Enterasys S-Series®
Terabit-class, Convergence-ready, Modular Switch for Edge-to-Core and Data Center Deployments
Terabit-class performance with
granular traffic visibility and control
Automated network provisioning for
virtualized, cloud, and converged
voice/video/data environments
High availability features including
self-healing maximize business
continuity for critical applications
Versatile high density solution with
highly flexible connectivity and power
options reduces cost of ownership
Product Overview
Greater than 6 Tbps backplane
capacity with 1.28 Tbps switching
capacity and 960 Mpps throughput
The Enterasys S-Series® delivers a powerful combination of Terabit-class performance along with
granular visibility and control over users, services, and applications to meet the increasing demands
of today’s businesses and enable optimization of key technologies including voice and video,
virtualization, and cloud computing. Unlike competitive solutions lacking comprehensive centralized
management and adequate high availability services, the Enterasys S-Series drives down operational
costs through a combination of management automation, a robust and highly resilient distributed
architecture, built-in security, and flexible power configurations specifically designed to reduce
power and cooling costs. The highly versatile Enterasys S-Series delivers both the comprehensive
functionality and configuration flexibility to be deployed as a premium high-density network edge
access device, high performance distribution layer switch, resilient enterprise class multi-Terabit core
router, or as a data center virtualization solution.
Enterasys S-Series switches are available in the following form factors:
• S-Series Stand Alone (SSA) system with 48 ports of Triple Speed Ethernet or 48 ports of
Gigabit Ethernet SFP connectivity and 4 ports of 10 Gigabit Ethernet SFP+ connectivity
• 1-slot chassis offering up to 72 ports of Gigabit Ethernet or 16 ports of 10 Gigabit
Ethernet connectivity
• 3-slot chassis offering up to 180 ports of Gigabit Ethernet or 12 ports of 10 Gigabit
Ethernet connectivity
• 4-slot chassis offering up to 288 ports of Gigabit Ethernet or 64 ports of 10 Gigabit
Ethernet connectivity
• 6-slot chassis offering up to 432 ports of Gigabit Ethernet or 96 ports of 10 Gigabit
Ethernet connectivity
• 8-slot chassis offering up to 576 ports of Gigabit Ethernet or 128 ports of 10 Gigabit
Ethernet connectivity
The S-Series provides a highly resilient distributed switching and routing architecture with
management and control functions embedded in each module, delivering unsurpassed reliability,
scalability, and fault tolerance. Organizations can cost-effectively add connectivity as needed while
scaling performance capacity with each new module. The highly available architecture makes
forwarding decisions, and enforces security policies and roles while classifying/prioritizing traffic at wire
speed. All I/O modules provide the highest Quality of Service (QoS) features for critical applications
such as voice and HD video even during periods of high network traffic load while also proactively
preventing Denial of Service (DoS) attacks and malware propagation.
Business Alignment
• A future-proofed, standards-based
multi-Terabit architecture for secure,
reliable deployment of business-critical
• Best-in-class Quality of Service
functionality for predictable performance
of demanding voice, video, and data
• Flow-based architecture delivers unrivalled
end-to-end visibility and control over
users, services, and applications ensuring
consistent end-user experience
• Built-in hardware support for 40 and 100
Gbps Ethernet, emerging protocols (IPv6)
and large scale deployment protocols
Operational Efficiency
• Edge-to-core architecture flexibility
reduces deployment and maintenance
costs and simplifies network management
• Management automation and built-in
resiliency features combine to drive down
operational costs and maximize uptime
• Optimized flow-based architecture for
iSCSI, CEE, and virtualization enabling
consolidation of servers, applications,
and storage, while reducing data center
operational costs
• Flexible power configurations optimized
for low power consumption and thermal
output drives down data center power and
cooling costs
• High-density, small form factor chassis
providing over 1700 ports in a standard
equipment rack that reduces footprint
costs and scales from hundreds of
Gigabits to multi-Terabit performance
There is nothing more important
than our customers.
The S-Series implements an industry-leading, flow-based switching architecture to intelligently
manage individual user and application conversations—far beyond the capabilities of switches that are
limited to using VLANs, ACLs, and ports to implement role-based access controls. Users are identified
and roles are applied to ensure each individual user can access their business-critical applications no
matter where they connect to the network. S-Series policy rules combined with deep packet inspection
can intelligently sense and automatically respond to security threats while improving reliability and
quality of the user experience.
Benefits (cont.)
• Unrivalled capabilities to protect
business traffic from malicious attacks
and maintain information confidentiality,
integrity, and availability
A significant differentiator for the S-Series is the ability to collect NetFlow data at wire-speed on
every port, providing total visibility into network resource consumption for users and applications. The
S-Series is the only enterprise switch to support multi-user, multi-method authentication on every port
— absolutely essential when you have devices such as IP phones, computers, printers, copiers, security
cameras, badge readers, and virtual machines connected to the network. When quality of service, device
and application prioritization, and security matters there is no better choice than the Enterasys S-Series.
• Built-in not bolted-on security reduces
cost of ownership and network
administration complexity
• Multi-method network access control
and role-based security that extends
to existing edge switches and wireless
access points allowing authentication
of thousands of users or devices
simultaneously on a single port
System Summary
The Enterasys S-Series family of flow-based switches brings high performance distributed switching
to the network access layer, distribution layer, enterprise/campus core, and data center. The
S-Series family consists of the 8-slot S8, 6-slot S6, 4-slot S4, the 3-slot S3, 1-slot S1 and the fixed
configuration S-Series Stand Alone (SSA). The S-Series delivers some of the highest switching port
densities per rack unit available in the market and is future-proofed and scalable to provide overall
system capacities of up to six Terabits. All chassis support 802.3af and 802.3at (high power)
standards-based PoE via an integrated or field installable power system. There are a variety of I/O
modules designed and optimized for deployment at the network access layer, distribution layer,
network core and data center that provide a broad array of connectivity options for copper and fiber
cabling infrastructures.
Support and Services
• Industry-leading customer satisfaction
and first call resolution rates
• Personalized services, including site
surveys, network design, installation,
and training
System Switching Capacity
40 Gbps
120 Gbps
120 Gbps
160 Gbps
120 Gbps
640 Gbps
960 Gbps
1.28 Tbps
System Switching Throughput
30 Mpps
90 Mpps
90 Mpps
120 Mpps
90 Mpps
480 Mpps
960 Mpps
240 Gbps
480 Gbps
3 Tbps
6 Tbps
48 (No PoE
Maximum 1000BASE-X SFP (MGBIC) ports per system
Maximum 10GBASE-X SFP+ ports per system
Chassis Slots
Total Backplane Capacity
Maximum 10/100/1000BASE-TX Class 3 PoE
ports per system
Architectural Overview
Forwarding Architecture
The Enterasys S-Series chassis utilize both fabric-based point-to-point and fabric-less meshed forwarding
architectures. The S1, S4, S6, and S8 chassis use a fabric-based forwarding architecture that provides
multiple high bandwidth data paths between I/O modules, while the S3 chassis provides a high
performance, fabric-less meshed forwarding architecture ideally suited for highly available network edge
wiring closet deployments. All chassis are optimized for redundant high performance switching and
routing as well as providing flexible connectivity and the ability to add features and scale performance as
required and as new technologies become available.
I/O fabric modules provide scalable, high performance data paths as well as a full complement of front
panel interfaces with flexible modular interface options. A single I/O fabric may be used in either an
S1, S4, S6, or an S8 chassis, however, the use of two I/O fabrics creates a load sharing fabric pair that
provides up to 1280 Gbps switching capacity and adds high-availability features. The S8 and S6 chassis
augments the load sharing fabric pair by allowing the addition of a third I/O fabric module, increasing
the system reliability and performance in the unlikely event of an I/O fabric failure. An S8 system with
two I/O fabrics installed will gracefully reduce the fabric switching capacity by 50% in the event of an I/O
fabric failure, however, when a third I/O fabric is installed the system will maintain a full 1280 Gbps of
switching performance if an I/O fabric module were to fail. The load sharing fabric architecture ensures
the highest availability and performance for the most demanding and mission-critical networks.
Page 2
workstations, as well as legacy devices, while providing the highest levels of
QoS, security, and bandwidth control via flow-based switching.
Enterasys S-Series I/O modules are high performance, fully-featured
switch routers that deliver a fully distributed switching system as well as
management and route processing capabilities, where each module is
individually driven and managed by on-board processors. Enterasys flowbased ASICs, together with firmware microprocessors, create a traffic control
solution that delivers high performance and flexibility. This distributed ASICbased architecture increases processing power as modules are added for a
higher level of scalability and flexibility.
I/O fabrics and I/O modules are available with a wide array of interface
types and port densities (10/100/1000BASE-TX, 1000BASE-X SFP, and
10GBASE-X SFP+) to address varied network requirements. All triple speed
copper I/O modules are PoE-enabled. A number of I/O modules also include
either one or two option-module slots; an option-module slot provides
additional media and port speed connectivity via triple speed copper, Gigabit
SFP and 10 Gigabit SFP+ Ethernet option modules. This further simplifies
network design and reduces the cost of network deployments. All S-Series
I/O Fabrics and I/O Modules include very deep packet buffers per port to
avoid dropped packets in the event of network congestion.
All S-Series 10 Gigabit Ethernet SFP+ ports are dual speed and will
also accept standard Gigabit SFP transceivers. This capability enables a
smooth migration path from Gigabit Ethernet for connecting devices to 10
Gigabit Ethernet in the future. Customers can use Gigabit Ethernet optical
uplinks today and migrate to 10 Gigabit at their own pace. In addition, all
Gigabit SFP ports will accept Fast Ethernet 100BASE-FX SFPs to enable
connection of legacy devices.
S130 class I/O modules include a unique feature that enables full line
rate forwarding for bandwidth hungry workstations or when downstream
switches are connected. Flex-Edge technology provides line rate forwarding
through the switch even when the systems uplinks are in an oversubscribed
state; this ensures that critical and time sensitive data pass through the
switch to its destination at line rate, unlike inefficient methods used by
other solutions on the market.
S130 class I/O modules support up to 512 users or eight authenticated users
per port in contrast to S150 class modules which support up to 1,024 users/
devices per module with no restriction to the number of users per port. In cases
where an S130 class I/O module needs to support more than 8 authenticated
users per port, a software upgrade license may be purchased and applied to
the module that removes this restriction. The S-EOS-PPC license is required
for each S130 class I/O module that needs the 8 users per port restriction
removed. Only one S-EOS-PPC license is required for the S130 class SSA
switch. All S-Series triple speed I/O modules support PoE as standard, no
additional daughter cards or software is required.
S150 Class I/O Modules
S130 Class I/O Modules
S130 class I/O modules are optimized for use in wiring closets for user
connectivity, in the distribution layer to aggregate edge switches, and in small
and medium network cores. These modules provide high density with media
flexibility and support for IEEE 802.3af PoE and IEEE 802.3at high power PoE
standards. S130 class I/O modules deliver scalable triple speed performance
and flexibility to ensure compatibility with today’s high performance
A selection of S-Series I/O modules are designed for use in the most
demanding areas of the network where sustained high volumes of traffic are
most common. Gigabit and 10 Gigabit Ethernet modules that incorporate
advanced traffic management mechanisms and large packet buffers ensure
optimal network performance and predictable reliability. S150 class I/O
modules are optimized for the highly demanding performance and throughput
requirements of enterprise network cores and data centers with high density
line rate Gigabit and 10 Gigabit connectivity as well as industry-leading port
type flexibility. S150 class I/O modules support the full range of Enterasys
features and can be upgraded with advanced routing features as needed.
I/O Fabric and I/O Module Specifications
S130 Class I/O Modules
S150 Class I/O Modules
S130 I/O Fabric
S150/155 I/O Fabric Modules
Wiring Closet, Distribution
Layer, Small Network Core
Distribution Layer, Server Aggregation,
Data Center Core, Enterprise/
Campus Core
Wiring Closet,
Layer, Small
Network Core
Distribution Layer, Server Aggregation, Data
Center Core, Enterprise/Campus Core
Part Number
1000 Mbps
1000 Mbps
10 Gbps
1000 Mbps
10 Gbps
PoE Support
Module Slots
1, (Type1)
1, (Type1)
2, (Type2)
2, (Type2)
1, (Type2)
2, (Type 2)
2, (Type 2)
2, (Type 2)
30 Mpps
30 Mpps
120 Mpps
120 Mpps
120 Mpps
45 Mpps
120 Mpps
120 Mpps
120 Mpps
I/O Switching
40 Gbps
40 Gbps
160 Gbps
160 Gbps
160 Gbps
60 Gbps
160 Gbps
160 Gbps
160 Gbps
480 Mpps
480 Mpps
480 Mpps
480 Mpps
Used in
Port Type
Port Quantity
Port Speed
Page 3
Switching Fabric Bandwidth
1280 Gbps Load Sharing Fabric Pair
VLANs Supported
Switching Throughput
960 Mpps (Measured in 64-byte packets)
Transmit Queues
12 for S130/S150
16 for S155
IPv4/IPv6 Routing Throughput
960 Mpps (Measured in 64-byte packets)
(Capacities above are for an S8 System)
Address Table Size
65k MAC Addresses
Classification Rules
Packet Buffering
S1 S3
SSA130 Class
SSA150/180 Class
Buffer Size (Max.)
Main Memory S130/S150: 1GB Per Module
Main Memory S155: 2GB Per Module
Flash Memory: 1GB Per Module
Hardware-Based High Availability Features
The S-Series includes many standard high availability features. These hardware-based high availability features allow the S-Series to be deployed in
mission critical environments that require 24/7 availability.
The S-Series supports the following hardware-based high availability features:
• Passive chassis backplane in the S1, S3, S4, S6, and S8 chassis
• Meshed backplane architecture in the S3 chassis
• Hot swappable fan trays with multiple cooling fans
• Separate system and PoE power supplies
• Hot swappable power supplies
• Multiple AC input connections for power circuit redundancy
• Load sharing/redundant I/O fabrics in the S4, S6, and S8 chassis
• N+1 fabric redundancy in the S8 and S6 chassis
• Hot swappable I/O fabrics and I/O modules
• Multiple host CPU for N+X redundancy
• Virtual Switch Bonding (bonds two physical switches to create a single logical switch)
Optimized, High-Availability and Self Healing Services
Aside from the standard high-availability features of typical wiring closet and data center switches, the Enterasys S-Series includes many advanced self
healing features such as dynamic service fail-over, automatic module self-configuration, and multi-image support.
Dynamic service fail-over enables each I/O module service (e.g., management, switching/VLANs, routing, etc.) to be automatically switched to another I/O
module in an event of module or process failure. This “self healing” capability happens in milliseconds because each service is replicated in real-time on
every I/O fabric and I/O module.
Automatic module self-configuration is another innovative feature that allows I/O modules to receive their configuration from other I/O modules
automatically. This is ideal for replacing failed modules without manually reconfiguring the replacement module.
The Enterasys S-Series allows users to download and store multiple firmware image files; this feature is useful
for reverting back to a previous version in the event that a firmware upgrade fails. This multi-image support
provides significant operational efficiencies especially with regard to the application of firmware patches.
Distributed, Flow-Based Architecture
In order to ensure granular visibility and manage of traffic without sacrificing performance, the Enterasys
S-Series deploys a distributed, flow-based architecture. This architecture ensures that when a specific
communications flow is being established between two end points, the first packets in that communication
are processed through the multilayer classification engines in the switch I/O modules and I/O fabric modules.
In this process, the role is identified, the applicable policies are determined, the packets are inspected,
and the action is determined. After the flow is identified, all subsequent packets associated with that flow
are automatically handled in the Enterasys ASICs without any further processing. In this way the Enterasys
S-Series is able to apply a very granular level of control to each flow at full line rate.
Page 4
Multi-User/Method Authentication and Policy
Authentication allows enterprise organizations to manage network access and provide mobility to users and devices. It provides a way to know who or
what is connected to the network and where this connection is at any time. The Enterasys S- Series has unique, industry leading capabilities regarding
types of simultaneous authentication methods. S-Series modules can support multiple concurrent authentication techniques, including:
• 802.1X authentication
• MAC authentication, which is a way to authenticate devices on the network using the MAC address
• Web-based authentication, also known as Port Web Authentication (PWA), where a user name and password are supplied through a browser
• CEP, also known as Convergence End Point, where multiple vendors VoIP phones are identified and authenticated; this capability provides great
flexibility to enterprises looking to implement access control mechanisms across their infrastructure
A significant additional feature of the S-Series is the capability to support multi-user authentication. This allows multiple users and devices to be
connected to the same physical port and each user or device to be authenticated individually using one of the multi-method options (802.1x, MAC,
PWA, or CEP). The major benefit of multi-user authentication is to authorize multiple users, either using dynamic policy or VLAN assignment for each
authenticated user. In the case of dynamic policy, this is called Multi-User Policy. Multi-user port capacities with the S-Series are determined on a per
port, per I/O module, and per multi-slot system basis. Default I/O module capacities are detailed below.
Muti-user authentication and policy can provide significant benefits to customers by extending security services to users connected to unmanaged
devices, third party switches/routers, VPN concentrators, or wireless LAN access points at the edge of their network. Using authentication provides
security, priority, and bandwidth control are enhanced while protecting existing network investments. The S-Series supports up to 9000 concurrently
authenticated users in a single system.
Page 5
Dynamic, Flow-Based Packet Classification
Another unique feature that separates the
Enterasys S-Series from all competitive
switches is the capability to provide UserBased Multi-layer Packet Classification/QoS.
With the wide array of network applications
used on networks today, traditional Multi-layer
Packet Classification by itself is not enough
to guarantee the timely transport of businesscritical applications. In the S-Series, User-Based
Multi-layer Packet Classification allows traffic
classification not just by packet type, but also
by the role of the user on the network and the
assigned policy of that user. With User-Based
Multi-layer Packet Classification, packets can
be classified based on unique identifiers like
“All Users”, “User Groups”, and “Individual
User”, thus ensuring a more granular approach
to managing and maintaining network
confidentiality, integrity, and availability.
Network Visibility From
High Fidelity NetFlow
Network performance management and security capabilities via NetFlow are available on every Enterasys S-Series switch port without slowing down
switching and routing performance or requiring the purchase of expensive daughter cards for every module. Enterasys NetFlow tracks every packet in
every flow as opposed to competitor’s statistical sampling techniques or restrictive appliance-based implementations. The value of unsampled, real-time
NetFlow monitoring is the visibility into exactly what traffic is traversing the network and if something abnormal occurs it will be captured by NetFlow
and appropriate action can be applied. Additionally, NetFlow can be used for capacity planning allowing the network manager to monitor the traffic
flows and volumes of traffic in the network and understand where the network needs to be reconfigured or upgraded. This will save time and money,
by enabling administrators to know when and where upgrades might be needed. The S-Series flow monitoring capabilities are industry leading, it can
concurrently monitor in excess of 70,000 flows per second, a far greater capacity than any other vendors switch or router.
Feature Summary
Unified Cross-Platform Operating System
The Enterasys S-Series firmware adds the benefit of becoming a multi-platform operating system that unifies the Enterasys N-Series and S-Series into
a single firmware image that operates on both platforms ensuring feature parity and consistent operation across the flow-based switches. This provides
many customer benefits: reduced TCO via a single, unified operating system from network edge/access layer to the network core and data center, feature
and function consistency across platforms, and easy deployment and upgrades to ensure operational efficiency.
Integrated Services Design
Integrated services design is a key differentiator that separates the Enterasys S-Series from the competition. Integrated services design reduces the
number and type of modules required to build typical wiring closet configurations, simplifying the overall network design. In turn, this significantly
reduces the maintenance and sparing cost as each I/O fabric or I/O module can perform all of these services, unlike competitive offerings with multiple
dedicated module types for each specific service.
Multi-layer packet classification – enables the delivery of critical applications to specific users via
traffic awareness and control
• User, Port, and Device Level (Layer 2 through 4 packet classification)
• QoS mapping to priority queues (802.1p & IP ToS/ DSCP) up to 12 queues/port for S130/S150; 16 queues/port for S155
• Multiple queuing mechanisms (SPQ, WFQ, WRR, and Hybrid)
• Granular QoS/rate limiting
• VLAN to policy mapping
Page 6
Switching/VLAN services - provides high performance connectivity,
aggregation, and rapid recovery services
• Extensive industry standards compliance (IEEE and IETF)
• Inbound and outbound bandwidth rate control per flow
• VLAN services support
− Link aggregation (IEEE 802.1AX-2008/802.3ad)
− Multiple spanning trees (IEEE 802.1s)
− Rapid reconfiguration of spanning tree (IEEE 802.1w)
• Provider Bridges (IEEE 802.1ad), Q-in-Q Ready
• Flow setup throttling
Distributed IP Routing - provides dynamic traffic optimization, broadcast
containment, and more efficient network resilience
• Standard routing features include static routes, OSPFv2, RIPv2, IPv4, and Multicast routing support (DVMRP, IGMP v1/v2/v3, PIM-SM), Policy
Based Routing and Route Maps, and VRRP
• Extended ACLs
• S150 class I/O Modules and I/O fabric modules include all standard IP routing features and also include the following features:
− NAT (Network Address Translation)
− LSNAT (Load sharing Network Address Translation) for server load balancing
− TWCB (Transparent Web Cache Balancing) redirects web page requests to local web cache servers to efficiently manage web access bandwidth and increase web page response time
• S155 class fabric modules have all the standard IP routing features and deliver a hardware upgrade to enhance protocol capacities including:
− BGP: Larger route tables (Multiple copies of internet tables)
− Enhanced queuing
− Virtual Switch Bonding
Security (User, Network, and Management)
• User security
− Authentication (802.1X, MAC and PWA+, CEP), MAC (Static and Dynamic) port locking
− Multi-user authentication/policies
• Network security
− Access Control Lists (ACL) – basic and extended
− Policy-based security services (examples: spoofing, unsupported protocol access, intrusion prevention, DoS attacks limits)
• Management Security
− Secure access to the S-Series via SSH, SNMP v3
Management, Control, and Analysis - provide streamlined tools
for maintaining network availability and health
• Configuration
− Industry-standard CLI and web management support
− Multiple firmware images with editable configuration files
• Network Analysis
− SNMP v1/v2c/v3, RMON (9 groups), and SMON (rfc2613) VLAN and Stats
− Port/VLAN mirroring (one-to-one, one-to-many, many-to-many)
− Unsampled NetFlow on every port with no impact on system switching and routing performance
• Automated set-up and reconfiguration
− Replacement I/O module will automatically inherit previous modules configuration
– New modules added to chassis will automatically be updated with active configuration and firmware
Page 7
Feature-Rich Functionality
Examples of additional functionality and features that are supported by the Enterasys S-Series:
• NetFlow - Provides real-time visibility, application profiling, and capacity planning
• Server Load Balancing - Enabled via LSNAT without requiring costly external server load balancing hardware and software
• NAT - Network Address Translation (NAT) streamlines IP addressing and IP address management schemes
• LLDP-MED - Link Layer Discovery Protocol for Media Endpoint Devices enhances VoIP deployments
• Flow Setup Throttling - (FST) effectively preempts and defends against DoS attacks
• Web Cache Redirect - Increases WAN and Internet bandwidth efficiency
• Node & Alias Location - Automatically tracks user and device location and enhances network management productivity and fault isolation
• Port Protection Suite - Maintain network availability by ensuring good protocol and end station behavior
• Flex-Edge Technology - Provides advanced bandwidth management and allocation for demanding access/edge devices
• Virtual Switch Bonding - Provides increased resiliency and performance by combining two or more physical switches to create a single logical switch
• High Availability Firmware Upgrade (In-Service Software Upgrade) - System software upgrade without service interruption
• Secure https switch management via NetSight OneView
Network performance, management, and security capabilities via NetFlow are available on every S-Series I/O Fabric and I/O Module without affecting
switching/routing performance or requiring the purchase of expensive daughter cards for every blade. The S-Series tracks every packet in every flow unlike
competitor’s statistical sampling techniques. The Enterasys advantage is the Enterasys ASIC capabilities that collect NetFlow statistics for every packet
in every flow without sacrificing performance. Enterasys S-Series switches can output 9,000 flow records per second, per I/O module. This is an order of
magnitude greater NetFlow performance than any other NetFlow appliance vendor (over 70,000 flow records per second in a fully populated S8 chassis).
Flow Setup Throttling (FST) is a proactive feature designed to mitigate zero-day threats and Denial of Service (DoS) attacks before they can affect the
network. FST directly combats the effects of zero-day and DoS attacks by limiting the number of new or established flows that can be programmed on
any individual switch port. This is achieved by monitoring the new flow arrival rate and/or controlling the maximum number of allowable flows.
In network operations, it is very time consuming to locate a device or find exactly where a user is connected. This is especially important when reacting
to security breaches. Enterasys S-Series modules automatically track the network’s user/device location information by listening to network traffic as it
passes through the switch. This information is then used to populate the Node/Alias table with information such as an end-station’s MAC address and
Layer 3 alias information (IP address, IPX address, etc). This information can then be utilized by Enterasys NMS Suite management tools to quickly
determine the switch and port number for any IP address and take action against that device in the event of a security breach. This node and alias
functionality is unique to Enterasys and reduces the time to pinpoint the exact location of a problem from hours to minutes.
For organizations looking to deploy VoIP technologies, the Enterasys S-Series provides significant capabilities through its support for the industrystandard discovery protocol, LLDP-MED (Link Layer Discovery Protocol for Media Endpoint Devices). This protocol allows for the accurate representation
of network topologies within Network Management Systems (NMS). S-Series switches are able to learn about all the devices connected to them to
identify VoIP phones, tell the phone which VLAN to use for voice, and even negotiate the power that the phone can consume. LLDP–MED also enables
911 emergency services location functions whereby the location of a phone can be determined by the switch port.
Enterasys S-Series support for Network Address Translation (NAT) provides a practical solution for organizations who wish to streamline their IP
addressing schemes. NAT operates on a router connecting two networks, simplifying network design and conserving IP addresses. NAT can help
organizations merge multiple networks together and enhance network security by helping to prevent malicious activity initiated by outside hosts from
entering the corporate network; this improves the reliability of local systems by stopping worms and augments privacy by discouraging scans.
Within server farm environments, the S-Series can help to increase reliability and performance via the implementation of Load Sharing Network Address
Translation (LSNAT). Based on RFC 2391, LSNAT uses a number of load sharing algorithms to transparently offload network load on a single server and
distributes the load across a pool of servers.
The S-Series also supports a comprehensive portfolio of port protection capabilities, such as SPANguard and MACLock, which provide the ability to
detect unauthorized bridges in the network and restrict a MAC address to a specific port. Other port protection features include Link Flap, Broadcast
Suppression, and Spanning Tree Loop protection which protects against mis-configuration and protocol failure. The S-Series Virtual Switch Bonding
technology allows two or more S-Series systems to create a single virtual switch.
Enterasys S-Series Flex-Edge technology provides line rate traffic classification for all access ports with guaranteed priority delivery for control plane
traffic and high-priority traffic as defined by the Enterasys policy overlay. In addition to allocating resources for important network traffic, prioritized
bandwidth can be assigned on a per port or per authenticated user basis. Flex-Edge technology is ideal for deployment in wiring closets and distribution
points that can often suffer from spikes in utilization that cause network congestion. With Flex-Edge technologies, organizations no longer have to fear a
momentary network congestion event that would result in topology changes and random packet discards.
CoreFlow2 policy enabled edge and core switches managed via NetSight play fundamental and essential roles in moving data reliably, efficiently and
securely. The combined hardware and management suite provide superior traffic visibility, enforcement and security.
Page 8
Traffic control and monitoring features include: Automatic application of ingress and egress policies for bi-directional traffic control; Rule Hit
Accounting for network visibility and troubleshooting; and Flow Based Mirroring allowing for tapping individual traffic streams. Security features
include: RA Guard (IPv6 Router advertisement containment) and features similar to DHCP Snooping, IP Source Guard and Dynamic ARP Inspection.
Sample Deployment Scenario
From the Network Edge to the Core and Data Center
Today’s enterprise networking customers demand highly-reliable, feature-rich networking devices to fulfill their requirements across all layers of the
network, providing the scalability, return on investment (ROI), and security required of a 21st century business environment.
Enterasys S-Series switches provide industry-leading, high performance distributed switching for enterprise networks, providing customers with the
scalability, performance, and application control to meet the growing needs of today’s enterprises. S-Series solutions provide high-performance, featurerich, and highly scalable 10/100/1000, Gigabit, and 10 Gigabit Ethernet connectivity and the scalability to support future 40/100 Gigabit technologies.
This allows them to scale from the network access/edge right to the heart of the network core where they are well positioned to meet emerging high
bandwidth requirements for core routing implementations.
High performance distributed computing increases the demand for secure campus networks, at the same time business-critical systems and services
are becoming increasingly dependent upon enterprise backbone infrastructures. Enterasys S-Series solutions have the capacity, scalability, and QoS
functionality required to deal with these new demands. Architected to ensure no single point of failure with industry-leading high-availability, S-Series
switches are the perfect solution for core routing and secure data center applications. With I/O Fabric and modules that are optimized for multi tier
network deployments there is an S-Series solution ideally suited to any enterprise or campus network.
Enterasys S-Series modular switches use common power supplies, fan trays, and I/O modules that are interchangeable between chassis. This reduces
capital investment in on-site spares.
Standards and Protocols
Switching/VLAN Services
• Generic VLAN Registration Protocol (GVRP)
• 802.3u Fast Ethernet
• 802.3ab Gigabit Ethernet (copper)
• 802.3z Gigabit Ethernet (fiber)
• 802.3ae 10 Gigabit Ethernet (fiber)
• 802.1aq (SPB) Shortest Path Bridging (Ready)
• 802.1az (DCBX) Data Center Bridging Exchange
• 802.1az (ETS)
• Enhanced Transmission Selection
• 802.1Q VLANs
• 802.1D MAC Bridges
• Provider Bridges (IEEE 802.1ad) Ready
• 802.1w Rapid re-convergence of Spanning Tree
• 802.1s Multiple Spanning Tree
• 802.1AX-2008/802.3ad Link Aggregation
• 802.3ae Gigabit Ethernet
• 802.3x Flow Control
Page 9
Standards and Protocols (cont.)
• IP Multicast (IGMPv1,v2 support & IGMPv3)
• RFC 1966 BGP Route Reflection
• Jumbo Packet with MTU Discovery Support for Gigabit
• RFC 1981 Path MTU Discovery for IPv6
• Link Flap Detection
• RFC 1997 BGP Communities Attribute
• Dynamic Egress (Automated VLAN Port Configuration)
• RFC 1998 BGP Community Attribute in Multi-home Routing
• 802 1ab LLDP-MED
• RFC 2003 IP Encapsulation within IP
IP Routing Features
• RFC 2080 RIPng (IPv6 extensions)
• Static Routes
• RFC 2082 RIP-II MD5 Authentication
• Standard ACLs
• RFC 2113 IP Router Alert Option
• OSPF with Multipath Support
• RFC 2154 OSPF with Digital Signatures (Password & MD5)
• OSPF Passive Interfaces
• RFC 2236 IGMPv2
• IPv6 Routing Protocol
• DVMRP v3-10
• Extended ACLs
• RFC 2260 Support for Multi-homed Multi-prov
• Policy-based Routing
• RFC 2270 Dedicated AS for Sites Homed to one Provider
• NAT Network Address Translation
• RFC 2361 Protocol Independent Multicast - Sparse Mode RFC2373
• TWCB Transparent Web Cache Redirect
• RFC 2373 Address notation compression
• VRF Virtual Routing and Forwarding (IPv6 and IPv4)
• RFC 2374 IPv6 Aggregatable Global Unicast Address Format
• Border Gateway Routing Protocol - BGPv4
• RFC2 375 IPv6 Multicast Address Assignments
• PIM Source Specific Multicast - PIM SSM
• RFC 2385 BGP TCP MD5 Signature Option
• RFC 792 ICMP
• RFC 2391 Load Sharing Using Network Address Translation (LSNAT)
• RFC 826 ARP
• RFC 2401 Security Architecture for the Internet Protocol
• RFC 1027 Proxy ARP
• RFC 2404 The Use of HMAC-SHA-1-96 within ESP and AH
• RFC 1112 IGMP
• RFC 2406 IP Encapsulating Security Payload (ESP)
• RFC 1195 Use of OSI IS-IS for Routing in TCP/IP
• RFC 2407 Internet IP Security Domain of Interpretation for ISAKMP
• RFC 1265 BGP Protocol Analysis
• RFC 2408 Internet Security Association and Key Management Protocol
• RFC 1266 Experience with the BGP Protocol
• RFC 1519 CIDR
• DHCP Server RFC 1541/ Relay RFC 2131
• RFC 1583/RFC 2328 OSPFv2
• RFC 1587 OSPFv2 NSSA
• RFC 1657 Managed Objects for BGP-4 using SMIv2
• RFC 1723 RIPv2 with Equal Cost Multipath Load Balancing
• RFC 1745 OSPF Interactions
• RFC 1746 OSPF Interactions
• RFC 1765 OSPF Database Overflow
• RFC 1771 A Border Gateway Protocol 4 (BGP-4)
• RFC 1772 Application of BGP in the Internet
• RFC 1773 Experience with the BGP-4 protocol
• RFC 1774 BGP-4 Protocol Analysis
• RFC 1812 General Routing/RIP Requirements
• RFC 1886 DNS Extensions to support IP version 6
• RFC 1918 Address Allocation for Private Internets
• RFC 1924 A Compact Representation of IPv6 Addresses
• RFC 1930 Guidelines for creation, selection, and registration of an
Autonomous System (AS)
• RFC 1853 IP in IP Tunneling
• RFC 2409 The Internet Key Exchange (IKE)
• RFC 2439 BGP Route Flap Damping
• RFC 2450 Proposed TLA and NLA Assignment Rule
• RFC 2453 RIPv2
• RFC 2460 IPv6 Specification
• RFC 2461 Neighbor Discovery for IPv6
• RFC 2462 IPv6 Stateless Address Autoconfiguration
• RFC 2463 ICMPv6
• RFC 2464 Transmission of IPv6 over Ethernet
• RFC 2473 Generic Packet Tunneling in IPv6 Specification
• RFC 2474 Definition of DS Field in the IPv4/v6 Headers
• RFC 2519 A Framework for Inter-Domain Route Aggregation
• RFC 2545 BGP Multiprotocol Extensions for IPv6
• RFC 2553 BasiCSocket Interface Extensions for IPv6
• RFC 2577 FTP Security Considerations
• RFC 2581 TCP Congestion Control
• RFC 2597 Assured Forwarding PHB Group
• RFC 2710 IPv6 Router Alert Option
• RFC 2711 Multicast Listener Discovery (MLD) for IPv6
Page 10
Standards and Protocols (cont.)
• RFC 2715 Interoperability Rules for Multicast Routing Protocols
• RFC 4213 Basic Transition Mechanisms for IPv6
• RFC 2740 OSPF for IPv6
• RFC 4222 Prioritized Treatment of OSPFv2 Packets
• RFC 2763 Dynamic Hostname Exchange Mechanism for IS-IS
• RFC 4264 BGP Wedgies
• RFC 2784 Generic Routing Encapsulation Ready
• RFC 4271 A Border Gateway Protocol 4 (BGP-4)
• RFC 2796 BGP Route Reflection
• RFC 4272 BGP Security Vulnerabilities Analysis
• RFC 2858 Multiprotocol Extensions for BGP-4
• RFC 4273 Managed Objects for BGP-4 using SMIv2
• RFC 2890 Key and Sequence Number Extensions to GRE
• RFC 4274 BGP-4 Protocol Analysis
• RFC 2893 Transition Mechanisms for IPv6 Hosts and Routers
• RFC 4276 BGP-4 Implementation Report
• RFC 2894 Router Renumbering
• RFC 4277 Experience with the BGP-4 protocol
• RFC 2918 Route Refresh Capability for BGP
• RFC 4291 IP Version 6 Addressing Architecture
• RFC 2966 Prefix Distribution with Two-Level IS-IS
• RFC 4294 IPv6 Node Requirements
• RFC 2973 IS-IS Mesh Groups
• RFC 4301 Security Architecture for IP
• RFC 3031 Multi Protocol Label Switching Ready
• RFC 4302 IP Authentication Header
• RFC 3056 Connection of IPv6 Domains via IPv4 Clouds
• RFC 4303 IP Encapsulating Security Payload (ESP)
• RFC 3065 Autonomous System Confederations for BGP
• RFC 4305 Crypto Algorithm Requirements for ESP and AH
• RFC 3107 Carrying Label Information in BGP-4
• RFC 4306 Internet Key Exchange (IKEv2) Protocol
• RFC 3162 RADIUS and IPv6
• RFC 4307 Cryptographic Algorithms for Use in IKEv2
• RFC 3345 BGP Persistent Route Oscillation
• RFC 4308 Cryptographic Suites for IPSec
• RFC 3359 TLV Codepoints in IS-IS
• RFC 4360 BGP Extended Communities Attribute
• RFC 3373 Three-Way Handshake for IS-IS
• RFC 3376 IGMPv3
• RFC 4365 Applicability Statement for BGP/MPLS IP Virtual Private
Networks (VPNs)
• RFC 3392 Capabilities Advertisement with BGP-4
• RFC 4384 BGP Communities for Data Collection
• RFC 3446 Anycast RP mechanism using PIM and MSDP
• RFC 4443 ICMPv6 for IPv6
• RFC 3484 Default Address Selection for IPv6
• RFC 4456 BGP Route Reflection
• RFC 3493 Basic Socket Interface Extensions for IPv6
• RFC 4486 Subcodes for BGP Cease Notification Message
• RFC 3513 RFC 3513 IPv6 Addressing Architecture
• RFC 4451 BGP MULTI_EXIT_DISC (MED) Considerations
• RFC 3542 Advanced Sockets API for IPv6
• RFC 4541 MLD Snooping
• RFC 3562 Key Mgt Considerations for TCP MD5 Signature Opt
• RFC 4552 Authentication/Confidentiality for OSPFv3
• RFC 3567 IS-IS Cryptographic Authentication
• RFC 4601 PIM-SM
• RFC 3587 IPv6 Global Unicast Address Format
• RFC 4604 IGMPv3 & MLDv2 & Source-Specific Multicast
• RFC 3590 RFC 3590 MLD Multicast Listener Discovery
• RFC 4607 Source-Specific Multicast for IP
• RFC 3595 Textual Conventions for IPv6 Flow Label
• RFC 4608 PIM--SSM in 232/8
• RFC3596 DNS Extensions to Support IP Version 6
• RFC 4610 Anycast-RP Using PIM
• RFC 3719 Recommendations for Interop Networks using IS-IS
• RFC 4611 Multicast Source Discovery Protocol (MSDP) Deployment
• RFC 3768 VRRP
• RFC 3769 Requirements for IPv6 Prefix Delegation
• RFC 3787 Recommendations for Interop IS-IS IP Networks
• RFC 3810 MLDv2 for IPv6
• RFC 3847 Restart signaling for IS-IS
• RFC 3879 Deprecating Site Local Addresses
• RFC 3956 Embedding the RP Address in IPv6 MCAST Address
• RFC 4007 IPv6 Scoped Address Architecture
• RFC 4109 Algorithms for IKEv1
• RFC 4191 Default Router Preferences and More-Specific Routes
• RFC 4193 Unique Local IPv6 Unicast Addresses
• RFC 4632 Classless Inter-Domain Routing (CIDR)
• RFC 4724 Graceful Restart Mechanism for BGP
• RFC 4760 Multiprotocol Extensions for BGP-4
• RFC 4835 CryptoAlgorithm Requirements for ESP and AH
• RFC 4861 Neighbor Discovery for IPv6
• RFC 4862 IPv6 Stateless Address Autoconfiguration
• RFC 4884 Extended ICMP Multi-Part Messages
• RFC 4893 BGP Support for Four-octet AS Number Space
• RFC 5059 Bootstrap Router (BSR) Mechanism for (PIM)
• RFC 5065 Autonomous System Confederations for BGP
Page 11
Standards and Protocols (cont.)
• RFC 5095 Deprecation of Type 0 Routing Headers in IPv6
• Multicast Group, Sender and Receiver Policy Control
• RFC 5186 IGMPv3/MLDv2/MCAST Routing Protocol Interaction
Class of Service
• RFC 5187 OSPFv3 Graceful Restart
• RFC 5240 PIM Bootstrap Router MIB
• RFC 5250 The OSPF Opaque LSA Option
• RFC 5291 Outbound Route Filtering Capability for BGP-4
• RFC 5292 Address-Prefix-Outbound Route Filter for BGP-4
• Strict Priority Queuing
• Weighted Fair Queuing with Shaping
• Up to 3,072 rate limiters for S130 Class products and up to 12,288
rate limiters for S150 Class products
• RFC 5301 Dynamic Hostname Exchange Mechanism for IS-IS
• Packet Count or Bandwidth based Rate Limiters. (Bandwidth
Thresholds between 8 Kbps and 4 Gbps)
• RFC 5302 Domain-wide Prefix Distribution with IS-IS
• IP ToS/DSCP Marking/Remarking
• RFC 5303 3Way Handshake for IS-IS P2P Adjacencies
• 802.1D Priority-to-Transmit Queue Mapping
• RFC 5304 IS-IS Cryptographic Authentication
• RFC 5306 Restart Signaling for IS-IS
• RFC 5308 Routing IPv6 with IS-IS
• RFC 5309 P2P operation over LAN in link-state routing
• RFC 5310 IS-IS Generic Cryptographic Authentication
• RFC 5340 OSPF for IPv6
• RFC 5396 Textual Representation AS Numbers
• RFC5398 AS Number Reservation for Documentation Use
Enterasys Network Management Suite (NMS)
• NMS Console
• NMS Policy Manager
• NMS Inventory Manager
• NMS Automated Security Manager
• NMS NAC Manager
• RFC 5492 Capabilities Advertisement with BGP-4
Management, Control and Analysis
• RFC 5798 Virtual Router Redundancy Protocol (VRRP) Version 3
• SNMP v1/v2c/v3
• RFC 6164 Using 127-Bit IPv6 Prefixes on Inter-Router Links
• Web-based Management Interface
• RFC 6296 IPv6-to-IPv6 Network Prefix Translation
• Industry Common Command Line Interface
• RFC 6549 OSPFv2 Multi-Instance Extensions
• Multiple Software Image Support with Revision Roll Back
Network Security and Policy Management
• 802.1X Port-based Authentication
• Web-based Authentication
• MAC-based Authentication
• Convergence Endpoint Discovery with Dynamic Policy Mapping
(Siemens HFA, Cisco VoIP, H.323, and SIP)
• Multiple Authentication Types per Port Simultaneously
• Multiple Authenticated users per Port with unique policies per user/
End System (VLAN association independent)
• RFC 3580 IEEE 802.1 RADIUS Usage Guidelines, with VLAN to
Policy Mapping
• Multi-configuration File Support
• Editable Text-based Configuration File
• COM Port Boot Prom and Image Download via ZMODEM
• Telnet Server and Client
• Secure Shell (SSHv2) Server and Client
• Cabletron Discovery Protocol
• Cisco Discovery Protocol v1/v2
• FTP Client
• Simple Network Time Protocol (SNTP)
• Netflow version 5 and version 9
• Worm Prevention (Flow Set-Up Throttling)
• Broadcast Suppression
• RFC 2866 RADIUS Accounting
• ARP Storm Prevention
• TACACS+ for Management Access Control
• MAC-to-Port Locking
• Management VLAN
• Span Guard (Spanning Tree Protection)
• 15 Many to-One-port, One-to-Many Ports, VLAN Mirror Sessions
• Stateful Intrusion Detection System Load Balancing
• Remote Port Mirroring ready
• Stateful Intrusion Prevention System and Firewall Load Balancing
IETF and IEEE MIB Support
• Behavioral Anomaly Detection/Flow Collector (non-sampled Netflow)
• Static Multicast Group Provisioning
• RFC 1156/1213 & RFC 2011 IP-MIB
Page 12
Standards and Protocols (cont.)
• RFC 1493 Bridge MIB
• RFC 4750 OSPFv2 MIB
• RFC 1659 RS-232 MIB
• RFC 5060 PIM MIB
• RFC 1724 RIPv2 MIB
• RFC 5240 PIM Bootstrap Router MIB
• RFC 5643 OSPFv3 MIB
• RFC 2578 SNMPv2 SMI
• RFC 2579 SNMPv2-TC
• RFC 3417 SNMPv2-TM
• USM Target Tag MIB
• RFC 3418 SNMPv2 MIB
• U Bridge MIB
• RFC 2012 TCP MIB
• Draft-ietf-idmr-dvmrp-v3-10 MIB
• RFC 2013 UDP MIB
• Draft-ietf-pim-sm-v2-new-09 MIB
• RFC 2096 IP Forwarding Table MIB
• RFC 3411 SNMP Framework MIB
• IANA-address-family-numbers MIB
• RFC 3413 SNMPv3 Applications
Private MIBs
• RFC 3414 SNMP User-Based SM MIB
• RFC 2276 SNMP-Community MIB
• RFC 2618 RADIUS Client MIB
• RFC 2620 RADIUS Accounting MIB
• RFC 2674 802.1p/Q MIB
• RFC 2737 Entity MIB
• RFC 2819 RMON MIB (Groups 1-9)
• RFC 2863 IF MIB
• RFC 2864 IF Inverted Stack MIB
• RFC 2922 Physical Topology MIB
• RFC 3291 INET Address MIB
• RFC 3621 Power Ethernet MIB
• RFC 3415 SNMP View Based ACM MIB
• RFC 3635 EtherLike MIB
• RFC 3636 MAU MIB
• RFC 4022 MIB for the Transmission Control Protocol (TCP)
• RFC 4087 IP Tunnel MIB
• RFC 4113 MIB for the User Datagram Protocol (UDP)
• RFC 4275 BGP-4 MIB Implementation Survey
• RFC 4292 IP Forwarding MIB
• RFC 4293 MIB for Internet Protocol (IP)
• RFC 4444 MIB for IS-IS
• Ct-broadcast MIB
• Ctron-CDP MIB
• Ctron-Chassis MIB
• Ctron-igmp MIB
• Ctron-q-bridge-mib-ext MIB
• Ctron-rate-policying MIB
• Ctron-tx-queue-arbitration MIB
• Ctron-alias MIB
• Cisco-TC MIB
• Cisco-CDP MIB
• Cisco-netflow MIB
• Enterasys-configuration-management MIB
• Enterasys-MAC-locking MIB
• Enterasys-convergence-endpoint MIB
• Enterasys-notification-authorization MIB
• Enterasys-netfow MIB
• Enterasys-license-key MIB
• Enterasys-aaa-policy MIB
• Enterasys-class-of-service MIB
• Enterasys-multi-auth MIB
• Enterasys-mac-authentication MIB
• Enterasys-pwa MIB
• Enterasys-upn-tc MIB
• Enterasys-policy-profile MIB
Page 13
Physical Specifications
• S8-Chassis dimensions (H x W x D): 63.96 cm x 44.70 cm x 47.32 cm
(25.19” x 17.60” x 18.63”), 14.5U
• Storage Temperature: -30 °C to +73 °C (-22 °F to 164 °F)
• Operating Humidity: 5% to 95% relative humidity, non-condensing
• Storage Humidity: 5% to 95% relative humidity, non-condensing
• S8-Chassis-POE4 dimensions (H x W x D): 72.87 cm x 44.70 cm x
47.32 cm (28.69” x 17.60” x 18.63”), 16.5U
• Power Requirements: 100 to 125 VAC or 200 to 250 VAC; 50 to 60 Hz
• S8-Chassis-POE8 dimensions (H x W x D): 77.31 cm x 44.70 cm x
47.32 cm (30.44” x 17.60” x 18.63”), 17.5U
Agency and Standards Specifications
• S6-Chassis dimensions (H x W x D): 88.7 cm x 44.70 cm x 47.35 cm
(34.92” x 17.59” x 18.64”), 20U
• S6-Chassis-POE4 dimensions (H x W x D): 97.5 cm x 44.70 cm x
47.35 cm (38.39” x 17.59” x 18.64”), 22U
• S4-Chassis dimensions (H x W x D): 40.00 cm x 44.70 cm x 47.32 cm
(15.75” x 17.60” x 18.63”), 9U
• S4-Chassis-POE4 dimensions (H x W x D): 48.90 cm x 44.70 cm x
47.32 cm (19.25” x 17.60” x 18.63”), 11U
• Operational Altitude: 10K Feet
• Safety: UL 60950-1, FDA 21 CFR 1040.10 and 1040.11, CAN/CSA
C22.2 No. 60950-1, EN 60950-1, EN 60825-1, EN 60825-2, IEC
60950-1, 2006/95/EC (Low Voltage Directive)
• Electromagnetic compatibility: FCC 47 CFR Part 15 (Class A), ICES003 (Class A), EN 55022 (Class A), EN 55024, EN 61000-3-2, EN
61000-3-3, AS/NZ CISPR-22 (Class A). VCCI V-3. CNS 13438 (BSMI),
2004/108/EC (EMC Directive)
Power over Ethernet (PoE) Specifications
• S3-ChassisA dimensions (H x W x D): 31.11 cm x 44.70 cm x 47.32
cm (12.25” x 17.60” x 18.63”), 7U
• IEEE 802.3af
• S3-Chassis-POEA dimensions (H x W x D): 37.46 cm x 44.70 cm x
47.32 cm (14.75” x 17.60” x 18.63”), 9U
• Total PoE Power: 16,000 Watts @ 240vAC input or 9,600 Watts @
120vAC input (8 Bay PoE power system)
• S1-Chassis dimensions (HxWxD): 8.69cm x 44.88cm x 60.27cm
(3.42” x 17.67” x 23.73”), 2U
• Total PoE Power: 8,000 Watts @ 240vAC input or 4,800 Watts @ 120vAC
input (4 Bay PoE power system)
• S-Series Stand Alone (SSA) dimensions (SSA130/SSA150) (H x W x
D): 4.44 cm x 44.70 cm x 59.43 cm (1.75” x 17.60” x 23.40”), 1U
• Maximum available PoE power for the SSA switch is 650 watts with two
power supplies installed in redundant mode and 1,650 watts in additive
mode when using 1000 watt power supplies
• S-Series Stand Alone (SSA) dimensions (SSA180) (H x W x D): 4.37
cm x 44.73 cm x 57.30 cm (1.72” x 17.61” x 22.55”), 1U
Environmental Specifications
• Operating Temperature: +5 °C to +40 °C (41 °F to 104 °F)
Ordering Information
Part Number
• IEEE 802.3at
• Automated or manual PoE power distribution
• Per-port enable/disable, power level, priority safety, overload, and shortcircuit protection
• System power monitor
S8 Chassis
S-Series S8 Chassis and fan trays (Power supplies ordered separately)
S-Series S8 Chassis and fan trays with 4 bay PoE subsystem (System and PoE Power supplies ordered separately)
S-Series S8 Chassis and fan trays with 8 bay PoE subsystem (System and PoE Power supplies ordered separately)
S-Series 8 bay PoE upgrade kit for the S8 (PoE Power supplies ordered separately)
S-Series 4 bay PoE upgrade kit for the S8 (PoE Power supplies ordered separately)
S-Series S8 Chassis 19” midmount installation rack kit, can be used with all S8 chassis types
S6 Chassis
S-Series S6 Chassis and fan trays. Front to back cooling. (Power supplies ordered separately)
S-Series S6 Chassis and fan tray with 4 bay POE subsystem. Front to back cooling. (System and POE power supplies ordered separately)
S-Series S6 Chassis 19” midmount installation rack kit, can be used with all S6 chassis types
S-Series Fan Tray (For use w/ S6)
S4 Chassis
S-Series S4 Chassis and fan tray (Power supplies added separately)
S-Series S4 Chassis and fan tray with 4 bay PoE subsystem (System and PoE Power supplies ordered separately)
S-Series 4 bay PoE upgrade kit for the S4 (PoE Power supplies ordered separately)
S-Series S4 Chassis 19" midmount installation rack kit, can be used with all S4 chassis types
S3 Chassis
S-Series S3 Chassis(A) and fan tray (Power supplies ordered separately)
S-Series S3 Chassis(A) and fan tray with 4 bay POE subsystem (System and POE power supplies ordered separately)
S-Series 4 bay PoE upgrade kit for the S3 (PoE Power supplies ordered separately)
S-Series S3 Chassis 19" midmount installation rack kit, can be used with all S3 chassis types
Page 14
Ordering Information (cont.)
Part Number
S-Series S1 Chassis and fan tray. Compatible with Fabric Modules only. (SSA 1000W Power supplies ordered separately)
S-Series S1 Chassis 19” accessory mounting kit. Supports midmount and rail kit installation options for 2 and 4 post racks, can be used
with the S1 chassis
S1 Chassis fan tray, Spare (For use w/ S1)
Power Supplies & Fans
S-Series AC power supply, 20A, 100-240 VAC input (1200/1600 W) (For Use w/ S3/S4/S6/S8)
S-Series AC power supply, 15A, 100-240VAC input(930/1600W) (For use w/ S3/S4/S6/S8)
S-Series PoE power supply, 20A, 100-240 VAC input, (1200/2000 W) (For Use in 4/8 Bay PoE power subsystems)
S-Series 48-60v DC Power Supply (For Use w/ S3/S4/S6/S8) (1200W)
S-Series Fan Tray (For use w/ S3/S4/S8)
S130 Class I/O Fabric Modules
S-Series I/O-Fabric S130 Class Module, 1280Gbps Load Sharing - 48 Ports 10/100/1000BASE-TX via RJ45 with PoE (802.3at) and one Type2
option slot (Used in S1/S4/S6/S8)
S130 Class I/O Modules
S-Series I/O S130 Class Module - 48 Ports 10/100/1000BASE-T via RJ45 with PoE (802.3at) and one Type1 option slot (Used in S3/S4/S6/S8)
S-Series I/O S130 Class Module - 48 Ports 1000BASE-X ports via SFP and one Type1 option slot (Used in S3/S4/S6/S8)
S150 Class I/O Fabric Modules
S-Series I/O-Fabric S150 Module, 1280Gbps Load Sharing - 48 Ports 10/100/1000BASE-T via RJ45 with PoE (802.3at) and two Type2 option
slots (Used in S1/S4/S6/S8)
S-Series I/O-Fabric S150 Module, 1280Gbps Load Sharing - 48 Ports 1000BASE-X ports via SFP and two Type2 options slots (Used in S1/S4/S6/S8)
S-Series I/O-Fabric S150 Module, 1280Gbps Load Sharing - 8 Ports 10GBASE-X Ethernet via SFP+ and two Type2 option slots (Used in S1/S4/S6/S8)
S150 Class I/O Modules
S-Series I/O S150 Module - 48 Ports 10/100/1000BASE-T via RJ45 with PoE (802.3at) and two Type2 option slots (Used in S4/S6/S8)
S-Series I/O S150 Module - 48 Ports 1000BASE-X ports via SFP and two Type2 options slots (Used in S4/S6/S8)
S-Series I/O S150 Module - 16 Ports 10GBASE-X Ethernet via SFP+ (Used in S4/S6/S8)
S155 Class I/O Fabric Modules
S-Series S155 Class I/O-Fabric Module, 1280Gbps Load Sharing - 8 Ports 10GBASE-X via SFP+ and two Type2 option slots (Used in S1/S4/S6/S8)
S-Series S155 Class I/O-Fabric Module, 1280Gbps Load Sharing - 48 Ports 10/100/1000BASE-T via RJ45 with PoE (802.3at) and two Type2
option slots (Used in S1/S4/S6/S8)
S-Series S155 Class I/O-Fabric Module, 1280Gbps Load Sharing - 48 Ports 1000BASE-X via SFP and two Type2 options slots (Used in S1/S4/S6/S8)
Option Modules
S-Series Option Module (Type1) - 2 Ports 10GBASE-X via SFP+ (Compatible with Type1 & Type2 option slots)
S-Series Option Module (Type1) - 4 Ports 10GBASE-X via SFP+ (Compatible with Type1 & Type2 option slots)
S-Series Option Module (Type2) - 4 Ports10GBASE-X via SFP+ (Compatible with Type2 option slots)
S-Series Option Module (Type1) - 12 Ports 1000BASE-X via SFP (Compatible with Type1 & Type2 option slots)
S-Series Option Module (Type2) - 10 Ports 1000BASE-X via SFP and 2 ports 10GBASE-X via SFP+ (Compatible with Type2 option slots)
S-Series Option Module (Type1) - 12 Ports 10/100/1000BASE-T via RJ45 with PoE (802.3at) (Compatible with Type1 & Type2 option slots)
S-Series Option Module (Type2) - 10 Ports 10/100/1000BASE-T via RJ45 with PoE and 2 ports 10GBASE-X via SFP+ (Compatible with Type2 option
SSA (S-Series Stand Alone)
S-Series Stand Alone (SSA) - S130 Class - 48 Ports 10/100/1000BASE-T via RJ45 with PoE (802.3at) and 4 10GBASE-X Ethernet ports via SFP+
(Power supplies not included - Please order separately)
S-Series Stand Alone (SSA) - S150 Class - 48 Ports 10/100/1000BASE-T via RJ45 with PoE (802.3at) and 4 10GBASE-X Ethernet ports via
SFP+ (Power supplies not included - Please order separately)
S-Series Stand Alone (SSA) - S150 Class - 48 Ports 1000BASE-X via SFP and 4 10GBASE-X Ethernet ports via SFP+ (Power supplies not
included - Please order separately)
S-Series Standalone (SSA S130 and S150 Class) - AC power supply, 15A, 100-240VAC input, (625W)
S-Series Standalone (SSA S130 and S150 Class) and S1-Chassis - AC and PoE power supply, 15A, 110-240VAC input, (1000/1200W)
Page 15
Ordering Information (cont.)
S-Series Stand Alone (SSA130/SSA150) - Replacement fan assembly (Single Fan)
S-Series S180 Class Standalone (SSA) - 48 Ports 10/100/1000BASE-T via RJ45 and 4 ports 10GBASE-X via SFP+, Front to Back cooling (Power
supplies not included - Please order separately)
S-Series S180 Class Standalone (SSA)
- 48 Ports 1000BASE-X via SFP and 4 ports 10GBASE-X via SFP+, Front to Back cooling (Power supplies not included - Please order separately)
S-Series Standalone (SSA180 Front to Back) - AC power supply, 15A, 100-240VAC input, I/O side exhaust
S-Series Standalone (SSA180 Front to Back) - AC power supply, 15A, 100-240VAC input, I/O side intake
Part Number
Optional Licenses
S-Series Advanced Routing License, (For use on S150 Class Modules), (Enables L3 GRE tunnels)
S-Series Advanced Routing License (For use on S130 Class Modules) (Enables VRF, BGP)
S-Series Per Port User Capacity License Upgrade (For use on S130 Class Modules)
S-Series Multi-slot Virtual Switch Bonding License Upgrade (For use on S130/S150 Class Modules)
S-Series SSA Virtual Switch Bonding License Upgrade (For use on SSA Only)
SSA SSA150/SSA180 double user capacity license
S-Series S1 Chassis Virtual Switch Bonding License Upgrade (For use on S1-Chassis Only)
S1 Chassis and fan tray, (2) 1000W power supplies, 16 ports SFP+ (SK1208-0808-F6 and (2) SOK2208-0204)
S3 Chassis SFP Bundle, 108 Ports SFP, 4 ports SFP+
S4 Chassis SFP+ Bundle, 64 Ports SFP+
S6 Chassis SFP+ Bundle, 96 Ports SFP+
S8 Chassis Triple Speed Bundle, 348 Ports Triple Speed, 4 ports SFP+
Service and Support
Enterasys transceivers provide connectivity options for Ethernet over
twisted pair copper and fiber optic cables with transmission speeds
from 100 Megabits per second to 10 Gigabits per second. All Enterasys
transceivers meet the highest quality for extended life cycle and the best
possible return on investment. For detailed specifications, compatibility
and ordering information please go to http://www.enterasys.com/products/
Enterasys Networks provides comprehensive service offerings that range
The Enterasys S-Series comes with a one year hardware warranty. For full
warranty terms and conditions please go to http://www.enterasys.com/
from Professional Services to design, deploy and optimize customer
networks, customized technical training, to service and support tailored
to individual customer needs. Please contact your Enterasys account
executive for more information about Enterasys Service and Support.
Additional Information
For additional information on the Enterasys S-Series please visit
Contact Us
For more information, call Enterasys Networks toll free at 1-877-801-7082,
or +1-978-684-1000 and visit us on the Web at enterasys.com
Patented Innovation
© 2012 Enterasys Networks, Inc. All rights reserved. Enterasys Networks reserves the right to change
specifications without notice. Please contact your representative to confirm current specifications.
Please visit http://www.enterasys.com/company/trademarks.aspx for trademark information.
Delivering on our promises. On-time. On-budget.