Overview:
FortiSwitch Data Center switches deliver outstanding throughput, resiliency and scalability for organizations with high performance data center network requirements. They are ideal for Top of Rack server or firewall aggregation applications, as well as enterprise network core or edge deployments, where high performance 10 GE and 40 GE is required. Purpose-built to meet needs of today’s bandwidth intensive data centers and enterprise networks, FortiSwitch Data Center Switches deliver highperformance with a low Total Cost of Ownership.
Security Fabric Integration
Reduces complexity and decreases management cost with network security functions managed through a single console via FortiGate. This integration allows all users to be authenticated against the same user database, regardless of whether they connect to the wired or wireless network, including temporary guest users. In addition, same security policy can apply to a user or device regardless of how or where they connect to the network.
Designed for Data Centers
Future-proofed 10 GE to satisfy the bandwidth requirements of intensive data center and network core applications and maximizes network availability with dual power supplies.
Highlights
- High capacity switch suitable for Top of Rack or enterprise network deployments.
- Maximum availability through dual hot swappable power supplies.
- Simply management via a web-based or command line interface.
- Switch security features protect vulnerable infrastructure without adding latency.
- 1 GE or 10 GE access ports, in a compact 1 RU form factor.
- 40 GE capability on the FortiSwitch-1048E.
Key Features & Benefits |
10 GE Capability |
Future-proofed 10 GE to satisfy the bandwidth requirements of intensive data center and network core applications. |
Dual Power Supply Units |
Maximizes network availability by eliminating the downtime associated with single power supplies. |
Web and CLI Management |
Configuration and visibility into the network is made simple via a web-based interface or CLI. |
Features:
|
FortiSwitch 1024D, 1048E and 3032D |
802.1x Port Authentication |
Yes |
Yes |
MAC Address-Based Authentication |
No |
Yes |
MAC Black/White Listing |
No |
Yes |
Layer 3,4 Stateful Firewall to Control Access |
No |
Yes |
TACACS+/RADIUS Admin Access |
Yes |
Yes |
DHCP Relay/DHCP Snooping |
No |
Yes |
Virtual Domain |
No |
Yes |
Layer 3, Dynamic Routing |
No |
Yes |
Inter-VLAN Routing |
No |
Yes |
Policy-Based Routing |
No |
Yes |
DNS Server |
No |
Yes |
VLANs Supported |
4K |
1K |
Auto Discovery of Multiple Switches |
1 |
16 (model dependent) |
Software Upgrade of Switches |
1 switch |
Central upgrade of each switch |
VLAN Configuration |
1 switch |
Central VLAN provisioning of entire switch network |
Policy Control of Users and Devices |
No |
Yes |
Syslog Collection |
Yes |
Yes (FortiGate syslog only) |
Switch POE Control |
Yes |
Yes** |
LAG support from FortiSwitch to FortiGate |
Yes |
Yes** |
Support for FortiGate in HA cluster |
Yes |
Yes** |
Firewall |
No |
Yes |
IPS, AV, Application Control |
No |
Yes |
** Roadmap: enabled with FOS 5.4 release
|
FortiSwitch 1024D |
FortiSwitch 1048E |
FortiSwitch 3032D |
Jumbo Frames |
Yes |
Yes |
Yes |
IEEE 802.1D MAC Bridging/STP (compatibility mode) |
Yes |
Yes |
Yes |
IEEE 802.1w Rapid Spanning Tree Protocol (RSTP, compatibility mode) |
Yes |
Yes |
Yes |
IEEE 802.1s Multiple Spanning Tree Protocol (MSTP) |
Yes |
Yes |
Yes |
IEEE 802.1p Mapping to Priority Queue |
Yes |
Yes |
Yes |
Spanning Tree Instances (MSTP/CST) |
15/1 |
15/1 |
15/1 |
IEEE 802.1Q VLAN Tagging |
Yes |
Yes |
Yes |
IEEE 802.3ad Link Aggregation with LACP |
Yes |
Yes |
Yes |
Unicast/Multicast traffic balance over trunking port (dst-ip, dst-mac, src-dst-ip, src-dst-mac, src-ip, src-mac) |
Yes |
Yes |
Yes |
IEEE 802.1AX Link Aggregation |
Yes |
Yes |
Yes |
IEEE 802.3x Flow Control and back-pressure |
Yes |
Yes |
Yes |
IEEE 802.3u 100Base-TX |
No |
No |
No |
IEEE 802.3z 1000Base-SX/LX |
Yes |
Yes |
Yes |
IEEE 802.3ab 1000Base-T |
Yes |
Yes |
No |
802.3ae 10 Gigabit Ethernet |
Yes |
Yes |
Yes |
802.3 CSMA/CD Access Method and Physical Layer Specifications |
Yes |
Yes |
Yes |
Storm Control |
Yes |
Yes |
Yes |
MAC, IP, Ethertype-based VLANS |
Yes |
Yes |
Yes |
Virtual-Wire |
Yes |
Yes |
Yes |
Private VLAN |
Yes |
Yes |
Yes |
Static Routing (Hardware-based) |
Yes |
Yes |
Yes |
Number of Direct Attached Hosts |
pv4=16K, ipv6=8K |
pv4=16K, ipv6=8K |
pv4=16K, ipv6=8K |
Dynamic Routing |
No |
No |
No |
L3 Host/ARP Entries |
16K |
16K |
16K |
IGMP Snooping (v1/v2/v3) |
Please refer to the Release Notes. |
Port Mirroring |
Yes |
Yes |
Yes |
Admin Authentication Via RFC 2865 RADIUS |
Yes |
Yes |
Yes |
sFlow |
Yes |
Yes |
Yes |
ACL Tables |
Yes, 2K entries |
Yes, 2K entries |
Yes, 2K entries |
802.1x Authentication (Port and Mac-based) |
Yes |
Yes |
Yes |
MAC-IP Binding |
Yes |
Yes |
Yes |
Telnet / SSH |
Yes |
Yes |
Yes |
SNMP v1/v2c/v3 |
Yes |
Yes |
Yes |
CLI and web GUI interface |
Yes |
Yes |
Yes |
Managed from FortiGate |
Yes |
Yes |
Yes |
Support for HTTP REST APIs for Configuration and Monitoring |
Yes |
Yes |
Yes |
RFC 2571 Architecture for Describing SNMP Framework |
Yes |
Yes |
Yes |
RFC 2131 DHCP |
Yes |
Yes |
Yes |
RFC 854 TELNET Server |
Yes |
Yes |
Yes |
RFC 2865 RADIUS |
Yes |
Yes |
Yes |
RFC 1643 Ethernet-like Interface MIB |
Yes |
Yes |
Yes |
RFC 3176 sFlow |
No |
No |
No |
RFC 1213 MIB-II |
Yes |
Yes |
Yes |
RFC 1354 IP Forwarding Table MIB |
Yes |
Yes |
Yes |
RFC 2572 SNMP Message Processing and Dispatching |
Yes |
Yes |
Yes |
RFC 1573 SNMP MIB II |
Yes |
Yes |
Yes |
RFC 1157 SNMPv1/v2c |
Yes |
Yes |
Yes |
RFC 2030 SNTP |
Yes |
Yes |
Yes |
* Tested with Solarwinds NPM tool. Please refer to FortiSwitch Admin Guide for details on setup.
Deployment:
FortiLink Mode
The FortiSwitch Secure Access Switch series integrates directly into the FortiGate* Connected UTM, with switch administration and access port security managed from the familiar FortiGate interface. Regardless of how users and devices connect to the network, you have complete visibility and control over your network security and access through this single pane of glass, perfectly suited to threatconscious organizations of any size.
Standalone Mode
Virtualization and cloud computing have created dense high-bandwidth Ethernet networking requirements in the data center, pushing the limits of existing data center switching. FortiSwitch Data Center switches meet these challenges by providing a high performance 10 or 40 GE capable switching platform, with a low Total Cost of Ownership. Ideal for Top of Rack server or firewall aggregation applications, as well as enterprise network core or distribution deployments, these switches are purpose-built to meet the needs of today’s bandwidth intensive environments.