Gigabit 24-port L2 Plus Management Switch

ES-5240GM

  • 4 SFP slots for flexible fiber connection
  • 9KB Jumbo Frame support
  • IEEE 802.1x Access Control to improve network security
  • Port Mirroring to help IT manager monitor network traffic
  • Q-in-Q VLAN for performance & security
  • 4,094 VLAN groups
  • IEEE 802.1D compatible, 802.1w Rapid Spanning Tree and 802.1s Multiple Spanning Tree
  • Unknown Unicast /Broadcast/Multicast Storm Control
  • Multicast VLAN Management for IPTV
  • IP-Mac-Port binding for LAN security
  • QCL based on application traffic for QoS and rate limitation management
  • ACL based on Ethernet Type / ARP / IPv4 for packets permit or deny, rate limitation and port copy
  • DHCP Option 82 relay agent


QoS with four priority queues
The QoS (Quality Of Service) Control List (QCL) feature provides four internal queues to support four different classifications of traffic. High priority packet streams experience less delay inside the switch, which supports lower latency for certain delay-sensitive traffic. The ES-5240GM can classify the packet as one of the four priorities according to VIP port, 802.1p priority tag, DiffServ and/or IP TOS, IPv4 and UDP/TCP application traffics. The QoS operate at full wire speed. The actual scheduling at each egress port can be based upon a strict priority, weighted round robin or a mix of both.

Port Mirroring
It is based on ACL function to classify the ingress traffic to do port copy. This mechanism helps track network errors or abnormal packet transmission without interrupting the flow of data. Allow ingress traffic to be monitored by a single port that is defined as mirror capture port. The mirror capture port can be any 10/100 port, 10/100/1000 port. Mirroring multiple ports is possible but can create congestion at the mirror capture port.

Q-in-Q VLAN for performance & security
The VLAN feature in the switch offers the benefits of both security and performance. VLAN is used to isolate traffic between different users and thus provides better security. Limiting the broadcast traffic to within the same VLAN broadcast domain also enhances performance. Q-in-Q, the use of double VLAN tags is an efficient method for enabling Subscriber Aggregation. This is very useful in the MAN.

Isolated Group, provides protection for certain ports
The isolated group feature allows certain ports to be designated as protected. All other ports are non-isolated. Traffic between isolated group members is blocked. Traffic can only be sent from isolated group to non-isolated group.

Mac-based 802.3ad LACP with automatic link fail-over
Dynamic fail-over means packets will not get assigned to any trunk member port that has failed. If one of the ports were to fail, traffic will automatically get distributed to the remaining active ports.

802.1x Access Control improves network security
802.1x features enable user authentication for each network access attempt. Port security features allow you to limit the number of MAC addresses per port in order to control the number of stations for each port. Static MAC addresses can be defined for each port to ensure only registered machines are allowed to access. By enabling both of these features, you can establish an access mechanism based on user and machine identities, as well as control the number of access stations.

802.1d Compatible & 802.1w Rapid Spanning Tree & 802.1s Multiple Spanning Tree
For mission critical environments with multiple switches supporting STP, you can configure the switches with a redundant backup bridge path, so transmission and reception of packets can be guaranteed in the event of any fail-over switch on the network.

4 dual media ports for flexible fiber connection
4-Port 21,22,23,24 dual media ports are provided for flexible fiber connection. You can select to install optional transceiver modules in these slots for short, medium or long distance fiber backbone attachment. Use of the SFP module will disable their corresponding built-in 10/100/1000Base-T connections.

Broadcast/Multicast/unknown- Unicast Storm Control
To limit too many broadcast/multicast/unknown- unicast flooding in the network, broadcast/multicast storm control is used to restrict excess traffic. Threshold values are available to control the rate limit for each port. Packets are discarded if the count exceeds the configured upper threshold.

IP-MAC-Port Binding
The IP network layer uses a four-byte address. The Ethernet link layer uses a six-byte MAC address. Binding these two address types together allows the transmission of data between the layers. The primary purpose of IP-MAC binding is to restrict the access to a switch to a number of authorized users. Only the authorized client can access the switch's port by checking the pair of IP-MAC Addresses and port number with the pre-configured database. If an unauthorized user tries to access an IP-MAC binding enabled port, the system will block the access by dropping its packet.

Access Control List (ACL)
The ACLs are divided into EtherT



Complied Standards
IEEE 802.3x Flow Control capability
IEEE 802.1q VLAN
IEEE 802.1p

Performance
Switching capacity:
24 Gigabit Ethernet ports with non-blocking wire speed performance
8 K MAC addresses
Supports Jumbo frame up to 9K
Unknown Unicast /Broadcast/Multicast Storm Suppression
Port Mirroring

VLAN
Port-base VLAN
IEEE802.1q tag-base VLAN, up to 4,096 active VLANs
Q-in-Q is an efficient method for enabling Subscriber Aggregation
Multicast VLAN management

QoS
Supports QCL for Layer 4 TCP/UDP Port and ToS Classification
Supports 802.1p QoS with four level priority queue
Supports priority in a Q-in-Q tag


Bandwidth Control
Supports bandwidth rating per port ingress and egress rate limit 500Kbps~1000Mbps with 1Kbps

VSM (Virtual Stacking Management)
Supports 16 devices (alike model) stacking
Multiple switches can be managed via one IP address, just like software stacking
Low cost and easy to establish network environment, no extra hardware required

 

Protocol

LACP
Port trunking with 12 trunking groups
up to 16 ports for each group

GVRP/GARP
802.1q with GVRP/ GARP

Multicasting
Supports IGMP snooping including active and passive mode

STP/RSTP/MSTP
802.1d/1w/1s

 

Network Security

802.1x access control for port based and MAC based authentication
Management Access Policy Control
Access control List
IP-MAC-Port binding
DHCP relay agent

Snmpv1,v2c Network Management

RFC 1213 MIB (MIB-II) RFC 1757 RMON MIB
Interface MIB Statistics Group 1
Address Translation MIB History Group 2
IP MIB Alarm Group 3
ICMP MIB Event Group 9
TCP MIB RFC 1493 Bridge MIB
UDP MIB RFC 1643 Ethernet MIB
SNMP MIB Enterprise MIB

LED Indicators

Description

LED

Global

POWER

Port 1-24

LINK/ACT

Port 1-24

10/100/1000Mbps

Port 21,22,23,24

SFP

Network Interface

Interface

Connector

Port

10/100/1000 Mbps TP Jack (RJ-45)

TP(RJ-45)

1 to 20

1000Mbps SFP Fiber Module
Dual Media Auto Detection

TP(RJ-45) / SFP

21,22,23,24

Hardware Specifications

Feature

Description

Voltage

100 ~ 240 V

Frequency

50 ~ 60 Hz

Consumption

40W

Ambient Temperature

0 ° to 40 ° C

Humidity

5% to 90%

Dimensions

442(W) ´ 44(H ) ´ 209(D ) mm

Weight

2.82 Kg

Safety

UL
Complies with FCC Part 15 Class A & CE Mark app roval

Packing Information

Carton Dimensions (mm)

pcs /Carton

N.W (KG)

G.W (KG)

530 (W) x 512 (D) x 345 (H)

5

2.82 Kg

3.82 Kg

 

*Maximum performance, actual data rates, and coverage will vary depending on network conditions and environmental factors.
*Actual viewing resolution and frame rate of network cameras depend on connection speed.
*Product specifications and design are subject to change without notice.