x230 Series

Enterprise Gigabit Edge Switches

The Allied Telesis x230 Series of Layer 3 Gigabit switches offer an impressive set of features in a compact design, making them ideal for applications at the network edge.

x230 Series


Allied Telesis x230 Series switches provide an excellent access solution for today’s networks, supporting Gigabit to the desktop for maximum performance. The Power over Ethernet Plus (PoE+) models provide an ideal solution for connecting and remotely powering wireless access points, IP video surveillance cameras, and IP phones. With 8, 16 or 24 Gigabit ports, SFP uplinks, and fanless models for silent operation, the x230 Series enable flexible deployment and secure connectivity at the network edge.


Network security is guaranteed, with powerful control over network traffic types, secure management options, and other multi-layered security features built right in.

Network Access Control (NAC) gives unprecedented control over user access to the network, in order to mitigate threats to network infrastructure.

Allied Telesis x230 switches use 802.1x port-based authentication, in partnership with standards-compliant dynamic VLAN assignment, to assess a user’s adherence to network security policies and either grant access or offer remediation. Tri-authentication ensures the network is only accessed by known users and devices. Secure access is also available for guests.

Security from malicious network attacks is provided by a comprehensive range of features such as DHCP snooping, STP root guard, BPDU protection and access control lists. Each of these can be configured to perform a variety of actions upon detection of a suspected attack.

Network protection

Advanced storm protection features include bandwidth limiting, policy-based storm protection and packet storm protection.

Network storms are often caused by cabling errors that result in a network loop. Allied Telesis x230 Series switches provide features to detect loops as soon as they are created. Loop detection and thrash limiting take immediate action to prevent network storms.


The x230 runs the advanced AlliedWare Plus™ fully featured operating system, delivering a rich feature set and an industry-standard Command Line Interface (CLI). This reduces training requirements and is consistent across all AlliedWare Plus devices, simplifying network management.

The web-based Graphical User Interface (GUI) is an easy-to-use and powerful management tool, with comprehensive monitoring facilities.


x230 Series switches are Software Defined Networking (SDN) ready and able to support OpenFlow v1.3.

Powerful network management

Meeting the increased management requirements of modern converged networks, Allied Telesis Autonomous Management Framework™ (AMF) automates many everyday tasks including configuration management. The complete network can be managed as a single virtual device with powerful centralized management features. Growing the network can be accomplished with plug-and-play simplicity, and network node recovery is fully zero-touch.

AMF secure mode increases network security with management traffic encryption, authorization, and monitoring.

ECO friendly

The x230 Series supports Energy Efficient Ethernet, which automatically reduces the power consumed by the switch whenever there is no traffic on a port. This sophisticated feature can significantly reduce your operating costs by reducing the power requirements of the switch and any associated cooling equipment.

The x230-10GT and x230L models are fanless, providing silent operation, which makes them ideal for desktop or work area deployment.

Key Features

Allied Telesis Autonomous Management Framework (AMF)

  • Allied Telesis Autonomous Management Framework (AMF) is a sophisticated suite of management tools that provide a simplified approach to network management. Common tasks are automated or made so simple that the every-day running of a network can be achieved without the need for highly-trained, and expensive, network engineers. Powerful features like centralized management, auto-backup, auto-upgrade, auto-provisioning and auto-recovery enable plug-and-play networking and zero-touch management.
  • AMF secure mode encrypts all AMF traffic, provides unit and user authorization, and monitors network access to greatly enhance network security.

Power over Ethernet Plus (PoE+)

  • With PoE, a separate power connection to media endpoints such as IP phones and wireless access points is not necessary. PoE+ reduces costs and provides even greater flexibility, providing the capability to connect devices requiring more power (up to 30 Watts) such as tilt and zoom security cameras.

Ethernet Protection Switched Ring (EPSRing)

  • EPSRing allows several x230 switches to join a protected ring capable of recovery within as little as 50ms. This feature is perfect for high availability in enterprise networks.

G.8032 Ethernet Ring Protection

  • G.8032 provides standards-based high-speed ring protection, that can be deployed stand-alone, or interoperate with Allied Telesis EPSR.
  • Ethernet Connectivity Fault Monitoring (CFM) proactively monitors links and VLANs, and provides alerts when a fault is detected.

Access Control Lists (ACLs)

  • The x230 Series features industry-standard access control functionality through ACLs. ACLs filter network traffic to control whether packets are forwarded or blocked at the port interface. This provides a powerful network security mechanism to select the types of traffic to be analyzed, forwarded, or influenced in some way. An example of this would be to provide traffic flow control.


  • Simplify access and traffic control across entire segments of the network. Access Control Lists (ACLs) can be applied to a Virtual LAN (VLAN) as well as a specific port.

Easy To Manage

  • The AlliedWare Plus operating system incorporates an industry standard CLI, facilitating intuitive manageability.
  • With three distinct modes, the CLI is very secure, and the use of SSHv2 encrypted and strongly authenticated remote login sessions ensures CLI access is not compromised.
  • As a Layer 2+ switch, a static route can be added to allow a user in a different subnet to manage the switch.

Storm protection

Advanced packet storm control features protect the network from broadcast storms:

  • Bandwidth limiting minimizes the effects of the storm by reducing the amount of flooding traffic.
  • Policy-based storm protection is more powerful than bandwidth limiting. It restricts storm damage to within the storming VLAN, and it provides the flexibility to define the traffic rate that creates a broadcast storm. The action the device should take when it detects a storm can be configured, such as disabling the port from the VLAN or shutting the port down.
  • Packet storm protection allows limits to be set on the broadcast reception rate, multicast frames and destination lookup failures. In addition, separate limits can be set to specify when the device will discard each of the different packet types.

Loop protection

  • Thrash limiting, also known as Rapid MAC movement, detects and resolves network loops. It is highly user-configurable — from the rate of looping traffic to the type of action the switch should take when it detects a loop.
  • With thrash limiting, the switch only detects a loop when a storm has occurred, which can potentially cause disruption to the network. To avoid this, loop detection works in conjunction with thrash limiting to send special packets, called Loop Detection Frames (LDF), that the switch listens for. If a port receives an LDF packet, one can choose to disable the port, disable the link, or send an SNMP trap.

Spanning Tree Protocol (STP) Root Guard

  • STP root guard designates which devices can assume the root bridge role in an STP network. This stops an undesirable device from taking over this role, where it could either compromise network performance or cause a security weakness.

Bridge Protocol Data Unit (BPDU) protection

  • BPDU protection adds extra security to STP. It protects the spanning tree configuration by preventing malicious DoS attacks caused by spoofed BPDUs. If a BPDU packet is received on a protected port, the BPDU protection feature disables the port and alerts the network manager.


  • Authentication options on the x230 Series include alternatives to 802.1x port-based authentication, such as web authentication, to enable guest access and MAC authentication for end points that do not have an 802.1x supplicant. All three authentication methods—802.1x, MAC-based and Web-based—can be enabled simultaneously on the same port, resulting in tri-authentication.

TACACS+ Command Authorization

  • Centralize control of which commands may be issued by a specific user of an AlliedWare Plus device. TACACS+ command authorization complements authentication and accounting services for a complete AAA solution.

UniDirectional Link Detection

  • UniDirectional Link Detection (UDLD) is useful for monitoring fiber-optic links between two switches that use two single-direction fibers to transmit and receive packets. UDLD prevents traffic from being sent across a bad link by blocking the ports at both ends of the link in the event that either the individual transmitter or receiver for that connection fails.

Optical DDM

  • Most modern optical SFP/SFP+/XFP transceivers support Digital Diagnostics Monitoring (DDM) functions according to the specification SFF-8472. This enables real time monitoring of the various parameters of the transceiver, such as optical output power, temperature, laser bias current and transceiver supply voltage. Easy access to this information simplifies diagnosing problems with optical modules and fiber connections.

Active Fiber Monitoring

  • Active Fiber Monitoring prevents eavesdropping on fiber communications by monitoring received optical power. If an intrusion is detected, the link can be automatically shut down, or an operator alert can be sent.

VLAN Mirroring (RSPAN)

  • VLAN mirroring allows traffic from a port on a remote switch to be analysed locally. Traffic being transmitted or received on the port is duplicated and sent across the network on a special VLAN.

Find Me

  • In busy server rooms comprised of a large number of equipment racks, it can be quite a job finding the correct switch quickly among many similar units. The “Find Me” feature is a simple visual way to quickly identify the desired physical switch for maintenance or other purposes, by causing its LEDs to flash in a specified pattern.

IPv6 Support

  • With the depletion of IPv4 address space, IPv6 is rapidly becoming a mandatory requirement for many government and enterprise customers. To meet this need, now and into the future, the x230 Series supports IPv6 forwarding in hardware and features MLD snooping for efficient use of network bandwidth.

Precision Time Protocol (PTP)

  • PTP (IEEE 1588v2) sychronizes clocks throughout the network with micro-second accuracy, supporting industrial automation and control systems.

Flexible deployment

  • The x230-10GT and x230L models are fanless for silent operation. This enables switch placement in work spaces and on desktops with no interruption to network users.

Network convergence

The convergence of network services in the Enterprise has led to increasing demand for highly available networks with minimal downtime. Diagram 1 shows x230 switches with high performance EPSR connectivity to the x930 VCStack core. This topology provides recovery in as little as 50ms, if required.

x230 Network convergence
x230 network flexibility

Network flexibility

Flexible network deployment is facilitated by the compact 10 and 18 port x230 PoE+ models, as shown in the Campus network in diagram 2. With the growth of wireless networking and digital security, the x230 PoE+ models are ideal supplying connectivity and power at the network edge, supporting the full 30 watts of PoE+. The fanless x230L models provide silent operation to enable deployment in work areas.

AMF provides an easy yet powerful solution for managing multiple devices with plug-and-play simplicity.

Product Specifications

x230-10GP 8 2 10 8 20Gbps 14.9Mpps
x230-10GT 8 2 10 - 20Gbps 14.9Mpps
x230-18GP 16 2 18 16 36Gbps 26.8Mpps
x230-18GT 16 2 18 - 36Gbps 26.8Mpps
x230-28GP 24 4 28 24 56Gbps 41.7Mpps
x230-28GT 24 4 28 - 56Gbps 41.7Mpps
x230L-17GT 16 1 17 - 34Gbps 25.3Mpps
x230L-26GT 24 2 26 - 52Gbps 38.7Mpps

Physical Specifications

x230-10GP 210 x 275 x 42.5 mm
(8.27 x 10.83 x 1.67 in)
2.1 kg (4.6 lb) 43 x 36 x 15 cm
(16.93 x 14.17 x 5.90 in)
3.45 kg (7.6 lb)
x230-10GT 265 x 180 x 42.5 mm
(10.43 x 7.08 x 1.67 in)
1.5 kg (3.3 lb) 43 x 36 x 15 cm
(16.93 x 14.17 x 5.90 in)
2.85 kg (6.3 lb)
x230-18GP 341 x 231 x 44 mm
(13.42 x 9.09 x 1.73 in)
3.0 kg (6.6 lb) 43 x 36 x 15 cm
(16.93 x 14.17 x 5.90 in)
4.35 kg (9.6 lb)
x230-18GT 341 x 231 x 44 mm
(13.42 x 9.09 x 1.73 in)
2.4 kg (5.3 lb) 43 x 36 x 15 cm
(16.93 x 14.17 x 5.90 in)
4.0 kg (8.8 lb)
x230-28GP 440 x 290 x 44 mm
(17.32 x 11.42 x 1.73 in)
4.7 kg (10.4 lb) 53 x 43 x 15 cm
(20.86 x 16.93 x 5.90 in)
6.35 kg (14.0 lb)
x230-28GT and x230L-26GT 341 x 231 x 44 mm
(13.42 x 9.09 x 1.73 in)
2.4 kg (5.3 lb) 43 x 36 x 15 cm
(16.93 x 14.17 x 5.90 in)
4.0 kg (8.8 lb)
x230L-17GT 341 x 210 x 44 mm
(13.42 x 8.27 x 1.73 in)
2.2 kg (4.85 lb) 43.5 x 40 x 14.5 cm
(17.13 x 15.71 x 5.71 in)
3.4 kg (7.5 lb)

Latency (microseconds)

x230-10GP/GT 55µs 7.8µs 3.4µs
x230-18GP/GT 56µs 7.9µs 3.4µs
x230-28GP/GT 59µs 8.6µs 4.3µs
x230L-17GT 56µs 7.9µs 3.4µs
x230L-26GT 59µs 8.6µs 4.3µs


  • Up to 16K MAC addresses
  • Up to 512 multicast entries
  • 256MB DDR SDRAM (GP models)
  • 512MB DDR SDRAM (GT models)
  • 2048 configurable VLANs (GP models)
  • 4094 configurable VLANs (GT models)
  • 64MB flash memory
  • Packet Buffer memory: 1.5MB
  • Supports 10KB jumbo frames
  • Wirespeed forwarding


  • Modular AlliedWare Plus operating system
  • Full environmental monitoring of PSUs, fans, temperature and internal voltages. SNMP traps alert network managers in case of any failure

Flexibility and Compatibility

  • SFP ports will support any combination of 10/100/1000T, 100X, 100FX, 100BX, 1000X, 1000SX, 1000LX, 1000ZX or 1000ZX CWDM SFPs

Diagnostic Tools

  • Active Fiber Monitoring detects tampering on optical links
  • Built-In Self Test (BIST)
  • Find-me device locator
  • Cable fault locator (TDR)
  • Optical Digital Diagnostics Monitoring (DDM)
  • Automatic link flap detection and port shutdown
  • Ping polling for IPv4 and IPv6
  • TraceRoute for IPv4 and IPv6

IP Features

  • IPv4 static routing and RIP
  • DHCPv6 client
  • Device management over IPv6 networks with SNMPv6, Telnetv6, SSHv6 and Syslogv6
  • NTPv6 client and server


  • Allied Telesis Autonomous Management Framework (AMF) enables powerful centralized management and zero-touch device installation and recovery
  • Console management port on the front panel for ease of access
  • Eco-friendly mode allows ports and LEDs to be disabled to save power
  • Web-based Graphical User Interface (GUI)
  • Industry-standard CLI with context-sensitive help
  • Powerful CLI scripting engine with built-in text editor
  • SD/SDHC memory card socket allows software release files, configurations and other files to be stored for backup and distribution to other devices
  • Configurable logs and triggers provide an audit trail of SD card insertion and removal
  • Comprehensive SNMP MIB support for standards-based device management
  • Management stacking allows up to 24 devices to be managed from a single console
  • Event-based triggers allow user-defined scripts to be executed upon selected system events

Quality of Service

  • 8 priority queues with a hierarchy of high priority queues for real time traffic, and mixed scheduling, for each switch port
  • Limit bandwidth per port or per traffic class down to 64kbps
  • Wirespeed traffic classification with low latency essential for VoIP and real-time streaming media applications
  • Policy-based QoS based on VLAN, port, MAC and general packet classifiers
  • Policy-based storm protection
  • Extensive remarking capabilities
  • Taildrop for queue congestion control
  • Strict priority, weighted round robin or mixed scheduling
  • IP precedence and DiffServ marking based on layer 2, 3 and 4 headers

Resiliency Features

  • Control Plane Prioritization (CPP) ensures the CPU always has sufficient bandwidth to process network control traffic
  • Dynamic link failover (host attach)
  • EPSRing (Ethernet Protection Switched Rings) with enhanced recovery for extra resiliency
  • Loop protection: loop detection and thrash limiting
  • PVST+ compatibility mode
  • RRP snooping
  • STP root guard

Security Features

  • Access Control Lists (ACLs) based on layer 3 and 4 headers, per VLAN or port
  • Configurable ACLs for management traffic
  • ACL Groups enable multiple hosts/ports to be included in a single ACL, reducing configuration
  • Auth-fail and guest VLANs
  • Dynamic ACLs assigned via port authentication
  • Authentication, Authorization and Accounting (AAA)
  • Bootloader can be password protected for device security
  • BPDU protection
  • DHCP snooping, IP source guard and Dynamic ARP Inspection (DAI)
  • Dynamic VLAN assignment
  • MAC address filtering and MAC address lock-down
  • Network Access and Control (NAC) features manage endpoint security
  • Port-based learn limits (intrusion detection)
  • Private VLANs provide security and port isolation for multiple customers using the same VLAN
  • Secure Copy (SCP)
  • Strong password security and encryption
  • Tri-authentication: MAC-based, web-based and IEEE 802.1x
  • RADIUS group selection per VLAN or port

Environmental Specifications

  • Operating temperature range:
0°C to 50°C (32°F to 122°F)
0°C to 40°C (32°F to 104°F) (x230L models)
Derated by 1°C per 305 meters (1,000 ft)
  • Storage temperature range:
-20°C to 60°C (-4°F to 140°F)
  • Operating relative humidity range:
0% to 90% non-condensing
  • Storage relative humidity range:
0% to 95% non-condensing
  • Operating altitude:
2,000 meters maximum (6,562 ft)

    Electrical Approvals and Compliances

    • EMC: EN55022 class A, FCC class A, VCCI class A
    • Immunity: EN55024, EN61000-3-levels 2 (Harmonics), and 3 (Flicker) – AC models only


    • Standards: UL60950-1, CAN/CSA-C22.2 No. 60950-1-03, EN60950-1, EN60825-1, AS/NZS 60950.1
    • Certifications: UL, cUL, UL-EU

    Restrictions on Hazardous Substances (RoHS) Compliance

    • EU RoHS compliant
    • China RoHS compliant

    Power Characteristics

    x230-10GP 16 55 33 180 126 41 124 8 4
    x230-10GT 16 55 Fanless - - - - - -
    x230-18GP 21 72 34 330 169 42 247 16 8
    x230-18GT 18 61 29 - - - - - -
    x230-28GP 37 127 34 520 303 42 370 24 12
    x230-28GT 26 89 34 - - - - - -
    x230L-17GT 15 51 Fanless - - - - - -
    x230L-26GT 20.5 70 Fanless - - - - - -

    AlliedWare Plus Operating System

    Version 5.5.0-1

    Cryptographic Algorithms

    FIPS Approved Algorithms

    Encryption (Block Ciphers):

    • AES (ECB, CBC, CFB and OFB Modes)
    • 3DES (ECB, CBC, CFB and OFB Modes)

    Block Cipher Modes:

    • CCM
    • CMAC
    • GCM
    • XTS

    Digital Signatures & Asymmetric Key Generation:

    • DSA
    • ECDSA
    • RSA

    Secure Hashing:

    • SHA-1
    • SHA-2 (SHA-224, SHA-256, SHA-384. SHA-512)

    Message Authentication:

    • HMAC (SHA-1, SHA-2(224, 256, 384, 512)

    Random Number Generation:

    • DRBG (Hash, HMAC and Counter)

    Non FIPS Approved Algorithms

    RNG (AES128/192/256)

    Ethernet Standards

    IEEE 802.2 Logical Link Control (LLC)
    IEEE 802.3 Ethernet
    IEEE 802.3ab 1000BASE-T
    IEEE 802.3af Power over Ethernet (PoE)
    IEEE 802.3at Power over Ethernet plus (PoE+)
    IEEE 802.3az Energy Efficient Ethernet (EEE)
    IEEE 802.3u 100BASE-X
    IEEE 802.3x Flow control - full-duplex operation
    IEEE 802.3z 1000BASE-X
    IEEE 1588v2 Precision clock synchronization protocol v2

    IPv4 Features

    RFC 768
    User Datagram Protocol (UDP)
    RFC 791
    Internet Protocol (IP)
    RFC 792
    Internet Control Message Protocol (ICMP)
    RFC 793
    Transmission Control Protocol (TCP)
    RFC 826
    Address Resolution Protocol (ARP)
    RFC 894
    Standard for the transmission of IP datagrams over Ethernet networks
    RFC 919
    Broadcasting Internet datagrams
    RFC 922
    Broadcasting Internet datagrams in the presence of subnets
    RFC 932
    Subnetwork addressing scheme
    RFC 950
    Internet standard subnetting procedure
    RFC 1042
    Standard for the transmission of IP datagrams over IEEE 802 networks
    RFC 1071
    Computing the Internet checksum
    RFC 1122
    Internet host requirements
    RFC 1191
    Path MTU discovery
    RFC 1518
    An architecture for IP address allocation with CIDR
    RFC 1519
    Classless Inter-Domain Routing (CIDR)
    RFC 1812
    Requirements for IPv4 routers
    RFC 1918
    IP addressing
    RFC 2581
    TCP congestion control

    IPv6 Features

    RFC 1981
    Path MTU discovery for IPv6
    RFC 2460
    IPv6 specification
    RFC 2464
    Transmission of IPv6 packets over Ethernet networks
    RFC 2711
    IPv6 router alert option
    RFC 3484
    Default address selection for IPv6
    RFC 3587
    IPv6 global unicast address format
    RFC 3596
    DNS extensions to support IPv6
    RFC 4007
    IPv6 scoped address architecture
    RFC 4193
    Unique local IPv6 unicast addresses
    RFC 4213
    Transition mechanisms for IPv6 hosts and routers
    RFC 4291
    IPv6 addressing architecture
    RFC 4443
    Internet Control Message Protocol (ICMPv6)
    RFC 4861
    Neighbor discovery for IPv6
    RFC 4862
    IPv6 Stateless Address Auto-Configuration (SLAAC)
    RFC 5014
    IPv6 socket API for source address selection
    RFC 5095
    Deprecation of type 0 routing headers in IPv6
    RFC 5175
    IPv6 Router Advertisement (RA) flags option
    RFC 6105
    IPv6 Router Advertisement (RA) guard


    AT Enterprise MIB including AMF MIB and SNMP traps
    Optical DDM MIB
    SNMPv1, v2c and v3
    IEEE 802.1AB Link Layer Discovery Protocol (LLDP)

    RFC 1155
    Structure and identification of management information for TCP/IP-based Internets
    RFC 1157
    Simple Network Management Protocol (SNMP)
    RFC 1212
    Concise MIB definitions
    RFC 1213
    MIB for network management of TCP/IP-based Internets: MIB-II
    RFC 1215
    Convention for defining traps for use with the SNMP
    RFC 1227
    SNMP MUX protocol and MIB
    RFC 1239
    Standard MIB
    RFC 1724
    RIPv2 MIB extension
    RFC 2578
    Structure of Management Information v2 (SMIv2)
    RFC 2579
    Textual conventions for SMIv2
    RFC 2580
    Conformance statements for SMIv2
    RFC 2674
    Definitions of managed objects for bridges with traffic classes, multicast filtering and VLAN extensions
    RFC 2741
    Agent extensibility (AgentX) protocol
    RFC 2819
    RMON MIB (groups 1,2,3 and 9)
    RFC 2863
    Interfaces group MIB
    RFC 3176
    sFlow: a method for monitoring traffic in switched and routed networks
    RFC 3411
    An architecture for describing SNMP management frameworks
    RFC 3412
    Message processing and dispatching for the SNMP
    RFC 3413
    SNMP applications
    RFC 3414
    User-based Security Model (USM) for SNMPv3
    RFC 3415
    View-based Access Control Model (VACM) for SNMP
    RFC 3416
    Version 2 of the protocol operations for the SNMP
    RFC 3417
    Transport mappings for the SNMP
    RFC 3418
    MIB for SNMP
    RFC 3621
    Power over Ethernet (PoE) MIB
    RFC 3635
    Definitions of managed objects for the Ethernet-like interface types
    RFC 3636
    IEEE 802.3 MAU MIB
    RFC 4022
    MIB for the Transmission Control Protocol (TCP)
    RFC 4113
    MIB for the User Datagram Protocol (UDP)
    RFC 4188
    Definitions of managed objects for bridges
    RFC 4292
    IP forwarding table MIB
    RFC 4293
    MIB for the Internet Protocol (IP)
    RFC 4318
    Definitions of managed objects for bridges with RSTP
    RFC 4560
    Definitions of managed objects for remote ping, traceroute and lookup operations
    RFC 5424
    Syslog protocol

    Multicast Support

    IGMP query solicitation
    IGMP snooping (IGMPv1, v2 and v3)
    IGMP snooping fast-leave
    MLD snooping (MLDv1 and v2)

    RFC 1112
    Host extensions for IP multicasting (IGMPv1)
    RFC 2236
    Internet Group Management Protocol v2 (IGMPv2)
    RFC 2715
    Interoperability rules for multicast routing protocols
    RFC 3306
    Unicast-prefix-based IPv6 multicast addresses
    RFC 3376
    RFC 4541
    IGMP and MLD snooping switches

    Quality of Service (QoS)

    IEEE 802.1p
    Priority tagging
    RFC 2211
    Specification of the controlled-load network element service
    RFC 2474
    DiffServ precedence for eight queues/port
    RFC 2475
    DiffServ architecture
    RFC 2597
    DiffServ Assured Forwarding (AF)
    RFC 2697
    A single-rate three-color marker
    RFC 2698
    A two-rate three-color marker
    RFC 3246
    DiffServ Expedited Forwarding (EF)

    Resiliency Features

    IEEE 802.1AX
    Link aggregation (static and LACP)
    IEEE 802.1D
    MAC bridges
    IEEE 802.1s
    Multiple Spanning Tree Protocol (MSTP)
    IEEE 802.1w
    Rapid Spanning Tree Protocol (RSTP)
    IEEE 802.3ad
    Static and dynamic link aggregation

    Routing Information Protocol (RIP)

    RFC 1058
    Routing Information Protocol (RIP)
    RFC 2080
    RIPng for IPv6
    RFC 2081
    RIPng protocol applicability statement
    RFC 2082
    RIP-2 MD5 authentication
    RFC 2453

    Security Features

    SSH remote login
    SSLv2 and SSLv3
    TACACS+ Accounting, Authentication and Authorisation (AAA)

    IEEE 802.1X
    authentication protocols (TLS, TTLS, PEAP and MD5)
    IEEE 802.1X
    multi-supplicant authentication
    IEEE 802.1X
    port-based network access control
    RFC 2560
    X.509 Online Certificate Status Protocol (OCSP)
    RFC 2818
    HTTP over TLS (“HTTPS”)
    RFC 2865
    RADIUS authentication
    RFC 2866
    RADIUS accounting
    RFC 2868
    RADIUS attributes for tunnel protocol support
    RFC 2986
    PKCS #10: certification request syntax specification v1.7
    RFC 3546
    Transport Layer Security (TLS) extensions
    RFC 3579
    RADIUS support for Extensible Authentication Protocol (EAP)
    RFC 3580
    IEEE 802.1x RADIUS usage guidelines
    RFC 3748
    PPP Extensible Authentication Protocol (EAP)
    RFC 4251
    Secure Shell (SSHv2) protocol architecture
    RFC 4252
    Secure Shell (SSHv2) authentication protocol
    RFC 4253
    Secure Shell (SSHv2) transport layer protocol
    RFC 4254
    Secure Shell (SSHv2) connection protocol
    RFC 5246
    TLS v1.2
    RFC 5280
    X.509 certificate and Certificate Revocation List (CRL) profile
    RFC 5425
    Transport Layer Security (TLS) transport mapping for Syslog
    RFC 5656
    Elliptic curve algorithm integration for SSH
    RFC 6125
    Domain-based application service identity within PKI using X.509 certificates with TLS
    RFC 6614
    Transport Layer Security (TLS) encryption
    for RADIUS
    RFC 6668
    SHA-2 data integrity verification for SSH


    RFC 854
    Telnet protocol specification
    RFC 855
    Telnet option specifications
    RFC 857
    Telnet echo option
    RFC 858
    Telnet suppress go ahead option
    RFC 1091
    Telnet terminal-type option
    RFC 1350
    Trivial File Transfer Protocol (TFTP)
    RFC 1985
    SMTP service extension
    RFC 2049
    RFC 2131
    DHCPv4 (server, relay and client)
    RFC 2616
    Hypertext Transfer Protocol - HTTP/1.1
    RFC 2821
    Simple Mail Transfer Protocol (SMTP)
    RFC 2822
    Internet message format
    RFC 3315
    DHCPv6 (server, relay and client)
    RFC 4330
    Simple Network Time Protocol (SNTP) version 4
    RFC 5905
    Network Time Protocol (NTP) version 4

    VLAN Support

    IEEE 802.1ad
    Provider bridges (VLAN stacking, Q-in-Q)
    IEEE 802.1Q
    Virtual LAN (VLAN) bridges
    IEEE 802.1v
    VLAN classification by protocol and port
    IEEE 802.3ac
    VLAN tagging

    Voice over IP (VoIP)

    Voice VLAN

    AT-FL-x230-QinQ VLAN double tagging (Q-in-Q) license VLAN Q-in-Q
    AT-FL-x230-OF13-1YR OpenFlow license for 1 year OpenFlow v1.3
    AT-FL-x230-OF13-5YR OpenFlow license for 5 years OpenFlow v1.3
    AT-FL-x230-UDLD UniDirectional Link Detection UDLD
    AT-FL-x230-PTP PTP (IEEE 1588v2) license PTP Transparent Mode

    Model availability can vary between regions. Please check to see which models are available in your region.


    L3 switch with 8 x 10/100/1000T PoE ports and
    2 x 100/1000X SFP ports


    L3 switch with 8 x 10/100/1000T ports and
    2 x 100/1000X SFP ports


    L3 switch with 16 x 10/100/1000T PoE ports and
    2 x 100/1000X SFP ports


    L3 switch with 16 x 10/100/1000T ports and
    2 x 100/1000X SFP ports


    L3 switch with 24 x 10/100/1000T PoE ports and
    4 x 100/1000X SFP ports


    L3 switch with 24 x 10/100/1000T ports and
    4 x 100/1000X SFP ports


    L3 switch with 16 x 10/100/1000T ports and
    1 x 100/1000X SFP port


    L3 switch with 24 x 10/100/1000T ports and
    2 x 100/1000X SFP ports


    Rack mount kit for x230-10GT


    Rack mount kit for x230-18GP/18GT, x230L-17GT


    Rack mount kit for x230-10GP

    SFP Modules


    100FX multi-mode 1310 nm fiber up to 2 km


    100FX single-mode 1310 nm fiber up to 15 km


    100BX Bi-Di (1310 nm Tx, 1550 nm Rx) fiber
    up to 10 km


    100BX Bi-Di (1550 nm Tx, 1310 nm Rx) fiber
    up to 10 km


    1000T 100 m copper


    1000SX GbE multi-mode 850 nm fiber up to 550 m


    1000SX GbE multi-mode 850 nm fiber up to 550 m
    industrial temperature


    1000X GbE multi-mode 1310 nm fiber up to 2 km


    1000LX GbE single-mode 1310 nm fiber up to
    10 km


    1000LX GbE single-mode 1310 nm fiber up to
    10 km industrial temperature


    1000LX GbE Bi-Di (1310 nm Tx, 1490 nm Rx) fiber
    up to 10 km


    1000LX GbE Bi-Di (1490 nm Tx, 1310 nm Rx) fiber
    up to 10 km


    1000LX GbE single-mode 1310 nm fiber up to 40 km


    1000ZX GbE single-mode 1550 nm fiber up to 80 km


    1000BX GbE Bi-Di (1310 nm Tx, 1490 nm Rx) fiber
    up to 20 km


    1000BX GbE Bi-Di (1490 nm Tx, 1310 nm Rx) fiber
    up to 20 km