CloudEngine S6730-S series full-featured 10GE switches are Huawei's new generation fixed switches that provide 10GE downlink ports 40GE uplink ports.

Category: Switch

Product Overview

CloudEngine S6730-S series full-featured 10 GE switches are Huawei's new generation fixed switches ,to provide 10 GE downlink ports as well as 40 GE uplink ports.

CloudEngine S6730-S can be used to provide high-speed access for 10 Gbit/s access to high-density servers or function as a core/aggregation switch on a campus network to provide 40 Gbit/s rate. In addition, CloudEngine S6730-S provides a wide variety of services, comprehensive security policies, and various QoS features to help customers build scalable, manageable, reliable, and secure campus and data center networks.

 

 

Models and Appearance

 

Appearance

Description

 

 

CloudEngine S6730-S24X6Q

l 24 x 10 Gig SFP+, 6 x 40 Gig QSFP+

l Dual pluggable power modules, equipped power modules by default not available

l Forwarding performance: 490Mpps

l Switching capacity: 960Gbps/2.4Tbps

NOTE

The value before the slash (/) refers to the device's switching capability, while the value after the slash (/) means the chip's switching capability.

 

Features and Highlights

Abundant Convergence

l The CloudEngine S6730-S series supports SVF and functions as a parent switch. With this virtualization technology, a physical network with the "Small-sized core and aggregation switches + Access switches " structure can be virtualized into a "super switch", greatly simplifying network management.

l The CloudEngine S6730-S series provides excellent QoS capabilities and supports queue scheduling and congestion control algorithms. Additionally, it adopts innovative priority queuing and multi-level scheduling mechanisms to implement fine- grained scheduling of data flows, meeting service quality requirements of different user terminals and services.


Providing Granular Network Management

l The CloudEngine S6730-S series uses the Packet Conservation Algorithm for Internet (iPCA) technology that alters the traditional method of using simulated traffic for fault location. iPCA technology can monitor network quality for any service flow anywhere, anytime, without extra costs. It can detect temporary service interruptions in a very short time and can identify faulty ports accurately. This cutting-edge fault detection technology turns "extensive management" to "granular management."

l The CloudEngine S6730-S series supports Two-Way Active Measurement Protocol (TWAMP) to accurately check any IP link and obtain the entire network's IP performance. This protocol eliminates the need of using a dedicated probe or a proprietary protocol.

 

Flexible Ethernet Networking

l In addition to traditional Spanning Tree Protocol (STP), Rapid Spanning Tree Protocol (RSTP), and Multiple Spanning Tree Protocol (MSTP), the CloudEngine S6730-S series supports Huawei-developed Smart Ethernet Protection (SEP) technology and the latest Ethernet Ring Protection Switching (ERPS) standard. SEP is a ring protection protocol specific to the Ethernet link layer, and applies to various ring network topologies, such as open ring topology, closed ring topology, and cascading ring topology. This protocol is reliable, easy to maintain, and implements fast service switching within 50 milliseconds. ERPS is defined in ITU-T G.8032. It implements millisecond-level protection switching based on traditional Ethernet MAC and bridging functions.

l The CloudEngine S6730-S series supports Smart Link and Virtual Router Redundancy Protocol (VRRP), which implement backup of uplinks. One CloudEngine S6730-S switch can connect to multiple aggregation switches through multiple links, significantly improving reliability of access devices.

 

Intelligent Stack (iStack)

l The CloudEngine S6730-S series supports the iStack function that combines multiple switches into a logical switch. Member switches in a stack implement redundancy backup to improve device reliability and use inter-device link aggregation to improve link reliability. iStack provides high network scalability. You can increase a stack's ports, bandwidth, and processing capacity by simply adding member switches. iStack also simplifies device configuration and management. After a stack is set up, multiple physical switches can be virtualized into one logical device. You can log in to any member switch in the stack to

manage all the member switches in it.

 

Cloud-based Management

l The Huawei cloud management platform allows users to configure, monitor, and inspect switches on the cloud, reducing on-site deployment and O&M manpower costs and decreasing network OPEX. Huawei switches support both cloud management and on-premise management modes. These two management modes can be flexibly switched as required to achieve smooth evolution while maximizing return on investment (ROI).

 

VXLAN

l VXLAN is used to construct a Unified Virtual Fabric (UVF). As such, multiple service networks or tenant networks can be deployed on the same physical network, and service and tenant networks are isolated from each other. This capability truly achieves 'one network for multiple purposes'. The resulting benefits include enabling data transmission of different services or customers, reducing the network construction costs, and improving network resource utilization.

l The CloudEngine S6730-S series switches are VXLAN-capable and allow centralized and distributed VXLAN gateway deployment modes. These switches also support the BGP EVPN protocol for dynamically establishing VXLAN tunnels and can be configured using NETCONF/YANG.

 

OPS

l Open Programmability System (OPS) is an open programmable system based on the Python language. IT administrators can program the O&M functions of a switch through Python scripts to quickly innovate functions and implement intelligent O&M.

 

Big Data Powered Collaborative Security

l Agile switches use NetStream to collect campus network data and then report such data to the Huawei Cybersecurity Intelligence System (CIS). The purposes of doing so are to detect network security threats, display the security posture across the entire network, and enable automated or manual response to security threats. The CIS delivers the security policies to the Agile Controller. The Agile Controller then delivers such policies to agile switches that will handle security events accordingly. All these ensure campus network security.


l The CloudEngine S6730-S series supports Encrypted Communication Analytics (ECA). It uses built-in ECA probes to extract characteristics of encrypted streams based on NetStream sampling and Service Awareness (SA), generates metadata, and reports the metadata to Huawei Cybersecurity Intelligence System (CIS). The CIS uses the AI algorithm to train the traffic model and compare characteristics of extracted encrypted traffic to identify malicious traffic. The CIS displays detection results on the GUI, provides threat handling suggestions, and automatically isolates threats with the Agile Controller to ensure campus network security.

l The CloudEngine S6730-S series supports deception. It functions as a sensor to detect threats such as IP address scanning and port scanning on a network and lures threat traffic to the honeypot for further checks. The honeypot performs in- depth interaction with the initiator of the threat traffic, records various application-layer attack methods of the initiator, and reports security logs to the CIS. The CIS analyzes security logs. If the CIS determines that the suspicious traffic is an attack, it generates an alarm and provides handling suggestions. After the administrator confirms the alarm, the CIS delivers a policy to the Agile Controller. The Agile Controller delivers the policy to the switch for security event processing, ensuring campus network security.

 

Intelligent O&M

l The CloudEngine S6730-S series provides telemetry technology to collect device data in real time and send the data to Huawei campus network analyzer CampusInsight. The CampusInsight analyzes network data based on the intelligent fault identification algorithm, accurately displays the real-time network status, effectively demarcates and locates faults in a timely manner, and identifies network problems that affect user experience, accurately guaranteeing user experience.

l The CloudEngine S6730-S series supports a variety of intelligent O&M features for audio and video services, including the enhanced Media Delivery Index (eMDI). With this eDMI function, the CloudEngine S6730-S series can function as a monitored node to periodically conduct statistics and report audio and video service indicators to the CampusInsight platform. In this way, the CampusInsight platform can quickly demarcate audio and video service quality faults based on the results of multiple monitored nodes.

 

Intelligent Upgrade

l Switches support the intelligent upgrade feature. Specifically, switches obtain the version upgrade path and download the newest version for upgrade from the Huawei Online Upgrade Platform (HOUP). The entire upgrade process is highly automated and achieves one-click upgrade. In addition, preloading the version is supported, which greatly shortens the upgrade time and service interruption time.

l The intelligent upgrade feature greatly simplifies device upgrade operations and makes it possible for the customer to upgrade the version independently. This greatly reduces the customer's maintenance costs. In addition, the upgrade policies on the HOUP platform standardize the upgrade operations, which greatly reduces the risk of upgrade failures.

 

Service Features

 

Feature

Description

MAC

Up to 64K MAC address entries IEEE 802.1d standards compliance MAC address learning and aging

Static, dynamic, and blackhole MAC address entries

Packet filtering based on source MAC addresses

VLAN

4K VLANs

Guest VLANs and voice VLANs GVRP

MUX VLAN

VLAN assignment based on MAC addresses, protocols, IP subnets, policies, and ports VLAN mapping

ARP

Static ARP Dynamic ARP

IP routing

Static routes, RIP v1/2, RIPng, OSPF, OSPFv3, IS-IS, IS-ISv6, BGP, BGP4+, ECMP, routing policy

Up to 64K FIBv4 entries

Up to 32K FIBv6 entries

Interoperability

VLAN-Based Spanning Tree (VBST), working with PVST, PVST+, and RPVST Link-type Negotiation Protocol (LNP), similar to DTP

VLAN Central Management Protocol (VCMP), similar to VTP

Ethernet loop protection

RRPP ring topology and RRPP multi-instance


Feature

Description

 

Smart Link tree topology and Smart Link multi-instance, providing millisecond-level protection switchover

SEP

ERPS (G.8032)

BFD for OSPF, BFD for IS-IS, BFD for VRRP,  and BFD for PIM STP (IEEE 802.1d), RSTP (IEEE 802.1w), and MSTP (IEEE 802.1s)

BPDU protection, root protection, and loop protection

IPv6 features

Neighbor Discover (ND) PMTU

IPv6 Ping, IPv6 Tracert, IPv6 Telnet

ACLs based on source IPv6 addresses, destination IPv6 addresses, Layer 4 ports, or protocol types

Multicast Listener Discovery snooping (MLDv1/v2)

IPv6 addresses configured for sub-interfaces, VRRP6, DHCPv6, and L3VPN

Multicast

IGMP v1/v2/v3 snooping and IGMP fast leave

Multicast forwarding in a VLAN and multicast replication between VLANs Multicast load balancing among member ports of a trunk

Controllable multicast

Port-based multicast traffic statistics

IGMP v1/v2/v3, PIM-SM, PIM-DM, and PIM-SSM MSDP

Multicast VPN

QoS/ACL

Rate limiting in the inbound and outbound directions of a port Packet redirection

Port-based traffic policing and two-rate three-color CAR Eight queues on each port

DRR, SP, and DRR+SP queue scheduling algorithms WRED

Re-marking of the 802.1p and DSCP fields of packets

Packet filtering at Layer 2 to Layer 4, filtering out invalid frames based on the source MAC address, destination MAC address, source IP address, destination IP address, TCP/UDP source/destination port number, protocol type, and VLAN ID

Queue-based rate limiting and shaping on ports

Security

Hierarchical user management and password protection

DoS attack defense, ARP attack defense, and ICMP attack defense Binding of the IP address, MAC address, port number, and VLAN ID Port isolation, port security, and sticky MAC

MAC Forced Forwarding (MFF) Blackhole MAC address entries

Limit on the number of learned MAC addresses

IEEE 802.1X authentication and limit on the number of users on a port

AAA authentication, RADIUS authentication, and HWTACACS authentication NAC

SSH V2.0

Product Specifications

 

Item

CloudEngine S6730-S24X6Q

Fixed ports

24 x 10 Gig SFP+, 6 x 40 Gig QSFP+

Dimensions (W x D x H)

442 mm x 420 mm x 43.6 mm

Chassis height(U)

1U

Input voltage

AC Power

l Rated AC voltage: 100V to 240V AC; 50/60 Hz

l Max. AC voltage: 90V to 290V AC; 45–65 Hz DC Power

l Rated DC voltage: –48V–60V

l Max. DC voltage-38.4V DC-72V DC

Input current

AC 600WMax 8A DC 1000WMax 30A

Maximum power consumption

225W220V input249W90V input


Item

CloudEngine S6730-S24X6Q

Minimum power consumption

88W

Operating temperature

l 0–1800 m altitude: -5°C to 45°C

l 1800–5000 m altitude: The operating temperature reduces by 1°C every time the altitude increases by 220 m.

Storage temperature

-40-70

Operating altitude

5000 m

Noise (sound pressure at normal temperature)

52dB(A)

Surge protection specification

AC power interface: differential mode: ±6kV: common mode: ±6kV DC power interface: differential mode: ±2kV: common mode: ±4kV

Power supply type

600W AC Power 1000W DC Power

Relative humidity

5% to 95% (non-condensing)

Fans

4 , Fan modules are pluggable

Heat dissipation

Heat dissipation with fan, intelligent fan speed adjustment