TL-SE5420 is a newly developed and launched 5 series 10 Gigabit uplink Layer 3 network management switch by TP-LINK, which adopts a new generation of high-performance hardware and software platform to provide flexible full Gigabit access and cost-effective 10 Gigabit access Mega uplink ports support Layer 3 routing protocols, complete security protection mechanisms, perfect ACL/QoS policies, and rich VLAN functions, which are easy to manage and maintain, and are suitable for network aggregation layers such as smart hotels, enterprise campuses, and campuses.
- 16 x 10/100/1000/2.5G Base-T RJ45 ports
- 4 10 Gigabit SFP+ ports
- It supports remote management of TP-LINK commercial cloud platform and mobile APP management
- It supports intelligent deployment, automatic configuration networking, and graphical topology display
- Dynamic and static routes are supported
- DHCP server, DHCP relay, and DHCP snooping are supported
- Supports quaternary binding, ARP/IP/DoS protection, and 802.1X authentication
- VLANs, QoS, ACLs, spanning trees, multicast, and IPv6 are supported
- Web management, CLI command line, and SNMP are supported
2.5G access, 10 Gigabit uplink
- TL-SE5420 can provide 16 2.5G RJ45 electrical ports and 4 10 Gigabit SFP+ optical ports, and support the combination of "2.5G Ethernet port + 10 Gigabit optical port", which is convenient for users to flexibly network and meet the networking requirements of higher bandwidth and various scenarios.
- All ports have wire-speed forwarding capabilities to meet the needs of different users.
Strong business processing capabilities
- It supports the RIP dynamic routing protocol to solve the routing problem of small and medium-sized networks after subnets are divided, simplifying network configuration.
- Static routes are supported, and the administrator manually configures route entries to achieve simple, efficient, and reliable communication between different network segments.
- DHCP servers are supported, which assign IP addresses to hosts in the network.
- DHCP trunking is supported, and switches in different interfaces or subnets can also obtain IP addresses, reducing the number of DHCP servers.
- Proxy ARP is supported, so that hosts in different physical networks on the same network segment can communicate normally.
- IEEE 802.1Q VLAN, MAC VLAN, protocol VLAN, and private VLAN are supported, allowing users to flexibly divide VLANs according to different requirements.
- GVRP is supported to implement dynamic distribution, registration, and attribute propagation of VLANs, reducing the amount of manual configuration and ensuring the correctness of configuration.
- The VLAN VPN function encapsulates the outer VLAN tag for the user's private network packets at the public network access end, so that the packets carry two layers of VLAN tags across the public network.
- It supports QoS, three priority modes based on port, 802.1P-based and DSCP-based, and four queue scheduling algorithms of Equ, SP, WRR, and SP+WRR.
- ACLs are supported to filter packets by configuring matching rules, processing operations, and time permissions, providing flexible security access control policies.
- It supports IGMP V1/V2 multicast protocols, MLD snooping, and IGMP snooping to meet the requirements of multi-terminal HD video surveillance and video conferencing access.
Complete security protection mechanism
- Supports IP address, MAC address, VLAN, and port quaternary binding to filter data packets.
- Supports ARP protection against ARP spoofing and ARP flood attacks, such as gateway spoofing and man-in-the-middle attacks, which are common in LANs.
- IP source protection is supported to prevent illegal address spoofing, including MAC address spoofing, IP spoofing, and MAC/IP spoofing.
- DoS protection is supported, and attacks such as Land Attack, Scan SYNFIN, Xmascan, and Ping Flooding are supported.
- It supports 802.1X authentication, provides authentication functions for LAN computers, and controls the authorization status of controlled ports according to the authentication results.
- Port security is supported, which stops learning when the number of MAC addresses learned on a port reaches the maximum number to prevent MAC address attacks and control port network traffic.
- Support DHCP Snooping, effectively eliminate private DHCP servers, and ensure the legitimacy of DHCP servers.
Versatile reliability protection
- Supports STP/RSTP/MSTP production tree protocols to eliminate Layer 2 loops and implement link backup.
- Spanning tree security functions are supported to prevent devices in a spanning tree network from various forms of malicious attacks.
- Static aggregation and dynamic aggregation are supported, effectively increasing link bandwidth, implementing load balancing, link backup, and improving link reliability.
Easy operation and maintenance
- It supports TP-LINK commercial flat gimbal, which can easily manage and maintain equipment remotely, reducing on-site operation and maintenance costs.
- Supports multiple management and maintenance methods, such as web management, CLI command line (console, Telnet), and SNMP (V1/V2/V3).
- Supports HTTPS, SSL V3, TLSV1, SSHV1/V2 and other encryption methods for safer management.
- RMON, system logs, and port traffic statistics are supported, which is convenient for network optimization and transformation.
- Supports cable detection, ping detection, and Tracert detection operations to easily analyze faulty network nodes.
- It supports LLDP, which is convenient for the network management system to query and judge the communication status of the link.
- CPU monitoring, memory monitoring, ping detection, Tracert detection, and cable detection are supported.
Hardware specifications
| Network standards | - IEEE 802.3i, IEEE 802.3u, IEEE 802.3ab, IEEE802.3z, IEEE 802.3ae, IEEE 802.3ad, IEEE 802.3x, IEEE 802.1d, IEEE 802.1s, IEEE 802.1w, IEEE 802.1q, IEEE 802.1x, IEEE 802.1p
|
| Port | - 16 x 10/100/1000M/2.5Gbps RJ45 ports
- 4 10 Gigabit SFP+ fiber module expansion slots
- 1 console port
- 1 USB port
|
| Light | - Port status indicator
- Power, System,Master,Stack
|
| Performance | - Store-and-forward
- A MAC address table depth of 16K is supported
|
| Enter the power supply | |
| Use environment | - Operating temperature: 0°C~40°C
- Storage temperature: -40°C~70°C
- Operating humidity: 10%~90% RH non-condensing
- Storage humidity: 5%~90% RH non-condensing
|
| Dimensions(L×W×H) | |
Software Specifications
| Routing | - Static routes are supported
- Supports the RIP dynamic routing protocol
- Proxy ARP is supported
|
| Safety features | - IP-MAC-Port-VID quaternary binding
- IP source protection, DoS protection, and port security
- 802.1X authentication, guest VLAN
|
| ACL | - Support L2~L4 packet filtering
- ACL control based on time period is supported
- Policies can be delivered based on ports and VLANs
|
| VLAN | - 4K VLANs are supported
- 802.1Q VLAN, MAC VLAN, Private VLAN, and protocol VLAN are supported
- VLAN VPN (QinQ)
- Guest VLANs and Voice VLANs are supported
- GARP/GVRP is supported
- Supports 1:1 and N:1 VLAN mapping
|
| MAC address table | - 16K MAC addresses are supported
- You can set the maximum number of MAC addresses that can be learned
- Address table display, static address table, dynamic address table, and filtered address table
|
| Port management | - Port aggregation, port monitoring, and port rate limiting
- Storm suppression
|
| Spanning trees | - STP (802.1d)、RSTP (802.1w)、MSTP (802.1s)
- Loop protection, root bridge protection, TC protection, BPDU protection, and BPDU filtering are supported
|
| Multicast | - IGMP V1/V2/V3 is supported
- Support for a quick leave mechanism
- Multicast VLANs are supported
- Multicast filtering, packet statistics, and unknown multicast dropping are supported
|
| QoS | - Each port supports 8 output queues
- Port-based, 802.1P, DSCP/ToS priority is supported
- It supports four priority scheduling modes: Equ, SP, WRR, and SP+WRR
|
| DHCP | - DHCP Client、DHCP Server
- DHCP Relay
- DHCP Snooping
- Option 138 and Option 82 are supported
|
| Convergence management | - Static aggregation is supported
- Dynamic aggregation is supported
|
| Safety features | - MAC-IP-VLAN ID-Port quadruple binding is supported
- 802.1X authentication, AAA, and RADIUS configurations are supported
- ARP protection, IP source protection, and DoS protection are supported
- DHCP snooping and DHCP attack protection are supported
- Port isolation and port security are supported
- SSL and SSH are supported
|
| System administration | - Web management based on HTTP, SSL (v2/v3/TLSv1), and CLI management based on Telnet, Console, and SSH (v1/v2) are supported
- SNMP V1/V2/V3 (TP-LINK MIBs), GB cluster management
|
| System maintenance | - LLDP is supported
- Supports configuring import and export and system time settings
- Loopback detection, cable detection, ping, and tracert detection
- Display/filter system logs, log servers
|
TL-SE5420 is a newly developed and launched 5 series 10 Gigabit uplink Layer 3 network management switch by TP-LINK, which adopts a new generation of high-performance hardware and software platform to provide flexible full Gigabit access and cost-effective 10 Gigabit access Mega uplink ports support Layer 3 routing protocols, complete security protection mechanisms, perfect ACL/QoS policies, and rich VLAN functions, which are easy to manage and maintain, and are suitable for network aggregation layers such as smart hotels, enterprise campuses, and campuses.
16 x 10/100/1000/2.5G Base-T RJ45 ports
4 10 Gigabit SFP+ ports
It supports remote management of TP-LINK commercial cloud platform and mobile APP management
It supports intelligent deployment, automatic configuration networking, and graphical topology display
Dynamic and static routes are supported
DHCP server, DHCP relay, and DHCP snooping are supported
Supports quaternary binding, ARP/IP/DoS protection, and 802.1X authentication
VLANs, QoS, ACLs, spanning trees, multicast, and IPv6 are supported
Web management, CLI command line, and SNMP are supported
2.5G access, 10 Gigabit uplink
TL-SE5420 can provide 16 2.5G RJ45 electrical ports and 4 10 Gigabit SFP+ optical ports, and support the combination of "2.5G Ethernet port + 10 Gigabit optical port", which is convenient for users to flexibly network and meet the networking requirements of higher bandwidth and various scenarios.
All ports have wire-speed forwarding capabilities to meet the needs of different users.
Strong business processing capabilities
It supports the RIP dynamic routing protocol to solve the routing problem of small and medium-sized networks after subnets are divided, simplifying network configuration.
Static routes are supported, and the administrator manually configures route entries to achieve simple, efficient, and reliable communication between different network segments.
DHCP servers are supported, which assign IP addresses to hosts in the network.
DHCP trunking is supported, and switches in different interfaces or subnets can also obtain IP addresses, reducing the number of DHCP servers.
Proxy ARP is supported, so that hosts in different physical networks on the same network segment can communicate normally.
IEEE 802.1Q VLAN, MAC VLAN, protocol VLAN, and private VLAN are supported, allowing users to flexibly divide VLANs according to different requirements.
GVRP is supported to implement dynamic distribution, registration, and attribute propagation of VLANs, reducing the amount of manual configuration and ensuring the correctness of configuration.
The VLAN VPN function encapsulates the outer VLAN tag for the user's private network packets at the public network access end, so that the packets carry two layers of VLAN tags across the public network.
It supports QoS, three priority modes based on port, 802.1P-based and DSCP-based, and four queue scheduling algorithms of Equ, SP, WRR, and SP+WRR.
ACLs are supported to filter packets by configuring matching rules, processing operations, and time permissions, providing flexible security access control policies.
It supports IGMP V1/V2 multicast protocols, MLD snooping, and IGMP snooping to meet the requirements of multi-terminal HD video surveillance and video conferencing access.
Complete security protection mechanism
Supports IP address, MAC address, VLAN, and port quaternary binding to filter data packets.
Supports ARP protection against ARP spoofing and ARP flood attacks, such as gateway spoofing and man-in-the-middle attacks, which are common in LANs.
IP source protection is supported to prevent illegal address spoofing, including MAC address spoofing, IP spoofing, and MAC/IP spoofing.
DoS protection is supported, and attacks such as Land Attack, Scan SYNFIN, Xmascan, and Ping Flooding are supported.
It supports 802.1X authentication, provides authentication functions for LAN computers, and controls the authorization status of controlled ports according to the authentication results.
Port security is supported, which stops learning when the number of MAC addresses learned on a port reaches the maximum number to prevent MAC address attacks and control port network traffic.
Support DHCP Snooping, effectively eliminate private DHCP servers, and ensure the legitimacy of DHCP servers.
Versatile reliability protection
Supports STP/RSTP/MSTP production tree protocols to eliminate Layer 2 loops and implement link backup.
Spanning tree security functions are supported to prevent devices in a spanning tree network from various forms of malicious attacks.
Static aggregation and dynamic aggregation are supported, effectively increasing link bandwidth, implementing load balancing, link backup, and improving link reliability.
Easy operation and maintenance
It supports TP-LINK commercial flat gimbal, which can easily manage and maintain equipment remotely, reducing on-site operation and maintenance costs.
Supports multiple management and maintenance methods, such as web management, CLI command line (console, Telnet), and SNMP (V1/V2/V3).
Supports HTTPS, SSL V3, TLSV1, SSHV1/V2 and other encryption methods for safer management.
RMON, system logs, and port traffic statistics are supported, which is convenient for network optimization and transformation.
Supports cable detection, ping detection, and Tracert detection operations to easily analyze faulty network nodes.
It supports LLDP, which is convenient for the network management system to query and judge the communication status of the link.
CPU monitoring, memory monitoring, ping detection, Tracert detection, and cable detection are supported.
admin - September 12, 2018
roadthemes