The Ruijie RG-S2900G-E V3 Series is a collection of the latest generation of multiservice switches, which offers exceptional performance and a high level of security. The switch provides non-blocking speed switching performance. Implementing industry-leading hardware design and RuiJo’s modular RGOS11.X modular operating systems, the switch offers better capacity, better hardware processing performance, and easier user operation.
Ruijie’s Comprehensive Security Policy
Ruijie RG-S2900G-E V3 Series effectively prevents and controls the spread of the virus from a breaker attack with various inherent mechanisms such as anti-DoS attacks, IP scanning hackers, illegal ARP packet checking and several ACL hardware policies.
● Industry-leading CPU protection mechanisms: CPU Protection Policies (CPP) provide policies to protect CPUs from switches. In a networked environment, various packet attacks spread, which can cause high CPU usage on a switch, affecting protocol running and even difficulties in switch management. For this purpose, CPU switches must be protected, that is, traffic control and priority-based processing must be performed for the various incoming packets to ensure CPU switch processing capabilities.
○ CPP can effectively prevent malicious attacks on the network and provide a clean environment for legitimate protocol packages.
○ CPP is activated by default. This provides protection during operation of the entire switch.
● IP / MAC binding: Apply flexible port or system binding to the user’s IP address and MAC address, strictly limiting user access to the port or throughout the system.
● DHCP snooping: Allow DHCP responses only from trusted ports; based on listening to DHCP and by dynamically monitoring ARP and checking the user’s IP address, immediately discarding illegal packets that are not consistent with binding entries to effectively prevent ARP fraud and the source of IP address fraud.
● Secure Shell and SNMPv3: Secure Shell (SSH) and Simple Network Management Protocol v3 (SNMPv3) cryptographic network protocols ensure the security of management information. Provides services such as multi-element binding, port security, time-based ACLs, and bandwidth restrictions to block unauthorized users.
● NFPP: The Foundation Network Protection Policy (NFPP) provides guards for switches. Malicious attacks are always found in a networked environment. These attacks carry a heavy load on the switch, resulting in high CPU usage and operational problems. These attacks are as follows:
Attacks Denial of Service (DoS) attacks can use up a lot of memory, entries, or other switch resources, which will cause system service termination.
○ massive attack traffic directed at the CPU, occupying the entire CPU bandwidth. In this case, normal protocol traffic and management traffic cannot be processed by the CPU, causing protocol or management failure. Forwarding to the data plane will also be affected and the entire network will become abnormal.
NFPP can effectively protect the system from this attack. Facing attacks, NFPP maintains the running of various system services with low CPU load, thus ensuring stability of the entire network.
NFPP Network Protection
Virtual Switch Unit (VSU)
T
Virtual Switch Unit technology, or in short VSU, enables the interconnection of several physical devices by visualizing them into one logical device. Logical devices use a single IP address, Telnet process, command line interface (CLI), and allow automatic version inspection and configuration. From a user perspective, the benefits are multiple work efficiencies and an improved user experience of several devices operating at the same time. And they only need to manage one device. VSU technology also offers many benefits below:
● Easy management: Administrators can centrally manage all devices simultaneously. No need to configure and manage switches one by one.
● Simplified typology: VSU is considered as a switch on the network. With aggregation link connections and peripheral network devices, the MSTP protocol is not needed because there is no Layer 2 network loop. All protocols operate as one switch.
● Millisecond failover: VSU and peripheral devices are connected via aggregation links. After any device or link failure, link failure to other members only requires 50 to 200 ms.
● Exceptional scalability: Hot swappable networks, all devices that leave or join a virtual network cause zero impact on other devices.
Simple Network Topology Enabled by VSU
High reliability
The RG-S2900G-E V3 series supports the spanning tree protocols of 802.1d, 802.1w and 802.1s to ensure fast convergence, improve fault tolerance capabilities, ensure stable network running and balance load links, and provide redundant links.
● Virtual Router Redundant Protocol (VRRP): Effectively ensures network stability.
● Rapid Link Detection Protocol (RLDP): Detects link connectivity and whether optical fiber links are normal from both ends, and supports port-based loop detection functions to prevent network errors caused by loops generated by loops generated by device connections such as hubs to the port.
● Ethernet Ring Protection Switching (ERPS) (G.8032): Apply loop blocking and connect recovery to the master device. Other devices immediately report the status of the link to the master device. Without passing through other standby devices, the timing of fault failure and loop recovery is therefore faster than STP. ERSP link failure rates can be resolved in milliseconds in ideal conditions.
● Rapid Ethernet Uplink Protection Protocol (REUP): When Spanning Tree Protocol (STP) is deactivated, the Rapid Ethernet Uplink Protection Protocol (REUP) can provide basic link redundancy through fast uplink protection functions and provides subconductor-level error recovery faster than STP.
Software-Defined Networking (SDN)
With a completely new hardware architecture and the latest RGOS11.X Ruijie modular operating system, the RG-S2900G-E V3 Series fully supports OpenFlow 1.3. in collaboration with the Ruijie SDN controller, it forms a large-scale Layer 2 network architecture with ease. A smooth upgrade of the entire network to SDN one is also activated. The switch series therefore greatly simplifies network management and minimizes network deployment savings.
Energy efficiency
Ruijie RG-S2900G-E V3 Series adopts the latest generation of hardware architecture with a highly energy-efficient circuit design and component selection. This device successfully reduces energy consumption. In addition to maximized energy savings, the RG-S2900G-E V3 Series also significantly reduces noise pollution. All models in this series use a variable speed axial fan, which supports intelligent speed adjustment based on the current ambient temperature. All features allow the switch to run smoothly and reduce power consumption and noise pollution at the same time.
The RG-S2900G-E V3 series also supports auto off mode. When an interface shuts down for a period of time, the system will automatically turn it off for extra energy efficiency. The EEE energy saving mode is another excellent feature. The system will automatically change the idle port to an energy saving mode. When there is a new packet, the system will issue a listening stream to the port to continue service.
Easy Network Maintenance
The Ruijie RG-S2900G-E V3 Series supports many features such as SNMP V1 / V2 / V3, RMON, Syslog, and log backup and configuration using USB for routine diagnosis and maintenance. Administrators can use various methods for easier management and such as CLI, web management, Telnet, CWMP (TR069), etc.
The RG-S2900G-E V3 Series fully supports the RG-SNC (Smart Network Commander) which is a network management system launched by Ruijie Networks specifically designed for management and configuration of network performance. With a browser-friendly UI, SNC provides various features such as network topology display, device management, performance monitoring, configuration & software management, real-time alarms and log & report management.
RG-SNC Topology Management
Design for Durability
In corrosive gases, high humidity environments, electronic products will accelerate corrosion, reliability and service life will be shortened. However, the environment of the diffusion of the access switch is different, there may be a lack of temperature and humidity regulation and proximity to pollution sources or the sea. Through a design for durability, the Ruijie RG-S29E V3 series switch can operate stably in a variety of usage environments.
Fanless design: If air flow on the surface of electronic products is too fast, it will increase the level of gas corrosion on the equipment and shorten the life of the equipment. For low-power products, fanless design is the most effective anti-corrosion measure. RG-S2928G-E uses a fanless design to reduce corrosive gases and dust ingress.
Product Specifications from Ruijie RG-S2900G-E V3
Model |
RG-S2928G-E V3 |
RG-S2952G-E V3 |
||
Model |
RG-S2928G-E V3 |
RG-S2952G-E V3 |
||
Ports |
24 10/100/1000BASE-T ports |
48 10/100/1000BASE-T ports |
||
Fan Slots |
Fanless |
Fixed |
||
Management Ports |
1 console port |
|||
Switching Capacity |
Up to 256Gbps |
|||
Packet Forwarding Rate |
Up to 96Mpps |
Up to 132Mpps |
||
Port Buffer |
1.5MB |
|||
ARP Table |
1,000 |
|||
MAC Address |
Up to 16K |
|||
Routing Entries |
500 |
|||
IP Host Entries |
500 (IPv4/IPv6) |
|||
ACL Entries |
Up to 1,500 |
|||
ACL |
Standard/Extended/Expert ACL, Extended MAC ACL, ACL 80, IPv6 ACL, ACL logging, ACL counter, ACL remark, Global ACL, ACL redirect |
|||
QoS |
802.1p/DSCP/TOS traffic classification; Multiple queue scheduling mechanisms, such as SP, WRR, DRR, SP+WFQ, SP+WRR, SP+DRR; Input port-based speed limit; Port-based traffic recognition; Each port supports 8 queue priorities |
|||
VLAN |
4K 802.1q VLANs, Port-based VLAN, MAC-based VLAN, Protocol-based VLAN, Private VLAN, Voice VLAN, QinQ, IP subnet-based VLAN, GVRP |
|||
QinQ |
Basic QinQ, Flexible QinQ, 1:1 VLAN switching |
|||
Link Aggregation |
AP, LACP, Flow balance |
|||
Port Mirroring |
Many-to-one mirroring, One-to-Many mirroring, Flow-based mirroring, Over devices mirroring, VLAN-based mirroring, VLAN-filtering mirroring, AP-port mirroring, RSPAN, ERSPAN |
|||
Spanning Tree Protocols |
IEEE802.1d STP, IEEE802.1w RSTP, Standard 802.1s MSTP, Port fast, BPDU filter, BPDU guard, TC guard, TC filter, TC protection, LOOP guard, ROOT guard |
|||
DHCP |
DHCP server, DHCP client, DHCP snooping, DHCP relay, IPv6 DHCP snooping, IPv6 DHCP client, IPv6 DHCP relay |
|||
Multiple Spanning Tree Protocol (MSTP) Instances |
64 |
|||
Maximum Aggregation Port (AP) |
Up to 128 |
|||
Multicast |
IGMP v1/v2/v3 snooping, IGMP SGVL/IVGL, IGMP filter, IGMP fast leave, MLD snooping v1/v2 |
|||
SDN |
OpenFlow 1.0, future support OpenFlow 1.3 |
|||
EEE Format |
Support IEEE 802.3az standard |
|||
G.8032 |
Support |
|||
L2 Features |
MAC, EEE, ARP, VLAN, Basic QinQ, Felix QinQ, Link aggregation, Mirroring, STP, RSTP, MSTP, Broadcast storm control, IGMP v1/v2/v3 snooping, IGMP SGVL/IVGL, IGMP filter, IGMP fast leave, DHCP, Jumbo frame, RLDP, LLDP, REUP, G.8032 ERPS, Layer 2 protocol tunnel |
|||
Layer 2 Protocols |
IEEE802.3, IEEE802.3u, IEEE802.3z, IEEE802.3x, IEEE802.3ad, IEEE802.1p, IEEE802.1x, IEEE802.3ab, IEEE802.1Q (GVRP), IEEE802.1d, IEEE802.1w, IEEE802.1s |
|||
Security |
Binding of the IP address, MAC address, and port address; Binding of the IPv6, MAC address, and port address; Filter illegal MAC addresses; Port-based and MAC-based 802.1x; MAB; Portal and Portal 2.0 authentication; ARP-check; DAI; Restriction on the rate of ARP packets; Gateway anti-ARP spoofing; Broadcast suppression; Hierarchical management by administrators and password protection; RADIUS and TACACS+; AAA security authentication (IPv4/IPv6) in device login management; SSH and SSH V2.0; BPDU guard; IP source guard; CPP, NFPP; Port protection |
|||
Layer 3 Features |
IPv4 static routing, IPv6 static routing, RIP, RIPng, OSPFv2/v3, ARP proxy, Neighbor Discovery,VRRP |
|||
Layer 3 Protocols (IPv4) |
Static routing, RIP, RIPng, OSPFv2/v3 |
|||
IPv4 Features |
Ping, Traceroute |
|||
IPv6 Features |
0-64 any length mask, ICMPv6, Neighbor Discovery, Manually configure local address, Automatically create local address, IPv6 Ping, IPv6 Tracert, IPv6 extender option head,VRRP v3 |
|||
Basic IPv6 Protocols |
IPv6 addressing, Neighbor Discovery (ND), IPv6 ACL, ICMPv6, IPv6 Ping, IPv6 Tracert |
|||
IPv6 Routing Protocols |
Static routing, RIPng, OSPFv3 |
|||
VSU (Virtual Switch Unit) |
Support (up to 9 stack members,to ensure the effectiveness of the use, 4 members are recommended) |
|||
Zero Configuration |
CWMP(TR069) |
|||
Reliability |
RAS |
|||
Manageability |
SNMPv1/v2c/v3, CLI (Telnet/Console), RMON (1, 2, 3, 9), SSH, Syslog/Debug, RSPAN/ERSPAN, NTP/SNTP, FTP, TFTP, Web, SFLOW,support cable detection and port sleep mode |
|||
Smart Temperature Control |
Fanless |
Auto fan speed adjustment; Fan malfunction alerts; Fan status check |
||
Other Protocols |
FTP, TFTP, DNS client, DNS static |
|||
Dimensions |
440 × 260 × 43.6 |
|||
Rack Height |
1RU |
|||
Weight |
≤3.5kg |
≤4kg |
||
MTBF |
482560 hours |
372690 hours |
||
Lightning Protection |
6KV |
|||
Power Supply |
AC input: HVDC input: |
|||
Power Consumption |
≤24W |
≤40W |
||
Temperature |
Operating temperature: 0°C to 50°C |
|||
Storage temperature: -40°C to 70°C |
||||
Humidity |
Operating humidity: 10% to 90%RH |
|||
Storage humidity: 5% to 95%RH |
||||
Operating Altitude |
-500m to 5,000m |
|||
Safety Standards |
IEC 60950-1,EN60950-1 |
|||
Emission Standards |
EN 300 386, EN 55032, EN 61000-3-2, EN 61000-3-3, EN 55024, EN 61000-4-2, EN 61000-4-3, EN 61000-4-4, EN 61000-4-5, EN 61000-4-6, EN 61000-4-8, EN 61000-4-11 |
Applications from the Ruijie RG-S2900G-E V3
The RG-S2900-E / P V3 gigabit safe and smart access switch is ideal for the following and the same scenario
● Full gigabit access to LAN large-scale companies and institutions, such as government buildings, large companies, energy, and metallurgical companies Full gigabit access to server clusters
● Secure access through flexible and diverse security control policies that can defend and control viruses and network attacks
● Gigabit full access to business systems, such as hospitals, libraries, exhibition centers and websites
This network topology enables the Ruijie RG-S2900-E V3 series to work together with convergence switches (eg RG-S5750-H) in all buildings and core switches (eg RG-N18000 Series) in the core area to provide gigabit services for the desktop. 10G high bandwidth links meet in the core area to meet the needs of users to increase the volume of information in universities, libraries, laboratories, financial centers, offices, and exhibition centers.
Ordering Information from Ruijie RG-S2900G-E V3
Model |
Description |
RG-S2928G-E V3 | 24 10/100/1000BASE-T ports
4 1G SFP ports (non-combo) |
RG-S2952G-E V3 | 48 10/100/1000BASE-T ports
4 1G SFP ports (non-combo) |
Mini-GBIC-GT | 1000BASE-GT mini GBIC Transceiver |
MINI-GBIC-SX-MM850 | 1000BASE-SX mini GBIC Transceiver (850nm) |
MINI-GBIC-LX-SM1310 | 1000BASE-LX mini GBIC Transceiver (1310nm) |
MINI-GBIC-LH40-SM1310 | 1000BASE-LH mini GBIC Transceiver (1310nm, 40km) |
MINI-GBIC-ZX50-SM1550 | 1000BASE-ZX mini GBIC Transceiver (1550nm, 50km) |
MINI-GBIC-ZX80-SM1550 | 1000BASE-ZX mini GBIC Transceiver (1550nm, 80km) |
MINI-GBIC-ZX100-SM1550 | 1000BASE-ZX mini GBIC Transceiver (1550nm, 100km) |
GE-SFP-LX20-SM1310-BIDI |
1000BASE-LX, SFP Transceiver, BIDI-TX1310/RX1550,20km,LC |
GE-SFP-LX20-SM1550-BIDI | 1000BASE-LX, SFP Transceiver, BIDI-TX1550/RX1310,20km,LC |
GE-SFP-LH40-SM1310-BIDI | 1000BASE-LH, SFP Transceiver, BIDI-TX1310/RX1550,40km,LC |
GE-SFP-LH40-SM1550-BIDI | 1000BASE-LH, SFP Transceiver, BIDI-TX1550/RX1310,40km,LC |