IPv4/IPv6 Dual-Stack Multilayer Switching
RG-S6120 series provides hardware support for IPv4/IPv6 dual-stack multilayer switching at line rates, supports distinction and processing of IPv4 and IPv6 packets by hardware, and provides flexible IPv6 network communication solutions according to the requirements of the IPv6 network for network planning or maintaining the current network status. The switches also support a wide range of IPv4 routing protocols, including static routing, RIP, OSPFv2, IS-ISv4, BGP4, etc., enabling users to select appropriate protocols for network building in different environments. The series also supports an abundant list of IPv6 routing protocols, such as static routing, RIPng, OSPFv3, IS-ISv6, BGP4+, etc., enabling users to select appropriate protocols for upgrading an existing network to IPv6 or building a new IPv6 network.
Virtual Switch Unit (VSU)
The Virtual Switch Unit technology, or VSU in short, enables interconnection of several physical devices via link aggregation by virtualizing them into one logical device. The logical device uses one single IP address, Telnet process, command-line interface (CLI), and enables auto version inspection and configuration for management. From the user perspective, they are only managing one device, but realizing the work efficiency and user experience brought by several devices operating at the same.
Link aggregation can be either 10G ports or dedicated stack cards for user's investment protection.
• Easy management: Administrators can centrally manage all the devices at the same time. It is no longer necessary to configure and manage the switches one by one.
• Simplified typology: The VSU is regarded as one switch in the network. By connection of aggregation link and peripheral network devices, MSTP protocol is unnecessary as there is no Layer 2 loop network. All protocols operate as one switch.
• Millisecond failover: The VSU and peripheral devices are connected via the aggregation link. Upon failure of any device or link, failover to another member link requires only 50 to 200ms.
• Exceptional scalability: The network is hot swappable. Any devices leaving or joining the virtualized network cause zero impact on other devices.
Comprehensive Security Policies
The RG-S6120 series effectively prevents and controls virus spread and hacker attacks with various inherent mechanisms such as anti-DoS attacks, hacker IP scanning, illegal ARP packets checking and multiple hardware-based ACL policies.
Hardware-based IPv6 ACL: Control IPv6 users' access to edge devices even when IPv6 users exist within an IPv4 network. It allows coexistence of IPv4 and IPv6 users on the network and controls the resources access by IPv6 users, such as restricting access to sensitive network resources.
Hardware-based CPU protection mechanism: The CPU protection policy (CPP) distinguishes the data flows sent to the CPU, which are processed according to their priorities, and implements bandwidth limitations as needed. In this manner, users can prevent the CPU from being occupied by illegal traffic and protect against malicious attacks to guarantee security of the CPU and switch.
IP/MAC binding: Allow flexible binding of a port or the switch to the IP address and MAC address of users, strictly limiting user access on a port or in the entire switch.
DHCP snooping: Allow DHCP responses from trusted ports only to prevent spoofing by unauthorized DHCP servers. Based on DHCP snooping, the switches dynamically monitor ARP packets, check user IP addresses, and directly discard illegal packets inconsistent with the binding entries to effectively defends against ARP spoofing and source IP address spoofing.
IP-based Telnet access control: Prevent unauthorized users or hackers from attacking or controlling the devices and thereby strengthens security of the device network management.
SSH and SNMPv3: Implement Secure Shell (SSH) and Simple Network Management Protocol v3 (SNMPv3) to encrypt management information in Telnet and SNMP processes, thereby ensuring security of the management device information and preventing hacker from attacking or controlling the devices.
Access Control: Prevents unauthorized users from network access through multiple features including multi-element binding, port security, time-based ACL, and flow-based rate limiting. The RG-S6120 Series highly strengthens the access control of visitors and restricts the access of unauthorized users to meet the needs of enterprise networks and campus networks.
NFPP: The NFPP (Network Foundation Protection Policy) enhances switch security. It protects the switch processor and channel bandwidth by isolating the attacking sources. Normal packet forwarding and protocol status are hence guaranteed.
High Reliability Design
RG-S6120 series adopt multiple-tier hardware fault isolation and protection mechanism, guarantee for 30 Years MTBF. RG-S6120 series switches offers built-in power modules and fan modules redundancy. Both the power modules and the fan modules can be hot swapped without affecting the normal operation of the device. In addition, the switches also support fault detection and alarm for power modules and fan modules and automatically adjust the fan speed according to temperature changes to better adapt to the environment. The devices support front/rear ventilation to improve heat dissipation efficiency and provide multiple reliability protections at the equipment level and link level. Overcurrent protection, overvoltage protection and overheat protection technology are also adopted.
Hardware-level Dual Flash Chip
Flash-related faults account for approximately 5% of total faults throughout the year. RG6120 series switches uses dual flash chips to store boot software to implement hardware-level redundancy backup and prevent startup failures.
Fault Isolation Technology
A short-circuit in an optical module may cause an optical port failure or even a switch breakdown or burnout. Ruijie S6120 series switch design for protective circuits of optical ports, a short-circuit in an optical module can be detected promptly, and the faulty module is then isolated to avoid any impact on other ports and the entire device.
Other than robust hardware design, powered by Ruijie gen 12th RGOS, all Ruijie enterprise switches built-in with variety of high availability networking features for different scenario and applications:
Spotlight High Availability features:
Spanning tree protocols: The series supports spanning tree protocols of 802.1D, 802.1w, and 802.1s to ensure rapid convergence, improve fault tolerance capabilities, ensure the stable operation of the network, load balancing of links and reasonable use of network channels, and increase the redundant link utilization.
Virtual Router Redundant Protocol (VRRP): The series supports Virtual Router Redundancy Protocol (VRRP) which effectively ensures network stability.
Rapid Link Detection Protocol (RLDP): The series supports Rapid Link Detection Protocol (RLDP), which can perform quick link connectivity detection and unidirectional link detection of the optical fiber links, and support port-based loop detection to prevent network failures caused by loops generated by the improper connection of devices such as hubs to the ports.
Rapid Ethernet Uplink Protection Protocol (REUP): When Spanning Tree Protocol (STP) is disabled, the Rapid Ethernet Uplink Protection Protocol (REUP) can provide basic link redundancy through the rapid uplink protection and provide millisecond fault recovery faster than STP.
Bidirectional Forwarding Detection (BFD): Provide a method for upper-layer protocols such as routing protocols to quickly detect the connectivity of forwarding paths between 2 routing devices, greatly reducing the convergence time of upper-layer protocols in the case of changes in link status.
Exceptional business support performance: Support IPv4 and IPv6 multicast with abundant multicast protocols, e.g. IGMP Snooping, IGMP, MLD, PIM, PIM for IPv6, MSDP, etc. The switches offer multicast service for IPv4 network, IPv6 network, and IPv4/IPv6 co-existing network. IGMP source port and source IP check are also supported to effectively eliminate unauthorized multicast sources and improve network security.
Abundant QoS Policies
The RG-S6120 series offers multilayer traffic classification and flow control for MAC traffic, IP traffic, application traffic, etc. and realizes various traffic policies such as refined bandwidth control and forwarding priority. The series also supports customized QoS features for various applications.
The DiffServ-based QoS system supports a complete set of QoS policies covering 802.1P, IP TOS, Layer 2 to 7 filtering, SP, WRR, etc., and realizes the multi-service QoS logic of the entire network system.
The RG-S6120 series switches adopt the next-generation hardware architecture, advanced energy-saving circuit design and components to save energy for users and reduce noise pollution. The series adopts the variable-speed axial fans so that the devices can intelligently control the fan speed according to the current temperature to ensure stable operation of the device while reducing power consumption and noise.
Easy Network Maintenance
RG-S6120 series supports abundant features such as SNMP, RMON, Syslog, logs and configuration backup using USB for routine network diagnosis and maintenance. Administrators can use a wide variety of management and maintenance methods for easier device management and such include command line interface (CLI), web management, Telnet, etc.