Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Hardware

  • QFX5130-48C and QFX5130-48CM switches (QFX Series)—The Juniper Networks® QFX5130-48C is our first 1-U fixed form-factor switch that is completely optimized for 100GbE server connections. The QFX5130-48C switch offers high-density 100GbE access ports in an SFP-DD form factor optimized for servers. The switch also has high-density 400GbE ports in a QSFP-56 form factor optimized for easy uplinks to data centers. The QFX5130-48C provides a throughput of 8 Tbps by means of:

    • Forty-eight high-density 100GbE access ports that support SFP-DD transceivers optimized for servers.

    • Eight high-density 400GbE ports that support QSFP56 transceivers optimized for easy uplinks to the spine layer in data centers.

    The QFX5130-48C runs Junos OS Evolved. We've designed it to meet the needs of demanding data center environments such as high-performance computing and research networks and cloud and service provider data centers.

    QFX5130-48CM is our first 1-U fixed form-factor switch that is completely optimized for 100GbE server connections. The Juniper Networks® QFX5130-48CM switch offers high-density 100GbE access ports in an SFP-DD form factor optimized for servers, along with high-density 400GbE ports in a QSFP-56 form factor optimized for easy uplinks to data centers. The QFX5130-48CM switch provides a throughput of 8 terabit per second (Tbps) by means of:

    • Forty-eight high-density 100GbE access ports that support SFP-DD transceivers optimized for servers.

    • Eight high-density 400GbE ports that support QSFP56 transceivers optimized for easy uplinks to the spine layer in data centers.

    • Support for Media Access Control Security (MACsec) feature.

    The QFX5130-48CM runs Junos OS Evolved. We've designed it to meet the needs of demanding data center environments such as high-performance computing and research networks and cloud and service provider data centers.

    To install the QFX5130-48C and QFX5130-48CM switch and perform initial configuration, routine maintenance, and troubleshooting, see the QFX5130 System Overview. See Feature Explorer for the complete list of features for any platform.

    Table 1: QFX5130-48C and QFX5130-48CM Feature Support

    Feature

    Description

    Chassis

    • QFX5130-48C is a high-density 100GbE Ethernet/IP switch based on a single chip that offers 8-Tbps forwarding capacity​.

    • Support for the next-generation, high-density, and cost-efficient 100GbE and 400GbE optimized fixed system

      The QFX5130-48CM switch features:

      • Forty-eight SFP56-DD 100GbE ports for server connectivity

      • Eight QSFP-DD 400GbE uplink ports

      • Up to 16-Tbps (bidirectional)/2.7-bpps throughput

      • Using breakout cables, you can increase the total number of supported 100/25/10GbE ports per switch to 72.

    • To view the hardware compatibility matrix for optical interfaces, transceivers, and DACs supported , see the Hardware Compatibility Tool.

    Class of service

    Ethernet switching and bridging

    Forwarding options

    High availability

    Interfaces

    • Support for BGP flowspec.

      [See BGP.]

    • Support for 48 SFP-DD and 8 QSFP-DD ports. Each switch also supports two 10GbE SFP+ ports. We support the following port configurations on each switch:

      • 48x100/50/25/10GbE SFP-DD ports

      • 8x400/200/100/40GbE QSFP-DD ports

      • 2x10GbE SFP+ ports

      [See Port Settings (Interface Guide for Switches).]

    • Support for MACsec on physical interfaces on QFX5120-48CM. This platform supports MACsec in dynamic connectivity association key (CAK) mode with GCM-AES-128, GCM-AES-256, GCM-AES-XPN-128, and GCM-AES-XPN-256 encryption. MACsec is supported on physical interfaces for switch-to-host and switch-to-switch links.

      [See Configuring MACsec.]

    • Each switch has 48 SFP-DD and 8 QSFP-DD ports. QFX5130-48C/ 48CM also supports two SFP+ ports with 10 GbE. It supports the following port configurations:

      • 48x100G / 50GbE / 25GbE / 10GbE on SFP-DD ports

      • 8x400G / 200GbE / 100GbE / 40GbE on QSFP-DD ports

      • 2x10GbE on SFP+ ports

      [See Port Speed on QFX5130-48C and QFX5130-48CM Switches.

    Junos Telemetry Interface (JTI)

    • JTI streaming support for hardware Routing Engine-based sensors. Subscribe to /components/sensor to stream hardware operational stages. Statistics include Routing Engine, power supply unit (PSU), Control Board (CB), FPC, and PIC states.

      [See Junos YANG Data Model Explorer.]

    Multicast

    Network management and monitoring

    Protection against DDoS attacks

    Platform and infrastructure

    • Platform resiliency support for hardware components of each FRU.

      If a failure is detected on a hardware component, Junos OS Evolved:

      • Logs the message to give clear indication of failure details, including time stamp, module name, component name, and failure details.

      • Raises or clears alarms, if applicable.

      • Performs local action, such as self-healing and taking the component out of service.

    Precision Time Protocol

    • Transparent Clock support

      Transparent clocks improve synchronization between the timeTransmitter and timeReceiver clocks and ensure that the timeTransmitter and timeReceiver clocks are not impacted by the effects of packet delay variation.

      • With or without VLAN encapsulation

      • With PTP over IPv4

      • With PTP unicast or multicast

      • On LAG and MC-LAG

      • On all physical, IRB, and aggregated Ethernet interfaces

    • IEEE 1588 PTP Ordinary Clock/Boundary Clock Enterprise and media profiles. Includes support for:

      • Enterprise profile using PTP ordinary clock and PTP boundaryclock applications

      • Enterprise profile using PTP over IPv4 multicast transport

      • SMPTE profile, AES67, and AES67+SMPTE combined profiles

      • Media profiles using PTP ordinaryclock and PTP boundary clock applications

      • Media profiles using PTP over IPv4 multicast transport

      [See PTP Profiles.]

    • Support for PTP over IRB. QFX5130-48C supports Precision Time Protocol (PTP) over integrated routing and bridging (IRB) interfaces.

      PTP boundary clock (BC) applications often need multiple PTP streams to share a local IP address for broadcast media. These packets are forwarded through Layer2 (L2) switching. Unlike traditional PTP configurations on physical interfaces, no physical interface logical units (IFLs) are created for each PTP physical interface. You can achieve this configuration through integrated routing and bridging (IRB) interfaces.

      [See PTP over IRB for Broadcast Profiles.]

    Routing options

    Routing protocols

    Routing policy and firewall filters

    System management

    • Support for dynamic load balancing (DLB).

      [See enhanced-hash-key.]

    • Support for configuring firewall filters and interfaces programmatically using JET APIs.

      [See Overview of JET APIs.]

    Software installation and upgrade

    • ZTP support.

      [See Zero Touch Provisioning.]

    • Secure zero-touch provisioning—You can use RFC-8572-based secure zero-touch provisioning (SZTP) to bootstrap your remotely located network devices that are in a factory-default state. SZTP enables mutual authentication between the bootstrap server and the network device before the remote network device is accessed for initiating ZTP.To enable mutual authentication, you need a unique digital voucher, which is generated based on the DevID (Digital Device ID or Cryptographic Digital Identity) of the network device. The DevID is embedded inside the Trusted Platform Module (TPM) 2.0 chip on the network device. Juniper Networks issues a digital voucher to customers for each eligible network device.

      You can switch between using SZTP and ZTP on secure platforms. The default behavior on this device is ZTP. To override the default behavior of your secure device, issue the request system zeroize ztp-option secure-enable command.

      [See Secure Zero Touch Provisioning, Generate Secure ZTP Vouchers, and Switching between Secure Zero Touch Provisioning and Zero Touch Provisioning.]

    Services applications

    VPNs

  • QFX5230-64CD switch (QFX Series)—The QFX5230-64CD switch offers high-density 400GbE access ports in an SFP-DD form factor optimized for high-end spine and super-spine layers of the IP fabric multitier architecture in a 2-RU fixed form factor. The QFX5230-64CD switch provides a throughput of 25.6 Tbps and supports 64 400GbE access ports, along with support for 200-Gbps, 100-Gbps, 40-Gbps, 25-Gbps, and 10-Gbps speeds using breakout cables.

    Table 2: QFX5230-64CD Feature Support

    Feature

    Description

    CoS

    • Support for CoS features on Layer 2 and Layer 3 interfaces. Both IPv4 and IPv6 unicast routing are supported. Other supported CoS features include:

      • Classification and rewrite rules for Differentiated Services code point (DSCP) and IEEE-802.1p.

      • Port scheduling

      • Shared buffer

      • Priority-based flow control (PFC) based on IEEE-802.1p. DSCP-based PFC is required to support Remote Direct Memory Access (RDMA) over converged Ethernet version 2 (RoCEv2).

      • Weighted random early detection (WRED) and explicit congestion notification (ECN)

      • Telemetry support for CoS queue statistics exported using the sensor /junos/system/linecard/qmon-sw/ .

        [See Traffic Management User Guide (QFX Series Switches and EX4600 Switches).]

    EVPN

    Forwarding and sampling

    Interfaces

    • QFX5230-64CD has 64 QSFP56-DD ports and two SFP+ ports. The QSFP56-DD ports support the following speeds:

      • 400 Gbps

      • 200 Gbps

      • 100 Gbps

      • 50 Gbps

      • 40 Gbps

      The QSFP ports also support the following speeds (with breakout cables):

      • 50 Gbps

      • 25 Gbps

      • 10 Gbps

      The SFP+ ports support 10-Gbps speed.

      QFX5230-64CD supports the following channelizations:

      • 1x400GbE, 4x100GbE, 2x100GbE, and 2x50GbE on QSFP-DD ports

      • 2x50GbE, 1x50GbE, and 4x25GbE on QSFP28-DD ports

      • 1x40GbE and 4x10GbE on QSFP+ ports

      [See Port Speed on QFX5230-64CD Switches.]

    Layer 2 features

    Layer 3 features

    • Support for DHCP stateless relay on IRB interfaces and bridge domains. Support includes DHCPv4 and DHCPv6.

      [See DHCP Relay Agent.]

    • Support for Layer 3 unicast forwarding and generic routing encapsulation (GRE) tunneling. We support both IPv4 and IPv6 unicast routing .

      [See Generic Routing Encapsulation (GRE).]

    • Support for Layer 3 multicast forwarding includes:

      • PIM first hop router (FHR) rendezvous point (RP) functionality

      • MSDP

      • Make-before-break (MBB) support for multicast receivers on existing Layer 3 aggregated Ethernet (aex) or link aggregation group (LAG) interfaces. Support includes member addition, member deletion, link up, and link down events.

      • PIM source-specific multicast (SSM)

      • PIM sparse mode (SM)

      • PIM dense mode (DM)

      • L3 multicast forwarding on integrated routing and bridging (IRB) interfaces:

        • IPv4 and IPv6 multicast

        • IGMP v1/v2/v3

        • Multicast Listener Discovery (MLD) v1/v2

        • Any-source multicast (ASM) and source-specific multicast (SSM) modes

      [See Multicast Routing Protocols and PIM Overview.]

    Network management and monitoring
    Optics

    • Select your product in the Hardware Compatibility Tool to view supported transceivers, optical interfaces, and DAC cables for your platform or interface module. We update the HCT and provide the first supported release information when the optic becomes available.

    • We support performance monitoring for the QDD-400G-ZR optical transceiver modules. The current and historical performance monitoring metrics are accumulated into 15-minute and 1-day interval bins. You can view the metrics by using the show interfaces transport pm command and can manage optical transport link efficiently.

      See show interfaces transport pm.

    Platform and infrastructure

    • Platform resiliency support for hardware components of each FRU in the QFX5230-64CD switch. If a failure is detected on a hardware component, Junos OS Evolved:

      • Logs the message to give clear indication of failure details, including time stamp, module name, and component name.
      • Raises and clears alarms, if applicable.
      • Raises SNMP trap.
      • Makes the LED glow to indicate FRU fault, if an LED is present.
      • Performs local actions such as self-healing or taking the component out of service.

    • Support to configure firewall filters and interfaces programmatically using the Juniper Extension Toolkit (JET) APIs.

      [See Overview of JET APIs.]

    Protection against DDoS attacks

    Precision Time Protocol (PTP)

    • Support for Precision Time Protocol transparent clock.

      [See PTP Transparent Clocks.]

    • Support for Precision Time Protocol enterprise and media profiles.

      [See PTP Profiles.]

    • Support for configuring Precision Time Protocol (PTP) over integrated routing and bridging (IRB) interfaces on AES67, SMPTE, AES67+SMPTE, and Enterprise PTP profiles.

      [See PTP over IRB for Broadcast Profiles.]

    Routing policy and firewall filters

    Services applications

    • Support for generic routing encapsulation (GRE) features:

      • GRE tunnels over Gigabit Ethernet, LAG, and VLAN

      • Tagged subinterfaces

      • Payload protocol for IPv4 and IPv6

      • Delivery protocol for IPv4

      • Multicast over GRE tunnels

      • Tunnel statistics

      • VRF with GRE

      • Time-to-live (TTL)

      [See Generic Routing Encapsulation (GRE).]

    Software installation and upgrade

    • Support for secure BIOS and secure boot implementation based on the UEFI 2.4 standard.

      [See Secure Boot.]

    • You can dynamically detect the port speed of WAN interfaces and use this information to create ZTP client ports with the same speed. ZTP automatically cycles through the WAN ports until it receives DHCPv6 options 59 and 17 and applicable suboptions to exchange ZTP-related information between itself and the DHCP client.

      See Zero Touch Provisioning Using DHCPv6 Options.

    • You can use RFC-8572-based secure zero-touch provisioning (SZTP) to bootstrap your remotely located network devices that are in a factory-default state. SZTP enables mutual authentication between the bootstrap server and the network device before the remote network device is accessed for initiating ZTP.

      To enable mutual authentication, you need a unique digital voucher, which is generated based on the DevID (Digital Device ID or Cryptographic Digital Identity) of the network device. The DevID is embedded inside the Trusted Platform Module (TPM) 2.0 chip on the network device. Juniper Networks issues a digital voucher to customers for each eligible network device.

      You can switch between using SZTP and ZTP on secure platforms. The default behavior on this device is ZTP. To override the default behavior of your secure device, issue the request system zeroize ztp-option secure-enable command.

      See Secure Zero Touch Provisioning, Generate Secure ZTP Vouchers, and Switching between Secure Zero Touch Provisioning and Zero Touch Provisioning.

    • The QFX5230-64CD devices support the following firmware upgrade commands:

      • request system firmware upgrade fpc slot 0 bcm-pfe

      • request system firmware upgrade fpc slot 0 dpll

      • request system firmware upgrade fpc slot 0 dpll-cfg

      • request system firmware upgrade fpc slot 0 opticscpld<0|1|2>

      • request system firmware upgrade psm slot <0|1>

      • request system firmware upgrade re bios

      • request system firmware upgrade re fancpld

      • request system firmware upgrade re fpga

      • request system firmware upgrade re i210

      • request system firmware upgrade re ssd <disk1|disk2>

      • request system firmware upgrade re xmcfpga

      [See request system firmware upgrade.]

  • QFX5240 switches (QFX Series)—The QFX5240-64OD and QFX5240-64QD are 800-Gigabit Ethernet (GbE) data center switches that run Junos OS Evolved. . These switches offer 64 800GbE OSFP and QSFP-DD ports. Using breakout cables, you can configure 64 800GbE ports, 128 400GbE ports, and 256100GbE ports on the QSFP5240-OD and QSFP5240-QD.

    Table 3: QFX5240 Feature Support

    Feature

    Description

    Chassis

    • Support for inbuilt Routing Engine, Control Board (CB), power supply units, fan trays, Flexible PIC Concentrators (FPCs), and PICs.

      [See QFX5240 Switch Hardware Guide].

    CoS

    • Support for CoS features on Layer 2 and Layer 3 interfaces. Supported CoS features include:

      • IPv4 and IPv6 unicast routing.

      • Classification and rewrite rules (DSCP, IEEE-802.1p)

      • Port scheduling

      • Shared buffer

      • Priority-based flow control (PFC) based on IEEE-802.1p. DSCP-based PFC is required to support Remote Direct Memory Access (RDMA) over converged Ethernet version 2 (RoCEv2).

      • Weighted random early detection (WRED) and explicit congestion notification (ECN)

      • Telemetry support for CoS queue statistics exported using the sensor /junos/system/linecard/qmon-sw/.

      [See Understanding How Class of Service Manages Congestion.]

    Forwarding and sampling

    Interfaces

    • The QFX5240 switches have 64x800GbE OSFP ports on the QFX5240-64OD and 64x800GbE QSFP-DD ports on the QFX5240-64QD. The last two ports (64 and 65) on both the QFX5240 variants are 2x10GbE SFP ports.

      The ports on the QFX5240-64OD and QFX5240-64QD support the following speeds:

      • 1x800 Gbps

      • 2x400 Gbps

      • 4x200 Gbps

      • 8x100 Gbps

      Note:

      On the QFX5240 switches, the runts (under Input errors) and fragment frames (under MAC statistics) counters do not increment in the output of the show interfaces extensive command. These counters are not supported due to a hardware limitation.

      [See Port Speed on QFX5240 Switches.]

    Layer 2 features

    • Support for Layer 2 unicast forwarding and VRRP.

      [See Understanding VRRP.]

    • Support for IGMP snooping includes:

      • IGMP snooping with IGMPv1, IGMPv2, and IGMPv3
      • IGMP proxy
      • IGMP querier at Layer 2
      • Any-source multicast (ASM) and source-specific multicast (SSM) modes
      • Virtual router (VRF-lite) IGMP snooping
      • IGMP snooping with integrated routing and bridging (IRB)

      [See IGMP Snooping Overview, Multicast Overview, and Integrated Routing and Bridging.]

    Layer 3 features

    • Support for Layer 3 unicast forwarding and generic routing encapsulation (GRE) tunneling. We support both IPv4 and IPv6 unicast routing.

      [See Generic Routing Encapsulation (GRE).]

    • Support for Layer 3 multicast forwarding includes:

      • PIM first hop router (FHR) rendezvous point (RP) functionality
      • Multicast Source Discovery Protocol (MSDP)
      • Make-before-break (MBB) support for multicast receivers on existing Layer 3 aggregated Ethernet (aex) or link aggregation group (LAG) interfaces. Support includes member addition, member deletion, link up, and link down events.
      • PIM source-specific multicast (SSM)
      • PIM sparse mode (SM)
      • PIM dense mode (DM)
      • L3 multicast forwarding on integrated routing and bridging (IRB) interfaces:
        • IPv4 and IPv6 multicast
        • IGMP v1/v2/v3
        • Multicast Listener Discovery (MLD) v1/v2
        • Any-source multicast (ASM) and source-specific multicast (SSM) modes

      [See Multicast Routing Protocols and PIM Overview.]

    • Support for DHCP stateless relay on IRB interfaces and bridge domains. The switches support DHCPv4 and DHCPv6.

      [See DHCP Relay Agent.]

    Network management and monitoring
    Optics

    • Select your product in the Hardware Compatibility Tool to view supported transceivers, optical interfaces, and DAC cables for your platform or interface module. We update the HCT and provide the first supported release information when the optic becomes available.

    Platform and infrastructure

    • Support to configure firewall filters and interfaces programmatically using the Juniper Extension Toolkit (JET) APIs.

      [See Overview of JET APIs.]

    Protection against DDoS attacks

    Routing policy and firewall filters

    Services applications

    • Support for generic routing encapsulation (GRE) features:

      • GRE tunnels over Gigabit Ethernet, LAG, and VLAN
      • Tagged subinterfaces
      • Payload protocol for IPv4 and IPv6
      • Delivery protocol for IPv4
      • Multicast over GRE tunnels
      • Tunnel statistics
      • VRF with GRE
      • Time-to-live (TTL)

      [See Generic Routing Encapsulation (GRE).]

    Software installation and upgrade

    • Support for firmware upgrade commands:

      • request system firmware upgrade re bios

      • request system firmware upgrade re i210

      • request system firmware upgrade re ssd disk1

      • request system firmware upgrade re ssd disk2

      • request system firmware upgrade cb fancpld

      • request system firmware upgrade cb fpga

      • request system firmware upgrade cb port-fpga

      • request system firmware upgrade fpc slot 0 bcm-pfe

      • request system firmware upgrade fpc slot 0 dpll

      [See request system firmware upgrade.]

    • Support for USB booting.

      Note:

      On QFX5240 switches, only UEFI boot media (UEFI USB, UEFI NVME, UEFI network, and so on) is supported. You must select USB (UEFI USB) manually from the BIOS menu or use the request node reboot re0 usb command to boot from USB.

  • QFX5700 switches (QFX Series)—Supported transceivers, optical interfaces, and DAC cables -- Select your product in the Hardware Compatibility Tool (https://apps.juniper.net/hct/product/) to view supported transceivers, optical interfaces, and DAC cables for your platform or interface module. We update the HCT and provide the first supported release information when the optic becomes available.