Allied Telesis Corporate Template 2011

AlliedWare Plus

1/108

►

► AlliedWare AlliedWare Plus ► AlliedWare Plus ► AlliedWare Plus ► AlliedWare Plus ► AlliedWare Plus 5.4.7 ► AlliedWare Plus

2/108

►

► (Cooperative Multitasking) ►

Allied Telesis AlliedWare - Allied Telesis AlliedWare Plus Linux / Cisco IOS - Cisco Modular IOS IOS, QNX Catalyst 6500 Cisco IOS XE IOS, Linux ASR1000, Catalyst 4500 Cisco IOS XR QNX CRS-1 Extreme Networks ExtremeWare - Extreme Networks ExtremeXOS Linux Force10 (Dell) FTOS NetBSD Juniper JUNOS FreeBSD / Huawei (H3C) VRP (Comware) VxWorks /

3/108

► Pre-emptive Multitasking Co-operative Multitasking Linux ►

Switch)

* Symmetric ► AlliedWare Plus Multiprocessing (SMP) Linux 2.6 Linux Linux 3. .x, -1 Linux 4. .x

4/108 AlliedWare AlliedWare Plus

AlliedWare AlliedWare Plus ► ► Allied Telesis ► ► ► ►

► ►

► ► debugging)

► ►

5/108 AlliedWare Plus ► Linux Kernel .

. . . TCP/IP Third-party code . ► Third-party Code .

► Open Source Code . openSSH, openSSL, DHCP, BusyBox ► Allied Telesis Code . AMF, EPSR, VCStack, Triggers, QoS .

6/108 AlliedWare Plus

(CLI)

7/108 AlliedWare Plus

NGFW X- VPN Firewall AR Firewall, NAT, VPN, Antivirus, IDS/IPS, DPI

CentreCOM IE

DIN-

8/108 AlliedWare Plus

SBx908 XEMv2 SBx8100 CFC960

x610 x930 XS900MX DC2552XS/L3

GS970M

GS900MX x510 SBx8100 CFC400 x230

IX5-28GPX x210 FS980M x310

AR2010V AR2050V AR3050S AR4050S IE200 IE300 IE510-28GSX

9/108 AlliedWare Plus

IPv6 PoE XEM-2XT SBx8100, x510, x210, XEM-24T RIPng LLDP-MED PoE+ , x600 PIM-SMv6, MLDv2 MLDv1 Snooping Voice VLAN TACACS+ DHCPv6, VRRPv3, BGP4+ GUI Roaming VRF-Lite OSPFv3 Authentication DNS Relay Allied Telesis Management OSPFv3 Framework (AMF)

5.2.1 5.2.2 5.3.1 5.3.2 5.3.3 5.3.4 5.4.1 5.4.2 5.4.3

2008 2008 2008 2009 2009 2010 2011 2012 2013

SBx908 EPSR Enhanced VCStack Fast Failover VCStack Long Distance NAC Recovery XEM-2XP XEM-2XS, XEM-12v2 Policy-Based Routing sFlow EPSR Super Loop Prot LLDP DHCP Snooping PIM-SSM Web) Query Solicitation Gracefull Restart DDM SFP/SFP+/XFP Loop Protection RIP, RIPng, OSPF, BGP DNS Realay, DHCP BGP Relay, NTP IPv6 EEE 802.3az

10/108 AlliedWare Plus In-Service Software Upgrade SBx8100 AT-x9EM/XT4 CFD) AMF (VAA) IE300 AMF AMF Starter ( 3 AMF ) AMF Active Fiber Monitoring SBx81XLEM EPSR ( ) UDLD VLAN Mirroring (RSPAN) RESTful API

5.4.4 5.4.4-1 5.4.5 5.4.5-2 5.4.6 5.4.6-1

2014 2014 2015 2015 2016 2016

VCStack Plus AMF Controller AMF SBx8100 SBx8100 AMF Cloud AMF Wireless Controller Amazon Web Services (AWS) SBx8100, SBx908 QoS, PPPoE AC AMF WAN OpenFlow x930, x510, Q-in-Q, RIP, DHCP relay DC2552XS/L3 OpenFlow SBx8100 SBx908 VLAN : x310 FC960 XS16, x310, Dual Microsoft NLB Clustering x230, IE200, DC2552XS/L3 rate SFP+ CentreCOM

11/108 AlliedWare Plus

(Multi-tenant) AMF ERPS G.8032 PTP Transparent Clock (IEEE1588) RJ45 S900MX Dynamic DNS OpenVPN AR4050S

5.4.6-2 5.4.7

2016 2017

VRF-Lite AMF TACACS+ High Availability Network Power (HANP)

(Per-VLAN ACL)

12/108 AlliedWare Plus v5.4. v5.4.3 AlliedWare Plus v5.4.2 AlliedWare Plus v5.4.3 ► sFlow ► VLAN Double Tagging (Q-in-Q) ►Allied Telesis Management ► EPSRing ► Private VLANs Framework (AMF) ► EPSRing Superloop Protection ► LLDP-MED

► VCStack with Fast Failover ► IGMP, IGMP Proxy ► ► VCStack Long-Distance-Stacking ► PIM, PIM-SSM SBx8100, x210, XEM-24T ► Virtual Routing and Forwarding ► BGP-4 ASN (VRF-Lite) ► IPv6: ► Policy Based Routing . PIMv6 ► DNS-relay, DHCP-relay ► xSTP . MLDv2 (Querier) ► IPv6, OSPFv3, RIPng, MLDv1 ► Digital Diagnostics Monitoring . VRRPv3 ► PoE+ (DDM) for SFP/SFP+/XFP . DHCPv6 ► Loop protection ► Triggers . ► RADIUS/TACACS+ ► Eco-friendly mode OSPFv3 ► Tri-Authentication ► Energy Efficient Ethernet (802.3az) . BGP4+ (802.1x, MAC-based, Web) ► Graceful restart (BGP,OSPF,RIP) ►IPv6 ► DHCP Snooping ►Find Me ( )

13/108 AlliedWare Plus v5.4.4

► VCStack Plus 2- SBx8100 ► AT-SBx81CFC960 CFC960 SBx8100

► ► AMF WAN ► AT-SBx81XS16 AMF 10G SFP+ SBx8100 ► In-Service Software Upgrade (ISSU) ► IE200 ► DC2552XS/L3 - CFC960 ► - : x310, x230

14/108 AlliedWare Plus v5.4.4 SBx81CFC960 & SBx81XS16 SBx8100 ► SBx81CFC960 960 , 1.2 , 2 RAM, 256M 80 bidirectional), 160 - 4 5.4.4 SBx8112 1.92 T ►

SFP+ Direct Attach 8 SBx8106 ( ) CFC960

15/108 AlliedWare Plus v5.4.4 VCStack Plus SB 8100, SBx81CFC960 ► 2 SBx8100 ► 4 SFP+ ( bidirectional) ► CFC960 ► CFC960 ►

4 x SFP+

G SFP+ Direct Attach

16/108 AlliedWare Plus v5.4.4 VCStack Plus

AT-SBx8112 AT-SBx8106 • •

• xSTP, VRRP • LAG)

•

17/108 AlliedWare Plus v5.4.4 VCStack Plus

AT-SBx8112 .

SFP+ .

18/108 AlliedWare Plus v5.4.4 In-Service Software Upgrade

SBx8100

. ISSU major

. - CFC960

. - .

1. 2. 3.

(Failover

19/108 AlliedWare Plus v5.4.4 CFL)

awplus# test cable-diagnostics tdr interface port1.0.1,port1.0.2 Cable Fault Link will go down while test is in progress. Continue? (y/n): Locator y Select y to continue. Time-Domain Reflectometry (TDR) awplus# y . Test started. This will take several seconds to complete. Use "show test cable-diagnostics tdr" to print results.

. awplus# show test cable-diagnostics tdr Last test run at Mon Sep 08 12:14:01 2014 ------Port Pair Length Status . ------1.0.1 A 53 +/- 2 m Short TX B 51 +/- 2 m Short open) C 50 +/- 2 m Open D 50 +/- 2 m Open

1.0.2 A - OK B - OK C 5 +/- 5 m Open D 5 +/- 5 m Open

20/108 AlliedWare Plus v5.4.5

. AMF Controller (area -

. Wireless Manager Unified Wireless Controller

. L3 . x930

. dual-rate

. . Next- Generation Firewall (NGFW) . AR3050S AR4050S . PIM- . CentreCOM GS900MX/MPX

21/108 AlliedWare Plus v5.4.5 x930 L3 , 28 ► - (VCStack, VCStack LD) ► StackQS c 2 QSFP+ 40G ► Allied Telesis Management Framework (AMF) AMF Master, 4 ► Wi-Fi Unified Wireless Controller (UWC) TQ * ► VLAN IP- ► 64000 - L2 FDB, 32000 IP- L3 ► RIP OSPF (64 ) VRRP RIPng, BGP v4/4+, OSPF v2/3, PIM, VRF-Lite, Q-in-Q ► IEEE 802.3at PoE+ 1480 c 2- 4 (30 ) 48 ► -

* 22/108 AlliedWare Plus v5.4.5 x930

► AT-x930 2 x SFP+ 2 x SFP+

00 0 PoE 00 450 c PoE

4 SFP+ 2 SFP+ 1G 10G ( SFP/SFP+) 2 SFP+ (1G/10G) 10G ( 40G ) eth0 USB- SD- 7- PoE+

Eco-Friendly USB

23/108 AlliedWare Plus v5.4.5 x930

SFP+ *

2 x SFP+ AT-x930-28GTX 24 x 10/100/1000T 2/4 x 1G/10G 2 AC/DC 2 QSFP+

2 x SFP+ AT-x930-28GPX 24 x 10/100/1000T POE+ 2/4 x 1G/10G 2 AC 2 QSFP+

2 x SFP+ AT-x930-52GTX 48 x 10/100/1000T 2/4 x 1G/10G 2 AC/DC 2 QSFP+

2 x SFP+ AT-x930-52GPX 48 x 10/100/1000T POE+ 2/4 x 1G/10G 336 2 AC QSFP+

24 x 10/100/1000T 2 x SFP+ AT-x930-28GSTX 2/4 x 1G/10G 28 2 AC/DC 24 x 100/1000 SFP 2 QSFP+

24/108 AlliedWare Plus v5.4.5 x930

AT-x9EM/XT4 AT-PWR150 10GBASE-T, AC 150 , a PoE AT-PWR250

PoE

25/108 AlliedWare Plus v5.4.5 x930

SFP+,

AT-SP10TW1 AT-SP10TW3 AT-SP10TW7 Direct Attach , 3

AT-SP10SR AT-SP10LR AT-SP10LR20 AT-SP10ER40 ..

26/108 AlliedWare Plus v5.4.5 x930

AT-StackQS ► 2 QSFP+ 40 ► 16 AT-StackQS 40G x 2) ► - ► QSFP+ (AT-QSFPSR4, AT-QSFPLR4) ► SFP+

AT-QSFP1CU ► Direct Attach G

27/108 AlliedWare Plus v5.4.5 x930

PSU 1 PSU 2 POE 15.4 30 POE 3 POE+ 4 PWR800 - 370 24 12 PWR800 PWR800 740 POE POE+ 24 24 AT-x930-28GPX PWR800 PWR800 740 24 12 PWR1200 - 740 24 24 PWR1200 PWR1200 1480 24 24 PWR800 - 370 24 12 PWR800 PWR800 740 48 24 PWR800 PWR800 740 24 12 AT-x930-52GPX PWR1200 - 740 48 24 PWR1200 PWR1200 1480 POE POE+ 48 48 PWR1200 PWR1200 1480 48 24

28/108 AlliedWare Plus v5.4.5 Wi-Fi SBx8100 SBx908 x930 POE

AT- x310 POE AT-SBx8100 AT -x930 POE UWC CLI UWC CLI

AT-TQ2450 AT-TQ3600 AT-TQ4600 AT-TQ4400e

wireless enable discovery vlan-list 10 ip address 192.168.10.1/24 network 20 ssid Guest vlan 20 security mode none ap profile 1 hwtype tq4600 radio 1 vap 0 network 20 29/108 AlliedWare Plus v5.4.5 AMF

► Area) SBx8100 AMF, Area 0 ► AMF Controller 60 AMF AMF Master Controller Area 0 ► AMF 7320 ► AMF Controller

area links

AMF AMF AMF Master 1 Master 2 Master 60 SBx8100 SBx8100 SBx8100

Area 1 Area 2 Area 60

30/108 AlliedWare Plus v5.4.5 AR3050S/AR4050S

1989 1995 1998 2005 2010 Packet Filter Stateful Inspection Unified Threat Next-Generation Firewall Firewall VPN, QoS Management Firewall

ARxxx NGWF AR3050S/AR4050S AlliedWare AlliedWare Plus

► Packet Filter Firewall ► Unified Threat Management (UTM) L4 L7 OSI ( TCP/UDP) OSI ( ), Deep Packet Inspection (DPI) ► Stateful Inspection Firewall Intrusion Prevention System (IPS), Anti-Virus, Anti-Spam, VPN, (URL) L4 ► Next-Generation Firewall (NGFW)

UTM

31/108 AlliedWare Plus v5.4.5 AR3050S/AR4050S ► Firewall c DPI AT-AR3050S AT-AR4050S ► Application Web control WAN, 10/100/1000T X SFP 2 2 ► IDS/IPS LAN, 10/100/1000T 8 8 ► IP Reputation

► Malware 0 - 500 0 - 500 ► VPN   ► IPv4 IPv6 RIP RIPng   ► NAT OSPFv4 OSPFv6   ► BGP4 BGP4+   QoS PIMv4 PIMv6   ► PPPoE   DHCPv4/v6   ► WAN- VRRP VRRPv3   ► USB- QoS, Traffic shaping   3G/4G Web, CLI, SSH/Telnet, SNMP, AMF   ► AMF -  ►   AMF Master - 

32/108 AlliedWare Plus v5.4.5 AR3050S/AR4050S

210 - RU)

8 LAN 2 WAN SD- USB 10/100/1000T SFP T 3G/4G

33/108 AlliedWare Plus v5.4.5 AR3050S/AR4050S ► Firewall c Deep Packet Inspection (DPI)

(Application Control) ► URL (Web Control)

► Intrusion Detection/Prevention System (IDS/IPS)

► IP Reputation IPS IP

IP Reputation ► Antivirus, Malware Protection adware, spyware c

34/108 AlliedWare Plus v5.4.5 AR3050S/AR4050S

AT-AR3050S AT-AR4050S 2- 4-

- 4 750 1,900

700 1,800

100,000 300,000 3,600 12,000 IPS 220 750 IP Reputation 350 1,000 Malware 300 1,300 protection VPN 450 1000 IPsec VPN 50 200 SSL VPN 100 200

35/108 AlliedWare Plus v5.4.5 CentreCOM GS900MX/MPX ► L2+ 510) L2+

xSTP, LACP, DHCP Snooping, Loop Protection, Voice VLAN, ACL

- (VCStack) C Direct Attach SP10TW1 EPSR Allied Telesis Management Framework UDLD Ethernet (Energy Efficient Ethernet EEE, 802.3az) Jumbo K Ethernet (PoE) IEEE 802.3at PoE+ 70

36/108 AlliedWare Plus v5.4.5 CentreCOM GS900MX/MPX

10/100/1000T

100/1000X SFP POE+ 10/100/1000T

AT-GS924MX 24 2 2 x SFP+ - 92 1 AC

AT-GS948MX 48 2 2 x SFP+ - 140 1 AC

AT-GS924MPX 24 2 2 x SFP+ 24 92 1 AC

AT-GS948MPX 48 2 2 x SFP+ 48 140 1 AC

POE 7.5 15.4 30

POE 2 POE 3 POE+ 4 AT-GS924MPX 370 24 24 12 AT-GS948MPX 370 48 24 12

37/108 AlliedWare Plus v5.4.6

► Allied Telesis Management Framework (AMF) ► AMF Cloud AMF Master/Controller ► SBx81XLEM Amazon Web Services (AWS) SBx8100 ► Vista Manager ► QoS), PPPoE AC Next-Generation Firewall (NGFW) VPN Firewall ► 10G ► Q-in-Q CentreCOM XS900MX relay . ► 100M ► OpenFlow CentreCOM FS980M

► Management ACL) ► ► VPN Firewall ► Microsoft NLB Clustering AR2010V AR2050V ► ► VLAN Mirroring (RSPAN) IE300

38/108 AlliedWare Plus v5.4.6 G

SBx8100 SBx81CFC960* ► SBx81XLEM 1 X SFP

SBx81XLEM/Q2 G QSFP+) SBx81XLEM/XS8 (8 G SFP+) SBx81XLEM/XT4 (4 G RJ45) SBx81XLEM/GT8 (8 RJ45) * SBx81XLEM, K MAC, 16K IPv4 prefixes 39/108

AlliedWare Plus v5.4.6 CentreCOM XS900MX ► G 16K - L3 16 / RIP

G 40G AMF

EPSR 210 - RU) 0 RJ45 SFP/SFP+ 100/1000/10GBASE-T 1G/10G AT-XS916MXT 12 4 320Gbps 238Mpps

AT-XS916MXS 4 12 320Gbps 238Mpps

40/108 AlliedWare Plus v5.4.6 CentreCOM FS980M ► 100M L2+

xSTP, LACP, DHCP Snooping, Loop Protection, Voice VLAN, ACL

- (VCStack)* C Direct Attach SP10TW1 EPSR

Allied Telesis Management Framework UDLD Ethernet (PoE) IEEE 802.3at PoE+ 75 00C 500C Jumbo K * 41/108 AlliedWare Plus v5.4.6 CentreCOM FS980M

10/100/1000T POE+ 100/1000X SFP 10/100TX

AT-FS980M/9 8 1 - - 1 AC AT-FS980M/18 16 2 - - 1 AC AT-FS980M/28 24 4 2 x SFP - 1 AC AT-FS980M/52 48 4 2 x SFP - 1 AC AT-FS980M/9PS 8 1 - 8 1 AC AT-FS980M/18PS 16 2 - 16 1 AC AT-FS980M/28PS 24 4 2 x SFP 24 1 AC AT-FS980M/52PS 48 4 2 x SFP 48 1 AC

POE 7.5 15.4 30

POE 2 POE 3 POE+ 4 AT-FS980M/9PS 150 8 8 4 AT-FS980M/18PS 250 16 16 8 AT-FS980M/28PS 375 24 24 12 AT-FS980M/52PS 37 48 24 12

42/108 AlliedWare Plus v5.4.6 AR2050V

4 LAN USB 10/100/1000T 1 WAN 10/100/1000T 3G/4G

210 - RU)

43/108 AlliedWare Plus v5.4.6 AR2010V

1 WAN DC 10/100/1000T

USB

3G/4G 1 LAN 10/100/1000T

140

44/108 AlliedWare Plus v5.4.6 AR2010V AR2050V

► Firewall AT-AR2010V AT-AR2050V ► IDS/IPS WAN, 10/100/1000T 1 1 ► VPN LAN, 10/100/1000T 1 4 ► IPv4 IPv6 AC DC AC 0 - 500 0 - 500 ► NAT   ► RIP RIPng   QoS OSPFv4 OSPFv6   ► BGP4 BGP4+   PIMv4 PIMv6   ► WAN- PPPoE   (AR2050V) DHCPv4/v6   ► USB- VRRP VRRPv3   3G/4G QoS, Traffic shaping   ► AMF Web, CLI, SSH/Telnet, SNMP, AMF   - - ► - -

DIN-  -

45/108 AlliedWare Plus v5.4.6 AMF GUI

► ► AMF ► ► ► AMF ►

46/108 AlliedWare Plus v5.4.6 AMF Guest Node ( )

Master 2.

Member

1. AMF, DHCP Snooping) Guest Node ( )

47/108 AlliedWare Plus v5.4.6 AMF

V i r t u a l m a s t e r controller Virtual m a s t e r controller

m a s t e r

AMF Master/Controller Amazon Web Services (AWS) 48/108 AlliedWare Plus v5.4.6 AMF

AMF AMF

AMF AMF Starter Master Controller, FS980M, GS900MX/MPX, XS900MX  - - - x210, IE200  - - - x230  - - - x310, IE300  - - - IX5-28GPX, IE510  - - - x510, x510L, x510DP   - x610   - x900  - - - x930   - DC2552XS/L3   - SwitchBlade x908   - SwitchBlade x8100 CFC400   - SwitchBlade x8100 CFC960   80, 120, 300 10, 30, 6 NGFW AR4050S   - NGFW AR3050S  - - - VPN Firewall AR2050V, AR2010V  - - -   10 - 10 - 6

49/108 AlliedWare Plus v5.4.6 SDN-Ready Allied Telesis, Open Networking Foundation (ONF), Control Plane, SDN Controller OpenFlow v1.3 AMF.

Management Plane Management Plane SSH/Telnet, SNMP, SSH/Telnet, SNMP, GUI, NMS, CLI GUI, NMS, CLI

Control Plane Control Plane STP, OSPF, SDN STP, OSPF, Controller BGP,

Data Plane Data Plane ( ( ) )

* DC2552XS/L3, x310, x230 50/108 AlliedWare Plus v5.4.6 VLAN Translation (Mapping)

► VLAN

VLAN ID ►

Switch_B# configure terminal awplus(config)# vlan database ► A, B, C awplus(config-vlan)# vlan 200 B awplus(config)# interface port1.0.1 VID 100 VID 300 VLAN 200 awplus(config-if)# switchport mode trunk awplus(config-if)# switchport trunk allowed vlan add 200 awplus(config-if)# switchport vlan translation vlan 100 vlan 200 ► awplus(config)# interface port1.0.2

awplus(config-if)# switchport mode trunk ► IE510, awplus(config-if)# switchport trunk allowed vlan add 200 IX5, awplus(config-if)# switchport vlan translation vlan 300 vlan 200

51/108

AlliedWare Plus v5.4.6 VLAN Mirroring (RSPAN)

Switch_B sw_b# conf t sw_b(config)# vlan database sw_b(config-vlan)# vlan 5 mode remote-mirror-vlan sw_b(config-vlan)# interface port1.0.28 Switch_B sw_b(config-int)# switchport mode trunk sw_b(config-int)# switchport trunk allowed vlan add 5 sw_b(config-int)# interface port1.0.23 sw_b(config-int)# switchport remote-mirror-egress vlan 5

VLAN 5 Switch_A sw_a# conf t sw_a(config)# vlan database Sw_a(config-vlan)# vlan 5 mode remote-mirror-vlan sw_a(config-vlan)# interface port1.0.28 sw_a(config-int)# switchport mode trunk sw_a(config-int)# switchport trunk allowed vlan add 5 Switch_A sw_a(config-int)# remote-mirror interface port1.0.10, port1.0.22 direction both vlan 5

52/108 AlliedWare Plus v5.4.7

► AMF Cloud - (Multi-tenant

► CentreCOM FS980M ► ► Non-stop PoE PoE IE-

► Ethernet Ring Protection Switching

► ► Precision Time Protocol Transparent Clock (IEEE 1588) IE- ► NGFW, VPN Firewall: Dynamic DNS (DDNS) Double Subnet-based CentreCOM GS970M NAT OpenVPN - - OpenVPN Unified Threat Management (UTM)

53/108 AlliedWare Plus v5.4.7 CentreCOM GS970M ► 1G L2+

Unidirectional Link Detection (UDLD)

xSTP, LACP, DHCP Snooping, Loop Protection, Voice VLAN, ACL EPSR Allied Telesis Management Framework (AMF) Web) Ethernet (Energy Efficient Ethernet EEE, 802.3az) VLAN K Jumbo 10 IEEE 802.3at PoE+ 0

SD- 0 0 0 C 50 C AT-RKMT-J05, 13, 14*

* /28 x230 54/108 AlliedWare Plus v5.4.7 Multi-tenant AMF Cloud ► Virtual AMF Appliance (VAA) ► ,

► AlliedWare Plus

► / - AMF ► - ►

► VAA

55/108 AlliedWare Plus v5.4.7 ERPS (G.8032 v2)

► ITU

► EPSR ► G.8032v2) ► VLAN Ring-Automatic Protection Switching (R-APS)

► VLAN Ring Protection Link (RPL

► RPL RPL Owner RPL Neighbor ► ( LAG) East West

56/108 AlliedWare Plus v5.4.7 PTP Transparent Clock IEEE1588 ► Precision Time Protocol (PTP) Master Slave Ethernet ► NTP,

► , Ethernet ( , ) ► Transparent Clock

Residence Time (RT) Correction Field (CF) ► Slave ∑CF Master

57/108 AlliedWare Plus v5.4.7

x230 x310 x510 x610 x930 DC2552XS/L3 SBx908 SBx8100 CFC400 SBx8100 CFC960 RIP

OSPF-64 OSPF-Full FL-x310- FL-x510- FL-x610-01 FL-x930-01 FL-DC25-01 FL-SBx9-01 FL-CFC400-01 FL-CFC960-01 PIMv4-SM, DM & SSM 01 01 EPSR Master UDLD UDLD BGP4 VRF Lite VLAN Double Tagging (Q-in-Q) QinQ RIPng OSPFv3 FL-x610-02 FL-SBx9-02 MLDv1(Snooping), v2(Querier) PIMv6-SM, SSM RADIUS Server 5000 Users * FL-RADIUS- FL-RADIUS- RADIUS Server 1000 NAS * FULL FULL AMF Master 20- AM20 AM40, 80, 120 AM40 AM40, 80 AM80, 120, 300 AMF Controller 10,30, 60 AC10, 30, 60 VCStack Plus FL-CF9-VCSPL PTP (IEEE 1588) ERPS (G.8032) G8032 G8032 VLAN Translation (Mapping) OpenFlow OpenFlow * 100 NAS (Network Access Server) 58/108 AlliedWare Plus v5.4.7

CentreCOM (FS980M, GS970M, IE200 IE300 IE510 GS900MX/MPX, XS900MX)

C RIP FL-IE3-L3-01 FL-IE5-L3-01 OSPF PIMv4-SM, DM & SSM VRRP EPSR Master FL-IE2-L2-01 FL-IE3-L2-01 FL-IE5-L2-01 UDLD UDLD VLAN Double Tagging (Q-in-Q) RIPng OSPFv3 PIMv6-SM, SSM PTP (IEEE 1588) PTP VLAN Translation (Mapping) ERPS (G.8032) FL-IE2-G8032 FL-IE3-G8032 FL-IE5-G8032

59/108 AlliedWare Plus v5.4.7

Malware IDS/IPS App Control Web Control URL Filtering IP Reputation Anti-virus Protection

Emerging Suricata Procera Digital Arts Kaspersky Kaspersky Kaspersky Threats AT-AR2010V ------

AT-AR2050V ------

AT-FL-AR3-NGFW-y AT-FL-AR3-ATP-y AT-AR3050S - (Next-Generation Firewall) (Advanced Threat Protection)

AT-FL-AR4-NGFW-y AT-FL-AR4-ATP-y AT-AR4050S (Next-Generation Firewall) (Advanced Threat Protection) y = (1, 3 5 )

AT-AR4050S AMF Master ( 20 AMF) AT-FL-AR4-AM20-y y = 1 5 )

60/108 AlliedWare Plus

61/108 AlliedWare Plus ► Network Access Control (NAC) (Tri-authentication) Two-step Authentication Roaming Authentication sFlow Digital Diagnostics Monitoring (DDM) ► VCStack Fast Failover

Q-in-Q (802.1ad) ► EPSRing Superloop Protection Virtual Routing and Forwarding (VRF-Lite) Control Plane Prioritization (CPP) DoS Loop protection, MAC Thrash Limiting (Storm Control) IGMP Proxy Query Solicitation

62/108 AlliedWare Plus ► AlliedWare Plus, CLI), GUI), SD, USB),

Linux Allied Telesis Management Framework (AMF) ► IPv6

Advanced QoS) iSCSI Intelligent flow control) Energy Efficient Ethernet (802.3az)

63/108 AlliedWare Plus:

64/108 AlliedWare Plus: ► Network Access Control (NAC)

Microsoft (NAP) Symantec (SNAC)

► Allied Telesis

. 802.1x . . MAC ( 802.1x )

65/108 AlliedWare Plus:

► Two-step Authentication 2- . . - . - RADIUS -

66/108 AlliedWare Plus:

► Roaming Authentication

, Web

VCStack ad

67/108 AlliedWare Plus: ► sFlow

68/108 AlliedWare Plus: ► SFP, SFP+, XFP Digital Diagnostics Monitoring (DDM*) SFF-8472.

► AlliedWare Plus:

awplus#show system pluggable detail awplus#show system pluggable diagnostics

Port1.0.3 System Pluggable Information Diagnostics ======Vendor Name: ATI Port1.0.3 Status Alarms Warnings Device Name: AT-SP10SR Reading Alarm Max Min Warning Max Min Device Type: 10GBASE-SR Temp: (Degrees C) 31.105 - 78.000 -13.00 - 73.000 -8.000 Serial Number: A04440R111900040 Vcc: (Volts) 3.307 - 3.800 2.800 - 3.500 3.100 Manufacturing Datecode: 11050200 Tx Bias: (mA) 2.872 - 7.848 0.348 - 6.348 1.348 SFP Laser Wavelength: 850nm Tx Power: (mW) 5.699 - 11.749 1.995 - 9.333 2.512 Link Length Supported Rx Power: (mW) - Low 12.589 0.490 Low 10.000 0.617 Single Mode Fiber : - Rx LOS: Rx Up OM1 (62.5um) Fiber: 30m OM2 (50um) Fiber : 80m Diagnostic Calibration: Internal

* DDM Digital Optical Monitoring (DOM)

69/108 AlliedWare Plus: ► Active Fiber Monitoring

Active Fiber Monitoring SFP DDM

SNMP

70/108 AlliedWare Plus:

71/108 AlliedWare Plus:

► Virtual Chassis Stacking ► SBx8100, x610, x510, IX5, IE510

1GbE GbE G, SFP+ LAG

72/108 AlliedWare Plus: ► Virtual Chassis Stacking (VCStack) True Active-Active VCStack Fast Failover) xSTP VRRP

Active-Standby Static Active-Active

Switch Switch

Master Slave Master Slave Slave Master

Switch Switch Switch Switch Использование всех каналов Динамическое распределение трафика Простота настройки

73/108 AlliedWare Plus:

192.168.1.0/24

192.168.2.0/24

IP L3

ARP

74/108 AlliedWare Plus: ► (VCStack Fast Failover) VCStack Fast Failover

- - ACL Test Case 1 RIP 10 0 Test Case 2 OSPF 10 0 Test Case 3 Static 10 0 Test Case 4 Static 10 100 Test Case 5 Static 100 0 Test Case 6 Static 500 0 Test Case 7 Static 1000 0

75/108 AlliedWare Plus:

► Rolling-Reboot ( )

►

76/108 AlliedWare Plus:

► Q-in-Q (802.1ad)

VLAN VLAN ID

Customer ID (CID),

VLAN ID (VID)

77/108 AlliedWare Plus:

78/108 AlliedWare Plus: ► Ethernet Protection Switching Ring (EPSRing) xSTP

2- EPSR Enhanced Recovery

RFC3619, EAPS Extreme Networks Superloop Protection (SLP - VLAN

79/108 AlliedWare Plus

80/108 AlliedWare Plus

EPSR Enhanced Recovery:

EPSR

EPSR Enhanced Recovery EPSR

81/108 AlliedWare Plus SuperLoop Protection: (Superloop), SLP Link Down VLAN

82/108 AlliedWare Plus: ► Virtual Routing and Forwarding (VRF-Lite)*

L3 IP ) VRF

* x610, x930, DC2552XS/L3, SBx908, SBx8100 c CFC960

83/108 AlliedWare Plus: ► Virtual Routing and Forwarding (VRF-Lite)

L3 IP ) VRF - VRF Firewall

84/108 AlliedWare Plus: ► Control Plane Prioritization (CPP)

DoS ► DoS 6 IP Options, Land, Ping-of-Death, Smurf, Synflood and Teardrop

► Thrash limiting) – MAC

► Loop Protection) – VLAN ► (Storm Control) broadcast, multicast unknown unicast Thrash limiting

85/108 AlliedWare Plus:

► IGMP Proxy – PIM

– PIM, IGMP Proxy – (upstream downstream) – IGMP Proxy IGMP Report (Join) Leave upstream – IGMP Proxy IGMP Querier dowstream

86/108 AlliedWare Plus:

Query Solicitation

(Multicast, IPTV)

EPSR xSTP.

(General Query IGMP Querier

87/108 AlliedWare Plus:

88/108 AlliedWare Plus: ► AlliedWare Plus (CLI) (GUI)

SD, USB)

powershutdown.scp enable configure terminal ecofriendly led int port1.0.1-1.0.24 shutdown exit

awplus# configure terminal awplus(config)# trigger 1 awplus(config-trigger)# type time 20:00 awplus(config-trigger)# day mon tue wed thur fri awplus(config-trigger)# script 1 powershutdown.scp

89/108 AlliedWare Plus:

► Network in a Box

RADIUS Storm control DHCP IP Timekeeper, Loop protection x930, x610, x510

90/108 AlliedWare Plus: ► Linux

Linux, ash

CLI Linux ► debug [module] ► netstat ► show platform ► tcpdump ► show cpu ► iptraf ► show process ► ps ► show memory ► top ► show log ► strace ► show tech-support ► tcpdump ► … ► terminal monitor

91/108 AlliedWare Plus: Allied Telesis Management Framework (AMF) ,

►

AMF

►

92/108 AlliedWare Plus: Allied Telesis Management Framework (AMF) ►

 [ ]

Master Master1# atmf working-set Node3, Node4 Working set join AMF Member atmf1[2]# configure terminal atmf1[2](config)# interface port1.0.20 atmf1[2](config-if)# switchport access × vlan 10



AMF Member

93/108 AlliedWare Plus: Allied Telesis Management Framework (AMF) ► [ ] [ ]

CLI Master Master

AMF Member AMF Member

94/108 AlliedWare Plus: Allied Telesis Management Framework (AMF) ►

 Master

Master AMF Member

AMF Member AMF Member

AMF Member





95/108 AlliedWare Plus: Allied Telesis Management Framework (AMF) ► AMF

 SD/USB Master

AMF Member

Master1# atmf working-set group all AMF Member Working set join atmf1[9]# atmf reboot-rolling card:/5.4.3/x*-5.4.3-*.rel



Rolling Reboot)

96/108 AlliedWare Plus: Allied Telesis Management Framework (AMF) ► AMF L2 AMF L3 L2TPv3 AMF AlliedWare Plus , , AMF

97/108 AlliedWare Plus:

( ) AMF (Provisioning) . AMF

. port port1.0.3, Member2 Member , AMF master_1# atmf working-set member_4 atmf1[1]# configure terminal atmf1[1](config)# interface port1.0.3 atmf1[1](config-if)# switchport atmf-crosslink atmf1[1](config-if)# atmf provision future_node atmf1[1](config-if)# exit atmf1[1]# atmf working-set group local master1#

98/108 AlliedWare Plus:

AMF SSH . USB/SD -

. -

SSHFS x8100#show atmf backup ... Backup Media ...... FILE SERVER (Total 503837.5MB, Free 186818.0MB) Server Config ...... Synchronization ..... Synchronized Last Run ...... 19 May 2014 11:09:50 1 ...... Configured (Mounted) Host ...... 10.36.150.54 Username ...... user_1 Path ...... temp/x8100

99/108 AlliedWare Plus:

► AMF Vista Manager ► AMF ► ► ► AMF ►

100/108 AlliedWare Plus:

101/108 AlliedWare Plus: IPv6 (Native IPv6) ► IPv6

► (ACL) IPv6 ( x210) ► IPv4 IPv6

► IPv6 IPv4 to4) ► IPv6 ► Graceful Restart RIP, OSPF, BGP IPv6 ► Forum: https://www.ipv6ready.org/db/index.php/public/search/?vn =allied+telesis Ready Phase-2 http://www.ipv6ready.org/?page=phase-2-about

102/108

AlliedWare Plus: ►

X- • PoE PoE+ *;

• LLDP for Media Endpoint Devices (LLDP-MED); IP VLAN, QoS 802.1p DSCP • Voice VLAN; VLAN, QoS * x210, SBx908 103/108 AlliedWare Plus:

► (Advanced QoS) Two-rate, three-color bandwidth metering (RFC2698) 8 (4 )

64Kbps Weighted Round Robin Strict Priority

DSCP

104/108 AlliedWare Plus: ► iSCSI Flow Control iSCSI, iSCSI Flow Control Flow Control

Avg Avg

AlliedWare Plus

Traffic rate Traffic Traffic rate Traffic

105/108 AlliedWare Plus:

106/108 AlliedWare Plus: ► IEEE 802.3az Energy Efficient Ethernet (EEE) * Ethernet (Idle)

Ethernet (EEE)

Low Power Idle (LPI)

EEE az

►

Eco Friendly Mode

* GS900MX, x230, x310, x510, x610, x930, SBx908 c XEM-12Tv2, XEM- , SBx8100

107/108 ► !

http://forum.alliedtelesis.ru

© 2017 Allied Telesis Inc. All rights reserved. Information in this document is subject to change without notice. All company names, logos, and product designs that are trademarks or registered trademarks are the property of their respective owners. 108/108