OVERVIEW

Lantech OS3/OS4 switch is powerful with complete Layer 2 management features and optional upgradable for future expansion, such as Layer 3 Lite, Layer 3, IEC61375-2-5 (ETBN), R-NAT (OS4), hardware NAT (OS4) etc.

Support Open API document for Restful API for better switch performance; Auto-provisioning for firmware/configuration update
The switch supports Restful API that uses JSON format to access and use data for GET, PUT, POST and DELETE types to avoid traditional SNMP management occupying CPU utilization. It also supports auto-provisioning for switch to auto-check the latest software image and configuration through TFTP server.

Auto feed configuration for swapped new switches for Seamless Network Maintenance
Lantech OS3/4 switch supports auto-feed configuration features that revolutionize network switch setup and management. It ensures that new and replacement switches automatically receive the correct configuration without manual intervention.

The Optional Certified Cybersecurity IEC 62443-4-2** Helps Maintain the Safety and Reliability of Critical Infrastructure and Ensures Operational Continuity
Lantech OS3 platform is designed with the optional IEC 62443-4-2 SL2 standard of cybersecurity to prevent threats from network attacks. It includes vulnerability checking, encrypted files, public key management, strong password enforcement, account management, and penetration and stress testing, totaling more than 90 security measures. The optional certified IEC 62443-4-2** defines component-level security requirements, meets a set of security requirements with FR.1 Identification and authentication control, FR.2 Use Control, FR.3 System Integrity, FR.4 Data confidentiality, FR.5 Restricted data flow, FR.6 Timely response to events, and FR.7 Resource availability, to effectively mitigate network threats at the hardware and software level.

DDoS Security to Protect Switch and Server
OS5 platform is designed with a high standard of security methods to prevent network threads, such as prevention of DDoS attacks, 802.1X security authentication, Dynamic ARP Inspection, IP Source Guard and Port Security. The MAC-based port authentication is an alternative approach to 802.1x for authenticating hosts connected to a port. By authenticating based on the host’s source MAC address, the host is not required to run a user for the 802.1x protocol. The RADIUS server that performs the authentication will inform the switch if this MAC can be registered in the MAC-table.

802.1X security by MAC address
MAC-based port authentication is an alternative approach to 802.1x for authenticating hosts connected to a port. By authenticating based on the host's source MAC address, the host is not required to run a user for the 802.1x protocol. The RADIUS server that performs the authentication will inform the switch if this MAC can be registered in the MAC address table of the switch.

DHCP option 82 & Port based, Mac based DHCP, Option 7/66, DHCP Snooping, IPv6 DHCP basic server
DHCP server can assign dedicated IP address by MAC or by port (Port based for single switch), it also can assign IP address by port for multiple switches with single DHCP option82 server. DHCP Snooping is supported. DHCP option66 server can offer IP address of TFTP server to DHCP client for VOIP application while DHCP option7 can offer IP address of logging server. Basic Ipv6 DHCP service can be supported.

User friendly GUI, Auto topology drawing
The user-friendly UI, innovative auto topology drawing and topology demo makes OS3/OS4 Ethernet switches much easier to get hands-on. The complete CLI enables professional engineer to configure setting by command line.

Enhanced G.8032 ring, 8 MSTI MSTP; MRP ring
Lantech OS3/OS4 Ethernet switches features enhanced G.8032 ring which can be self-healed in less than 20ms for single ring topology protection covering multicast packets. They support various ring topologies that covers enhanced ring and basic ring by easy setup than others. OS3 also supports standard G.8032 ring to install with the other vendor’s switch under G.8032 ring protection. OS3/OS4 support MSTP that allows RSTP over VLAN for redundant links with 8 MSTI. MRP (Media Redundancy Protocol) can be supported for industrial automation networks.

Enhanced Storm control
Storm control prevents traffic on a LAN from being disrupted by a broadcast, multicast, or unicast storm on one of the physical interfaces and the detection is more precise and reaction is more efficient.

Protocol based VLAN; Subnet based VLAN; QinQ, QoS and GVRP
It supports the QinQ, QoS and GVRP for large VLAN segmentation. The protocol-based VLAN processes traffic based on protocol. It filters IP traffic from nearby end-stations using a particular protocol such as IP, IPX, ARP or other Ethernet-types in a Hex value. Subnet based VLANs group traffics into logical VLANs based on the source IP address and IP subnet. The above features can help to build VLAN in the network mixed with managed and un-managed switch as to define packets to which VLAN group based on protocol or subnet.

IGMPv3, GMRP, router port, MLD Snooping, static multicast forwarding and multicast Ring protection
The unique multicast protection under enhanced G.8032 ring can offer immediate self-recovery instead of waiting for IGMP table timeout. It also supports IGMPv3, GMRP, router port, MLD snooping and static multicast forwarding binding by ports for video surveillance application.

Support NTP, SNTP server with built-in RTC clock source (RTC is subject to model variant)
The support of NTP/SNTP is able to synchronize system clock in Internet. Lantech OS3/OS4 switch supports NTP server & server/client mode. The switch also built-in a real-time clock (RTC) for measurement the passage of time with a NTP server. (RTC is subject to model variant)

Enhanced environmental monitoring for switch inside information
The enhanced environmental monitoring can detect switch overall temperature, total power load, actual input voltage and current. It can send the SNMP traps alert when abnormal. (Subject to model variant)

Snapshot switch information for trouble-shooting analysis
With the distinctive Snapshot feature to gather switch data including port statistics, system running information, configuration and event log at the point of time or by scheduling to address switch issues and analyze the root cause in a timely manner.

Optional Layer3 Lite / Layer3 to be upgradable
Lantech OS3/OS4 platform is optional upgradable to L3 Lite or L3 for future expansion. The optional L3L/L3 supports enhanced routing functionality, including RIP v1/v2(L3), OSPF v1/v2, DVMRP (L3), PIM, VRRPv2, VRRP aware PIM, hardware NAT, Static NAT, PAT, Port forwarding, etc. It provides better network performance for large scale applications. (NAT is only available on OS4-L3/L3L platform)

Optional TTDP, TRDP (MD Reply) and R-NAT protocol for train application (EN50155 models)
Lantech OS3/OS4 platform complies with IEC 61375-3-4 (ECN) standard. The support of Ethernet Consist Network allows interconnection between end devices located in single consist of train and interoperability with IEC61375-2-5 (ETBN). The optional TTDP (Train Topology Discovery Protocol) can assign IP and Gateway IP automatically when train network topology is changed due to the adjustment of train cars. Exclusive DHCP and VLAN over TTDP can help bind device with certain IP assignment and segment VLAN in ECN network. The optional R-NAT (Railway-Network Address Translation) is under TTDP that simplifies the management of network address translation between ETB and ECN. It supports TTDP** (Train Topology Discovery Protocol) according to IEC 61375-2-5, and TRDP** (Train Real-time Data Protocol) MD Reply.

Optional LantechView** for Lantech devices maintenance
LantechView can automatically discover Lantech devices on the network, providing seamless configuration management. It supports both single-device operation and batch import/export of configurations across multiple IP subnets and VLAN areas, enhancing network efficiency and management. Additionally, LantechView also features firmware management capabilities, allowing batch verification and simultaneous upgrades to the latest firmware versions, ensuring consistency across all devices. To learn more about Lantech LantechView software solutions, please refer to Lantech LantechView Software Datasheet.