AI clusters involve three types of networks: Frontend Fabric, GPU Backend Fabric, and Storage Backend Fabric.

• Frontend Fabric: used to connect to the Internet or storage systems for loading training data.
• GPU Backend Fabric (Compute Network) : supports GPU-to-GPU communication, provides lossless connectivity and enables cluster scaling. It is the core carrier for training data interaction between GPU nodes.
• Storage Backend Fabric: handles massive data storage, retrieval, and management between GPUs and high-performance storage.

This guide focuses on the design of 400G AI intelligent computing GPU backend networks at different scales. Using Asterfusion high-density 400G/800G data center switches as hardware carrier, the solutions implements Clos topology based on Rail-only and Rail-optimized architectures to provide standardized deployment guides.

Intended for solution planners, designers, and on-site implementation engineers who are familiar with:

• Asterfusion data center switches
• RoCE, PFC, ECN, and related technologies

The rapid evolution of AI/ML (Artificial Intelligence/Machine Learning) applications has driven a continuous surge in demand for large-scale clusters. AI training is a network-intensive workload where GPU nodes interact with massive gradient data and model parameters at high frequencies. This drives the need for a network infrastructure defined by high bandwidth, low latency, and interference resistance.

Traditional general-purpose data center networks struggle to adapt to the traffic characteristics of AI training, which are dominated by “elephant flows” and low entropy. This often leads to bandwidth bottlenecks, transmission congestion, and latency jitter, failing to meet the rigorous requirements of AI training. As the “communication backbone” of the AI cluster, the backend network directly determines the efficiency of GPU compute release. Therefore, an efficient cluster networking solution is urgently needed to satisfy low-latency, high-throughput inter-node communication.

Leaf nodes connected to GPUs with the same index across different servers are defined as a Rail plane. That is, Rail N achieves interconnection for all #N GPUs via the N-th Leaf switch. As shown in the figure below, the GPUs on each server are numbered 0–7, corresponding to Rail 1–Rail 8. Intra-rail transmission occurs when the source and destination GPUs’ corresponding NICs are connected to the same Leaf switch. LLM (Large Language Model) training optimizes traffic distribution through hybrid parallelism strategies (Data, Tensor, and Pipeline parallelism), concentrating most traffic within nodes and within the same rail.

The Rail-only architecture adopts a single-tier network design, physically partitioning the entire cluster network into 8 independent rails. Communication between GPUs of different nodes is intra-rail, achieving “single-hop” connectivity.

Compared to traditional Clos architectures, the Rail-only design eliminates the Spine layer. By reducing network tiers, it saves on the number of switches and optical modules, thereby reducing hardware costs. It is a cost-effective, high-performance architecture tailored for AI large model training in small-scale compute clusters.

Building on the Rail concept, a basic building block consisting of a set of Rails is regarded as a Group, which includes several Leaf switches and GPU servers. As the cluster scale increases, expansion is achieved by horizontally stacking multiple Groups.

The compute network can be visualized as a railway system: compute nodes are “stations” loaded with computing power; Rails are “exclusive rail lines” connecting the same-numbered GPUs at each station to ensure high-speed direct access; and Groups are “standard platform” units integrating multiple tracks and their supporting switches. Through this modular stacking, an intelligent computing center can scale horizontally like building blocks, ensuring both ultra-fast intra-rail communication and efficient interconnection for 10,000-GPU clusters.

As shown above, the key design of the Rail-optimized architecture is to connect the same-indexed NICs of every server to the same Leaf switch, ensuring that multi-node GPU communication completes in the fewest possible hops. In this design, communication between GPU nodes can utilize internal NVSwitch[1] paths, requiring only one network hop to reach the destination without crossing multiple switches, thus avoiding additional latency. The details are as follows:

1. Intra-server: 8 GPUs connect to the NVSwitch via the NVLink bus, achieving low-latency intra-server communication and reducing Scale-Out network transmission pressure.
2. Server-to-Leaf: All servers follow a uniform cabling rule: NICs are connected to multiple Leaf switches according to the “NIC1-Leaf1, NIC2-Leaf2…”.
3. Network Layer: Leaf and Spine switches are fully meshed in a 2-tier Clos architecture.

A key design factor in multi-stage Clos architectures is the Oversubscription Ratio. This is the ratio of total downlink bandwidth (Leaf nodes to GPU servers) to total uplink bandwidth (Leaf nodes to Spine nodes), as shown below. If the ratio is greater than 1:1, the fabric may lack sufficient capacity to handle inter-GPU traffic when downlink traffic reaches line rate, potentially causing congestion or packet loss.

In short, a smaller oversubscription ratio leads to non-blocking communication but higher costs, while a larger ratio reduces costs but increases congestion risk. In high-performance AI networks, a 1:1 non-blocking design is generally recommended.

The intra-server and intra-rail communication paths are similar for both architectures. Taking the Rail-optimized architecture as an example, the following analyzes inter-GPU communication paths in different scenarios:

• Intra-server Communication

Intra-server Communication completed via NVSwitch without passing through the external network.

• Intra-rail Communication

Intra-rail Communication forwarded through a single Leaf switch.

• Inter-rail (without PXN) and Cross-group Communication

Inter-rail communication is routed through the Spine layer. Similarly, inter-group communication traverses the Spine fabric to reach its destination.

• Inter-rail (with PXN) Communication

With PXN[2] technology, transmission is completed in a single hop without crossing the Spine.

RDMA (Remote Direct Memory Access) is widely used in HPC, AI training, and storage. Originally implemented on InfiniBand, it evolved into iWARP and RoCE (RDMA over Converged Ethernet) for Ethernet transport.

RoCEv2 utilizes UDP for transport, which necessitates end-to-end congestion control via PFC (Priority Flow Control) and ECN (Explicit Congestion Notification) to guarantee lossless performance. A PFC-only strategy risks unnecessary head-of-line blocking by halting traffic too aggressively. while a standalone ECN approach may suffer from reaction-time latency, potentially leading to buffer overflows and packet loss. Consequently，a unified congestion control strategy is required to balance responsiveness with stability.

DCQCN (Data Center Quantized Congestion Notification) serves as a hybrid congestion control algorithm designed to balance throughput and latency. It triggers ECN during the early congestion to proactively throttle the NIC’s transmission rate. Should congestion intensify, PFC acts as a fail-safe to prevent buffer overflows by exerting backpressure hop-by-hop.

The DCQCN operational logic follows a structured hierarchy:

1. ECN First (Proactive Intervention): As egress queues begin to accumulate and breach WRED thresholds, the switch marks packets (CE bits). Upon receiving these marked packets, the destination node generates CNPs (Congestion Notification Packets) directed back to the sender, which then smoothly scales down its injection rate to alleviate pressure without halting traffic.
2. PFC Second (Reactive Safeguard): If congestion persists and buffer occupancy hits the xOFF threshold, the switch issues a PAUSE frame upstream. This temporarily halts transmission for the affected queue, ensuring zero packet loss.
3. Flow Recovery: Once buffer levels recede below the xON threshold, a RESUME frame is sent to notify the upstream device to resume the transmission.

To streamline the complexities of lossless Ethernet, Asterfusion has introduced the Easy RoCE capability in AsterNOS. This feature automates optimized parameter generation and abstracts intricate configurations into business-level operations, significantly enhancing cluster maintainability.

ECMP (Equal-Cost Multi-Path) per-flow load balancing is the most widely used routing strategy in data center networks. It assigns packets to several paths by hashing fields, such as the IP 5-tuple. This approach is known as static load balancing.

However, per-flow hashing struggles with uniform distribution when traffic lacks entropy. The impact is severe during “elephant flows”, which overwhelm specific member links and trigger packet loss.

AI workloads further challenge this model. Deep learning relies on collective communication (e.g., All-Reduce, All-Gather, and Broadcast) that generates massive, bursty traffic reaching Terabits per second (Tbps). These operations are subject to the “straggler effect” — where congestion on a single link bottlenecks the entire training job. This makes traditional ECMP unfit for RoCEv2-based AI backend fabrics.

To address this, the following solutions are introduced:

ARS is a flowlet-based load balancing technology. Leveraging hardware ALB (Auto-Load-Balancing)[3] capabilities, ARS achieves near per-packet equilibrium while mitigating packet reordering. The technology partitions a flow into a series of flowlets based on gap time. By sensing real-time link quality—such as bandwidth utilization and queue depth—ARS dynamically assigns flowlets to the most idle paths, maximizing overall fabric throughput.

Intelligent routing provides both dynamic and static mechanisms.

• Dynamic Intelligent Routing: This strategy evaluates path quality based on bandwidth usage, queue occupancy, and forwarding latency. Bandwidth and queue statistics are pulled from hardware registers at millisecond-precision, while latency is monitored via INT (In-band Network Telemetry) at nanosecond-resolution. Switches exchange this real-time telemetry via BGP extensions and utilize dynamic WCMP (Weighted Cost Multipath) to steer traffic toward the optimal path, proactively eliminating bottlenecks.
• Static Intelligent Routing: Designed for scenarios requiring high path stability, this method uses PBR (Policy-Based Routing) to enforce deterministic forwarding. By binding specific GPU traffic to dedicated physical paths (Leaf-to-Spine), it ensures a strict 1:1 non-blocking oversubscription for fixed traffic models.

Packet Spraying [4]is a per-packet load balancing technique that distributes packets uniformly across all available member links to prevent any single-path congestion. It supports two primary algorithms:

• Random: Disperses packets across members using a randomized distribution.
• Round Robin: Sequences packets across members in a cyclic, equal-weight manner.

While packet spraying theoretically maximizes network utilization, it introduces the challenge of packet reordering due to varying link latencies. Thus, this technology requires robust hardware support, specifically high-performance NICs capable of sophisticated out-of-order reassembly at the endpoint.

Based on hardware cost and scalability, the following design recommendations are provided:

Table 1: Solution Design by GPU Cluster Scale

The figure above illustrates a Rail-only architecture for a 400G AI backend network consisting of 32 compute nodes (256 GPUs) with 8 CX732Q-N switches deployed as Leaf nodes.The key design principles are as follows:

• Each GPU connects to a dedicated NIC; NICs follow the “NIC N to Leaf N” rule. Independent subnets per Rail.
• Single-tier Clos architecture. 
• Easy RoCE enabled on Leaf switches.

For small-scale 400Gbps RoCEv2 fabrics, Asterfusion CX864E-N or CX732Q-N switches are recommended. Taking the NVIDIA DGX H100 server (equipped with 8 GPUs) as a baseline, the maximum capacity for different models is summarized below:

Table 2: Max Capacity per Model (Rail-only Architecture)

Note: CX864E-N provides 64 x 800G ports, which can be split into 128 x 400G ports.

Example: Building a 512-GPU Cluster.

To build a cluster with 64 H100 servers (512 GPUs) using CX864E-N as Leaf nodes:

• Number of Leaf Nodes Required = 512 / 128 = 4 
• Scalability Limit (Leafs) = 8 (matching the 8 GPUs per server)
• Scalability Limit (GPUs) = 8 * 128 = 1024

Node Requirements and Scalability Summary:

• Number of Leaf Nodes = Total GPUs / Max GPUs per switch.
• Maximum Scalability (Leafs) = Number of GPUs per server. 
• Maximum Scalability (Total GPUs) = GPUs per server * Max GPUs per switch.

The figure above depicts a Rail-optimized architecture for 128 compute nodes (1024 GPUs). It employs 24 CX864E-N switches (8 Spines, 16 Leafs) organized into two Groups, with 8 Leaf nodes per Group. Key design principles include:

• Each GPU connects to a dedicated NIC; NICs follow the “NIC N to Leaf N” rule. Independent subnets per Rail.
• 2-Tier Clos Fabric: Leaf and Spine switches are fully meshed. Leveraging IPv6 Link-Local, unnumbered BGP neighbors are established to exchange Rail subnet routes, eliminating the need for IP planning on interconnect interfaces.
• 1:1 Oversubscription: To ensure non-blocking transport, the oversubscription ratio on Leaf switches is strictly maintained at 1:1.
• Unified Lossless Fabric: Easy RoCE and advanced load balancing features are enabled on both Leaf and Spine nodes.

For these fabrics, we recommend CX864E-N and CX732Q-N due to their ultra-low latency. The CX864E-N offers end-to-end latency as low as 560ns, while the CX732Q-N reaches 500ns. This ensures intra-rail latency remains around 600ns and Inter-rail (3-hop) latency stays under 2μs.

In a Rail-optimized design, the number of Leaf nodes per Group matches the number of GPUs per server (Rails). For H100 servers (8 GPUs), each Group contains 8 Leaf nodes. To maintain a 1:1 oversubscription, half of the Leaf’s ports connect to GPUs and half to Spines.

Table 3: Maximum Capacity per Group (Rail-optimized Architecture)

Spine Node Calculation: The number of Spine nodes is determined by the port density (radix) of the Leaf nodes. If Leaf and Spine switches provide M and N ports respectively, the required number of Spines = (Total Leafs * M / 2) / N. If Leaf and Spine use identical models, the Spine count = Total Leafs / 2.

Example:

Building a 4096-GPU Cluster To build a cluster with 512 H100 servers (totaling 4096 GPUs) using CX864E-N for both Leaf and Spine layers, the calculation is as follows:

• Leaf nodes per Group = 8
• Max servers per Group = 128 / 2 = 64
• Max GPUs per Group = 64 * 8 = 512
• Number of Groups required = 4096 / 512 = 8
• Total Leaf count = 8 (per Group) * 8 (Groups) = 64 Nodes
• Total Spine count = 64 (Leafs) / 2 = 32 Nodes

Scalability Limits (CX864E-N as Spine/Leaf): When designing a compute network, scalability is limited by the Spine switch radix. For the CX864E-N (128 x 400G ports), the theoretical maximum scale is:

• Max Groups Supported: 128 (Spine ports) / 8 (Leafs per Group) = 16.
• Max Servers: 16 * 64 = 1024. – Max GPUs: 16 * 512 = 8192.

The following tables detail the node configuration requirements for deploying backend networks of varying GPU scales using the CX864E-N and CX732Q-N in Rail-optimized architecture:

Table 4: Node Requirements for CX864E-N

Table 5: Node Requirements for CX732Q-N

Node Requirements Summary:

For a given cluster size, the required number of components is determined as follows:

• Leaf Nodes per Group = Number of GPUs per server.
• Max Servers per Group = Available Leaf ports / 2 (based on 1:1 oversubscription).
• Max GPUs per Group = Max servers per Group * GPUs per server.
• Total Number of Groups = Total target GPUs / Max GPUs per Group.
• Total Leaf Count = Leaf nodes per Group * Total number of Groups.
• Total Spine Count = (Total Leaf count * Leaf port count / 2) / Spine port count.
  Note: M is the port count of the Leaf switch and N is the port count of the Spine switch

Maximum Scalability Limits Summary:

The ultimate scale of a 2-tier Clos network is physically constrained by the Spine switch radix (port count):

• Max Supportable Groups = Spine available ports / Leaf nodes per Group.
• Max Supportable Servers = Max supportable Groups * Max servers per Group.
• Max Supportable GPUs = Max supportable Groups * Max GPUs per Group.

The configuration guides for small-scale and medium-to-large-scale AI Compute Backend Networks are shown below. Click each link for detailed configuration commands.

• Small-Scale AI Compute Backend Fabric Configuration Guide
• Middle-to-Large Scale AI Compute Backend Fabric Configuration Guide

By leveraging Rail-only and Rail-optimized architectures, this solution minimizes communication hops between GPUs, significantly accelerating alltoall performance and reducing overall training cycles. This design provides a robust and scalable framework for AI compute fabrics of any magnitude. For detailed deployment cases and configuration specifics, please refer to our Best Practices documentation.

[1] NVSwitch: A high-speed switching chip by NVIDIA designed for Scale-Up fabrics. It enables multi-GPU communication at maximum NVLink speeds within a single node.
[2] PXN (PCIe x NVLink): A pivotal NCCL technology that allows a GPU to aggregate data via NVLink to a peer GPU directly connected to a NIC. This data is then dispatched via PCIe, significantly enhancing the efficiency of cross-node collective communication.
[3] Supported by CX864E-N.
[4] Supported by CX864E-N.

This manual is primarily intended for following engineers.

• Software Developers
• Software Testers
• Customer Site Implementers

The release version is AsterNOS-VPP_V6.1_R0102P02.

AsterNOS-VPP_V6.1_R0102P02.bin for ET2508-4S4M8, ET3608-2P2S, ET3616-4P4S.
MD5: 9b3f6fc0d2825001caf0bcf271ed7c23

AsterNOS-VPP_V6.1-R0102P02_x86.img.gz  for x86_VM
MD5: 9f96cf4ba5fb1928155d0236df0cc9d1

• Support for ET3600 hardware platform
• Support for MPLS protocol
• Support for IP multicast functionality
• Support for HQoS (Hierarchical Quality of Service)
• Support for PPPoE Server functionality
• Support for IPSec offload functionality
• Support for RIP protocol
• Support for MAP-CE (Mapping of Address and Port – Customer Edge) functionality
• Support for HASH
• Support for ACL Table priority

[BGP] Issue where BGP connections established using MD5 authentication failed to take effect
[Performance] Packet loss observed during extended periods of high‑load performance testing

The purpose of this document is to provide important information about the released software version, including but not limited to the following information: running platform, important components, main features, key updates.

This manual is primarily intended for following engineers.

• Software Developers
• Software Testers
• Customer Site Implementers

This manual is primarily intended for following engineers.

• Software Developers
• Software Testers
• Customer Site Implementers

The release version is V1.0R009, the specific information is as follows:

• Image:
  • controller_V1.0_R09.bin, md5sum:ef8507accedb4b54c5a2b77536945671
  • controller_V1.0_R09_arm.bin, md5sum:8e159d5a1d9c253f98d1eefaafd82ff2
  • CX-M-SW-2025.12.25-00229.bin, md5sum:90f02f52f8572021f8141dcb88548cd0

uCentral Client for switch

• Supporting user manual
  • User Manual-Campus Controller Usage Guide-en-v9.0

• Network and Topology
  • Support open cloud interconnection scenarios
• OLT Stick/ONU Stick management
  • Support status management
  • Support configuration deployment/work mode switching/blacklist management
  • Support 0&M alarms
• Operations and Visualization
  • Support Dashboard monitoring data indicators by cient dimension/operations dimension
  • Support AP alarms/inspection/patch management
  • Support AP RF signal shutdown
  • Support device diagnostic operation commands
• Client Management
  • Support full life cycle management of wireless clients

• WEBUI Page Optimization
  • Optimize the Dashboard monitoring metrics to jump to device/client details
  • Optimize OAuth 2.0 login process
  • Optimize switch device interface panel display
  • Optimize styles of some chart components
• Upgrade and Installation
  • Support controller/switch/AP file upgrade via URL download
  • Support uploading controller image files/switch version/AP version files with real-time progressbar display

• Operations and Maintenance
  • After sorting the alert list, paging does not work and the default sorting method is restored
  • After sorting the terminal list, paging does not work and the default sorting method is restored
• Others
  • Corrected internationalization information for some entriesFixed occasional login failure issue for OAuth 2.0 users

2.4.1 User Guide

• Added configuration instructions for new features

• The switch version to which the controller adapts is AsterNOs-V5.2R013, and later, other switch versions need to update the ucentral client. Refer to Chapter Three for the corresponding ucentral client version.
• The controller deployed on the cloud needs to add a port access policy to the Alibaba Cloud deployment example:

In data center and high-performance network environments, network congestion is a critical issue affecting data transmission efficiency and service quality.
As shown in the figure below, traditional congestion control mechanisms require network devices to detect congestion, mark the ECN field in packets, and forward them to the traffic receiver. After receiving the marked packets, the receiver sends a CNP(Congestion Notification Packet)[1] to the traffic sender through upper-layer protocols (such as RoCEv2). The sender then reduces its transmission rate upon receiving the CNP. This prolonged congestion feedback path can result in feedback delays of up to half an RTT(Round-Trip Time)[2], preventing sender servers from reducing traffic in a timely manner. This leads to further congestion deterioration due to increased buffer occupancy in forwarding devices, potentially triggering network-wide traffic suspension caused by PFC flow control.

Figure 1: Traditional CNP Congestion Feedback Path

To address the slow feedback issue in traditional congestion control mechanisms, the industry has introduced Fast CNP (Fast Congestion Notification Packet) technology. By optimizing congestion marking and feedback paths, this technology significantly improves the real-time responsiveness and effectiveness of network congestion control, making it a core technology for modern data center network optimization.

Figure 2: Fast CNP Congestion Feedback Path

Fast CNP technology incorporates the following concepts:

Table 1: Fast CNP Related Terms and Definitions

Fast CNP technology actively learns information from packets passing through the device and establishes relevant flow tables on switches, thereby obtaining information about traffic senders and receivers. When congestion occurs, the switch directly constructs corresponding CNPs for flows on the congested path and sends them to senders to reduce the transmission rate of relevant flows, achieving rapid congestion feedback. Flow entries in the flow table support aging mechanisms based on either entry capacity or time. When disconnect request packets are detected, corresponding flow entries are removed from the flow table.

2.2.1 Flow Table Establishment

Figure 3: RoCEv2 Session Establishment Process

As shown above, when a sender and receiver interact through the RoCEv2 protocol, session establishment is completed through a four-way CM message exchange:

By capturing CM interaction messages, the switch can extract key information including source/destination IP, source/destination QP, and determine whether the corresponding RoCEv2 session has been successfully established. When a session is successfully established, the corresponding flow entry is added to the flow table.

2.2.2 Flow Table Updates

Figure 4: RoCEv2 Data Interaction Process

After connection establishment, the sender and receiver complete data exchange within the session through RC Send/Write/Read and RC ACK messages.

RC Send/Write/Read messages contain only the receiver’s QP number, while RC ACK messages contain only the sender’s QP number. During data exchange, the switch continuously captures Send and ACK messages in the RoCEv2 flow, extracting source/destination IPs and destination QP numbers. It then queries the flow table and updates the flow expiration time, ensuring that active entries in the flow table do not age out while the switch is carrying service traffic.

2.2.3 Flow Table Aging

Figure 5: RoCEv2 Session Disconnection Process

After data interaction is complete, the sender and receiver complete session disconnection through a two-way CM exchange:

By capturing RoCEv2 CM messages, the switch can extract source/destination IPs and destination QP numbers, and determine whether the corresponding RoCEv2 session has been disconnected. When a session is disconnected, the flow table is queried and the corresponding flow entry is removed, achieving a session-state-based flow table aging mechanism.

Additionally, aging mechanisms based on entry capacity or time are supported. If the number of flow entries in the flow table reaches the user-configured flow table size, newly added flow entries will replace the least active flow entries in the table, preventing entry resource overflow. When a RoCEv2 session has no data exchange for an extended period and the idle time exceeds the user-configured threshold, the switch considers the session expired and removes the corresponding flow entry from the flow table.

2.3.1 Congestion Detection

Through forwarding delay monitoring technology, the switch can capture packets whose forwarding delay exceeds the user-configured threshold and record their forwarding delay. Since forwarding delay is strongly correlated with queue depth, the switch linearly converts the recorded delay value to queue depth and compares it with the real-time available buffer of the queue to confirm whether congestion has occurred. If congestion is detected, a CNP is constructed to notify the sender to reduce its transmission rate.

2.3.2 Congestion Notification

When congestion is confirmed on a particular path, the switch constructs a corresponding CNP for flows on that path. A properly formatted CNP that can be accepted and processed by NICs must contain the following information:

• Source MAC address / Destination MAC address
• Source IP address / Destination IP address / IP-DSCP value
• Destination UDP port
• Opcode, Destination QP number

The source MAC address/destination MAC address, source IP address/destination IP address, and destination QP number can be obtained by querying the flow table. The destination UDP port and CNP Opcode can be determined through RoCEv2 protocol specifications. The IP-DSCP value is associated with endpoint NIC configuration and is typically manually configured by users.

After constructing the appropriate CNP, the switch directly sends it to the sender, enabling timely rate reduction.

Figure 6: Traditional CNP Feedback Path in High-Bandwidth RoCEv2 Data Center Networks

In high-bandwidth networks, due to multiple links and flows transmitting simultaneously, link bandwidth growth often far exceeds forwarding device buffer capacity growth.

Traditional congestion feedback mechanisms—switch ECN marking plus endpoint device CNP feedback—have relatively long paths. As shown in Figure 6, when multiple servers in POD#1 interact with Server65 in POD#2 and congestion occurs at Leaf1, the switch marks congested flow packets with ECN. These ECN-marked packets flow through Spine1 and Leaf9 before reaching Server65. During this process, since Server65 has not yet sent CNP notifications to reduce the transmission rate of multiple servers in POD#1, congestion at Leaf1 will further intensify, potentially causing buffer overflow and triggering PFC flow control.

Figure 7: Fast CNP Feedback Path in High-Bandwidth RoCEv2 Data Center Networks

As shown in Figure 7, after enabling Fast CNP functionality on Leaf1, when congestion occurs at Leaf1, the switch directly sends CNPs to multiple servers in POD#1, effectively shortening the CNP feedback path. This allows senders to reduce transmission rates in time before forwarding device buffers overflow, significantly reducing PFC trigger probability and improving overall network bandwidth utilization while ensuring network-wide traffic stability.

[1] CNP (Congestion Notification Packet): A protocol control packet sent by forwarding devices or receivers to notify senders to reduce their transmission rate.
[2] RTT (Round-Trip Time): The total time required for a data packet to travel from sender to receiver and back to sender, serving as a key metric for measuring network latency.

The purpose of this document is to provide important information about the released software version, including but not limited to the following information: running platform, important components, main features, key updates.

This manual is primarily intended for following engineers.

• Software Developers
• Software Testers
• Customer Site Implementers

AsterNOS is a SONiC-based network operating system. The release version is AsterNOS-V5.2R015; the specific information is as follows:

• AsterNOS-V5.2R015.bin
  • Md5sum: f2eb04a664cdf9ee5336bbbe748160e4
  • Supported models: All device models of CX102S, CX104S, CX204Y, CX206Y, CX202P, CX204P, CX206P series
• AsterNOS-V5.2R015-x86.bin
  • Md5sum: 97686f7f07293dae8cac7ad54ee46be7
  • Supported models: CX306P, CX308P, CX532P series
• Supporting user manual
  • AsterNOS-Command_Line_Manual-en-v5.2.15
  • AsterNOS-Configuration_Guide-en-v5.2.15

• Supported the dynamic RP function for PIM
• Supported the GNSS-based time synchronization in PTP
• Supported the global ACL mode
• Supported the ACL filtering of DSCP field
• Supported the dynamic VLAN authorization vid VLAN Pool and VLAN Name
• Supported the DHCP Server to perform discontinuous IP address allocation range
• Supported the DHCPv6 Relay to carry the client MAC address through Option79
• Supported the tunnel routing leakage between VRFs
• Supported the data packet statistics based on VLAN
• Supported the switch of STP/RSTP/MSTP modes for Spanning Tree Protocol
• Supported the viewing of changes between running-config and startup-config
• Supported the new models of switch:
  • CX306P-48Y
  • CX204P-16Y
  • CX104S-8MT24GT
• Enhanced QoS Policer specifications
• Defaulted to disabling rarely used containers
• Optimized system startup time in pure Layer 2 scenarios
• Enhanced dot1x authentication, allowing dynamic VLANs carried in challenge messages to be authorized to users
• Optimized the dynamic IP acquisition process for interfaces, not granting IP addresses to VLAN members/LAG members

• BGP: An abnormal “no extended-nexthop” configuration appears in the BGP view.
• Klish: The “show running-config” command unexpectedly loses some content.
• Tunnel Route: When the next hop of the tunnel route is ECMP, there is a failure in the issuance of the chip.
• Dot1x: During dynamic VLAN authorization, when the vlanid is a string, it causes the system to restart.

• Chapter 1.2 Added new view-related CLI commands
• Chapter 1.4 Added image partition management CLI command: set-default for setting the default boot image
• Chapter 1.5 Added enhanced configuration management commands
• Chapter 2.1 Added license and docker management commands
• Chapter 2.6 Added system operation and maintenance (O&M) commands
• Chapter 2.7 Added a new subchapter for Controller Configuration
• Chapter 3.1.8 Added descriptions and CLI commands for viewing and managing DPU expansion ports
• Chapter 4.4 Added VLAN-related CLI commands
• Chapter 4.7 Updated STP-related show commands
• Chapter 5.4.1 Added support for Option 79 configuration commands
• Chapter 5.5.9 Updated the DHCP Server address-pool configuration
• Chapter 7.4 Added CLI commands for dynamic RP, Auto-RP configuration
• Chapter 8.1 Add global ACL binding configuration commands
• Chapter 14.1.3 Added CLI commands to display MACsec status and statistics

• Chapter 6.5.2.9 Added dynamic RP-BSR configuration
• Chapter 6.5.3.3 Added dynamic RP configuration
• Chapter 6.5.3.4 Added source RP configuration
• Chapter 6.5.6 Added Dynamic RP configuration examples
• Chapter 9.4.6.5 Added GNSS as the PTP clock source configuration example