ProCurve Networking by HP ProCurve Switch 5300xl Series Reviewers Guide ProCurve 5300xl Series Switches ................................................................................... 4 Background ................................................................................................................ 4 ProCurve Networking ................................................................................................ 4 Product Overview ..........................................................
Bandwidth Management ....................................................................................... 11 Network Management .......................................................................................... 11 Redundancy ....................................................................................................... 11 Service and Support ............................................................................................ 12 High Availability ...................................
Telephone Support .............................................................................................. 32 Optional Support Services .................................................................................... 32 Appendix ................................................................................................................. 33 ProCurve Networking Adaptive EDGE Architecture™ .................................................... 33 ProCurve Switch Positioning.........................
ProCurve 5300xl Series Switches ProCurve 5372xl Switch ProCurve 5348xl Switch Background This ProCurve 5300xl Switch Series Reviewer’s Guide will help network engineers at computer trade publications, resellers and end-user sites evaluate the merits of the ProCurve 5300 switches. ProCurve Networking ProCurve Networking has an extensible line of products working together to provide the control network administrators need to deliver the network uptime and performance that their organizations require.
Product Overview The ProCurve 5300xl Series Switches offers scalable layer 2, 3 and 4 switching in compact 4 or 8 slot modular form factors. The 5300xl Series Switches include the 4-slot Switch 5304xl and its bundles, the Switch 5348xl and the Switch 5304xl-32G, and the 8-slot Switch 5308xl and its bundles, the Switch 5372xl and the Switch 5308xl-48G. Any of the Switch 5300xl modules can be put in any of the 5300xl Series slots.
F-Chip CPU Interface Management CPU Subsystem Cross Bar Fabric Fabric Buffer 9.6 Gbps backplane link 8 Fabric Ports N-Chip N-Chip Fabric Interface CPU Table Memory Input Memory Output Memory Memory Subsystem Fabric Interface CPU Programmable Look-up Table Memory Classifier Input Memory 24 10/100 MACs 4 GbE MACs Output Memory Programmable Look-up Memory Subsystem Classifier 24 10/100 MACs 4 GbE MACs ... Figure 1.
This programmable functionality was originally designed and implemented in the popular ProCurve Switch 4000M switch family and was used to give the ProCurve Switch 4000M new ASIC-related features well after initial release of the product. Customers with existing units could benefit from the new features via a free software download. The customer’s investment in the Switch 4000M was preserved by providing new functionality not otherwise possible without the ASIC programmability.
evenly across the number of ports on the module. For example, the Switch xl 100/1000-T module, which has 4 100/1000 ports, has 4096 ÷ 4 = 1024 outbound packet buffers per port, whereas the Switch xl 10/100Base-TX module, which has 24 10/100 ports has 4096÷24 = 170 outbound packet buffers per port. The QoS queues for each port are then represented by their weighted percentage.
TotalRxFrames 14285711648 8108112000 4347829856 2255634400 1149426432 923077824 780229824 TotalLoss(%) 0.000 0.000 0.000 0.000 0.000 0.000 0.000 100BT Ports Port pairs active, full duplex: 192 = 19.
Features and Benefits Feature Set Summary High Availability • IP Routing Features: RIP (v1, v2, and v1 compatible v2) support. OSPF v2 and OSPF ECMP (Equal Cost Multi-Path) support. Static IP routes – To manually add routes directly to the routing table.
• Retrict switch console access with local username and password security for manager and operator level access. • Web-based and MAC-based authentication – Protects the network from unauthrorized users or devices. • SSH v1 and v2 – secure remote access to the management functions of the switch via encrypted.
Service and Support • Lifetime warranty (for as long as you own the product) with next business day advanced replacement (available in most countries) • Free lifetime software updates • Free telephone support during business hours. • Optional fee-based services, such as upgrading your warranty to on-site response, or 24X7 phone support.
associated with the DHCP server. With DHCP relay agent information option (option 82), the DHCP servers compliant with RFC 3046 Option 82 operations can use switch identity and client source port information as criteria for selecting the IP addresses. • LLDP (Link Layer Discovery Protocol) – Provides a standard based method for the switches to advertise themselves to adjacent devices and to learn about adjacent LLDP devices. This feature also supports access by SNMP-based network discovery tools.
Figure 2. Switch Meshing Note, however, that routing and Switch Meshing cannot be used in the same switch at the same time. In traditional switched environments, meshed topologies are not allowed without the use of the Rapid or original Spanning Tree Protocol (802.1w or IEEE 802.1D). Spanning Tree detects loops in the topology and logically blocks as many links as necessary to avoid traffic loops. If one of the active links fails, Spanning Tree enables another link to re-establish the path, if possible.
Other ProCurve switches that support Switch Meshing, such as the ProCurve Switch 4000M family, will work together in a mesh with the ProCurve 5300xl Switch Series. There are a few corner case caveats in this type of mixed environment that are covered in the ProCurve 5300xl documentation. The ProCurve 5300xl documentation can be found at: http://www.procurve.com under the Technical Support section.
Prioritization / QoS Quality of Service (QoS) mechanisms in the ProCurve 5300xl Switch Series provide the network manager control over packet flows based on a number of factors. In addition, since the switches can override the priority values in the incoming packets, the network manager can maintain QoS control over inappropriate priority designations coming from users or applications at the end nodes.
If the DSCP is remapped, the 802.1p priority associated with the new DSCP is used to determine the priority queue on the outbound port. In addition, these 802.1p bits will be included in the outgoing packet if VLAN tagging is specified for the outbound port. IEEE 802.1p Priority Support IEEE 802.1Q packet tagging supports both designation of VLAN membership (see the VLAN section below) and packet priority (up to 8 levels and often referred to as 802.1p). Since 802.
connections to new computers, but instead is more likely to regularly connect to the same set of computers. This is in contrast to the fundamental behavior of a rapidly spreading worm, which will attempt many outgoing connections to new computers. For example, while computers normally make approximately one connection per second, the SQL Slammer virus tries to infect more than 800 computers per second.
• Notify and reduce spreading: In this case, the switch temporarily blocks inbound routed traffic from the offending host SA for a “penalty” period and generates an Event Log notice of this action and (if a trap receiver is configured on the switch) a similar SNMP trap notice. When the penalty period expires the switch re-evaluates the routed traffic from the host and continues to block this traffic if the apparent attack continues. (During the re-evaluation period, routed traffic from the host is allowed.
This is in keeping with the typical use of ACLs as a security mechanism. If the automatic denial property is not wanted, the ACL should end with an ACE statement permitting ANY. To assist in writing and editing ACLs, the ACL file can be edited externally and downloaded into the 5300. Note: Filtering of the packets takes places only if an ACL is specified for the static VLAN, if not, no packet filtering happens, which is the default.
ICMP rate-limiting operates on an interface (per-port or per-trunk) basis, and it should be configured to allow the highest expected amount of legitimate inbound ICMP traffic. If an interface experience an inbound flow of ICMP traffic in excess of its configured limit, the switch throttles that traffic, and generates a log messages and an SNMP trap (if an SNMP trap receiver is configured).
ProCurve Identity Driven Management (IDM) ProCurve IDM enables the ProCurve 5300xl Switch Series to adapt to each user individually. The switch behaves appropriately according to each user’s particular access rights, no matter where or when they access the network or what device they are utilizing. Without ProCurve IDM functionality, client traffic is routed by the switch to the RADIUS server through a standard RADIUS protocol.
Port Security - MAC Lockdown The 802.1X standard provides logical security to the network based on a user. There are many times, however, when physical access limitations are desired. The Port Security - MAC Lockdown feature limits physical access to a particular port on the switch by one of two methods: a particular list of MAC addresses (up to 8 addresses per port can be configured), or to the first MAC address the switch sees on that port.
The management VLAN is useful when higher switch security is desired. It prevents general switch function access by anyone other than those on the management VLAN. The management VLAN cannot be designated an XRRP backup VLAN. SNMPv3 Many functions of the ProCurve 5300xl Switch Series can be monitored and the switch configuration can even be changed through the switch’s MIBs. The standard method of querying the switch’s MIBs for network management is through SNMP, the simple network management protocol.
Bandwidth Management Port Trunking – (Link Aggregation) Link Aggregation is the industry term for the ability to combine multiple coterminous links (links that begin at the same point and end at the same point) as one logical link. Link aggregation allows two ProCurve switches to be interconnected by 2-4 of the same type of links, with all links acting as one higher-speed link. Since the number of links in a trunk is configurable, the bandwidth is scaleable to the needs of a particular network.
VLANs can overlap on a single port. For example, it may be advantageous to have a server connected through a single port to be a member of two different VLANs2 such that two different groups of PCs can access the same server, but the two groups of PCs cannot talk directly with each other. IEEE 802.1Q VLAN Support The ProCurve 5300xl Switch Series support the IEEE 802.1Q VLAN tagging standard. The ProCurve 5300xl Switch Series can have multiple VLAN traffic streams share a single physical link. 802.
to the highest-priority traffic). Guaranteed Minimum Bandwidth operates at the port or switch level, with values specified as desired for each priority queue.
Network Management Network management is an important part of a network solution. The various net management solutions available for the ProCurve 5300xl Switch Series are: • Web-based management - Configuration of the individual switch can be done anytime, anywhere through the web server available in each switch, accessible via a standard web browser. • ProCurve Manager (PCM) – A Windows-based network management solution that is included in-box with ProCurve 5300xl Switch Series.
• HP OpenView platforms - If management of a generic (ProCurve and other vendors’ devices) or large (>1500 managed nodes) IP network is needed: NT platform – ProCurve Network Management for OV-NT (J4869B) can be separately purchased to provide direct management of the ProCurve 5300xl Switch Series and other ProCurve products through HP OpenView/NT. For more details see the product information at http://www.procurve.com.
sFlow Support ProCurve 5300xl Switch Series implements a standard based sFlow agent (RFC 3176) for enhanced traffic analysis, and provide a network-wide view of traffic patterns which helps predict traffic congestion and allows the user to plan for future upgrades. When used with network management application like ProCurve Manager Plus, user can monitor overall traffic levels, network segments with the highest traffic, or even the top users within a network segment.
switch makes diagnosing a problem more difficult. Syslog functionality, growing out of the UNIX environment, is a method of sending log entries to a centralized server. This enables system and network administrators to analyze and troubleshoot their entire network from a central location. The ProCurve Switch 5300 Series can send all log entries to a specific server (via an IP address), or send varying severity levels of log entries to different servers.
continue to be used if possible until the replacement unit arrives. This also allows for easy scheduling for when the actual unit swap occurs on the network. An optional upgrade to on-site replacement is also available in most parts of the world. Refer to the warranty statement that ships with the product for more details on warranty coverage. The ProCurve 5300xl Switch Series warranty is industry-leading.
Appendix ProCurve Networking Adaptive EDGE Architecture™ Networks are now being asked to carry many different types of data with differing delivery requirements. Traffic volumes are rising quickly. Security needs are more stringent. And the typical user is demanding a higher level of mobility than ever before. To meet these critical needs ProCurve Networking has developed the ProCurve Networking Adaptive EDGE Architecture.
Traditional Interconnect Core Routing Switches EDGE Switches Basic 4100 Series 5300 Series 6400 Series 10/100/1000 Chassis 4 Slot & 8 Slot Chassis 10/100/1000 4 Slot & 8 Slot PoE Available 10 GbE Stackable 6 CX4 + 2 Flex 6 X2 + 2 Flex 2800 Series Gig Stackable 2600 Series 10/100 Stackable Gig Uplinks PoE Available 3400 Series Stackable 24/48 Gig with optional 2 10 GbE Uplinks 9300m Series 10/100/1000 & 10GbE Chassis 4, 8 & 16 Slot 9400sl Series Gig/10GbE Chassis 8 Slot ProCurve Switch Positionin
Positioning for the ProCurve 5308xl Switch The ProCurve 5308xl Switch is a 5U layer 2/3/4, eight slot chassis switch targeted primarily at high-performance access tier applications where higher port density is needed. The ProCurve 5308xl Switch provides up to 128 10/100/1000 Ethernet ports or 192 10/100 ports with ProCurve Auto-MDIX ports. Voice, video and data ready, the Switch 5300xl series offers extensive prioritization features that bring full convergence down to the desktop.
To find out more about ProCurve Networking products and solutions, visit our web site at www.procurve.com © 2006 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty.
