SEL-2731S

Managed OT SDN Switch

The SEL-2731s is a high-performance, 24-port, 1U Ethernet switch designed for the harsh environments of power utilities and critical infrastructure. Its most notable feature is the "Selectable Control Plane" technology, which allows users to operate the hardware in unmanaged, RSTP-based managed, or OT SDN (Software-Defined Networking) mode depending on their specific needs. This provides a flexible migration path from traditional networking to next-generation secure SDN architectures.

Key Features

OT SDN-Based Zero-Trust

When operating in SDN mode, the switch applies a "Deny-by-Default" principle. Only communication flows explicitly permitted by the central controller are allowed to pass, fundamentally blocking all unauthorized traffic and preventing the "lateral movement" of internal threats.
Reduced Attack Surface by Excluding Vulnerable Protocols

The switch can operate without traditional Ethernet protocols that are susceptible to cyberattacks, such as MAC address learning, broadcasts, and RSTP. This eliminates chronic security vulnerabilities like MAC flooding and ARP spoofing.
Whitelist-Based Micro-segmentation

Moving beyond simple physical separation, it granularly isolates communication paths by device, port, and protocol. Any attempt to communicate outside of allowed services is immediately blocked, maximizing network security.
Physical Environmental Security

Compliant with IEEE 1613 and IEC 61850-3 standards, the switch features a fanless design and supports a wide operating temperature range (–40°C to +85°C), ensuring uninterrupted security monitoring even in extreme field conditions.

Centralized Network Management (SEL-5056)

Security policies for the entire network are deployed simultaneously from a central management system, eliminating the need to configure switches individually. This prevents "security holes" caused by human error during manual configuration.
Real-Time Situational Awareness

Operators can visualize and monitor all communication flows within the network in real-time. The switch provides an intuitive dashboard to immediately identify unauthorized connection attempts or traffic anomalies.
Hardware-Accelerated Fault Recovery

Optimized fault recovery at the hardware level allows communication to be restored within microseconds (µs) in the event of a failure. This ensures the continuity of security and control data, increasing overall system availability.
Automated Commissioning and Provisioning

Rapidly configure circuits by importing network drawings or configuration files. This standardizes security settings across large-scale deployments and significantly reduces setup time.

List