The difference between edge and backbone intelligence
Because the core layer is connected to the distribution layer and the server farm, the core layer and the edge layer are very different in terms of service objects and purposes, which leads to the edge layer smart switches and backbone smart switches in function and performance. With some differences. In summary, there are two differences: First, the edge intelligent switch more considers the control of user access. Second, the indicators of the edge smart switch in terms of overall switching capacity and packet forwarding rate are lower than those of the backbone smart switch.
Foundry technical manager Shen Zhiqian said that the backbone network's intelligence is reflected in the characteristics of backbone routing / switching high-speed routing, policy routing, CPU protection, and wire-speed traffic monitoring and security of 10 Gigabit Ethernet, and bandwidth management. However, merely performing security protection and wire-speed forwarding from the backbone network does not guarantee that the edge switches are intelligently protected and characterized. Edge products also require powerful performance and security features. In addition, edge products face more end users directly, VoIP The popularization of applications at the edge layer and the increase in network traffic have spawned edge smart switches.
Annette Product Manager Pan Yuening talked about the view of edge intelligence from the perspective of price and application. Firstly, the price of network equipment keeps falling, and secondly, the deepening of applications. Today's networks need more intelligent applications to support users' multiple needs, such as audio, video, and on-demand services. At the same time, edge access is also The security and manageability of the switch put forward higher requirements, and the required bandwidth is getting wider and wider, so the need for network intelligence begins to spread from the core to the edge.
Edge intelligence job
Edge intelligent switches are mainly Layer 2 intelligent and Layer 3 switches, which require switches to have Layer 2 or even Layer 3 switching capabilities, and may also provide processing capabilities for Layer 4 to Layer 7 applications. Various manufacturers agree that edge intelligence should have security and QoS functions, but there are different opinions on whether edge intelligence should provide other functions.
Shen Zhiqian believes that in addition to providing line-based security precautions, QoS, etc., it should also provide always-on traffic monitoring. He believes that this is because if managers cannot see real-time network traffic, it is difficult to imagine the purpose of achieving highly intelligent switching and management. Edge switches should support their unique solutions for simplifying network management. Use it to indicate the traffic flowing through the entire network, understand the actual situation in the network in real time, and display network and application layer traffic information in a graphical way in detail. Using this feature, network administrators can now quickly and accurately check the overall network operation, effectively find network hotspots, quickly diagnose and eliminate the fault before it spreads.
The product manager of the enterprise network product department of Gangwan Network Co., Ltd. stated that in addition to QoS, it should provide access user identification and simple and convenient maintenance features.
New highlights of intelligent edge exchange
Progress in management
The new edge smart switch implements real-time traffic monitoring, which can monitor all the traffic of each port of the entire switch in a comprehensive manner.
Progress in QoS
Smart edge switches can classify, reclassify, and mark traffic before forwarding traffic. Network administrators can classify the traffic generated by different network applications or devices, such as VoIP phones, administrative applications, or bandwidth-critical applications, to distinguish between various types of traffic, and implement bandwidth policies based on Layer 2 and Layer 3 QoS fields . At the same time, today's edge smart switches are beginning to emphasize the support capabilities of DiffServ based on the IP layer. Nowadays, the switch can provide more, richer and more comprehensive QoS technologies, such as 802.1p, DiffServ, WRR, RED and other congestion control functions.
Smart switch can be linked with security equipment
The cooperation between the smart switch and the security device can achieve linkage, that is, the smart switch can automatically hand over "suspicious" traffic to the security device for analysis, and after the security device analyzes, the result is returned to the switch, and then the switch performs related operations For example, discard related data or close the corresponding port. For example, Ruijie's S21 series and Gangwan's smart switches can be linked with other security devices to achieve access layer security.
What you should pay attention to when deploying
When deploying edge smart switches, because edge products have a large quantity and scattered characteristics, we need to consider achieving an optimal balance between the overall and decentralized strategies. A continuous and intelligent security strategy and user access strategy are essential to the overall network performance and maintenance. Users must implement intelligent features and simplify management. At the same time, monitoring all users is the key to preventive network security and traffic management. A network that implements network-wide monitoring should also be simple and easy to use without damage. performance.
Pan Yuening believes that edge smart switches are at the edge of the network and have a large number of access users. The role they play is also important compared to backbone switches. Therefore, she believes that users should pay attention to three points when deploying edge smart switches. First, attention should be paid to product reliability. If the edge switch fails, it will affect many edge layer users. Therefore, when deploying smart switches, redundant configurations should be supported as much as possible. For fixed-configuration edge switches, it is recommended to purchase external or built-in redundant power systems. At the same time, in order to provide link redundancy. Configure 802.3ad link aggregation of the switch, STP / RSTP / MSTP spanning tree and Layer 3 VRRP protocol. Second, if the network can achieve distributed security deployment, in addition to deploying traditional firewalls, IDS and other security products at the core of the network, the following security strategies should generally be deployed at the edge: bandwidth control, ACL technology, secure socket layer (SSL), 802.1X port authentication and RADIUS authentication, MAC address binding and filtering, and Secure Shell (SSHv1 / SSHv2) encryption, etc. Third, try to choose the same series of switches to ensure that all modules and power supplies can be used universally for fault diagnosis and emergency replacement, while reducing the pressure on users to retain spare parts. Select stackable switches to deploy high-density and cluster-managed edge networks.
In addition, Rui Zilling (former Shida Network) product manager Luo Ziling also gave us useful suggestions on QoS application. She believes that for each specific application, the application of priority queues is very different. When configuring smart switches, detailed planning should be made to avoid wasting funds.
The emergence of edge intelligent switches undoubtedly controls network data traffic from the source, reducing the pressure on the entire network. At the same time, we should also note that the use of smart switches at the edge will not affect performance. This is because most smart switches integrate some important smart functions such as QoS, rate limiting, and ACL into high-speed ASIC chips, so these smart It will not affect the basic layer-2 and layer-3 wire-speed forwarding performance. At this point, users can rest assured.
Rj45 Tool,Rj45 Punch Tool,Ez Rj45 Tools,Electrical Wire Crimping Tool
Dongguan Fangbei Electronic Co.,Ltd , https://www.connectorfb.com