Transforming OpenLAN Switching with SONiC Lite & Edgecore ECS4650-54P

At PLVision, we are excited to introduce a new advancement in open networking – OLS (OpenLAN Switching) support for the SONiC Lite network operating system (NOS). This milestone reshapes the future of campus and edge networks, delivering enhanced performance, flexibility, and reliability. Driving this innovation is the Edgecore ECS4650-54P switch, featuring high-speed 10G/25G uplinks and PoE++ support.

In this article, we’ll explore the key OLS features and the core capabilities of SONiC Lite on the Edgecore ECS4650-54P switch, demonstrating how this solution empowers businesses with greater scalability, choice, and cost-efficiency. Additionally, we’ll highlight practical use cases and provide a glimpse into upcoming enhancements, including PoE management, improved routing capabilities, and network diagnostics.

Edgecore ECS4650-54P and SONiC Lite: High-Speed Connectivity and Power Efficiency

The Edgecore ECS4650-54P is a flagship switch in the OLS series, purpose-built to deliver high-speed connectivity and advanced PoE++ (IEEE 802.3af/at/bt) power capabilities. Its key features include:

• High-Performance Uplinks: Equipped with 6 SFP28 ports supporting 10G/25G speeds, ensuring robust bandwidth for demanding enterprise and campus networks.
• Comprehensive PoE++ Support: 48 x 1GbE PoE ports provide reliable power for mission-critical devices, including wireless access points, IP cameras, and IoT systems.

Pre-installed with SONiC Lite, the ECS4650-54P enables simplified, efficient deployment for Internet Service Providers (ISPs), Managed Service Providers (MSPs), and enterprises – delivering immediate value through simplified integration and operational efficiency.

Integration of SONiC Lite into the OLS Ecosystem

Building on the principles of OpenWiFi, Open LAN Switching expands its capabilities into LAN switching solutions while staying true to its core values of open-source technologies, interoperability, and cost-efficiency. This approach improves networking by fostering an open ecosystem where flexibility and freedom of choice drive innovation and value.

As a key initiative under the Telecom Infra Project (TIP), OLS aims to transform networking technologies by introducing disaggregated, white-box solutions. They optimize total cost of ownership (TCO) while providing a broader range of hardware choices, empowering businesses to tailor their networks with best-in-class components and unparalleled customization. Thus, enterprises can achieve greater operational flexibility and make smarter, future-proof investments with reduced dependency on proprietary systems.

The integration of SONiC Lite within the OLS ecosystem addresses specific, high-impact use cases, particularly in campus and small to mid-sized enterprises (SMEs) network infrastructures. These environments require cost-effective, scalable, and secure networking solutions to simplify operations and enhance performance.

SONiC Lite, designed for streamlined performance and operational simplicity, extends the benefits of OLS with an efficient, resource-optimized approach. Its key features include:

• Improved Resource Usage: Minimal CPU, RAM, and storage requirements allow efficient performance even on less demanding hardware, reducing overhead without compromising functionality.
• Enhanced Security: Integrated Port-based Network Access Control (PNAC) delivers robust protection and secure communication across the network.
• Scalability: Broad hardware compatibility provides future-ready flexibility, enabling enterprises to scale as their business needs evolve.

By focusing on efficiency, security, and adaptability, SONiC Lite further enhances network infrastructure with a comprehensive set of features tailored to streamline network performance.

SONiC Lite: Comprehensive Feature Set for Enhanced Performance

SONiC Lite delivers a robust set of features designed to enhance operational efficiency. With its lightweight architecture and support for key Layer 2, Layer 3, security, and troubleshooting features, it offers intuitive control over core functionalities, enabling administrators to optimize resources while maintaining network reliability.

The following features enhance SONiC Lite’s performance and operational efficiency:

Efficient and Secure Network Architecture with OLS PNAC and PoE / DHCP Relay

This use case highlights a network design featuring an L2 switch, VLAN segmentation, and centralized management for wireless access points (APs).

Picture 1. Topology Overview

The APs, connected to an L2 switch like the Edgecore ECS4650-54P on VLAN 10, rely on the switch for both connectivity and power through Power over Ethernet (PoE). The switch also enables port-based network access control (PNAC) and functions as a DHCP relay to forward IP address requests to the appropriate server.

Centralized control is provided by the OpenWiFi Gateway (OWGW) Controller, using the OpenWiFi uCentral protocol to manage APs and switches. Authentication, authorization, and accounting (AAA) services are delivered by a FreeRADIUS server on VLAN 20, integrated into the network via the L2 switch.

A NAT router configured as a “router on a stick” connects multiple VLANs, providing internet routing and acting as a DHCP server to allocate IP addresses dynamically. A trunk port between the router and switch enables multi-VLAN traffic over a single link.

In summary, this architecture combines VLAN-based segmentation, centralized management, and scalability to deliver secure, efficient wireless connectivity with integrated DHCP and AAA services.

Network Deployment with SONiC Lite and OpenWiFi Controller: Configuration Overview

Another use case demonstrates a scenario where PoE supplies power to edge devices, while PNAC ensures secure communication. A DHCP relay is employed to facilitate connections to a remote DHCP server.

OWGW Deployment

The image below illustrates the user interface of the OpenWiFi (OWGW) controller, highlighting the Edgecore ECS4650-54P switch. The switch runs the SONiC Lite operating system with OpenLAN Switching (OLS) support and uses pre-configured certificates installed during the U-Boot stage to enable automatic connectivity to the controller.

Picture 2. General Overview

The picture 2 displays the Link-State (Up) tab within the Interfaces section of the OpenWiFi controller. The tab provides detailed information about the link statuses of multiple Ethernet ports. Each row represents a specific Ethernet port, showing critical parameters such as:

• Port name (Ethernet0, Ethernet1, etc.)
• Duplex mode (Full)
• Speed (1 Gbps)
• Received data (RX)
• RX dropped packets
• RX errors
• Total RX packets.

A green circle icon next to a port indicates an active link. Additionally, a red-circled button is available beside Ethernet0, allowing users to reboot the PoE device connected to that port. Clicking this button initiates a power cycle of the connected PoE device, which can help resolve connectivity or power-related issues.

Picture 3. Link-State Status

Validation

The validation process ensures that all key components of the deployment are functioning correctly and meeting performance expectations. The following aspects should be thoroughly validated.

Traffic Monitoring

Monitor and verify network traffic to confirm successful device connectivity and data flow across the infrastructure. Check that edge devices are properly powered via PoE and can communicate securely with the network using the PNAC mechanism. Analyze traffic metrics to ensure there are no unexpected delays, dropped packets, or connection issues that could impact performance.

Feature Verification

Confirm that all configured features are operating as intended:

• PoE: Ensure edge devices receive sufficient power through PoE-enabled ports and test the ability to remotely power-cycle devices when necessary.
• PNAC: Validate secure access control, confirming that only authorized devices are permitted to communicate within the network.
• DHCP Relay Functionality: Check that the DHCP relay correctly forwards DHCP messages between devices and the remote DHCP server, allowing clients to obtain IP addresses without direct server access.

Comprehensive validation helps guarantee a stable, secure, and efficient network deployment, providing a foundation for reliable operations and future scalability.

Plans for Upcoming SONiC Lite OLS Release

The next SONiC Lite releases will introduce a range of enhancements and new features designed to improve functionality, simplify management, and expand use cases. Key areas of planned development include:

Support for OLS Features

Extended Power over Ethernet (PoE) Capabilities

• Power Limit Configuration: Allow administrators to set and manage power limits for individual ports to optimize energy consumption.
• Supported Detection Protocols: Enable compatibility with additional PoE detection protocols to increase device interoperability.

Enhanced Device Management

• NTP Peer Configuration: Provide support for configuring Network Time Protocol (NTP) peers to improve time synchronization across devices.
• System Password Change: Introduce mechanisms for updating system-level passwords to enhance security.
• Service Control: Enable administrators to selectively enable or disable system services for improved flexibility and security management.

SVI (Switched Virtual Interface) Enhancements

• Add support for assigning static IP addresses to interfaces to provide greater control over network routing.

Routing Improvements

• Static Routes with Next-Hop Configuration: Simplify static route creation by enabling next-hop definitions for better traffic management.

Extended State Message Support

• Integrate more detailed state messages for improved monitoring and diagnostics.

Diagnostic and Troubleshooting Tools

• Introduce real-time network diagnostics and enhanced troubleshooting capabilities to help identify and resolve issues faster.

Improvements

Streamlined PNAC Configuration

• Simplify the configuration process for Port-based Network Access Control (PNAC) to reduce deployment complexity and improve user experience.

Optimized PoE Power Management

• Enhance power management to ensure efficient energy distribution across all PoE-enabled ports, maximizing device performance and reducing waste.

Extended Testing Approach

New Use Cases

• Develop scenarios focusing on IoT device integration within campus networks and advanced security implementations using AAA (Authentication, Authorization, and Accounting) with RADIUS server configurations.

Automated Test Suites

• Create automated regression test suites to continuously validate the stability and performance of newly introduced features.

Support for New Devices

The upcoming release will introduce support for a new platform featuring:

• 2.5 GbE with PoE Capabilities: Increased performance for access points and other edge devices using the ECS4655-30P model, which offers PoE++ support for up to 90W.
• 10/25 Gbps Uplinks: Higher bandwidth uplink options to meet growing network demands.

Conclusions

OpenLAN Switching (OLS) support for SONiC Lite delivers a streamlined, resource-efficient, and scalable solution tailored for enterprises, internet service providers, managed service providers, and more.

The integration of the Edgecore ECS4650-54P switch, equipped with high-performance 10G/25G uplinks, 48 x 1GbE PoE ports, and pre-installed SONiC Lite, exemplifies the capabilities of this disaggregated, cost-effective approach.

By focusing on operational efficiency, security, and scalability, SONiC Lite within the OLS framework empowers organizations to invest in future-ready, agile campus and edge networks, supporting long-term innovation and cost-effective growth.