Juniper – DATASYS

EX4300-48MP Juniper Multi-Gigabit Switch – 48 Ports – Managed 95W PoE power, 1400W AC PS

ASK FOR PRICE
Overview:
The Juniper Networks EX4300 line of Ethernet switches delivers the performance and scale required for both campus and data center Gigabit Ethernet (GbE) access switch deployments. Combined with Juniper’s market leading Virtual Chassis technology, the EX4300 scales up to 10 members, delivering the high availability and plug-and-play scale that businesses demand. Combining compact, pay-as-you-grow economics and low power and cooling with the performance, availability, and port densities of chassis-based platforms, the EX4300 with Virtual Chassis technology enables businesses to deploy with speed and agility to increase revenue and improve productivity. The Juniper Networks EX4300 line of Ethernet switches with Virtual Chassis technology combines the carrier-class reliability of modular systems with the economics and flexibility of stackable platforms, delivering a high-performance, scalable solution for data center, campus and branch office environments. Offering a full suite of Layer 2 and Layer 3 switching capabilities, the EX4300 enables a variety of deployments, including campus, branch and data center access. A single 24port or 48-port EX4300 switch can be deployed initially. As requirements grow, Juniper Networks Virtual Chassis technology allows up to 10 EX4300 switches to be seamlessly interconnected and managed as a single device, delivering a scalable, pay-as-you-grow solution for expanding network environments. The EX4300 integrates with QFX3500, QFX3600 and QFX5100 10GbE and 40GbE data center access switches in a single stack or a Virtual Chassis configuration, enabling non-disruptive 10GbE server upgrades and simplified management of a mixed access environment. The EX4300 switches can be interconnected over multiple 40GbE quad small form-factor pluggable plus (QSFP+) transceiver ports to form a 320 gigabit per second (Gbps) backplane. A flexible uplink module that supports both 1GbE and 10GbE options is also available, enabling high-speed connectivity to aggregation- or core-layer switches which connect multiple floors or buildings. All EX4300 switches include high availability (HA) features such as redundant, hotswappable internal power supplies and field-replaceable fans to ensure maximum uptime. In addition, Power over Ethernet (PoE)-enabled EX4300 switch models offer standards-based 802.3at PoE+ for delivering up to 30 watts on all ports to support high-density IP telephony and 802.11n wireless access point deployments. Additionally, a multigigabit model, the EX4300-48MP, supports IEEE 802.3bz-compliant 100 Mbps, 1 Gbps, 2.5 Gbps, 5 Gbps, and 10 Gbps speeds on access ports. This enables 802.11ac Wave 2 access points, which require higher bandwidth, to connect to the switch. The EX4300 multigigabit switch also supports up to 95 watts of power on any of the access ports, enabling PoE++ devices requiring more than 30 watts to connect to and draw power from the switch. The EX4300 multigigabit switch also enables higher levels of Media Access Control Security (MACsec) AES256 encryption on all access and uplink ports, protecting customer traffic from unauthorized access. The EX4300-48MP includes four dedicated 40GbE QSFP + transceiver ports that can be used as Virtual Chassis ports to create a 320 Gbps backplane.
Chassis-Like Features in an Expandable Form Factor
The fixed-configuration EX4300 switches include a number of high availability features typically associated with chassis-based solutions, including the following:

Hot-swappable fans

Modular Juniper Networks Junos operating system (consistent with chassis systems)

Dual Routing Engines with graceful Routing Engine switchover (GRES)

Single management interface

Easy, centralized software upgrades

Scalability from 24 to 480 10/100/1000BASE-T ports and 24 to 240 100/1000/2500/5000/10000BASE-T ports, with up to 40 10GbE uplinks and 40 40GbE uplinks (up to 40 10GbE uplinks, 20 40GbE uplinks, or 20 100GbE uplinks on multigigabit models, in addition to four dedicated 40 Gbps Virtual Chassis ports per switch)

Each EX4300 switch includes a single ASIC-based Packet Forwarding Engine, the EX-PFE. The integrated Routing Engine (RE) delivers all control plane functionality. The EX4300 also leverages the same modular Junos OS as other Juniper Networks switches, routers, and security devices, ensuring a consistent implementation and operation of control plane features across the Juniper Networks infrastructure.
Add to cart Details
SFP, SFP+, XFP 10G/1G Optics

ASK FOR PRICE

Juniper’s 10G and 1G optical modules service a wide range of use cases across campus, data center, and telecom networks. Juniper’s vetted suppliers and standards-compliant optics stabilize supply chains and ensure interoperability in multivendor deployments.

Add to cart Details
SFP, SFP+, XFP 10G Optics

ASK FOR PRICE

Juniper’s qualified 25G optics address the demand for bandwidth in access, aggregation, campus, and data center networks. Juniper’s vetted suppliers and standards-compliant optics stabilize supply chains and ensure interoperability in multivendor deployments.

Add to cart Details
QSFP+ 40G Optics

ASK FOR PRICE

Juniper’s broad portfolio of 40G optics delivers critical connectivity for campus and data center networks. Juniper’s vetted suppliers and standards-compliant optics stabilize supply chains and ensure interoperability in multivendor deployments.

Add to cart Details
QSFP28 and CFP2 100G Optics

ASK FOR PRICE

Juniper’s 100G optical transceivers are critical for high-bandwidth use cases across WAN, data center, and enterprise networks. Juniper’s vetted suppliers and standards-compliant optics stabilize supply chains and ensure interoperability in multivendor deployments.

Add to cart Details
QSFP28-DD 200G Optics

ASK FOR PRICE

Juniper’s 200G optics offer flexibility and scalability to address bandwidth needs in metro, edge, core, and data center networks. Juniper’s vetted suppliers and standards-compliant optics stabilize supply chains and ensure interoperability in multivendor deployments.

Add to cart Details
QSFP56-DD 400G Optics

ASK FOR PRICE

Juniper’s qualified 400G direct-detect and coherent optics unleash bandwidth in metro, edge, core, and data center networks. Juniper’s vetted suppliers and standards-compliant optics stabilize supply chains and ensure interoperability in multivendor deployments.

Add to cart Details

EX4100 Ethernet Switch

ASK FOR PRICE

Product Overview

The EX4100 line of Ethernet access switches offers secure, cloud-ready access for enterprise campus, branch, and data center networks in the AI era and optimized for the cloud. These platforms boost network performance and visibility, meeting the security demands of today—as well as for networks of the next decade. As part of the underlying infrastructure for Juniper Mist Wired Assurance, the EX4100 line is purpose-built for, and managed by, the cloud. The switches leverage Mist AI to simplify operations and provide better visibility into the experience of connected devices, delivering a refreshing, experience-first approach to access layer switching.

Product Description

The Juniper Networks^® EX4100 line of Ethernet Switches offers a secure, cloud-ready portfolio of access switches ideal for enterprise branch, campus, and data center networks. The EX4100 switches combine the simplicity of the cloud, the power of Mist AI^™, and a robust hardware foundation with best-in-class security and performance to deliver a differentiated approach to access switching in the cloud, mobile, and IoT era. With Juniper^® Mist^™ Wired Assurance, the EX4100 line of Switches can be effortlessly onboarded, configured, and managed from the cloud. This simplifies operations, improves visibility, and ensures a much better experience for connected devices. Key features of the EX4100 include:

Cloud-ready, driven by Mist AI with Juniper Mist Wired Assurance and Marvis Virtual Network Assistant
Ethernet VPN–Virtual Extensible LAN (EVPN-VXLAN) to the access layer
Standards-based microsegmentation using group-based policies (GBPs)
Switch-to-switch encryption using Media Access Control Security (MACsec) AES256
IEEE 802.3bt Power over Ethernet Plus (PoE++)
Flow-based telemetry to monitor traffic flows for anomaly detection, ability to measure packet delays and report drop reasons
Precision Timing Protocol–Transparent Clock
10-member Virtual Chassis support

Offering a full suite of Layer 2 and Layer 3 capabilities, the EX4100 enables multiple deployments, including campus, branch, and data center top-of-rack deployments. As scale requirements increase, Juniper’s Virtual Chassis technology allows up to 10 EX4100 switches to be seamlessly interconnected and managed as a single device, delivering a scalable, pay-as-you-grow solution for expanding network environments. The EX4100 family of Ethernet switches consists of the following models:

The EX4100-48MP, which offers 16 x 100 MB/1GbE/2.5GbE and 32 x 10 MB/100 MB/1GbE Power over Ethernet (PoE++) access ports, delivering up to 90 W per PoE port with an overall total 1620 W of PoE power budget (using two power supplies)
The EX4100-24MP, which offers 8 x 100 MB/1GbE/2.5GbE/5GbE/10GbE and 16 x 10 MB/100 MB/1GbE PoE++ access ports, delivering up to 90 W per port with an overall total 1620 W of PoE power budget (using two power supplies)
The EX4100-24T, which offers 24 x 1GbE non-PoE access ports
The EX4100-24P, which offers 24 x 1GbE PoE+ access ports, delivering up to 30 W per port with an overall total 1440 W of PoE power budget (using two power supplies)
The EX4100-48T, which offers 48 x 1GbE non PoE-access ports
The EX4100-48P, which offers 48 x 1GbE PoE+ access ports, delivering up to 30 W per port with an overall total 1440 W of PoE power budget (using two power supplies)

Each EX4100 model offers 4 x 1/10GbE small form-factor pluggable plus transceiver (SFP+) fixed uplink ports. The EX4100 switches include 4 x 10GbE/25GbE SFP28 ports to support Virtual Chassis connections, which can be reconfigured for use as Ethernet ports for uplink connectivity. EX4100 switches also include high availability (HA) features such as redundant, hot-swappable power supplies and field-replaceable fans to ensure maximum uptime. In addition, -24 port and -48 port Multi-Gigabit Ethernet EX4100 switch models offer standards-based 802.3af/at/bt (PoE/PoE+/PoE++) for delivering up to 90 watts on any access port. The EX4100 switches can be configured to deliver fast PoE capability, which enables the switches to deliver PoE power to connected PoE devices within a few seconds of power being applied to the switches.

Architecture and Key Components

Cloud Management with Juniper Mist Wired Assurance Driven by Mist AI

EX4100 switches can be quickly and easily onboarded (Day 0), provisioned (Day 1), and managed (Day 2+) from the cloud with Juniper Mist Wired Assurance, which brings AI-powered automation and insights that optimize experiences for end users and connected devices. The EX4100 provides rich Junos® operating system telemetry data for Mist AI, which helps achieve simpler operations, shorter mean time to repair (MTTR), and streamlined troubleshooting. For more information, read the Juniper Mist Wired Assurance datasheet. In addition to Juniper Mist Wired Assurance, Marvis Virtual Network Assistant—a key part of The Self-Driving Network™— makes the Mist AI engine interactive. A digital extension of the IT team, Marvis offers automatic fixes or recommended actions, allowing IT teams to streamline how they troubleshoot and manage their network operations.

Figure 1: EX4100 Virtual Chassis configuration interconnected via dedicated front-panel 25GbE ports

EVPN-VXLAN Technology

Most traditional campus networks have a single-vendor, chassis-based architecture that worked well for smaller, static campuses with few endpoints. However, this approach is too rigid to support the changing needs of modern campus networks. The EX4100 supports EVPN-VXLAN, extending an end-to-end fabric from campus core to distribution to the access layer. An EVPN-VXLAN fabric is a simple, programmable, highly scalable architecture built on open standards. This technology can be applied in both data centers and campuses for architectural consistency. A campus EVPN-VXLAN architecture uses a Layer 3 IP-based underlay network and an EVPN-VXLAN overlay network. A flexible overlay network based on a VXLAN overlay with an EVPN control plane efficiently provides Layer 2 and/or Layer 3 connectivity throughout the network. EVPN-VXLAN also offers a scalable way to build and interconnect multiple campus sites, delivering:

Greater consistency and scalability across all network layers
Multivendor deployment support
Reduced flooding and learning
Location-agnostic connectivity
Consistent network segmentation
Simplified management

Virtual Chassis Technology

Juniper’s Virtual Chassis technology allows multiple interconnected switches to operate as a single, logical unit, enabling users to manage all platforms as one virtual device. Up to 10 EX4100 switches can be interconnected as a Virtual Chassis using 4 x 25GbE SFP28 dedicated front-panel ports. Although configured as Virtual Chassis ports by default, the 4 x 25GbE SFP28 uplinks can also be configured as uplink ports. The EX4100 switches can form a Virtual Chassis with any other models within the EX4100 product line.

Microsegmentation Using Group-Based Policy

GBP leverages underlying VXLAN technology to provide location-agnostic endpoint access control. This allows network administrators to implement consistent security policies across the enterprise network domains. The EX4100 supports a standards-based GBP solution, allowing different levels of access control for endpoints and applications even within the same VLAN. Customers can simplify their network configuration by using GBP, avoiding the need to configure large numbers of firewall filters on all their switches. GBP can block lateral threats by ensuring consistent application of security group policies throughout the network, regardless of the location of endpoints and/or users.

Flow-Based Telemetry

Flow-based telemetry enables flow-level analytics, allowing network administrators to monitor thousands of traffic flows on the EX4100 without burdening the CPU. This improves network security by monitoring, baselining, and detecting flow anomalies. For example, if predefined flow thresholds are breached due to an attack, IP Flow Information Export (IPFIX) alerts can be sent to an external server to quickly identify the attack. Network administrators can also automate specific workflows, such as further examining the traffic or quarantining a port, to triage the issue. In addition to DOS attacks, Flow-Based Telemetry on EX4100 switches can measure packet delays at ingress, chip, and egress points, as well as report drop reasons.

Features and Benefits

Simplified Operations with Juniper Mist Wired Assurance

The EX4100 is fully cloud onboarded, provisioned, and managed by Juniper Mist Wired Assurance. The EX4100 is designed from the ground up to deliver the rich telemetry that enables AI for IT Operations (AIOps) with simplified operations from Day 0 to Day 2 and beyond. Juniper Mist Wired Assurance provides detailed switch insights for easier troubleshooting and improved time to resolution by offering the following features:

Day 0 operations—Onboard switches seamlessly by claiming a greenfield switch or adopting a brownfield switch with a single activation code for true plug-and-play simplicity.
Day 1 operations—Implement a template-based configuration model for bulk rollouts of traditional and campus fabric deployments, while retaining the flexibility and control required to apply custom site- or switch-specific attributes. Automate provisioning of ports via Dynamic Port Profiles.
Day 2 operations—Leverage the AI in Juniper Mist Wired Assurance to meet service-level expectations such as throughput, successful connects, and switch health with key pre- and post-connection metrics (see Figure 1). Add the self-driving capabilities in Marvis Actions to detect loops, add missing VLANs, fix misconfigured ports, identify bad cables, isolate flapping ports, and discover persistently failing clients (see Figure 2). And perform software upgrades easily through Juniper Mist Cloud.

Figure 2: Juniper Mist Wired Assurance service-level expectations screen

Figure 3: Marvis Actions for wired switches

The complimentary addition of Marvis Virtual Network Assistant, driven by Mist AI, lets you start building a Self-Driving Network that simplifies network operations and streamlines troubleshooting via automatic fixes for Juniper Networks EX Series Switches or recommended actions for external systems. For more information, see Juniper Mist Wired Assurance.

Campus Fabric Deployments

EVPN-VXLAN for Campus Core, Distribution, and Access

The main advantages of EVPN-VXLAN in campus networks are:

Flexibility of consistent VLANs across the network: Endpoints can be placed anywhere in the network and remain connected to the same logical L2 network, enabling a virtual topology to be decoupled from the physical topology.
Microsegmentation: The EVPN-VXLAN-based architecture lets you deploy a common set of policies and services across campuses with support for L2 and L3VPNs.
Scalability: With an EVPN control plane, enterprises can scale out easily by adding more core, aggregation, and access layer devices as the business grows without having to redesign the network or perform a forklift upgrade. Using an L3 IP-based underlay coupled with an EVPN-VXLAN overlay, campus network operators can deploy much larger and more resilient networks than would otherwise be possible with traditional L2 Ethernet-based architectures.

Juniper offers complete flexibility in choosing any of the following validated EVPN-VXLAN campus fabrics that cater to networks of different sizes, scale, and segmentation requirements: EVPN multihoming (on collapsed core or distribution): A collapsed core architecture combines the core and distribution layers into a single layer, turning the traditional three-tier hierarchal network into a two-tier network. EVPN Multihoming on a collapsed core eliminates the need for Spanning Tree Protocol (STP) across campus networks by providing link aggregation capabilities from the access layer to the core layer. This topology is best suited for small to medium distributed enterprise networks and allows for consistent VLANs across the network. This topology uses ESI (Ethernet Segment Identifier) LAG (Link Aggregation) and is a standards-based protocol. Campus Fabric Core distribution: When EVPN VXLAN is configured across core and distribution layers, it becomes a campus Fabric Core Distribution architecture, which can be configured in two modes: centrally or edge routed bridging overlay. This architecture provides an opportunity for an administrator to move towards campus-fabric IP Clos without fork-lift upgrade of all access switches in the existing network, while bringing in the advantages of moving to a campus fabric and providing an easy way to scale out the network. Campus Fabric IP Clos: When EVPN VXLAN is configured on all layers including access, it is called the campus fabric IP Clos architecture. This model is also referred to as “end-to-end,” given that VXLAN tunnels are terminated at the access layer. Due to the availability of VXLAN at access, it provides us with the opportunity to bring policy enforcement to the access layer (closest to the source) using Group Based Policy (GBP). Standards-based GBP tags bring the unique option to segment traffic both at a micro and macro level. GBP tags are assigned dynamically to clients as part of Radius transaction by Mist Cloud NAC. This topology works for small-medium and large campus architectures that need macro and micro segmentation.

Figure 4: Campus fabrics showing Virtual Chassis and EVPN-VXLAN-based architectures

All three topologies are standards-based and interoperable with third-party vendors. The EX4100 switches can be deployed in campus and branch access layer networks in the EVPN-VXLAN architectures shown in Figure 4.

Managing AI-Driven Campus Fabric with the Juniper Mist Cloud

Juniper Mist Wired Assurance brings cloud management and Mist AI to the campus fabric. It sets a new standard that moves away from traditional network management towards AI-driven operations, while delivering better experiences to connected devices. Juniper Mist Cloud streamlines deployment and management of campus fabric architectures by allowing:

Automated deployment and zero-touch deployment (ZTD)
Anomaly detection
Root cause analysis

Figure 5: EVPN multihoming configuration via the Juniper Mist cloud

Chassis-Class Availability

The EX4100 switches deliver high availability through redundant power supplies and fans, graceful Routing Engine switchover (GRES), and nonstop bridging and routing when deployed in a Virtual Chassis configuration. In a Virtual Chassis configuration, each EX4100 switch is capable of functioning as a Routing Engine (RE). When two or more EX4100 switches are interconnected, a single control plane is shared among all Virtual Chassis member switches. Junos OS automatically initiates an election process to assign a primary (active) and backup (hot-standby) RE. An integrated L2 and L3 GRES feature maintains uninterrupted access to applications, services, and IP communications in the unlikely event of a primary RE failure. When more than two switches are interconnected in a Virtual Chassis configuration, the remaining switch elements act as line cards and are available to assume the backup RE position should the designated primary RE fail. Primary, backup, and line card priority status can be assigned to dictate the order of ascension; this N+1 RE redundancy, coupled with the GRES, nonstop active routing (NSR), and nonstop bridging (NSB) capabilities of Junos OS, assures a smooth transfer of control plane functions following unexpected failures. The EX4100 implements the same slot/module/port numbering scheme as other Juniper chassis-based products when numbering Virtual Chassis ports, providing true chassis-like operations. By using a consistent operating system and a single configuration file, all switches in a Virtual Chassis configuration are treated as a single device, greatly simplifying overall system maintenance and management. Individually, the EX4100 offers a number of HA features that are typically associated with modular chassis-based switches. When combined with the field-proven Junos OS and L2/L3 failover capabilities, these features provide the EX4100 with true carrier-class reliability.

Redundant power supplies: The EX4100 line of switches supports redundant, load-sharing, hot-swappable, and field-replaceable power supplies to maintain uninterrupted operations. Thanks to its compact footprint, the EX4100 requires significantly less power than chassis-based switches delivering equivalent port densities.
Hot-swappable fans: The EX4100 includes hot-swappable fans, providing sufficient cooling (for a short duration) even if one of the fans were to fail.
Nonstop bridging and nonstop active routing: NSB and NSR on the EX4100 ensure that control plane protocols, states, and tables are synchronized between primary and standby REs to prevent protocol flaps or convergence issues following an RE failover.
Redundant trunk group (RTG): To avoid the complexities of STP without sacrificing network resiliency, the EX4100 employs redundant trunk groups to provide the necessary port redundancy and simplify switch configuration.
Cross-member link aggregation: Cross-member link aggregation allows redundant link aggregation connections between devices in a single Virtual Chassis configuration, providing an additional level of reliability and availability.
IPv4 and IPv6 routing support: IPv4 and IPv6 Layer 3 routing (OSPF and BGP) is available with a Flex license, enabling highly resilient networks.

MACsec AES256

The EX4100 switches support IEEE 802.1ae MACsec with AES-256-bit encryption to increase security of point-to-point traffic communications. MACsec provides encrypted communication at the link layer that is capable of identifying and preventing threats from denial of service (DoS) and other intrusion attacks, as well as man-in-the-middle, masquerading, passive wiretapping, and playback attacks launched from behind the firewall. When MACsec is deployed on ports, the traffic is encrypted on the wire, but the traffic inside the switch is not. This allows the switch to apply network policies such as quality of service (QoS) or deep packet inspection (DPI) to each packet without compromising the security of packets on the wire.

PoE/PoE+/PoE++ Power, Perpetual and Fast PoE

The EX4100 delivers PoE for supporting connected devices such as phones, surveillance cameras, IoT devices, and 802.11AX/Wi-Fi 6 access points, offering a PoE power budget of up to 1620W and supporting up to 90W per port based on the IEEE 802.3bt PoE standard. EX4100 switches support perpetual PoE, which provides uninterrupted power to connected PoE powered devices (PDs) even when the EX4100 switch is rebooting. The EX4100 switches also support a fast PoE capability that delivers PoE power to connected endpoints during a switch power-up, even before the switch is fully operational. This is especially beneficial in situations where the endpoint only needs the power and is not necessarily dependent on network connectivity.

Junos Telemetry Interface

The EX4100 supports Junos telemetry interface (JTI), a modern telemetry streaming feature designed for switch health and performance monitoring. Sensor data can be streamed to a management system at configurable periodic intervals, enabling network administrators to monitor individual link and node utilization as well as troubleshoot issues such as network congestion in real time. JTI delivers the following features:

Performance management by provisioning sensors to collect and stream data and analyze application and workload flow paths through the network
Capacity planning and optimization by proactively detecting hotspots and monitoring latency and microbursts
Troubleshooting and root cause analysis via high-frequency monitoring and correlation of overlay and underlay networks

Junos Operating System

The EX4100 switches run Junos OS, Juniper’s powerful and robust network operating system that powers all Juniper switches, routers, and firewalls. By utilizing a common operating system, Juniper delivers a consistent implementation and operation of control plane features across all products. To maintain that consistency, Junos OS adheres to a highly disciplined development process that uses a single source code and employs a highly available modular architecture to prevent isolated failures from bringing down an entire system. These attributes are fundamental to the core value of the software, enabling all Junos OS-powered products to be updated simultaneously with the same software release. All features are fully regression tested, making each new release a true superset of the previous version. Customers can deploy the software with complete confidence that all existing capabilities are maintained and operate in the same way.

Flex Licensing

Juniper Flex licensing offers a common, simple, and flexible licensing model for EX Series access switches, enabling customers to purchase features based on their network and business needs. Flex licensing is offered in Standard, Advanced, and Premium tiers. Standard tier features are available with the Junos OS image that ships with EX Series switches. Additional features can be unlocked with the purchase of a Flex Advanced or Flex Premium license. The Flex Advanced and Flex Premium licenses for the EX Series platforms are class-based, determined by the number of access ports on the switch. Class 1 (C1) switches have 12 ports, Class 2 (C2) switches have 24 ports, and Class 3 (C3) switches have 32 or 48 ports. The EX4100 switches support both subscription and perpetual Flex licenses. Subscription licenses are offered for three- and five-year terms. In addition to Junos OS features, the Flex Advanced and Flex Premium subscription licenses include Juniper Mist Wired Assurance. Flex Advanced and Flex Premium subscription licenses also allow portability across the same tier and class of switches, ensuring investment protection for the customer. For a complete list of features supported by the Flex Standard, Advanced, and Premium tiers, or to learn about Junos OS EX Series licenses, please visit: https://www.juniper.net/documentation/us/en/software/license/licensing/topics/concept/ flex-licenses-for-ex.html.

Enhanced Limited Lifetime Warranty

The EX4100 includes an enhanced limited lifetime hardware warranty that provides return-to-factory switch replacement for as long as the original purchaser owns the product. The warranty includes lifetime software updates, advanced shipping of spares within one business day, and 24x7 Juniper Networks Technical Assistance Center (JTAC) support for 90 days after the purchase date. Power supplies and fan trays are covered for a period of five years. For complete details, please visit https://support.juniper.net/support/pdf/warranty/990240.pdf.

Product Options

Available EX4100 models are listed in Table 1.

Table 1. EX4100 Line of Ethernet Switches

Model/Product SKU	Access Port Configuration	PoE/PoE+Ports	PoE++Ports	PoE Budget 1 PSU/2 PSU	10GbE Ports	25GbE Ports	Power Supply Rating	Cooling
EX4100-24T	24-port 10/100/1000BASE-T	0	0	N/A	4	4	150 W AC	AFO (front-to-back airflow)
EX4100-48T	48-port 10/100/1000BASE-T	0	0	N/A	4	4	150 W AC	AFO (front-to-back airflow)
EX4100-48T-AFI	48-port 10/100/1000BASE-T	0	0	N/A	4	4	150 W AC	AFI (back-to-front airflow)
EX4100-24T-DC	24-port 10/100/1000BASE-T	0	0	N/A	4	4	150 W DC	AFO (front-to-back airflow)
EX4100-48T-DC	48-port 10/100/1000BASE-T	0	0	N/A	4	4	150 W DC	AFO (front-to-back airflow)
EX4100-24P	24-port 10/100/1000BASE-T	24	0	740 W/1440 W	4	4	920 W AC	AFO (front-to-back airflow)
EX4100-48P	48-port 10/100/1000BASE-T	48	0	740 W/1440 W	4	4	920 W AC	AFO (front-to-back airflow)
EX4100-24MP	8x 100 MB/1GbE/2.5GbE/5GbE/10GbE + 16x 10 MB/100 MB/1GbE	0	24	740W/1620 W	12	4	920 W AC	AFO (front-to-back airflow)
EX4100-48MP	16x 100 MB/1GbE/2.5GbE + 32x 10 MB/100 MB/1GbE	0	48	740 W/1620 W	4	4	920 W AC	AFO (front-to-back airflow)

The EX4100 also offers spare chassis options without power supplies or fans, providing customers with the flexibility to stock SKUs (see Table 2). See the Ordering Information section for additional details.

Table 2. EX4100 Spare Chassis SKUs

Spare Chassis SKU	Description	JPSU-150-AC-AFO + EX4100-FAN-AFO	JPSU-150-AC-AFI + EX4100-FAN-AFI	JPSU-150-DC-AFO + EX4100-FAN-AFO	JPSU-920-AC-AFO + EX4100-FAN-AFO
EX4100-24T-CHAS	Spare chassis, 24-port 10/100/1000BASE-T	Y	X	Y	X
EX4100-48T-CHAS	Spare chassis, 48-port 10/100/1000BASE-T	Y	Y	X	X
EX4100-24P-CHAS	Spare chassis, 24-port 10/100/1000BASE-T	X	X	X	Y
EX4100-48T-CHAS	Spare chassis, 48-port 10/100/1000BASE-T	X	X	Y	X
EX4100-24MP-CHAS	Spare chassis, 8x100 MB/1GbE/2.5GbE/5GbE/10GbE + 16x10 MB/100 MB/1GbE ports	X	X	X	Y
EX4100-48MP-CHAS	Spare chassis, 16x100 MB/1GbE/2.5GbE + 32x10 MB/100 MB/1GbE ports	X	X	X	Y

Y = supported; X = not supported

Figure 6: EX4100 line of Switches

EX4100 Line Specifications

Physical Specifications

Backplane

200 Gbps Virtual Chassis interconnect to combine up to 10 units as a single logical device

Power Options

Power supplies: Autosensing; 100-120 V/200-240 V; 150 W, 920 W AC AFO, and 150 W AC AFI dual load sharing hot-swappable internal redundant power supplies
Maximum current inrush: 30 amps
DC power supply: 150 W DC AFO; input voltage range 48-60 V max; dual load-sharing hot-swappable internal redundant power supplies
Minimum number of PSUs required for fully loaded chassis: 1 per switch

Dimensions (W x H x D)

Base Unit: 17.36 x 1.72 x 13.78 in (44.1 x 4.37 x 35 cm)
With power supply installed: 17.36 x 1.72 x 15.05 in (44.1 x 4.37 x 38.24 cm)
Height: 1 U

System Weight

EX4100-24T switch (with no power supply or fan module): 9.72 lb (4.41 kg)
EX4100-24P switch (with no power supply or fan module): 10 lb (4.54 kg)
EX4100-48T switch (with no power supply or fan module): 10 lb (4.54 kg)
EX4100-48P switch (with no power supply or fan module): 10.27 lb (4.66 kg)
EX4100-24MP switch (with no power supply or fan module): 10.06 lb (4.57 kg)
EX4100-48MP switch (with no power supply or fan module): 10.41 lb (4.72 kg)
150 W AC power supply: 1.43 lb (0.65 kg)
150 W DC power supply: 1.43 lb (0.65 kg)
920 W AC power supply: 1.87 lb (0.85 kg)
Fan module: 0.16 lb (0.07 kg)

Environmental Ranges

Operating temperature: 32° to 113° F (0° to 45° C)
Storage temperature: -40° to 158° F (-40° to 70° C)
Operating altitude: Up to 5000 ft at 40° C (1828.8 m)
Nonoperating altitude: Up to 16,000 ft (4877 m)
Relative humidity operating: 5% to 90% (noncondensing)
Relative humidity non-operating: 0% to 90% (noncondensing)

Cooling [CFM] - Total maximum airflow with two power supplies and fans

Field-replaceable fans: 2
EX4100-24MP : 60.9
EX4100-48MP : 61.7
EX4100-24T : 65.6
EX4100-24T-DC : 64.8
EX4100-24P : 61.6
EX4100-48T : 65.8
EX4100-48T-DC : 66.2
EX4100-48T-AFI : 61.8
EX4100-48P : 64.1

Hardware Specifications Switching Engine Mode

Store and forward

Memory

DRAM: 4 GB with Error Correcting Code (ECC) on all models
Storage: 8 GB on all models

CPU

1.7 GHz ARM CPU on all models

GbE Port Density per System

EX4100-24P/24T: 32 (24 1GbE host ports + 4 10GbE/25GbE ports + 4 1GbE/10GbE ports)
EX4100-48P/48T: 56 (48 1GbE host ports + 4 10GbE/25GbE ports + 4 1GbE/10GbE ports)
EX4100-24MP: 32 (8 10GbE host ports + 16 1GbE host ports + 4 10GbE/25GbE ports + 4 1GbE/10GbE ports)
EX4100-48MP: 56 (16 2.5GbE host ports + 32 1GbE host ports + 4 10GbE/25GbE ports + 4 port 1GbE/10GbE ports)

Physical Layer

Time domain reflectometry (TDR) for detecting cable breaks and shorts: EX4100-24P/T and EX4100-48P/T, EX4100-24MP and EX4100-48MP
Auto medium-dependent interface/medium-dependent interface crossover (MDI/MDIX) support: EX4100-24P/T, EX4100-48P/T, EX4100-24MP and EX4100-48MP
Port speed downshift/setting maximum advertised speed on
- 10/100/1000BASE-T ports on EX4100-24P/T and EX4100-48P/T
- 100/1000BASE-T/2.5GBASE-T/5GBASE-T/10GBASE-T on EX4100-24MP
- 100/1000BASE-T/2.5GBASE-T on EX4100-48MP

Packet Switching Capacities (Maximum with 64 Byte Packets)

EX4100-24P/24T: 164 Gbps (unidirectional)/328 Gbps (bidirectional)
EX4100-48P/48T: 188 Gbps (unidirectional)/376 Gbps (bidirectional)
EX4100-24MP: 236 Gbps (unidirectional)/472 Gbps (bidirectional)
EX4100-48MP: 212 Gbps (unidirectional)/424 Gbps (bidirectional)

Software Specifications

Layer 2/Layer 3 Throughput (Mpps) (Maximum with 64 Byte Packets)

EX4100-48P/T 279 Mpps
EX4100-24P/T 244 Mpps
EX4100-48MP 315 Mpps
EX4100-24MP 351 Mpps

Security

Media Access Control (MAC) limiting (per port and per VLAN)
Allowed MAC addresses: 64,000
Dynamic Address Resolution Protocol (ARP) dynamic ARP inspection (DAI)
IP source guard
Local proxy ARP
Static ARP support
Dynamic Host Configuration Protocol (DHCP) snooping
Captive portal
Persistent MAC address configurations
Distributed denial of service (DDoS) protection (CPU control path flooding protection)

Layer 2 Switching

Maximum MAC addresses per system: 64,000
Jumbo frames: 9216 bytes
Range of possible VLAN IDs: 1 to 4094
Virtual Spanning Tree (VST) instances: 253
Port-based VLAN
Voice VLAN
Physical port redundancy: Redundant trunk group (RTG)
Compatible with Per-VLAN Spanning Tree Plus (PVST+)
Routed VLAN interface (RVI)
Uplink failure detection (UFD)
ITU-T G.8032: Ethernet Ring Protection Switching
IEEE 802.1AB: Link Layer Discovery Protocol (LLDP)
LLDP-MED with VoIP integration
Default VLAN and multiple VLAN range support
MAC learning deactivate
Persistent MAC learning (sticky MAC)
MAC notification
Private VLANs (PVLANs)
Explicit congestion notification (ECN)
Layer 2 protocol tunneling (L2PT)
IEEE 802.1ak: Multiple VLAN Registration Protocol (MVRP)
IEEE 802.1p: Class of service (CoS) prioritization
IEEE 802.1Q: VLAN tagging
IEEE 802.1X: Port Access Control
IEEE 802.1ak: Multiple Registration Protocol
IEEE 802.3: 10BASE-T
IEEE 802.3u: 100BASE-T
IEEE 802.3ab: 1000BASE-T
IEEE 802.3z: 1000BASE-X
IEEE 802.3ae: 10-Gigabit Ethernet
IEEE 802.3by: 25-Gigabit Ethernet
IEEE 802.3af: Power over Ethernet
IEEE 802.3at: Power over Ethernet Plus
IEEE 802.3bt: 90 W Power over Ethernet
IEEE 802.3x: Pause Frames/Flow Control
- IEEE 802.3ah: Ethernet in the First Mile

Spanning Tree

IEEE 802.1D: Spanning Tree Protocol
IEEE 802.1s: Multiple Spanning Tree Protocol (MSTP)
Number of MST instances supported: 64
Number of VLAN Spanning Tree Protocol (VSTP) instances supported: 253
IEEE 802.1w: Rapid reconfiguration of Spanning Tree Protocol

Link Aggregation

IEEE 802.3ad: Link Aggregation Control Protocol
802.3ad (LACP) support:
Number of LAGs supported: 128
- Maximum number of ports per LAG: 8
LAG load-sharing algorithm bridged or routed (unicast or multicast) traffic:
- IP: S/D IP
- TCP/UDP: S/D IP, S/D Port
- Non-IP: S/D MAC
- Tagged ports support in LAG

Layer 3 Features: IPv4

Maximum number of ARP entries: 32,000
Maximum number of IPv4 unicast routes in hardware: 32,650 prefixes; 32,150 host routes
Maximum number of IPv4 multicast routes in hardware: 16,100 multicast routes
Routing protocols: RIPv1/v2, OSPF, BGP, IS-IS
Static routing
Routing policy
Bidirectional Forwarding Detection (BFD)
L3 redundancy: Virtual Router Redundancy Protocol (VRRP)
VRF-Lite

Layer 3 Features: IPv6

Maximum number of neighbor discovery (ND) entries: 16,000
Maximum number of IPv6 unicast routes in hardware: 16,200 prefixes; 16,050 host routes
Maximum number of IPv6 multicast routes in hardware: 8000 multicast routes
Routing protocols: RIPng, OSPFv3, IPv6, IS-IS
Static routing

Access Control Lists (ACLs) (Junos OS Firewall Filters)

ACL entries (ACE) in hardware per system:
- Port-based ACL (PACL) ingress: 4092
- VLAN-based ACL (VACL) ingress: 4092
- Router-based ACL (RACL) ingress: 4092
- Port-based ACL (PACL) egress: 1022
- VLAN-based ACL (VACL) egress: 511
- Egress across RACL: 1022
- ACL counter for denied packets
ACL counter for permitted packets
Ability to add/remove/change ACL entries in middle of list (ACL editing)
L2-L4 ACL

Access Security

802.1X port-based
802.1X multiple supplicants
802.1X with VLAN assignment
802.1X with authentication bypass access (based on host MAC address)
802.1X with VoIP VLAN support
802.1X dynamic ACL based on RADIUS attributes
802.1X Supported Extensible Authentication Protocol (EAP) types: Message Digest 5 (MD5), Transport Layer Security (TLS), Tunneled TLS (TTLS), Protected Extensible Authenticated Protocol (PEAP)
MAC authentication (RADIUS)
Control plane DoS protection
Radius functionality over IPv6 for authentication, authorization, and accounting (AAA)
DHCPv6 snooping
IPv6 neighbor discovery
IPv6 source guard
IPv6 router advertisement (RA) guard
IPv6 Neighbor Discovery Inspection
MACsec

High Availability

Redundant, hot-swappable power supplies
Redundant, field-replaceable, hot-swappable fans
GRES for Layer 2 hitless forwarding and Layer 3 protocols on RE failover
Graceful protocol restart (OSPF, BGP)
Layer 2 hitless forwarding on RE failover
Nonstop bridging: LACP, xSTP
Nonstop routing: PIM, OSPF v2 and v3, RIP v2, RIPng, BGP, BGPv6, IS-IS, IGMP v1, v2, v3

Quality of Service

L2 QoS
L3 QoS
Ingress policing: 1 rate 2 color
Hardware queues per port: 12 (8 unicast + 4 multicast)
Scheduling methods (egress): Strict priority (SP), weighted deficit round-robin (WDRR)
802.1p, DiffServ code point (DSCP)/IP precedence trust and marking
L2-L4 classification criteria: Interface, MAC address, Ethertype, 802.1p, VLAN, IP address, DSCP/IP precedence, TCP/UDP port numbers, and more
Congestion avoidance capabilities: Tail drop, weighted random early detection (WRED)

Multicast

IGMP: v1, v2, v3
IGMP snooping
Multicast Listener Discovery (MLD) snooping
Protocol Independent Multicast-Sparse Mode (PIM-SM), PIM Source-Specific Mode (PIM-SSM), PIM Dense Mode (PIM-DM)

Management and Analytics Platforms

Juniper Mist Wired Assurance for campus
Junos Space^® Network Director for campus
Junos Space Management Applications

Device Management and Operations

Junos OS CLI
Out-of-band management: Serial; 10/100/1000BASE-T Ethernet
Rescue configuration
Configuration rollback
Image rollback
RMON (RFC2819) groups 1, 2, 3, 9
Remote performance monitoring
SNMP: v1, v2c, v3
Network Time Protocol (NTP)
DHCP server
DHCP client and DHCP proxy
DHCP relay and helper
DHCP local server support
RADIUS
TACACS+
SSHv2
Secure copy
HTTP/HTTPs
Domain Name System (DNS) resolver
System logging
Temperature sensor
Configuration backup via FTP/secure copy

Supported RFCs

RFC 768 UDP
RFC 783 TFTP
RFC 791 IP
RFC 792 ICMP
RFC 793 TCP
RFC 826 ARP
RFC 854 Telnet client and server
RFC 894 IP over Ethernet
RFC 903 RARP
RFC 906 TFTP Bootstrap
RFC 951, 1542 BootP
RFC 1027 Proxy ARP
RFC 1058 RIP v1
RFC 1112 IGMP v1
RFC 1122 Host Requirements
RFC 1195 Use of OSI IS-IS for Routing in TCP/IP and Dual Environments (TCP/IP transport only)
RFC 1256 IPv4 ICMP Router Discovery (IRDP)
RFC 1492 TACACS+RFC 1519 CIDR
RFC 1587 OSPF NSSA Option
RFC 1591 DNS
RFC 1812 Requirements for IP Version 4 Routers
RFC 1981 Path MTU Discovery for IPv6
RFC 2030 SNTP, Simple Network Time Protocol
RFC 2068 HTTP server
RFC 2080 RIPng for IPv6
RFC 2131 BOOTP/DHCP relay agent and DHCP server
RFC 2138 RADIUS Authentication
RFC 2139 RADIUS Accounting
RFC 2154 OSPF w/Digital Signatures (password, MD-5)
RFC 2236 IGMP v2
RFC 2267 Network Ingress Filtering
RFC 2328 OSPF v2 (edge-mode)
RFC 2338 VRRP
RFC 2362 PIM-SM (edge-mode)
RFC 2370 OSPF Opaque LSA Option
RFC 2453 RIP v2
RFC 2460 Internet Protocol, Version 6 (IPv6) Specification
RFC 2461 Neighbor Discovery for IP Version 6 (IPv6)
RFC 2463 Internet Control Message Protocol (ICMPv6) for the Internet Protocol Version 6 (IPv6) Specification
- RFC 2464 Transmission of IPv6 Packets over Ethernet Networks
- RFC 2474 DiffServ Precedence, including 12 queues/port
- RFC 2475 DiffServ Core and Edge Router Functions
- RFC 2526 Reserved IPv6 Subnet Anycast Addresses
- RFC 2597 DiffServ Assured Forwarding (AF)
- RFC 2598 DiffServ Expedited Forwarding (EF)
- RFC 2740 OSPF for IPv6
- RFC 2925 MIB for Remote Ping, Trace
- RFC 3176 sFlow
- RFC 3376 IGMP v3
- RFC 3484 Default Address Selection for Internet Protocol Version 6 (IPv6)
- RFC 3513 Internet Protocol Version 6 (IPv6) Addressing Architecture
- RFC 3569 draft-ietf-ssm-arch-06.txt PIM-SSM PIM Source Specific Multicast
- RFC 3579 RADIUS EAP support for 802.1x
- RFC 3618 Multicast Source Discovery Protocol (MSDP)
- RFC 3623 OSPF Graceful Restart
- RFC 4213 Basic Transition Mechanisms for IPv6 Hosts and Routers
- RFC 4291 IPv6 Addressing Architecture
- RFC 4443 ICMPv6 for the IPv6 Specification
- RFC 4541 IBMP and MLD snooping services
- RFC 4552 OSPFv3 Authentication
- RFC 4861 Neighbor Discovery for IPv6
- RFC 4862 IPv6 Stateless Address Autoconfiguration
- RFC 4915 MT-OSPF
- RFC 5095 Deprecation of Type 0 Routing Headers
- RFC 5176 Dynamic Authorization Extensions to RADIUS
- RFC 5798 VRRPv3 for IPv6
- Draft-ietf-bfd-base-05.txt Bidirectional Forwarding Detection
- Draft-ietf-idr-restart-10.txt Graceful Restart Mechanism
- Draft-ietf-isis-restart-02 Restart Signaling for IS-IS
- Draft-ietf-isis-wg-multi-topology-11 Multi Topology (MT) Routing in IS-IS for BGP
- Internet draft-ietf-isis-ipv6-06.txt, Routing IPv6 with IS-IS
- LLDP Media Endpoint Discovery (LLDP-MED), ANSI/ TIA-1057, draft 08
- PIM-DM Draft IETF PIM Dense Mode draft-ietf-idmr- pimdm-05.txt, draft-ietf-pim-dm-new-v2-04.txt

Supported MIBs

RFC 1155 SMI
RFC 1157 SNMPv1
RFC 1212, RFC 1213, RFC 1215 MIB-II, Ethernet-Like MIB and TRAPs
RFC 1493 Bridge MIB
RFC 1643 Ethernet MIB
RFC 1657 BGP-4 MIB
RFC 1724 RIPv2 MIB
RFC 1850 OSPFv2 MIB
RFC 1905 RFC 1907 SNMP v2c, SMIv2 and Revised MIB-II
RFC 2011 SNMPv2 for Internet Protocol using SMIv2
RFC 2012 SNMPv2 for transmission control protocol using SMIv2
RFC 2013 SNMPv2 for user datagram protocol suing SMIv2
RFC 2096 IPv4 Forwarding Table MIB
RFC 2287 System Application Packages MIB
RFC 2570–2575 SNMPv3, user based security, encryption, and authentication
RFC 2576 Coexistence between SNMP Version 1, Version 2, and Version 3
RFC 2578 SNMP Structure of Management Information MIB
RFC 2579 SNMP Textual Conventions for SMIv2
RFC 2665 Ethernet-like interface MIB
RFC 2787 VRRP MIB
RFC 2819 RMON MIB
RFC 2863 Interface Group MIB
RFC 2863 Interface MIB
RFC 2922 LLDP MIB
RFC 2925 Ping/Traceroute MIB
RFC 2932 IPv4 Multicast MIB
RFC 3413 SNMP Application MIB
RFC 3414 User-based Security model for SNMPv3
RFC 3415 View-based Access Control Model for SNMP
RFC 3621 PoE-MIB (PoE switches only)
RFC 4188 STP and Extensions MIB
RFC 4363 Definitions of Managed Objects for Bridges with Traffic Classes, Multicast Filtering, and VLAN extensions
RFC 5643 OSPF v3 MIB support
Draft – blumenthal – aes – usm - 08
Draft – reeder - snmpv3 – usm - 3desede -00
Draft-ietf-bfd-mib-02.txt
Draft-ietf-idmr-igmp-mib-13
Draft-ietf-idmr-pim-mib-09
Draft-ietf-idr-bgp4-mibv2-02.txt – Enhanced BGP-4 MIB
Draft-ietf-isis-wg-mib-07

Troubleshooting

Debugging: CLI via console, Telnet, or SSH
Diagnostics: Show and debug command, statistics
Traffic mirroring (port)
Traffic mirroring (VLAN)
IP tools: Extended ping and trace
Juniper Networks commit and rollback

Traffic Monitoring

ACL-based mirroring
Mirroring destination ports per system: 4
- LAG port monitoring
- Multiple destination ports monitored to 1 mirror (N:1)
Maximum number of mirroring sessions: 4
Mirroring to remote destination (over L2): 1 destination VLAN

Safety and Compliance

Electromagnetic Compatibility (EMC) Requirements

FCC 47 CFR Part 15
ICES-003 / ICES-GEN
EN 300 386 V1.6.1
EN 300 386 V2.1.1
EN 55032
CISPR 32
EN 55024
CISPR 24
EN 55035
CISPR 35
IEC/EN 61000 Series
AS/NZS CISPR 32
VCCI-CISPR 32
BSMI CNS 13438
KN 32 and KN 35
KN 61000 Series
TEC/SD/DD/EMC-221/05/OCT-16
TCVN 7189
TCVN 7317

Safety Requirements Chassis and Optics

CAN/CSA-C22.2 No. 62368-1 and 60950-1
UL 62368-1 and 60950-1
IEC 62368-1 and 60950-1 (All country deviations): CB Scheme report
IEC 62368-3 for USB and PoE: CB Scheme report
CFR, Title 21, Chapter 1, Subchapter J, Part 1040
REDR c 1370 OR CAN/CSA-E 60825-1- Part 1
IEC 60825-1
IEC 60825-2

Energy Efficiency

AT&T TEER (ATIS-06000015.03.2013)
ECR 3.0.1
ETSI ES 203 136 V.1.1.1
Verizon TEEER (VZ.TPR.9205)

Environmental

Reduction of Hazardous Substances (ROHS) 6/6

Telco

CLEI code

Noise Specifications

Noise measurements based on operational tests taken from bystander position (front) and performed at 23° C in compliance with ISO 7779.

Juniper Networks Services and Support

Juniper Networks is the leader in performance-enabling services that are designed to accelerate,

Add to cart Details

QFX5120 Ethernet Switch

ASK FOR PRICE

Product Overview

The QFX5120 Switch delivers rich, low latency Layer 2/Layer 3 features and advanced EVPN-VXLAN capabilities, making it an ideal data center top-of-rack and distribution switch for campus enterprise deployments. Featuring L3 gateway capabilities for routing between virtualized and bare-metal servers, the QFX5120 is designed for extremely agile data centers that require support for overlay/underlay network architectures. Native 25GbE with 100GbE uplink ports on the QFX5120-48Y and QFX5120-48YM, 10GbE/1GbE copper with 100GbE uplink ports on the QFX5120-48T, and 32 100GbE ports on the QFX5120-32C make the QFX5120 family ideal for spine-and-leaf network deployments.

QFX5120-48Y front with top low view image

Product Description

The Juniper Networks^® QFX5120 Switch delivers high scale, high availability, and high performance for data center and campus deployments. The QFX5120 Switch is a versatile routing and switching platform addressing higher server access speed and campus distribution use cases while offering high-density 1GbE/10GbE/25GbE and 100GbE uplinks for collapsed spine data center or campus distribution deployments.

Product Options

The QFX5120 Switch includes four compact 1 U platforms—the QFX5120-48Y, the QFX5120-48YM, the QFX5120-48T, and the QFX5120-32C—that provide wire-speed packet performance, very low latency, and a rich set of Junos^® operating system features.

QFX5120-48Y

The QFX5120-48Y is a 25GbE/100GbE data center leaf and campus distribution switch featuring:

48 25GbE (SFP28)/10GbE (SFP+)/1GbE (SFP) downlink ports
Eight 100GbE (QSFP28)/40GbE (QSFP+) uplink ports
Up to 4 Tbps L2 and L3 performance (bidirectional), with latency as low as 800 nanoseconds
A 2.2 GHz quad-core Intel CPU with 16 GB memory and 50 GB SSD storage

Using breakout cables, each of the eight 100GbE QSFP28 ports can be broken into four 25GbE SFP28 ports, while each 40GbE quad small form-factor pluggable plus (QSFP+) transceiver ports can be broken into four 10GbE small form-factor pluggable plus (SFP+) transceiver ports, increasing the total number of supported 25GbE and 10GbE ports per switch to 80.

QFX5120-48YM

The QFX5120-48YM is a 10GbE/25GbE/100GbE data center leaf and campus distribution switch featuring:

48 25GbE (SFP28)/10GbE (SFP+)/1GbE (SFP) downlink ports
Eight 100GbE (QSFP28)/40GbE (QSFP+) uplink ports
Up to 4 Tbps L2 and L3 performance (bidirectional), with latency as low as 800 nanoseconds
Media Access Control Security (MACsec) AES-256 support across all ports
A 2.9 GHz quad-core Intel CPU with 16 GB memory and 100 GB SSD storage

When using breakout cables, two of the 100GbE QSFP28 ports (ports 50 and 52) can be broken into four 25GbE SFP28 or four 10GbE SFP+ ports, increasing the maximum number of 10GbE/25GbE ports supported to 56. When using breakouts, the total number of all ports on the switch, including 6x100GbE ports and 56x10/25GbE, is 62.

QFX5120-48T

The QFX5120-48T is a 10GbE/100GbE data center leaf and campus distribution switch featuring:

48 dual-speed 1GbE/10GbE RJ-45 copper downlink ports
Six dual-speed 100GbE (QSFP28)/40GbE (QSFP+) uplink ports
Up to 2.16 Tbps L2 and L3 performance (bidirectional), with latency as low as 800 nanoseconds
A 2.2 GHz quad-core Intel CPU with 16 GB memory and 100 GB SSD storage

Using breakout cables, 40GbE QSFP+ ports 50 and 51 can be channelized into four 10GbE SFP+ ports each, increasing the total number of 10GbE ports per switch to 56.

QFX5120-32C

The QFX5120-32C is a compact 100GbE data center leaf-and-spine and campus distribution switch featuring:

32 100GbE (QSFP28) or 40GbE (QSFP+) uplink ports
A 2.2 GHz quad-core Intel CPU with 16 GB memory and 64 GB SSD storage
Up to 6.4 Tbps L2 and L3 performance (bidirectional), with latency as low as 800 nanoseconds

Using breakout cables, 100GbE QSFP28 ports 0-30 can be channelized into four 25GbE SFP28 ports*, and the 40GbE QSFP+ ports 0-30 can be channelized into four 10GbE SFP+ ports, increasing the total number of 25GbE per switch to 124 and the total number of 10GbE ports per switch to 126 (including SFP+ ports 32 and 33). Port 31 does not support 4x10G or 4x25G channelization options. Only 100GbE, 40GbE, and 2x50GbE channelization options are supported on port 31. In addition, all QFX5120 switch models include:

Support for VXLAN as an L2 or L3 gateway
Advanced Junos OS features such as Ethernet VPN-Virtual Extensible LAN (EVPN-VXLAN), BGP add-path, L3 VPN, and MPLS
Feature-rich automation capabilities with support for Python and zero-touch provisioning (ZTP)

Junos OS

The high-performance QFX5120 Switch runs Junos OS, Juniper’s powerful and robust network operating system that powers all Juniper switches, routers, and firewalls. Key Junos OS features that enhance the functionality and capabilities of the QFX5120 include:

Software modularity, with process modules running independently in their own protected memory space and with the ability to do process restarts
Uninterrupted routing and forwarding, with features such as nonstop active routing (NSR) and nonstop bridging (NSB)
Commit and rollback functionality that ensures error-free network configurations
A powerful set of scripts for on-box problem detection, reporting, and resolution

Data Center Deployments

Data centers demand high-speed, low-latency, storage- and I/O-converged networking solutions that maximize performance for physical servers, virtual servers, and storage. The QFX5120 Switch addresses these issues with low-latency, lossless, high-density 10GbE, 25GbE, and 100GbE interfaces on a compact 1 U platform. In addition, the QFX5120 offers EVPN-VXLAN L2 and L3 gateway support, making it an ideal solution for either edge routed or centrally routed overlay deployments in the data center. The QFX5120 also supports flexible back-to-front and front-to-back airflow cooling options, ensuring consistency with server designs for hot-aisle or cold-aisle deployments.

Data Center Server Access

The QFX5120-48Y and QFX5120-48YM support tri-speed 1GbE/10GbE/25GbE, making them a perfect fit for top-of-rack deployments. The 48 ports of native 10GbE/25GbE for server connectivity, plus up to eight 40GbE or 100GbE ports for uplink connectivity, provide very low oversubscription of 1.5:1 from access to aggregation. The QFX5120-48T supports dual-speed 1GbE/10GbE, also making it a perfect fit for top-of-rack deployments. The 48 native 10GbE RJ-45 copper ports for server connectivity, plus up to six 40GbE or 100GbE ports for uplink connectivity, provide an unsubscribed (0.8:1) access-to-aggregation ratio. The QFX5120-32C can also be used for high-density 25GbE server connectivity, with an option to break out the 100GbE ports into four 25GbE ports.

In Figure 1, the QFX5120 is deployed as a leaf acting as an edge-routed gateway. In this topology, the VXLAN tunnel encapsulation and decapsulation take place on the QFX5120 leaf switches, while Juniper Networks QFX5200-32C or Juniper Networks QFX5210-64C spine switches are used for IP transit. Juniper Networks QFX5110-32Q switches can also be used in the spine to build a 40GbE fabric.

Figure 1: Edge-routed bridging at the leaf with QFX5200-32C/QFX5210-64C as spine switches

In Figure 2, the QFX5120-48YM leaf and Juniper Networks QFX10008 Switch spine are deployed as EVPN-VXLAN switches acting as centrally routed gateways or distributed edge-routed gateways. If centrally routed bridging is used, the VXLAN tunnel encapsulation and decapsulation occur on the spine switches for inter-IRB (integrated routing and bridging) symmetric routing purposes. If edge-routed bridging is used, the IP first hop gateways are distributed at the leaf-level QFX5120-48YM switches using Type 5 symmetric inter-IRB routing. When using a QFX10000-30C-M MACsec line card installed in a spine QFX10008 Switch working with a leaf QFX5120-48YM switch, the leaf-to-spine architecture offers end-to-end MACsec AES-256 capabilities.

Figure 2: QFX5120-48T and QFX5120-48Y/48YM in a leaf-and-spine deployment

Data Center Spine

The QFX5120-32C, with 32 ports of 100GbE, can serve as the spine in small to medium-sized enterprise data centers. The QFX5120-32C can be deployed in a three-stage IP Clos with EVPN-VXLAN overlay to support as many as 1500 server access ports. The QFX5120-48Y/QFX5120-48YM and QFX5120-32C can also be used as a collapsed spine data center deployment, offering Ethernet segment identifier-link aggregation group (ESI-LAG) connectivity to the rest of the network infrastructure blocks. All QFX5120 switches can operate in both cut-through and store-and-forward modes, delivering sustained wire-speed switching with sub-microsecond latency and low jitter for any packet size (including jumbo frames) in either mode. With features such as multichassis link aggregation (MC-LAG), the QFX5120 supports active/active server dual-homing and can use full bisectional bandwidth from server to switch. Equipped with Junos OS, the QFX5120 supports the most advanced and robust routing capabilities in the industry, OSPF for both IPv4 and IPv6, as well as advanced routing capabilities such as IS-IS and BGP. With additional capabilities such as 64-way equal-cost multipath (ECMP) and BGP add path, the QFX5120 is an ideal building block for deploying the most robust L3 underlay for SDN.

Campus Deployments

Juniper campus fabrics provide a single, standards-based Ethernet VPN-Virtual Extensible LAN (EVPN-VXLAN) solution that can be deployed in any campus, whether a two-tier network with a collapsed core distribution or a campus-wide system that involves multiple buildings with separate distribution and core layers. The QFX5120-48Y and QFX5120-48YM are ideal as campus distribution switches with 10GbE/25GbE downlinks and 40GbE/100GbE uplinks supporting technologies like MC-LAG and EVPN multihoming. The QFX5120-32C is ideal as a campus core switch with 32 ports of 100GbE and support for technologies like campus fabric core-distribution. The QFX5120-48T supports dual-speed 1GbE/10GbE, also making it a perfect fit for top-of-rack deployments in campus environments for server connectivity. Juniper campus fabrics support the following validated architectures:

MC-LAG and EVPN Multihoming (Collapsed Core/Distribution): A pair of interconnected QFX5120 switches can be deployed to provide EVPN multihoming (ESI-LAG) or multichassis link aggregation (MC-LAG) in a collapsed core/distribution configuration. This eliminates the need for Spanning Tree Protocol (STP) across the campus network by providing multihoming capabilities from the access to the distribution layer, while distribution to the core is an L3 IP fabric. ESI-LAG also supports horizontal scaling with more than two devices in the distribution layer and can extend EVPN to the core.

Campus Fabric Core-Distribution: A pair of interconnected QFX5120 switches can provide EVPN L2 and L3 VXLAN gateway support. This eliminates the need for STP across the campus network by providing a multihoming capability from the access to the distribution layer, while distribution to the core is an L3 IP fabric using EVPN technology. The IP fabric can also extend to connect multiple enterprise buildings, while VXLAN allows stretching of L2 across buildings. An IP Clos network between the distribution and the core layers can exist in two modes, both of which are supported by the QFX5120:
- Centrally routed bridging overlay: An IRB interface placed at a central location in the fabric (in this case, a core device)
- Edge routed bridging overlay: An IRB interface placed at the edge of the fabric (in this case, a distribution device)

Campus Fabric IP Clos: The Campus Fabric IP Clos architecture pushes VXLAN Layer 2/3 gateway functionality to the access layer. In this architecture, the QFX5120 switch acts as an IP fabric distribution switch.

Figure 3: QFX5120 as distribution and core in EVPN multihoming and campus fabric architectures

Features and Benefits

Automation: The QFX5120 supports a number of network automation and plug-and-play operational features, including ZTP and event scripts, automatic rollback, and Python scripting.
Flexible forwarding table: The QFX5120 includes a unified forwarding table, which allows the hardware table to be carved into configurable partitions of L2 media access control (MAC), L3 host, and longest prefix match (LPM) tables. In a pure L2 environment, the QFX5120 supports 288,000 MAC addresses. In L3 mode, the table can support 208,000 host entries. In LPM mode, it can support 351,000 prefixes. Junos OS provides configurable options through a CLI that can optimize the QFX5120 for various deployment scenarios.
Intelligent buffer management: The QFX5120 features a total of 32 MB of shared buffers. While 25% of the total buffer space is dedicated, the rest is shared among all ports and is user configurable. The intelligent buffer mechanism in the QFX5120 effectively absorbs traffic bursts while providing deterministic performance, significantly increasing performance over static allocation.
MPLS: A broad set of MPLS features, including L3 VPN, IPv6 provider edge router (6PE), RSVP traffic engineering, and LDP, allow standards-based network segmentation and virtualization, enabling the QFX5120 to be deployed as a low latency MPLS label-switching router (LSR).
VXLAN overlays: The QFX5120 switch is capable of both L2 and L3 gateway services. Customers can deploy overlay networks to provide L2 adjacencies for applications over L3 fabrics. The overlay networks use VXLAN in the data plane and EVPN or Open vSwitch Database (OVSDB) for programming the overlays.
MACsec and hop-by-hop encryption: The QFX5120-48YM supports IEEE 802.1AE MACsec AES-256, providing link-layer data confidentiality, data integrity, and data origin authentication. The MACsec feature enables the QFX5120-48YM to support 2 Tbps of near line-rate hardware-based traffic encryption on all 100GbE, 40GbE, 25GbE, 10GbE, and 1GbE ports. Defined by IEEE 802.1AE, MACsec provides secure, encrypted communication at the link layer that is capable of identifying and preventing threats from denial-of-service (DoS) and intrusion attacks, as well as man-in-the-middle, masquerading, passive wiretapping, and playback attacks launched from behind the firewall. When MACsec is deployed on switch ports, all traffic is encrypted on the wire, but traffic inside the switch is not. This allows the switch to apply network capabilities such as quality of service (QoS) and sFlow to each packet without compromising the security of packets on the wire.

In addition, Ethernet-based WAN networks can use MACsec to provide link security over long haul connections. MACsec is transparent to Layer 3 and higher layer protocols and is not limited to IP traffic; it works with any type of wired or wireless traffic carried over Ethernet links.

Virtual chassis: The QFX5120 supports Juniper Networks’ unique virtual chassis technology, which enables up to two interconnected switches to operate as a single, logical device with a single IP address. This technology allows campus enterprises to eliminate STP and efficiently utilize network links. QFX5120-48Y (starting with Junos 19.3), QFX5120-32C (staring with Junos 20.3) and QFX5120-48T (starting with Junos 20.2) support virtual chassis. Note: QFX5120-48YM does not support virtual chassis at this time; this feature is reserved for a future release.

Management, Monitoring, and Analytics

Data Center Fabric Management: Juniper Apstra provides operators with the power of intent-based network design to help ensure changes required to enable data center services can be delivered rapidly, accurately, and consistently. Operators can further benefit from the built-in assurance and analytics capabilities to resolve Day 2 operations issues quickly. Apstra Key Features

Automated deployment and zero-touch deployment
Continuous fabric validation
Fabric lifecycle management
Troubleshooting using advanced telemetry

For more information on Apstra, see https://www.juniper.net/us/en/products/network-automation/apstra/apstra-system.html

Campus Fabric Management: Juniper Mist Cloud

Juniper Mist Wired Assurance brings cloud management and Mist AI to campus fabrics. It sets a new standard moving away from traditional network management towards AI-driven operations, while delivering better experiences to connected devices.

Automated deployment and Zero Touch Deployment
Anomaly detection
Root cause analysis

For more information on Mist Wired Assurance, see https://www.juniper.net/us/en/products/cloud-services/wired-assurance.html

Paragon Insights (formerly HealthBot)

Combining the power of telemetry, programmability, advanced algorithms, and machine learning, Juniper® Paragon Insights (formerly HealthBot) delivers the following features and benefits for enhanced monitoring and analytics:

Key performance indicator collection and visualization
Anomaly detection
Root cause analysis
Automated remediation
Multivendor support
Customizable playbooks
JTI telemetry

For more information on Paragon Insights, see https://www.juniper.net/content/dam/www/assets/datasheets/us/en/network-automation/paragon-insights.pdf.

Junos Telemetry Interface

The QFX5120 switch supports Junos telemetry interface (JTI), a modern telemetry streaming tool designed for performance monitoring in complex, dynamic data centers. Streaming data to a performance management system enables network administrators to measure trends in link and node utilization and troubleshoot such issues as network congestion in real time. JTI delivers the following features:

Application visibility and performance management by provisioning sensors to collect and stream data and analyze application and workload flow paths through the network
Capacity planning and optimization by proactively detecting hotspots and monitoring latency and microbursts
Troubleshooting and root cause analysis via high-frequency monitoring and correlation of overlay and underlay networks

QFX5120-48Y, QFX5120-48YM, QFX5120-48T, and QFX5120-32C front with top low view image diagram

QFX5120 Switch Specifications

Hardware

Switching Capacity

QFX5120-48Y: 4 Tbps (bidirectional)/2 Bpps
QFX5120-48YM: 4 Tbps (bidirectional)/2 Bpps
QFX5120-48T: 2.16 Tbps (bidirectional)/1 Bpps
QFX5120-32C: 6.4 Tbps (bidirectional)/2 Bpps
Switching mode (all models): Cut-through and store-and-forward

Weight

QFX5120-48Y: 23.7 lb (10.75 kg)
QFX5120-48YM: 24.8 lb (11.25 kg)
QFX5120-48T: 24.25 lb (11 kg)
QFX5120-32C: 21.12 lb (9.58 kg)

Dimensions (H x W x D)

QFX5120-48Y: 1.72 x 17.36 x 20.48 in. (4.37 x 44.09 x 52.02 cm)
QFX5120-48YM: 1.72 x 17.36 x 20.48 in. (4.37 x 44.09 x 52.02 cm)
QFX5120-48T: 1.72 x 17.36 x 20.48 in. (4.37 x 44.09 x 52.02 cm)
QFX5120-32C: 1.7 x 17.26 x 20.27 in. (4.32 x 43.84 x 51.5 cm)

Power Consumption

QFX5120-48Y
- Max load: 272 W
- Typical load: 247 W
QFX5120-48YM
- Max load: 351 W
- Typical load: 329 W
QFX5120-48T
- Max load: 218 W
- Typical load: 213 W
QFX5120-32C
- Max load: 310 W
- Typical load: 291 W

Airflow

Front-to-back (airflow out) for hot aisle deployment
Back-to-front (airflow in) for cold aisle deployment

Interface Options

QFX5120-48Y
- 2 management ports: 2 x RJ-45 ports
- 1GbE SFP: 48
- 10GbE SFP+: 48/80(with breakout cable)
- 25GbE SFP: 48/80 (with breakout cable)
- 40GbE QSFP+: 8 (each QSFP+ port can be configured as a 4 x 10GbE interface or as a 40 Gbps port)
- 100GbE QSFP28: 8 (each QSFP28 port can be configured as a 4 x 25GbE interface or as a 100 Gbps port)
- SFP GbE optical and copper module
- SFP+ 10GbE optical modules
- SFP+ direct attach copper (DAC) cables: 1/3/5 m twinax copper and 1/3/5/7 m active twinax copper
- SFP28 DAC cables: 1/3 m twinax copper
- SFP28 optics: Short reach (SR), long reach (LR)
- QSFP+ to SFP+: 10GbE direct attach breakout copper (1/3 m twinax copper cable)
QFX5120-48YM
- 2 management ports: 2 x RJ-45 ports
- 1GbE SFP: 48
- 10GbE SFP+: 48/56 (total of 56 ports with breakout cable on port 50 and 52)
- 25GbE SFP: 48/56 (total of 56 ports with breakout cable on port 50 and 52)
- 40GbE QSFP+: 8 (QSFP+ port 50 and 52 can be configured as a 4 x 10GbE interface or as a 40 Gbps port)
- 100GbE QSFP28: 8 (QSFP28 port 50 and 52 can be configured as a 4 x 25GbE interface or as a 100 Gbps port)
- SFP GbE optical
- SFP+ 10GbE optical modules
- SFP+ DAC cables: 1/3/5 m twinax copper and 1/3/5/7 m active twinax copper
- SFP28 DAC cables: 1/3 m twinax copper
- SFP28 optics: Short reach (SR), long reach (LR)
- QSFP+ to SFP+: 10GbE direct attach breakout copper (1/3 m twinax copper cable)
QFX5120-48T
- 1 management port: 1 x RJ-45 port
- 1GbE RJ45 (copper): 48 (each port is dual speed supporting 1GbE/10GbE)
- 40GbE QSFP+: 6 (ports 50 and 51 can be configured as a 4 x 10GbE interface or as 40 Gbps interfaces)
- 100GbE QSFP28: 6 (ports 50 and 51 can be configured as a 4 x 25GbE interface or as 100 Gbps interfaces)
QFX5120-32C
- 1 RJ-45 in-band management port
- 10GbE SFP+: 2 native ports plus 124 (with 4 x 10GbE breakout cable)
- 25GbE SFP: 124 (with breakout cable)
- 40GbE QSFP+: 32 (ports 0-31 can be configured as a 4 x 10GbE interface)
- 100GbE QSFP28: 32 (ports 0-31 can be configured as a 4 x 25GbE interface)
- SFP+ 10GbE optical modules
- SFP+ DAC cables: 1/3/5 m twinax copper and 1/3/5/7 m active twinax copper
- SFP28 DAC cables: 1/3 m twinax copper
- SFP28 optics: SR, LR
- QSFP+ to SFP+: 10GbE direct attach breakout copper (1/3 m twinax copper cable)

Common to All Models

1 USB 2.0 port
1 RS-232 console port
Supported transceiver and direct attach cable
- QSFP+ DAC cables: 1/3 m twinax copper
- QSFP+ optics: SR4, LX4, ESR4, ER4, LR4
- QSFP28 optics: SR4, ER4, PSM4, CWDM4, LR4
Versatile four post mounting options for 19-in server rack or datacom rack

Airflow

Redundant (N+1) and hot-pluggable fan modules for front-to-back and back-to-front airflow
Redundant variable-speed fans to reduce power draw

Power Supply and Fan Modules

Dual redundant (1+1) and hot-pluggable 650 W AC/DC power supplies
100-240 V single phase AC power
-48 to -60 V DC power supply
Redundant 4+1 (QFX5120-48Y/YM and QFX5120-48T) or 5+1 (QFX5120-32C) and hot-pluggable fan modules for front-to- back or back-to-front airflow

Performance Scale (Unidimensional)

MAC addresses per system: 288,000
VLAN IDs: 4093
Number of link aggregation groups (LAGs):
- 80 (QFX5120-48Y/YM, QFX5120-32C)
- 64 (QFX5120-48T)
Number of ports per LAG: 64
IPv4 unicast routes: 351,000 prefixes; 208,000 host routes; 64 ECMP paths
IPv4 multicast routes: 104,000
IPv6 unicast routes: 168,000 prefixes; 104,000 host routes
IPv6 multicast routes: 52,000
Address Resolution Protocol (ARP) entries: 64,000
Jumbo frame: 9216 bytes
Spanning Tree Protocol (STP)
Multiple Spanning Tree Protocol (MSTP) instances: 64
VLAN Spanning Tree Protocol (VSTP) instances: 509
Traffic mirroring
- Mirroring destination ports per switch: 4
- Maximum number of mirroring sessions: 4
- Mirroring destination VLANs per switch: 4

Software Features Supported

Layer 2 Features

STP—IEEE 802.1D (802.1D-2004)
Rapid Spanning Tree Protocol (RSTP) (IEEE 802.1w); MSTP (IEEE 802.1s)
Bridge protocol data unit (BPDU) protect
Loop protect
Root protect
RSTP and VSTP running concurrently
VLAN—IEEE 802.1Q VLAN trunking
Routed VLAN interface (RVI)
Port-based VLAN
Private VLAN (PVLAN)
VLAN translation
Static MAC address assignment for interface
Per VLAN MAC learning (limit)
MAC learning disable
Link Aggregation and Link Aggregation Control Protocol (LACP) (IEEE 802.3ad)
MACsec with AES256 (QFX5120-48YM only)
Virtual chassis—up to 2 members on QFX5120-48Y, QFX5120-32C and QFX5120-48T

Link Aggregation

MC-LAG
LAG load sharing algorithm—bridged or routed (unicast or multicast) traffic
IP: Session Initiation Protocol (SIP), Dynamic Internet Protocol (DIP), TCP/UDP source port, TCP/UDP destination port
Layer 2 and non-IP: MAC SA, MAC DA, Ethertype, VLAN ID, source port

Layer 3 Features (IPv4)

Static routing
Routing protocols (RIP, OSPF, IS-IS, BGP)
Virtual Router Redundancy Protocol (VRRP)
Virtual router
Dynamic Host Configuration Protocol (DHCP) relay
Proxy Address Resolution Protocol (ARP)

EVPN-VXLAN Features

MAC virtual routing and forwarding (MAC-VRF) multiple EVPN instances (EVI) with service-types vlan-based, vlan-aware, vlan-bundle
Symmetric inter-IRB routing with anycast gateway and EVPN type-5 instances
Proxy IGMPv2—EVPN route types 6/7/8
ARP/ND proxy/suppression
ESI-LAG A/A multihoming using Enterprise and SP-style interfaces
Enhanced Ethernet loop detection
Filter-based forwarding on IRB.VGA
EVPN advanced route policing
VLAN-id overlapping using SP-style interfaces
VLAN rewrite support in EVPN-VXLAN enterprise-style
(EP-style) interfaces – vlan-id overlap in EP-style interfaces
OISM - draft-ietf-bess-evpn-irb-mcast
VLAN rewrite support in EVPN-VXLAN enterprise-style
(EP-style) interfaces – vlan-id overlap in EP-style interfaces

Multicast Features

Internet Group Management Protocol (IGMP): v1, v2, v3
IGMP snooping: v1, v2, and v3 (Layer 2 only)
IGMP filter
Protocol Independent Multicast-Sparse Mode (PIM-SM), PIM-Source-Specific Multicast (PIM-SSM), PIM-Dense Mode (PIM-DM) in pure IP fabric use case
Multicast Source Discovery Protocol (MSDP)

Security and Filters

Secure interface login and password
RADIUS
TACACS+
Ingress and egress filters: Allow and deny, port filters, VLAN filters, and routed filters, including management port filters
Filter actions: Logging, system logging, reject, mirror to an interface, counters, assign forwarding class, permit, drop, police, mark
SSH v1, v2
Static ARP support in pure IP fabric
Storm control, port error disable, and autorecovery
Source MAC address filtering on the port
DHCP snooping in pure IP fabric use case

Quality of Service (QoS)

L2 and L3 QoS: Classification, rewrite, queuing
Rate limiting:
- Ingress policing: Single-rate two-color policer, two-rate three-color policer
- Egress policing: Policer, policer mark down action
- Egress shaping: Per queue on each port
10 hardware queues per port (8 unicast and 2 multicast)
Strict-priority queue (SPQ), shaped-deficit weighted round-robin (SDWRR), weighted random early detection (WRED), weighted tail drop
802.1p remarking
Layer 2 classification criteria: Interface, MAC address, Ethertype, 802.1p, VLAN
Congestion avoidance capabilities: WRED
Trust IEEE 802.1p (ingress)
Remarking of bridged packets
Default inner to outer DiffServ code point (DSCP) copy for EVPN-VXLAN

IP Storage

Priority-based flow control (PFC)—IEEE 802.1Qbb, DCBX
PFC using DSCP and explicit congestion notification (ECN) for ROCEv2

High Availability

Bidirectional Forwarding Detection (BFD)
Uplink failure detection

MPLS

Static label-switched paths (LSPs)
RSVP-based signaling of LSPs
LDP-based signaling of LSPs
LDP tunneling (LDP over RSVP)
MPLS class of service (CoS)
MPLS LSR support
IPv6 tunneling (6PE) (via IPv4 MPLS backbone)
IPv4 L3 VPN (RFC 2547, RFC 4364)

Management and Analytics Platforms

Apstra Intent-based System for Data Center
Juniper Mist Wired Assurance for Campus
Junos Space^® Network Director for Campus
Paragon Insights

Device Management and Operations

Role-based CLI management and access
CLI via console, telnet, or SSH
Extended ping and traceroute
Junos OS configuration rescue and rollback
Image rollback
SNMP v1/v2/v3
Junos XML management protocol
sFlow v5
Beacon LED for port and system
Inband Flow Analyzer (IFA)
ZTP
OpenStack Neutron Plug-in
Python
Junos OS event, commit, and OP scripts
JTI

Traffic Mirroring

Port-based
LAG port
VLAN-based
Filter-based
Mirror to local
Mirror to remote destinations (L2 over VLAN)

Standards Compliance

IEEE Standard

IEEE 802.1D
IEEE 802.1w
IEEE 802.1
IEEE 802.1Q
IEEE 802.1p
IEEE 802.1ad
IEEE 802.3ad
IEEE 802.1AB
IEEE 802.3x
IEEE 802.1Qbb
IEEE 802.1Qaz

T11 Standards

INCITS T11 FC-BB-5

Supported RFCs

RFC 768 UDP
RFC 783 Trivial File Transfer Protocol (TFTP)
RFC 791 IP
RFC 792 ICMP
RFC 793 TCP
RFC 826 ARP
RFC 854 Telnet client and server
RFC 894 IP over Ethernet
RFC 903 RARP
RFC 906 TFTP Bootstrap
RFC 951 1542 BootP
RFC 1058 Routing Information Protocol
RFC 1112 IGMP v1
RFC 1122 Host requirements
RFC 1142 OSI IS-IS Intra-domain Routing Protocol
RFC 1256 IPv4 ICMP Router Discovery Protocol (IRDP)
RFC 1492 TACACS+
RFC 1519 Classless Interdomain Routing (CIDR)
RFC 1587 OSPF not-so-stubby area (NSSA) Option
RFC 1591 Domain Name System (DNS)
RFC 1745 BGP4/IDRP for IP—OSPF Interaction
RFC 1772 Application of the Border Gateway Protocol in the Internet
RFC 1812 Requirements for IP Version 4 Routers
RFC 1997 BGP Communities Attribute
RFC 7348 VXLAN—Virtual extensible Local Area Network
RFC 8365 NVO—Network Virtualization Overlay Solution Using Ethernet VPN (EVPN-VXLAN)
OISM - EVPN Optimized Inter-Subnet Multicast (OISM) Forwarding - draft-ietf-bess-evpn-irb-mcast
IGMP and MLD Proxy for EVPN - draft-ietf-bess-evpn-igmp-mld-proxy
RFC 2030 SNTP, Simple Network Time Protocol
RFC 2068 HTTP server
RFC 2131 BOOTP/DHCP relay agent and Dynamic Host
RFC 2138 RADIUS Authentication
RFC 2139 RADIUS Accounting
RFC 2154 OSPF with Digital Signatures (Password, MD-5)
RFC 2236 IGMP v2
RFC 2267 Network ingress filtering
RFC 2328 OSPF v2 (edge mode)
RFC 2338 VRRP
RFC 2362 PIM-SM (edge mode)
RFC 2370 OSPF Opaque LSA Option
RFC 2385 Protection of BGP Sessions via the TCP MD5 Signature Option
RFC 2439 BGP Route Flap Damping
RFC 2453 RIP v2
RFC 2474 Definition of the Differentiated Services Field (DS Field) in the IPv4 and IPv6 Headers
RFC 2597 Assured Forwarding PHB (per-hop behavior) Group
RFC 2598 An Expedited Forwarding PHB
RFC 2697 A Single Rate Three Color Marker
RFC 2698 A Two Rate Three Color Marker
RFC 2796 BGP Route Reflection—An Alternative to Full Mesh IBGP
RFC 2918 Route Refresh Capability for BGP-4
RFC 3065 Autonomous System Confederations for BGP
RFC 3376 IGMP v3 (source-specific multicast include mode only)
RFC 3392 Capabilities Advertisement with BGP-4
RFC 3446 Anycast RP
RFC 3569 SSM
RFC 3618 MSDP
RFC 3623 Graceful OSPF Restart
RFC 4271 Border Gateway Protocol 4 (BGP-4)
RFC 4360 BGP Extended Communities Attribute
RFC 4456 BGP Route Reflection: An Alternative to Full Mesh Internal BGP (IBGP)
RFC 4486 Subcodes for BGP Cease Notification Message
RFC 4724 Graceful Restart Mechanism for BGP
RFC 5549 - Advertising IPv4 Network Layer Reachability Information with an IPv6 Next Hop
RFC 4812 OSPF Restart Signaling
RFC 4893 BGP Support for Four-octet AS Number Space
RFC 5176 Dynamic Authorization Extensions to RADIUS
RFC 5396 Textual Representation of Autonomous System (AS) Numbers
RFC 5668 4-Octet AS Specific BGP Extended Community
RFC 5880 Bidirectional Forwarding Detection (BFD) Dynamic Host Configuration Protocol (DHCP) server

Supported MIBs

RFC 1155 SMI
RFC 1157 SNMPv1
RFC 1212, RFC 1213, RFC 1215 MIB-II, Ethernet-Like MIB and TRAPs
RFC 1850 OSPFv2 MIB
RFC 1901 Introduction to Community-based SNMPv2
RFC 2011 SNMPv2 for Internet Protocol using SMIv2
RFC 2012 SNMPv2 for the Transmission Control Protocol using SMIv2
RFC 2013 SNMPv2 for the User Datagram Protocol using SMIv2
RFC 2233 The Interfaces Group MIB using SMIv2
RFC 2287 System Application Packages MIB
RFC 2570 Introduction to Version 3 of the Internet-standard Network Management Framework
RFC 2571 An Architecture for describing SNMP Management Frameworks (read-only access)
RFC 2572 Message Processing and Dispatching for the SNMP (read-only access)
RFC 2576 Coexistence between SNMP Version 1, Version 2, and Version 3
RFC 2578 SNMP Structure of Management Information MIB
RFC 2579 SNMP Textual Conventions for SMIv2
RFC 2580 Conformance Statements for SMIv2
RFC 2665 Ethernet-like Interface MIB
RFC 2787 VRRP MIB
RFC 2790 Host Resources MIB
RFC 2819 RMON MIB
RFC 2863 Interface Group MIB
RFC 2932 IPv4 Multicast MIB
RFC 3410 Introduction and Applicability Statements for Internet Standard Management Framework
RFC 3411 An Architecture for Describing SNMP Management Frameworks
RFC 3412 Message Processing and Dispatching for the SNMP
RFC 3413 Simple Network Management Protocol (SNMP) Applications (all MIBs are supported except the Proxy MIB)
RFC 3414 User-based Security Model (USM) for version 3 of SNMPv3
RFC 3415 View-based Access Control Model (VACM) for the SNMP
RFC 3416 Version 2 of the Protocol Operations for the SNMP
RFC 3417 Transport Mappings for the SNMP
RFC 3418 Management Information Base (MIB) for the SNMP
RFC 3584 Coexistence between Version 1, Version 2, and Version 3 of the Internet-standard Network Management Framework
RFC 3826 The Advanced Encryption Standard (AES) Cipher Algorithm in the SNMP User-based Security Model
RFC 4188 Definitions of Managed Objects for Bridges
RFC 4318 Definitions of Managed Objects for Bridges with Rapid Spanning Tree Protocol
RFC 4363b Q-Bridge VLAN MIB

Approvals

Safety

CAN/CSA-C22.2 No. 62368-1-14 Information Technology Equipment—Safety
UL 62368-1 Information Technology Equipment—Safety
EN 62368-1: 2014 Information Technology Equipment—Safety
IEC 62368-1: 2014 2nd Edition Information Technology Equipment—Safety (All country deviations): CB Scheme
IEC 60950-1:2005/A2:2013 Information Technology Equipment—Safety (All country deviations): CB Scheme

EMC

EN 300 386 V1.6.1 (2012-09) Electromagnetic compatibility and radio spectrum matters (ERM) Telecommunication network equipment
EN 300 386 V2.1.1 (2016-07) Telecommunication network equipment; EMC requirements; Harmonized Standard covering the essential requirements of the Directive 2014/30/EU
EN 55032:2012 (CISPR 32:2012) Electromagnetic compatibility of multimedia equipment—Emission requirements
EN 55024:2010 (CISPR 24:2010) Information technology equipment—immunity characteristics—limits and methods of measurement
IEC/EN 61000 Immunity Test
AS/NZS CISPR 32:2015 Australia/New Zealand Radiated and Conducted Emissions
FCC 47 CFR Part 15 USA Radiated and Conducted Emissions
ICES-003 Canada Radiated and Conducted Emissions
VCCI-CISPR 32:2016 Japanese Radiated and Conducted Emissions
BSMI CNS 13438 Taiwan Radiated and Conducted Emissions (at 10 meters)
KN32/KN35 Korea Radiated Emission and Immunity Characteristics (at 10 meters)
KN61000 Korea Immunity Test
TEC/SD/DD/EMC-221/05/OCT-16 India EMC standard

Environmental Compliance

Restriction of Hazardous Substances (ROHS) 6/6

80 Plus Silver PSU Efficiency

Recycled material

Waste Electronics and Electrical Equipment (WEEE)

Registration, Evaluation, Authorisation and Restriction of Chemicals (REACH)

China Restriction of Hazardous Substances (ROHS)

Telco

Common Language Equipment Identifier (CLEI) code

Environmental Ranges

Operating temperature: 32° to 104° F (0° to 40° C)
Storage temperature: -40° to 158° F (-40° to 70° C)
Operating altitude: Up to 6000 ft (1829 m)
Relative humidity operating: 5% to 90% (noncondensing)
Relative humidity nonoperating: 0% to 95% (noncondensing)

Juniper Networks Services and Support

Juniper Networks leads the market in performance-enabling services designed to accelerate, extend, and optimize your deployments. Our services enable you to maximize operational efficiency, reduce costs, and minimize risk while achieving a faster time to value for your network. By leveraging best practices from across the industry, you get the maximum levels of system performance, designed and delivered by the world’s leading professional technology experts. For more information, please visit https://www.juniper.net/us/en/products.html.

Installation and Implementation Service

Juniper Professional Services offers a Data Center Switching QuickStart program to ensure that the solution is operational and that you have a complete understanding of areas such as configuration and ongoing operations. The QuickStart service provides an onsite consultant who works with your team to quickly develop the initial configuration and deployment of a small Juniper Networks data center switching environment. A knowledge transfer session, which is intended as a review of local implementation and configuration options, is also included, but is not intended as a substitute for formalized training.

Ordering Information

Product	Description
Switch Hardware
QFX5120-48Y-AFI2	QFX5120-48Y, 48x25GbE+8x100GbE, 1 U, AC airflow in
QFX5120-48Y-AFO2	QFX5120-48Y, 48x25GbE+8x100GbE, 1 U, AC airflow out
QFX5120-48Y-DC-AFI2	QFX5120-48Y, 48x25GbE+8x100GbE, 1 U, DC airflow in
QFX5120-48Y-DC-AFO2	QFX5120-48Y, 48x25GbE+8x100GbE, 1 U, DC airflow out
QFX5120-48YM-AFI	48x25GbE+8x100GbE MACsec AES256 switch, AC, back-to-front air flow
QFX5120-48YM-AFO	48x25GbE+8x100GbE MACsec AES256 switch, AC, front-to-back air flow
QFX5120-48YM-DC-AI	48x25GbE+8x100GbE MACsec AES256 switch, DC, back-to-front air flow, DC power
QFX5120-48YM-DC-AO	48x25GbE+8x100GbE MACsec AES256 switch, AC, front-to-back air flow, DC power
QFX5120-48T-AFI	QFX5120-48T, 48x10GbE+6x100GbE, 1 U, AC airflow in
QFX5120-48T-AFO	QFX5120-48T, 48x10GbE+6x100GbE, 1 U, AC airflow out
QFX5120-48T-DC-AFI	QFX5120-48T, 48x25GbE+6x100GbE, 1 U, DC airflow in
QFX5120-48T-DC-AFO	QFX5120-48T, 48x25GbE+6x100GbE, 1 U, DC airflow out
QFX5120-32C-AFI	QFX5120-32C, 32x100GbE, 1 U, AC airflow in
QFX5120-32C-AFO	QFX5120-32C, 32x100GbE, 1 U, AC airflow out
QFX5120-32C-DC-AFI	QFX5120-32C, 32x100GbE, 1 U, DC airflow in
QFX5120-32C-DC-AFO	QFX5120-32C, 32x100GbE, 1 U, DC airflow out
QFX520048Y-APSU-AO	AC Power supply unit, front-to-back airflow for QFX5120-32C-AFO
QFX520048Y-APSU-AI	AC Power supply unit, back-to-front airflow for QFX5120-32C-AFI
QFX520048Y-DPSU-AO	DC Power supply unit, front-to-back airflow for QFX5120-32C-DC-AFO
QFX520048Y-DPSU-AI	DC Power supply unit, back-to-front airflow for QFX5120-32C-DC-AFI
JPSU-650W-AC-AO	AC Power supply unit, front-to-back airflow for QFX5120-48T-AFO and QFX5120-48Y-AFO2
JPSU-650W-AC-AI	AC Power supply unit, back-to-front airflow for QFX5120-48T-AFI and QFX5120-48Y-AFI2
JPSU-650W-DC-AFO	DC Power supply unit, front-to-back airflow for QFX5120-48T-DC-AFO and QFX5120-48Y-DC-AFO2
JPSU-650W-DC-AFI	DC Power supply unit, back-to-front airflow for QFX5120-48T-DC-AFI and QFX5120-48Y-DC-AFI2
JPSU-850W-AC-AFO	AC Power supply unit, front-to-back airflow for QFX5120-48YM-AFO
JPSU-850W-AC-AFI	AC Power supply unit, back-to-front airflow for QFX5120-48YM-AFI
JPSU-850W-DC-AFO	DC Power supply unit, front-to-back airflow for QFX5120-48YM-DC-AO
JPSU-850W-DC-AFI	DC Power supply unit, back-to-front airflow for QFX5120-48YM-DC-AI
QFX520048Y-FAN-AO	front-to-back airflow fan model for QFX5120-32C models
QFX520048Y-FAN-AI	back-to-front airflow fan model for QFX5120-32C models
QFX5110-FANAFO	Front-to-back airflow fan model for QFX5120-48T, QFX5120-48Y, and QFX5120-48YM models
QFX5110-FANAFI	Back-to-front airflow fan model for QFX5120-48T, QFX5120-48Y, and QFX5120-48YM models
QFX512032C-RMK	4 post rack mount kit for QFX5120-32C models
EX-4PST-RMK	4 post rack mount kit for QFX5120-48T, QFX5120-48Y, and QFX5120-48YM models
QFX5K-2PST-RMK	2 post rack mount kit for QFX5120-32C models
EX-RMK	2 post rack mount kit for QFX5120-48T, QFX5120-48Y, and QFX5120-48YM models
MACsec Encryption
S-QFX5KC1-MACSEC-1	Class C1 QFX5000, MACsec AES 256 Encryption Sub Software, Term: 1 Yr
S-QFX5KC1-MACSEC-3	Class C1 QFX5000, MACsec AES 256 Encryption Sub Software, Term: 3 Yrs
S-QFX5KC1-MACSEC-5	Class C1 QFX5000, MACsec AES 256 Encryption Sub Software, Term: 5 Yrs
S-QFX5KC1-MACSEC-P	Class C1 QFX5000, MACsec AES 256 Encryption Software, Perpetual
Flex Software
S-QFX5K-C1-A1-3	Flex Sub Software, Class 1 QFX5000 line, Adv 1, Term: 3 Yrs
S-QFX5K-C1-A1-5	Flex Sub Software, Class 1 QFX5000 line, Adv 1, Term: 5 Yrs
S-QFX5K-C1-A1-P	Flex Software, Class 1 QFX5000 line, Adv 1, Perpetual
S-QFX5K-C1-A2-3	Flex Sub Software, Class 1 QFX5000 line, Adv 2, Term: 3 Yrs
S-QFX5K-C1-A2-5	Flex Sub Software, Class 1 QFX5000 line, Adv 2, Term: 5 Yrs
S-QFX5K-C1-A2-P	Flex Software, Class 1 QFX5000 line, Adv 2, Perpetual
S-QFX5K-C1-P1-3	Flex Sub Software, Class 1 QFX5000 line, Prem 1, Term: 3 Yrs
S-QFX5K-C1-P1-5	Flex Sub Software, Class 1 QFX5000 line, Prem 1, Term: 5 Yrs
S-QFX5K-C1-P1-P	Flex Software, Class 1 QFX5000 line, Prem 1, Perpetual
S-QFX5K-C2-A1-3	Flex Sub Software, Class 2 QFX5000 line, Adv 1, Term: 3 Yrs
S-QFX5K-C2-A1-5	Flex Sub Software, Class 2 QFX5000 line, Adv 1, Term: 5 Yrs
S-QFX5K-C2-A1-P	Flex Software, Class 2 QFX5000 line, Adv 1, Perpetual
S-QFX5K-C2-A2-3	Flex Sub Software, Class 2 QFX5000 line, Adv 2, Term: 3 Yrs
S-QFX5K-C2-A2-5	Flex Sub Software, Class 2 QFX5000 line, Adv 2, Term: 5 Yrs
S-QFX5K-C2-A2-P	Flex Software, Class 2 QFX5000 line, Adv 2, Perpetual
S-QFX5K-C2-P1-3	Flex Sub Software, Class 2 QFX5000 line, Prem 1, Term: 3 Yrs
S-QFX5K-C2-P1-5	Flex Sub Software, Class 2 QFX5000 line, Prem 1, Term: 5 Yrs
S-QFX5K-C1-P1-P	Flex Software, Class 2 QFX5000 line, Prem 1, Perpetual
Services
SVC-COR-QFX51-48M	Juniper Care Core Support for QFX5120-48YM Switches
SVC-ND-QFX51-48M	Juniper Care Next Day Support for QFX5120-48YM
SVC-COR-QFX5KC1-MS	Juniper Care Core Support for S-QFX5KC1-MACSEC-P
Optics and Transceivers
JNP-SFP-25G-SR	SFP28 25GBASE-SR Optics for up to 100 m transmission over serial multimode fiber-optic (MMF) OM4 fiber (QFX5120-48Y)
JNP-SFP-25G-LR	SFP28 25GBASE-SR Optics for up to 10 km transmission over serial single-mode fiber-optic (SMF) (QFX5120-48Y)
JNP-SFP-25G-DAC-1M	25GbE SFP to SFP copper cable, 1 m (QFX5120-48Y)
JNP-SFP-25G-DAC-3M	25GbE SFP to SFP copper cable, 3 m (QFX5120-48Y)
JNP-40G-AOC-5M	40GbE active cable, 5 m (QFX5120-32C)
JNP-40G-AOC-10M	40GbE active cable, 10 m (QFX5120-48T and QFX5120-32C)

Add to cart Details

QFX5220 Ethernet Switch

ASK FOR PRICE

Product Overview

Cloud providers and network operators are increasingly deploying scale-out, spine-and-leaf IP fabric architectures built on fixed-configuration switches to support growing east-west traffic in the data center. The QFX5220 Switch is optimally suited for these high-speed, high-density, spine-and-leaf IP fabrics. Supporting 400GbE, 200GbE*, 100GbE, 50GbE*, 40GbE, 25GbE, and 10GbE connections and offering an advanced L2, L3, and MPLS feature set, the QFX5220 enables cloud service providers and network operators to build large, next-generation IP fabrics that support network virtualization and intelligent traffic forwarding based on proven, Internet-scale technology.

Product Description

The Juniper Networks^® QFX5220 Switch is a next-generation, fixed-configuration spine-and-leaf switch. It offers flexible, cost-effective, high-density 400GbE, 200GbE*, 100GbE, 50GbE*, 40GbE, 25GbE, and 10GbE interfaces for server and intra-fabric connectivity, and delivers a versatile, future-proofed solution for today’s data centers. QFX5220 switches support advanced Layer 2, Layer 3, and MPLS features. For large public cloud providers—early adopters of high-performance servers to meet explosive workload growth—the QFX5220 supports very large, dense, and fast 400GbE IP fabrics based on proven internet-scale technology. For enterprise customers seeking investment protection as they transition their server farms from 10GbE to 25GbE, the QFX5220 switch also provides a high radix-native 100GbE lean-spine option at reduced power and a smaller footprint. Two QFX5220 models are available, supporting different configurations and use cases. Delivering 25.6 Tbps of bandwidth, both models are optimally designed for spine-and-leaf deployments in enterprise, HPC, service provider, and cloud data centers. QFX5220-32CD: The QFX5220-32CD offers 32 ports in a low-profile 1 U form factor. High-speed ports support a wide variety of port configurations, including 400GbE, 200GbE, 100GbE, 25GbE, 40GbE, and 10GbE. The QFX5220-32CD is equipped with two AC or DC power supplies, providing 1+1 redundancy when all power supplies are present, and six hot-swappable fans offering ports-to-FRUs (AFO) or FRUs-to-ports (AFI) airflow options, providing (5x2+1)+1 redundancy. QFX5220-128C: The QFX5220-128C offers 128 ports in a 4 U form factor. The high-speed ports support a wide variety of configurations, including 100GbE and 40GbE. The switch is equipped with four AC or DC power supplies, providing 2+2 redundancy when all power supplies are present, and six hot-swappable ports-to-FRUs (AFO) airflow fans, providing (5x2+1) +1 redundancy. Both QFX5220 switch models include an Intel XeonD-1500 processor to drive the control plane, which runs the Juniper Networks Junos^® OS Evolved operating system software.

^*Reserved for future release

Product Highlights

The QFX5220 includes the following capabilities. Please refer to the Specifications section for currently shipping features.

Native 400GbE Configuration

The QFX5220-32CD offers 32 ports in a 1 U form factor. The high-speed ports support a wide variety of configurations, including 100GbE and 400GbE.

High-Density Configurations

The QFX5220 switches are optimized for high-density fabric deployments. The QFX5220-32CD provides an option of either 32 ports of 400GbE, 100GbE, or 40GbE, while the QFX5220-128C provides an option of either 128 QSFP28 100GbE ports or 64 40GbE QSFP ports.

Flexible Connectivity Options

The QFX5220 offers a choice of interface speeds for server and intra-fabric connectivity, providing deployment versatility and investment protection.

Rich automation capabilities: The QFX5220 switches support a number of network automation features for plug-and-play operations, including zero-touch provisioning (ZTP), operations and event scripts, automatic rollback, and Python scripting.
Advanced Junos Evolved features: The QFX5220 switch supports features such as BGP add-path, MPLS, L3 VPN, RoCEv2, and Multicast capabilities.
Junos Evolved software architecture: The QFX5220 supports a modular Junos Evolved software architecture that allows the switch’s control and data plane processes and functions to run in parallel, maximizing utilization of the high-performance quad-core CPU, support for seamless component upgrade without bringing the switch down, and support for containerization, enabling application deployment using LXC or Docker.

Deployment Options

The QFX5220-32CD can be deployed as a universal device in cloud data centers to support 100GbE server access and 400GbE spine-and-leaf configurations, optimizing data center operations by using a single device across multiple layers of the network (see Figure 1). The QFX5220-128C is a high-radix 100GbE lean-spine switch optimized to aggregate 10GbE and 25GbE top-of-rack switches in these environments. Many cloud, service provider, data center, and enterprise networks are deploying 100GbE to handle growing demand. Figure 2 and Figure 3 show multiple use cases with the QFX5220-128C as a lean spine.

Figure 1: Typical cloud data center deployment for the QFX5220-32CD

Figure 2: 100GbE fabric in a typical cloud data center

Figure 3: Private cloud data center with the QFX5220-128C as lean spine

Architecture and Key Components

The QFX5220 can be used in L3 fabrics and L2 networks. You can choose the architecture that best suits your deployment needs and easily adapt and evolve as requirements change over time. The QFX5220 serves as the universal building block for these two switching architectures, enabling data center operators to build cloud networks in their own way.

Layer 3 fabric: For customers looking to build scale-out data centers, a Layer 3 spine-and-leaf Clos fabric provides predictable, nonblocking performance and scale characteristics. A two-tier fabric built with QFX5220 switches as leaf devices and Juniper Networks QFX10000 line of Switches as the spine can scale to support up to 128 40GbE ports or 128 25GbE and/or 10GbE server ports in a single fabric. One of the most complicated tasks when building an IP fabric is assigning all the implementation details, including IP addresses, BGP autonomous system numbers, routing policies, loopback address assignments, and others. Automating the creation of an IP fabric at a large scale is equally difficult. To address these challenges, Juniper has created the OpenClos project to provide free, open-source tools that automate the creation of IP fabrics in the data center. A set of Python scripts developed as an open-source project on GitHub, OpenClos takes a set of inputs that describe the shape and size of a data center and produces switch configuration files and a cabling plan

Junos Evolved ensures a high feature and bug fix velocity and provides first-class access to system state, allowing customers to run DevOps tools, containerized applications, management agents, specialized telemetry agents, and more.

Figure 4: Cloud/Carrier-Class Junos OS Evolved Network Operating System

Management, Monitoring, and Analytics

Data Center Fabric Management: Juniper^® Apstra provides operators with the power of intent-based network design to help ensure changes required to enable data center services can be delivered rapidly, accurately, and consistently. Operators can further benefit from the built-in assurance and analytics capabilities to resolve Day 2 operations issues quickly. Apstra key features are:

Automated deployment and zero-touch deployment
Continuous fabric validation
Fabric life-cycle management
Troubleshooting using advanced telemetry

For more information on Apstra, see Juniper Apstra.

Features and Benefits

Automation and programmability: The QFX5220 supports numerous network automation features, including operations and event scripts and ZTP.
Cloud-level scale and performance: The QFX5220 supports best-in-class cloud-scale L2/L3 deployments with a low latency of 750 ns and a superior scale and performance. This includes L2 support for 8192 media access control (MAC) addresses and Address Resolution Protocol (ARP) learning, which scales up to 32,000 entries at 500 frames per second. It also includes L3 support for 336,000 longest prefix match (LPM) routes and 380,000 host routes on IPv4. Additionally, the QFX5220 supports 130,000 LPM routes and 130,000 host routes on IPv6, 128-way equal-cost multipath (ECMP) routes, and a filter that supports 768 (ingress) and 2558^† (egress) exact match filtering rules. The QFX5220 supports up to 128 link aggregation groups, 4096 VLANs, and Jumbo frames of 9216 bytes. Junos Evolved provides configurable options through a CLI, enabling each QFX5220 to be optimized for different deployment scenarios.

^† Ingress/egress scale numbers may be lower when used concurrently.

MPLS: The QFX5220 supports a broad set of MPLS features, including L3 VPN, RSVP traffic engineering, and LDP to support standards-based multitenancy and network virtualization with per-flow service-level agreements (SLAs) at scale. The QFX5220 can also be deployed as a low-latency MPLS label-switching router (LSR) or MPLS provider edge (PE) router in smaller scale environments. The QFX5220, along with Juniper Networks QFX5100 and QFX5200 switches, are the most compact, low-latency, high-density, low-power family of switches to offer an MPLS feature set in the industry.
IEEE 1588 PTP Boundary Clock with Hardware Timestamping*: IEEE 1588 PTP Transparent/Boundary Clock is supported on QFX5220, enabling accurate and precise sub-microsecond timing information in today’s data center networks. In addition, the QFX5220 supports hardware timestamping; timestamps in Precision Time Protocol (PTP) packets are captured and inserted by an onboard field-programmable gate array (FPGA) on the switch at the physical (PHY) level.
Data packet timestamping*: When the optional data packet timestamping feature is enabled, selected packets flowing through QFX5220 switches are timestamped with references to the recovered PTP clock. When these packets are received by nodes in the network, the packet timestamping information can be mirrored onto monitoring tools for detailed analysis, helping identify bottlenecks in the network that cause latency. This information also helps with network performance analysis and record keeping for legal and compliance purposes, which is required by certain business transactions such as financial trading, video streaming, and research establishments.
RoCEv2: As a switch capable of transporting data as well as storage traffic over Ethernet, the QFX5220 provides an IEEE data center bridging (DCB) converged network between servers with disaggregated flash storage arrays or an NVMe-enabled storage area network (SAN). The QFX5220 offers a full-featured DCB implementation that provides strong monitoring capabilities on the top-of-rack switch for SAN and LAN administration teams to maintain clear separation of management. The RDMA over Converged Ethernet version 2 (RoCEv2) transit switch functionality, including priority-based flow control (PFC) and Data Center Bridging Capability Exchange (DCBX), are included as part of the default software.
Junos OS Evolved: Junos Evolved is a native Linux operating system that incorporates a modular design of independent functional components and enables individual components to be upgraded independently while the system remains operational. Component failures are localized to the specific component involved and can be corrected by upgrading and restarting that specific component without having to bring down the entire device.
Retained state: State is the retained information or status pertaining to physical and logical entities. It includes both operational and configuration state, comprising committed configuration, interface state, routes, hardware state, and what is held in a central database called the distributed data store (DDS). State information remains persistent, is shared across the system, and is supplied during restarts.
Feature support: All key networking functions such as routing, bridging, management software, and management plane interfaces, as well as APIs such as CLI, NETCONF, Juniper Extension Toolkit (JET), Junos Telemetry Interface (JTI), and the underlying data models, resemble those supported by Junos. This ensures compatibility and eases the transition to Junos Evolved.

Junos Telemetry Interface

The QFX5220 supports Junos Telemetry Interface (JTI), a modern telemetry streaming tool that provides performance monitoring in complex, dynamic data centers. Streaming data to a performance management system lets network administrators measure trends in link and node utilization and troubleshoot issues such as network congestion in real time. JTI provides:

Application visibility and performance management by provisioning sensors to collect and stream data and analyze the application and workload flow path through the network
Capacity planning and optimization by proactively detecting hotspots and monitoring latency and microbursts
Troubleshooting and root cause analysis via high-frequency monitoring and correlating overlay and underlay networks.

Specifications

Hardware

Table 1: QFX5220 System Capacity

Specification	QFX5220-32CD	QFX5220-128C
System throughput	Up to 25.6 Tbps (bidirectional)	Up to 25.6 Tbps (bidirectional)
Forwarding capacity	8 billion packets per second	8 billion packets per second
Port density	32 ports of QSFP56-DD 400GbE	128 ports of QSFP28 100GbE
SFP+/SFP28	2 SFP+ transceiver ports for in-band network management	2 SFP+ transceiver ports for in-band network management

Table 2: QFX5220 System Specifications

Specification	QFX5220-32CD	QFX5220-128C
Dimensions (W x H x D)	17.26 x 1.72 x 21.1 in. (43.8 x 4.3 x 53.59 cm)	17.26 x 6.88 x 29 in. (43.8 x 17.47 x 73.66 cm)
Rack units	1 U	4 U
Weight	24.5 lb (11.11 kg) with power supplies and fans installed	98 lb (44.44 kg) with 4 power supplies and 6 fan trays installed
Operating system	Junos OS Evolved	Junos OS Evolved
CPU	Intel Xeon D-1518	Intel Xeon D-1518
Power	Redundant (1+1) hot-pluggable 1600 W AC/DC power supplies (2n) 115-240 V single phase AC power -48 to -60 V DC power	Redundant (1+1) hot-pluggable 1600 W AC/DC power supplies 115-240 V single phase AC power -48 to -60 V DC power
Cooling	Ports-to-FRUs (AFO) and FRUs-to-ports (AFI) cooling Redundant (5x2+1)+1 hot-pluggable fan modules with variable speed to minimize power draw	Ports-to-FRUs (AFO) cooling Redundant (5x2+1) + 1 hot-pluggable fan modules with variable speed to minimize power draw
Total packet buffer	64 MB	64 MB
Recommended Software Version	Junos OS Evolved 19.2R1 and Later	Junos OS Evolved 19.3R1 and Later
Warranty	Juniper standard one-year warranty	Juniper standard one-year warranty

Software

MAC addresses per system: 8192
VLAN IDs: 3968 (QFX5220-32CD) 3952 (QFX5220-128C)
Number of link aggregation groups (LAGs): 128
Number of ports per LAG: 64
Firewall filters:
- Ingress: 768 Routed ACL (RACL), VLAN ACL (VACL), and Port ACL (PACL) rules
- Egress: 2558^† RACL; 512 VACL and PACL rules
IPv4 unicast routes: 380,000 prefixes; 380,000 host routes
IPv6 unicast routes: 130,000 prefixes; 130,000 host routes
Address Resolution Protocol (ARP) entries: 32,000
Generic routing encapsulation (GRE) tunnels: 2000
MPLS labels: 16,000
Jumbo frame: 9216 bytes
Traffic mirroring
- Mirroring destination ports per switch: 4
- Maximum number of mirroring sessions: 4
- Mirroring destination VLANs per switch: 4

^†Note: Ingress/Egress scale numbers may be lower when used concurrently.

Layer 2 Features

STP—IEEE 802.1D (802.1D-2004)*
Rapid Spanning Tree Protocol (RSTP) (IEEE 802.1w); MSTP (IEEE 802.1s)*
Bridge protocol data unit (BPDU) protect*
Loop protect*
Root protect*
RSTP and VSTP running concurrently*
VLAN—IEEE 802.1Q VLAN trunking
Routed VLAN interface (RVI)
Port-based VLAN
MAC address filtering*
Static MAC address assignment for interface
MAC learning disable
Link Aggregation and Link Aggregation Control Protocol (LACP) (IEEE 802.3ad)
IEEE 802.1AB Link Layer Discovery Protocol (LLDP)

*Reserved for future release

Link Aggregation

LAG load sharing algorithm—bridged or routed (unicast or multicast) traffic:
- IP: Session Initiation Protocol (SIP), Dynamic Internet Protocol (DIP), TCP/UDP source port, TCP/UDP destination port
- L2 and non-IP: MAC SA, MAC DA, Ether type, VLAN ID, source port

Layer 3 Features

Static routing
OSPF v1/v2
OSPF v3
Filter-based forwarding
Virtual Router Redundancy Protocol (VRRP)*
IPv6
Virtual routers
Loop-free alternate (LFA)
BGP (Advanced Services or Premium Services license)
IS-IS (Advanced Services or Premium Services license)
Dynamic Host Configuration Protocol (DHCP) v4/v6 relay
VR-aware DHCP
IPv4/IPv6 over GRE tunnels (interface-based with decap/encap only)

*Reserved for future release

Multicast*

Internet Group Management Protocol (IGMP) v1/v2
Multicast Listener Discovery (MLD) v1/v2
IGMP proxy, querier
IGMP v1/v2/v3 snooping
Intersubnet multicast using IRB interface
MLD snooping
Protocol Independent Multicast PIM-SM, PIM-SSM, PIM-DM, PIM-Bidir*
Multicast Source Discovery Protocol (MSDP)*

*Reserved for future release

Security and Filters

Secure interface login and password
RADIUS
TACACS+
Ingress and egress filters: Allow and deny, port filters, VLAN filters, and routed filters, including management port filters, loopback filters for control plane protection
Filter actions: Logging, system logging, reject, mirror to an interface, counters, assign forwarding class, permit, drop, police, mark
SSH v1, v2
Static ARP support
Storm control, port error disable, and autorecovery*
Control plane denial-of-service (DoS) protection

*Reserved for future release

Quality of Service (QoS)

L2 and L3 QoS: Classification, rewrite, queuing
Rate limiting:
- Ingress policing: 1 rate 2 color, 2 rate 3 color
- Egress policing: Policer, policer mark down action
- gress shaping: Per queue, per port
10 hardware queues per port (8 unicast and 2 multicast)
Strict priority queuing (LLQ), shaped-deficit weighted round-robin (SDWRR), weighted random early detection (WRED)
802.1p remarking
Layer 2 classification criteria: Interface, MAC address, Ethertype, 802.1p, VLAN
Congestion avoidance capabilities: WRED, ECN
Trust IEEE 802.1p (ingress)
Remarking of bridged packets
Configurable shared buffer and buffer monitoring

MPLS (Premium Services License)

Static label-switched paths (LSPs)
RSVP-based signaling of LSPs
LDP-based signaling of LSPs
LDP tunneling (LDP over RSVP)
MPLS class of service (CoS)*
MPLS access control list (ACL)/policers*
MPLS LSR support
IPv4 L3 VPN (RFC 2547, 4364)
MPLS fast reroute (FRR)

*Reserved for future release

Data Center Bridging (DCB)*

Priority-based flow control (PFC)—IEEE 802.1Qbb
Data Center Bridging Exchange Protocol (DCBX)*

*Reserved for future release

High Availability

Bidirectional Forwarding Detection (BFD)
Uplink failure detection (UFD)*

*Reserved for future release

Visibility and Analytics

Switched Port Analyzer (SPAN)
Remote SPAN (RSPAN)
Encapsulated Remote SPAN (ERSPAN)
sFlow v5
Junos Telemetry Interface

Management and Operations

Contrail Networking*
Role-based CLI management and access
CLI via console, telnet, or SSH
Extended ping and traceroute
Junos OS Evolved configuration rescue and rollback
Image rollback
SNMP v1/v2/v3
Junos OS Evolved XML management protocol
High frequency statistics collection
Automation and orchestration
Zero-touch provisioning (ZTP)
Python
Junos OS Evolved event, commit, and OP scripts

*Reserved for future release

Standards Compliance

IEEE Standards

IEEE 802.1D
IEEE 802.1w
IEEE 802.1
IEEE 802.1Q
IEEE 802.1p
IEEE 802.1ad
IEEE 802.3ad
IEEE 802.1AB
IEEE 802.3x
IEEE 802.1Qbb*
IEEE 802.1Qaz

*Reserved for future release

T11 Standards

INCITS T11 FC-BB-5

Supported RFCs

RFC 768 UDP
RFC 783 Trivial File Transfer Protocol (TFTP)
RFC 791 IP
RFC 792 ICMP
RFC 793 TCP
RFC 826 ARP
RFC 854 Telnet client and server
RFC 894 IP over Ethernet
RFC 903 RARP
RFC 906 TFTP Bootstrap
RFC 951 1542 BootP
RFC 1058 Routing Information Protocol
RFC 1112 IGMP v1
RFC 1122 Host requirements
RFC 1142 OSI IS-IS Intra-domain Routing Protocol
RFC 1256 IPv4 ICMP Router Discovery (IRDP)
RFC 1492 TACACS+
RFC 1519 Classless Interdomain Routing (CIDR)
RFC 1587 OSPF not-so-stubby area (NSSA) Option
RFC 1591 Domain Name System (DNS)
RFC 1745 BGP4/IDRP for IP—OSPF Interaction
RFC 1772 Application of the Border Gateway Protocol in the Internet
RFC 1812 Requirements for IP Version 4 routers
RFC 1997 BGP Communities Attribute
RFC 2030 SNTP, Simple Network Time Protocol
RFC 2068 HTTP server
RFC 2131 BOOTP/DHCP relay agent and Dynamic Host
RFC 2138 RADIUS Authentication
RFC 2139 RADIUS Accounting
RFC 2154 OSPF w/Digital Signatures (password, MD-5)
RFC 2236 IGMP v2
RFC 2267 Network ingress filtering
RFC 2328 OSPF v2 (edge mode)
RFC 2338 VRRP
RFC 2362 PIM-SM (edge mode)
RFC 2370 OSPF Opaque link-state advertisement (LSA) Option
RFC 2385 Protection of BGP Sessions via the TCP Message Digest 5 (MD5) Signature Option
RFC 2439 BGP Route Flap Damping
RFC 2474 Definition of the Differentiated Services Field in the IPv4 and IPv6 Headers
RFC 2597 Assured Forwarding PHB (per-hop behavior) Group
RFC 2598 An Expedited Forwarding PHB
RFC 2697 A Single Rate Three Color Marker
RFC 2698 A Two Rate Three Color Marker
RFC 2796 BGP Route Reflection—An Alternative to Full Mesh IBGP
RFC 2918 Route Refresh Capability for BGP-4
RFC 3065 Autonomous System Confederations for BGP
RFC 3376 IGMP v3 (source-specific multicast include mode only)
RFC 3392 Capabilities Advertisement with BGP-4
RFC 3446, Anycast RP
RFC 3569 Source-specific multicast (SSM)
RFC 3618 MSDP
RFC 3623 Graceful OSPF Restart
RFC 4271 Border Gateway Protocol 4 (BGP-4)
RFC 4360 BGP Extended Communities Attribute
RFC 4456 BGP Route Reflection: An Alternative to Full Mesh Internal BGP (IBGP)
RFC 4486 Subcodes for BGP Cease Notification Message
RFC 4724 Graceful Restart Mechanism for BGP
RFC 4812 OSPF Restart Signaling
RFC 4893 BGP Support for Four-octet AS Number Space
RFC 5176 Dynamic Authorization Extensions to RADIUS
RFC 5396 Textual Representation of Autonomous System (AS) Numbers
RFC 5668 4-Octet AS Specific BGP Extended Community
RFC 5880 Bidirectional Forwarding Detection (BFD)
Configuration Protocol (DHCP) server

Supported MIBs

RFC 155 SMI
RFC 1157 SNMPv1
RFC 1212, RFC 1213, RFC 1215 MIB-II, Ethernet-Like MIB and TRAPs
RFC 1850 OSPFv2 MIB
RFC 1901 Introduction to Community-based SNMPv2
RFC 2011 SNMPv2 for Internet protocol using SMIv2
RFC 2012 SNMPv2 for transmission control protocol using SMIv2
RFC 2013 SNMPv2 for user datagram protocol using SMIv2
RFC 2233, The Interfaces Group MIB using SMIv2
RFC 2287 System Application Packages MIB
RFC 2570 Introduction to Version 3 of the Internet standard Network Management Framework
RFC 2571 An Architecture for describing SNMP Management Frameworks (read-only access)
RFC 2572 Message Processing and Dispatching for the SNMP (read-only access)
RFC 2576 Coexistence between SNMP Version 1, Version 2, and Version 3
RFC 2578 SNMP Structure of Management Information MIB
RFC 2579 SNMP Textual Conventions for SMIv2
RFC 2580 Conformance Statements for SMIv2
RFC 2665 Ethernet-like interface MIB
RFC 2787 VRRP MIB
RFC 2790 Host Resources MIB
RFC 2819 RMON MIB
RFC 2863 Interface Group MIB
RFC 2932 IPv4 Multicast MIB
RFC 3410 Introduction and Applicability Statements for Internet Standard Management Framework
RFC 3411 An architecture for describing SNMP Management Frameworks
RFC 3412 Message Processing and Dispatching for the SNMP
RFC 3413 Simple Network Management Protocol
RFC 3414 User-based Security Model (USM) for SNMPv3
RFC 3415 View-based Access Control Model (VACM) for the SNMP
RFC 3416 Version 2 of the Protocol Operations for the SNMP
RFC 3417 Transport Mappings for the SNMP
RFC 3418 Management Information Base (MIB) for the SNMP
RFC 3584 Coexistence between Version 1, Version 2, and Version 3 of the Internet Standard Network Management Framework
RFC 3826 The Advanced Encryption Standard (AES) Cipher Algorithm in the SNMP User-based Security Model
RFC 4188 Definitions of Managed Objects for Bridges
RFC 4318 Definitions of Managed Objects for Bridges with Rapid Spanning Tree Protocol
RFC 4363b Q-Bridge VLAN MIB

Environmental Ranges

Parameters	QFX5220-32CD	QFX5220-128C
Operating temperature	32° to 104° F (0° to 40° C)	32° to 104° F (0° to 40° C)
Storage temperature	-40° through 158° F	-40° through 158° F
Operating altitude	Up to 6000 feet (1828.8 meters)	Up to 6000 feet (1828.8 meters)
Relative humidity operating	5 to 90% (noncondensing)	5 to 90% (noncondensing)
Relative humidity nonoperating	5 to 95% (noncondensing)	5 to 95% (noncondensing)
Seismic	Designed to meet GR-63, Zone 4 earthquake requirements	Designed to meet GR-63, Zone 4 earthquake requirements

Maximum Thermal Output

Parameters	QFX5220-32CD	QFX5220-128C
Maximum power draw	115-127 V: 973 W; 220-240 V: 958 W	115-127 V: 2023 W; 220-240 V: 1990 W
Typical power draw	115-127 V: 730 W; 220-240 V: 775 W	115-127 V: 1433 W; 220-240 V: 1394 W

Safety and Compliance

Safety

CAN/CSA-C22.2 No. 60950-1 Information Technology Equipment—Safety
UL 60950-1 Information Technology Equipment—Safety
EN 60950-1 Information Technology Equipment—Safety
IEC 60950-1 Information Technology Equipment—Safety (All country deviations)
EN 60825-1 Safety of Laser Products—Part 1: Equipment Classification

Security

FIPS/CC*
TAA*

Electromagnetic Compatibility

47 CFR Part 15, (FCC) Class A
ICES-003 Class A
EN 55022/EN 55032, Class A
CISPR 22/CISPR 32, Class A
EN 55024
CISPR 24
EN 300 386
VCCI Class A
AS/NZS CISPR 32, Class A
KN32/KN35
BSMI CNS 13438, Class A
EN 61000-3-2
EN 61000-3-3
ETSI
ETSI EN 300 019: Environmental Conditions & Environmental Tests for Telecommunications Equipment
ETSI EN 300 019-2-1 (2000)—Storage
ETSI EN 300 019-2-2 (1999)—Transportation
ETSI EN 300 019-2-3 (2003)—Stationary Use at Weatherprotected Locations
ETSI EN 300 019-2-4 (2003)—Stationary Use at NonWeather-protected Locations
ETS 300753 (1997)—Acoustic noise emitted by telecommunications equipment

Environmental Compliance

Restriction of Hazardous Substances (ROHS) 6/6

Silver PSU Efficiency

Recycled material

Waste Electronics and Electrical Equipment (WEEE)

Registration, Evaluation, Authorisation and Restriction of Chemicals (REACH)

China Restriction of Hazardous Substances (ROHS)

Telco

Common Language Equipment Identifier (CLEI) code

Juniper Networks Services and Support

Juniper Networks is the leader in performance-enabling services that are designed to accelerate, extend, and optimize your high-performance network. Our services allow you to maximize operational efficiency while reducing costs and minimizing risk, achieving a faster time to value for your network. Juniper Networks ensures operational excellence by optimizing the network to maintain required levels of performance, reliability, and availability. For more details, please visit https://www.juniper.net/us/en/products.html.

Ordering Information

Product Number	Description
Hardware
QFX5220-32CD-AFI	QFX5220 (hardware with base software), 32 QSFP-DD/QSFP+/QSFP28 ports, redundant fans, 2 AC power supplies, back-to-front airflow
QFX5220-32CD-AFO	QFX5220 (hardware with base software), 32 QSFP-DD/QSFP+/QSFP28 ports, redundant fans, 2 AC power supplies, front-to-back airflow
QFX5220-32CD-D-AFI	QFX5220 (hardware with base software), 32 QSFP-DD/QSFP+/QSFP28 ports, redundant fans, 2 DC power supplies, back-to-front airflow
QFX5220-32CD-D-AFO	QFX5220 (hardware with base software), 32 QSFP-DD/QSFP+/QSFP28 ports, redundant fans, 2 DC power supplies, front-to-back airflow
QFX5220-128C-AFO	QFX5220 (hardware with base software), 128 QSFP+/QSFP28 ports, redundant fans, 4 AC power supplies, front-to-back airflow
QFX5220-128C-D-AFO	QFX5220 (hardware with base software), 128 QSFP+/QSFP28 ports, redundant fans, 4 DC power supplies, front-to-back airflow
JPSU-1600W-1UACAFI	QFX5220-32CD-AFI 1 U AC power supply unit
JPSU-1600W-1UACAFO	QFX5220-32CD-AFO 1 U AC power supply unit
JPSU-1600W-1UDCAFI	QFX5220-32CD-D-AFI 1 U DC power supply unit
JPSU-1600W-1UDCAFO	QFX5220-32CD-D-AFO 1 U DC power supply unit
JPSU-1600W-AC-AFO	QFX5220-128C-AFO 2 U AC power supply unit
JPSU-1600W-DC-AFO	QFX5220-128C-AFO 2 U DC power supply unit
QFX5220-32CD-4PRMK	4-Post Rack Mount Kit for QFX5220-32CD
RKMT-4PST-4U	4-Post Rack Mount Kit for QFX5220-128C
QFX5220-32CD-FANAI	Airflow in (AFI) back-to-front airflow fans for QFX5220-32CD
QFX5220-32CD-FANAO	Airflow out (AFO) front-to-back airflow fans for QFX5220-32CD
QFX5220-128C-FANAO	Airflow out (AFO) front-to-back airflow fans for QFX5220-128C
QFX5220-14I-EMI-DR	QFX5220-128C 14 in. EMI door
Optics and Transceivers
QDD-400G-DAC-1M	QSFP56-DD 400GbE DAC 1 M
QDD-400G-DAC-2P5M	QSFP56-DD 400GbE DAC 2.5 M
QDD-4x100G-FR	QSFP-DD 4x100GBASE-FR breakout 1310 nm PAM4 transceiver module, 2 km reach
QDD-400G-DR4	QSFP-DD 400GBASE-DR4 / 4x100GBASE-DR 1310 nm PAM4 transceiver module, 500 m reach
QDD-400G-FR4	QSFP-DD 400GBASE-FR4 1310 nm PAM4 transceiver module, 2 km reach
QDD-400G-AOC-XM	400GbE QSFP56-DD active optical cable of XM (X=1,3,5,7,10,15,20,30)
JNP-100G-4x25G-1M	100GbE QSFP28 to 4x25GbE SFP28 passive direct attach copper breakout cable, length: 1 m
JNP-100G-4x25G-3M	100GbE QSFP28 to 4x25G SFP28 passive direct attach copper breakout cable, length: 3 m
JNP-QSFP-100G-BXSR*	100GbE SR-bidirectional QSFP transceiver, LC, 100 M, OM4 multimode fiber-optic (MMF)
Software Licenses SKUs
S-QFX5K-C3-A1-X (X=3,5)	Base L3 Software Subscription (X Years; X=3,5) License for QFX5220-32CD/QFX5220-128C
S-QFX5K-C3-A2-X (X=3,5)	Advanced Software Subscription (X Years; X=3,5) License for QFX5220-32CD/QFX5220-128C
S-QFX5K-C3-P1-X (X=3,5)	Premium Software Subscription (X Years; X=3,5) License for QFX5220-32CD/QFX5220-128C

Add to cart Details

Juniper SRX345 Firewall

ASK FOR PRICE

SRX345 Datasheet

Add to cart Details

Juniper SRX4200 Firewall

ASK FOR PRICE

Product Overview

The SRX4100 and SRX4200 Firewalls offer outstanding protection, performance, scalability, availability, and integrated security services. Designed for high-performance security services architectures and seamless integration of networking and security in a single platform, the SRX4100 and SRX4200 are best suited for enterprise data centers, campuses, and regional headquarters, with a focus on application visibility and control, intrusion prevention, advanced threat protection, authentication, confidentiality of information, and integrated cloud-based security. Both devices are powered by Junos OS, the industry-leading operating system that keeps the world’s largest mission-critical enterprise networks secure.

Product Description

The Juniper Networks^® SRX4100 and SRX4200 Firewalls are high-performance, next-generation firewalls and hardware-accelerated security services gateways that protect mission-critical data center networks, enterprise campuses, and regional headquarters. The SRX4100 and SRX4200 provide best-in-class security and advanced threat mitigation capabilities and integrate carrier-class routing. The SRX4100 and SRX4200 deliver fully automated SD-WAN to both enterprises and service providers. Their high performance and scale allow the SRX4100 and SRX4200 to act as VPN hubs, terminating VPN/secure overlay connections in various SD-WAN topologies. The SRX4100 and SRX4200 deliver a next-generation security solution that supports the changing needs of cloud-enabled enterprise networks, helping organizations realize their business objectives whether rolling out new services in an enterprise data center or campus, or connecting to the cloud. The SRX4100 and SRX4200 comply with industry standards, delivering the scalability, ease of management, secure connectivity, and advanced threat mitigation capabilities businesses need. The SRX4100 and SRX4200 protect critical corporate assets such as next-generation firewalls, act as enforcement points for cloud-based security solutions, and provide application visibility and control to improve the user and application experience.

Architecture and Key Components

The SRX4100 and SRX4200 hardware and software architecture provides cost-effective security performance in a small 1 U form factor. Purpose-built to protect up to 40 Gbps Internet Mix (IMIX) firewall throughput network environments, the SRX4100 and SRX4200 incorporate multiple security services and networking functions on top of the industry-leading Juniper Networks Junos^® operating system. The SRX4100 supports up to 22 Gbps (IMIX) of firewall performance, 9 Gbps of next- generation firewall (application security, intrusion prevention, and logging), and 14.8 Gbps of IPsec VPN in data center, enterprise campus, and regional headquarter deployments with IMIX traffic patterns. The SRX4200 supports up to 44 Gbps of firewall performance, 18 Gbps of next-generation firewall, and up to 29.6 Gbps of IPsec VPN in data center, enterprise campus, and regional headquarter deployments with IMIX traffic patterns.

Table 1. SRX4100 and SRX4200 Statistics¹

¹Performance, capacity and features listed are based on systems running Junos OS 21.4R1 and are measured under ideal testing conditions. Actual results may vary based on Junos OS releases and by deployments.
²Next-Generation Datacenter Firewall performance is measured with Firewall, Application Security and IPS enabled using 64KB transactions
³Secure Web Access Firewall performance is measured with Firewall, Application Security, IPS, SecIntel, and URL Filtering enabled using 64KB transactions
	SRX4100	SRX4200
Firewall throughput	40 Gbps	80 Gbps
Firewall throughput—IMIX	22 Gbps	44 Gbps
Firewall throughput with application security	19.9 Gbps	39.8 Gbps
IPsec VPN throughput-IMIX	14.8 Gbps	29.6 Gbps
Intrusion prevention	13.9 Gbps	27.7 Gbps
NGFW² throughput	9 Gbps	18 Gbps
Secure Web Access³ throughput	6.7 Gbps	13.3 Gbps
Connections per second	250000	500000
Maximum session	5 million	10 million

The SRX4100 and SRX4200 recognize more than 4,275 applications and nested applications in plain-text or SSL-encrypted transactions. The firewalls also integrate with Microsoft Active Directory and combine user information with application data to provide network-wide application and user visibility and control.

Features and Benefits

Table 2. SRX4100 and SRX4200 Features and Benefits

Business Requirement	Feature/Solution	SRX4100/SRX4200 Advantages
High performance	Up to 80 Gbps of firewall throughput (up to 40 Gbps of IMIX firewall throughput)	Best suited for enterprise campus and data center edge deployments Ideal for secure router deployments at the head office Addresses future needs for scale and feature capacity
High-quality end-user experience	Application visibility and control	Detects 3,500+ L3-L7 applications, including Web 2.0 Controls and prioritizes traffic based on application and use role Inspects and detects applications inside SSL-encrypted traffic
Advanced threat protection	IPS, antivirus, antispam, enhanced web filtering, Juniper Advanced Threat Prevention Cloud, Encrypted Traffic Insights, Threat Intelligence Feeds, and Juniper ATP Appliance	Provides real-time updates to IPS signatures and protects against exploits Implements industry-leading antivirus and URL filtering Delivers open threat intelligence platform that integrates with third-party feeds Protects against zero-day attacks Restores visibility lost due to encryption, without the heavy burden of full TLS/SSL decryption
Professional-grade networking services	Routing, secure wire	Supports carrier-class advanced routing and quality of service (QoS)
Highly secure	IPsec VPN, Remote Access/SSL VPN	Provides high-performance IPsec VPN with dedicated crypto engine Offers diverse VPN options for various network designs, including remote access and dynamic site-to-site communications Simplifies large VPN deployments with auto VPN Includes hardware-based crypto acceleration Secure and flexible remote access SSL VPN with Juniper Secure Connect
Highly reliable	Chassis cluster, redundant power supplies	Provides stateful configuration and session synchronization Supports active/active and active/backup deployment scenarios Offers highly available hardware with redundant power supply unit (PSU) and redundant fans Delivers dedicated control and fabric link with seamless high availability
Easy to manage and scale	On-box GUI, Junos Space Security Director	Enables centralized management for auto-provisioning, firewall policy management, Network Address Translation (NAT), and IPsec VPN deployments Includes simple, easy-to-use on-box GUI for local management
Low TCO	Junos OS	Integrates routing and security in a single device Reduces OpEx with Junos OS automation capabilities

SRX4100 and SRX4200 Firewalls Specifications

Software Specifications

Firewall Services

Stateful and stateless firewall
Zone-based firewall
Screens and distributed denial of service (DDoS) protection
Protection from protocol and traffic anomalies
Unified Access Control (UAC)

Network Address Translation (NAT)

Source NAT with Port Address Translation (PAT)
Bidirectional 1:1 static NAT
Destination NAT with PAT
Persistent NAT
IPv6 address translation

VPN Features

Tunnels: Site-to-site, hub and spoke, dynamic endpoint, AutoVPN, ADVPN, Group VPN (IPv4/ IPv6/Dual Stack)
Juniper Secure Connect: Remote access/SSL VPN
Configuration payload: Yes
IKE Encryption algorithms: Prime, DES-CBC, 3DES-CBC, AEC-CBC, AES-GCM, Suite B
IKE authentication algorithms: MD5, SHA-1, SHA-128, SHA-256, SHA-384
Authentication: Pre-shared key and public key infrastructure (PKI) (X.509)
IPsec (Internet Protocol Security): Authentication Header (AH) / Encapsulating Security Payload (ESP) protocol
IPsec Authentication Algorithms: hmac-md5, hmac-sha-196, hmac-sha-256
IPsec Encryption Algorithms: Prime, DES-CBC, 3DES-CBC, AEC-CBC, AES-GCM, Suite B
Perfect forward secrecy, anti-reply
Internet Key Exchange: IKEv1, IKEv2
Monitoring: Standard-based dead peer detection (DPD) support, VPN monitoring
VPNs GRE, IP-in-IP, and MPLS

High Availability Features

Virtual Router Redundancy Protocol (VRRP) – IPv4 and IPv6
Stateful high availability:
- Dual box clustering
- Active/passive
- Active/active
- Configuration synchronization
- Firewall session synchronization
- Device/link detection
- In-Service Software Upgrade (ISSU)
IP monitoring with route and interface failover

Application Security Services³

Application visibility and control
Application-based firewall
Application QoS
Advanced/application policy-based routing (APBR)
Application Quality of Experience (AppQoE)
Application-based multipath routing
User-based firewall

Threat Defense and Intelligence Services³

Intrusion prevention system
Antivirus
Antispam
Category/reputation-based URL filtering
SSL proxy/inspection
Protection from botnets (command and control)
Adaptive enforcement based on GeoIP
Juniper Advanced Threat Prevention, a cloud-based SaaS offering, to detect and block zero-day attacks
Adaptive Threat Profiling
Encrypted Traffic Insights
SecIntel to provide threat intelligence
Juniper ATP Appliance, a distributed, on-premises advanced threat prevention solution to detect and block zero-day attacks

³Offered as advanced security subscription license.

Routing Protocols

IPv4, IPv6, static routes, RIP v1/v2
OSPF/OSPF v3
BGP with route reflector
IS-IS
Multicast: Internet Group Management Protocol (IGMP) v1/v2; Protocol Independent Multicast (PIM) sparse mode (SM)/source-specific multicast (SSM); Session Description Protocol (SDP); Distance Vector Multicast Routing Protocol (DVMRP); Multicast Source Discovery Protocol (MSDP); reverse path forwarding (RPF)
Encapsulation: VLAN, Point-to-Point Protocol over Ethernet (PPPoE)
Virtual routers
Policy-based routing, source-based routing
Equal-cost multipath (ECMP)

QoS Features

Support for 802.1p, DiffServ code point (DSCP), EXP
Classification based on VLAN, data-link connection identifier (DLCI), interface, bundles, or multifield filters
Marking, policing, and shaping
Classification and scheduling
Weighted random early detection (WRED)
Guaranteed and maximum bandwidth
Ingress traffic policing
Virtual channels

Network Services

Dynamic Host Configuration Protocol (DHCP) client/server/relay
Domain Name System (DNS) proxy, dynamic DNS (DDNS)
Juniper real-time performance monitoring (RPM) and IP monitoring
Juniper flow monitoring (J-Flow)

Advanced Routing Services

Packet Mode
MPLS (RSVP, LDP)
Circuit cross-connect (CCC), translational cross-connect (TCC)
L2/L2 MPLS VPN, pseudo-wires
Virtual private LAN service (VPLS), next-generation multicast VPN (NG-MVPN)
MPLS traffic engineering and MPLS fast re-route

Management, Automation, Logging, and Reporting

SSH, Telnet, SNMP
Smart image download
Juniper CLI and Web UI
Juniper Networks Junos Space Security Director
Python
Junos events, commit and OP scripts
Application and bandwidth usage reporting
Debug and troubleshooting tools

Hardware Specifications

Table 3. SRX4100 and SRX4200 Hardware Specifications

⁴Throughput numbers based on UDP packets and RFC2544 test methodology
⁵Performance, capacity and features listed are measured under ideal testing conditions. Actual results may vary based on Junos OS releases and by deployments.
⁶Next-Generation Datacenter Firewall performance is measured with Firewall, Application Security and IPS enabled using 64KB transactions.
⁷Secure Web Access Firewall performance is measured with Firewall, Application Security, IPS, SecIntel, and URL Filtering enabled using 64KB transactions

Add to cart Details

QFX5200 Ethernet Switch

ASK FOR PRICE

Product Overview

The QFX5200 line of access switches is ideally suited for leaf deployments in next-generation IP fabrics. It features line-rate, high-density SFP28/QSFP+/QSFP28 ports that support 10GbE, 25GbE, 40GbE, 50GbE, and 100GbE connections. Offering an advanced L2, L3, and MPLS feature set, network operators can use the QFX5200 to build large, high-density IP fabrics that support upgrades to 25GbE servers, network virtualization, and intelligent traffic forwarding based on proven, Internet-scale technology. The QFX5200 also supports a version of Junos OS software in which control plane and data plane processes and functions run in parallel, maximizing utilization of the high-performance quad-core CPU. Additionally, the QFX5200-32C-S platform includes support for SONiC, continuing Juniper’s commitment to disaggregation and allowing customers to innovate quickly and easily while simplifying operations.

Product Description

Network operators are increasingly deploying scale-out, spine-and-leaf IP fabric architectures, built with fixed-configuration switches to support growing east-west traffic in the data center. The Juniper Networks^® QFX5200 line of next-generation, fixed-configuration leaf/access switches offers flexible, cost-effective, high-density 10GbE, 25GbE, 40GbE, 50GbE, and 100GbE interfaces for server and intra-fabric connectivity, providing deployment versatility, investment protection, and future-proofing for today’s data centers. In addition to leaf deployments in IP fabric architectures, the QFX5200 switches are also a great fit for multitier, multichassis link aggregation (MC-LAG) network implementations commonly used in enterprise networks. Like other QFX Series switches, the QFX5200 supports advanced Layer 2, Layer 3, and MPLS features. For large public cloud providers—among the first to adopt 25GbE servers to meet explosive workload growth—the QFX5200 enables very large, dense, and fast IP fabrics based on proven, Internet scale technology. For enterprise customers seeking investment protection as they transition their server farms from 10GbE to 25GbE, the QFX5200 line provides native 10GbE and 25GbE downlink ports as well as 40GbE and 100GbE uplink connections. The QFX5200 runs the same reliable, high-performance Juniper Networks Junos^® operating system used by network operators around the world. The QFX5200 supports a modular version of Junos OS that allows the switch’s control plane and data plane processes and functions to run in parallel, maximizing utilization of the high-performance quad-core CPU.

QFX5200 Switch Models

The QFX5200 switches are compact, 1 U platforms that provide wire-speed packet performance, very low latency, and a rich set of Junos OS features. In addition to a high throughput Packet Forwarding Engine (PFE), the performance of the QFX5200 control plane is further enhanced with a powerful 1.8 GHz quad-core Intel CPU with 16 GB of memory and 64 GB SSD storage. Two QFX5200 switch models are available:

QFX5200-48Y: A 10GbE/25GbE data center access switch that offers 48 small form-factor pluggable plus (SFP+) transceiver ports or SFP28 ports and six QSFP28 ports. The six QSFP28 ports can be configured as 6x40GbE or 6x100GbE, with an aggregate throughput of 3.6 Tbps or 4.2 Bpps per switch.
QFX5200-32C: A 100GbE data center access and aggregation switch that offers 32 quad small form-factor pluggable plus (QSFP+) transceiver or QSFP28 ports, with an aggregate throughput of 6.4 Tbps or 4.8 Bpps per switch. A QSFP28 module supports a 1x100GbE connection, 2x50GbE connections, or 4x25GbE connections using breakout cables. A QSFP+ module can provide a 1x40GbE connection or 4x10GbE connections using breakout cables.

Product Highlights

The QFX5200 includes the following capabilities. Please refer to the Specifications section for features currently shipping.

Native 25GbE configuration: Offering 48 ports of 25GbE and delivering 3.6 Tbps of line-rate switching, the QFX5200-48Y is optimized for top-of-rack deployments.
High-density configuration: Offering 32 ports of 100GbE or 40GbE and delivering 6.4 Tbps of line-rate switching, the QFX5200-32C is optimized for high-density fabric deployments.
Flexible connectivity options: The QFX5200 offers a choice of 10GbE, 25GbE, 40GbE, 50GbE, and 100GbE interface speeds for server and intra-fabric connectivity, providing deployment versatility and investment protection.
Rich automation capabilities: The QFX5200 switches support a number of network automation features for plug-and-play operations, including zero-touch provisioning, operations and event scripts, automatic rollback, and Python scripting.
Advanced Junos OS features: The QFX5200 switch supports features such as BGP add-path, MPLS, L3 VPN, and Fibre Channel over Ethernet (FCoE).
Junos OS software architecture: The QFX5200 supports a modular Junos OS software architecture that allows the switch’s control and data plane processes and functions to run in parallel, maximizing utilization of the high-performance quad-core CPU.

QFX5200 Deployment Options

The following table depicts some of the many QFX5200 deployment options, including top-of-rack access as well as spine-and-leaf configurations in a centralized or distributed gateway architecture.

Port Combination	Switch	Deployment
48x10GbE + 6x40GbE	QFX5200-48Y	10GbE access
48x25GbE + 6x100GbE	QFX5200-48Y	25GbE access
32x100GbE	QFX5200-32C	Spine
128x25GbE	QFX5200-32C	Leaf
64x25GbE + 16x100GbE	QFX5200-32C	25GbE access
96x10GbE + 8x100GbE	QFX5200-32C	10GbE access

Figure 1 shows QFX5200-48Y 25GbE top-of-rack deployment with a Juniper Networks QFX10000 spine acting as a centralized gateway. In this topology, the QFX10000 switch can also be configured as a collapsed spine and edge device, acting as a centralized gateway for Virtual Extensible LAN (VXLAN), MPLS, and other tunneling protocols.

Figure 1: QFX5200-48Y and QFX10000 leaf-spine deployment

The QFX5200-32C can be deployed as a top-of-rack switch in a centralized gateway architecture. Figure 2 shows the QFX5200-32C as an access switch with a Juniper Networks QFX10000 spine configured as a centralized gateway. In this topology, the QFX10000 switch can also be configured as a collapsed spine and edge device, acting as a centralized gateway for VXLAN, MPLS, and other tunneling protocols. The 100GbE ports on QFX5200-32C can also be channelized to support 4x25GbE, 2x50GbE, or 4x10GbE downlinks.

Figure 2: QFX5200-32C and QFX10000 leaf-spine deployment with centralized gateway

The QFX5200-32C can also be positioned as a spine in a distributed gateway architecture. Figure 3 shows the QFX5110 as access switches configured as a distributed gateway along with the QFX5200 spine switch. The QFX5110 switches act as a distributed gateway for VXLAN and other tunneling protocols.

Figure 3: QFX5110 and QFX5200-32C leaf-spine deployment with distributed gateway

Architecture and Key Components

The QFX5200 can be used in L3 fabrics and L2 networks with MC-LAG. You can choose the architecture that best suits your deployment needs and easily adapt and evolve as requirements change over time. The QFX5200 switch serves as the universal building block for these two switching architectures, enabling data center operators to build cloud networks their way.

Layer 3 fabric: For customers looking to build scale-out data centers, a Layer 3 spine-and-leaf Clos fabric is ideal due to its predictable, nonblocking performance and scale characteristics. For example, a two-tier fabric built with QFX5200 switches as leafs and Juniper Networks QFX10000 switches as the spine can scale to support up to 18,432 40GbE ports, or 36,864 25GbE or 10GbE server ports in a single fabric. One of the most complicated tasks in building an IP fabric is assigning all of the implementation details, including IP addresses, BGP autonomous system (AS) numbers, routing policies, loopback address assignments, and many others. Automating the creation of an IP fabric at a large scale is equally difficult. To address these challenges, Juniper has created the OpenClos project to provide free and open-source tools that automate the creation of IP fabrics in the data center. A set of Python scripts developed as an open-source project that live on GitHub, OpenClos takes a set of inputs that describe the shape and size of a data center and outputs switch configuration files, as well as a cabling plan.
MC-LAG: The QFX5200 supports the MC-LAG protocol between two switches to eliminate Spanning Tree Protocol (STP) in traditional L2 networks when deployed in the aggregation layer. The active/active operation of MC-LAG ensures complete bandwidth utilization between the network’s access and aggregation layers, while the dual control plane technology ensures the highest availability for applications.

Carrier-Class Network Operating System

The QFX5200 runs the same Junos OS used by all other Juniper Networks QFX Series and EX Series Ethernet Switches, as well as the Juniper routers that power the world’s largest and most complex networks. By using a common operating system, Juniper delivers a consistent implementation and operation of control plane features across all products. Junos OS employs a highly available modular architecture that prevents isolated failures from bringing down an entire system. Key Junos OS features that enhance the functionality and capabilities of the QFX5200 include:

Software modularity, with process modules running independently in their own protected memory space and with the ability to do process restarts
Commit and rollback functionality, which ensures error-free network configurations
A powerful set of scripts for on-box problem detection, reporting, and resolution

Figure 4: Junos OS software infrastructure

Junos Telemetry Interface

The QFX5200 supports Junos Telemetry Interface (JTI)*, a modern telemetry streaming tool designed for performance monitoring in complex, dynamic data centers. Streaming data to a performance management system enables network administrators to measure trends in link and node utilization, and troubleshoot such issues as network congestion in real time. JTI provides these capabilities:

Application visibility and performance management by provisioning sensors to collect and stream data and analyze application and workload flow path through the network.
Capacity planning and optimization by proactively detecting hotspots and monitoring latency and microbursts.
Troubleshooting and root cause analysis via high-frequency monitoring and correlating overlay and underlay networks

Management, Monitoring, and Analytics

Automated deployment and zero-touch deployment
Continuous fabric validation
Fabric life-cycle management
Troubleshooting using advanced telemetry

For more information on Apstra, see Juniper Apstra.

Features and Benefits

Automation and Programmability: The QFX5200 supports numerous network automation features, including operations and event scripts, ZTP, and Juniper plug-ins for OpenStack Neutron.
Flexible Forwarding Table: The QFX5200 switch’s Flexible Forwarding Table (FFT) allows the hardware table to be carved into configurable partitions of L2 media access control (MAC), L3 host, and longest prefix match (LPM) tables. In a pure L2 environment, the QFX5200 supports 136,000 MAC addresses; in L3 mode, the table supports 104,000 host entries; while in LPM mode, it supports 128,000 prefixes. A filter-based forwarding mode supports 64,000 exact match filtering rules. Junos OS provides configurable options through a CLI, enabling each QFX5200 to be optimized for different deployment scenarios.
MPLS: The QFX5200 supports a broad set of MPLS features, including L3 VPN, RSVP traffic engineering, and LDP to support standards-based multitenancy and network virtualization with per-flow SLAs at scale. The QFX5200 can also be deployed as a low-latency MPLS label-switching router (LSR) or MPLS provider edge (PE) router in smaller scale environments. The QFX5200 and the Juniper Networks QFX5100 switch are the industry’s most compact, low-latency, high-density, low-power family of switches to offer an MPLS feature set.
FCoE: As a Fibre Channel over Ethernet (FCoE) transit switch, the QFX5200 provides an IEEE data center bridging (DCB) converged network between FCoE-enabled servers and an FCoE-to-FC gateway or FCoE-enabled Fibre Channel storage area network (SAN). The QFX5200 offers a full-featured DCB implementation that provides strong monitoring capabilities on the top-of-rack switch for SAN and LAN administration teams to maintain clear separation of management. In addition, FCoE Initialization Protocol (FIP) snooping provides perimeter protection, ensuring that the presence of an Ethernet layer does not impact existing SAN security policies. FCoE LAG support transports FCoE traffic and regular Ethernet traffic across the same link aggregation bundle over ports on a converged network adapter (CNA), while guaranteeing that the same physical link is used for an FCoE point-to-point virtual connection.

The FCoE transit switch functionality, including priority-based flow control (PFC) and Data Center Bridging Capability Exchange (DCBX), are included as part of the default software.

QFX5200-32C-S Hardware with SONiC Support

The QFX5200-32C-S Switch supports Juniper’s SONiC implementation, delivering best-of-breed hardware and routing for cloud providers while taking advantage of the flexibility, resiliency, and cost savings of SONiC’s open and disaggregated architecture. The SONiC-enabled QFX5200-32C-S, which plugs seamlessly into a unified SONiC network infrastructure, leverages the existing QFX5200-32C hardware and includes support for ONIE and IDEEPROM TLV formats. ONIE and SONiC images are installed on the hardware at the factory. The Juniper-provided SONiC image includes the platform and FRU device drivers only; it does not include Juniper software features such as Layer 2, Layer 3, MPLS, EVPN, and VXLAN, among others. The platform and FRU device drivers are uploaded to the SONiC Github open source repository. Customers can use their private SONiC patches by building and upgrading the ONIE and SONiC images on the switch. Juniper complements the SONiC OS with the containerized Routing Protocol Daemon (cRPD), a full-function routing and management stack packaged as a container, ensuring a common end-to-end routing experience across different tiers in the data center. In addition, the cRPD enables high-performance telemetry, automation, and programmability in a lightweight deployment.

Specifications

Hardware

Table 1. QFX5200 System Capacity

	QFX5200-32C	QFX5200-48Y
System throughput	Up to 6.4 Tbps (bi-directional)	3.6 Tbps (bi-directional)
Forwarding capacity	Up to 2.4 Bpps	2.1 Bpps
QSFP+/QSFP28 ports	32 QSFP+ or QSFP28	6 QSFP+ or QSFP28
SFP+/SFP28	128 10GbE SFP+ through QSFP+ to SFP+ breakout cable 128 25GbE SFP28 through QSFP28 to SFP28 breakout cable	48 SFP+ or SFP28
Maximum 10GbE port density	128	48
Maximum 25GbE port density	128	48
Maximum 40GbE port density	32	6
Maximum 50GbE port density	64	-
Maximum 100GbE port density	32	6

Table 2. QFX5200 System Specifications

	QFX5200-32C	QFX5200-48Y
Dimensions (W x H x D)	17.36 x 1.72 x 20.48 in. (44.09 x 4.37 x 52.02 cm)	17.36 x 1.70 x 20.28 in. (44.09 x 4.31 x 51.5 cm)
Rack units	1 U	1 U
Weight	23.8 lb (10.8 Kg)	21.2 lb (9.6 kg)
Operating system	Junos OS	Junos OS
CPU	Intel Quad Core Ivy Bridge 1.8 GHz CPU, 16 GB SDRAM, 64 GB SSD	Intel Quad Core Broadwell-DE 2.3 GHz CPU, 16 GB SDRAM, 32 GB SSD
Management and Precision Time Protocol (PTP) interfaces	1 RJ-45 1GbE port for PTP Grandmaster 2 SMB connectors, one for pulse per second (PPS) output and one for 10 MHz clock output 2 SFP and 1 RJ-45 10/100/1000 BASE-T for management (only two ports can be used) 1 RS-232 console port 1 USB 2.0 port	1 RJ-45 10/100/1000 BASE-T for management 1 RS-232 console port 1 USB 2.0 port
Power	Redundant (1+1) hot-pluggable 850 W AC/DC power supplies 110-240 V single phase AC power -36 to -72 V DC power	Redundant (1+1) hot-pluggable 650 W AC/DC power supplies
Cooling	Front-to-back and back-to-front cooling Redundant (N+1) hot-pluggable fan modules with variable speed to minimize power draw	Front-to-back and back-to-front cooling Redundant (N+1) hot-pluggable fan modules
Total packet buffer	16 MB	22 MB
Warranty	Juniper standard one-year warranty	Juniper standard one-year warranty

Software (Non SONiC Versions)

Performance Scale (Unidimensional)

MAC addresses per system: 136,000
VLAN IDs: 4096
Number of link aggregation groups (LAGs): 128
Number of ports per LAG: 64
- Number of FCoE VLANs/FC virtual fabrics: 4095
Firewall filters:
- Ingress: 768 Routed ACL (RACL), VLAN ACL (VACL), and Port ACL (PACL) rules
- Egress: 1024 RACL, VACL, and PACL rules
IPv4 unicast routes: 128,000 prefixes; 104,000 host routes
IPv4 multicast routes: 52,000
IPv6 multicast routes: 28,000
IPv6 unicast routes: 98,000 prefixes; 52,000 host routes
Address Resolution Protocol (ARP) entries: 32,000
Generic routing encapsulation (GRE) tunnels: 1024
MPLS labels: 16,000
MPLS IPv4 L3 VPNs (Premium Services License): 2048
Jumbo frame: 9216 bytes
Spanning Tree Protocol (STP)
- Multiple Spanning Tree Protocol (MSTP) instances: 64
- VLAN Spanning Tree Protocol (VSTP) instances: 253
Traffic mirroring
- Mirroring destination ports per switch: 4
- Maximum number of mirroring sessions: 4
- Mirroring destination VLANs per switch: 4

Layer 2 Features

STP—IEEE 802.1D (802.1D-2004)
Rapid Spanning Tree Protocol (RSTP) (IEEE 802.1w); MSTP (IEEE 802.1s)
Bridge protocol data unit (BPDU) protect
Loop protect
Root protect
RSTP and VSTP running concurrently
VLAN—IEEE 802.1Q VLAN trunking
Routed VLAN Interface (RVI)
Port-based VLAN
MAC address filtering
QinQ
VLAN translation
Static MAC address assignment for interface
Per VLAN MAC learning (limit)
- MAC learning disable
- Link Aggregation and Link Aggregation Control Protocol (LACP) (IEEE 802.3ad)
- IEEE 802.1AB Link Layer Discovery Protocol (LLDP)

Link Aggregation

Multichassis link aggregation (MC-LAG)
Redundant trunk group (RTG)*
LAG load sharing algorithm—bridged or routed (unicast or multicast) traffic:
- IP: Session Initiation Protocol (SIP), Dynamic Internet Protocol (DIP), TCP/UDP source port, TCP/UDP destination port
- L2 and non-IP: MAC SA, MAC DA, Ethertype, VLAN ID, source port
- FCoE packet: Source ID (SID), destination ID (DID), originator exchange ID (OXID), source port

Layer 3 Features

Static routing
RIP v1/v2
OSPF v1/v2
OSPF v3
Filter-based forwarding
Virtual Router Redundancy Protocol (VRRP)
IPv6
Virtual routers
Unicast RPF (uRPF)
Loop-free alternate (LFA)
BGP (Advanced Services or Premium Services license)
IS-IS (Advanced Services or Premium Services license)
Dynamic Host Configuration Protocol (DHCP) v4/v6 relay
VR-aware DHCP
IPv4/IPv6 over GRE tunnels (interface-based with decap/encap and firewall-based with decap only)

Multicast

Internet Group Management Protocol (IGMP) v1/v2
Multicast Listener Discovery (MLD) v1/v2
IGMP proxy, querier
IGMP snooping
MLD snooping
Protocol Independent Multicast PIM-SM, PIM-SSM, PIM-DM, PIM-Bidir*
Multicast Source Discovery Protocol (MSDP)

Security and Filters

Secure interface login and password
RADIUS
TACACS+
Ingress and egress filters: Allow and deny, port filters, VLAN filters, and routed filters, including management port filters
Filter actions: Logging, system logging, reject, mirror to an interface, counters, assign forwarding class, permit, drop, police, mark
SSH v1, v2
Static ARP support
Storm control, port error disable, and autorecovery
Control plane denial-of-service (DoS) protection
DHCP snooping

Quality of Service (QoS)

L2 and L3 QoS: Classification, rewrite, queuing
Rate limiting:
- Ingress policing: 1 rate 2 color, 2 rate 3 color
- Egress policing: Policer, policer mark down action
- Egress shaping: Per queue
10 hardware queues per port (8 unicast and 2 multicast)
Strict priority queuing (LLQ), shaped-deficit weighted round-robin (SDWRR), weighted random early detection (WRED)
802.1p remarking
Layer 2 classification criteria: Interface, MAC address, Ethertype, 802.1p, VLAN
Congestion avoidance capabilities: WRED
Trust IEEE 802.1p (ingress)
Remarking of bridged packets

MPLS (Premium Services License)

Static label-switched paths (LSPs)
RSVP-based signaling of LSPs
LDP-based signaling of LSPs
LDP tunneling (LDP over RSVP)
MPLS class of service (CoS)
MPLS access control list (ACL)/policers
MPLS LSR support
IPv4 L3 VPN (RFC 2547, 4364)
MPLS fast reroute (FRR)^*

Server Virtualization Management and SDN-Related Protocols

IEEE 802.1Qbg (VEPA hairpin forwarding)

Data Center Bridging (DCB)

Priority-based flow control (PFC)—IEEE 802.1Qbb
Data Center Bridging Exchange Protocol (DCBX), DCBx FCoE, and iSCSI type, length, and value (TLVs)

Fibre Channel over Ethernet (FCoE)

FCoE transit switch (FIP snooping ACL installation)
FCoE session path learning
FCoE session health monitoring
Graceful restart for FIP snooping
FC-BB-6 VN2VN snooping

High Availability

Sub-second Bidirectional Forwarding Detection (BFD)
Uplink failure detection (UFD)

Visibility and Analytics

Switched Port Analyzer (SPAN)
Remote SPAN (RSPAN)
Encapsulated Remote SPAN (ERSPAN)
sFlow v5
Junos Telemetry Interface

Management and Operations

Role-based CLI management and access
CLI via console, telnet, or SSH
Extended ping and traceroute
Junos OS configuration rescue and rollback
Image rollback
SNMP v1/v2/v3
Junos XML management protocol
High frequency statistics collection
Beacon LED for port and system
Automation and orchestration
Zero Touch Provisioning (ZTP)
OpenStack Neutron Plug-in
Puppet
Chef
Python
Junos OS event, commit, and OP scripts

Standards Compliance

IEEE Standards

IEEE 802.1D
IEEE 802.1w
IEEE 802.1
IEEE 802.1Q
IEEE 802.1p
IEEE 802.1ad
IEEE 802.3ad
IEEE 802.1AB
IEEE 802.3x
IEEE 802.1Qbb^*
IEEE 802.1Qaz

T11 Standards

INCITS T11 FC-BB-5

Supported RFCs

RFC 768 UDP
RFC 783 Trivial File Transfer Protocol (TFTP)
RFC 791 IP
RFC 792 ICMP
RFC 793 TCP
RFC 826 ARP
RFC 854 Telnet client and server
RFC 894 IP over Ethernet
RFC 903 RARP
RFC 906 TFTP Bootstrap
RFC 951 1542 BootP
RFC 1058 Routing Information Protocol
RFC 1112 IGMP v1
RFC 1122 Host requirements
RFC 1142 OSI IS-IS Intra-domain Routing Protocol
RFC 1256 IPv4 ICMP Router Discovery (IRDP)
RFC 1492 TACACS+
RFC 1519 Classless Interdomain Routing (CIDR)
RFC 1587 OSPF not-so-stubby area (NSSA) Option
RFC 1591 Domain Name System (DNS)
RFC 1745 BGP4/IDRP for IP—OSPF Interaction
RFC 1772 Application of the Border Gateway Protocol in the Internet
RFC 1812 Requirements for IP Version 4 routers
RFC 1997 BGP Communities Attribute
RFC 2030 SNTP, Simple Network Time Protocol
RFC 2068 HTTP server
RFC 2131 BOOTP/DHCP relay agent and Dynamic Host
RFC 2138 RADIUS Authentication
RFC 2139 RADIUS Accounting
RFC 2154 OSPF w/Digital Signatures (Password, MD-5)
RFC 2236 IGMP v2
RFC 2267 Network ingress filtering
RFC 2328 OSPF v2 (edge mode)
RFC 2338 VRRP
RFC 2362 PIM-SM (edge mode)
RFC 2370 OSPF Opaque link-state advertisement (LSA) Option
RFC 2385 Protection of BGP Sessions via the TCP Message Digest 5 (MD5) Signature Option
RFC 2439 BGP Route Flap Damping
RFC 2453 RIP v2
RFC 2474 Definition of the Differentiated Services Field in the IPv4 and IPv6 Headers

RFC 2597 Assured Forwarding PHB (per-hop behavior) Group
RFC 2598 An Expedited Forwarding PHB
RFC 2697 A Single Rate Three Color Marker
RFC 2698 A Two Rate Three Color Marker
RFC 2796 BGP Route Reflection—An Alternative to Full Mesh IBGP
RFC 2918 Route Refresh Capability for BGP-4
RFC 3065 Autonomous System Confederations for BGP
RFC 3376 IGMP v3 (source-specific multicast include mode only)
RFC 3392 Capabilities Advertisement with BGP-4
RFC 3446, Anycast RP
RFC 3569 SSM
RFC 3618 MSDP
RFC 3623 Graceful OSPF Restart
RFC 4271 Border Gateway Protocol 4 (BGP-4)
RFC 4360 BGP Extended Communities Attribute
RFC 4456 BGP Route Reflection: An Alternative to Full Mesh Internal BGP (IBGP)
RFC 4486 Subcodes for BGP Cease Notification Message
RFC 4724 Graceful Restart Mechanism for BGP
RFC 4812 OSPF Restart Signaling
RFC 4893 BGP Support for Four-octet AS Number Space
RFC 5176 Dynamic Authorization Extensions to RADIUS
RFC 5396 Textual Representation of Autonomous System (AS) Numbers
RFC 5668 4-Octet AS Specific BGP Extended Community
RFC 5880 Bidirectional Forwarding Detection (BFD)
Configuration Protocol (DHCP) server

Supported MIBs

RFC 155 SMI
RFC 1157 SNMPv1
RFC 1212, RFC 1213, RFC 1215 MIB-II, Ethernet-Like MIB and TRAPs
RFC 1850 OSPFv2 MIB
RFC 1901 Introduction to Community-based SNMPv2
RFC 2011 SNMPv2 for Internet protocol using SMIv2
RFC 2012 SNMPv2 for transmission control protocol using SMIv2
RFC 2013 SNMPv2 for user datagram protocol using SMIv2
RFC 2233, The Interfaces Group MIB using SMIv2
RFC 2287 System Application Packages MIB
RFC 2570 Introduction to Version 3 of the Internet-standard Network Management Framework
RFC 2571 An Architecture for describing SNMP Management Frameworks (read-only access)
RFC 2572 Message Processing and Dispatching for the SNMP (read-only access)
RFC 2576 Coexistence between SNMP Version 1, Version 2, and Version 3
RFC 2578 SNMP Structure of Management Information MIB
RFC 2579 SNMP Textual Conventions for SMIv2
RFC 2580 Conformance Statements for SMIv2
RFC 2665 Ethernet-like interface MIB
RFC 2787 VRRP MIB
RFC 2790 Host Resources MIB
RFC 2819 RMON MIB
RFC 2863 Interface Group MIB
RFC 2932 IPv4 Multicast MIB
RFC 3410 Introduction and Applicability Statements for Internet Standard Management Framework
RFC 3411 An architecture for describing SNMP Management Frameworks
RFC 3412 Message Processing and Dispatching for the SNMP
RFC 3413 Simple Network Management Protocol (SNMP)—(all MIBs are supported except the Proxy MIB
RFC 3414 User-based Security Model (USM) for SNMP
RFC 3415 View-based Access Control Model (VACM) for the SNMP
RFC 3416 Version 2 of the Protocol Operations for the SNMP
RFC 3417 Transport Mappings for the SNMP
RFC 3418 Management Information Base (MIB) for the SNMP
RFC 3584 Coexistence between Version 1, Version 2, and Version 3 of the Internet Standard Network Management Framework
RFC 3826 The Advanced Encryption Standard (AES) Cipher Algorithm in the SNMP User-based Security Model
RFC 4188 Definitions of Managed Objects for Bridges
RFC 4318 Definitions of Managed Objects for Bridges with Rapid Spanning Tree Protocol
RFC 4363b Q-Bridge VLAN MIB

Environmental Ranges

Parameters	QFX5200-32C	QFX5200-48Y-AFO	QFX5200-48Y-AFI
Operating temperature	32° to 104° F (0° to 40° C)	32° to104° F (0° to 40° C)	32° to 95° F (0° to 35° C)
Storage temperature	-40° to 158° F (-40° to 70° C)	-40° to 158° F (-40° to 70° C)	-40° to 158° F (-40° to 70° C)
Operating altitude	Up to 10000 ft. (3048 m)	Up to 5000 ft. (1524 m)	Up to 5000 ft. (1524 m)
Relative humidity operating	5 to 90% (noncondensing)	5 to 93% (noncondensing)	5 to 93% (noncondensing)
Relative humidity nonoperating	5 to 95% (noncondensing)	5 to 93% (noncondensing)	5 to 93% (noncondensing)
Seismic	Designed to meet GR-63, Zone 4 earthquake requirements	Designed to meet GR-63, Zone 4 earthquake requirements	Designed to meet GR-63, Zone 4 earthquake requirements

Maximum Thermal Output

Parameters	QFX5200-32C	QFX5200-48Y
Maximum power draw	480 W (AC, DC), 1638 BTU/hr	430 W (AC, DC), 1467 BTU/hr
Typical power draw	380 W (AC, DC), 1296 BTU/hr	382 W (AC, DC), 1303 BTU/hr

Safety and Compliance

Safety

CAN/CSA-C22.2 No. 60950-1 Information Technology Equipment—Safety
UL 60950-1 Information Technology Equipment—Safety
EN 60950-1 Information Technology Equipment—Safety
IEC 60950-1 Information Technology Equipment—Safety (All country deviations)
EN 60825-1 Safety of Laser Products—Part 1: Equipment Classification

Electromagnetic Compatibility

47 CFR Part 15, (FCC) Class A
ICES-003 Class A
EN 55022/EN 55032, Class A
CISPR 22/CISPR 32, Class A
EN 55024
CISPR 24
EN 300 386
VCCI Class A
AS/NZS CISPR 32, Class A
KN32/KN35
BSMI CNS 13438, Class A
EN 61000-3-2
EN 61000-3-3
ETSI
ETSI EN 300 019: Environmental Conditions & Environmental Tests for Telecommunications Equipment
ETSI EN 300 019-2-1 (2000)—Storage
ETSI EN 300 019-2-2 (1999)—Transportation
ETSI EN 300 019-2-3 (2003)—Stationary Use at Weather-protected Locations
ETSI EN 300 019-2-4 (2003)—Stationary Use at Non-Weather-protected Locations
ETS 300753 (1997)—Acoustic noise emitted by telecommunications equipment

Environmental Compliance

Restriction of Hazardous Substances (ROHS) 6/6

China Restriction of Hazardous Substances (ROHS)

Registration, Evaluation, Authorisation and Restriction of Chemicals (REACH)

Waste Electronics and Electrical Equipment (WEEE)

Recycled material

80 Plus Silver PSU Efficiency

Telco

Common Language Equipment Identifier (CLEI) code

Juniper Networks Services and Support

Juniper Networks is the leader in performance-enabling services that are designed to accelerate, extend, and optimize your high-performance network. Our services allow you to maximize operational efficiency while reducing costs and minimizing risk, achieving a faster time to value for your network. Support and services for the SONiC-enabled QFX5200-32C-S includes fixes for the platform and FRU device drivers. Juniper Networks ensures operational excellence by optimizing the network to maintain required levels of performance, reliability, and availability. For more details, please visit https://www.juniper.net/us/en/products.html.

Ordering Information

Product	Description
Switch Hardware
QFX5200-32C-AFI	QFX5200 (hardware only; software services sold separately), 32 QSFP+/QSFP28 ports, redundant fans, 2 AC power supplies, back-to-front airflow
QFX5200-32C-AFO	QFX5200 (hardware only; software services sold separately), 32 QSFP+/QSFP28 ports, redundant fans, 2 AC power supplies, front-to-back airflow
QFX5200-32C-DC-AFI	QFX5200 (hardware only; software services sold separately), 32 QSFP+/QSFP28 ports, redundant fans, 2 DC power supplies, back-to-front airflow
QFX5200-32C-DC-AFO	QFX5200 (hardware only; software services sold separately), 32 QSFP+/QSFP28 ports, redundant fans, 2 DC power supplies, front-to-back airflow
QFX5200-32C-DCSAFI	QFX5200, 32 QSFP+ ports, redundant fans, 2 DC power supplies, back-to-front airflow, with SONiC
QFX5200-32C-DCSAFO	QFX5200, 32 QSFP+ ports, redundant fans, 2 DC power supplies, front-to-back airflow, with SONiC
QFX5200-32C-SAFI	QFX5200, 32 QSFP+ ports, redundant fans, 2 AC power supplies, back-to-front airflow, with SONiC
QFX5200-32C-SAFO	QFX5200, 32 QSFP+ ports, redundant fans, 2 AC power supplies, front-to-back airflow, with SONiC
QFX5200-32C-S-CHAS	QFX5200-32C chassis with SONiC as default NOS.
JPSU-850W-AC-AFI	Juniper 850 W AC power supply for QFX5100-96S and QFX5200-32C (power supply-side airflow intake)
JPSU-850W-AC-AFO	Juniper 850 W AC power supply for QFX5100-96S and QFX5200-32C (power supply-side airflow exhaust)
JPSU-850W-DC-AFI	DC 850 W power supply, back-to-front airflow for QFX5100-96S and QFX5200-32C
JPSU-850W-DC-AFO	DC 850 W power supply, front-to-back airflow for QFX5100-96S and QFX5200-32C
QFX5200-32C-FANAFI	QFX5200-32C fan module, back-to-front airflow
QFX5200-32C-FANAFO	QFX5200-32C fan module, front-to-back airflow
QFX5200-48Y-AFI	QFX5200-48Y (base software services included), 48 SFP+/SFP28 ports, redundant fans, 2 AC power supplies, back-to-front airflow
QFX5200-48Y-AFO	QFX5200-48Y (base software services included), 48 SFP+/SFP28 ports, redundant fans, 2 AC power supplies, front-to-back airflow
QFX5200-48Y-DC-AFI	QFX5200-48Y (base software services included), 48 SFP+/SFP28 ports, redundant fans, 2 DC power supplies, back-to-front airflow
QFX5200-48Y-DC-AFO	QFX5200-48Y (base software services included), 48 SFP+/SFP28 ports, redundant fans, 2 DC power supplies, front-to-back airflow
QFX520048Y-APSU-AO	Juniper 650 W AC power supply for QFX5200-48Y (power supply-side airflow intake)
QFX520048Y-APSU-AI	Juniper 650 W AC power supply for QFX5200-48Y (power supply-side airflow exhaust)
QFX520048Y-DPSU-AO	DC 650 W power supply, front-to-back airflow for QFX5200-48Y
QFX520048Y-DPSU-AI	DC 650 W power supply, back-to-front airflow for QFX5200-48Y
QFX520048Y-FAN-AO	QFX5200-48Y fan module, front-to-back airflow
QFX520048Y-FAN-AI	QFX5200-32C fan module, back-to-front airflow
EX-4PST-RMK	Adjustable 4-post rack-mount kit for EX Series, QFX5100, and QFX5200
QFX520048Y-RKMT	4 post rack-mount for QFX5200-48Y
Optics and Transceivers
QFX-SFP-10GE-USR	SFP+ 10GbE Ultra Short Reach optics, 850 nm for 10 m on OM1, 20 m on OM2, 100 m on OM3 multimode fiber (for management port)
QFX-SFP-10GE-SR	SFP+ 10GBASE-SR 10GbE optics, 850 nm for up to 300 m transmission on multimode fiber-optic (MMF) (for management port)
QFX-SFP-10GE-LR	SFP+ 10GBASE-LR 10GbE optics, 1310 nm for 10 km transmission on single-mode fiber-optic (SMF) (for management port)
QFX-SFP-DAC-1M	SFP+10 GbE direct attach copper (DAC) (twinax copper cable) 1 m for QFX5200-48Y
QFX-SFP-DAC-3M	SFP+10 GbE DAC (twinax copper cable) 3 m for QFX5200-48Y
QFX-SFP-DAC-5M	SFP+10 GbE DAC (twinax copper cable) 5 m for QFX5200-48Y
JNP-SFP-25G-SR	25GBASE-SR SFP28 module for MMF for QFX5200-48Y
JNP-SFP-25G-DAC-1M	SFP 25GBASE DAC cable 1 m for QFX5200-48Y
JNP-SFP-25G-DAC-3M	SFP 25GBASE DAC cable 3 m for QFX5200-48Y
JNP-SFP-25G-DAC-5M	SFP 25GBASE DAC cable 5 m for QFX5200-48Y
JNP-QSFP-40GE-IR4	QSFP+ 40GBASE-IR4 40-gigabit optics, 1310 nm for up to 2 km transmission on SMF
JNP-QSFP-40G-LR4	QSFP+ 40GBASE-LR4 40-gigabit optics, 1310 nm for up to 10 km transmission on SMF
JNP-QSFP-40G-LX4	QSFP+ 40GBASE-LX4 40-gigabit optics, 100 m (150 m) with OM3 (OM4) duplex MMF fiber
JNP-QSFP-4X10GE-IR^*	QSFP+ 40GBASE optics, up to 1.4 km transmission on parallel single mode (4X10GbE long reach up to 1.4 km)
JNP-QSFP-4X10GE-LR^*	QSFP+ 40GBASE optics, up to 10 km transmission on parallel single mode (4X10GbE long reach up to 10 km)
QFX-QSFP-40G-ESR4^*	QSFP+ 40GBASE-ESR4 40-gigabit optics, 300 m (400 m) with OM3 (OM4) MMF
QFX-QSFP-40G-SR4	QSFP+ 40GBASE-SR4 40-gigabit optics, 850 nm for up to 150 m transmission on MMF
JNP-40G-AOC-20M	40GbE active optical cable for 20 m
JNP-40G-AOC-30M	40GbE active optical cable for 30 m
JNP-QSFP-DAC-10MA	QSFP+ to QSFP+ Ethernet DAC (twinax copper cable) 10 m active
JNP-QSFP-DAC-7MA	QSFP+ to QSFP+ Ethernet DAC (twinax copper cable) 7 m active
JNP-QSFP-DAC-5M	QSFP+ to QSFP+ Ethernet DAC (twinax copper cable) 5 m passive
QFX-QSFP-DAC-3M	QSFP+ to QSFP+ Ethernet DAC (twinax copper cable) 3 m passive
QFX-QSFP-DAC-1M	QSFP+ to QSFP+ Ethernet DAC (twinax copper cable) 1 m passive
EX-QSFP-40GE-DAC-50CM	40GbE QSFP+ 0.5 m direct-attach
JNP-QSFP-DACBO-10M^*	QSFP+ to SFP+ 10GbE direct attach breakout copper (twinax copper cable) 10 m active
JNP-QSFP-DACBO-7MA^*	QSFP+ to SFP+ 10GbE direct attach breakout copper (twinax copper cable) 7 m active
JNP-QSFP-DACBO-5MA^*	QSFP+ to SFP+ 10GbE direct attach breakout copper (twinax copper cable) 5 m active
QFX-QSFP-DACBO-3M^*	QSFP+ to SFP+ 10GbE direct attach breakout copper (twinax copper cable) 3 m
QFX-QSFP-DACBO-1M^*	QSFP+ to SFP+ 10GbE direct attach breakout copper (twinax copper cable) 1 m
JNP-QSFP-100G-SR4	QSFP28 100GBASE-SR4 optics for up to 100 m transmission over parallel MMF
JNP-QSFP-100G-LR4	QSFP28 100GBASE-LR4 optics for up to 10 km transmission over serial SMF
JNP-QSFP-100G-PSM4	100GbE PSM4 optics
JNP-QSFP-100G-CWDM	100GbE CWDM4 optics
JNP-100G-AOC-1M	100GbE active optical cable for 1 m
JNP-100G-AOC-15M	100GbE active optical cable for 15 m
JNP-100G-AOC-20M	100GbE active optical cable for 20 m
JNP-100G-DAC-3M^*	QSFP28-to-QSFP28 Ethernet DAC (twinax copper cable) 3 m
JNP-100G-DAC-1M^*	QSFP28-to-QSFP28 Ethernet DAC (twinax copper cable) 1 m
Optics and Tranceivers (SONiC Version)
QFX-QSFP-40G-SR4	QSFP+ 40GBASE-SR4 40 Gigabit Optics, 850nm for up to 150m transmission on MMF
JNP-QSFP-40G-LR4	QSFP+ 40GBASE-LR4 40 Gigabit Optics for up to 10km transmission on SMF
JNP-QSFP-100G-SR4	QSFP28 100GBASE-SR4 Optics for up to 100m transmission over parallel MMF
JNP-QSFP-100G-LR4	QSFP28 100GBASE-L4 Optics for up to 10km transmission over serial SMF
JNP-QSFP-4x10GE-LR	QSFP+ 40GBASE Optics, up to 10km Transmission on parallel single mode (4X10GE LR up to 10km)
JNP-100G-AOC-1M	100GbE active optical cable for 1 m
JNP-100G-AOC-3M	100GbE active optical cable for 3 m
JNP-100G-AOC-5M	100GbE active optical cable for 5 m
JNP-100G-DAC-1M	100GbE DAC Twinex Copper Cable for 1 m
JPN-100G-DAC-3M	100GbE DAC Twinex Copper Cable 3 m
JNP-100G-DAC-5M	100GbE DAC Twinex Copper Cable 5 m
QFX-QSFP-DAC-1M	QSFP+ to QSFP+ Ethernet DAC (twinax copper cable) 1 m passive
JNP-100G-4x25G-1M	100G QFP28 to SFP28 4x25G Direct Attach Copper Breakout Twinex Copper Cable 1 m
JNP-100G-4x25G-3M	100G QFP28 to SFP28 4x25G Direct Attach Copper Breakout Twinex Copper Cable 3 m
Software Licenses
QFX5000-35-JBS	Base Services license for QFX5200-32C
QFX5000-35-JAS	Advanced Services license for QFX5200-32C
QFX5000-35-JPS	Premium services license for QFX5200-32C
QFX5K-C1-PFL	QFX5000 Class 1 Premium Feature License for QFX5200-48Y
QFX5K-C1-AFL	QFX5000 Class 1 Advanced Feature License for QFX5200-48Y

Add to cart Details

QFX5210 Ethernet Switch

ASK FOR PRICE

Product Overview

The QFX5210 Switch is a flexible, 64-port, fixed-configuration switch designed for spine-and-leaf applications in next-generation IP fabric networks. Featuring line-rate, high-density QSFP+/QSFP28 ports supporting 10GbE, 25GbE, 40GbE, and 100GbE connections, the QFX5210 offers an advanced Layer 2, Layer 3, and MPLS feature set. This allows network operators to build large, high-density IP fabrics that support network virtualization and intelligent traffic forwarding based on proven, Internet-scale technology, while enabling easy upgrades to 25GbE servers. Additionally, the QFX5210-64C-S platform includes support for SONiC, continuing Juniper’s commitment to disaggregation, allowing customers to innovate quickly and easily while simplifying operations.

Product Description

Network operators are increasingly deploying scale-out spine-and-leaf IP fabric architectures built with fixed-configuration switches to support growing east-west traffic in the data center. The Juniper Networks^® QFX5210 Switch is a next-generation, fixed-configuration spine/leaf switch that offers flexible, cost-effective, high-density 10GbE, 25GbE, 40GbE, and 100GbE interfaces for IP fabric networks, providing deployment versatility, investment protection, and future-proofing for today’s data centers. The QFX5210 Switch’s high port density also contributes to simplified Clos architectures, eliminating network tiers while reducing complexity and cost. Like other Juniper Networks QFX Series Switches, the QFX5210 supports advanced L2, L3, and MPLS features. For large public cloud providers—among the first to adopt 25GbE servers to meet explosive workload growth—the QFX5210 enables very large, dense, and fast IP fabrics based on proven Internet scale technology. The QFX5210 runs the same reliable, high-performance Junos^® operating system used by network operators around the world.

QFX5210 Deployment Options

Table 1 shows some of the many QFX5210 deployment options, including top-of-rack access as well as spine-and-leaf configurations in a centralized or distributed gateway architecture.

Table 1. QFX5210 Deployment Options

Port Combinations	Deployment
64x100GbE	Spine/leaf
96x25GbE + 8x100GbE	25GbE access

The QFX5210 can be positioned as a top-of-rack device in a centralized gateway architecture (also known as centrally routed bridging, or CRB). Figure 1 shows the QFX5210 deployed as an access switch with the Juniper Networks QFX10000 line of Switches acting as the spine device configured as a central gateway. In this topology, the QFX10000 can also be configured as a collapsed spine and edge device, acting as a central gateway for Ethernet VPN (EVPN)-Virtual Extensible LAN (VXLAN), MPLS, and other tunneling protocols. The 100GbE ports on the QFX5210 can be channelized to support 4x25GbE or 4x10GbE downlinks.

Figure 1: QFX5210 and QFX10002 in a leaf-spine deployment with centralized gateway

The QFX5210 can also be positioned as a lean spine device in a distributed gateway architecture (also known as edge-routed bridging, or ERB). Figure 2 shows QFX5120 switches deployed as access switches configured as distributed gateways and QFX5210 switches deployed as spine switches.

Figure 2: QFX5120 and QFX5210 leaf-spine deployment with distributed gateway

Architecture and Key Components

The QFX5210 is a compact, 2 U platform featuring 64 quad small form-factor pluggable plus (QSFP+) transceivers or QSFP28 ports, with two redundant 1100 W AC/DC power supplies and four fan trays. A QSFP28 module can be used to provide a 1x100GbE connection or 4x25GbE connections using breakout cables. A QSFP+ module can be used to provide a 1x40GbE connection or 4x10GbE connections using breakout cables. The QFX5210 features a high-throughput 12.8 Tbps Packet Forwarding Engine (PFE). Control plane performance is further enhanced with the Intel Broadwell-DE, 4 Core, 2.2 GHz CPU, and 16 GB DDR4, 100 GB SSD storage. The QFX5210 can be used in L3 fabrics and L2 networks with multichassis link aggregation (MC-LAG). Customers can choose the architecture that best suits their deployment needs and easily adapt and evolve as requirements change over time. The QFX5210 switch serves as a universal building block for these switching architectures, enabling data center operators to build cloud networks their way.

IP Fabric: For customers looking to build scale-out data centers, an L3 spine-and-leaf Clos fabric is ideal due to its predictable, nonblocking performance and scale characteristics. For example, a two-tier fabric built with the QFX5210 Switch as leafs and QFX10000 Switches as the spine can scale to support up to 18,432 40GbE ports, or 36,864 25GbE or 10GbE server ports in a single fabric.
Overlays: Customers can deploy overlay networks to provide L2 adjacencies for applications over L3 fabrics. The overlay networks use VXLAN in the data plane and EVPN to program the overlays. The overlays can operate without a controller or can be orchestrated with a fabric management orchestrator to provide L2/L3 overlay virtual networking and security for bare-metal servers and virtual workloads. QFX5210 switches can also integrate with VMware NSX.
MC-LAG: The QFX5210 supports the MC-LAG protocol between two switches, eliminating Spanning Tree Protocol (STP) in traditional L2 networks when deployed in the aggregation layer. MC-LAG’s active/active operation ensures complete bandwidth utilization between the network’s access and aggregation layers, while the dual control plane technology ensures the highest availability for applications.

Management, Monitoring, and Analytics

Automated deployment and zero-touch deployment
Continuous fabric validation
Fabric life-cycle management
Troubleshooting using advanced telemetry

For more information on Apstra, see Juniper Apstra.

Features and Benefits

Flexible connectivity options: The QFX5210 offers a choice of 10GbE, 25GbE, 40GbE, and 100GbE interface speeds for server and intra-fabric connectivity, providing deployment versatility and investment protection.
Automation and programmability: The QFX5210 supports numerous network automation features, including operations and event scripts, ZTP, and Juniper plug-ins for OpenStack Neutron.
Flexible Forwarding Table: The QFX5210 switch’s Flexible Forwarding Table (FFT) allows the hardware table to be carved into configurable partitions of L2 media access control (MAC), L3 host, and longest prefix match (LPM) tables. Junos OS provides configurable options through a CLI, enabling each QFX5210 to be optimized for different deployment scenarios.
MPLS: The QFX5210 supports a broad set of MPLS features, including L3 VPN, RSVP traffic engineering, and LDP to support standards-based multitenancy and network virtualization with per-flow SLAs at scale. The QFX5210 can also be deployed as a low-latency MPLS label-switching router (LSR) or MPLS provider edge (PE) router in smaller scale environments. The QFX5210, along with the Juniper Networks QFX5220, QFX5200, QFX5120, QFX5110, and QFX5100 switches, is among the industry’s most compact, low-latency, high-density, low-power family of switches to offer an MPLS feature set.
RoCEv2: As a switch capable of transporting data as well as storage traffic over Ethernet, the QFX5210 provides an IEEE data center bridging (DCB) converged network between servers with disaggregated flash storage arrays or an NVMe-enabled storage area network (SAN). The QFX5210 offers a full-featured DCB implementation that provides strong monitoring capabilities on the top- of-rack switch for SAN and LAN administration teams to maintain clear separation of management. The RDMA over Converged Ethernet version 2 (RoCEv2) transit switch functionality, including DiffServ code point (DSCP) priority-based flow control (PFC) and Data Center Bridging Capability Exchange (DCBX) with Explicit Congestion Notification (ECN) are included as part of the default software.

QFX5210-64C-S Hardware with SONiC Support

The QFX5210-64C-S Switch supports Juniper’s SONiC implementation, delivering best-of-breed hardware and routing for cloud providers while taking advantage of the flexibility, resiliency, and cost savings of SONiC’s open and disaggregated architecture. The SONiC-enabled QFX5210-64C-S, which plugs seamlessly into a unified SONiC network infrastructure, leverages the existing QFX5210-64C hardware and includes support for ONIE and IDEEPROM TLV formats. ONIE and SONiC images are installed on the hardware at the factory. The Juniper-provided SONiC image includes the platform and FRU device drivers only; it does not include Juniper software features such as L2, L3, MPLS, EVPN, VXLAN, etc. The platform and FRU device drivers are uploaded to the SONiC Github open-source repository. Customers can use their private SONiC patches by building and upgrading the ONIE and SONiC images on the switch. Juniper complements the SONiC OS with the containerized routing protocol process (cRPD), a full-function routing and management stack packaged as a container, ensuring a common end-to-end routing experience across different tiers in the data center. In addition, cRPD enables high-performance telemetry, automation, and programmability in a lightweight deployment.

Specifications

Hardware

Description	Measurement
System throughout	Up to 12.8 Tbps (bidirectional)
Forwarding capacity	Up to 4.2 Bpps
QSFP+/QSFP28 ports	64 QSFP+ or QSFP28
25GbE (breakout cable, QSFP28)	128
10GbE (breakout cable, QSFP+)	128+2
Dimensions (W x H x D)	17.26 x 3.45 x 24.1 in. (43.84 x 8.77 x 61.2 cm) (depth including fan handle; otherwise 22.83 in. (58 cm)
Rack units	2 U
Weight	14.1 kg
Operating system	Junos OS
CPU	Intel Broadwell-DE, 4 Core, 2.2 GHz, 16 GB DDR4, 100 GB SSD
Management interfaces	1 RJ-45 management port provided
Power	Redundant (1+1) hot-pluggable 1100 W AC/DC power supplies 110-240 V single phase AC power -36 to -72 V DC power
Cooling	Front-to-back and back-to-front cooling Redundant (N+1) hot-pluggable fan modules with variable speed to minimize power draw
Total packet buffer	42 MB
Warranty	Juniper standard one-year warranty

Software (Non-SONiC Versions)

Performance Scale (Unidimensional)

MAC addresses per system: 264,000
VLAN IDs: 4096 (3 VLANs reserved for internal use)
Number of link aggregation groups (LAGs): 64
Number of ports per LAG: 64
Firewall filters
- Ingress: 768 routed ACL (RACL) rules, 768 VLAN ACL (VACL) rules, 768 port ACL (PACL) rules
- Egress: 1024 RACL, VACL, and PACL rules
IPv4 route capacity: 262,140
IPv4 host table capacity: 204,750
IPv6 route capacity: 172,016
IPv6 host table capacity: 102,339
Address Resolution Protocol (ARP) entries: 49,000
Generic routing encapsulation (GRE) tunnels: 2040
MPLS labels: 32,000
MPLS IPv4 L3 VPNs (Advanced Services License): 2048
Jumbo frame: 9216 bytes
Spanning Tree Protocol (STP)
- Multiple Spanning Tree Protocol (MSTP) instances: 64
- VLAN Spanning Tree Protocol (VSTP) instances: 509
Traffic mirroring
- Mirroring destination ports per switch: 4
- Maximum number of mirroring sessions: 4
- Mirroring destination VLANs per switch: 4

Layer 2 Features

EVPN-VXLAN
STP—IEEE 802.1D (802.1D-2004)
Rapid Spanning Tree Protocol (RSTP) (IEEE 802.1w); MSTP (IEEE 802.1s)
Bridge protocol data unit (BPDU) protect
Loop protect
Root protect
RSTP and VSTP running concurrently
VLAN—IEEE 802.1Q VLAN trunking
Routed VLAN Interface (RVI)
Port-based VLAN
MAC address filtering
Q-in-Q
VLAN translation
Static MAC address assignment for interface
Per VLAN MAC learning (limit)
- MAC learning disable
- Link Aggregation and Link Aggregation Control Protocol (LACP) (IEEE 802.3ad)
- IEEE 802.1AB Link Layer Discovery Protocol (LLDP)

Link Aggregation

Multichassis link aggregation (MC-LAG)
Redundant trunk group (RTG)
LAG load sharing algorithm—bridged or routed (unicast or multicast) traffic
- IP: Session Initiation Protocol (SIP), Dynamic Internet Protocol (DIP), TCP/UDP source port, TCP/UDP destination port
- Layer 2 and non-IP: MAC SA, MAC DA, Ethertype, VLAN ID, source port

Layer 3 Features

Static routing
RIP v1/v2
OSPF v1/v2
OSPF v3
Filter-based forwarding
Virtual Router Redundancy Protocol (VRRP)
IPv6
Virtual routers
Unicast RPF (uRPF)
Loop-free alternate (LFA)
BGP (Advanced Services or Premium Services license)
IS-IS (Advanced Services or Premium Services license)
Dynamic Host Configuration Protocol (DHCP) v4/v6 relay
VR-aware DHCP
IPv4/IPv6 over GRE tunnels (interface-based with decap/encap and firewall-based with decap only)
DSCP-based PFC

Multicast

Internet Group Management Protocol (IGMP) v1/v2
Multicast Listener Discovery (MLD) v1/v2
IGMP proxy, querier
IGMP snooping
MLD snooping
Protocol Independent Multicast PIM-SM, PIM-SSM, PIM-Bidir
Multicast Source Discovery Protocol (MSDP)
Selective Multicast Ethernet Tag (SMET)—EVPN Type-6
EVPN—Type-7/8

Security and Filters

Secure interface login and password
RADIUS
TACACS+
Ingress and egress filters: Allow and deny, port filters, VLAN filters, and routed filters, including management port filters
Filter actions: Logging, system logging, reject, mirror to an interface, counters, assign forwarding class, permit, drop, police, mark
SSH v1, v2
Static ARP support
Storm control, port error disable, and autorecovery
Control plane denial-of-service (DoS) protection
DHCP snooping

Quality of Service (QoS)

L2 and L3 QoS: Classification, rewrite, queuing
Rate limiting
- Ingress policing: 1 rate 2 color, 2 rate 3 color
- Egress policing: Policer, policer mark down action
- Egress shaping: Per queue, per port
10 hardware queues per port (8 unicast and 2 multicast)
Strict priority queuing (LLQ), shaped-deficit weighted round- robin (SDWRR), weighted random early detection (WRED)
802.1p remarking
Layer 2 classification criteria: Interface, MAC address, Ethertype, 802.1p, VLAN
Congestion avoidance capabilities: WRED
Trust IEEE 802.1p (ingress)
Remarking of bridged packets

MPLS (Advanced Services License)

Static label-switched paths (LSPs)
RSVP-based signaling of LSPs
LDP-based signaling of LSPs
LDP tunneling (LDP over RSVP)
MPLS class of service (CoS)
MPLS access control list (ACL)/policers
MPLS LSR support
IPv4 L3 VPN (RFC 2547, 4364)
MPLS fast reroute (FRR)

Data Center Bridging (DCB)

Priority-based flow control (PFC)—IEEE 802.1Qbb

High Availability

Sub-second Bidirectional Forwarding Detection (BFD)
Uplink failure detection (UFD)

Visibility and Analytics

Local port mirroring (comparable to SPAN)
Remote port mirroring (comparable to RSPAN)
Remote port mirroring with a GRE tunnel (comparable to ERSPAN)
Cloud Analytics Engine flow path analysis
sFlow v5

Management and Operations

Role-based CLI management and access
CLI via console, telnet, or SSH
Extended ping and traceroute
Junos OS configuration rescue and rollback
Image rollback
SNMP v1/v2/v3
Junos XML management protocol
High frequency statistics collection
Beacon LED for port and system
Automation and orchestration
Zero touch provisioning (ZTP)
OpenStack Neutron Plug-in
Puppet
Chef
Python
Junos OS event, commit, and OP scripts

Standards Compliance

IEEE Standards

IEEE 802.1D
IEEE 802.1w
IEEE 802.1
IEEE 802.1Q
IEEE 802.1p
IEEE 802.1ad
IEEE 802.3ad
IEEE 802.1AB
IEEE 802.3x
IEEE 802.1Qbb

T11 Standards

INCITS T11 FC-BB-5

Supported RFCs

RFC 768 UDP
RFC 783 Trivial File Transfer Protocol (TFTP)
RFC 791 IP
RFC 792 ICMP
RFC 793 TCP
RFC 826 ARP
RFC 854 Telnet client and server
RFC 894 IP over Ethernet
RFC 903 RARP
RFC 906 TFTP Bootstrap
RFC 951 1542 BootP
RFC 1058 Routing Information Protocol
RFC 1112 IGMP v1
RFC 1122 Host requirements
RFC 1142 OSI IS-IS Intra-domain Routing Protocol
RFC 1256 IPv4 ICMP Router Discovery (IRDP)
RFC 1492 TACACS+
RFC 1519 Classless Interdomain Routing (CIDR)
RFC 1587 OSPF not-so-stubby area (NSSA) Option
RFC 1591 Domain Name System (DNS)
RFC 1745 BGP4/IDRP for IP—OSPF Interaction
RFC 1772 Application of the Border Gateway Protocol in the Internet
RFC 1812 Requirements for IP Version 4 routers
RFC 1997 BGP Communities Attribute
RFC 2030 SNTP, Simple Network Time Protocol
RFC 2068 HTTP server
RFC 2131 BOOTP/DHCP relay agent and Dynamic Host
RFC 2138 RADIUS Authentication
RFC 2139 RADIUS Accounting
RFC 2154 OSPF w/Digital Signatures (Password, MD-5)

RFC 2236 IGMP v2
RFC 2267 Network ingress filtering
RFC 2328 OSPF v2 (edge mode)
RFC 2338 VRRP
RFC 2362 PIM-SM (edge mode)
RFC 2370 OSPF Opaque link-state advertisement (LSA) Option
RFC 2385 Protection of BGP Sessions via the TCP Message Digest 5 (MD5) Signature Option
RFC 2439 BGP Route Flap Damping
RFC 2453 RIP v2
RFC 2474 Definition of the Differentiated Services Field in the IPv4 and IPv6 Headers
RFC 2597 Assured Forwarding PHB (per-hop behavior) Group
RFC 2598 An Expedited Forwarding PHB
RFC 2697 A Single Rate Three Color Marker
RFC 2698 A Two Rate Three Color Marker
RFC 2796 BGP Route Reflection—An Alternative to Full Mesh IBGP
RFC 2918 Route Refresh Capability for BGP-4
RFC 3065 Autonomous System Confederations for BGP
RFC 3376 IGMP v3 (source-specific multicast include mode only)
RFC 3392 Capabilities Advertisement with BGP-4
RFC 3446, Anycast RP
RFC 3569 SSM
RFC 3618 MSDP
RFC 3623 Graceful OSPF Restart
RFC 4271 Border Gateway Protocol 4 (BGP-4)
RFC 4360 BGP Extended Communities Attribute
RFC 4456 BGP Route Reflection: An Alternative to Full Mesh Internal BGP (IBGP)
RFC 4486 Subcodes for BGP Cease Notification Message
RFC 4724 Graceful Restart Mechanism for BGP
RFC 4812 OSPF Restart Signaling
RFC 4893 BGP Support for Four-octet AS Number Space
RFC 5176 Dynamic Authorization Extensions to RADIUS
RFC 5396 Textual Representation of Autonomous System (AS) Numbers
RFC 5668 4-Octet AS Specific BGP Extended Community
RFC 5880 Bidirectional Forwarding Detection (BFD)
Configuration Protocol (DHCP) server

Supported MIBs

RFC 155 SMI
RFC 1157 SNMPv1
RFC 1212, RFC 1213, RFC 1215 MIB-II, Ethernet-Like MIB and TRAPs
RFC 1850 OSPFv2 MIB
RFC 1901 Introduction to Community-based SNMPv2
RFC 2011 SNMPv2 for Internet protocol using SMIv2
RFC 2012 SNMPv2 for transmission control protocol using SMIv2
RFC 2013 SNMPv2 for user datagram protocol using SMIv2
RFC 2233, The Interfaces Group MIB using SMIv2
FC 2287 System Application Packages MIB
RFC 2570 Introduction to Version 3 of the Internet-standard Network Management Framework
RFC 2571 An Architecture for describing SNMP Management Frameworks (read-only access)
RFC 2572 Message Processing and Dispatching for the SNMP (read-only access)
RFC 2576 Coexistence between SNMP Version 1, Version 2, and Version 3
RFC 2578 SNMP Structure of Management Information MIB
RFC 2579 SNMP Textual Conventions for SMIv2
RFC 2580 Conformance Statements for SMIv2
RFC 2665 Ethernet-like interface MIB
RFC 2787 VRRP MIB
RFC 2790 Host Resources MIB
RFC 2819 RMON MIB
RFC 2863 Interface Group MIB
RFC 2932 IPv4 Multicast MIB
RFC 3410 Introduction and Applicability Statements for Internet Standard Management Framework
RFC 3411 An architecture for describing SNMP Management Frameworks
RFC 3412 Message Processing and Dispatching for the SNMP
RFC 3413 Simple Network Management Protocol (SNMP)—all MIBs are supported except the Proxy MIB
RFC 3414 User-based Security Model (USM) for SNMPv3
RFC 3415 View-based Access Control Model (VACM) for the SNMP
RFC 3416 Version 2 of the Protocol Operations for the SNMP
RFC 3417 Transport Mappings for the SNMP
RFC 3418 Management Information Base (MIB) for the SNMP
RFC 3584 Coexistence between Version 1, Version 2, and Version 3 of the Internet Standard Network Management Framework
RFC 3826 The Advanced Encryption Standard (AES) Cipher Algorithm in the SNMP User-based Security Model
RFC 4188 Definitions of Managed Objects for Bridges
RFC 4318 Definitions of Managed Objects for Bridges with Rapid Spanning Tree Protocol
RFC 4363b Q-Bridge VLAN MIB

Environmental Ranges

Parameters	QFX5210
Operating temperature	32° to 104° F (0° to 40° C)
Storage temperature	-40° to 158° F (-40° to 70° C)
Operating altitude	AFO models: Up to 6000 ft. (1828 m) AFI models: Sea level only
Relative humidity operating	5 to 90% (noncondensing)
Relative humidity nonoperating	5 to 95% (noncondensing)
Seismic	Designed to meet GR-63, Zone 4 earthquake requirements

Maximum Thermal Output

Parameters	QFX5210
Maximum power draw	960 W (AC), 980 W (DC)
Typical power draw	680 W (AC), 680 W (DC)

Safety and Compliance

Safety

CAN/CSA-C22.2 No. 60950-1
UL 60950-1 (2nd Edition)
IEC 60950-1: 2005/A2:2013

Electromagnetic Compatibility

EN 300 386
EN 55032/CISPR 32, Class A
EN 55022/CISPR 22, Class A
EN 55024/CISPR 24, Class A
FCC 47 CFR Part 15, Class A
ICES-003, Class A AS/NZS CISPR 32
VCCI-CISPR 32, Class A
BSMI CNS 13438
KN32/KN35
EN 61000-3-2
EN 61000-3-3
ETSI
ETSI EN 300 019: Environmental Conditions & Environmental Tests for Telecommunications Equipment
ETSI EN 300 019-2-1 (2000)—Storage
ETSI EN 300 019-2-2 (1999)—Transportation

Environmental Compliance

Restriction of Hazardous Substances (ROHS) 6/6

China Restriction of Hazardous Substances (ROHS)

Registration, Evaluation, Authorisation and Restriction of Chemicals (REACH)

Waste Electronics and Electrical Equipment (WEEE)

Recycled material

80 Plus Silver PSU Efficiency

Juniper Networks Services and Support

Juniper Networks is the leader in performance-enabling services that are designed to accelerate, extend, and optimize your high-performance network. Our services allow you to maximize operational efficiency while reducing costs and minimizing risk, achieving a faster time to value for your network. Support and services for the SONiC-enabled QFX5210-64C-S includes fixes for the platform and FRU device drivers. Juniper Networks ensures operational excellence by optimizing the network to maintain required levels of performance, reliability, and availability. For more details, please visit https://www.juniper.net/us/en/products.html.

Ordering Information

For more information, please contact your Juniper Networks representative.

Model Number	Description
Switch Hardware
QFX5210-64C-AFI	QFX5210, 64 QSFP+/QSFP28 ports, reduced latency, redundant fans, 2 AC power supplies, back-to-front airflow
QFX5210-64C-AFI2 (Use with Flex licensing)	QFX5210, 64 QSFP+/QSFP28 ports, reduced latency, redundant fans, 2 AC power supplies, back-to-front airflow, Flex Transform
QFX5210-64C-DC-AFI	QFX5210, 64 QSFP+/QSFP28 ports, reduced latency, redundant fans, 2 DC power supplies, back-to-front airflow
QFX5210-64C-D-AFI2 (Use with Flex licensing)	QFX5210, 64 QSFP+/QSFP28 ports, reduced latency, redundant fans, 2 DC power supplies, back-to-front airflow, Flex Transform
QFX5210-64C-AFO	QFX5210, 64 QSFP+/QSFP28 ports, reduced latency, redundant fans, 2 AC power supplies, front-to-back airflow
QFX5210-64C-AFO2 (Use with Flex licensing)	QFX5210, 64 QSFP+/QSFP28 ports, reduced latency, redundant fans, 2 AC power supplies, front-to-back airflow, Flex Transform
QFX5210-64C-DC-AFO	QFX5210, 64 QSFP+/QSFP28 ports, reduced latency, redundant fans, 2 DC power supplies, front-to-back airflow
QFX5210-64C-D-AFO2 (Use with Flex licensing)	QFX5210, 64 QSFP+/QSFP28 ports, reduced latency, redundant fans, 2 DC power supplies, front-to-back airflow, Flex Transform
QFX5210-64C-SAFI	QFX5210, 64 QSFP+/QSFP28 ports, reduced latency, redundant fans, 2 AC power supplies, back-to-front airflow, with SONiC
QFX5210-64C-SAFO	QFX5210, 64 QSFP+/QSFP28 ports, reduced latency, redundant fans, 2 AC power supplies, front-to-back airflow, with SONiC
QFX5210-64C-DCSAFI	QFX5210, 64 QSFP+/QSFP28 ports, reduced latency, redundant fans, 2 DC power supplies, back-to-front airflow, with SONiC
QFX5210-64C-DCSAFO	QFX5210, 64 QSFP+/QSFP28 ports, reduced latency, redundant fans, 2 DC power supplies, front-to-back airflow, with SONiC
QFX5210-64C-AFO-T	QFX5210, 64 QSFP+/QSFP28 ports, reduced latency, redundant fans, 2 AC power supplies, front-to-back airflow, TAA
QFX5210-64C-AFO-T2 (Use with Flex licensing)	QFX5210, 64 QSFP+/QSFP28 ports, reduced latency, redundant fans, 2 AC power supplies, front-to-back airflow, TAA, Flex Transform
QFX5210-64C-AFI-T	QFX5210, 64 QSFP+/QSFP28 ports, reduced latency, redundant fans, 2 AC power supplies, back-to-front airflow, TAA
QFX5210-64C-AFI-T2 (Use with Flex licensing)	QFX5210, 64 QSFP+/QSFP28 ports, reduced latency, redundant fans, 2 AC power supplies, back-to-front airflow, TAA, Flex Transform
JPSU-1100W-AC-AFI	PSU,1100 W AC,12 V output, FRU, back-to-front airflow
JPSU-1100W-AC-AFO	PSU,1100 W AC,12 V output, FRU, front-to-back airflow
QFX5210-FANAFI	QFX5210-FANAFI FAN model, back-to-front airflow
QFX5210-FANAFO	QFX5210-FANAFO FAN model, front-to-back airflow
EX4500-4PST-RMK	4-post rack mount kit
Optics and Transceivers
QFX-QSFP-40G-SR4	QSFP+ 40GBASE-SR4 40 gigabit optics, 850 nm for up to 150 m transmission on multimode fiber-optic (MMF)
QFX-QSFP-DAC-3M	QSFP+-to-QSFP+ Ethernet DAC (twinax copper cable), 3 m, passive
QFX-QSFP-DAC-1M	QSFP+-to-QSFP+ Ethernet DAC (twinax copper cable), 1 m, passive
JNP-QSFP-100G-SR4	QSFP28 100GBASE-SR4 optics for up to 100 m transmission over parallel MMF
JNP-QSFP-100G-LR4	QSFP28 100GBASE-LR4 optics for up to 10 km transmission over serial SMF
JNP-100G-DAC-3M	QSFP28-to-QSFP28 Ethernet DAC (twinax copper cable), 3 m
JNP-100G-DAC-1M	QSFP28-to-QSFP28 Ethernet DAC (twinax copper cable), 1 m
Optics and Transceivers (non-SONiC versions only)
QFX-SFP-10GE-LR	SFP+ 10GBASE-LR 10GbE optics, 1310 nm for 10 km transmission on single-mode fiber-optic (SMF) (for management port)
JNP-QSFP-4X10GE-IR	QSFP+ 40GBASE optics, up to 1.4 km transmission on parallel single mode (4x10GbE long reach up to 1.4 km)
JNP-QSFP-4X10GE-LR	QSFP+ 40GBASE optics, up to 10 km transmission on parallel single mode (4x10GbE long reach up to 10 km)
QFX-QSFP-DACBO-3M	QSFP+-to-SFP+ 10GbE DAC breakout copper (twinax copper cable), 3 m
QFX-QSFP-DACBO-1M	QSFP+-to-SFP+ 10GbE DAC breakout copper (twinax copper cable), 1 m
JNP-QSFP-100G-CWDM	QSFP28 100GBASE-CWDM4 optics for up to 2 km transmission over serial SMF
JNP-QSFP-100G-PSM4	QSFP28 100GBASE-PSM4 optics for up to 500 transmission over serial SMF
JNP-100G-4X25G-1M	QSFP28-to-SFP+ 25 Gigabit Ethernet DAC breakout copper (twinax copper cable), 1 m
JNP-100G-4X25G-3M	QSFP28-to-SFP+ 25 Gigabit Ethernet DAC breakout copper (twinax copper cable), 3 m
JNP-100G-AOC-1M	100GbE QSFP-to-QSFP active optical cables, 1 m
JNP-100G-AOC-3M	100GbE QSFP-to-QSFP active optical cables, 3 m
JNP-100G-AOC-5M	100GbE QSFP-to-QSFP active optical cables, 5 m
JNP-100G-AOC-10M	100GbE QSFP-to-QSFP active optical cables, 10 m
JNP-100G-AOC-20M	100GbE QSFP-to-QSFP active optical cables, 20 m
JNP-100G-AOC-30M	100GbE QSFP-to-QSFP active optical cables, 30 m
Software Licenses (non-SONiC versions only)
QFX5K-C2-PFL	QFX5K Class 2 Premium Feature License
QFX5K-C2-AFL	QFX5K Class 2 Advanced Feature License
S-QFX5K-C3-A1-3/5 (Flex licensing)	3/5 Year Advanced 1 License for QFX5100 and QFX5200 Class 3 Products
S-QFX5K-C3-A1-P (Flex licensing)	Perpetual Advanced 1 License for QFX5100 and QFX5200 Class 3 products
S-QFX5K-C3-A2-3/5 (Flex licensing)	3/5 Year Advanced 2 License for QFX5100 and QFX5200 Class 3 Products
S-QFX5K-C3-A2-P (Flex licensing)	Perpetual Advanced 2 License for QFX5100 and QFX5200 Class 3 products
S-QFX5K-C3-P1-3/5 (Flex licensing)	3/5 Year Premium 1 License for QFX5100 and QFX5200 Class 3 Products
S-QFX5K-C3-P1-P (Flex licensing)	Perpetual Premium 1 License for QFX5100 and QFX5200 Class 3 products

Add to cart Details

QFX5220 Ethernet Switch 2

ASK FOR PRICE

Product Overview

Product Description

^*Reserved for future release

Product Highlights

The QFX5220 includes the following capabilities. Please refer to the Specifications section for currently shipping features.

Native 400GbE Configuration

The QFX5220-32CD offers 32 ports in a 1 U form factor. The high-speed ports support a wide variety of configurations, including 100GbE and 400GbE.

High-Density Configurations

Flexible Connectivity Options

The QFX5220 offers a choice of interface speeds for server and intra-fabric connectivity, providing deployment versatility and investment protection.

Rich automation capabilities: The QFX5220 switches support a number of network automation features for plug-and-play operations, including zero-touch provisioning (ZTP), operations and event scripts, automatic rollback, and Python scripting.
Advanced Junos Evolved features: The QFX5220 switch supports features such as BGP add-path, MPLS, L3 VPN, RoCEv2, and Multicast capabilities.
Junos Evolved software architecture: The QFX5220 supports a modular Junos Evolved software architecture that allows the switch’s control and data plane processes and functions to run in parallel, maximizing utilization of the high-performance quad-core CPU, support for seamless component upgrade without bringing the switch down, and support for containerization, enabling application deployment using LXC or Docker.

Deployment Options

Figure 1: Typical cloud data center deployment for the QFX5220-32CD

Figure 2: 100GbE fabric in a typical cloud data center

Figure 3: Private cloud data center with the QFX5220-128C as lean spine

Architecture and Key Components

Layer 3 fabric: For customers looking to build scale-out data centers, a Layer 3 spine-and-leaf Clos fabric provides predictable, nonblocking performance and scale characteristics. A two-tier fabric built with QFX5220 switches as leaf devices and Juniper Networks QFX10000 line of Switches as the spine can scale to support up to 128 40GbE ports or 128 25GbE and/or 10GbE server ports in a single fabric. One of the most complicated tasks when building an IP fabric is assigning all the implementation details, including IP addresses, BGP autonomous system numbers, routing policies, loopback address assignments, and others. Automating the creation of an IP fabric at a large scale is equally difficult. To address these challenges, Juniper has created the OpenClos project to provide free, open-source tools that automate the creation of IP fabrics in the data center. A set of Python scripts developed as an open-source project on GitHub, OpenClos takes a set of inputs that describe the shape and size of a data center and produces switch configuration files and a cabling plan

Figure 4: Cloud/Carrier-Class Junos OS Evolved Network Operating System

Management, Monitoring, and Analytics

Automated deployment and zero-touch deployment
Continuous fabric validation
Fabric life-cycle management
Troubleshooting using advanced telemetry

For more information on Apstra, see Juniper Apstra.

Features and Benefits

Automation and programmability: The QFX5220 supports numerous network automation features, including operations and event scripts and ZTP.
Cloud-level scale and performance: The QFX5220 supports best-in-class cloud-scale L2/L3 deployments with a low latency of 750 ns and a superior scale and performance. This includes L2 support for 8192 media access control (MAC) addresses and Address Resolution Protocol (ARP) learning, which scales up to 32,000 entries at 500 frames per second. It also includes L3 support for 336,000 longest prefix match (LPM) routes and 380,000 host routes on IPv4. Additionally, the QFX5220 supports 130,000 LPM routes and 130,000 host routes on IPv6, 128-way equal-cost multipath (ECMP) routes, and a filter that supports 768 (ingress) and 2558^† (egress) exact match filtering rules. The QFX5220 supports up to 128 link aggregation groups, 4096 VLANs, and Jumbo frames of 9216 bytes. Junos Evolved provides configurable options through a CLI, enabling each QFX5220 to be optimized for different deployment scenarios.

^† Ingress/egress scale numbers may be lower when used concurrently.

MPLS: The QFX5220 supports a broad set of MPLS features, including L3 VPN, RSVP traffic engineering, and LDP to support standards-based multitenancy and network virtualization with per-flow service-level agreements (SLAs) at scale. The QFX5220 can also be deployed as a low-latency MPLS label-switching router (LSR) or MPLS provider edge (PE) router in smaller scale environments. The QFX5220, along with Juniper Networks QFX5100 and QFX5200 switches, are the most compact, low-latency, high-density, low-power family of switches to offer an MPLS feature set in the industry.
IEEE 1588 PTP Boundary Clock with Hardware Timestamping*: IEEE 1588 PTP Transparent/Boundary Clock is supported on QFX5220, enabling accurate and precise sub-microsecond timing information in today’s data center networks. In addition, the QFX5220 supports hardware timestamping; timestamps in Precision Time Protocol (PTP) packets are captured and inserted by an onboard field-programmable gate array (FPGA) on the switch at the physical (PHY) level.
Data packet timestamping*: When the optional data packet timestamping feature is enabled, selected packets flowing through QFX5220 switches are timestamped with references to the recovered PTP clock. When these packets are received by nodes in the network, the packet timestamping information can be mirrored onto monitoring tools for detailed analysis, helping identify bottlenecks in the network that cause latency. This information also helps with network performance analysis and record keeping for legal and compliance purposes, which is required by certain business transactions such as financial trading, video streaming, and research establishments.
RoCEv2: As a switch capable of transporting data as well as storage traffic over Ethernet, the QFX5220 provides an IEEE data center bridging (DCB) converged network between servers with disaggregated flash storage arrays or an NVMe-enabled storage area network (SAN). The QFX5220 offers a full-featured DCB implementation that provides strong monitoring capabilities on the top-of-rack switch for SAN and LAN administration teams to maintain clear separation of management. The RDMA over Converged Ethernet version 2 (RoCEv2) transit switch functionality, including priority-based flow control (PFC) and Data Center Bridging Capability Exchange (DCBX), are included as part of the default software.
Junos OS Evolved: Junos Evolved is a native Linux operating system that incorporates a modular design of independent functional components and enables individual components to be upgraded independently while the system remains operational. Component failures are localized to the specific component involved and can be corrected by upgrading and restarting that specific component without having to bring down the entire device.
Retained state: State is the retained information or status pertaining to physical and logical entities. It includes both operational and configuration state, comprising committed configuration, interface state, routes, hardware state, and what is held in a central database called the distributed data store (DDS). State information remains persistent, is shared across the system, and is supplied during restarts.
Feature support: All key networking functions such as routing, bridging, management software, and management plane interfaces, as well as APIs such as CLI, NETCONF, Juniper Extension Toolkit (JET), Junos Telemetry Interface (JTI), and the underlying data models, resemble those supported by Junos. This ensures compatibility and eases the transition to Junos Evolved.

Junos Telemetry Interface

Application visibility and performance management by provisioning sensors to collect and stream data and analyze the application and workload flow path through the network
Capacity planning and optimization by proactively detecting hotspots and monitoring latency and microbursts
Troubleshooting and root cause analysis via high-frequency monitoring and correlating overlay and underlay networks.

Specifications

Hardware

Table 1: QFX5220 System Capacity

Specification	QFX5220-32CD	QFX5220-128C
System throughput	Up to 25.6 Tbps (bidirectional)	Up to 25.6 Tbps (bidirectional)
Forwarding capacity	8 billion packets per second	8 billion packets per second
Port density	32 ports of QSFP56-DD 400GbE	128 ports of QSFP28 100GbE
SFP+/SFP28	2 SFP+ transceiver ports for in-band network management	2 SFP+ transceiver ports for in-band network management

Table 2: QFX5220 System Specifications

Specification	QFX5220-32CD	QFX5220-128C
Dimensions (W x H x D)	17.26 x 1.72 x 21.1 in. (43.8 x 4.3 x 53.59 cm)	17.26 x 6.88 x 29 in. (43.8 x 17.47 x 73.66 cm)
Rack units	1 U	4 U
Weight	24.5 lb (11.11 kg) with power supplies and fans installed	98 lb (44.44 kg) with 4 power supplies and 6 fan trays installed
Operating system	Junos OS Evolved	Junos OS Evolved
CPU	Intel Xeon D-1518	Intel Xeon D-1518
Power	Redundant (1+1) hot-pluggable 1600 W AC/DC power supplies (2n) 115-240 V single phase AC power -48 to -60 V DC power	Redundant (1+1) hot-pluggable 1600 W AC/DC power supplies 115-240 V single phase AC power -48 to -60 V DC power
Cooling	Ports-to-FRUs (AFO) and FRUs-to-ports (AFI) cooling Redundant (5x2+1)+1 hot-pluggable fan modules with variable speed to minimize power draw	Ports-to-FRUs (AFO) cooling Redundant (5x2+1) + 1 hot-pluggable fan modules with variable speed to minimize power draw
Total packet buffer	64 MB	64 MB
Recommended Software Version	Junos OS Evolved 19.2R1 and Later	Junos OS Evolved 19.3R1 and Later
Warranty	Juniper standard one-year warranty	Juniper standard one-year warranty

Software

MAC addresses per system: 8192
VLAN IDs: 3968 (QFX5220-32CD) 3952 (QFX5220-128C)
Number of link aggregation groups (LAGs): 128
Number of ports per LAG: 64
Firewall filters:
- Ingress: 768 Routed ACL (RACL), VLAN ACL (VACL), and Port ACL (PACL) rules
- Egress: 2558^† RACL; 512 VACL and PACL rules
IPv4 unicast routes: 380,000 prefixes; 380,000 host routes
IPv6 unicast routes: 130,000 prefixes; 130,000 host routes
Address Resolution Protocol (ARP) entries: 32,000
Generic routing encapsulation (GRE) tunnels: 2000
MPLS labels: 16,000
Jumbo frame: 9216 bytes
Traffic mirroring
- Mirroring destination ports per switch: 4
- Maximum number of mirroring sessions: 4
- Mirroring destination VLANs per switch: 4

^†Note: Ingress/Egress scale numbers may be lower when used concurrently.

Layer 2 Features

STP—IEEE 802.1D (802.1D-2004)*
Rapid Spanning Tree Protocol (RSTP) (IEEE 802.1w); MSTP (IEEE 802.1s)*
Bridge protocol data unit (BPDU) protect*
Loop protect*
Root protect*
RSTP and VSTP running concurrently*
VLAN—IEEE 802.1Q VLAN trunking
Routed VLAN interface (RVI)
Port-based VLAN
MAC address filtering*
Static MAC address assignment for interface
MAC learning disable
Link Aggregation and Link Aggregation Control Protocol (LACP) (IEEE 802.3ad)
IEEE 802.1AB Link Layer Discovery Protocol (LLDP)

*Reserved for future release

Link Aggregation

LAG load sharing algorithm—bridged or routed (unicast or multicast) traffic:
- IP: Session Initiation Protocol (SIP), Dynamic Internet Protocol (DIP), TCP/UDP source port, TCP/UDP destination port
- L2 and non-IP: MAC SA, MAC DA, Ether type, VLAN ID, source port

Layer 3 Features

Static routing
OSPF v1/v2
OSPF v3
Filter-based forwarding
Virtual Router Redundancy Protocol (VRRP)*
IPv6
Virtual routers
Loop-free alternate (LFA)
BGP (Advanced Services or Premium Services license)
IS-IS (Advanced Services or Premium Services license)
Dynamic Host Configuration Protocol (DHCP) v4/v6 relay
VR-aware DHCP
IPv4/IPv6 over GRE tunnels (interface-based with decap/encap only)

*Reserved for future release

Multicast*

Internet Group Management Protocol (IGMP) v1/v2
Multicast Listener Discovery (MLD) v1/v2
IGMP proxy, querier
IGMP v1/v2/v3 snooping
Intersubnet multicast using IRB interface
MLD snooping
Protocol Independent Multicast PIM-SM, PIM-SSM, PIM-DM, PIM-Bidir*
Multicast Source Discovery Protocol (MSDP)*

*Reserved for future release

Security and Filters

Secure interface login and password
RADIUS
TACACS+
Ingress and egress filters: Allow and deny, port filters, VLAN filters, and routed filters, including management port filters, loopback filters for control plane protection
Filter actions: Logging, system logging, reject, mirror to an interface, counters, assign forwarding class, permit, drop, police, mark
SSH v1, v2
Static ARP support
Storm control, port error disable, and autorecovery*
Control plane denial-of-service (DoS) protection

*Reserved for future release

Quality of Service (QoS)

L2 and L3 QoS: Classification, rewrite, queuing
Rate limiting:
- Ingress policing: 1 rate 2 color, 2 rate 3 color
- Egress policing: Policer, policer mark down action
- gress shaping: Per queue, per port
10 hardware queues per port (8 unicast and 2 multicast)
Strict priority queuing (LLQ), shaped-deficit weighted round-robin (SDWRR), weighted random early detection (WRED)
802.1p remarking
Layer 2 classification criteria: Interface, MAC address, Ethertype, 802.1p, VLAN
Congestion avoidance capabilities: WRED, ECN
Trust IEEE 802.1p (ingress)
Remarking of bridged packets
Configurable shared buffer and buffer monitoring

MPLS (Premium Services License)

Static label-switched paths (LSPs)
RSVP-based signaling of LSPs
LDP-based signaling of LSPs
LDP tunneling (LDP over RSVP)
MPLS class of service (CoS)*
MPLS access control list (ACL)/policers*
MPLS LSR support
IPv4 L3 VPN (RFC 2547, 4364)
MPLS fast reroute (FRR)

*Reserved for future release

Data Center Bridging (DCB)*

Priority-based flow control (PFC)—IEEE 802.1Qbb
Data Center Bridging Exchange Protocol (DCBX)*

*Reserved for future release

High Availability

Bidirectional Forwarding Detection (BFD)
Uplink failure detection (UFD)*

*Reserved for future release

Visibility and Analytics

Switched Port Analyzer (SPAN)
Remote SPAN (RSPAN)
Encapsulated Remote SPAN (ERSPAN)
sFlow v5
Junos Telemetry Interface

Management and Operations

Contrail Networking*
Role-based CLI management and access
CLI via console, telnet, or SSH
Extended ping and traceroute
Junos OS Evolved configuration rescue and rollback
Image rollback
SNMP v1/v2/v3
Junos OS Evolved XML management protocol
High frequency statistics collection
Automation and orchestration
Zero-touch provisioning (ZTP)
Python
Junos OS Evolved event, commit, and OP scripts

*Reserved for future release

Standards Compliance

IEEE Standards

IEEE 802.1D
IEEE 802.1w
IEEE 802.1
IEEE 802.1Q
IEEE 802.1p
IEEE 802.1ad
IEEE 802.3ad
IEEE 802.1AB
IEEE 802.3x
IEEE 802.1Qbb*
IEEE 802.1Qaz

*Reserved for future release

T11 Standards

INCITS T11 FC-BB-5

Supported RFCs

RFC 768 UDP
RFC 783 Trivial File Transfer Protocol (TFTP)
RFC 791 IP
RFC 792 ICMP
RFC 793 TCP
RFC 826 ARP
RFC 854 Telnet client and server
RFC 894 IP over Ethernet
RFC 903 RARP
RFC 906 TFTP Bootstrap
RFC 951 1542 BootP
RFC 1058 Routing Information Protocol
RFC 1112 IGMP v1
RFC 1122 Host requirements
RFC 1142 OSI IS-IS Intra-domain Routing Protocol
RFC 1256 IPv4 ICMP Router Discovery (IRDP)
RFC 1492 TACACS+
RFC 1519 Classless Interdomain Routing (CIDR)
RFC 1587 OSPF not-so-stubby area (NSSA) Option
RFC 1591 Domain Name System (DNS)
RFC 1745 BGP4/IDRP for IP—OSPF Interaction
RFC 1772 Application of the Border Gateway Protocol in the Internet
RFC 1812 Requirements for IP Version 4 routers
RFC 1997 BGP Communities Attribute
RFC 2030 SNTP, Simple Network Time Protocol
RFC 2068 HTTP server
RFC 2131 BOOTP/DHCP relay agent and Dynamic Host
RFC 2138 RADIUS Authentication
RFC 2139 RADIUS Accounting
RFC 2154 OSPF w/Digital Signatures (password, MD-5)
RFC 2236 IGMP v2
RFC 2267 Network ingress filtering
RFC 2328 OSPF v2 (edge mode)
RFC 2338 VRRP
RFC 2362 PIM-SM (edge mode)
RFC 2370 OSPF Opaque link-state advertisement (LSA) Option
RFC 2385 Protection of BGP Sessions via the TCP Message Digest 5 (MD5) Signature Option
RFC 2439 BGP Route Flap Damping
RFC 2474 Definition of the Differentiated Services Field in the IPv4 and IPv6 Headers
RFC 2597 Assured Forwarding PHB (per-hop behavior) Group
RFC 2598 An Expedited Forwarding PHB
RFC 2697 A Single Rate Three Color Marker
RFC 2698 A Two Rate Three Color Marker
RFC 2796 BGP Route Reflection—An Alternative to Full Mesh IBGP
RFC 2918 Route Refresh Capability for BGP-4
RFC 3065 Autonomous System Confederations for BGP
RFC 3376 IGMP v3 (source-specific multicast include mode only)
RFC 3392 Capabilities Advertisement with BGP-4
RFC 3446, Anycast RP
RFC 3569 Source-specific multicast (SSM)
RFC 3618 MSDP
RFC 3623 Graceful OSPF Restart
RFC 4271 Border Gateway Protocol 4 (BGP-4)
RFC 4360 BGP Extended Communities Attribute
RFC 4456 BGP Route Reflection: An Alternative to Full Mesh Internal BGP (IBGP)
RFC 4486 Subcodes for BGP Cease Notification Message
RFC 4724 Graceful Restart Mechanism for BGP
RFC 4812 OSPF Restart Signaling
RFC 4893 BGP Support for Four-octet AS Number Space
RFC 5176 Dynamic Authorization Extensions to RADIUS
RFC 5396 Textual Representation of Autonomous System (AS) Numbers
RFC 5668 4-Octet AS Specific BGP Extended Community
RFC 5880 Bidirectional Forwarding Detection (BFD)
Configuration Protocol (DHCP) server

Supported MIBs

RFC 155 SMI
RFC 1157 SNMPv1
RFC 1212, RFC 1213, RFC 1215 MIB-II, Ethernet-Like MIB and TRAPs
RFC 1850 OSPFv2 MIB
RFC 1901 Introduction to Community-based SNMPv2
RFC 2011 SNMPv2 for Internet protocol using SMIv2
RFC 2012 SNMPv2 for transmission control protocol using SMIv2
RFC 2013 SNMPv2 for user datagram protocol using SMIv2
RFC 2233, The Interfaces Group MIB using SMIv2
RFC 2287 System Application Packages MIB
RFC 2570 Introduction to Version 3 of the Internet standard Network Management Framework
RFC 2571 An Architecture for describing SNMP Management Frameworks (read-only access)
RFC 2572 Message Processing and Dispatching for the SNMP (read-only access)
RFC 2576 Coexistence between SNMP Version 1, Version 2, and Version 3
RFC 2578 SNMP Structure of Management Information MIB
RFC 2579 SNMP Textual Conventions for SMIv2
RFC 2580 Conformance Statements for SMIv2
RFC 2665 Ethernet-like interface MIB
RFC 2787 VRRP MIB
RFC 2790 Host Resources MIB
RFC 2819 RMON MIB
RFC 2863 Interface Group MIB
RFC 2932 IPv4 Multicast MIB
RFC 3410 Introduction and Applicability Statements for Internet Standard Management Framework
RFC 3411 An architecture for describing SNMP Management Frameworks
RFC 3412 Message Processing and Dispatching for the SNMP
RFC 3413 Simple Network Management Protocol
RFC 3414 User-based Security Model (USM) for SNMPv3
RFC 3415 View-based Access Control Model (VACM) for the SNMP
RFC 3416 Version 2 of the Protocol Operations for the SNMP
RFC 3417 Transport Mappings for the SNMP
RFC 3418 Management Information Base (MIB) for the SNMP
RFC 3584 Coexistence between Version 1, Version 2, and Version 3 of the Internet Standard Network Management Framework
RFC 3826 The Advanced Encryption Standard (AES) Cipher Algorithm in the SNMP User-based Security Model
RFC 4188 Definitions of Managed Objects for Bridges
RFC 4318 Definitions of Managed Objects for Bridges with Rapid Spanning Tree Protocol
RFC 4363b Q-Bridge VLAN MIB

Environmental Ranges

Parameters	QFX5220-32CD	QFX5220-128C
Operating temperature	32° to 104° F (0° to 40° C)	32° to 104° F (0° to 40° C)
Storage temperature	-40° through 158° F	-40° through 158° F
Operating altitude	Up to 6000 feet (1828.8 meters)	Up to 6000 feet (1828.8 meters)
Relative humidity operating	5 to 90% (noncondensing)	5 to 90% (noncondensing)
Relative humidity nonoperating	5 to 95% (noncondensing)	5 to 95% (noncondensing)
Seismic	Designed to meet GR-63, Zone 4 earthquake requirements	Designed to meet GR-63, Zone 4 earthquake requirements

Maximum Thermal Output

Parameters	QFX5220-32CD	QFX5220-128C
Maximum power draw	115-127 V: 973 W; 220-240 V: 958 W	115-127 V: 2023 W; 220-240 V: 1990 W
Typical power draw	115-127 V: 730 W; 220-240 V: 775 W	115-127 V: 1433 W; 220-240 V: 1394 W

Safety and Compliance

Safety

CAN/CSA-C22.2 No. 60950-1 Information Technology Equipment—Safety
UL 60950-1 Information Technology Equipment—Safety
EN 60950-1 Information Technology Equipment—Safety
IEC 60950-1 Information Technology Equipment—Safety (All country deviations)
EN 60825-1 Safety of Laser Products—Part 1: Equipment Classification

Security

FIPS/CC*
TAA*

Electromagnetic Compatibility

47 CFR Part 15, (FCC) Class A
ICES-003 Class A
EN 55022/EN 55032, Class A
CISPR 22/CISPR 32, Class A
EN 55024
CISPR 24
EN 300 386
VCCI Class A
AS/NZS CISPR 32, Class A
KN32/KN35
BSMI CNS 13438, Class A
EN 61000-3-2
EN 61000-3-3
ETSI
ETSI EN 300 019: Environmental Conditions & Environmental Tests for Telecommunications Equipment
ETSI EN 300 019-2-1 (2000)—Storage
ETSI EN 300 019-2-2 (1999)—Transportation
ETSI EN 300 019-2-3 (2003)—Stationary Use at Weatherprotected Locations
ETSI EN 300 019-2-4 (2003)—Stationary Use at NonWeather-protected Locations
ETS 300753 (1997)—Acoustic noise emitted by telecommunications equipment

Environmental Compliance

Restriction of Hazardous Substances (ROHS) 6/6

Silver PSU Efficiency

Recycled material

Waste Electronics and Electrical Equipment (WEEE)

Registration, Evaluation, Authorisation and Restriction of Chemicals (REACH)

China Restriction of Hazardous Substances (ROHS)

Telco

Common Language Equipment Identifier (CLEI) code

Juniper Networks Services and Support

Ordering Information

Product Number	Description
Hardware
QFX5220-32CD-AFI	QFX5220 (hardware with base software), 32 QSFP-DD/QSFP+/QSFP28 ports, redundant fans, 2 AC power supplies, back-to-front airflow
QFX5220-32CD-AFO	QFX5220 (hardware with base software), 32 QSFP-DD/QSFP+/QSFP28 ports, redundant fans, 2 AC power supplies, front-to-back airflow
QFX5220-32CD-D-AFI	QFX5220 (hardware with base software), 32 QSFP-DD/QSFP+/QSFP28 ports, redundant fans, 2 DC power supplies, back-to-front airflow
QFX5220-32CD-D-AFO	QFX5220 (hardware with base software), 32 QSFP-DD/QSFP+/QSFP28 ports, redundant fans, 2 DC power supplies, front-to-back airflow
QFX5220-128C-AFO	QFX5220 (hardware with base software), 128 QSFP+/QSFP28 ports, redundant fans, 4 AC power supplies, front-to-back airflow
QFX5220-128C-D-AFO	QFX5220 (hardware with base software), 128 QSFP+/QSFP28 ports, redundant fans, 4 DC power supplies, front-to-back airflow
JPSU-1600W-1UACAFI	QFX5220-32CD-AFI 1 U AC power supply unit
JPSU-1600W-1UACAFO	QFX5220-32CD-AFO 1 U AC power supply unit
JPSU-1600W-1UDCAFI	QFX5220-32CD-D-AFI 1 U DC power supply unit
JPSU-1600W-1UDCAFO	QFX5220-32CD-D-AFO 1 U DC power supply unit
JPSU-1600W-AC-AFO	QFX5220-128C-AFO 2 U AC power supply unit
JPSU-1600W-DC-AFO	QFX5220-128C-AFO 2 U DC power supply unit
QFX5220-32CD-4PRMK	4-Post Rack Mount Kit for QFX5220-32CD
RKMT-4PST-4U	4-Post Rack Mount Kit for QFX5220-128C
QFX5220-32CD-FANAI	Airflow in (AFI) back-to-front airflow fans for QFX5220-32CD
QFX5220-32CD-FANAO	Airflow out (AFO) front-to-back airflow fans for QFX5220-32CD
QFX5220-128C-FANAO	Airflow out (AFO) front-to-back airflow fans for QFX5220-128C
QFX5220-14I-EMI-DR	QFX5220-128C 14 in. EMI door
Optics and Transceivers
QDD-400G-DAC-1M	QSFP56-DD 400GbE DAC 1 M
QDD-400G-DAC-2P5M	QSFP56-DD 400GbE DAC 2.5 M
QDD-4x100G-FR	QSFP-DD 4x100GBASE-FR breakout 1310 nm PAM4 transceiver module, 2 km reach
QDD-400G-DR4	QSFP-DD 400GBASE-DR4 / 4x100GBASE-DR 1310 nm PAM4 transceiver module, 500 m reach
QDD-400G-FR4	QSFP-DD 400GBASE-FR4 1310 nm PAM4 transceiver module, 2 km reach
QDD-400G-AOC-XM	400GbE QSFP56-DD active optical cable of XM (X=1,3,5,7,10,15,20,30)
JNP-100G-4x25G-1M	100GbE QSFP28 to 4x25GbE SFP28 passive direct attach copper breakout cable, length: 1 m
JNP-100G-4x25G-3M	100GbE QSFP28 to 4x25G SFP28 passive direct attach copper breakout cable, length: 3 m
JNP-QSFP-100G-BXSR*	100GbE SR-bidirectional QSFP transceiver, LC, 100 M, OM4 multimode fiber-optic (MMF)
Software Licenses SKUs
S-QFX5K-C3-A1-X (X=3,5)	Base L3 Software Subscription (X Years; X=3,5) License for QFX5220-32CD/QFX5220-128C
S-QFX5K-C3-A2-X (X=3,5)	Advanced Software Subscription (X Years; X=3,5) License for QFX5220-32CD/QFX5220-128C
S-QFX5K-C3-P1-X (X=3,5)	Premium Software Subscription (X Years; X=3,5) License for QFX5220-32CD/QFX5220-128C

Add to cart Details

PTX10001-36MR Packet Transport Router

ASK FOR PRICE

Product Overview

Changing market dynamics have intensified the challenge of accommodating growth with traditional products and architectures. Juniper’s secure and automated solutions help cloud-based networks quickly react to these evolving conditions, accelerating service delivery with world-class products and innovative architectural components. PTX Series Fixed Configuration Routers with custom Express3 and Express4 silicon are an integral part of this solution, delivering a massively scalable and efficient core architecture across space- and power-constrained cloud provider, service provider, and enterprise networks, reducing TCO with innovative, highly flexible, high-performance platforms built for the most demanding environments.

Product Description

The Juniper Networks^® PTX Series Packet Transport Routers transform the core network with physical and virtual innovations that deliver unprecedented scale at the lowest cost per bit. Four fixed-configuration platforms are available: the PTX1000 Packet Transport Router, the industry’s first 2 U packet transport routing device; the PTX10001-36MR Packet Transport Router, a compact, power-optimized 400GbE platform based on custom Express4 silicon; the PTX10002 Packet Transport Router, a second-generation device that doubles the density of the PTX1000 with Juniper Networks Express3™ silicon; and the PTX10003, the industry’s first 3U 400-GbE enabled packet transport routing device. These transport routers give cloud and communication providers the freedom to develop and deliver new virtualized services anywhere in the network with elastic architectures and precise traffic controls, without compromising the service experience.

The Evolving Landscape

New traffic dynamics such as mobility, video, and cloud-based services are transforming traditional network patterns and topologies. Stratified, statically designed, and manually operated networks must evolve to support the constantly growing volumes of traffic quickly and economically. Many operators have seen their profits stagnate and TCO grow under the burden that these growing traffic volumes are imposing. Cloud and service providers need to become more agile in order to optimize their existing network resources, shorten planning cycles, and remove rigid network layers. Operators are facing the following challenges under the current environment:

Static scale: The cloud and communication providers’ backbone handles the full weight of network traffic. Therefore, it is paramount that core networks are inherently designed for scalability and efficiency. The 400GbE-capable platforms, 100/400GbE inline MACsec, silicon, system, and SDN innovations for the core empower network operators to scale faster than the traffic in an elegant, elastic, redundant package—without requiring forklift upgrades.
Static architecture: Virtualized services and the explosion of cloud-based applications are creating increasingly unpredictable traffic patterns. To handle this unpredictability, service providers need a dynamic, scale-out architecture across all layers to create programmable, traffic-optimized networks that support any service, anywhere.

Power costs: For cloud and communication providers, the operational cost of transmitting a packet through the core is less than the cost of the power required to move that packet. In fact, projections suggest that over a few short years, the total power draw will exceed the cost of deploying the entire network infrastructure. Efficient power utilization by the core router requires a holistic ground-up engineering approach.
Facility limitations: Service providers cannot grow their facilities exponentially forever. They need innovations that provide a low-touch deployment model optimized around space availability, facility power requirements, and floor weight thresholds. Transport-oriented central office locations have the added burden of meeting European Telecommunications Standards Institute (ETSI) standard depth. Any transit router innovation must operate within these constraints.

In order to address these challenges, cloud and communication providers need an innovative, scalable core router that satisfies three defining principles: performance, deployability, and SDN programmability. The PTX1000, PTX10001-36MR, PTX10002, and PTX10003 fixed-configuration packet transport routers provide the foundation for a scale-out core backbone architecture, ensuring a consistent user experience across geographies. The PTX1000, PTX10001-36MR, PTX10002, and PTX10003 meet all existing traditional core requirements, easily fitting into cloud and communication provider networks that require transit-focused IP/MPLS applications such as Internet peering, scale-out metro and backbone topologies, and label-switching router (LSR) optimized deployments.

Architecture and Key Components

The PTX1000, PTX10001-36MR, PTX10002, and PTX10003 fixed-configuration packet transport routers bring physical and virtual innovation to the cloud and service provider core networks, addressing concerns about operational expenditures while scaling organically to keep pace with growing traffic demands with the following features:

Core routing: The PTX1000, PTX10001-36MR, PTX10002, and PTX10003 employ a massively scalable yet compact 1, 2, or 3 U form factor with secure connectivity and high flexibility.
Peering: The PTX Series fixed platforms are perfect for scale-out peering in space- and power-constrained environments with full traffic visibility and L3 services.
LSR: The PTX Series fixed platforms provide 2.88 Tbps to 16 Tbps aggregate capacity for multi-plane core networks as an LSR router. They can also be positioned as an LSR fabric node in spine-leaf architectures for increased scale and reduced blast radius.
CDN Gateway: The compact PTX Series offers high routing scale in a 1, 2, or 3 U fixed form factor for full traffic statistics visibility and deep buffers.
Data Center Interconnect (DCI): The PTX10001-36MR and PTX10003 offer secure inline MACsec with no compromise in throughput or latency, and an extended range enabled by 400GbE ZR / ZR+.

Innovations in Silicon

Physical innovations at the core silicon level enable the PTX Series fixed-configuration routers to reduce OpEx and accommodate scale-out architectures with smooth migration paths as traffic patterns change.

Express3 and Express-Based Silicon

The PTX1000 and PTX10002 are powered by Express3 silicon, delivering predictable IP/MPLS packet performance and functionality. The PTX10003 is powered by functionally equivalent Express3 Silicon to support high-density 100/200/400GbE interfaces and inline MACsec with no performance penalty while delivering the same IP/MPLS functionality. Express3 silicon eliminates the complex sawtooth packet profile found in elaborate, over-engineered network processing units (NPUs) deployed in other core routers. This delivers the peering scale required to match expanding traffic demands. These devices build upon the Juniper Networks Junos^® Express silicon concepts of low consistent latency and wire-rate packet performance for both IP traffic and MPLS transport, without sacrificing the optimized system power profile. These concepts are incorporated into the PTX Series design along with full IP functionality, preserving the spirit of the original Junos Express chipset. The Express3 silicon is the first purpose-built telecommunications silicon to engineer a 3D memory architecture into the base design for more than 1.6 billion filter operations per second, dynamic table memory allocation for mammoth IP routing scale, and enormous power efficiency gains. The PTX10003 supports inline MACsec on all interfaces using 10/40/100GbE.

Express4 Silicon

The PTX10001-36MR is powered by the highly scalable, next-generation ASIC in the Express silicon family, Juniper Express4 silicon—the industry’s first inline MACsec for 400GbE chips that supports universal multirate QSFP56-DD. Juniper Express4 silicon delivers consistently low latency, 8m counters, 256 AES MACsec encryption supported on all ports, and wire-rate packet performance for IP traffic without sacrificing the optimized system power profile. Preserving the spirit of the Junos Express silicon family, Juniper Express4 silicon is the first purpose-built telecommunications silicon to incorporate a 3D memory architecture into the base design, offering the industry’s highest packet performance per gigabit in the fewest rack units. It also provides dynamic table memory allocation for massive IP routing scale while delivering tremendous power efficiency gains at 0.14 Watts/Gig. The ability to address a provider’s core networking requirements—scale, operational flexibility, and SDN control—begins with the silicon. With the PTX Series fixed-configuration routers, operators can now deploy a core architecture with SDN control. Combining Juniper Networks NorthStar Controller with a robust full-featured Internet backbone router, and a regional IP/MPLS core router with integrated 100GbE coherent transport for superior performance, operators can tune their network infrastructure through proactive monitoring and what-if planning capabilities. The NorthStar Controller dynamically creates explicit routing paths using a global view based on user-defined constraints to create a fully autonomous operation. Scale is one of the guiding design principles for the PTX Series routers, allowing network operators to smoothly handle increased traffic demands. The PTX Series fixed-configuration routers simplify network engineering challenges with predictable system latency, improving the overall service experience by delivering best-in-class resiliency to help providers meet strict customer service-level agreements (SLAs). Operational efficiency is another design attribute for the PTX Series routers, focusing on power, space, and weight—fundamental concerns that affect network operators’ operational budgets. Juniper has designed the PTX Series to fit the requirements of current and future data center facilities. SDN programmability brings virtual innovations to the service provider core, while the NorthStar Controller offers an open, standards-based solution that optimizes both the IP layer and the transport layer with precise SDN control, allowing network operators to fully automate and scale their operations with ease.

PTX1000, PTX10002, and PTX10003 Fixed-Configuration Packet Transport Routers

PTX1000

The PTX1000, with its rich IP/MPLS feature set, lets service providers organically distribute peering points throughout the network without sacrificing performance and deployability—the main contributors to eroding TCO for service providers when peering. The PTX1000 expands the applications scope that the PTX Series architecture addresses, enabling service providers to implement a distributed core architecture for interconnecting growing cloud services. Service providers can distribute peering points to match traffic demand with an optimized core router without sacrificing performance or deployability. The PTX1000 is a first-generation fixed-configuration core router, providing up to 3 million FIB and 10+ million routing information base (RIB) in a 2 U footprint, making it easily deployable in space-constrained Internet exchange locations, remote central offices, and embedded peering points anywhere in the network, including cloud-hosted services. The PTX1000 operates at 2.88 Tbps in a fixed core router configuration and supports flexible interface configuration options, including 288 10GbE ports via a quad small form-factor pluggable plus transceiver (QSFP+) breakout, 72 40GbE ports via QSFP+, and 24 100GbE ports via QSFP28.

PTX10001-36MR

The PTX10001-36MR features a compact, 1 U form factor that is easy to deploy in space- and power-constrained Internet exchange locations, remote central offices, and embedded peering points throughout the network, including cloud- hosted services. The PTX10001-36MR is particularly suited for power-constrained environments, providing unprecedented power efficiency of 0.14 watts/Gbps. It offers up to 4 million IPv4 FIB, deep buffers, and integrated 100GbE and 400GbE MACsec capabilities. The PTX10001-36MR operates at 9.6 Tbps in a fixed core router configuration with 36 multi-rate ports—24 400GbE (QSFP56-DD) ports and 12 100GbE (QSFP28) ports to facilitate the migration from 100GbE to 400GbE deployments. The PTX10001-36MR features flexible interface configuration options with universal multi-rate QSFP-DD for 100GbE/400GbE to support 120 10GbE ports with QSFP+ breakout, 60 100GbE ports with QSFP28-DD (24x2) and QSFP28 (12), 108 100GbE ports with QSFP56-DD breakout (24x4) and QSFP28 (12), and 24 400GbE ports with QSFP56-DD. PTX10001-36MR supports MACSec on all ports, regardless of the port speed.

PTX10002

The PTX10002 is a second-generation PTX Series fixed-configuration core router featuring a compact, 2 U form factor that is easy to deploy in space-constrained Internet exchange locations, remote central offices, and embedded peering points throughout the network, including cloud-hosted services. The PTX10002 operates at 6 Tbps in a fixed core router configuration. It supports flexible interface configuration options, offering 60 physical quad small form-factor pluggable 28 (QSFP28) 100GbE ports, 60 QSFP+ 40GbE ports, and 192 10GbE ports via QSFP+ breakout cables.

PTX10003

The PTX10003 is a fixed-configuration core router featuring a compact, 3 U form factor that is easy to deploy in space-constrained Internet exchange locations, remote central offices, and embedded peering points throughout the network, including cloud-hosted services. It offers up to 4 million FIB, deep buffers, and integrated 100GbE MACsec capabilities. The PTX10003 uniquely addresses power-constrained environments by providing unprecedented power efficiency of 0.2 watts/Gbps. Two versions of the PTX10003 are available, supporting 8 Tbps and 16 Tbps respectively in a 3 U footprint. Operating in a fixed core router configuration, the 8 Tbps model features flexible interface configuration options with universal multi-rate QSFP-DD for 100GbE/400GbE to support 160 (QSFP+) 10GbE ports, 80 (QSFP28) 100GbE ports, 32 (QSFP28-DD) 200GbE ports, and 16 (QSFP56-DD) 400GbE ports. The 16 Tbps model also offers universal multi-rate QSFP-DD for 100GbE/400GbE to support 320 (QSFP+) 10GbE ports, 160 (QSFP28) 100GbE ports, 64 (QSFP28-DD) 200GbE ports, and 32 (QSFP56-DD) 400GbE ports. PTX10001-36MR and PTX10003 routers offer native SFP+ transceiver support through QSFP adapter, MAM1Q00A-QSA . This option enables deployments where 10GE connectivity over more than 10KM single mode fiber links is required.

Features and Benefits

Performance is one of the guiding design principles for the PTX Series Packet Transport Routers. This focus empowers cloud and service providers with superior scale to match increased traffic levels and network engineering challenges with predictable system latency to improve the overall service experience, deliver best-in-class resiliency, and ensure that services meet strict customer SLAs. Deployability is the other guiding design principle for the PTX Series routers, focusing on power, space, and weight—fundamental concerns that impact service providers’ operational budget with respect to growing traffic. Infinite programmability with automation and telemetry brings virtual innovations to the cloud and service provider core, while the NorthStar Controller is an open, standards-based solution that optimizes both the IP layer and the transport layer with precise SDN control, allowing service providers to automate and scale operations with efficiency, simplicity, and security. One Junos Experience delivers operational consistency and uniformity across PTX Series platforms and solutions. The most modern OS on the market, Junos Evolved, is designed from the ground up for reliability, resiliency, velocity, and integration simplicity. Table 1 summarizes the features available on the fixed-configuration PTX Series Packet Transport Routers.

Table 1. Fixed-Configuration PTX Series Features and Benefits

Feature	Feature Description	Benefit
System capacity	The PTX1000 scales to 3 Tbps in a single chassis, breaking out into 288 10GbE, 72 40GbE, and 24 100GbE interfaces. The PTX10001-36MR scales to 9.6 Tbps in a single chassis, featuring flexible interface configuration options with universal multi-rate QSFP-DD for 100GbE/400GbE to support 120 10GbE ports with QSFP+ breakout, 60 100GbE ports with QSFP28-DD (24x2) and QSFP28 (12), 108 100GbE ports with QSFP56-DD breakout (24x4) and QSFP28 (12), and 24 400GbE ports with QSFP56-DD. The PTX10002 scales to 6 Tbps in a single chassis, breaking out into 192 10GbE, 60 40GbE, and 60 100GbE interfaces. The PTX10003 8 Tbps model scales to 8 Tbps is a single chassis, breaking out into 160 10GbE, 80 100GbE, 32 200GbE, and 16 400GbE interfaces. The PTX10003 16 Tbps model scales to 16 Tbps in a single chassis, breaking out into 320 10GbE, 160 100GbE, 64 200GbE, and 32 400GbE interfaces.	The PTX1000, PTX10001-36MR, PTX10002, and PTX10003 give cloud and service providers the performance and scalability needed to outpace growing traffic demands.
High availability (HA) hardware	The PTX1000, PTX10001-36MR, PTX10002 and PTX10003 are built with hardware redundancy for cooling, power supplies, and forwarding.	HA is critical for service providers to maintain an always-on infrastructure base and meet stringent SLAs across the core.
Packet performance	The PTX1000 and PTX10002 include groundbreaking Express3 silicon, empowering them with unparalleled packet processing for both full IP functionality and MPLS transport, leveraging a revolutionary 3D memory architecture. The PTX10003 uses a newer version of Express3 silicon that delivers inline MACsec on all ports and dense 100/400GbE. The PTX10001-36MR uses the next generation of Express, Express4 silicon, that delivers 100/400GbE inline MACsec on all ports for dense 400GbE architectures.	Exceptional packet processing capabilities help alleviate the challenge of scaling the network as traffic levels increase while optimizing IP/MPLS transit functionality around superior performance and elegant deployability.
Ultra-compact 1 U, 2 U and 3 U form factor	With cutting-edge innovation in power and cooling technology, the PTX fixed-configuration core routers provide compact, power-optimized scale and efficiency. The PTX1000 provides 2.88 Tbps of capacity in a 2 U form factor; the PTX10001-36MR provides 9.6 Tbps in a 1 U form factor; the PTX10002 provides 6 Tbps of capacity in a 2 U form factor; the PTX10003 provides up to 16 Tbps of capacity in a 3 U form factor.	Space efficiency is a critical requirement for peering Internet exchange points, peering collocations, central offices, and regional networks, especially in emerging markets.
Security	The PTX Series Packet Transport routers use a combination of hardware-based mechanisms like MACsec and software-based features like firewall filters and DDoS to provide scalable security. 100GbE and 400GbE inline MACsec is supported on all ports with no compromise in latency.	Inline data plane MACsec security with no throughput or latency penalties in addition to control plane security with DDoS.

PTX Series Fixed-Configuration Routers Specifications

Hardware	PTX1000	PTX10001-36MR	PTX10002	PTX10003 (8T)	PTX10003 (16T)
System throughput	3 Tbps	9.6 Tbps	6 Tbps	8 Tbps	16 Tbps
Forwarding capacity	Up to 2 Bpps	Up to 6 Bpps	Up to 4 Bpps	Up to 5.3 Bpps	Up to 10.6 Bpps
Max. 10GbE port density	288	120	192	160	320
Max. 40GbE port density	72	30	60	40	80
Max. 100GbE port density	24	108	60	80	160
Max 200GbE port density	-	48	-	32	64
Max 400GbE port density	-	24	-	16	32
Dimension (WxHxD)	17.4 x 3.46 x 31 in (44.2 x 8.8 x 78.7 cm)	17.3 x 1.75 x 25.5 in (44 x 4.45 x 64.8 cm)	17.4 x 3.46 x 31 in (44.2 x 8.8 x 78.7 cm)	17.4 x 5.25 x 31 in (44.2 x 13.3 x 78.7 cm)	17.4 x 5.25 x 31 in (44.2 x 13.3 x 78.7 cm)
Rack units	2 U	1 U	2 U	3 U	3 U
Weight	68 lb (31 kg)	39.7 lb (18 kg)	68 lb (31 kg)	88 lb (40 kg)	110 lb (50 kg)
CPU	Intel Quad Core Ivy Bridge 2.5 GHz CPU	Intel Xeon 12-Core 2.1 GHz CPU	Intel Quad Core Ivy Bridge 2.5 GHz CPU	Intel Broadwell CPU with 12 Cores	Intel Broadwell CPU with 12 Cores
RAM	32 Gb SDRAM	64 Gb SDRAM	32 Gb SDRAM	64 Gb SDRAM	64 Gb SDRAM
SSD	64 GBx2	200 GBx2	64 GBx2	200 GBx2	200 GBx2
Maximum power draw	1425 W (AC, DC), 4862 BTU/hr	2164 W (AC, DC), 7384 BTU/hr	2425 W (AC, DC), 8274 BTU/hr	~2500 W (AC,DC), 8525 BTU/hr	~4000 W (AC.DC), 13640 BTU/hr
Typical power draw	1050 W (AC, DC), 3583 BTU/hr	1300 W (AC, DC), 4436 BTU/hr	1850 W (AC, DC), 6312 BTU/hr	~1600 W (AC,DC), 5456 BTU/hr	~3100W (AC,DC), 10571 BTU/hr
Power supply	4x1600 watts (AC/DC)	2x3000 watts (AC/DC)	4x1600 watts (AC/DC)	2x3000 watts (AC/DC)	4x3000 watts (AC/DC)
Cooling (front-to-back fan)	3 hot-swappable redundant fans	6 hot-swappable redundant fans	3 hot-swappable redundant fans	3 hot-swappable redundant fans	5 hot-swappable redundant fans
Packet buffer	24 Gb	24 Gb	24 Gb	64 Gb	128 Gb
Latency	2.5 µs within Packet Forwarding Engine (PFE), 5 µs between PFEs	2.5 µs within PFE, 5 us between PFEs	2.5 µs within PFE, 5 us between PFEs	2.5 µs within PFE, 5 us between PFEs	2.5 µs within PFE, 5 us between PFEs
Power Efficiency (watts/Gbps)	0.4	0.14	0.3	0.2	0.2

PTX1000, PTX10002, and PTX10003 Software Feature Table

Feature	PTX1000	PTX10001-36MR	PTX10002	PTX10003 (8/16 Tbps)
MPLS-TE	Yes	Yes	Yes	Yes
MPLS LSR	Yes	Yes	Yes	Yes
Firewall filters ACL	Yes	Yes	Yes	Yes
SPRINGv4	Yes	Yes	Yes	Yes
DDoS control plane	Yes	Yes	Yes	Yes
JFlow/SFlow	Yes	Yes	Yes	Yes
BGP FlowSpec, EPE, URPF, L3VPN	Yes	Yes	Yes	Yes
Integrated routing and bridging (IRB)	Yes	Yes	Yes	Yes
Telemetry, NETCONF/YANG	Yes	Yes	Yes	Yes
Zero Touch Provisioning (ZTP)	Yes	Yes	Yes	Yes
PCEP, BGP-LS	Yes	Yes	Yes	Yes
Fast restoration	Yes	Yes	Yes	Yes
Operation, Administration, and Maintenance (OAM)	Yes	Yes	Yes	Yes

Management Interfaces

1 small form-factor pluggable transceiver (SFP/SFP+) port or Precision Time Protocol (PTP) Grandmaster
Fiber (SFP) or 10/100/1000BASE-T (RJ-45) Ethernet management port
SMB in, SMB out, 10 MHz in, 10 MHz out
One console port
USB 2.0 storage interface

Environmental Ranges

Operating temperature: 32° to 115° F (0° to 46° C) at sea level
Storage temperature: -40° to 158° F (-40° to 70° C)
Operating altitude: Up to 10,000 ft. (3048 m)
Relative humidity operating: 5 to 90% (noncondensing)
Relative humidity nonoperating: 5 to 95% (noncondensing)
Seismic: Designed to meet GR-63, Zone 4 earthquake requirements

Safety and Compliance

Safety

CAN/CSA-C22.2 No. 60950-1 Information Technology Equipment—Safety
UL 60950-1 Information Technology Equipment—Safety
EN 60950-1 Information Technology Equipment—Safety
IEC 60950-1 Information Technology Equipment—Safety (all country deviations)
EN 60825-1 Safety of Laser Products—Part 1: Equipment Classification

Electromagnetic Compatibility

47CFR Part 15, (FCC) Class A
ICES-003 Class A
EN 55022 Class A
CISPR 22 Class A
EN 55024
CISPR 24
EN 300 386
VCCI Class A
AS/NZA CISPR22 Class A
KN22 Class A
CNS 13438 Class A
EN 61000-3-2
EN 61000-3-3
ETSI
ETSI EN 300 019: Environmental Conditions & Environmental Tests for Telecommunications Equipment
ETSI EN 300 019-2-1 (2000)—Storage
ETSI EN 300 019-2-2 (1999)—Transportation
ETSI EN 300 019-2-3 (2003)—Stationary Use at Weather-protected Locations
ETS 300753 (1997)—Acoustic noise emitted by telecommunications equipment

Environmental Compliance

Restriction of Hazardous Substances (ROHS) 6/6

Silver PSU Efficiency

Recycled material

Waste Electronics and Electrical Equipment (WEEE)

Registration, Evaluation, Authorisation and Restriction of Chemicals (REACH)

China Restriction of Hazardous Substances (ROHS)

Telco

Common Language Equipment Identifier (CLEI) code

Juniper Networks Services and Support

Automated Support and Prevention

Juniper’s Automated Support and Prevention consists of an ecosystem of tools, applications, and systems targeted towards simplifying and streamlining operations, delivering operational efficiency, reducing downtime, and increasing your network’s ROI running Juniper Networks Junos operating system. Automated Support and Prevention brings operational efficiency by automating several time-consuming tasks such as incident management, inventory management, proactive bug notification, and on-demand EOL/EOS/EOE reports. The Junos Space^® Service Now and Service Insight service automation tools are standard entitlements of all Juniper Care contracts.

Warranty

For warranty information, please visit https://support.juniper.net/support/warranty/

Ordering Information

Product Number	Description
PTX1000
PTX1K-72Q-AC	PTX1000 base system with 24-port 100GbE QSFP28/72-port 40GbE QSFP+/288-port 10GbE SFP+ with 4 1600 W AC power supplies, 4 power cables, and 3 fan trays
PTX1K-72Q-DC	PTX1000 base system with 24-port 100GbE QSFP28/72-port 40GbE QSFP+/288-port 10GbE SFP+ with 4 1600 W DC power supplies, 4 power cables, and 3 fan trays
PTX1K-72Q-AC-IR	PTX1000 LSR/peering system with 24-port 100GbE QSFP28/72-port 40GbE QSFP+/288-port 10GbE SFP+ with 4 1600 W AC power supplies, 4 power cables, and 3 fan trays
PTX1K-72Q-DC-IR	PTX1000 LSR/peering system with 24-port 100GbE QSFP28/72-port 40GbE QSFP+/288-port 10GbE SFP+ with 4 1600 W DC power supplies, 4 power cables, and 3 fan trays
PTX1K-72Q-AC-R	PTX1000 full IP system with 24-port 100GbE QSFP28/72-port 40GbE QSFP+/288-port 10GbE SFP+ with 4 1600 W AC power supplies, 4 power cables, and 3 fan trays
PTX1K-72Q-DC-R	PTX1000 full IP system with 24-port 100GbE QSFP28/72-port 40GbE QSFP+/288-port 10GbE SFP+ with 4 1600 W DC power supplies, 4 power cables, and 3 fan trays
PTX1K-36Q-AC	PTX1000 base system with 12-port 100GbE QSFP28/36-port 40GbE QSFP+/144-port 10GbE SFP+ with 4 1600 W AC power supplies, 4 power cables, and 3 fan trays
PTX1K-36Q-DC	PTX1000 base system with 12-port 100GbE QSFP28/36-port 40GbE QSFP+/144-port 10GbE SFP+ with 4 1600 W DC power supplies, 4 power cables, and 3 fan trays
PTX1K-36Q-AC-IR	PTX1000 LSR/peering system with 12-port 100GbE QSFP28/36-port 40GbE QSFP+/144-port 10GbE SFP+ with 4 1600 W AC power supplies, 4 power cables, and 3 fan trays
PTX1K-36Q-DC-IR	PTX1000 LSR/peering system with 12-port 100GbE QSFP28/36-port 40GbE QSFP+/144-port 10GbE SFP+ with 4 1600 W DC power supplies, 4 power cables, and 3 fan trays
PTX1K-36Q-AC-R	PTX1000 full IP system with 12-port 100GbE QSFP28/36-port 40GbE QSFP+/144-port 10GbE SFP+ with 4 1600 W AC power supplies, 4 power cables, and 3 fan trays
PTX1K-36Q-DC-R	PTX1000 full IP system with 12-port 100GbE QSFP28/36-port 40GbE QSFP+/144-port 10GbE SFP+ with 4 1600 W DC power supplies, 4 power cables, and 3 fan trays
PTX1K-18Q-AC	PTX1000 base system with 6-port 100GbE QSFP28/18-port 40GbE QSFP+/72-port 10GbE SFP+ with 4 1600 W AC power supplies, 4 power cables, and 3 fan trays
PTX1K-18Q-DC	PTX1000 base system with 6-port 100GbE QSFP28/18-port 40GbE QSFP+/72-port 10GbE SFP+ with 4 1600 W DC power supplies, 4 power cables, and 3 fan trays
PTX1K-18Q-AC-IR	PTX1000 LSR/peering system with 6-port 100GbE QSFP28/18-port 40GbE QSFP+/72-port 10GbE SFP+ with 4 1600 W AC power supplies, 4 power cables, and 3 fan trays
PTX1K-18Q-DC-IR	PTX1000 LSR/peering system with 6-port 100GbE QSFP28/18-port 40GbE QSFP+/72-port 10GbE SFP+ with 4 1600 W DC power supplies, 4 power cables, and 3 fan trays
PTX1K-18Q-AC-R	PTX1000 full IP system with 6-port 100GbE QSFP28/18-port 40GbE QSFP+/72-port 10GbE SFP+ with 4 1600 W AC power supplies, 4 power cables, and 3 fan trays
PTX1K-18Q-DC-R	PTX1000 full IP system with 6-port 100GbE QSFP28/18-port 40GbE QSFP+/72-port 10GbE SFP+ with 4 1600 W DC power supplies, 4 power cables, and 3 fan trays
S-PTX1K-72Q-SCA-UP	PTX1000 scale-up software license to upgrade 72 port system (base to LSR or LSR to full IP)
S-PTX1K-36Q-SCA-UP	PTX1000 scale-up software license to upgrade 36 port system (base to LSR or LSR to full IP)
S-PTX1K-18Q-SCA-UP	PTX1000 scale-up software license to upgrade 18 port system (base to LSR or LSR to full IP)
S-PTX1K-UPG-18Q	PTX1000 software license to add 18 more ports to base system
S-PTX1K-UPG-18Q-IR	PTX1000 software license to add 18 more ports to LSR/peering system
S-PTX1K-UPG-18Q-R	PTX1000 software license to add 18 more ports to full IP system
JPSU-1600W-AC-AFO	PTX1000 1600 W AC power supply
JPSU-1600W-DC-AFO	PTX1000 1600 W DC power supply
PTX1000-FAN-S	PTX1000 fan
JNP-3000W-DC-AFO	DC power supply for JNP10003-160C and JNP10003-80C fixed platforms
PTX10001-36MR
PTX10001-36MR-AC	PTX10001 36 QSFP56-DD / QSFP28 multi-rate port base system with redundant AC Power supplies, FAN trays, Junos Evolved
PTX10001-36MR-DC	PTX10001 36 QSFP56-DD / QSFP28 multi-rate port base system with redundant DC Power supplies, FAN trays, Junos Evolved
JNP-FAN2-1RU	Fan Tray for JNP10001-36MR platform
JNP10001-36MR	JNP10001 chassis with 36 QSFP56-DD / QSFP28 multi-rate ports, no power supplies or fans
JNP-3000W-AC-AFO	AC power supply for JNP10001-36MR fixed platform
JNP-3000W-DC-AFO	DC power supply for JNP10001-36MR fixed platform
S-PTX10K-108C-A1-P	SW, PTX10K fixed platform, 10.8T, right-to-use Advanced1 tier, without SW support, Perpetual
S-PTX10K-108C-A2-P	SW, PTX10K fixed platform, 10.8T, right-to-use Advanced2 tier, without SW support, Perpetual
S-PTX10K-108C-P1-P	SW, PTX10K fixed platform, 10.8T, right-to-use Premium1 tier, without SW support, Perpetual
S-PTX10K-108C-P2-P	SW, PTX10K fixed platform, 10.8T, right-to-use Premium2 tier, without SW support, Perpetual
S-PTX10K-108C-A1-5	SW, PTX10K fixed platform, 10.8T, right-to-use Advanced1 tier, with SW support, 5 Years
S-PTX10K-108C-A2-5	SW, PTX10K fixed platform, 10.8T, right-to-use Advanced2 tier, with SW support, 5 Years
S-PTX10K-108C-P1-5	SW, PTX10K fixed platform, 10.8T, right-to-use Premium1 tier, with SW support, 5 Years
S-PTX10K-108C-P2-5	SW, PTX10K fixed platform, 10.8T, right-to-use Premium2 tier, with SW support, 5 Years
S-PTX10K-108C-A1-3	SW, PTX10K fixed platform, 10.8T, right-to-use Advanced1 tier, with SW support, 3 Years
S-PTX10K-108C-A2-3	SW, PTX10K fixed platform, 10.8T, right-to-use Advanced2 tier, with SW support, 3 Years
S-PTX10K-108C-P1-3	SW, PTX10K fixed platform, 10.8T, right-to-use Premium1 tier, with SW support, 3 Years
S-PTX10K-108C-P2-3	SW, PTX10K fixed platform, 10.8T, right-to-use Premium2 tier, with SW support, 3 Years
S-PTX10K100GMSEC-P	SW, PTX10K 100G MACsec License SKU, w/out Customer Support, must purchase CS SKU separately, Perpetual
S-PTX10K400GMSEC-P	SW, PTX10K 400G MACsec License SKU, w/out Customer Support, must purchase CS SKU separately, Perpetual
PTX10002
PTX10002-60C-AC	PTX10002 base system with 60-port 100GbE QSFP28/60-port 40GbE QSFP+/192-port 10GbE SFP+ with 4 1600 W AC power supplies, 4 power cables, and 3 fan trays
PTX10002-60C-DC	PTX10002 base system with 60-port 100GbE QSFP28/60-port 40GbE QSFP+/192-port 10GbE SFP+ with 4 1600 W DC power supplies, 4 power cables, and 3 fan trays
PTX10002-60C-AC-IR	PTX10002 LSR/peering system with 60-port 100GbE QSFP28/60-port 40GbE QSFP+/192-port 10GbE SFP+ with 4 1600 W AC power supplies, 4 power cables, and 3 fan trays
PTX10002-60C-DC-IR	PTX10002 LSR/peering system with 60-port 100GbE QSFP28/60-port 40GbE QSFP+/192-port 10GbE SFP+ with 4 1600 W DC power supplies, 4 power cables, and 3 fan trays
PTX10002-60C-AC-R	PTX10002 full IP system with 60-port 100GbE QSFP28/60-port 40GbE QSFP+/192-port 10GbE SFP+ with 4 1600 W AC power supplies, 4 power cables, and 3 fan trays
PTX10002-60C-DC-R	PTX10002 full IP system with 60-port 100GbE QSFP28/60-port 40GbE QSFP+/192-port 10GbE SFP+ with 4 1600 W DC power supplies, 4 power cables, and 3 fan trays
PTX10K2-60C-H-AC	PTX10002 base system with 30-port 100GbE QSFP28/30-port 40GbE QSFP+/96-port 10GbE SFP+ with 4 1600 W AC power supplies, 4 power cables, and 3 fan trays
PTX10K2-60C-H-DC	PTX10002 base system with 30-port 100GbE QSFP28/30-port 40GbE QSFP+/96-port 10GbE SFP+ with 4 1600 W DC power supplies, 4 power cables, and 3 fan trays
PTX10K2-60C-H-ACIR	PTX10002 LSR/peering system with 30-port 100GbE QSFP28/30-port 40GbE QSFP+/96-port 10GbE SFP+ with 4 1600 W AC power supplies, 4 power cables, and 3 fan trays
PTX10K2-60C-H-DCIR	PTX10002 LSR/peering system with 30-port 100GbE QSFP28/30-port 40GbE QSFP+/96-port 10GbE SFP+ with 4 1600 W DC power supplies, 4 power cables, and 3 fan trays
PTX10K2-60C-H-AC-R	PTX10002 full IP system with 30-port 100GbE QSFP28/30-port 40GbE QSFP+/96-port 10GbE SFP+ with 4 1600 W AC power supplies, 4 power cables, and 3 fan trays
PTX10K2-60C-H-DC-R	PTX10002 full IP system with 30-port 100GbE QSFP28/30-port 40GbE QSFP+/96-port 10GbE SFP+ with 4 1600 W DC power supplies, 4 power cables, and 3 fan trays
JPSU-1600W-AC-AFO	PTX1000 1600 W AC power supply
JPSU-1600W-DC-AFO	PTX1000 1600 W DC power supply
JNP10002-FAN1	PTX10002 fan
S-PTX10K2-60C-S-UP	PTX10002 scale-up software license to upgrade 60-port system (base to LSR or LSR to full IP)
S-PTX10K2-30C-S-UP	PTX10002 scale-up software license to upgrade 30-port system (base to LSR or LSR to full IP)
S-PTX10K2-15C-S-UP	PTX10002 scale-up software license to upgrade 15-port system (base to LSR or LSR to full IP)
S-PTX10K2-U-15C	PTX10002 software license to add 15 more ports to base system
S-PTX10K2-U-15C-IR	PTX10002 software license to add 15 more ports to LSR/peering system
S-PTX10K2-U-15C-R	PTX10002 software license to add 15 more ports to full IP system
PTX10003
PTX10003-160C-AC	PTX10003-160C base system with 160 100GbE ports or 32 400GbE ports, 4 3000W AC power supplies, 4 power cables, and 5 fan trays, with standard tier right-to-use license
PTX10003-160C-DC	PTX10003-160C base system with 160 100GbE ports or 32 400GbE ports, 4 3000W DC power supplies, and 5 fan trays, with standard tier right-to-use license
PTX10003-80C-AC	PTX10003-80C base system with 80 100GbE ports or 16 400GbE ports, 2 3000W AC power supplies, 2 power cables, and 3 fan trays, with standard tier right-to-use license
PTX10003-80C-DC	PTX10003-80C base system with 80 100GbE ports or 16 400GbE ports, 2 3000W DC power supplies, and 3 fan trays, with standard tier right-to-use license
S-PTX10K3-16T-A1-P	16T PTX10003 Advanced1 tier right-to-use license, perpetual, without SW support
S-PTX10K3-16T-A2-P	16T PTX10003 Advanced2 tier right-to-use license, perpetual, without SW support
S-PTX10K3-16T-P1-P	16T PTX10003 Premium1 tier right-to-use license, perpetual, without SW support
S-PTX10K3-16T-P2-P	16T PTX10003 Premium2 tier right-to-use license, perpetual, without SW support
S-PTX10K3-16T-A1-5	16T PTX10003 Advanced1 tier right-to-use license, 5-year term, with SW support
S-PTX10K3-16T-A2-5	16T PTX10003 Advanced2 tier right-to-use license, 5-year term, with software support
S-PTX10K3-16T-P1-5	16T PTX10003 Premium1 tier right-to-use license, 5-year term, with software support
S-PTX10K3-16T-P2-5	16T PTX10003 Premium2 tier right-to-use license, 5-year term, with software support
S-PTX10K3-16T-A1-3	16T PTX10003 Advanced1 tier right-to-use license, 3-year term, with SW support
S-PTX10K3-16T-A2-3	16T PTX10003 Advanced2 tier right-to-use license, 3-year term, with software support
S-PTX10K3-16T-P1-3	16T PTX10003 Premium1 tier right-to-use license, 3-year term, with software support
S-PTX10K3-16T-P2-3	16T PTX10003 Premium2 tier right-to-use license, 3-year term, with software support
S-PTX10K3-8T-A1-P	8T PTX10003 Advanced1 tier right-to-use license, perpetual, without SW support
S-PTX10K3-8T-A2-P	8T PTX10003 Advanced2 tier right-to-use license, perpetual, without SW support
S-PTX10K3-8T-P1-P	8T PTX10003 Premium1 tier right-to-use license, perpetual, without SW support
S-PTX10K3-8T-P2-P	8T PTX10003 Premium2 tier right-to-use license, perpetual, without SW support
S-PTX10K3-8T-A1-5	8T PTX10003 Advanced1 tier right-to-use license, 5-year term, with software support
S-PTX10K3-8T-A2-5	8T PTX10003 Advanced2 tier right-to-use license, 5-year term, with software support
S-PTX10K3-8T-P1-5	8T PTX10003 Premium1 tier right-to-use license, 5-year term, with software support
S-PTX10K3-8T-P2-5	8T PTX10003 Premium2 tier right-to-use license, 5-year term, with software support
S-PTX10K3-8T-A1-3	8T PTX10003 Advanced1 tier right-to-use license, 3-year term, with software support
S-PTX10K3-8T-A2-3	8T PTX10003 Advanced2 tier right-to-use license, 3-year term, with software support
S-PTX10K3-8T-P1-3	8T PTX10003 Premium1 tier right-to-use license, 3-year term, with software support
S-PTX10K3-8T-P2-3	8T PTX10003 Premium2 tier right-to-use license, 3-year term, with software support
JNP10003-160C-CHAS	JNP10003-160C spare chassis with 160 100GbE ports or 32 400GbE ports
JNP10003-80C-CHAS	JNP10003-80C spare chassis with 80 100GbE ports or 16 400GbE ports
JNP10003-FAN	Fan tray for 3RU 8T and 16T fixed platforms
JNP-3000W-AC-AFO	AC power supply for JNP10003-160C and JNP10003-80C fixed platforms

Add to cart Details

Overview:

Chassis-Like Features in an Expandable Form Factor

Product Overview

Product Description

Architecture and Key Components

Cloud Management with Juniper Mist Wired Assurance Driven by Mist AI

EVPN-VXLAN Technology

Virtual Chassis Technology

Microsegmentation Using Group-Based Policy

Flow-Based Telemetry

Features and Benefits

Simplified Operations with Juniper Mist Wired Assurance

Campus Fabric Deployments

EVPN-VXLAN for Campus Core, Distribution, and Access

Managing AI-Driven Campus Fabric with the Juniper Mist Cloud

Chassis-Class Availability

MACsec AES256

PoE/PoE+/PoE++ Power, Perpetual and Fast PoE

Junos Telemetry Interface

Junos Operating System

Flex Licensing

Enhanced Limited Lifetime Warranty

Product Options

EX4100 Line Specifications

Physical Specifications

Backplane

Power Options

Dimensions (W x H x D)

System Weight

Environmental Ranges

Cooling [CFM] - Total maximum airflow with two power supplies and fans

Hardware Specifications Switching Engine Mode

Memory

CPU

GbE Port Density per System

Physical Layer

Packet Switching Capacities (Maximum with 64 Byte Packets)

Software Specifications

Layer 2/Layer 3 Throughput (Mpps) (Maximum with 64 Byte Packets)

Security

Layer 2 Switching

Spanning Tree

Link Aggregation

Layer 3 Features: IPv4

Layer 3 Features: IPv6

Access Control Lists (ACLs) (Junos OS Firewall Filters)

Access Security

High Availability

Quality of Service

Multicast

Management and Analytics Platforms

Device Management and Operations

Supported RFCs

Supported MIBs

Troubleshooting

Traffic Monitoring

Safety and Compliance

Electromagnetic Compatibility (EMC) Requirements

Safety Requirements Chassis and Optics

Energy Efficiency

Environmental

Telco

Noise Specifications

Juniper Networks Services and Support

Product Overview

Product Description

Product Options

QFX5120-48Y

QFX5120-48YM

QFX5120-48T

QFX5120-32C

Junos OS

Data Center Deployments

Data Center Server Access

Data Center Spine

Campus Deployments

Features and Benefits

Management, Monitoring, and Analytics

Campus Fabric Management: Juniper Mist Cloud

Paragon Insights (formerly HealthBot)