in the HP ProCurve Networking product line. The 3500yl series includes 24-port and 48-port stackables. The foundation of these switches is a purpose-built, programmable ProVision ASIC that allows the most demanding networking features, such as QoS and security, to be implemented in a scalable yet granular fashion.
The table below shows examples of the maximum number of PoE ports that can be supported by the two 3500yl switch models. One column shows the maximum number of PoE ports at full power (Class 0 – 15.4 watts) and the other column shows the maximum number of PoE ports at typical phone power (8 watts). For environments needing more PoE power, the HP ProCurve 620 Redundant/External Power Supply can be used. It doubles the available PoE power from 398W to 796W for up to two 3500yl switches.
Specifications Processor The CPU processor is a Freescale PowerPC 8540 operating at 667 MHz. Memory SDRAM Synchronous Dynamic RAM is used for the storage of uncompressed executable code and data structures. The SDRAM consists of a 256 MB DDR-1 DIMM in the base module, expandable up to 1 GB. The DDR-1 interface is 64 bits running at 166 MHz bus speed (333 MHz data rate). Flash The flash consists of a 128 MB Compact Flash expandable up to 1 GB, and a 4 MB mirror-bit flash.
HP ProCurve Switch yl 10-GbE 2p CX4 + 2p X2 Module (J8694A) Description This 10-GbE line interface module has two fixed CX4 ports and two X2 slots and is supported in both models of the HP ProCurve Switch 3500yl series and also the HP ProCurve Switch 6200yl-24GmGBIC. Ports 2 open X2 transceiver slots 2 10-Gigabit Ethernet ports (IEEE 802.
HP ProCurve Switch 6200yl-24G-mGBIC (J8992A) Figure 11. HP ProCurve Switch 6200yl Processor The CPU processor is a Freescale PowerPC 8540 operating at 667 MHz. Memory SDRAM Synchronous Dynamic RAM is used for the storage of uncompressed executable code and data structures. The SDRAM consists of a 256 MB DDR-1 DIMM in the base module, expandable up to 1 GB. The DDR-1 interface is 64 bits running at 166 MHz bus speed (333 MHz data rate).
Overview of features and benefits The HP ProCurve Switch 5400zl, 3500yl, and 6200yl series use the same software image base. For the HP ProCurve Switch 6200yl, the Premium License feature group is standard. For the HP ProCurve Switch 5400zl and 3500yl series, you have the choice of using the Intelligent Edge feature group or the Premium License feature group for an additional fee. The Premium License feature group supports additional aggregation layer features: Q-in-Q, PIM-SM, PIM-DM, OSPF-ECMP, and VRRP.
• Identity-driven ACL: enables implementation of a highly granular and flexible access security policy specific to each authenticated network user • Port security: prevents unauthorized access using MAC address lockdown • MAC address lockout: prevents configured particular MAC addresses from connecting to the network • Source-port filtering: allows only specified ports to communicate with each other • Security banner: displays customized security policy when users log in to the switch • Management Interface
Layer 2 switching • HP ProCurve switch meshing: dynamically load-balances across multiple active redundant links to increase available aggregate bandwidth • VLAN support and tagging: support for complete 802.1Q standard and 2,048 VLANs simultaneously • 802.
• Server-to-Switch Distributed Trunking: enables load-balancing and increases resiliency between a server and multiple switches. This feature allows a server to connect to multiple switches with one logical trunk that consists of multiple physical connections. • Other Layer 2 and Layer 3 redundant protocols include MSTP, HP ProCurve switch meshing, and OSPF-ECMP.
Standards and protocols Device management RFC 1591 DNS (client) HTML and telnet management General protocols IEEE 802.1ad Q-in-Q (Premium License) IEEE 802.1D MAC Bridges IEEE 802.1p Priority IEEE 802.1Q VLANs IEEE 802.1s Multiple Spanning Trees IEEE 802.1v VLAN Classification by Protocol and Port IEEE 802.1w Rapid Reconfiguration of Spanning Tree IEEE 802.3ad Link Aggregation Control Protocol (LACP) IEEE 802.3af Power over Ethernet IEEE 802.
IPv6 RFC 1981 IPv6 Path MTU Discovery RFC 2460 IPv6 Specification RFC 2461 IPv6 Neighbor Discovery RFC 2462 IPv6 Stateless Address Auto-configuration RFC 2463 ICMPv6 RFC 2710 Multicast Listener Discovery (MLD) for IPv6 RFC 2925 Remote Operations MIB (Ping only) RFC 3019 MLDv1 MIB RFC 3315 DHCPv6 (client only) RFC 3513 IPv6 Addressing Architecture RFC 3596 DNS Extension for IPv6 RFC 3810 MLDv2 (host joins only) RFC 4022 MIB for TCP RFC 4113 MIB for UDP RFC 4251 SSHv6 Architecture RFC 4252 SSHv6 Authenticatio
QoS/Cos RFC 2474 DiffServ Precedence, including 8 queues/port RFC 2597 DiffServ Assured Forwarding (AF) RFC 2598 DiffServ Expedited Forwarding (EF) Security IEEE 802.
Per-port buffer sizes The HP ProCurve Switch 5400zl, 3500yl, and 6200yl series have eight hardware queues to which prioritized traffic can be assigned. Software can designate a certain amount of output memory buffer for each queue to minimize the impact from events that exceed line rate such as bursty network traffic. Users can choose to configure the number of queues—2, 4, or 8—so that they can optimize the amount of memory buffer per queue for their applications.
Optimizing the 10-GbE port configuration The 10-GbE modules (J8707A, J8708A, and J8694A) used in the HP ProCurve Switch 3500yl, 5400zl, and 6200yl series are designed to deliver full 10 Gbps wire-speed to each port, where either one or two ports are in a linked state with another device. When three or four 10-GbE ports are in a linked state, the module supports an aggregate bandwidth of 28.8 Gbps across the linked ports. As illustrated in the figure below, internally, there are two 14.
Figure 13. Approach for guaranteeing 10 Gbps on a specific port Connection choices are also important where equally balanced bandwidth is needed, such as in a Virtual Router Redundancy Protocol (VRRP) application. This scenario is illustrated in the next figure. Figure 14.
Throughput and latency performance data The following three tables describe the performance capabilities of the 10 Gbps, 1 Gbps, and 100 Mbps line interface module ports of the HP ProCurve Switch 5400zl, 3500yl, and 6200yl series.
10 Gbps Throughput % Packets per second Latency (FIFO) Full mesh % drops Latency (LIFO) Packet size L2/L3 64 1 100 14880952 0 1.95 2.05 1.9 2.0 128 100 8445946 0 2.01 2.11 1.9 2.0 256 100 4528986 0 2.31 2.31 2.1 2.1 512 100 2349624 0 2.62 2.72 2.2 2.3 1024 100 1197318 0 3.73 3.73 2.9 2.9 1280 100 961538 0 4.13 4.23 3.1 3.2 1518 100 811688 0 4.52 4.52 3.3 3.
10 Gigabit performance traffic patterns In the prior table, the performance levels for 10 Gigabit ports assume the underlying traffic patterns reflect either one of the following minimum conditions to achieve wire-speed throughput.
HP ProCurve warranty and support Industry-leading warranty HP ProCurve Networking products come with warranties you would expect from HP. • HP ProCurve Lifetime Warranty♦ features next-business-day advance replacement • HP ProCurve warranty includes coverage for the fans and power supplies • Software release notification upon registration on the My.ProCurve.com Web site Limited electronic or telephone support is available from HP. Refer to the HP Web site www.procurve.
Appendix A: Premium License This section of the Technical Overview provides additional background information about the HP ProCurve Switch 5400zl, 3500yl, and 6200yl series products. Intelligent Edge and Premium License Introduced with the HP ProCurve Switch 5400zl and 3500yl series is the option of implementing Intelligent Edge or Premium License.
Two methods for managing Premium Edge licensing on ProCurve Switch 5400zl and 3500yl series • Manually using ProCurve web portal and CLI commands – Good for small number of licenses, requires manager level access • ProCurve Manager (PCM) – Convenient for may licenses, handles most aspects – Requires PCM configured for access to each device and My ProCurve account information Either method requires that you be registered on the My ProCurve web portal Manual Method Using PCM Install a license Yes Yes Un
On a subsequent window, you select premium-edge for the Feature Group and type the registration ID you received with the purchase of the Premium License. The registration ID is found on a plastic laminated card that is shipped with the HP ProCurve switch. After you agree to the terms of the License Agreement, the wizard will display the status of the license installation process. As part of this process the following events occur: • First, the Hardware ID is retrieved from the switch.
Policy Enforcement Engine benefits The Policy Enforcement Engine has several benefits: • Granular policy enforcement The initial software release on these products takes advantage of a subset of the full Policy Enforcement Engine capabilities, which will provide a common front end for the user interface to ACLs, QoS, Rate-Limiting, and Guaranteed Minimum Bandwidth controls.
Appendix C: Power over Ethernet The IEEE 802.3af standard for Power over Ethernet (PoE) enables Ethernet switches to provide power, as well as network signals, for compliant devices over existing CAT-5 cable.
Power delivery options The 802.3af standard provides two options for providing power over CAT 5 Ethernet cable. They are: • Unused pairs—This option takes advantage of the fact that 10Base-T and 100Base-TX signals use only two of the four twisted pairs in the cable. In this option, the pins on pairs 1/2 and 3/6 are used for data, and the pins on pairs 4/5 and 7/8 are used for power.
Support for pre-802.3af standard powered devices The HP ProCurve Switch 5400zl and 3500yl series also support a number of pre-802.3af standard powered devices. These include: • Cisco 7902G, 7905G, 7912G, 7940G, 7960G IP Phones • Cisco Aironet 350, 1100, 1200, 1230AG Access Points The Cisco pre-802.3af standard IP phones require the use of a straight-through cable for connectivity to the PSE. These IP phones are dependent on the polarity of the DC voltage (a violation of the IEEE 802.
In order to receive a multicast stream, routers explicitly join the stream by sending join messages to the RP. This join message is analogous to a unicast router following a default route to a destination. Effectively, the function of the RP is a place for multicast sources and receivers to meet. PIM-SM is extremely memory and CPU efficient. Since the only thing that most routers need to know is how to reach the RP, memory requirements are greatly reduced.
LLDP-MED endpoint devices are located at the network edge and communicate using the LLDP-MED framework. Any LLDP-MED endpoint device belongs to one of the following three classes: • Class 1 (Generic Endpoint Devices): These devices offer the basic LLDP discovery services, network policy advertisement (VLAN ID, Layer 2/802.1p priority, and Layer 3/DSCP priority), and PoE management. This class includes such devices as IP call controllers and communication-related servers.
Virus Throttle works by intercepting IP connection requests, that is, connections in which the source subnet and destination address are different. The Virus Throttle tracks the number of recently made connections. If a new, intercepted request is to a destination to which a connection was recently made, the request is processed as normal. If the request is to a destination that has not had a recent connection, the request is processed only if the number of recent connections is below a pre-set threshold.
Response options The response behavior of connection-rate filtering can be adjusted by using filtering options. When a worm-like behavior is detected, the connection-rate filter can respond to the threats on the port in the following ways: • Notify only of potential attack: While the apparent attack continues, the switch generates an Event Log notice identifying the offending host source address (SA) and (if a trap receiver is configured on the switch) a similar SNMP trap notice.
The VRRP Master router periodically sends advertisements to a reserved multicast group address. The VRRP Backup routers listen for advertisements and one of the backups will assume the Master role, if necessary. A VRRP router can support many virtual router instances, each with a unique VRID/IP address combination. The election process provides dynamic failover to one of the remaining VRRP Backups should the Master become unavailable.
Appendix H: OSPF Equal Cost Multipath In Open Shortest Path First (OSPF), if different subnet destinations in a network are reachable through multiple equal-cost paths, the router chooses a single path for each destination subnet. (A trunk is considered a path even though a trunk consists of multiple links). With OSPF Equal Cost Multipath (OSPF-ECMP), routers support optional load-sharing across redundant paths to the same subnet.
Appendix I: Advanced Classifier-Based QoS Released with software version K.14, the Advanced Classifier-Based QoS provides: • A finer granularity than globally configured features for classifying network traffic (IPv4 or IPv6) into classes that can be used in cross-feature software configurations • Traffic selection based on multiple match criteria: – IP source address (IPv4 and IPv6) – IP destination address (IPv4 and IPv6) – Layer 2 802.
Appendix J: Server-to-Switch Distributed Trunking Distributed Trunking is a link aggregation technique where two or more links across two switches are aggregated together to form a trunk. This feature overcomes the limitation in IEEE 802.3ad that specifies all links of a trunk have to be from a single switch. Distributed Trunking improves resiliency and load balancing in a layer 2 network. Distributed Trunking (DT) is included in switch software starting with version K.14.
• ISC port can be an individual port or a manual LACP trunk, but a dynamic LACP trunk can’t be configured as an ISC port. • Maximum of 8 links in a DT trunk across two switches is supported with a maximum of 4 links per DT switch • The current limitation of 60 manual trunks in a switch will now include DT manual trunks too. • One ISC is supported per switch for a maximum of 60 DT trunks supported in the switch. • Spanning Tree Protocol is disabled (i.e., PDUs are filtered) on DT ports.
LED State Indication Blinking (orange) If DIMM, Fault, and Self Test LEDs are blinking, DIMM failed self-test. If DIMM and Fault LEDs are blinking, an operational fault has occurred. If blinking at a fast rate, an operational alert occurred and is unresolved. On (green) Flash Card status is known and fault free. Off Flash Card status is unknown. Blinking (orange) If Flash, Fault, and Self Test LEDs are blinking, Flash Card failed self-test.
Modules A, B, C, D, E, F, G, H, I, J, K, L On (green) A module is installed in the switch module slot corresponding to the letter and the module is undergoing or has passed self-test. This also occurs when you install a module when the switch is already powered on (“hot swap”). Off A module is not installed in the switch module slot corresponding to the letter. Blinking (orange) The module status LED flashes very briefly when a module is being hot swapped.
The LED status indicators for the HP ProCurve Switch 5400zl series switch modules are described in the following table.
LED State Indication Temp On (green) Internal temperature is normal. Blinking (orange) An over temperature condition has been detected. On (green) Normal operation. Blinking (orange) One of the unit’s fans has failed. The switch Fault LED will be blinking simultaneously. On (green) If any ports are supplying PoE power. Off If no ports are supplying PoE power. Should be off only during the boot process. Blinking (orange) If any port has an internal hardware failure, blinks once every 1.
LED State Indication PoE (green) Indicates which ports are supplying power: • If the Mode LED is on, the port is providing PoE power. • If the Mode LED is off, the port is not providing PoE power. • If the Link LED is on, the port is enabled for PoE. • If the Link LED is off, the port is disabled for PoE. • If the Link LED is blinking, the port has an error or the port is denied power due to insufficient power.
The switches normally ship with a rack-mounting kit that allows installation into a two-post, 19-inch data communications rack. If installation into a 10K four-post 19-inch rack or a four-post rack meeting the standard EIA unit of measurement is desired, a rack-mounting kit is available providing rails that give sturdy support for the switch along its entire length. The table below lists various part numbers and FRUs for the HP ProCurve Switch 3500yl and 6200yl series.
The table below lists the part numbers of power cords that can be used with the HP ProCurve Switch 5400zl, 3500yl, and 6200yl series products. The power cords available for these switches are sized for the increased current that can be drawn, meeting the needs of PoE. As a result, these power cords may not be found in a typical environment, and power cords “borrowed” from other products will not work in most instances.
