Stratix 5700 Industrial Ethernet Switch Features and Benefits Simple device replacement via SD card that holds the configuration for easy swap out Power over Ethernet versions available to provide the ability to deliver power over the same cable as Ethernet Default configurations for industrial automation and EtherNet/IP devices (Global and Smartports) Security features help ensure that only authorized devices, users and traffic can access the network Studio 5000 Logix Designer Add-on Profiles for premier integration into the Rockwell Automation Integrated Architecture Predefined Logix tags for diagnostics FactoryTalk View Faceplates for status monitoring and alarming Cisco Internet Operating System (IOS) helps provide secure integration with enterprise network Cisco Catalyst switch architecture/feature set Common IT development and management tools; Command Line Interface (CLI) and Device Manager The wide deployment of EtherNet/IP in industrial automation means there is a growing demand to properly manage the network. New machines can add 5-50 Ethernet nodes, every line can add 250-1,000 nodes, and as new products are developed we add more nodes. Getting these machine level networks integrated into the plant network requires a converged network, where now there are many more devices connected on the same flat Ethernet network. An industrial managed switch can help you simplify the network infrastructure and machine integration into that existing network infrastructure, referred to as a converged network. The Allen-Bradley Stratix 5700 is a compact and scalable Layer 2 managed switch with Cisco technology embedded. Automation professionals can apply this switch to applications from small isolated to complex networks, monitor and control distributed devices and to integrate the plant floor to the enterprise systems. By choosing a switch that is co-developed by Rockwell Automation and Cisco, your operations and IT professionals leverage technology that is familiar to them and better enables collaboration to meet their business goals. Stratix Add on Profile (AOP)
Hardware Configurations Designed to provide scalable solutions, minimizing size and cost for deploying information enabled machines. There are three base port configurations. Each base model comes with dual power inputs, input and output alarms, console port, fiber-ready SFP slots 1, DIN rail mount and operating temperature range of -40 C to 60 C. Model options include: two Gb ports, SD flash card, IEEE 1588 support, Power over Ethernet (PoE), Network Address Translation (NAT), conformal coating and two different software configurations. Base Configurations 6, 10, or 20 port: 6 copper ports or 4 copper ports + 2 SFP slots 130mm x 75mm x 109mm 8 copper ports + 2 combo (copper or SFP slots) ports 130mm x 91mm x 109mm or 130mm x 91mm x 128mm (1783-BMS10CGP, - BMS10CGN) 16 copper + 2 combo ports + 2 SFP slots 130mm x 127mm x 128mm 16 copper + 2 combo ports + PoE 130mm x 127mm x 128mm 1 Multi- and single-mode SFPs are sold separately Designed and Developed for EtherNet/IP Automation Applications Optimized network performance Quality of Service (QoS) Default configurations are set to ODVA standards for EtherNet/IP industrial applications for discrete, motion, safety and process applications CIP Sync (1588) ODVA implementation of the IEEE IEC 61588 precision time protocol ensures performance when connecting EtherNet/IP devices Secure/limit access to the machine CIP port control and fault detection With your Logix program you can enable/disable port access based on the controller program never implemented to limit access to the network based on machine conditions Simplify design, deployment and maintainability DHCP per port Assign a specific IP address to each port, ensuring that the device attached to a given port will always get the same IP address Broken Wire Detection Detect cabling problems like, open, broken, cut or shorted twisted-pair wires, with status availability in the Logix Designer application Network Address Translation (NAT) A 1:1 IP address translation to help segment machine and line networks within the larger plant network and integrate duplicate machines into the architecture
Network Address Translation (NAT) The importance of information and data is becoming more important to manufactures, requiring machine builders to build smarter machines that can collect and forward data. To utilize data, machines need to be integrated into the broader plant network, where the information can be analyzed and sent to the right place at the right time. Machine integration onto a plant s network architecture can be difficult as OEM IP-address assignments rarely match those of the end-user network and network IP addresses are often unknown until the machine is being installed adding cost and time to the commissioning of the equipment, and delays moving that equipment into production. The Allen-Bradley Stratix 5700 with Network Address Translation (NAT) is a hardware Layer 2 implementation that provides wire speed 1:1 translations ideal for automation applications where performance is critical. NAT allows for: High performance and simplified integration of IP-address mapping from a set of local, machine-level IP addresses to the end user s broader plant network OEMs to deliver standard machines to end users without programming unique IP addresses End users to more simply integrate the machines into the larger network Easier machine maintenance because the machine configuration remains standard The Stratix 5700 switch with NAT technology also allows users to have the flexibility to segment or isolate network traffic by determining which devices are exposed to the larger network. By limiting access to certain devices, they can be isolated from unneeded network traffic, which can help optimize network performance at the local level. Securing Production and Meeting Standards Simplified tools are provided to help protect the machine and maximize network performance, and advanced security feature sets help IT professionals meet their standards and policies. Protecting the Machine Application/Project (CIP) based port access Controller based port control (on/off) Unauthorized device identification (tags) per port Configurable port security Preconfigured port security set-up via smartports Configure number of devices allowed per port Configurable device MAC ID authentication Protecting the Plant Encrypted administrative traffic SSHv2, SNMPv3 and HTTPS Advanced security features 802.1x for user authentication Multiple layers of password protection Access Control Lists (ACLs) to apply security policies per port TACACS+ and Radius for centralized authentication Flexible Topologies for Reliability When network availability is critical to your application, the Stratix 5700 supports a wide selection of resiliency and redundancy features and functionality. Spanning Tree Protocol (STP/RSTP/MST/PVST+/RPVST+) <1sec recovery time Resilient Ethernet Protocol (REP) Ring Topology <70ms recovery time Flex Links Redundant Star Topology <60msec recovery time EtherChannel Redundant Star Topology <100msec recovery time Port link aggregation load sharing and redundancy Cisco technology allows the Stratix 5700 to support ring, ring segments, and nested ring segments.
Glossary of Terms Access Control Lists allow you to filter network traffic. This can be used to selectively block types of traffic to provide traffic flow control or provide a basic level of security for accessing your network. CIP Port Control and Fault Detection allows for port access based on Logix controller program or controller mode (idle/fault). Allows secure access to the network based on machine conditions. CIP SYNC (IEEE1588) is the ODVA implementation of the IEEE 1588 precision time protocol. This protocol allows very high precision clock synchronization across automation devices. CIP SYNC is an enabling technology for time-critical automation tasks such as accurate alarming for post-event diagnostics, precision motion and high precision first fault detection or sequence of events. DHCP Per Port allows you to assign a specific IP address to each port, ensuring that the device attached to a given port will get the same IP address. This feature allows for device replacement without having to manually configure IP addresses. Encryption provides network security by encrypting administrator traffic during Telnet and SNMP sessions. EtherChannel is a port trunking technology. EtherChannel allows grouping several physical Ethernet ports to create one logical Ethernet port. Should a link fail, the EtherChannel technology will automatically redistribute traffic across the remaining links. Ethernet/IP (CIP) interface enables premier integration to the Integrated Architecture with Studio 5000 AOP, Logix tags and View Faceplates. FlexLinks provides resiliency with a quick recovery time and load balancing on a redundant star network. IGMP Snooping (Internet Group Management Protocol) constrains the flooding of multicast traffic by dynamically configuring switch ports so that multicast traffic is forwarded only to ports associated with a particular IP multicast group. MAC ID Port Security checks the MAC ID of devices connected to the switch to determine if it is authorized. If not the device is blocked and the controller receives a warning message. This provides a method to block unauthorized access to the network. Key Software Features * Separate SW IOS required FEATURE HIGHLIGHTS LITE FULL Switching CIP Sync (IEEE 1588) Separate option REP (Resilient Ring Protocol) FlexLinks QoS STP/RSTP/MST (instances) 64 128 IGMP snooping with querier VLANs with trunking 64 255 EtherChannel (link aggregation) Port Threshold (storm control and traffic shaping) IPv6 support Access control lists (ACLs) Static and InterVLAN routing Security CIP port control and fault detection MAC ID port security IEEE 802.1x security TACACS+, RADIUS authentication Encryption (SSH, SNMPv3, HTTPS) Separate option * Diagnostics Port mirroring Syslog Broken wire detection Duplicate IP detection Management SNMP Smartports DHCP per port Network Address Translation (NAT) Separate option Command Line Interface (CLI) Compatible with Cisco tools: CNA, CiscoWorks Application interface EtherNet/IP (CIP) interface Network Address Translation (NAT) provides 1:1 translations of IP addresses from one subnet to another. Can be used to integrate machines into an existing network architecture. Port Thresholds (Storm Control & Traffic Shaping) allows you to set both incoming and outgoing traffic limits. If a threshold is exceeded alarms can be set in the Logix controller to alert an operator. Power over Ethernet (PoE) provides electrical power along with data on a single Ethernet cable to end devices. QoS Quality of Service (QoS) is the ability to provide different priority to different applications, users, or data flows, to help provide a higher level of determinism on your network. REP (Resilient Ethernet Protocol) A ring protocol that allows switches to be connected in a ring, ring segment or nested ring segments. REP provides network resiliency across switches with a rapid recovery time ideal for industrial automation applications. Smartports provide a set of configurations to optimize port settings for common devices like automation devices, switches, routers, PCs and wireless devices. Smartports can also be customized for specific needs. SNMP Simple Network Management Protocol (SNMP) is a management protocol typically used by IT to help monitor and configure network-attached devices. Static and InterVLAN Routing bridges the gap between layer 2 and layer 3 routing providing limited static and connected routes across VLANs. STP/RSTP/MST Spanning Tree Protocol, is a feature that provides a resilient path between switches. Used for applications that requires a fault tolerant network. VLANs with Trunking is a feature that allows you to group devices with a common set of requirements into network segments. VLANs can be used to provide scalability, security and management to your network. 802.1x Security is an IEEE standard for access control and authentication. It can be used to track access to network resources and helps secure the network infrastructure.
Rockwell Automation and Cisco Working Together Rockwell Automation and Cisco are committed to being the most valuable resource in the industry for helping manufacturers improve business performance by bridging the technical and cultural gaps between plant floor and higher-level information systems. Through successful collaboration on products, services and educational resources, we help manufacturers converge and simplify their network infrastructure and tightly integrate technical and business systems using EtherNet/IP the world s leading open industrial Ethernet network. www.klinkmann.fi Klinkmann OY Fonseenintie 3, P.O. Box 38,FI-00371 Helsinki, Finland Ph. +358 9 540 4940, Fax +358 9 5413 541 automation@klinkmann.fi