Spec Sheet

ManualsBrandsJuniper ManualsEthernet SwitchEX3300 Ethernet Switch

Data SheetEX3300 Ethernet Switch

Layer 3 Features: IPv6 Routing

• RIPng

• OSPF v3

• BGP v6

• IPv6 Layer 3 redundancy: VRRP v6

• Virtual Router support for IPv6 unicast

• PIM for IPv6 multicast

• MBGP

Supported RFCs

• RFC 2925 MIB for remote ping, trace

• RFC 1122 Host requirements

• RFC 768 UDP

• RFC 791 IP

• RFC 783 Trivial File Transfer Protocol (TFTP)

• RFC 792 Internet Control Message Protocol (ICMP)

• RFC 793 TCP

• RFC 826 Address Resolution Protocol (ARP)

• RFC 894 IP over Ethernet

• RFC 903 Reverse ARP (RARP)

• RFC 906 TFTP bootstrap

• RFC 1027 Proxy ARP

• RFC 2068 HTTP server

• RFC 1812 Requirements for IP Version 4 routers

• RFC 1519 Classless Interdomain Routing (CIDR)

• RFC 1256 IPv4 ICMP Router Discovery (IRDP)

• RFC 1058 RIP v1

• RFC 2453 RIP v2

• RFC 1492 TACACS+

• RFC 2138 RADIUS authentication

• RFC 2139 RADIUS accounting

• RFC 2710 Multicast Listener Discovery Version (MLD) for IPv6

• RFC 3579 RADIUS Extensible Authentication Protocol (EAP)

support for 802.1X

• RFC 5176 Dynamic Authorization Extensions to RADIUS

• RFC 2267 Network ingress ﬁltering

• RFC 2030 SNTP

• RFC 854 Telnet client and server

• RFC 951, 1542 BootP

• RFC 2131 BootP/DHCP relay agent and DHCP server

• RFC 1591 Domain Name System (DNS)

• RFC 2474 DiServ Precedence, including 8 queues/port

• RFC 2598 DiServ Expedited Forwarding (EF)

• RFC 2597 DiServ Assured Forwarding (AF)

• LLDP-MED, ANSI/TIA-1057, dra 08

• RFC 2328 OSPF v2

• RFC 3768 VRRP

• RFC 3810 Multicast Listener Discovery Version 2 (MLDv2)

for IPv6

• RFC 4271 BGP4

• RFC 4601 PIM-SM

• RFC 3973 PIM-DM

• RFC 3569 PIM-SSM

• RFC 3618 Multicast Source Discovery Protocol (MSDP)

Security

• MAC limiting

• Allowed MAC addresses, conﬁgurable per port

• Dynamic ARP inspection (DAI)

• Proxy ARP

• Static ARP support

• DHCP snooping

• IP source guard

• 802.1X port-based

• 802.1X multiple supplicants

• 802.1X with VLAN assignment

• 802.1X with authentication bypass access (based on host

MAC address)

• 802.1X with VoIP VLAN support

• 802.1X dynamic access control list (ACL) based on RADIUS

attributes

• 802.1X supported EAP types: Message Digest 5 (MD5),

Transport Layer Security (TLS), Tunneled Transport Layer

Security (TTLS), Protected Extensible Authentication

Protocol (PEAP)

• Access control lists, (Junos OS ﬁrewall ﬁlters)

• Port-based ACL (PACL)—ingress and egress

• VLAN-based ACL (VACL)—ingress and egress

• Router-based ACL (RACL)—ingress and egress

• ACL entries (ACE) in hardware per system: 1,500

• ACL counter for denied packets

• ACL counter for permitted packets

• Ability to add/remove/change ACL entries in middle of list

(ACL editing)

• L2-L4 ACL

• Trusted Network Connect (TNC) certiﬁed

• Static MAC authentication

• MAC-RADIUS

• Control plane denial-of-service (DoS) protection

• Firewall ﬁlter on me0 interface (control plane protection)

• Captive Portal – Layer 2 interfaces

• Fallback authentication

High Availability

• External redundant power system option

• Link aggregation:

- 802.3ad (LACP) support

• Number of link aggregation groups (LAGs) supported: 32

• Maximum number of ports per LAG: 8

- LAG load sharing algorithm—bridged unicast trac

• IP: S/D MAC, S/D IP

• TCP/UDP: S/D MAC, S/D IP, S/D port

• Non-IP: S/D MAC