Spec Sheet
4
Data SheetEX2300 Ethernet Switch
Features and Benefits
High Availability Features
To avoid the complexities of the Spanning Tree Protocol (STP)
without sacrificing network resiliency, the EX2300 employs a
redundant trunk group (RTG) to provide the necessary port
redundancy and simplify switch configuration. It also supports
cross-member link aggregation, which allows redundant link
aggregation connections between devices in a single Virtual
Chassis configuration, providing an additional level of reliability
and availability.
Junos Operating System
The EX2300 switches run the same Junos OS that is used by
other Juniper Networks EX Series Ethernet Switches, QFX Series
Switches, Juniper Routers, Juniper SRX Firewalls, and the Juniper
NFX Series Network Services Platform. By utilizing a common
operating system, Juniper delivers a consistent implementation
and operation of control plane features across all products. To
maintain that consistency, the Junos OS adheres to a highly
disciplined development process that uses a single source code,
and it employs a highly available modular architecture that
prevents isolated failures from bringing down an entire system.
These attributes are fundamental to the core value of the
software, enabling all Junos OS-powered products to be updated
simultaneously with the same software release. All features are
fully regression-tested, making each new release a true superset
of the previous version. Customers can deploy the software with
complete confidence that all existing capabilities are maintained
and operate in the same way.
Converged Environments
The EX2300 provides the highest levels of flexibility and features
in its class for the most demanding converged data, voice, and
video environments, delivering a reliable platform for unifying
enterprise communications.
By providing a full 15.4 watts of Class 3 PoE to VoIP telephones,
closed-circuit security cameras, wireless access points, and
other IP-enabled devices, the EX2300 delivers a future-proofed
solution for converging disparate networks onto a single IP
infrastructure. The EX2300 PoE switches also support 802.3at
standards-based PoE+, delivering 30 watts for powering
networked devices such as IEEE 802.11ac wireless access points,
and videophones that might require more power than available
with IEEE 802.3af.
To ease deployment, the EX2300 supports the industry-standard
Link Layer Discovery Protocol (LLDP) and LLDP-Media Endpoint
Discovery (LLDP-MED) protocol, enabling the switches to
automatically discover Ethernet-enabled devices, determine their
power requirements, and assign virtual LAN (VLAN) membership.
LLDP-MED-based granular PoE management allows the EX2300
to negotiate PoE usage down to a fraction of a watt on powered
devices, enabling more efficient PoE utilization across the switch.
In addition, the EX2300 supports rich quality-of-service (QoS)
functionality for prioritizing data, voice, and video traffic. The
switches support eight class-of-service (CoS) queues on every
port, enabling them to maintain multilevel, end-to-end traffic
prioritizations. The EX2300 also supports a wide range of policy
options, including strict priority, low latency, weighted random
early detection (WRED), and shaped-deficit weighted round-
robin (SDWRR) queuing.
Security
Working as an enforcement point in Access Policy Infrastructure,
the EX2300 provides both standards-based 802.1X port-level
access control for multiple devices per port, as well as Layer 2-4
policy enforcement based on user identity, location, device, or
a combination of these. A user’s identity, device type, machine
posture check, and location can be used to determine whether
access should be granted and for how long. If access is granted,
the switch provides access to the network based on authorization
attributes sent by the authentication server. The switch can also
apply security policies, QoS policies, or both, or it can mirror
user traffic to a central location for logging, monitoring, or threat
detection by intrusion prevention systems.
The EX2300 also provides a full complement of integrated
port security and threat detection features, including Dynamic
Host Configuration Protocol (DHCP) snooping, dynamic ARP
inspection (DAI), and media access control (MAC) limiting to
defend against internal and external spoofing, and man-in-the-
middle and denial of service (DoS) attacks.
Junos Space
Juniper also offers a comprehensive suite of network
management tools that provide a smart, simple, and open
approach for automating the deployment and operation of a
Juniper infrastructure.
These tools are based on a single network application platform
called Juniper Networks Junos Space, an open, programmable
application platform for hosting network infrastructure and
operational applications across the entire management life
cycle of the network. Explicitly designed to allow partners and
customers to build and deploy smart, simple, and easy-to-
use applications, Junos Space provides multiple management
and infrastructure applications for managing Juniper resources
and assets, including inventory management, device and
interface configuration, automated software management
and deployment, and event-driven fault management. These
platform applications are embedded within the core product,
allowing users to control any part of their environment when
used in conjunction with multiple add-on applications. Junos
Space supports a full portfolio of applications for automating
network infrastructure and operations covering the campus LAN
and data center network environments.