Data sheet
HPE 12500 Switch Series
Key features
•Optimized for data centers with extensive virtualization and convergence features
•Broad interface options from 1G to 100G scaling up to 24.3 Tb/s switching capacity
•SDN ready with OpenFlow 1.3 support
•Large Layer 2 and Layer 3 tables to support large scale deployments
•Fully redundant architecture with hot swappable components
Product overview
The HPE 12500 Switch Series is a family of powerful, next-generation routing switches with outstanding capacity and scale for the network core or data center.
Designed for high performance with non-blocking and distributed Clos architecture, these switches deliver up to 24.3 Tb/s switching capacity and 10.8 Bpps throughput with up to 400 Gb/s per line card slot.
The 12500 switches also have energy-efficiency features that drive down operational expenses and are ideal for organizations contemplating large-scale data center consolidations, business continuity and disaster recovery sites, metropolitan area network deployments, and other applications requiring a robust, reliable, and highly available switching platform.
Data sheet |
Page 2 |
Features and benefits
Data center optimized
•Scalable Layer 2 fabrics
Build flexible, resilient, and scalable Layer 2 fabrics with SPB and HPE IRF
•Multi-tenant Device Context (MDC)
Is an innovative data center virtualization solution that enables multi-tenancy, giving customers the ability to virtualize a physical switch into multiple logical devices, with each logical switch having its own tenants
•HPE Ethernet Virtual Interconnect (EVI)
Is an HPE Virtual Application Network innovation that provides a Layer 2 extension across the data center to simplify the interconnectivity of geographically disperse data centers
•Data Center Bridging (DCB) protocols
Provide support for IEEE 802.1Qaz Data Center Bridging Exchange (DCBX), Enhanced Transmission Selection (ETS), and IEEE 802.1Qbb Priority Flow Control (PFC) for converged fabrics
•Fibre Channel over Ethernet (FCoE) features
Deliver support for FCoE, including expansion, fabric, trunk VF and N ports, and aggregation of E-port and N-port virtualization
•Accelerated performance with jumbo frames
For intra-data-center communication, or for data center to data center traffic (disaster recovery), reducing the amount of time required for data backup and recovery
•Network load balancing (NLB) multicast ARP
Microsoft® NLB co-works with multicast ARP to provide servers with load balancing and fault switchover, which lowers costs and investment
Data sheet |
Page 3 |
Software-defined networking
•Supports OpenFlow 1.3 specifications
To enable SDN by allowing separation of the data (packet forwarding) and control (routing decision) paths
Performance
•High-performance design with non-blocking and distributed Clos architecture
Delivers up to 24.3 Tb/s switching capacity and 10.8 Bpps throughput with up to 400 Gb/s per line card slot
•High-density 1/10/40/100GbE interface connectivity
Offers up to 18 interface module slots to scale up to 864 1GbE or 1/10GbE or 288 40GbE or 72 100GbE ports
•Hardware-based wirespeed access control lists (ACLs)
Help provide high levels of security and ease of administration without impacting network performance with a feature-rich TCAM-based ACL implementation
•High-performance processor system
The supervisor module uses three different processors to isolate key tasks: control plane (STP, OSPF, BGP, MPLS, etc.), fast recovery protocols (RRPP, BFD, etc.), and chassis management (temperature, power, etc.)
Product architecture
•Distributed architecture with separation of data and control planes
Delivers enhanced fault tolerance and facilitates continuous operation and zero service disruption during planned or unplanned control-plane events
•Advanced Comware modular OS
Brings modularity, enhanced serviceability, stability, and independent process monitoring through modern Comware v7 Operating System
•In-Service Software Upgrade (ISSU)
Provides an upgrade of the entire chassis, or an individual task or process, with zero packet loss
Data sheet |
Page 4 |
Resiliency and high availability
•Intelligent Resilient Framework (IRF)
Creates virtual resilient switching fabrics, where two or more switches perform as a single L2 switch and L3 router; switches do not have to be co-located and can be part of a disaster-recovery system; servers or switches can be attached using standard LACP for automatic load balancing and high availability; can eliminate the need for complex protocols
like Spanning Tree Protocol (STP), Equal-Cost Multipath (ECMP), or VRRP, thereby simplifying network operation
•Ultrafast protocol convergence
Enables link connectivity monitoring and reduces network convergence time for RIP, OSPF, BGP, IS-IS, VRRP, MPLS, and IRF
•Device Link Detection Protocol (DLDP)
Monitors link connectivity and shuts down ports at both ends if unidirectional traffic is detected, preventing loops in STP-based networks
•Complete set of routing protocols (Layer 3 IPv4 and IPv6)
Supporting wide range of routing protocols including RIP, OSPF, IS-IS, and BGP for both IPv4 and IPv6 along with complete support of PIM-DM, PIM-SM, PIM-SSM, and MSDP
•Hot patching
The 12500 Switch Series supports hot patching, allowing in-service patching for some isolated software problems
•Nonstop Forwarding/Graceful Restart (NSF/GR)
Using standardized-based IETF protocols, the 12500 Switch Series provides nonstop forwarding (switching/routing) for Layer 3 routing protocols (control plane—OSPF, BGP, and MPLS), providing hitless failover
•Fully redundant and hot swappable components
Providing full hardware redundancy for each component including power supplies, fan trays, supervisor modules, and fabric modules to enable the highest level of availability
•Rapid Ring Protection Protocol (RRPP)
Provides fast recovery for ring Ethernet-based topology
Data sheet |
Page 5 |
Quality of Service (QoS)
•Virtual Output Queue (VOQ)
Prevents head-of-line (HOL) blocking and gracefully handles bursty data center traffic increasing switch performance
•IEEE 802.1p prioritization
Delivers data to devices based on the priority and type of traffic
•Layer 4 prioritization
Enables prioritization based on TCP/UDP port numbers
•Broadcast control
Allows limitation of broadcast traffic rate to cut down on unwanted network broadcast traffic
•Advanced classifier-based QoS
Classifies traffic using multiple match criteria based on Layer 2, 3, and 4 information; applies QoS policies such as setting priority level and rate limit to selected traffic on a per-port or per-VLAN basis
•Bandwidth shaping
––Port-based rate limiting
Provides per-port ingress-/egress-enforced maximum bandwidth
––Classifier-based rate limiting
Uses ACLs to enforce maximum bandwidth for ingress/egress traffic on each port
Compartmentalization
•Department protection
Using network virtualization standards (QinQ, VRF, and MPLS), the 12500 Switch Series allows organizations to isolate different business units with different resources (VRFs); using standard-based mechanisms, the network is completely virtualized, reducing cost and operations
•IEEE 802.1ah Provider Backbone Bridge (MAC in MAC)
Provider Backbone Bridge (PBB) is a Layer 2 VPN technology that allows a complete separation of customer and provider domains by sealing the user MAC in the service provider MAC, which enhances the scalability of an Ethernet network
Data sheet |
Page 6 |
Layer 2 switching
•Multiple VLAN Registration Protocol (MVRP)
Helps to maintain VLAN configuration dynamically based on current network configurations
•GARP VLAN Registration Protocol
Allows automatic learning and dynamic assignment of VLANs
•IP multicast snooping and data-driven IGMP Automatically prevents flooding of IP multicast traffic
•IEEE 802.1ad QinQ
Increases the scalability of an Ethernet network by providing a hierarchical structure; connects multiple LANs on a high-speed campus or metro network
•Bridge Protocol Data Unit (BPDU) tunneling
Transmits STP BPDUs transparently, allowing correct tree calculations across service providers, WANs, or MANs
•VLAN support and tagging Supports IEEE 802.1Q (4K VLAN IDs)
•Spanning Tree
The 12500 Switch Series supports the entire set of STP protocols (STP, RSTP, and MSTP), facilitating a complete integration with standard networks
Layer 3 routing
•Layer 3 IPv4 routing
Provides routing of IPv4 at media speed; supports static routes, RIP and RIPv2, OSPF, IS-IS, and BGP
•RIP and RIPng support
Provides complete support of RIP for both IPv4 and IPv6
•OSPF and OSPFv3 support
Provides complete support of OSPF for both IPv4 and IPv6
•IS-IS and IS-ISv6 support
Provides complete support of IS-IS for both IPv4 and IPv6
•Equal-Cost Multipath (ECMP)
Enables multiple equal-cost links in a routing environment to increase link redundancy and scale bandwidth
•Layer 3 IPv6 routing
Provides routing of IPv6 at media speed; supports static routes, RIPng, OSPFv3, IS-ISv6, and BGP4+
•IPv6 tunneling
Allows a smooth transition from IPv4 to IPv6 by encapsulating IPv6 traffic over an existing IPv4 infrastructure
Data sheet |
Page 7 |
•Complete multicast protocol stack
PIM-DM, PIM-SM, PIM-SSM, MSDP, and extensions to BGP provide one of the most complete multicast protocol stacks
•Policy routing
Allows custom filters for increased performance and security; supports ACLs, IP prefix, AS paths, community lists, and aggregate policies
•MPLS support
Provides extended support of MPLS, including MPLS VPNs and MPLS Traffic Engineering (MPLS TE)
•VPLS support
Provides extended support of VPLS for data center to data center communication at Layer 2; provides support of hierarchical VPLS for scalability
Management
•sFlow®
Provides scalable, ASIC-based network monitoring and accounting; this allows network operators to gather a variety of sophisticated network statistics and information for capacity planning and real-time network monitoring purposes
•IEEE 802.1AB LLDP discovery
Advertises and receives management information from adjacent devices on a network, facilitating easy mapping by network management applications
•USB support
––File copy
Allows users to copy switch files to and from a USB flash drive
•Multiple configuration files Stores easily to the flash image
•Command-line interface (CLI)
Provides a secure, easy-to-use CLI for configuring the module via SSH or a switch console; provides direct real-time session visibility
•Logging
Provides local and remote logging of events via SNMP (v2c and v3) and syslog; provides log throttling and log filtering to reduce the number of log events generated
•Management interface control
Enables or disables each of the following interfaces depending on security preferences: console port, telnet port, and SSH port
•Out-of-band interface
Isolates management traffic from user data plane traffic for complete isolation and total reachability, no matter what happens in the data plane
Data sheet |
Page 8 |
•Network management
HPE Intelligent Management Center (IMC) centrally configures, updates, monitors, and troubleshoots
•Network management SNMP v2c/v3 MIB-II with traps
•RADIUS accounting
Logs all session details that can be used to generate usage reports or interface to a billing system
•RMON
Provides advanced monitoring and reporting capabilities for statistics, history, alarms, and events
•Remote Intelligent Mirroring
Mirrors ingress ACL-selected traffic from a switch port or VLAN to a local or remote switch port anywhere on the network
Connectivity
•IPv6 native support
––IPv6 host
Enables switches to be managed and deployed at the IPv6 network’s edge
––Dual stack (IPv4 and IPv6)
Transitions from IPv4 to IPv6, supporting connectivity for both protocols
––Multicast Listener Discovery (MLD) snooping
Forwards IPv6 multicast traffic to the appropriate interface
––IPv6 ACL/QoS
Supports ACL and QoS for IPv6 network traffic, preventing traffic flooding
––IPv6 routing
Supports IPv6 static routes and IPv6 versions of RIP and OSPF routing protocols
Data sheet |
Page 9 |
Security
•Control Plane Policing (CoPP)
Protection against DoS attacks at infrastructure routers and switches; ease of configuration for control plane policies
•IEEE 802.1X and RADIUS network logins
Controls port-based access for authentication and accountability
•Secure FTP
Allows secure file transfer to and from the switch; protects against unwanted file downloads or unauthorized copying of a switch configuration file
•Switch management logon security
Helps secure switch CLI logon by optionally requiring either RADIUS or TACACS+ authentication
•DHCP protection
Blocks DHCP packets from unauthorized DHCP servers, preventing denial-of-service attacks
•Dynamic ARP protection
Blocks ARP broadcasts from unauthorized hosts, preventing eavesdropping or theft of network data
•Secure Shell (SSHv2)
Encrypts all transmitted data for secure, remote CLI access over IP networks
•Secure management access
Delivers secure encryption of all access methods (CLI, GUI, or MIB) through SSHv2 and SNMPv3
•ACLs
Provide IPv4 and IPv6 filtering based on source/destination IP address/subnet and source/destination TCP/UDP port number
•Media access control (MAC) authentication
Provides simple authentication based on a user’s MAC address; supports local or RADIUS-based authentication
Convergence
•Layers 2, 3, and 4 QoS mechanisms
Support DiffServ priority tagging based on IP address, IP Type of Service (ToS), Layer 3 protocol, TCP/UDP port number, and source port
•IP multicast snooping and data-driven IGMP Automatically prevent flooding of IP multicast traffic
•LLDP-MED
Is a standard extension that automatically configures network devices, including LLDP-capable IP phones
•Internet Group Management Protocol (IGMP)
Utilizes Any-Source Multicast (ASM) or Source-Specific Multicast (SSM) to manage IPv4 multicast networks; supports IGMPv1, v2, and v3
•Protocol Independent Multicast (PIM)
Defines modes of Internet IPv4 and IPv6 multicasting to allow one-to-many and many-to-many transmission of information; supports PIM Dense Mode (DM), Sparse Mode (SM), and Source-Specific Mode (SSM)