Juniper Networks EX2200-48T-4G 48 Port Gigabit 4x SFP Switch

• 100 Mbps optic/connector type: LC SFP fiber supporting 100BASE- FX SFP (multimode) and BX (single strand)
• 10/100/1000BASE-T connector type RJ-45
• GbE SFP optic/connector type: RJ-45, or LC SFP fiber supporting 1000BASE-T SFP, SX (multimode), LX (single-mode), or LH/ZX (single-mode)

Physical Layer

• Physical port redundancy: Redundant Trunk Group (RTG)
• Time-domain reflectometry (TDR) for detecting cable breaks and shorts
• Auto MDI/MDIX (medium-dependent interface/medium- dependent interface crossover) support
• Port speed downshift/setting maximum advertised speed on 10/100/1000BASE-T ports
• Digital optical monitoring for optical ports

Layer 2 Switching

• Maximum MAC addresses in hardware: 16,000
• Jumbo frames: 9216 bytes
• Number of VLANs: 1,024 (VLAN IDs: 4,096)
• Port-based VLAN
• MAC-based VLAN
• Voice VLAN
• Private VLAN (PVLAN)
• IEEE 802.1ak: Multiple VLAN Registration Protocol (MVRP)
• Multicast VLAN Registration (MVR)
• Compatible with Per-VLAN Spanning Tree Plus (PVST+)
• RVI (Routed VLAN Interface)
• IEEE 802.1AB: Link Layer Discovery Protocol (LLDP)
• LLDP-MED with VoIP integration
• IEEE 802.1D: Spanning Tree Protocol
• IEEE 802.1p: CoS prioritization
• IEEE 802.1Q: VLAN tagging
• IEEE 802.1Q-in-Q: VLAN Stacking
• IEEE 802.1s: Multiple Spanning Tree Protocol (MSTP)
• Number of MST instances supported: 64
• IEEE 802.1w: Rapid Spanning Tree Protocol (RSTP)
• IEEE 802.1X: Port Access Control
• IEEE 802.3: 10BASE-T
• IEEE 802.3u: 100BASE-T
• IEEE 802.3ab: 1000BASE-T
• IEEE 802.3z: 1000BASE-X
• IEEE 802.3af: PoE
• IEEE 802.3at: PoE+
• IEEE 802.3x: Pause Frames/Flow Control
• IEEE 802.3ad: Link Aggregation Control Protocol (LACP)
• IEEE 802.3ah: Ethernet in the First Mile
• IEEE 802.1ag: Connectivity Fault Management (CFM)
• G.8032 (Ethernet Ring Protection)

Layer 3 Features: IPv4

• Maximum number of Address Resolution Protocol (ARP) entries: 2,000
• Maximum number of IPv4 unicast routes in hardware: 6500
• Routing protocols:
• RIP v1/v2
• OSPF v1/v2 (with 4 active interfaces)
• Static routing
• Bidirectional Forwarding Detection (BFD)
• IP directed broadcast
• VRF-Lite

Layer 3 Features: IPv6 Management Functionality

• Neighbor discovery, Syslog, Telnet, SSH, J-Web, SNMP, NTP, DNS
• Static routing

Supported RFCs

• RFC 3176 sFlow
• RFC 2925 MIB for remote ping, trace
• RFC 1122 Host requirements
• RFC 768 UDP
• RFC 791 IP
• RFC 783 Trivial File Transfer Protocol (TFTP)
• RFC 792 Internet Control Message Protocol (ICMP)
• RFC 793 TCP
• RFC 826 ARP
• RFC 894 IP over Ethernet
• RFC 903 Reverse ARP (RARP)
• RFC 906 TFTP bootstrap
• RFC 1027 Proxy ARP
• RFC 2068 HTTP server
• RFC 1812 Requirements for IP Version 4 routers
• RFC 1519 Classless Interdomain Routing (CIDR)
• RFC 1256 IPv4 ICMP Router Discovery (IRDP)
• RFC 1058 RIP v1
• RFC 2453 RIP v2
• RFC 1492 TACACS+
• RFC 2138 RADIUS authentication
• RFC 2139 RADIUS accounting
• RFC 3579 RADIUS Extensible Authentication Protocol (EAP) support for 802.1X
• RFC 5176 Dynamic Authorization Extensions to RADIUS
• RFC 2267 Network ingress filtering
• RFC 2030 Simple Network Time Protocol (SNTP)
• RFC 854 Telnet client and server
• RFC 951, 1542 BootP
• RFC 2131 BOOTP/DHCP relay agent and DHCP server
• RFC 1591 Domain Name System (DNS)
• RFC 2474 DiffServ Precedence, including 8 queues/port
• RFC 2598 DiffServ Expedited Forwarding (EF)
• RFC 2597 DiffServ Assured Forwarding (AF)
• LLDP Media Endpoint Discovery (LLDP-MED), ANSI/TIA-1057, draft 08

Security

• MAC limiting
• Allowed MAC addresses—configurable per port
• Sticky MAC (persistent MAC address learning)
• Dynamic ARP inspection (DAI)
• Proxy ARP
• Static ARP support
• DHCP snooping
• IP source guard
• 802.1X port-based
• 802.1X multiple supplicants
• 802.1X with VLAN assignment
• 802.1X with authentication bypass access (based on host MAC address)
• 802.1X with VoIP VLAN support
• 802.1X dynamic ACL based on RADIUS attributes
• 802.1X Supported EAP types: Message Digest 5 (MD5), Transport Layer Security (TLS), Tunneled Transport Layer Security (TTLS), Protected Extensible Authentication Protocol (PEAP)
• Captive Portal
• Trusted Network Connect (TNC) certified
• Static MAC authentication
• MAC-RADIUS
• Control plane DoS protection
• Fallback Authentication

Access control lists (ACLs) (Junos OS firewall filters)

• Port-based ACL (PACL)—ingress
• VLAN-based ACL (VACL)—ingress and egress
• Router-based ACL (RACL)—ingress and egress
• ACL entries (ACE) in hardware per system: 1,500
• ACL counter for denied packets
• ACL counter for permitted packets
• Ability to add/remove/change ACL entries in middle of list (ACL editing)
• L2-L4 ACL