The S7700 series design is based on Huawei's intelligent
multi-layer switching technology to provide intelligent service
optimization methods, such as MPLS VPN, traffic analysis,
comprehensive HQoS policies, controllable multicast, load
balancing,
and security, in addition to high-performance Layer 2 to Layer 4
switching services. The S7700 also features super scalability
and reliability.
The S7700 series is available in three models: S7703, S7706, and
S7712. The switching capacity and port density of all four
models is expandable. The S7700 is developed based on a new
hardware platform and adopts a left-to-rear ventilation channel
to achieve better energy efficiency. Key components work in
redundancy mode to minimize risks of system breakdown and
service interruption. Using innovative energy-saving chips, the
S7700 provides an industry-leading solution for a sustainable
energy-saving network, and can function either as an aggregation or
core node on a campus network or in a data center to
provide integrated wireless access.
Features and Highlights
Agile Switch, Enabling Networks to Be More Agile for Services
The high-speed ENP chip used in the S7700 series is tailored for
Ethernet. The chip's flexible packet processing and traffic
control capabilities can meet current and future service
requirements, helping build a highly scalable network.
The built-in native AC on S7700 series switches allows enterprises
to build a wireless network without additional AC hardware.
S7700 switch can manage up to 4K APs. It is a core switch that
provides up to Tbit/s AC capabilities, avoiding the performance
bottleneck on independent AC devices. The native AC capabilities
help organizations better cope with challenges in the high
speed wireless era.
The S7700 series' unified user management function authenticates
both wired and wireless users, ensuring a consistent user
experience no matter whether they are connected to the network
through wired or wireless access devices. The unified user
management function supports various authentication methods,
including PPPoE, 802.1x, MAC address, and Portal
authentication, and is capable of managing users based on user
groups, domains, and time ranges. These functions implement
user and service management and enable the transformation from
device-centric management to user-centric management.
Huawei's Super Virtual Fabric 2.0 (SVF 2.0) technology can not only
virtualize fixed-configuration switches into S7700 switch
line cards but also virtualize APs as switch ports. With this
virtualization technology, a physical network with core/aggregation
switches, access switches, and APs can be virtualized into a "super
switch", greatly simplifying network management.
Huawei's Packet Conservation Algorithm for Internet (iPCA)
technology changes the traditional method that uses simulated
traffic for fault location. iPCA technology monitors network
quality for any service flow at any network node, at any time, and
without extra costs. It can detect temporary service interruptions
within one second and can identify faulty ports accurately. This
cutting-edge fault detection technology turns "extensive
management" into "fine granular management."
Huawei's IEEE 1588v2 and Synchronous Ethernet (SyncE) solutions
enable high-precision time synchronization between
network devices. Compared with the Global Positioning System (GPS)
time synchronization solution, Huawei's solutions
enhance security while reducing costs.
The Service Chain feature virtualizes the value-added service
processing capabilities, such as firewall, so that campus networks
can utilize these capabilities in an undifferentiated manner. That
is, these capabilities can be used without location constraint.
Note: The CS7700 series switches can manage 16 APs by default . You
can purchase licenses for more AP management on
demand.
Powerful Service Processing Capabilities
The S7700 provides high-density 10GE ports,Multi-GE ports, 40GE
ports and 100GE ports. Each S7712 chassis can provide a
maximum of 576 x 10GE ports, 288 x Multi-GE, 144 x 40GE ports or 96
x 100GE ports, meeting the requirements of bandwidth
consuming applications, such as multimedia conferencing and data
access.
The S7700's multi-service routing and switching platform meets
requirements for service bearing at the access layer,
aggregation layer, and core layer of enterprise networks. The S7700
provides wireless access along with voice, video, and data
services, helping enterprises build integrated full-service
networks with high availability and low latency.
The S7700 supports distributed Layer 2/Layer 3 MPLS VPN functions,
including MPLS, VPLS, HVPLS, and VLL, implementing
VPN access for enterprise users.
The S7700 supports various Layer 2 and Layer 3 multicast protocols
such as PIM SM, PIM DM, PIM SSM, MLD, and IGMP
snooping. It can provide enterprises with multi-terminal high
definition video surveillance and video conferencing services.
Carrier-class Reliability and Visual Fault Diagnosis
Huawei's high reliability design ensures that the S7700 is 99.999%
reliable. The S7700 provides redundant backup for key
components, including main processing units (MPUs), power supply
units, and fans trays, all of which are hot swappable.
The S7700 innovatively implements the Cluster Switch System (CSS)
function through switch fabrics, and packets are only
switched once when they are forwarded between chassis. This
addresses the problem of low switching efficiency caused by
multiple switching processes during inter-chassis forwarding in
clusters established using line cards. In addition, inter-chassis
link aggregation can be used to improve link use efficiency and
prevent single-point failures.
The S7700 can use service ports as cluster ports, enabling flexible
port utilization.
The S7700 supports High-speed Self Recovery (HSR) technology. Using
Huawei's ENP cards, the S7700 is the industry's only
switch that implements end-to-end IP MPLS bearer network protection
switchover within 50 ms, improving network reliability.
The S7700 has a dedicated fault detection subcard that provides
hardware-based BFD and hardware-based OAM including
IEEE 802.3ah, 802.1ag, and ITU-Y.1731. Hardware-based OAM
implements 3.3 ms fault detection and can check session
connectivity of all terminals in real time when a network fault
occurs. The S7700 can also work with a network management
system (NMS). The NMS provides a graphical fault diagnosis
interface and traverses all network elements and links
automatically to help users detect and locate faults quickly.
Enhanced QoS Mechanism, Improving the Voice and Video Experience
The S7700's HQoS control mechanisms classify traffic based on
information from the link layer to the application layer. With
advanced queue scheduling and congestion control algorithms, the
S7700 performs accurate multi-level scheduling for data
flows, satisfying enterprises' QoS requirements for a variety of
services and user terminals.
The S7700 supports hardware-based low delay queues for multicast
packets so that the video service can be processed with
high priority and low delay. This feature guarantees the high
quality of key services in an enterprise, such as video conference
and surveillance.
The S7700 uses innovative priority scheduling algorithms to
optimize the QoS queue scheduling mechanism for voice and video
services. The improved scheduling mechanism shortens the delay of
the VoIP service and eliminates the pixelation effect in the
video service, improving user experience.
High-performance IPv6 Service Processing, Resulting in A Smooth
Transition From IPv4
to IPv6
Both the hardware platform and software platform of the S7700
support IPv6. The S7700 has earned the IPv6 Ready Phase 2
(Gold) designation.
The S7700 supports IPv4/IPv6 dual stack, various tunneling
technologies, IPv6 static routing, RIPng, OSPFv3, BGP+, IS-ISv6,
and IPv6 multicast. These features meet the demand for IPv6
networking and combined IPv4 and IPv6 networking.
Superb Traffic Analysis Capability, Resulting in Real-time Network
Performance
Monitoring
The S7700 supports NetStream for the real-time collection and
analysis of network traffic statistics.
The S7700 supports the V5, V8, and V9 NetStream formats and
provides aggregation traffic templates to reduce the burden on
the network collector system. In addition, the S7700 supports
real-time traffic collection, dynamic report generation, traffic
attribute analysis, and traffic exception trap.
NetStream monitors network traffic in real time and analyzes the
device's throughput, providing data for network structure
optimization and capacity expansion.
Comprehensive Security Mechanisms, Protecting Enterprises from
Internal and External
Security Threats
The S7700 supports MAC security (MACSec) that enables hop-by-hop
secure data transmission. The S7700 can be applied to
scenarios that pose high requirements on data confidentiality, such
as government and finance sectors.
NGFW is a next-generation firewall card that can be installed on an
S7700. In addition to the traditional defense functions such
as firewall, identity authentication, and Anti-DDoS, the NGFW
supports IPS, anti-spam, web security, and application control
functions.
The S7700 provides comprehensive NAC solutions for enterprise
networks. It supports MAC address authentication, Portal
authentication, 802.1x authentication, and DHCP snooping-triggered
authentication. These authentication methods ensure the
security of various access modes, such as dumb terminal access,
mobile access, and centralized IP address allocation.
Innovative Energy-saving Chips, Allowing for Intelligent Power
Consumption Control
The S7700 uses innovative energy-saving chips, which can
dynamically adjust power on all ports based on traffic volume. An
idle port enters a sleep mode to reduce power consumption.
The S7700 supports Power over Ethernet (PoE) and uses different
energy management modes according to the powered
device (PD) type, ensuring flexible energy management.
The S7700 supports IEEE 802.3az Energy Efficient Ethernet and
provides the low power idle mode for the PHY line card. If the
link utilization is low, the S7700 switches to a lower speed or
power PHY to reduce power consumption.
Cloud-based Management
⚫
The Huawei cloud management platform allows users to configure,
monitor, and inspect switches on the cloud, reducing
on-site deployment and O&M manpower costs and decreasing
network OPEX. Huawei switches support both cloud
management and on-premise management modes. These two management
modes can be flexibly switched as required to
achieve smooth evolution while maximizing return on investment
(ROI).
VXLAN
VXLAN is used to construct a Unified Virtual Fabric (UVF). As such,
multiple service networks or tenant networks can be
deployed on the same physical network, and service and tenant
networks are isolated from each other. This capability truly
achieves 'one network for multiple purposes'. The resulting
benefits include enabling data transmission of different services
or
customers, reducing the network construction costs, and improving
network resource utilization. The S7700 series switches are
VXLAN-capable and allow centralized and distributed VXLAN gateway
deployment modes. These switches also support the
BGP EVPN protocol for dynamically establishing VXLAN tunnels and
can be configured using NETCONF/YANG.
OPS
Open Programmability System (OPS) is an open programmable system
based on the Python language. IT administrators can
program the O&M functions of a switch through Python scripts to
quickly innovate functions and implement intelligent O&M.
Big Data Security Collaboration
The S7700 uses NetStream to collect campus network data and then
report such data to the Huawei HiSec Insight. The
purposes of doing so are to detect network security threats,
display the security posture across the entire network, and enable
automated or manual response to security threats. The HiSec Insight
delivers the security policies to the iMaster NCE
Campus(or Agile Controller). The iMaster NCE-Campus(or Agile
Controller) then delivers such policies to switches that will
handle security events accordingly. All these ensure campus network
security.
Intelligent Diagnosis
Open Intelligent Diagnosis System (OIDS) integrates the device
health monitoring and fault diagnosis functions – that are
typically deployed on a Network Management System (NMS) – into the
switch software to implement intelligent diagnosis on a
single switch. After OIDS is deployed on a switch, the switch
periodically collects and records the running information and
automatically determines whether a fault occurs. If a fault occurs,
the switch automatically locates the fault or helps locate the
fault. All these merits increase fault locating efficiency of
O&M staff while improving device maintainability.
Intelligent O&M
CloudEngine S7700 provides telemetry technology to collect device
data in real time and send the data to the CampusInsight (a
campus network analysis component of Huawei iMaster NCE). The
CampusInsight then analyzes network data based on the
intelligent fault identification algorithm, accurately displays the
real-time network status, effectively demarcates and locates
faults in a timely manner, and identifies network problems that
affect user experience, accurately guaranteeing user experiences.
Licensing
The S7700 supports both the traditional feature-based licensing
mode and the latest Huawei IDN One Software (N1 mode for
short) licensing mode. The N1 mode is ideal for deploying Huawei
CloudCampus Solution in the on-premises scenario, as it
greatly enhances the customer experiences in purchasing and
upgrading software services with simplicity
Software Package Features in N1 Mode
| Switch Functions | N1 Basic
Software | N1 Foundation
Software Package | N1 Advanced
Software
Package |
Basic network functions:
Layer 2 functions, IPv4, IPv6, MPLS, SVF, and others | √ | √ | √ |
Basic network automation based on the Agile
Controller:
⚫ Basic automation: Plug-and-play, SSID, and AP
group management
⚫ Basic monitoring: Application visualization
⚫ NE management: Image and topology management
and discovery
⚫ WLAN enhancement: Roaming and optimization for
up to 128 Aps
⚫ User access authentication | × | √ | √ |
Advanced network automation and intelligent O&M:
VXLAN, free mobility, and CampusInsight basic functions | × | × | √ |
Note: Only V200R019C00 and later versions can support N1 mode
