Datasheet
7
Layer 2 Switching (continued)
• LLDP-MED with VoIP integration
• IEEE 802.1p: CoS prioritization
• IEEE 802.1Q: VLAN tagging
• IEEE 802.1X: Port Access Control
• IEEE 802.1ak: Multiple Registration Protocol
• IEEE 802.3: 10BASE-T
• IEEE 802.3u: 100BASE-T
• IEEE 802.3ab: 1000BASE-T
• IEEE 802.3z: 1000BASE-X
• IEEE 802.3ae: 10-Gigabit Ethernet
• IEEE 802.3ba: 40-Gigabit Ethernet
• IEEE 802.3af: Power over Ethernet
• IEEE 802.3at: Power over Ethernet Plus
• IEEE 802.3x: Pause Frames/Flow Control
• IEEE 802.3ah: Ethernet in the First Mile
Spanning Tree
• IEEE 802.1D: Spanning Tree Protocol
• IEEE 802.1s: Multiple instances of Spanning Tree Protocol (MSTP)
• Number of MST instances supported: 64
• Number of VLAN Spanning Tree Protocol (VSTP) instances
supported: 510
• IEEE 802.1w: Rapid reconfiguration of Spanning Tree Protocol
Link Aggregation
• IEEE 802.3ad: Link Aggregation Control Protocol
• 802.3ad (LACP) support:
- Number of LAGs supported: 1,000
- Maximum number of ports per LAG: 112
• LAG load-sharing algorithm bridged or routed (unicast or
multicast) trac:
- IP: S/D IP
- TCP/UDP: S/D IP, S/D Port
- Non-IP: S/D MAC
• Tagged ports support in LAG
Layer 3 Features: IPv4
• Maximum number of ARP entries: 32,000
• Maximum number of IPv4 unicast routes in hardware: 32,000
• Maximum number of IPv4 multicast routes in hardware: 8,000
• Routing protocols: RIPv1/v2, OSPF, BGP, IS-IS
• Static routing
• Routing policy
• Bidirectional Forwarding Detection (BFD)
• Layer 3 redundancy: Virtual Router Redundancy Protocol (VRRP)
Layer 3 Features: IPv6
• Maximum number of Neighbor Discovery (ND) entries: 20,000
(shared with IPv4)
• Maximum number of IPv6 unicast routes in hardware: 18,000
• Maximum number of IPv6 multicast routes in hardware: 4,000
• Routing protocols: RIPng, OSPFv3, IPv6, ISIS
• Static routing
Access Control Lists (ACLs) (Junos OS Firewall Filters)
• Port-based ACL (PACL): Ingress and egress
• VLAN-based ACL (VACL): Ingress and egress
• Router-based ACL (RACL): Ingress and egress
• ACL entries (ACE) in hardware per system:
- Port-based ACL (PACL) ingress: 3,500
- VLAN-based ACL (VACL) ingress: 3,500
- Router-based ACL (RACL) ingress: 7,000
- Egress shared across PACL, VACL, and RACL: 1,000
• ACL counter for denied packets
• ACL counter for permitted packets
• Ability to add/remove/change ACL entries in middle of list (ACL
editing)
• L2-L4 ACL
• 802.1X port-based
• 802.1X multiple supplicants
• 802.1X with VLAN assignment
• 802.1X with authentication bypass access (based on host MAC
address)
• 802.1X with VoIP VLAN support
• 802.1X dynamic ACL based on RADIUS attributes
• 802.1X Supported Extensible Authentication Protocol (EAP types):
Message Digest 5 (MD5), Transport Layer Security (TLS), Tunneled
TLS (TTLS), Protected Extensible Authenticated Protocol (PEAP)
• MAC authentication (RADIUS)
• Control plane DoS protection
High Availability
• Redundant, hot-swappable power supplies
• Redundant, field-replaceable, hot-swappable fans
• Graceful Routing Engine switchover (GRES) for Layer 2 hitless
forwarding and Layer 3 protocols on RE failover
• Graceful protocol restart (OSPF, BGP)
• Layer 2 hitless forwarding on RE failover
• Online insertion and removal (OIR) uplink module
Quality of Service
• Layer 2 QoS
• Layer 3 QoS
• Ingress policing: 1 rate 2 color
• Hardware queues per port: 12
• Scheduling methods (egress): Strict priority (SP), shaped deficit
weighted round-robin (SDWRR)
• 802.1p, DiCode (DSCP)/IP Precedence trust and marking
• L2-L4 classification criteria: Interface, MAC address, Ethertype,
802.1p, VLAN, IP address, DSCP/IP Precedence, TCP/UDP port
numbers, and more
• Congestion avoidance capabilities: Tail drop
Multicast
• IGMP: v1, v2, v3
• IGMP snooping
• PIM-SM, PIM-SSM, PIM-DM
Services and Manageability
• Junos OS CLI
• Web interface
• Out-of-band management: Serial; 10/100/1000BASE-T Ethernet
• ASCII configuration
• Rescue configuration
• Configuration rollback
• Image rollback
• LCD management
• Element management tools: Juniper Networks Network and
Specifications (continued)