No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search


To have a better experience, please upgrade your IE browser.


CX311 Switch Module V100R001C00 User Guide 22

This document describes the CX311 10GE / FCoE converged switch module of the Tecal E9000 server in terms of its features, installation, removal, and configuration.
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).


The CX311 is a switching control unit that provides data switching functionality for compute node slots in the system and centrally provides service and management ports to connect to external devices.

The CX311 switch modules are installed in the rear slots of the E9000 chassis and connected to compute nodes, storage nodes, and management modules through the E9000 midplane. The switch modules perform switching of internal data packets and control and management packets to provide high-speed data transmission.

Table 2-1 describes functions of the CX311 converged switching plane. Table 2-2 describes functions of the CX311 FCoE gateway.

Table 2-1 Converged switching plane function description



Ethernet features


  • Operating modes of full-duplex and auto-negotiation
  • Ethernet ports of GE and 10GE rates

10GE optical ports support passive direct attached cables (DACs), GE and 10GE multi-mode and single-mode optical modules, and SFP electrical modules.

  • Port traffic control
  • Jumbo frames
  • Link aggregation
  • Load balancing among links within a trunk
  • Interface isolation and forwarding restrictions
  • Broadcast storm suppression

Virtual Local Area Network (VLAN)

  • Multiple interface types: Access, Trunk, Hybrid, and 802.1Q-in-802.1Q (QinQ)
  • Default VLAN

Media Access Control (MAC)

  • Automatic learning and aging of MAC addresses
  • Static, dynamic, and blackhole MAC address entries
  • Packet filtering based on source MAC addresses
  • Interface-based MAC learning limits

Link Layer Discovery Protocol (LLDP)


Ethernet loop protection

Multiple Spanning Tree Protocol (MSTP)

  • Spanning Tree Protocol (STP)
  • Rapid Spanning Tree Protocol (RSTP)
  • MSTP
  • Bridge protocol data unit (BPDU) protection, root protection, and loop protection
  • Partitioned STP and BPDU tunneling

IP features

Address Resolution Protocol (ARP)

  • Static and dynamic ARP entries
  • ARP in a VLAN
  • Aging of ARP entries

Dynamic Host Configuration Protocol (DHCP)

  • DHCP snooping
  • DHCP relay

IPv4 forwarding

Unicast routing features

  • Static route
  • Routing Information Protocol version 1 (RIPv1) and RIPv2
  • Open Shortest Path First (OSPF)
  • Intermediate System to Intermediate System (IS-IS)
  • Border Gateway Protocol version 4 (BGP4)
  • Policy-based Routing (PBR) and routing policies
  • Unicast Reverse Path Forwarding (URPF) check

Multicast routing features

  • Internet Group Management Protocol version 1/2/3 (IGMPv1/v2/v3)
  • Protocol Independent Multicast-Sparse Mode (PIM-SM)
  • Protocol Independent Multicast Source-Specific Multicast (PIM-SSM)
  • Multiprotocol BGP (MBGP)
  • Multicast Source Discovery Protocol (MSDP)
  • Multicast routing policies
  • Reverse Path Forwarding (RPF)

Device reliability

Bidirectional Forwarding Detection (BFD)

  • Basic BFD functions
  • Association between BFD and OSPF
  • Association between BFD and IS-IS
  • Association between BFD and BGP
  • Association between BFD and PIM


  • Virtual Router Redundancy Protocol (VRRP)
  • Device Link Detection Protocol (DLDP)

Layer 2 multicast features

Layer 2 multicast features

  • IGMP snooping
  • IGMP proxy
  • Fast leave
  • Multicast traffic control

Quality of Service (QoS) features

Traffic classification

  • Traffic classification based on combination of the L2 protocol header, IP 5-tuple, outbound interface, and 802.1p priority
  • Traffic classification based on the C-VID and C-PRI of QinQ packets

Traffic behavior

  • Access control after traffic classification
  • Traffic policing based on traffic classifiers
  • Packet re-marking based on the traffic classification result
  • Class-based packet queuing
  • Association between traffic classifiers and traffic behaviors (actions)

Queue scheduling

  • Priority queuing (PQ) scheduling
  • Deficit round robin (DRR) scheduling
  • PQ+DRR scheduling
  • Weighted round robin (WRR) scheduling
  • PQ+WRR scheduling

Congestion avoidance

Weighted Random Early Detection (WRED)

Rate limiting on outbound interfaces

Rate limiting on outbound interfaces


Many-to-one virtualization

  • Intelligent Stack (iStack)
  • Stack split and merge
  • Dual-active detection
  • Version and configuration synchronization
  • Network Time Protocol (NTP) clock synchronization

Data center features

Transparent Interconnection of Lots of Links (TRILL)

TRILL features

Data Center Bridging (DCB)

  • Data Center Bridging Exchange Protocol (DCBX)
  • Priority-based Flow Control (PFC)
  • Enhanced Transmission Selection (ETS)

Fibre Channel over Ethernet (FCoE)

FCoE Initialization Protocol Snooping Bridge (FSB)

Virtual machine (VM) detection

  • Virtualization detection
  • Automatic policy deployment
  • Automatic policy migration

Forwarding mode based on Virtual Ethernet Port Aggregator (VEPA)

Traffic forwarding mode based on VEPA

Configuration and maintenance

Terminal service

  • Configuration using command lines
  • Messages and help information in English
  • Login through console and Telnet terminals
  • Send function and data communications between terminal users

File system

  • Directory and file management
  • File upload and download using File Transfer Protocol (FTP), Trivial File Transfer Protocol (TFTP), and Secure File Transfer Protocol (SFTP)

Debugging and maintenance

  • Unified management of logs, alarms, and debugging information
  • Electronic labels
  • User operation logs
  • Detailed debugging information for network fault diagnosis
  • Network test tools such as tracert and ping commands
  • Port mirroring and traffic mirroring

Version upgrade

  • Device software loading and in-service software loading
  • In-service upgrade using the basic input/output system (BIOS) menu
  • In-service patching

To ensure secure service application, periodically upgrade the switch module software version.

Security and management

System security

  • Hierarchical command-line protection based on user levels, preventing unauthorized users from accessing switch modules
  • Secure Shell (SSH)
  • Remote Authentication Dial In User Service (RADIUS) and Huawei Terminal Access Controller Access Control System (HWTACACS) authentication for login users
  • Access control list (ACL) filtering
  • Dynamic ARP inspection (DAI)
  • DHCP packet filtering (appending the Option 82 field)
  • Defense against control packet attacks
  • Defense against attacks of source address spoofing, LAND, SYN flood (TCP SYN), smurf, ping flood (Internet Control Message Protocol Echo), teardrop, and ping of death

Network management

  • Internet Control Message Protocol (ICMP)-based ping and tracert
  • Simple Network Management Protocol version 1/2c/3 (SNMPv1/v2c/v3)
  • Standard management information base (MIB)
  • Remote network monitoring (RMON)
  • Network quality analysis (NQA)
Table 2-2 FCoE gateway function description



Fibre Channel (FC) switching

FC optical port

Supports 4G/8G FC autonegotiation, full duplex, and the storage port function.


Supports full fabric mode and transparent mode.


Supports N_Port ID virtualization (NPIV). A physical port supports access of multiple virtual N_Port_IDs.

FC switching

Load sharing

Supports load sharing.

Configuration and maintenance

Configuration and management modes

  • Supports configurations using command lines.
  • Supports the HTTPS-based Webtool (graphical user interface).
  • Supports Simple Network Management Protocol version 1/3 (SNMPv1/v3).
  • Supports the FC Fabric Element management information base (MIB).

Connection mode

  • Supports Ethernet connection (over SSH, SNMP, or Web).
  • Supports serial over LAN (SOL) connection.

Version upgrade

Supports in-service upgrades for software. Services are not interrupted during an upgrade. The upgrade takes effect after the reset.


To ensure secure service application, periodically upgrade the switch module software version.

Network security

System security

  • Supports hierarchical rights management based on user levels, preventing unauthorized users from accessing switch modules.
  • Supports Secure Shell (SSH) and Secure Sockets Layer (SSL).
  • Supports SNMPv1/v3.
  • Supports Remote Authentication Dial In User Service (RADIUS) for user logins.
Updated: 2018-09-20

Document ID: EDOC1000018097

Views: 62762

Downloads: 3389

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Previous Next