24-Port 10/100/1000 Gigabit Switch
Contents
1. Apply Close Window Figure 5 1 Security 802 1x Settings Port Settings 50 Status Port Control Specifies the port authorization state The possible field values are as follows e Force Authorized The controlled port state is set to Force Authorized forward traffic e Force Unauthorized The controlled port state is set to Force Unauthorized discard traffic Enable Periodic Reauthentication Permits immediate port reauthentication The Setting Timer button opens the Setting Timer screen to configure ports for 802 1x functionality Security Tab Ports Security Port security is a feature that allows you to configure a switch port with one or more device MAC addresses that are authorized to access the network through that port When port security is enabled on a port the Switch stops learning new MAC addresses on the specified port when it has reached a configured maximum number Only incoming traffic with source addresses already stored in the dynamic or static address table will be accepted as authorized to access the network through that port If a device with an unauthorized MAC address attempts to use the switch port the intrusion will be detected and the Switch can automatically take action by disabling the port and sending a trap message To use port security specify a maximum number of addresses to allow on the port and then let the Switch dynamically learn the lt source MAC address VLAN gt pair for frames received on2. Connected 3 32 40 VII 38400 amp N 1 NUM Tisser Tent UART Doopbeck POE BART Loopt cording c MarusliGuichenLnkin MANE SMAcaMViSpecicode TEE Switch I DE Le Dene All Fasa Em checking cre Fema Toia etree p Hanra e 7 Last enor SRUZO24F boot ERUIO24P_imsor py ECH Certliliacate Startup eenfir Elipi Is R Ss r Rjoover RunT Zeie A A Znccien Fecoiving Start Figure C 4 Sending File 82 Appendix D Glossary This glossary contains some basic networking terms you may come across when using this product For more advanced terms see the complete Linksys glossary at http www linksys com glossary Access Mode Specifies the method by which user access is granted to the system Access Point A device that allows wireless equipped computers and other devices to communicate with a wired network Also used to expand the range of a wireless network Access Profiles Allows network managers to define profiles and rules for accessing the device Access to management functions can be limited to user groups which are defined by the following criteria e Ingress interfaces e Source IP address and or Source IP subnets ACE Filters in Access Control Lists ACL that determine which network traffic is forwarded An ACE is based on the following criteria e Protocol e Protocol ID e Source Port e Destination Port e Wildcard Mask e Source IP Address e Destination IP Address ACL
3. Attach a rack mount bracket to one side of the Switch with the supplied screws Then attach the other bracket to the other side Make sure the brackets are properly attached to the Switch Use the appropriate screws not included to securely attach the brackets to your rack Proceed to the section Connecting the Switch Connecting the Switch To connect network devices to the Switch follow these instructions L Make sure all the devices you will connect to the Switch are powered off supplied with the mounting brackets Using the wrong screws could damage the Switch and would invalidate your warranty i IMPORTANT Make sure you use the screws Figure 3 2 Attach the Brackets to the Switch Figure 3 3 Mount the Switch in the Rack 2 For 10 100Mbps devices connect a Category 5 Ethernet network cable to one of the numbered ports on the Switch For a 1000Mbps device connect a Category 5e Ethernet network cable to one of the numbered ports on the Switch 3 Connect the other end to a PC or other network device 4 Repeat steps 2 and 3 to connect additional devices If pre standard or 802 3af compliant PoE devices are connected to the Switch s 10 100 1000 ports the Switch automatically supplies the required power 5 Ifyou are using a miniGBIC port then connect a miniGBIC module to a miniGBIC port For detailed instructions refer to the module s documentation 6 If you will use the Switch s console
4. LINKSYS A Division of Cisco Systems Inc 24 Port 10 100 1000 Gigabit Switch with Webview and PoE Cisco SYSTEMS Model No SRW2024P Copyright and Trademarks Specifications are subject to change without notice Linksys is a registered trademark or trademark of Cisco systems Inc and or its affiliates in the U S and certain other countries Copyright 2006 Cisco Systems Inc All rights reserved Other brands and product names are trademarks or registered trademarks of their respective holders WARNING This product contains chemicals including lead known to the State of California to cause cancer and birth defects or other reproductive harm Wash hands after handling How to Use this User Guide The User Guide to the WebView Switches has been designed to make understanding networking with the switch easier than ever Look for the following items when reading this User Guide This checkmark means there is a note of interest and is something you should pay special attention to while using the Switch This exclamation point means there is a caution or warning and is something that could damage your property or the Switch A This question mark provides you with a reminder about something you might need to do while using the Switch In addition to these symbols there are definitions for technical terms that are presented like this word definition Also each figure diagram screenshot or
5. The Power Configuration screen allows you to set the PoE power allocation from the Switch to connected devices The Switch s power management enables total Switch power and individual port power to be controlled within a configured power budget Port power can be automatically turned on and off for connected devices and a per port power priority can be set so that the Switch never exceeds its allocated power budget When a device is connected to a port its power requirements are detected by the Switch before power is supplied If the power required by a device exceeds the power budget of the port or the whole Switch power is not supplied Port PoE Status The Power Port Status screen allows you to view the current PoE settings for each port on the Switch Ports can be set to one of three power priority levels critical high or low To control the power supply within the Switch s budget ports set at critical or high priority have power enabled in preference to those ports set at low priority For example when a device is connected to a port set to critical priority the Switch supplies the required power if necessary by dropping power to ports set for a lower priority If power is dropped to some low priority Pri Wain i on Port Status mode ority cation umption Figure 4 27 Power Port Status 22 ports and later the power demands on the Switch fall back within its budget the dropped power is automatically restored Power P
6. admin with no password You should therefore assign a new password for the admin user account and store it in a safe place The default admin account cannot be deleted from the system As well as the default admin account up to five other user defined accounts can be created on the Switch To create a new user account enter a user name and password up to eight characters long confirm the password and then click Add To change the password for a specific user select the user name from the list enter the new password confirm the password by entering it again and then click Update User Name Displays the user name Password Specifies the new password The password is not displayed As it entered an corresponding to each character is displayed in the field Range 1 159 characters Confirm Password Confirms the new password The password entered into this field must be exactly the same as the password entered in the Password field The Add button adds the user configuration to the table The Remove button removes a user configuration from the table Authentication Type Defines the user authentication methods Combinations of all the authentication methods can be selected The possible field values are e Local Authenticates the user at the device level The device checks the user name and password for authentication e RADIUS Authenticates the user at the RADIUS server e TACACS Authenticates the
7. Access Control List Access Control Lists are used to grant deny or limit access devices features or applications Auto negotiation Allows 10 100 Mbps or 10 100 1000 Mbps Ethernet ports to automatically establish the optimal duplex mode flow control and speed Back Pressure A mechanism used with Half Duplex mode that enables a port not to receive a message 83 Bandwidth The transmission capacity of a given device or network Bandwidth Assignments Indicates the amount of bandwidth assigned to a specific application user and or interface Baud Indicates the number of signaling elements transmitted each second Best Effort Indicates that traffic is assigned to the lowest priority queue and packet delivery is not guaranteed Bit A binary digit Boot To start a device and cause it to start executing instructions Browser An application program that provides a way to look at and interact with all the information on the World Wide Web Bridge A device that connect two networks Bridges are hardware specific however they are protocol independent Bridges operate at Layer 1 and Layer 2 levels Broadcast Domain Devices sets that receive broadcast frames originating from any device within a designated set Routers bind Broadcast domains because routers do not forward broadcast frames Broadcast Storm An excessive amount of broadcast messages simultaneously transmitted across a network by a single port Fo
8. Port The number of the port To use an SFP module click on the Detail button of the appropriate port g1 g2 Description Displays a brief description of the port can be entered by clicking on the Detail button Administrative Status The port can be taken offline by selecting the Disabled option When Enabled is selected the port can be accessed normally Figure 5 5 Port Management Port Settings 29 Link Status Up indicates a port has an active connection Down indicates there is no active connection or the port has been taken offline by an Administrator Speed The connection speed of the port is displayed here The speed can be configured only when auto negotiation is disabled on that port Duplex This is the port duplex mode Full transmission occurs in both directions simultaneously or Half transmission occurs in only one direction at a time This mode can be configured only when auto negotiation is disabled and port speed is set to 10Mbps or 100Mbps It cannot be configured on Link Aggregation Groups LAGS MDI MIDX This is the MDI MDIX status of the port The MDI setting is used if the port is connected to an end station The MDIX setting is used if the port is connected to a hub or another switch Flow Control This is the flow control status of the port It is active when the port uses Full Duplex Mode Type Displays the port type LAG This indicates if the port is part of a LAG Detail The Detail button wi
9. Range 64 1522 Exceed Specifies whether the traffic that exceeds the specified rate or burst will be dropped or the DSCP service level will be reduced e Exceed Action Specifies whether the traffic that exceeds the specified rate or burst will be dropped or the DSCP service level will be reduced Set Decreases DSCP priority for out of conformance traffic Range 0 63 Drop Drops non conforming traffic Add Adds the specified criteria to the policy map Remove Deletes a class from a policy Policy Itame acy ksss Her wes thon sa ll nite Meter T re Cp t 4 DI SI Aad beier dass Hauer Acton gei Acton Me te ust Fus Kate Vy Figure 5 40 QoS Diffserv Settings Edit Policy Element 59 Add classes to a selected policy and set the Action Meter Rate Burst and Exceed values using the drop down menus and fields provided then click Add QoS Tab Diffserv Port Binding This function binds a policy map to the ingress queue of a particular interface You must first define a class map set an ACL mask to match the criteria defined in the class map then define a policy map and finally bind the service policy to the required interface You can only bind one policy map to an interface The current firmware does not allow you to bind a policy map to an egress queue Select Policy Map for a port from the drop down menu Click Save Settings to save the changes QoS Tab Bandwidth This
10. 10 Port Management LACP Figure 5 11 Port Management PoE Power Settings Figure 5 12 VLAN Management Create VLAN Figure 5 13 VLAN Management Port Settings Figure 5 14 VLAN Management Ports to VLAN Figure 5 15 VLAN Management VLAN to Ports Figure 5 16 VLAN to Ports Join VLAN Figure 5 17 Statistics RMON Statistics Figure 5 18 Statistics RMON History Figure 5 19 RMON History Table Figure 5 20 Statistics RMON Alarm Figure 5 21 Statistics RMON Events Figure 5 22 Statistics RMON Events Log Table 21 21 22 22 22 23 23 23 20 26 21 28 29 30 32 32 32 33 34 39 39 36 37 37 38 40 40 42 42 Figure 5 23 Statistics Port Utilization Figure 5 24 Statistics 802 1x Statistics Figure 5 25 ACL IP Based ACL Figure 5 26 ACL Mac Based ACL Figure 5 27 Security ACL Binding Figure 5 28 Security Athentication Servers Figure 5 29 Security 802 1x Settings Figure 5 1 Security 802 1x Settings Port Settings Figure 5 30 Security Ports Security Figure 5 31 Security HTTPS Settings Figure 5 32 Security Management ACL Figure 5 33 Security SSH Settings Figure 5 34 Security SSH Host Key Settings Figure 5 35 QoS CoS Settings Figure 5 36 QoS Queue Settings Figure 5 37 QoS DSCP Settings Figure 5 38 QoS Diffserv Settings Figure 5 39 QoS Diffserv Settings Edit Class Element Figure 5 40 QoS Diffserv Settings Edit Policy Element Figure 5
11. ACL ACL Tab MAC Based ACL security Tab ACL Binding Security Tab Authentication Servers security Tab 802 1x Settings Security Tab Ports Security Security Tab HTTPS Settings Security Tab SSH Settings SSH Host Key Settings QoS Tab QoS Tab CoS Settings QoS Tab Queue Settings QoS Tab DSCP Settings QoS Tab Diffserv Settings QoS Tab Diffserv Port Binding QoS Tab Bandwidth Spanning Tree Tab Spanning Tree Tab Global Settings Spanning Tree Tab STP Settings Spanning Tree Tab STP Port Settings Multicast Tab Global Settings Multicast Tab Static Member Ports Multicast Tab Static Router Ports Multicast Tab Member Ports Query Admin Tab User Authentication Admin Tab SNMP Admin Tab Log Admin Tab Port Mirroring Admin Tab Cable Test Admin Tab Save Configuration Admin Tab Jumbo Frame Admin Tab Reboot Admin Tab Factory Default Appendix A About Gigabit Ethernet and Fiber Optic Cabling Gigabit Ethernet Fiber Optic Cabling Appendix B Windows Help Appendix C Downloading using Xmodem Startup Menu Procedures Appendix D Glossary Appendix E Specifications Appendix F Warranty Information Appendix G Regulatory Information Appendix H Contact Information List of Figures Figure 2 1 Front Panel Figure 2 2 Back Panel Figure 2 3 Side Panel Figure 3 1 Typical Network Configuration for the SRW2024P Figure 3 2 Attach the Brackets to the Switch Figure 3 3 Mount the Switch
12. Fert fim ez EEr fio Power fone ZD ret MDNR Zeg mird GRIC Gigabit PoE Zepch i RARER EARERE F aannam H Figure 5 11 Port Management PoE Power Settings 34 DA Dart AN ANNI ANNAN Pinahkst Cyunstakh wrath Wlahuwsiaws ane 24 POri U 1UU0 TUUU GIidaDbDIt OWIICN wiin Wweoview and a E E WEE i WI i VU B A A d Ul A AWIT WUVELUEE Viti i VLAN Management Tab Create VLAN The Create VLAN screen provides information and global parameters for configuring and working with VLANs Single VLAN VLAN ID 2 4094 Indicates the ID number of the VLAN being configured Up to 256 VLANs can be created This field is used to add VLANs one at a time To add the defined VLAN ID number press the Add button VLAN Name Displays the user defined VLAN name VLAN Range VLAN Range Indicates a range of VLANs being configured To add the defined range of VLAN ID numbers press the Add Range button VLAN Table The VLAN Table displays a list of all configured VLANs The VLAN ID VLAN Name and status of the VLAN are displayed here To remove a VLAN click the Remove button VLAN Management Tab Port Settings The VLAN Port Settings screen provides parameters for managing ports that are part of a VLAN The port default VLAN ID PVID is configured on the VLAN Port Settings screen All untagged packets arriving to the device are tagged by the ports PVID Port The port number included in the VLAN Mode Indic
13. Figure C 2 Send File alfa 2 81 24 Port 10 100 1000 Gigabit Switch with Webview and PoE Caution If you select lt L gt for loader code be sure the file is a valid loader code file for the switch If you download an invalid file the switch will not be able to boot Unless absolutely necessary do not attempt to download loader code files Press Send and the software is downloaded 9 Specify a name for the downloaded code file File names are case sensitive should be from 1 to 31 characters not contain slashes or and the leading letter of the file name should not be a period Valid characters A Z a z 0 9 _ 10 To set the new downloaded file as the startup file use the S et Startup File menu option 11 Press lt Q gt to quit the firmware download mode and boot the switch After quitting the device will reboot automatically Appendix C Downloading using Xmodem Startup Menu Procedures Select Tiser Test Pcg UART Loopback Test PASS POE UART Loopbeck Test PASS DRAM Test PASS Svitch Int Loopback gs Sas bil Bee As Folder OD Manuals Switcher Lirk re Fale N E geg ae poci ade TIS SAW AI0SP_mage_vi311 bed Bourne PE Slogfiie_l Factory _Defsult_Con Protest SRV2024P boot v1021 Lien DI SRV2024P_amege bix certificate art f S EE o X modem Download Djelete File SJet Startup File Ricover RunTinme Plang Q uit Select Xacden Receiving Start
14. Indicates that selected packets do not influence the packet filtering process The TCP Flags that can be selected are Urg Indicates the packet is urgent Ack Indicates the packet is acknowledged Psh Indicates the packet is pushed Rst Indicates the connection is dropped Syn Indicates request to start a session Fin Indicates request to close a session Source Port Defines the TCP UDP source port to which the ACE is matched This field is active only if 800 6 TCP or 800 17 UDP are selected in the Select from List drop down menu The possible field range is 0 65535 Destination Port Defines the TCP UDP destination port This field is active only if 800 6 TCP or 800 17 UDP are selected in the Select from List drop down menu The possible field range is 0 65535 Source IP Address Matches the source port IP address to which packets are addressed to the ACE Wildcard Mask Defines the source IP address wildcard mask Wildcard masks specify which bits are used and which bits are ignored A wild card mask of 255 255 255 255 indicates that no bit is important A wildcard of 0 0 0 0 indicates that all the bits are important For example if the source IP address 149 36 184 198 and the wildcard mask is 255 36 184 00 the first eight bits of the IP address are ignored while the last eight bits are used 45 Dest IP Address Matches the destination port IP address to which packets are addressed to the ACE Wildcard Mask Defines the destin
15. LAG Up indicates that the LAG is available Down indicates that administrator has taken the port offline When modifying the option be sure to click the Save Settings option 31 24 Port 10 100 1000 Gigabit Switch with Webview and PoE Type The type of LAG is displayed here Link Status The link status is displayed here wi Speed The connection speed is displayed here Type Slate Link Kann Deen Deen Dwn Deen Coen Deen Coen Deen Duplex The connection duplex is displayed here Flow Control This is the flow control status of the LAG It is active when the port uses Full Duplex Mode Create To create a new LAG click the Create button in the Create column then add members to the LAG by Clicking on the Select Member button The select member screen for the Link Aggregation opens Detail button To configure the LAG and the LAG broadcast control click the Detail button The detail screen for the LAG opens Assign up to 8 ports to the LAG by selecting the ports then click Apply Apply Close Window Figure 5 8 Link Aggregation Link Aggregation Select Member Figure 5 9 Link Aggregation Link Aggregation Detail Chapter 5 Using the Web based Utility for Configuration 32 Port Management Tab Link Aggregation Port Management Tab LACP Ports can be statically grouped into an aggregate link that is LAG to increase the bandwidth of a network connection or to ensure fault recovery Or you can us
16. LAN or to an end node Since end nodes cannot cause forwarding loops they can pass directly through to the spanning tree forwarding state Specifying Edge Ports provides quicker convergence for devices such as workstations or servers retains the current forwarding database to reduce the amount of frame flooding required to rebuild address tables during reconfiguration events does not cause the spanning tree to initiate reconfiguration when the interface changes state and also overcomes other STA related 64 timeout problems However remember that Edge Port should only be enabled for ports connected to an end node device Default Disabled Administrative Link Type The link type attached to this interface e Point to Point A connection to exactly one other bridge e Shared A connection to two or more bridges e Auto The Switch automatically determines if the interface is attached to a point to point link or to shared media This is the default setting 65 Multicast Tab Global Settings You can configure the Switch to forward multicast traffic intelligently Based on the IGMP query and report messages the Switch forwards traffic only to the ports that request multicast traffic This prevents the Switch from broadcasting the traffic to all ports and possibly disrupting network performance IGMP Status When enabled the Switch will monitor network traffic to determine which hosts want to receive multicast traffic This is
17. Port 10 100 1000 Gigabit Switch with Webview and PoE Fran ais French Informations environnementales pour les clients de l Union europ enne La directive europ enne 2002 96 CE exige que l equipement sur lequel est appose ce symbole sur le produit et ou son emballage ne soit pas jet avec les autres ordures menageres Ce symbole indique que le produit doit tre limin dans un circuit distinct de celui pour les d chets des m nages Il est de votre responsabilit de jeter ce materiel ainsi que tout autre materiel lectrique ou electronique par les moyens de collecte indiques par le gouvernement et les pouvoirs publics des collectivit s territoriales L elimination et le recyclage en bonne et due forme ont pour but de lutter contre l impact nefaste potentiel de ce type de produits sur l environnement et la sante publique Pour plus d informations sur le mode d limination de votre ancien equipement veuillez prendre contact avec les pouvoirs publics locaux le service de traitement des d chets ou l endroit ou vous avez achete le produit Italiano Italian Informazioni relative all ambiente per i clienti residenti nell Unione Europea La direttiva europea 2002 96 EC richiede che le apparecchiature contrassegnate con questo simbolo sul prodotto e o sull imballaggio non siano smaltite insieme ai rifiuti urbani non differenziati II simbolo indica che questo prodotto non deve essere smaltito insieme ai normali rifiuti domestici E responsabil
18. System Logging The system allows you to enable or disable event logging and specify which event levels are logged to RAM or flash memory Severe error messages that are logged to flash memory are permanently stored in the Switch to assist in troubleshooting network problems System Log Status Enables disables the logging of debug or error messages to the logging process Default Enabled SMTP Sattiag Z8part OOOO 3 peot mie ODC Gigabit Pet Switch Syriam Leg Esahied Siras Lag Legging 3 Ero W ge Fab Lpa GE Fan F eezz j Legging D 7 Heaarge Lag Staten I Esatke Legtieg Fea ge zg ES Legging Tray D P Detoggeg i Eemer 3 E Loo DT e P Adrezn Ste RH Enabled Leeetlte F Bepggeeg care P Adia i EEN 2 3 ITT Sosere Ema Abisi LLA Dania Can Aires o o Eens a T Destination Emal A dren IT Denti nation Tei fiat rem i 4 Deadia Email Address Figure 5 54 Admin Log 72 Flash Level 0 7 Limits log messages saved to the Switch s permanent flash memory for all levels up to the specified level For example if level 3 is specified all messages from level 0 to level 3 will be logged to flash Note that the Flash Level must be equal to or less than the Ram Level Range 0 7 Default 3 R Ram Level 0 7 Limits log messages saved to the Switch s temporary RAM memory for all levels up to the specified level For example if level 7 is specified all me
19. access to the Switch and act as a secure replacement for Telnet When the client contacts the Switch through the SSH protocol the Switch generates a public key that the client uses along with a local user name and password for access authentication SSH also encrypts all data transfers passing between the Switch and SSH enabled management station clients and ensures that data traveling over the network arrives unaltered Note that you need to install an SSH client on the management station to access the Switch for management through the SSH protocol The Switch supports both SSH Version 1 5 and 2 0 SSH Server Status Allows you to enable disable the SSH server on the Switch Default Disabled Version The Secure Shell version number Version 2 0 is displayed but the Switch supports management access via either SSH Version 1 5 or 2 0 clients SSH Authentication Timeout Specifies the time interval in seconds that the SSH server waits for a response from a Client during an authentication attempt Range 1 120 seconds Default 120 seconds SSH Authentication Retries Specifies the number of authentication attempts that a client is allowed before authentication fails and the client has to restart the authentication process Range 1 5 times Default 3 SSH Server Key Size Specifies the SSH server key size The server key is a private key that is never shared outside the Switch The host key is shared with the SSH client and is fixed at 10
20. addresses for a specific configured VLAN 1 4094 Address Table Sort Key Sorts the information displayed based on MAC address VLAN or interface port or LAG Specify the search type that is check the Interface MAC Address or VLAN checkbox select the method of sorting the displayed addresses and then click Query The dynamic addresses that conform to the search criteria are listed in the text box To delete a MAC address from the forwarding database select the entry in the displayed list then click Remove Admin Tab SNMP Simple Network Management Protocol SNMP is a communication protocol designed specifically for managing devices on a network Equipment commonly managed with SNMP includes switches routers and host computers SNMP is typically used to configure these devices for proper operation in a network environment as well as to monitor them to evaluate performance or detect potential problems Traps indicating status changes are issued by the Switch to specified trap managers You must specify trap managers so that key events are reported by the Switch to your management station using network management platforms such as HP OpenView You can specify up to five management stations that will receive authentication failure messages and other notification messages from the Switch You can add up to five new community strings Enter a name and select the access rights from the Access Mode drop down menu These strings act as pas
21. also referred to as IGMP Snooping Default Enabled IGMP Querier Status When enabled the Switch can serve as the Querier which is responsible for asking hosts if they want to receive multicast traffic Default Enabled IGMP Query Count Sets the maximum number of queries issued for which there has been no response before the Switch takes action to drop a client from the multicast group Range 2 10 Default 2 IGMP Query Interval Sets the frequency at which the Switch sends IGMP host query messages Range 60 125 seconds Default 125 IGMP Report Delay Sets the time between receiving an IGMP Report for an IP multicast address on a port before the Switch sends an IGMP Query out of that port and removes the entry from its list Range 5 25 seconds Default 10 IGMP Query Timeout The time the Switch waits after the previous querier stops before it considers the router port i e the interface which had been receiving query packets to have expired Range 300 500 seconds Default 300 IGMP Version Sets the protocol version for compatibility with other devices on the network Range 1 2 Default 2 Click Save Settings to save the changes Zi peor DIOU put erg DIR ipah Dot Seed cis Sade buet Martie Ports Gay Anier Foz Greg Figure 5 46 Multicast Global Settings 66 24 Port 10 100 1000 Gigabit Switch with Webview and PoE Multicast Tab Static Member Ports Multicast filtering can be dynamically c
22. and complies with the specifications for a Class B digital device pursuant to Part 15 of the FCC Rules These limits are designed to provide reasonable protection against harmful interference in a residential installation This equipment generates uses and can radiate radio frequency energy and if not installed and used according to the instructions may cause harmful interference to radio communications However there is no guarantee that interference will not occur in a particular installation If this equipment does cause harmful interference to radio or television reception which is found by turning the equipment off and on the user is encouraged to try to correct the interference by one or more of the following measures Reorient or relocate the receiving antenna Increase the separation between the equipment or devices Connect the equipment to an outlet other than the receiver s Consult a dealer or an experienced radio TV technician for assistance Safety Notices Caution To reduce the risk of fire use only No 26 AWG or larger telecommunication line cord Do not use this product near water for example in a wet basement or near a swimming pool Avoid using this product during an electrical storm There may be a remote risk of electric shock from lightning Industry Canada Canada This device complies with Industry Canada ICES 003 rule Cet appareil est conforme a la norme NMBO003 d industrie Canada IC Statement Operation is
23. and full duplex modes Auto sensing technology enables each port to automatically detect the speed of the device connected to it 1OMbps 100Mbps or 1000Mbps and adjust its speed and duplex accordingly The Switch s RJ 45 ports also support the IEEE 802 3af Power over Ethernet PoE standard that enables DC power to be supplied to attached devices using wires in the connecting twisted pair cable Any 802 3af compliant device attached to a port can directly draw power from the Switch over the twisted pair cable without requiring its own separate power source This capability gives network administrators centralized power control for devices such as IP phones and wireless access points which translates into greater network availability For each attached 802 3af compliant device the Switch automatically senses the load and dynamically supplies the required power The Switch delivers power to a device using the two data wire pairs in the twisted pair cable Each port can provide up to 15 4 W of power at the standard 48 VDC voltage To connect a device to a port you will need to use Category 5 or better network cable The Gigabit Expansion Ports The Switch is equipped with two miniGBIC ports that have shared Gigabit Ethernet ports 12 and 24 which provide for the installation of one expansion module These ports provide links to high speed network segments or individual workstations at speeds of up to 1000Mbps Gigabit Ethernet To establish a G
24. atkritumos j s varat sa emt viet j pa vald b atkritumu sav k anas dienest ka ar veikal kur iegadajaties So izstr d jumu Appendix G Regulatory Information Lietuv kai Lithuanian Aplinkosaugos informacija skirta Europos S jungos vartotojams Europos direktyva 2002 96 EC numato kad irangos kuri ir arba kurios pakuot yra pa ym ta iuo simboliu negalima alinti kartu su ner iuotomis komunalin mis atliekomis is simbolis rodo kad gaminj reikia alinti atskirai nuo bendro buitini atlieku srauto J s privalote u tikrinti kad i ir kita elektros ar elektronin jranga b t alinama per tam tikras nacionalin s ar vietin s vald ios nustatytas atlieku rinkimo sistemas Tinkamai alinant ir perdirbant atliekas bus i vengta galimos alos aplinkai ir moni sveikatai Daugiau informacijos apie j su senos jrangos alinim gali pateikti vietin s vald ios institucijos atlieku alinimo tarnybos arba parduotuv s kuriose isigyote t gamini Malti Maltese Informazzjoni Ambjentali ghal Klijenti fl Unjoni Ewropea Id Direttiva Ewropea 2002 96 KE titlob li t tag mir li jkun fih is simbolu fuq il prodott u jew fuq l ippakkjar ma jistax jintrema ma skart muni ipali li ma iex isseparat Is simbolu jindika li dan il prodott g andu jintrema separatament minn ma l iskart domestiku regolari Hija responsabbilt tieg ek li tarmi dan it tag mir u kull tag mir ie or ta l elettriku u elettroniku
25. between the transmission of consecutive protocol messages Range 1 10 Default 3 Modify the required attributes for STP Click Save Settings to save the changes Spanning Tree Tab STP Port Settings The Port Information and LAG Information screens display the current status of ports and LAGs in the Spanning Tree State Shows if Spanning Tree has been enabled on this interface Status Displays current state of this port within the Spanning Tree e Discarding Port receives STA configuration messages but does not forward packets e Learning Port has transmitted configuration messages for an interval set by the Forward Delay parameter without receiving contradictory information Port address table is cleared and the port begins learning addresses e Forwarding Port forwards packets and continues learning addresses Forward Transitions The number of times this port has transitioned from the Learning state to the Forwarding state Operational Edge Port This parameter is initialized to the setting for Administrative Edge Port in STP Port Setting detail but will be set to false if a BPDU is received indicating that another bridge is attached to this port Operational Link Type The operational point to point status of the LAN segment attached to this interface This parameter is determined by manual configuration or by auto detection as described for Administrative Link Type in the STP Port Setting detail LAG Indicates if
26. function allows the network manager to control the maximum rate for traffic transmitted or received on an interface Rate limiting is configured on interfaces at the edge of a network to limit traffic coming out of the Switch Traffic that falls within the rate limit is transmitted while packets that exceed the acceptable amount of traffic are dropped Rate limiting can be applied to individual ports or LAGs When an interface is configured with this feature the traffic rate will be monitored by the hardware to verify conformity Non conforming traffic is dropped conforming traffic is forwarded without any changes Port Displays the port or LAG number Status Enables the rate limit input or output for the port or LAG Default Disabled Rate Limit Kbits sec Sets the rate limit level for the port or LAG For Fast Ethernet ports the default is 100000Kbits sec Range 64 100000 For Gigabit Ethernet ports the default is 1000000Kbits sec Range 64 1000000 LAG Indicates if ports are members of a LAG To configure a rate limit for LAGs go to the table entry for the LAG number which is listed after port g24 at the end of the table Set the Input Rate Limit Status or Output Rate Limit Status then set the rate limit for individual interfaces or LAGs then click Save Settings SEPT Dh Ah Shodi aiai Si Si SE GEN WA Ba aa ain A ns WE Wa Z pret DDO Zeng mind D I Digiti PoE Switch SRANI Figure 5 41 QoS Diffserv Port
27. g zl DC L zl Port Management LACP 33 OA Dart d NITIA DW IA NAN Cigaakit Gaunnribesle wrth Ulahkuraws angel d Hoon Pmt aT pi GIGA DIT SWITe With wen view ang a Di a K AW a wa WM Wei Wei BW W W W A D Ai i ei iG L AEGEA Agl LA f LE W J A WW Port Management Tab PoE Power Settings If a device is connected to a Switch port and the Switch detects that it requires more than the power budget of the port no power is supplied to the device that is port power remains off lf the power demand from devices connected to Switch ports exceeds the power budget set for the Switch the port power priority settings are used to control the supplied power Select Enabled to enable PoE power on selected ports set the priority using the drop down menu provided and set the power allocation for each port Port Displays the port number Admin Status Select Enabled to enable PoE power to be supplied to the connected device Priority Set the priority of the supply using the drop down menu Power Allocation 3000 15400 milliwatts Set the maximum power that can be supplied to the port Mode Displays whether the connected PoE device is on or off Power Consumption milliwatts Displays the power currently being used by the connected PoE device KW KKK AAR d i i j EEr Jee Pes e E Embi ioe P Erbi fiw zl Ernia Jee EEr fim Persea Is Demsa ow E Embi fiw G Erabi fie
28. i Ei Open your web browser and enter 192 168 1 254 into the Address field Press the Enter key and the login screen will appear NOTE The default IP address of the device is 192 168 1 254 If you have modified this address A enter the correct IP address The device should be on the same subnet as the management station used to configure the device The first time you open the Web based Utility enter admin in the User Name field and leave the Password field blank Click the OK button For security purposes it is recommended that later you set a password from the 8 System Password screen Figure 5 1 Login Screen The first screen that appears is the Setup Summary screen Twelve main tabs are accessible from the Web based Utility Setup Port Management VLAN Management Statistics ACL Security QoS Quality of Service Spanning Tree Multicast SNMP Admin and Logout Click one of the main tabs to view additional tabs Utility you may be required to refresh the page to see the updated configuration The LEDs on the Setup Summary screen display status information about their corresponding ports A green LED indicates a connection while a grey LED indicates no connection An orange LED indicates the port has been closed down by the administrator When you click a port s LED the statistics for that port are displayed NOTE After configuring values using the Web based NOTE The LEDs displayed in the Web based Utility are not the same as
29. in the management system If the device is not reset the entry remains in the Log Table e TRAP Indicates that an SNMP trap is generated and sent via the Trap mechanism The Trap can also be saved using the Trap mechanism Both Indicates that both the Log and Trap mechanism are used to report alarms Falling Event The index of the Event that will be used if a falling alarm is triggered If there is no corresponding entry in the Event Control Table or if this number is zero then no event will be generated Owner The name of the person who created this entry in the Control Table Maximum 127 characters Falling Event Index Displays the mechanism in which the alarms are reported The possible field values are e LOG Indicates there is not a saving mechanism for either the device or in the management system If the device is not reset the entry remains in the Log Table e TRAP Indicates that a SNMP trap is generated and sent via the Trap mechanism The Trap can also be saved using the Trap mechanism 41 e Both Indicates that both the Log and Trap mechanism are used to report alarms Owner Displays the device or user that defined the alarm The Add button adds the entry to the RMON Alarms Table Statistics Tab RMON Events The RMON Events screen contains fields for defining RMON events An RMON Event determines the action to take when an alarm is triggered The response to an alarm can include logging the alarm or sending a
30. interface to configure the Switch then connect the supplied serial cable to the Switch s Console port and tighten the captive retaining screws Connect the other end to your PC s serial port This PC must be running a VT100 terminal emulation software such as HyperTerminal IMPORTANT Make sure you use the power cord that is supplied with the Switch Use of a A different power cord could damage the Switch 7 Connect the supplied power cord to the Switch s power port and plug the other end into an electrical outlet 8 Power on the network devices connected to the Switch Each active port s corresponding Link Act LED will light up on the Switch Uplinking the Switch To uplink the Switch connect one end of a Category 5 or better Ethernet network cable into one of the 24 gigabit ports and then connect the other end of the cable into the peripheral device s uplink port MDI MDIX will automatically detect the speed and cable type If you will use the Switch s console interface to configure the Switch proceed to Chapter 4 Using the Console Interface for Configuration for directions If you will use the Switch s Web based Utility to configure the Switch proceed to Chapter 5 Using the Web based Utility for Configuration A NOTE If you need to reset the Switch unplug the power cord from the back of the Switch Wait a few seconds and then reconnect it 10 Chapter 4 Using the Console Interface for Configurati
31. ipx Ctr w l e MNNM Hara nable Nr LURR WHH n k le hrm The Port Status screen displays the port numbers their status Link status speed and duplex mode and status of flow control which is the flow of packet transmissions If you want to change any settings for a port you must use the Port Configuration screen Port Configuration On the Switch Main Menu screen select Port Configuration and press the Enter key if you want to configure the Figure 4 23 Port Status Switch s ports The Port Configuration screen displays the port numbers their status auto negotiation status speed and duplex mode and status of flow control which is the flow of packet transmissions Select Edit and press the Enter key to make changes When your changes are complete press the Esc key to return to the Action menu Select Save and press the Enter key to save your changes To exit select Quit and press the Enter key that it is a valid configuration file If you have edited the NOTE When downloading a configuration file be sure file ensure that only valid entries have been configured You can use the Port Configuration screen to enable or disable an interface set auto negotiation and the interface Capabilities to advertise or manually fix the speed duplex mode and flow control Enable Allows you to manually enable or disable an interface You can disable an interface due to abnormal behavior for example excessive collisions and th
32. ports are members of a LAG To configure STP port settings for LAGs go to the table entry for the LAG number which is listed after port g24 at the end of the table Click Detail to configure STP Port Settings for an interface Z eeet SION OOD Zeg mieg D I Gigabit Pet Switch Saatz Operational Foren Og oral Pot Ste Siam Rala Tomiin CA Link Type L I y F Fabi Forepchbsg Cengrated 1 Eni Pane a Ensbied Dicini Chabad D Enabled po F Enstied Decii Drasbied D Enabied Shand pg E Fabi Duig Chnabled Enb Shand M Ensbki Dacii Conable D Enihi Themi F Enstied Dicia Draskieg i Eniti Tasi Fo F Ensbied iici Crasbied D Enst KT E F nsbisj Ducuing Conable Enabihd ad F Duba Derne rshi Engel Thad KD F Eni Ceeceniey Ciri Eat KIT gi F Enbei Cei Disha Cake Tieri pir EB Erabi Cice Dragbled Eagtei TGE gia Enabled Dici Casbisd Enatied Shared pii F Enshi Dinci Draabied Enatied Ehud Figure 5 45 Spanning Tree STP Port Settings Click Detail to configure Path Cost Priority Administrative Edge Port Fast Forwarding and Administrative Link Type Use the text fields provided to edit the values then click Apply Designated Cost The cost for a packet to travel from this port to the root in the current Spanning Tree configuration The slower the media the higher the cost Designated Port The port priority and number of the port on the designated port Designated Bridge The bridge priority an
33. received from Select Edit and press the Enter key to make changes When your changes are complete press the Esc key to return to the Action menu Select Save and press the Enter key to save your changes To exit select Quit and press the Enter key SNMP The SNMP screen allows you to set the Switch s SNMP settings SNMP Server Enable or Disable the SNMP function for the Switch SNMP Server Port Set the TCP port that will be used for sending and receiving SNMP packets HTTP HTTPS Figure 4 16 HTTP HTTPS Figure 4 17 SNMP 18 Network Diagnostics The Network Configuration Screen allows you to use Ping to test network connectivity The Ping screen displays the IP address of the location you want to contact Select Edit to change the IP address and select Execute to begin the ping test After the ping test is complete the Ping screen displays the IP address status and statistics of the ping test E Select Edit and press the Enter key to make changes When your changes are complete press the Esc key to return to the Action menu Select Save and press the Enter key to save your changes To exit select Quit and press the Enter key Figure 4 18 Ping Test File Management The File Management screen allows you to upload or download files such as the startup configuration boot or image file using a TFTP server Select Edit to change the settings When your changes are complete press the Esc key to return to t
34. s default gateway is displayed Management VLAN The VLAN ID number is displayed Set the ID number of the Management VLAN This is the only VLAN through which you can gain management access to the Switch By default all ports on the Switch are members of VLAN 1 so a management station can be connected to any port on the Switch If other VLANs are configured and you change the Management VLAN you may lose management access to the Switch In this case you should reconnect the management station to a port that is a member of the Management VLAN IP Mode Choose to have either a user defined IP address or to have it assigned by DHCP or BOOTP Select Edit to make changes When your changes are complete press the Esc key to return to the Action menu and select Save to save your changes Username Loser Again Password SPACE Toggle ENTER Select ESC Back Figure 4 13 User amp Password Settings IP Configuration 1 IP Address Settings 2 HITP HTIPS 3 SNWP Figure 4 15 IP Address Configuration 17 HTTP HTTPS The HTTP HTTPS screen allows you to set the Hyper Text Transfer Protocol server web server information for the Switch HTTP Server Enable or disable the Switch s HTTP server function HTTP Server port Set the TCP port that HTTP packets are sent and received from HTTPS Server Enable or disable the Secure HTTP server function of the Switch HTTPS Server port Set the TCP port that the HTTPS packets are sent and
35. term ket vasarolta 98 24 Port 10 100 1000 Gigabit Switch with Webview and PoE Nederlands Dutch Milieu informatie voor klanten in de Europese Unie De Europese Richtlijn 2002 96 EC schrijft voor dat apparatuur die is voorzien van dit symbool op het product of de verpakking niet mag worden ingezameld met niet gescheiden huishoudelijk afval Dit symbool geeft aan dat het product apart moet worden ingezameld U bent zelf verantwoordelijk voor de vernietiging van deze en andere elektrische en elektronische apparatuur via de daarvoor door de landelijke of plaatselijke overheid aangewezen inzamelingskanalen De juiste vernietiging en recycling van deze apparatuur voorkomt mogelijke negatieve gevolgen voor het milieu en de gezondheid Voor meer informatie over het vernietigen van uw oude apparatuur neemt u contact op met de plaatselijke autoriteiten of afvalverwerkingsdienst of met de winkel waar u het product hebt aangeschaft Norsk Norwegian Milj informasjon for kunder i EU EU direktiv 2002 96 EF krever at utstyr med f lgende symbol avbildet p produktet og eller pakningen ikke m kastes sammen med usortert avfall Symbolet indikerer at dette produktet skal h ndteres atskilt fra ordin r avfallsinnsamling for husholdningsavfall Det er ditt ansvar a kvitte deg med dette produktet og annet elektrisk og elektronisk avfall via egne innsamlingsordninger slik myndighetene eller kommunene bestemmer Korrekt avfallsh ndtering og gjenvinning v
36. the LEDs on the front panel AN of the Switch The front panel LEDs display different status information which is described in Chapter 2 Getting to Know the Switch 25 Setup Tab Summary The Summary screen provides device and system information about the Switch Device Information System Name Displays the name for the Switch if one has been entered on the Setup Network Settings tab IP Address The IP address of the Switch is displayed here configurable from Setup Network Settings tab Subnet Mask The Subnet Mask of the Switch is displayed here configurable from Setup Network Settings tab DNS Servers The DNS Servers are displayed here configurable from Setup Network Settings tab Default Gateway The Default Gateway is displayed here configurable from Setup Network Settings tab Address Mode Indicates whether the Switch is configured with a Static or Dynamic IP address configurable from Setup Network Settings tab Base MAC Address This is the MAC address of the Switch System Information Serial Number The product s Serial Number is displayed here Model Name This is the model number and name of the Switch Hardware Version The version number of the Switch s hardware is displayed here Boot Version Indicates the system boot version currently running on the device Firmware Version The Firmware software version number is displayed here System Location The system name is displayed her
37. the interface since the device was last refreshed Fragments Displays the number of fragments packets with less than 64 octets excluding framing bits but including FCS octets received on the interface since the device was last refreshed Jabbers Displays the total number of received packets that were longer than 1518 octets This number excludes frame bits but includes FCS octets that had either a bad Frame Check Sequence FCS with an integral number of octets FCS Error or a bad FCS with a non integral octet Alignment Error number The field range to detect jabbers is between 20 ms and 150 ms Collisions Displays the number of collisions received on the interface since the device was last refreshed Frames of xx Bytes Number of xx byte frames received on the interface since the device was last refreshed Clear Counters button This option will reset all of the statistic counts Refresh Now button Use this option to refresh the statistics Statistics Tab RMON History The RMON History screen allows you to monitor your network for common errors and overall traffic rates The History Control Table allows you to add edit and delete collection entries or to select a specific index entry and then view the historical data in table form History Control Table Source Interface Displays the interface from which the history samples were taken The possible field values are e Port Specifies the port from which the RMON informatio
38. the port When the port has reached the maximum number of MAC addresses the selected port will stop learning The MAC addresses already in the address table will be retained and will not age out Any other device that attempts to use the port will be prevented from accessing the Switch Set the action to take when an invalid address is detected on a port select Security Status to enable security for a port set the maximum number of MAC addresses allowed on a port Action Indicates the Port Security action Possible field values are Click Save Changes to save the changes Zi peord VGH 2 part erg DIR age Do Sel ce Oooo d gd d dg gg wt is dl FEEEEEEEEEEEE oOo adie Figure 5 30 Security Ports Security TATA NE 51 DA Dart AN ANHs ANNAH Oi aen lee Cuns stale vwareth Ullah aur ane Dac 24 Port 10 100 1000 Gigabit Switch with Webview and PoE J Security Tab HTTPS Settings 34 pert 10100 1900 2 pert teg S Gigtdit PoE Switeh You can configure the Switch to enable the Secure Hypertext Transfer Protocol HTTPS over the Secure Socket Layer SSL providing secure access that is an encrypted connection to the Switch s web interface To enable HTTPS select HTTPS Status and specify the port number Click Save Settings to save the changes Figure 5 31 Security HTTPS Settings Security Tab Management ACL Management ACL You can create a list of up to 16 IP addresses or IP address groups that
39. to poll each server in the sequence Set Time Set the system time manually When this option is selected the local hardware clock is utilized Set the system time using Simple Network Time Protocol SNTP automatically When this option is selected the time is synchronized to an SNTP server Manual Hours The hour can be entered here Minutes The minutes can be entered here Seconds The seconds can be entered here Month The month can be entered here Day The day can be entered here Year The year can be entered here Automatic Time Zone Select your time zone from the drop down menu Z Seet bighi Zeng mind D I Gigabit PoE Switch SAAE S Ta the briten bee mkscgie E Za gn yilim be sara Spia Wehe Tea Pretecel DIEN nirrrreh bh Hem R Meel cern fs Maf o Pm en Tima Zens z F Gaylight C UA T Ferga P Gemeen tr Fe Lait RA hay Te I Fa bad F Eepateg from a a Gei Tw a HH MM Te Cag Se Zwee ail pel TTT Server i I Senar Potting interval n sech Figure 5 4 Setup Time 28 Daylight Savings Select Daylight Savings to enable it on the Switch If the Switch should use US daylight savings then select USA If the Switch should use EU daylight savings then select European If it should use another kind of daylight savings then select Custom and complete the From and To fields Time Set For non US and European countries specify the amount of time for dayligh
40. user at the TACACS server Bib poe TAHTOA pear ere GEE Gigai et eel ce SATAN Figure 5 51 Admin User Authentication 69 ath Mirar v d Banz el pre Le lAl mkan e a el DR e ka g ant Bi dy FN MI eabaurnenunt ane De Admin Tab Forwarding Database Switches store the addresses for all known devices in a forwarding database This information is used to forward traffic directly between the inbound and outbound ports All the addresses learned by monitoring traffic are stored in the dynamic address table You can also manually configure static addresses that are bound to a specific port Address Aging Sets the aging time for entries in the forwarding database The aging time is used to age out dynamically learned forwarding information Aging Status When enabled dynamic MAC addresses are discarded after the Aging Interval has expired Aging Interval secs 10 1000000 This is the amount of time after which dynamic address table entries are discarded Set the Aging Interval by entering the number of seconds into the text field provided Click Save Settings to save the changes Static Address Setting A static address can be assigned to a specific interface on the Switch Static addresses are bound to the assigned interface and will not be moved When a static address is seen on another interface the address will be ignored and will not be written to the address table Static Address Counts The number of manually c
41. vary by jurisdiction This warranty does not apply if the Product a has been altered except by Linksys b has not been installed operated repaired or maintained in accordance with instructions supplied by Linksys or c has been subjected to abnormal physical or electrical stress misuse negligence or accident In addition due to the continual development of new techniques for intruding upon and attacking networks Linksys does not warrant that the Product will be free of vulnerability to intrusion or attack TO THE EXTENT NOT PROHIBITED BY LAW IN NO EVENT WILL LINKSYS BE LIABLE FOR ANY LOST DATA REVENUE OR PROFIT OR FOR SPECIAL INDIRECT CONSEQUENTIAL INCIDENTAL OR PUNITIVE DAMAGES REGARDLESS OF THE THEORY OF LIABILITY INCLUDING NEGLIGENCE ARISING OUT OF OR RELATED TO THE USE OF OR INABILITY TO USE THE PRODUCT INCLUDING ANY SOFTWARE EVEN IF LINKSYS HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES IN NO EVENT WILL LINKSYS LIABILITY EXCEED THE AMOUNT PAID BY YOU FOR THE PRODUCT The foregoing limitations will apply even if any warranty or remedy provided under this Agreement fails of its essential purpose Some jurisdictions do not allow the exclusion or limitation of incidental or consequential damages so the above limitation or exclusion may not apply to You Please direct all inquiries to Linksys P O Box 18558 Irvine CA 92623 94 Appendix G Regulatory Information FCC Statement This product has been tested
42. 1x Statistics 43 Packet Displays the amount of packets measured for the particular 802 1x statistic ACL Tab IP Based ACL The IP Based ACL Access Control List screen contains information for defining IP Based ACLs Access Control Lists ACL provide packet filtering for IP frames based on address protocol Layer 4 protocol port number or TCP control code or any frames based on MAC address or Ethernet type To filter incoming packets first create an S SCENE EIERE o access list add the required rules specify a mask to modify the precedence in which the rules are checked and then bind the list to a specific port Target Select the New ACL Name radio button and enter an ACL name in the text field provided with up to 16 characters Or to add rules to an existing ACL select ACL Name and select an ACL from the dropdown menu ACL Name Displays the user defined IP based ACLs New ACL Name Define a new user defined IP based ACL the name cannot include spaces Action Indicates the action assigned to the packet matching the ACL Packets are forwarded or dropped In addition the port can be shut down a trap can be sent to the network administrator or a packet assigned rate limiting restrictions for forwarding The options are as follows e Permit Forwards packets which meet the ACL criteria e Deny Drops packets which meet the ACL criteria Figure 5 25 ACL IP Based ACL e Shutdown Drops packet that meets the AC
43. 24 bits Range 512 896 bits Default 768 Z peet RODER Zeg mind GBIC Gigabit PoE Switch chain SE Aethertication Tirage i Ha ba iroh KEN Authentication Arri i E TEH Zaregr Ber Sire DI Een be Figure 5 33 Security SSH Settings 53 SSH Host key Settings A host public private key pair is used to provide secure communications between an SSH client and the Switch After generating this key pair you must provide the host public key to SSH clients and import the client s public key to the Switch Public Key of Host Key The public key for the host e RSA Version 1 The first field indicates the size of the host key e g 1024 the second field is the encoded public exponent e g 65537 and the last string is the encoded modulus e DSA Version 2 The first field indicates that the encryption method used by SSH is based on the Digital Signature Standard DSS The last string is the encoded modulus Host Key Type The key type used to generate the host key pair e public and private keys Range RSA Version 1 DSA Version 2 Both Default RSA The SSH server uses RSA or DSA for key exchange when the Client first establishes a connection with the Switch and then negotiates with the client to select either DES 56 bit or 3DES 168 bit for data encryption Save Host Key from Memory to Flash Saves the host key from RAM volatile memory to flash memory Otherwise the host key pair is stored to RAM by default
44. 36 DA Dart AN ANNIANANHNH Craakit Cussstak wth Usahkurawus ane Bea 24 Port 10 100 1000 Gigabit Switch with Webview and Po Untagged Packets forwarded by the interface are untagged Tagged Defines the interface as a tagged member of a VLAN All packets forwarded by the interface are tagged The packets contain VLAN information VLAN Management Tab VLAN to Ports The VLAN to Ports screen contains fields for configuring VLANs to a ports Port Displays the interface number Mode Indicates the port to VLAN mode The possible field values are e General Indicates the port belongs to VLANs and each VLAN is user defined as tagged or untagged full 802 1Q mode e Access Indicates the port belongs to a single untagged VLAN When a port is in Access mode the packet types which are accepted on the port cannot be designated Ingress filtering cannot be enabled disabled on an access port e Trunk Indicates the port belongs to VLANs in which all ports are tagged except for one port that can be untagged Join VLAN Defines the VLANs to which the interface is joined Select the VLAN ID then click Apply VLANs Displays the PVID tag LAG Indicates if the port is a member of a LAG If it is a member of a LAG it cannot be configured to a VLAN The LAG to which it belongs can be configured to a VLAN for Configuration Z pret DVDR 2 eprg mg D I Gigabit PoE Switch TRAWA 1 Bea Mode Jain et AN Wi Adie L tz IV Aceti
45. 41 QoS Diffserv Port Binding Figure 5 42 QoS Bandwidth Figure 5 43 Spanning Tree Global Settings Figure 5 44 Spanning Tree STP Settings Figure 5 45 Spanning Tree STP Port Settings Figure 5 46 Multicast Global Settings Figure 5 47 Multicast Static Member Ports Figure 5 48 Multicast Static Router Ports Figure 5 49 SNMP Member Ports Query Figure 5 50 Router Ports Query Figure 5 51 Admin User Authentication Figure 5 52 Admin Forwarding Database Figure 5 53 Admin SNMP Figure 5 54 Admin Log Figure 5 55 Admin Log Flash Logging Figure 5 56 Admin Log Memory Logging Figure 5 57 Admin Port Mirroring Figure 5 58 Admin Cable Test Figure 5 59 Admin Ping Figure 5 60 Admin Save Configuration Figure 5 61 Admin Jumbo Frame Figure 5 62 Admin Firmware Upgrade Figure 5 63 Admin HTTP Upgrade Figure 5 64 Admin Reboot Figure 5 65 Admin Factory Defaults Figure C 1 Interface Figure C 2 Send File Figure C 3 Browse Figure C 4 Sending File Chapter 1 Introduction Welcome The Linksys WebView Managed Switch allows you to expand your network securely Configuration of the switch is secured using SSL for Web access User control is secured using 802 1x security using a RADIUS authentication mechanism and can also be controlled using MAC based filtering Extensive QoS features makes the solution ideal for real time applications like Voice and Video The 4 priority q
46. Binding D E TV H l Esatded SS r Eentded l Fea ded T Dask T Enabled La P cated H P Esetied D T Esseg f T Beaded ff l Gable Zi pret K ROnDEO Zeen mie D I Gigabit PoE Switch Staat SE fi HUE SUSAN Figure 5 42 QoS Bandwidth 60 Spanning Tree Tab The Spanning Tree Algorithm STA can be used to detect and disable network loops and to provide backup links between switches bridges or routers This allows the Switch to interact with other bridging devices that is an STA compliant switch bridge or router in your network to ensure that only one route exists between any two stations on the network and provide backup links which automatically take over when a primary link goes down Loops occur when alternate routes exist between hosts Loops in an extended network can cause bridges to forward traffic indefinitely resulting in increased traffic and reducing network efficiency Spanning Tree Tab Global Settings You can display a summary of the current bridge STA information that applies to the entire Switch using the Information screen This screen displays the following information Spanning Tree State Indicates if STA is enabled on the device Spanning Tree Mode Indicates the STA mode by which STP is enabled on the device Bridge ID Identifies the Bridge priority and MAC address Designated Root Indicates the ID of the bridge with the lowest path cost to the instance ID Root Port I
47. Introduction This chapter describes the Switch s applications and this User Guide Chapter 2 Getting to Know the Switch This chapter describes the physical features of the Switch Chapter 3 Connecting the Switch This chapter explains how to install and connect the Switch Chapter 4 Using the Console Interface for Configuration This chapter instructs you on how to use the Switch s console interface when you configure the Switch Chapter 5 Using the Web based Utility for Configuration This chapter shows you how to configure the Switch using the Web based Utility Appendix A About Gigabit Ethernet and Fiber Optic Cabling This appendix gives a general description of Gigabit Ethernet and fiber optic cabling Appendix B Windows Help This appendix describes how you can use Windows Help for instructions about networking such as installing the TCP IP protocol Appendix C Downloading using Xmodem This appendix describes how you can download software into the Switch using Xmodem Appendix D Glossary This appendix gives a brief glossary of terms frequently used in networking Appendix E Specifications This appendix provides the Switch s technical specifications Appendix F Warranty Information This appendix supplies the Switch s warranty information Appendix G Regulatory Information This appendix supplies the Switch s regulatory information Appendix H Contact Information This appendix provides contact information
48. L criteria and disables the port to which the packet was addressed Ports are reactivated from the Port Management screen Protocol Creates an ACE Access Control Event based on a specific protocol e Select from List Selects from a protocols list on which ACE can be based The possible field values are e Any Matches the protocol to any protocol e EIGRP Indicates that the Enhanced Interior Gateway Routing Protocol EIGRP is used to classify network flows e ICMP Indicates that the Internet Control Message Protocol ICMP is used to classify network flows e IGMP Indicates that the Internet Group Management Protocol IGMP is used to classify network flows e TCP Indicates that the Transmission Control Protocol is used to classify network flows 44 e OSPF Matches the packet to the Open Shortest Path First OSPF protocol e UDP Indicates that the User Datagram Protocol is used to classify network flows e Protocol ID To Match Adds user defined protocols to which packets are matched to the ACE Each protocol has a specific protocol number which is unique The possible field range is 0 255 TCP Flags Filters packets by TCP flag Filtered packets are either forwarded or dropped Filtering packets by TCP flags increases packet control which increases network security The values that can be assigned are e Set Enables filtering packets by selected flags e Unset Disables filtering packets by selected flags e Don t care
49. N IP Address Mode This drop down allows you to select Static or Dynamic IP address configuration Host Name Enter the DHCP Host Name here IP Address If using a static IP address enter the IP address here Subnet Mask Enter the subnet mask of the currently configured IP address Default Gateway Enter the IP address of the Default Gateway DNS Server Enter the primary DNS Server information Z pret RODER Zeng mind D I Gigit PoE Switch 5 P System Rame Cora Location System Cantact Daje D 136141 e563 mW thes RA eddies OFA Hasagererz Kl VLAH OAS Sarre Figure 5 3 Setup Network Settings 27 You can click Restart DHCP to assign a new IP address using DHCP Click the Save Settings button to save your changes or click Cancel Changes to discard the information Setup Tab Time The Time screen allows you to configure the time settings for the Switch Simple Network Time Protocol SNTP allows the Switch to set its internal clock based on periodic updates from a time server SNTP or NTP Maintaining an accurate time on the Switch enables the system log to record meaningful dates and times for event entries If the clock is not set the Switch will only record the time from the factory default set at the last bootup When the SNTP client is enabled the Switch periodically sends a request for a time update to a configured time server You can configure up to two time server IP addresses The Switch will attempt
50. Note that you must select this item prior to generating the host key pair Generate This button is used to generate the host key pair Note that you must first generate the host key pair before you can enable the SSH server Clear This button clears the host key from both volatile memory RAM and non volatile memory Flash Z Seet SIONS Zeg mind GBIC Gigit Pee Switch SAWAL Pakt Hep H ankey Figure 5 34 Security SSH Host Key Settings 54 QoS Tab Network traffic is usually unpredictable and the only basic assurance that can be offered is best effort traffic delivery To overcome this challenge Quality of Service QoS is applied throughout the network This ensures that network traffic is prioritized according to specified criteria and that specific traffic receives preferential treatment CoS provides varying Layer 2 traffic services CoS refers to classification of traffic to traffic classes which are handled as an aggregate whole with no per flow settings CoS is usually related to the 802 1p service that classifies flows according to their Layer 2 priority as set in the VLAN header QoS refers to Layer 2 traffic and above QoS handles per flow settings even within a single traffic class QoS Tab CoS Settings Class of Service CoS allows you to specify which data packets have greater precedence when traffic is buffered in the Switch due to congestion The Switch supports CoS with four priority queues fo
51. P address or host name of the device you want to ping then click Go The ping results are displayed in the Ping Status text box The following are some common displayed results of a ping e Normal response The normal response occurs in one to ten seconds depending on network traffic e Destination does not respond If the host does not respond a timeout appears in ten seconds e Destination unreachable The gateway for this destination indicates that the destination is unreachable e Network or host unreachable The gateway found no corresponding entry in the route table la va eg gn ga ell Lilitu denge PAK Zi en Iro AK pased Utility for Contfiguratior e BR Te Admin Tab Cable Test etn aztees d gt 1I Ri a e ep wm D e a Ca w bw A Pima Daag Heater IP Addim e tal Ping Staten Figure 5 59 Admin Ping 19 Admin Tab Save Configuration Downloads or uploads Switch configuration files from a TFTP server The Switch allows the start up configuration at port 00 000 Deenen GEI Gigabit PaE Sith to be saved or restored from a TFTP server You must specify Upgrade to download a new configuration file or e em Backup to save a configuration file to the server select Upgrade or Backup Enter the IP address of the TFTP server specify the name of the configuration file on Se Es the server and then click Save Settings omisar Fo Proceed Figure 5 60 Admin Save Config
52. X gt to start to download the new code file If using Windows HyperTerminal click the Transfer button and then click Send File Select the XModem Protocol and then use the Browse button to select the required firmware code file from your PC system The Xmodem file send window displays the progress of the download procedure Note The download file must be a valid binary software file from Linksys for the target switch 8 After the file has been downloaded you are prompted with Update Image File to specify the type of code file Press lt R gt for runtime code lt D gt for diagnostic code or lt L gt for loader code a cimere HyperTerminal J Pie Tat W Cal Trane Hen Perloraing Forer 0n Sell Teste Pat Tiner Test ASS UART Local POE ae eege k Tent DRAN T Di ch Mint Dese Test Dene All Fos File Hane Fleglale_1 Faet ory Default Config eig Ab st wt bi 34 26 35 24 00 21 24 10 06 24 00 34 Tee Spac LE dag Keser 4 d i TDelste File Sjet Startup File ire aver Runline Flag O wit elect Figure C 1 Interface Ltr Hyper Terminal Fis L t Vew Ce Trasie Hep Slogt1 e 1 Factory Default Contig ctq DRNZUZAK Goat vllll bax SRO2074F issate bis Cerbilacate startup conf ig Startupl cig Free Spece 2959296 Ajecdes Download Dlelete oe aler Startup File Rleovrer Busse Flaa O ui Select Kendre Feeriving Start Sends a file bn thes rpmobp suste
53. Zen ant Im e Perey bawan pu g Acco jen LAM Is a Seten Jena fu Arat Jena Im sl E Aeren havan po F Aerer Jean VAN Mo A Aererg Jm WAN fr a Acrerg oan WLAN fru r Aere Zen wait Im pi Ae JEn WLAN Mre Wz Arcee davani Im e Ae Zenn Im pi Acrerg Zen WAN ru Figure 5 15 VLAN Management VLAN to Ports Join VLAN Eth 1 Access Mode Only join one VLAN with untagged VLAN ID fi Apply Close Window Figure 5 16 VLAN to Ports Join VLAN 37 Statistics Tab RMON Statistics The RMON Statistics screen contains fields for viewing information about device utilization and errors that occurred on the device To view the interface statistics for a port select the required interface from the drop down menu and click Query To set a refresh rate or to update the interface statistics select a time interval from the Refresh Rate drop down menu Refresh Rate Defines the amount of time that passes before the interface statistics are refreshed The possible field values are e No Refresh Indicates that the RMON statistics are not refreshed e 15 Sec Indicates that the RMON statistics are refreshed every 15 seconds e 30 Sec Indicates that the RMON statistics are refreshed every 30 seconds e 60 Sec Indicates that the RMON statistics are refreshed every 60 seconds Interface Indicates the device for which statistics are displayed The possible field values are e Port Defines
54. are allowed access to the Switch through the web interface SNMP or Telnet Myon TEE iS parn ere ODC Gipsa Paf fem The management interfaces are open to all IP addresses by default Once you add an entry to a filter list access KA to that interface is restricted to the specified addresses If anyone tries to access a management interface on the Switch from an invalid address the Switch will reject the connection enter an event message in the system log and send a trap message to the trap manager IP addresses can be configured for web SNMP and Telnet access Each of these groups can include up to five different sets of addresses either individual addresses or address ranges When entering addresses for the same group i e SNMP web or Telnet the Switch will not accept overlapping address ranges When entering addresses for different groups the Switch will accept overlapping address ranges ENEP P p aring You cannot delete an individual address from a specified range You must delete the entire range and reenter the addresses You can delete an address range just by specifying the start address or by specifying both the start SE address and end address Figure 5 32 Security Management ACL mima than VWlak_khaead Ikili far Amanti annnka mn Using the Web based Utility for Configuration 52 Security Tab SSH Settings The Secure Shell SSH includes server client applications that can provide remote management
55. ast IEEE 802 1d Spanning Tree IEEE 802 1w Rapid Spanning Tree 91 IGMP Snooping QoS Priority levels scheduling Class of Service Rate Limiting Layer 2 VLAN HOL Blocking Jumbo frame Standards ENVIRONMENTAL Device Dimensions WxHxD Weight IGMP v1 v2 snooping provides for fast client joins and leaves of multicast streams and limits bandwidth intensive video traffic to only the requestors 4 Hardware queues Priority Queueing and Weighted Round Robin WRR Port based 802 1p VLAN priority based IP TOS DSCP based CoS IPv6 Traffic Class based CoS Ingress Policer Egress Shaper Port based and 802 1q based VLANs Management VLAN Head of line blocking prevention Supports frames up to 10K byte frames IEEE 802 3 2005 Ethernet IEEE 802 3u Fast Ethernet IEEE 802 32 Gigabit Ethernet IEEE 802 ab Gigabit Ethernet Flow Control 16 93 x 1 75 x 13 78 430 x 44 45 x 350 mm 8 60 Ib 4 47 kg Power Internal switching power Power Input 100 240V 3A 50 60Hz Certification FCC Part 15 Class A CE Class A UL cUL CE mark CB Operating Temperature 32 to 104 F 0 to 50 C Storage Temperature 4 to 158 F 20 to 70 C Operating Humidity 10 to 90 Storage Humidity 10 to 95 93 Appendix F Warranty Information LIMITED WARRANTY Linksys warrants to You that for a period of five years the Warranty Period your Linksys Product will be substantially free of defects in materials and workmanshi
56. ates if ports are members of a LAG To configure the default priority for LAGs go to the table entry for the LAG number which is listed after port g24 at the end of the table Default settings can be restored using the Restore Defaults button Click Save Settings to save the changes QoS Tab Queue Settings The Queue Setting screen contains fields for defining the QoS queue forwarding types Queue Displays the queue for which the queue settings are displayed The possible field range is 1 4 Strict Priority Indicates that traffic scheduling for the selected queue is based strictly on the queue priority WRR Indicates that traffic scheduling for the selected queue is based strictly on the WRR WRR Weight Displays the WRR weights to queues of WRR Bandwidth Displays the amount of bandwidth assigned to the queue These values are fixed and are not user defined pert RHODE por mieg D I Gigabit PoE Sestch SW Figure 5 36 QoS Queue Settings 56 Zei val anv Ge ALGELINE CR E ee Wwe Ww Et an 8 Ge li ES Bea QoS Tab DSCP Settings The Switch supports a common method of prioritizing layer 3 4 traffic to meet application requirements Traffic priorities can be specified in the IP header of a frame using the priority bits in the Type of Service ToS octet If priority bits are used the ToS octet may contain six bits for Differentiated Services Code Point DSCP service When these services are enabled the priori
57. ates the port mode Possible values are e General The port belongs to VLANs and each VLAN is user defined as tagged or untagged full 802 10 mode e Access The port belongs to a single untagged VLAN When a port is in Access mode the packet types which are accepted on the port packet type cannot be designated It is also not possible to enable disable ingress filtering on an access port e Trunk The port belongs to VLANs in which all ports are tagged except for an optional single native VLAN Papert DDN Fort meng D I Gigabit PoE Satch SEAE Figure 5 12 VLAN Management Create VLAN NOTE VLANs that are created dynamically using GVRP are assigned a VLAN name Undefined Z4 pret BW DIODO Zeng mie GEI Gigabit PoE wich SEAR ingaras Fierit LAG P Craie E Era peg D Erabi F Brake E raking F Ensas F Erabeg E Erabi bd kd Tana el ee e resp E Eraba J Cer E Eratoeg F Erabied E Crain E Erabied P Frae Ou TTT TTT Wu BA H E G E H e j S 4 Figure 5 13 VLAN Management Port Settings 35 Acceptable Frame Type Packet type accepted on the port Possible values are e Admit Tag Only Indicates that only tagged packets are accepted on the port e Admit All Indicates that both tagged and untagged packets are accepted on the port PVID Assigns a VLAN ID to untagged packets The possible values are 2 to 4094 VLAN 4095 is defined as per standard and industry practice as
58. ation IP address wildcard mask Match DSCP Matches the packet DSCP value to the ACE Either the DSCP value or the IP Precedence value is used to match packets to ACLs The possible field range is 0 63 Match IP Precedence Matches the packet IP Precedence value to the ACE Either the DSCP value or the IP Precedence value is used to match packets to ACLs The possible field range is 0 7 The Add to List button adds the configured IP Based ACLs to the IP Based ACL Table at the bottom of the screen ACL Tab MAC Based ACL The MAC Based ACL screen allows a MAC based ACL to be defined ACEs can be added only if the ACL is not bound to an interface Z pret ROT Zeg mind GBIC Gigap Pet Sech SAAL Target Select the New ACL Name radio button and enter an ACL name in the text field provided with up to 16 characters Or to add rules to an existing ACL select the ACL Name radio button and select an ACL from the dropdown menu ACL Name Displays the user defined MAC based ACLs New ACL Name Specifies a new user defined MAC based ACL name the name cannot include spaces Action Indicates the ACL forwarding action Possible field values are e Permit Forwards packets which meet the ACL criteria e Deny Drops packets which meet the ACL criteria e Shutdown Drops packet that meet the ACL criteria and disables the port to which the packet was addressed Source MAC Address Matches the source MAC address to which packets are addressed
59. ause frames The current switch chip only supports symmetric pause frames Flow Control Enables flow control Flow control can eliminate frame loss by blocking traffic from end stations or segments connected directly to the Switch when its buffers fill When enabled back pressure is used for half duplex operation and IEEE 802 3x for full duplex operation Avoid using flow control on a port connected to a hub unless it is actually required to solve a problem Otherwise back pressure jamming signals may degrade overall performance for the segment attached to the hub Default Autonegotiation enabled Advertised capabilities for 100Base TX 10half 10full 100half 100full 1000Base T 10half 10full 100half 100full 1000full 1000Base SX LX LH 1000full Port Broadcast Control You can protect your network from broadcast storms by setting a threshold for broadcast traffic for all ports Any broadcast packets exceeding the specified threshold will then be dropped Status To enable broadcast control on a specified port select Enabled for that port Threshold Set the threshold using the Threshold field You may enter 64 1000000 K bits sec After you modify the required port settings click Apply Click the Save Settings button to save your changes Port Management Tab Link Aggregation LAG This indicates if the port is part of a LAG Description Description for this LAG Administrative Status The admin status of the
60. bbers Figure 5 19 RMON History Table Collisions and Utilization Statistics Tab RMON Alarm The RMON Alarm screen contains fields for setting network alarms Network alarms occur when a network problem or event is detected Rising and falling thresholds generate events The RMON Alarms screen allows you to record important events and critical network problems The RMON Alarm ep and Event Control Tables are used together to define specific criteria that will generate response events lt i poe OO A pe NEIE ARE SWE o Alarms can be set to test data over any specified time interval and can monitor absolute or changing values such as a Statistical counter reaching a specific value or a statistic changing by a certain amount over a set interval Alarms can be set to respond to either rising or falling thresholds The Alarm Control Table allows you to add update and delete specific index entries Interface The selected interface on the Switch Sege Interface Displays the interface for which RMON statistics are displayed The possible field values are e Port Displays the RMON statistics for the selected port e LAG Displays the RMON statistics for the selected LAG Statistics The traffic statistics to be sampled Select from the drop down list Interval The time interval in seconds over which data is sampled and compared with the rising or falling a threshold Figure 5 20 Statistics RMON Alarm 40 Sample Type Defines t
61. betyder at dette produkt skal bortskaffes adskilt fra det almindelige husholdningsaffald Det er dit ansvar at bortskaffe dette og andet elektrisk og elektronisk udstyr via bestemte indsamlingssteder udpeget af staten eller de lokale myndigheder Korrekt bortskaffelse og genvinding vil hj lpe med til at undg mulige skader for milj et og menneskers sundhed Kontakt venligst de lokale myndigheder renovationstjenesten eller den butik hvor du har k bt produktet ang ende mere detaljeret information om bortskaffelse af dit gamle udstyr Deutsch German Umweltinformation f r Kunden innerhalb der Europ ischen Union Die Europ ische Richtlinie 2002 96 EC verlangt dass technische Ausr stung die direkt am Ger t und oder an der Verpackung mit diesem Symbol versehen ist nicht zusammen mit unsortiertem Gemeindeabfall entsorgt werden darf Das Symbol weist darauf hin dass das Produkt von regul rem Haushaltm ll getrennt entsorgt werden sollte Es liegt in Ihrer Verantwortung dieses Ger t und andere elektrische und elektronische Ger te ber die daf r zust ndigen und von der Regierung oder rtlichen Beh rden dazu bestimmten Sammelstellen zu entsorgen Ordnungsgem es Entsorgen und Recyceln tr gt dazu bei potentielle negative Folgen f r Umwelt und die menschliche Gesundheit zu vermeiden Wenn Sie weitere Informationen zur Entsorgung Ihrer Altger te ben tigen wenden Sie sich bitte an die rtlichen Beh rden oder st dtischen Entsorgungs
62. d 1000BASE T with 4 shared SFP slots UTP CAT 5 or better for 10BASE T 100BASE TX UTP CAT 5e or better for 1OOOBASE T System Link Act PoE 48 Gbps non blocking 8K 256 Static Today and Dynamic Future Built in Web Ul for easy browser based configuration HTTP HTTPS SNMP version v1 v2c with support for traps RFC1213 MIB 2 RFC2863 Interface MIB RFC2665 Ether like MIB RFC1493 Bridge MIB RFC2674 Extended Bridge MIB P bridge Q bridge RFC2819 RMON MIB groups 1 2 3 9 only RFC2737 Entity MIB RFC 2618 RADIUS Client MIB Embedded Remote Monitoring RMON software agent supports four RMON groups history statistics alarms and events for enhanced traffic management monitoring and analysis Web Browser upgrade HTTP 90 Port Mirroring Other Management Security features IEEE 802 1x Access Control Availability Link Aggregation Storm Control Spanning Tree TFTP upgrade Traffic on a port can be mirrored to another port for analysis with a network analyzer or RMON probe RFC854 Telnet Menu driven configuration Secure Shell SSH and Telnet Management Telnet Client SSL security for Web UI Switch Audit Log DHCP Client BootP SNTP Xmodem upgrade Cable Diagnostics PING 802 1x RADIUS Authentication MD5 Encryption IP and MAC ACLs Management ACL Port security MAC filtering Link Aggregation using IEEE 802 3ad LACP Up to 8 ports in up to 8 LAGs Broadcast Muticast and Unknown Unic
63. d MAC address of the device through which this port must communicate to reach the root of the Spanning Tree Path Cost This parameter is used by the STP to determine the best path between devices Therefore lower values should be assigned to ports attached to faster media and higher values assigned to ports with slower media Path cost takes precedence over port priority Note that when the Path Cost Method is set to short the maximum path cost is 65 535 e Range Ethernet 200 000 20 000 000 Fast Ethernet 20 000 2 000 000 Gigabit Ethernet 2 000 200 000 e Default Eeer Half duplex 2 000 000 full duplex 1 000 000 LAG 500 000 Fast Ethernet Half duplex 200 000 full duplex 100 000 LAG 50 000 Gigabit Ethernet Full duplex 10 000 LAG 5 000 Priority Defines the priority used for this port in the Spanning Tree Protocol If the path cost for all ports on a switch are the same the port with the highest priority i e lowest value will be configured as an active link in the Spanning Tree This makes a port with higher priority less likely to be blocked if the Spanning Tree Protocol is detecting network loops Where more than one port is assigned the highest priority the port with lowest numeric identifier will be enabled e Default 128 e Range 0 240 in steps of 16 Administrative Edge Port Fast Forwarding You can enable this option if an interface is attached to a LAN segment that is at the end of a bridged
64. de Enter the IP address of the TFTP server specify the file name of the software on the server and then click Save Settings Admin Tab HTTP Upgrade Download new Switch runtime software from the local web management PC Enter the file name of the software or use the Browse button to locate the file on the PC then click Save Settings Chapter 5 Using the Web based Utility for Configuration Admin Tab Jumbo Frame Figure 5 62 Admin Firmware Upgrade Figure 5 63 Admin HTTP Upgrade 11 24 Port 10 100 1000 Gigabit Switch with Webview and PoE Admin Tab Reboot The Reboot screen resets the device The device configuration is automatically saved before the device is EE o rebooted de cn Sex Figure 5 64 Admin Reboot Admin Tab Factory Default ee The Factory Reset screen restores the Switch s factory default settings Click the Reset to Factory Default Configuration button then click OK to confirm and restart the Switch Febem hah dete Et keete Biet NOTE Restoring the factory defaults will erase all configuration settings that you have made A You can save a backup of your current configuration settings from the Admin Save Configuration screen Figure 5 65 Admin Factory Defaults Chapter 5 Using the Web based Utility for Configuration Admin Tab Reboot 78 AppendixA AboutGigabitEthernetand Fiber Optic Cabling Gigabit Ethernet Gigabit Ethernet runs at speeds of 1Gbps Gigabit pe
65. dienste oder an den H ndler bei dem Sie das Produkt erworben haben Eesti Estonian Keskkonnaalane informatsioon Euroopa Liidus asuvatele klientidele Euroopa Liidu direktiivi 2002 96 EU n uete kohaselt on seadmeid millel on tootel v i pakendil k esolev s mbol keelatud k rvaldada koos sorteerimata olmejaatmetega See s mbol n itab et toode tuleks k rvaldada eraldi tavalistest olmej tmevoogudest Olete kohustatud k rvaldama k esoleva ja ka muud elektri ja elektroonikaseadmed riigi v i kohalike ametiasutuste poolt ette n htud kogumispunktide kaudu Seadmete korrektne k rvaldamine ja ringlussev tt aitab v ltida v imalikke negatiivseid tagaj rgi keskkonnale ning inimeste tervisele Vanade seadmete k rvaldamise kohta t psema informatsiooni saamiseks v tke palun hendust kohalike ametiasutustega j tmek itlusfirmaga v i kauplusega kust te toote ostsite Appendix G Regulatory Information Espa ol Spanish Informaci n medioambiental para clientes de la Uni n Europea La Directiva 2002 96 CE de la UE exige que los equipos que lleven este simbolo en el propio aparato y o en su embalaje no deben eliminarse junto con otros residuos urbanos no seleccionados El simbolo indica que el producto en cuesti n debe separarse de los residuos dom sticos convencionales con vistas a su eliminaci n Es responsabilidad suya desechar este y cualesquiera otros aparatos electricos y electr nicos a traves de los puntos de recogida que
66. dows otherwise the dot1x client must support it To enable 802 1X System Authentication Control select Radius When 802 1X is enabled you need to configure the parameters for the authentication process that runs between the client and the Switch that is authenticator as well as the client identity lookup process that runs between the Switch and authentication server These parameters are described in this section Operation Mode Allows single or multiple hosts clients to connect to an 802 1X authorized port Options Single Host Multi Host Default Single Host Maximum Count The maximum number of hosts that can connect to a port when the Multi Host operation mode is selected Range 1 1024 Default 5 Mode Sets the authentication mode to one of the following options Z geet RODER Zeg mind D I Gigabit Pee Switch Sian Pamati adr E abed C RADE Tee DS ir Syetem Authenticalion Gissbled 1 Fi Figure 5 29 Security 802 1x Settings 49 e Auto Requires a dot1x aware client to be authorized by the authentication server Clients that are not dot1x aware will be denied access e Force Authorized Forces the port to grant access to all clients either dot1x aware or otherwise This is the default setting e Force Unauthorized Forces the port to deny access to all clients either dot1x aware or otherwise Authorized Indicates the current status of the port e Yes A connected client is a
67. e configurable from Setup Network Settings tab System Contact The contact person for this Switch is displayed here configurable from Setup Network Settings tab System Up Time This displays the amount of time that has elapsed since the Switch was last reset Current Time The system time is displayed here configurable from Setup Time tab Z4 set SONOS Zeng mird GEIC Gigabt Bet Switch SEWARI IEF PE 1 24 2 3 agg Des DIGPSPLSC P ces un Ke fa E 102 E Figure 5 2 Setup Summary 26 PoE Information Maximum Available Power Displays the maximum power that can be supplied to a connected PoE device System Operation Status Displays whether the Switch can provide PoE power or not Mainpower Consumption Displays the current number of watts that the Switch is providing to PoE devices Setup Tab Network Settings The Network Settings screen allows you to assign DHCP or static IP settings to interfaces and assign default gateways Identification System Name This field allows you to assign a system name System Location This field is used for entering a description of where the Switch is located such as 3rd floor System Contact Enter the administrative contact person in this field System Object ID The system object identifier is displayed here Base MAC Address This is the MAC address of the Switch IP Configuration Management VLAN This drop down allows you to select the Management VLA
68. e the Link Aggregation Control Protocol LACP to automatically negotiate a LAG link between the Switch and another network device For static LAGs the switches have to comply with the Cisco EtherChannel standard For dynamic LAGs the switches have to comply with LACP This Switch supports up to eight LAGs For example a LAG consisting of two 1000 Mbps ports can support an aggregate bandwidth of 4 Gbps when operating at full duplex To avoid creating a loop in the network be sure you enable LACP before connecting the ports and also disconnect the ports before disabling LACP Global Setting System Priority Indicates the global LACP priority value The possible range is 1 65535 The default value is 1 Port Setting Set the System Priority and Port Priority for the Port Actor After you have completed setting the port LACP parameters click Save Settings Port Defines the port number to which timeout and priority values are assigned Status Select Enabled to enable the port Set Port Actor This menu sets the local side of an aggregate link that is the ports on this Switch Port Priority Defines the LACP priority value for the port The field range is 1 65535 LACP Timeout Administrative LACP timeout A short or long timeout value can be selected Long is the default Gs Es ad a Es GC Hj ac Eal FS ad Tz ad TZ ad Eal DE sg BE Figure 5 10 H pont TAO 1S pert mie ODC Gigabit PoE Switch a deeg e
69. e with the Service Policy Settings You can configure up to 63 policers that is class maps for Fast Ethernet and Gigabit Ethernet ingress ports Policing is based on a token bucket where bucket depth that is the maximum burst before the bucket overflows is by specified the Burst field and the average rate tokens are removed from the bucket is by specified by the Rate option After using the policy map to define packet classification service tagging and bandwidth policing it must be assigned to a specific interface by a service policy to take effect Policy name The name of the policy map Range 1 32 characters for the name Description A brief description of the Policy Range 1 256 characters for the description Click Add to create a new policy or select a policy and click Edit Policy Element to change the policy rules of the selected policy or Remove Policy to delete the policy Class Name Name of class map Use the drop down menu to select a different policy Action Configures the service provided to ingress traffic by setting a CoS DSCP or IP Precedence value in a matching packet Range CoS 0 7 DSCP 0 63 IP Precedence 0 7 Enable Meter Check this to define the maximum throughput burst rate and the action that results from a policy violation e Rate kbps Rate in kilobits per second Range 1 100000 kbps or maximum port speed whichever is lower e Burst byte Burst in bytes
70. ed 802 1x statistic Chapter r 5 Usin ng Statist tics the Web based Utility for Configuration Tab Port Utilization Z Seet biagi Zeng mind D I Gigit PoE Switch CGiahal Gverioaded Seraing Fil Veise Miira mi D ibrar Ern W ch besen LF r en W iiion Daissa Laa Figure 5 23 Statistics Port Utilization Z Seet DDO 2 eprg mind GI Gigit PoE Switch Refresh Sen ais paa ed fame Oereca pices Received CAROL Thy number ad CAPOL Du besen Ar ke bes Sa SPE Reel Ea Th AUN paren ert B cgiegd GAOL The mambar of FARE Loge ieee oi hove been receeved by L Ba Au Hercezegg fur EAPO hisi Bat hive bean mgcgieg by Ga invalid Act bert in shath re Ferre rte bi feel mag ted Fca il EAPOL The ruber of wild FAFUR base gd px type at bea keep Tatal mrgsepi ty Pe Athan er TAS re mmi o EAF Read Furen Gs bpp baan epee by Aa bajita ap EAP The oke gd ead EAP Deapoepg Fengeg ether thar Dotpig Anne iha Free bem reese br thee Aitan rer EAP The tbe of EAPOL Fenn that hit bees Heb by t whee the Pech Body Leagi ER Lea t pred eed g ttt besti Te ei cb Brit eee H EAPC Gees gi ying rec Cd a ae aal mer nerd HHH CAPUL 8 DD Titi ee RRL Geant es Oe es ee Toad truncated by thon Authanfir ater Titel r uaia ef EAR Bagel Piret bg hoes baan rer arsiig By EAPOL Ba Auttergn gier Trae The rani a CAP Hoos Feet ether gan Reg keep EPA Alte mn Pura F TEA bt thes det ad Nie Figure 5 24 Statistics 802
71. el 3 will be sent to the remote server Range 0 7 Default 7 Syslog Server Displays the list of remote server IP addresses that will receive Syslog messages The maximum number of host IP addresses allowed is five Enable Remote Log Status set the Logging Facility type number and configure the level of event messages to be sent to Syslog servers Enter up to five Syslog server IP addresses in the server list Click Save Settings SMTP Setting Flash Logging Clear Log Close Figure 5 55 Admin Log Flash Logging Memory Logging 0 0 24 2001 1 1 Log Messages Level 6 Module 5 fumctions l error number 1 Information VLAN 1 link up notification Clear Log Close Figure 5 56 Admin Log Memory Logging 73 To alert system administrators of problems the Switch can use SMTP Simple Mail Transfer Protocol to send email messages when triggered by logging events of a specified level The messages are sent to specified SMTP servers on the network and can be retrieved using POP or IMAP clients Admin Status Enables disables the SMTP function Default Enabled Severity Sets the Syslog severity threshold level used to trigger alert messages All events at this level or higher are sent to the configured email recipients For example using Level 7 will report all events from level 7 to level 0 Default Level 7 SMTP 1 3 Specifies a list of up to three recipient SMTP server IP addresses T
72. en enable it again once the problem has been resolved You may also disable an interface for security reasons Auto negotiation Port Capabilities Allows auto negotiation to be enabled disabled When auto negotiation is enabled you need to specify the capabilities to be advertised When auto negotiation is disabled you can force the settings for speed mode and flow control The following capabilities are supported 10half Supports 10 Mbps half duplex operation 10full Supports 10 Mbps full duplex operation 100half Supports 100 Mbps half duplex operation 100full Supports 100 Mbps full duplex operation 1000full Supports 1000 Mbps full duplex operation Default Auto negotiation enabled Advertised capabilities for 100Base TX 10half 10full 100half 100full 1000Base T 10half 10full 100half 100full 1000full 1000Base SX LX LH SFP 1000full 100Base FX SFP 100full Figure 4 24 Port Configuration 21 Speed Duplex Allows manual selection of port speed and duplex mode that is with auto negotiation disabled Flow Control Allows automatic or manual selection of flow control PoE Configuration On the Switch Main Menu screen select PoE Configuration and press the Enter key if you want to configure the Switch s ports PoE Main Menu The PoE Main Menu screen displays three menu choices System PoE Configuration Port PoE Status and Port PoE Configuration System PoE Configuration
73. es 1 2 System Configuration Information Menu Port Status Port Configuration PoE Configuration Help Logout Figure 4 6 Switch Main Menu 13 System Configuration Menu On the System Configuration Menu screen you have these choices 1 2 System Information Management Settings User amp Password Settings IP Configuration File Management Restore System Default Settings Reboot System Back to Main Menu Susten Configuration Hema Figure 4 7 System Configuration Menu 14 System Information Using this screen you can check the Switch s firmware versions and general system information System Information Versions The Versions screen displays the Switch s boot software loader and hardware firmware versions General Information Figure 4 9 Versions The General System Information screen displays the Switch s description System Up Time System MAC Address System Contact System Name and System Location General System Information Select Edit and press the Enter key to make changes When your changes are complete press the Esc key to return to the Action menu Select Save and press the Enter key to save your changes To exit select Quit and press the Enter key Figure 4 10 General System Information 15 Management Settings From the Management Settings screen you can set Serial Port Session Configuration Serial Port Configuration On the Serial Port Confi
74. ess list to any port You must configure a mask for an ACL rule before you can bind it to a port This Switch only supports ACLs for ingress filtering You can only bind one IP or one MAC ACL to any port for ingress filtering Mark the Enable checkbox for the port you want to bind to an ACL Select the required ACL from the drop down menu Port Fixed port or SFP module Range 1 24 IP Input Specifies the IP Access List to enable for a port MAC Input Specifies the MAC Access List to enable globally Click Save Settings to save the changes M pert WIOG 2 port mit DEI Gigabit PoE Switch 1 ec E raph MAC flapi I Enabled I Esabied a Eo essties I Enables a T Ebiet Brabteal Pa ee ee costed lo zl E D Esbe F Embia J F Ebel Exabied F T Basbiea F Brabieal riat e 2 F Baba im 2 E Estel F Essia MO E Eaabis a E Esabadl j 1 T Essbisd a F Embia EZ CEasbie l zl zl ya riab zl F csabied fi e P Esabiail I Enable Figure 5 27 Security ACL Binding 47 Security Tab Authentication Servers Remote Authorization Dial In User Service RADIUS servers provide additional security for networks RADIUS servers provide a centralized authentication method for web access This Switch uses the Extensible Authentication Protocol over LANs EAPOL to exchange authentication protocol messages with the client and a remote RADIUS authentication server to verif
75. f data moved successfully from one node to another in a given time period Trunking Link Aggregation Optimizes port usage by linking a group of ports together to form a single trunk aggregated groups TX Rate Transmission Rate UDP User Data Protocol Communication protocol that transmits packets but does not guarantee their delivery Upgrade To replace existing software or firmware with a newer version Upload To transmit a file over a network URL Uniform Resource Locator The address of a file located on the Internet VLAN Virtual Local Area Networks Logical subgroups that constitute a Local Area Network LAN This is done in software rather than defining a hardware solution WAN Wide Area Network Networks that cover a large geographical area Wildcard Mask Specifies which IP address bits are used and which bits are ignored A wild card mask of 255 255 255 255 indicates that no bit is important A wildcard of 0 0 0 0 indicates that all the bits are important For example if the destination IP address is 149 36 184 198 and the wildcard mask is 255 36 184 00 the first two bits of the IP address are used while the last two bits are ignored 89 Appendix E Specifications Model Ports Cabling Type LEDs Performance Switching Capacity MAC table size Number of VLANs Management Web User Interface SNMP SNMP MIBs RMON Firmware Upgrade SRW2024P 24 RJ 45 connectors for 1OBASE T 100BASE TX an
76. f description of a class map Range 1 256 characters Add Creates a new class map using the entered class name and description Edit Class Element Modifies the class map criteria used to classify ingress traffic Remove Removes the selected class from the list Select the entry from the table that you wish to change then click Edit Class Element Add rules to a selected Class using the ACL list drop down menu or the IP DSCP IP Precedence and VLAN text fields provided then click Add Class Rule Edits the rules for the class by specifying the type of traffic based on an access list a DSCP or IP Precedence value or a VLAN e ACL Name of an access control list Any type of ACL can be specified including standard or extended IP ACLs and MAC ACLs Range 1 16 characters e IP DSCP A DSCP value Range 0 63 e P Precedence An IP Precedence value Range 0 7 e VLAN A VLAN value Range 1 4094 Add Adds the specified criteria to the class Only one entry is permitted per class Remove Deletes the selected criteria from the class Con Close Clement LITdont Class map does mot abow EI MAC IP rules logether MAC include ALL MAC e Pichia ACL F adanada ACL P gerled Ciana Hanie Chez Clana Date fact sl reen Add Class Pule Coop Vani Figure 5 39 QoS Diffserv Settings Edit Class Element 58 Policy Map A policy map can contain multiple class statements that can be applied to the same interfac
77. for a variety of Linksys resources including Technical Support Chapter 2 Getting to Know the Switch Front Panel The Switch s LEDs and ports are located on the front panel SRW2024P EERI masse apt meee m ee emm eipen BEEBE ESSE ESBS BS Be Figure 2 1 Front Panel LEDs System Green The System LED lights green to indicate the power is being supplied to the Switch Lights orange to indicate that the Switch s power on self test POST is in progress Flashes orange to indicate that the POST has failed Link Act 1 24 Orange The Link Act LED lights orange to indicate a functional 1000Mbps network link through the corresponding port 1 through 24 with an attached device Green The Link Act LED lights green to indicate a functional 10 100Mbps network link Flashes to indicate that the Switch is actively sending or receiving data over that port PoE Orange The PoE LED lights orange to indicate a powered device is connected to the corresponding port 1 through 24 Flashes to indicate that the Switch is actively sending power over that port Ports LAN 1 24 The LAN Local Area Network ports connect to Ethernet network devices such as other switches or routers MiniGBIC 12 MiniGBIC 24 The Switch is equipped with two mini GBIC ports The miniGBIC gigabit interface converter port is a connection point for a miniGBIC expansion module so the Switch can be uplinked via fiber to another switch If a Gigabit mini GBIC p
78. guration screen the Switch s baud rate is displayed Select Edit and press the Enter key to make changes Toggle to the desired speed and when your changes are complete press the Esc key to return to the Action menu Select Save and press the Enter key to save your changes To exit select Quit and press the Enter key Figure 4 11 Management Settings Menu Serial Port Configuration H E DH and Hata Figure 4 12 Serial Port Configuration 16 User A Password Settings From this screen you can administer the user names and passwords of those accessing the Switch Select Edit and press the Enter key to make changes When your changes are complete press the Esc key to return to the Action menu Select Save and press the Enter key to save your changes To exit select Quit and press the Enter key NOTE The Username amp Password Settings screen can also A be used to set passwords for other users IP Configuration The P Configuration screen displays these choices the Switch s IP Address Settings HTTP HTTPS SNMP and Network Diagnostics IP Address Configuration The Switch s IP information is displayed here IP Address The IP Address of the Switch is displayed The default IP address is 192 168 1 254 Verify that the address you enter is correct and does not conflict with another device on the network Subnet Mask The subnet mask of the Switch is displayed Default Gateway The IP address of your network
79. h the source host For example to report a processing error IGMP Internet Group Management Protocol Allows hosts to notify their local switch or router that they want to receive transmissions assigned to a specific multicast group IP Internet Protocol A protocol used to send data over a network IP Address The address used to identify a computer or device on a network IPCONFIG A Windows 2000 and XP utility that displays the IP address for a particular networking device IPSec Internet Protocol Security A VPN protocol used to implement secure exchange of packets at the IP layer ISP Internet Service Provider A company that provides access to the Internet Jumbo Frames Enable transporting identical data in fewer frames Jumbo Frames reduce overhead lower processing time and ensure fewer interrupts LAG Link Aggregated Group Aggregates ports or VLANs into a single virtual port or VLAN 86 LAN The computers and networking products that make up your local network MAC Media Access Control Address The unique address that a manufacturer assigns to each networking device Mask A filter that includes or excludes certain values for example parts of an IP address Mbps MegaBits Per Second One million bits per second a unit of measurement for data transmission MD5 Message Digest 5 An algorithm that produces a 128 bit hash MD5 is a variation of MD4 and increases MD4 security MD5 verifies the in
80. he Action menu and select Execute to upload or download the designated file If you are downloading a new boot image please follow these steps 1 Download the new boot code DO NOT RESET THE DEVICE 2 Download the new software image Figure 4 19 File Management 3 Reset the device now 19 Restore System Default Settings To restore the Switch back to the factory default settings select Restore System Default Settings and press the Enter key You will be asked if you want to continue Press the y key to restore the Switch s default settings or press the n key to cancel Reboot System Select Reboot System and press the Enter key if you want to restart the Switch You will be asked if you want to continue Press the y key to reboot the Switch or press the n key to cancel After the Switch has rebooted the Switch Main Menu screen will appear Back to Main Menu Select Back to Main Menu and press the Enter key if you want to return to the Switch Main Menu screen Svisa Configuration Himi i Eita e omon t 1 File Raaatosgeo testore System beta luch Figure 4 20 Restore System Default Settings Syetem Configuration Menu Figure 4 21 Reboot System Syetem Configuration Himi Figure 4 22 Back to Main Menu 20 Port Status On the Switch Main Menu screen select Port Status and press the Enter key if you want to view the status information for the Switch s ports i Sid le Port Enable Link
81. he Switch attempts to connect to the other listed servers if the first fails Source Email Address Sets the email address used for the From field in alert messages You may use a symbolic email address that identifies the Switch or the address of an administrator responsible for the Switch Destination Email Address 1 5 Specifies the email recipients of alert messages You can specify up to five recipients Enable Admin Status select the minimum severity level and specify a source email address Add at least one IP address to the SMTP server list and specify up to five email addresses to receive the alert messages Click Save Settings Admin Tab Port Mirroring You can mirror traffic from any source port to a target port for real time analysis You can then attach a logic analyzer or RMON probe to the target port and study the traffic crossing the source port in a completely unobtrusive manner The target port speed should match or exceed source port speed otherwise traffic may be dropped from the monitor port The Switch supports only one mirror session Set the following attributes for port mirroring using the Port Mirroring screen Source Port Defines the port to which traffic is mirrored Type Indicates the port mode configuration for port mirroring The possible field values are e Receive Defines the port mirroring on receiving ports This is the default value e Transmit Defines the port mirroring on transmitting po
82. he sampling method for the selected variable and comparing the value against the thresholds The possible field values are e Absolute Compares the values directly with the thresholds at the end of the sampling interval e Delta Subtracts the last sampled value from the current value The difference in the values is compared to the threshold Startup Alarm How the alarm is activated when the variable is compared to the thresholds This can be set to Rising Falling or Rising or Falling Rising Threshold An alarm threshold for the sampled variable If the current value is greater than or equal to the threshold and the last sample value was less than the threshold then an alarm will be generated After a rising event has been generated another such event will not be generated until the sampled value has fallen below the Rising Threshold and reaches the Falling Threshold Falling Threshold An alarm threshold for the sampled variable If the current value is less than or equal to the threshold and the last sample value was greater than the threshold then an alarm will be generated After a falling event has been generated another such event will not be generated until the sampled value has risen above the Falling Threshold and reaches the Rising Threshold Rising Event Index Displays the mechanism in which the alarms are reported The possible field values are e LOG Indicates there is not a saving mechanism for either the device or
83. igabit Ethernet connection using a mini GBIC port you will need to install an MGBT1 MGBSX2 or MGBLH1 Gigabit expansion module and use Category 5e cabling or fiber optic cabling For more information on fiber optic cabling refer to Fiber Optic Cabling in Appendix B The Console Port The Switch is equipped with a serial port labeled Console located on the front of the switch that allows you to connect to a computer s serial port for configuration purposes using the provided serial cable You can use HyperTerminal to manage the Switch using the console port With this and many other Linksys products your networking options are limitless Go to the Linksys website at www linksys com for more information about products that work with the Switch Chapter 3 Connecting the Switch Overview This chapter will explain how to connect network devices to the Switch For an example of a typical network configuration see the application diagram shown below Cable Wireless Internet DSL Modem Router Desktop Notebook Access Point Camera IP Phone Server Figure 3 1 Typical Network Configuration for the SRW2024P When you connect your network devices make sure you don t exceed the maximum cabling distances which are listed in the following table Table 1 Maximum Cabling Distances Switch or Hub 100 meters 328 feet Switch or Hub 100 meters 328 feet A hub refers to any type of 100Mbps hub including regular hubs and s
84. il v re med pa forhindre mulige negative konsekvenser for milj og helse For n rmere informasjon om h ndtering av det kasserte utstyret ditt kan du ta kontakt med kommunen en innsamlingsstasjon for avfall eller butikken der du kj pte produktet Polski Polish Informacja dla klient w w Unii Europejskiej o przepisach dotycz cych ochrony rodowiska Dyrektywa Europejska 2002 96 EC wymaga aby sprz t oznaczony symbolem znajduj cym sie na produkcie i lub jego opakowaniu nie by wyrzucany razem z innymi niesortowanymi odpadami komunalnymi Symbol ten wskazuje e produkt nie powinien by usuwany razem ze zwyk ymi odpadami z gospodarstw domowych Na Panstwu spoczywa obowi zek wyrzucania tego i innych urz dze elektrycznych oraz elektronicznych w punktach odbioru wyznaczonych przez w adze krajowe lub lokalne Pozbywanie sie sprz tu we w a ciwy spos b i jego recykling pomog zapobiec potencjalnie negatywnym konsekwencjom dla rodowiska i zdrowia ludzkiego W celu uzyskania szczeg owych informacji usuwaniu starego sprz tu prosimy zwr ci si do lokalnych w adz stuzb oczyszczania miasta lub sklepu w kt rym produkt zosta nabyty Appendix G Regulatory Information Portugu s Portuguese Informa o ambiental para clientes da Uni o Europeia A Directiva Europeia 2002 96 CE exige que o equipamento que exibe este simbolo no produto e ou na sua embalagem n o seja eliminado junto com os residuos municipais n o se
85. in the Rack Figure 4 1 Finding HyperTerminal Figure 4 2 Connection Description Figure 4 3 Connect To Figure 4 4 COM1 Properties Figure 4 5 Telnet Login Screen Figure 4 6 Switch Main Menu Figure 4 7 System Configuration Menu Figure 4 8 System Information Menu Figure 4 9 Versions Figure 4 10 General System Information Figure 4 11 Management Settings Menu Figure 4 12 Serial Port Configuration Figure 4 13 User amp Password Settings Figure 4 14 IP Configuration Menu Figure 4 15 IP Address Configuration Figure 4 16 HTTP HTTPS Figure 4 17 SNMP Figure 4 18 Ping Test Figure 4 19 File Management Figure 4 20 Restore System Default Settings Figure 4 21 Reboot System Figure 4 22 Back to Main Menu Oo NGAO 11 11 12 12 13 14 15 15 15 16 16 17 17 17 18 18 19 19 20 20 20 Figure 4 23 Port Status Figure 4 24 Port Configuration Figure 4 25 System PoE Configuration Figure 4 26 Power Configuration Figure 4 27 Power Port Status Figure 4 28 Port PoE Configuration Figure 4 29 Help Figure 4 30 Log Out Figure 5 1 Login Screen Figure 5 2 Setup Summary Figure 5 3 Setup Network Settings Figure 5 4 Setup Time Figure 5 5 Port Management Port Settings Figure 5 6 Port Settings Port Setting Detail Figure 5 7 Port Management Link Aggregration Figure 5 8 Link Aggregation Link Aggregation Select Member Figure 5 9 Link Aggregation Link Aggregation Detail Figure 5
86. ion medium Firmware The programming code that runs a networking device 85 Flow Control Enables lower speed devices to communicate with higher speed devices This is implemented by the higher speed device refraining from sending packets FTP File Transfer Protocol A protocol used to transfer files over a TCP IP network Full Duplex The ability of a networking device to receive and transmit data simultaneously GARP General Attributes Registration Protocol Registers client stations into a multicast domain Gateway A device that interconnects networks with different incompatible communications protocols GBIC GigaBit Interface Converter A hardware module used to attach network devices to fiber based transmission systems GBIC converts the serial electrical signals to serial optical signals and vice versa GVRP GARP VLAN Registration Protocol Registers client stations into a VLANs Half Duplex Data transmission that can occur in two directions over a single line but only one direction at a time HTTP HyperText Transport Protocol The communications protocol used to connect to servers on the World Wide Web HTTPS HyperText Transport Protocol Secure An extension to the standard HTTP protocol that provides confidentiality by encrypting the traffic from the website By default this protocol uses TCP port 443 ICMP Internet Control Message Protocol Allows the gateway or destination host to communicate wit
87. isposal and recycling will help prevent potential negative consequences to the environment and human health For more detailed information about the disposal of your old equipment please contact your local authorities waste disposal service or the shop where you purchased the product Cestina Czech Informace o ochran zivotniho prostredi pro zakazniky v zemich Evropsk unie Evropsk sm rnice 2002 96 ES zakazuje aby zafizeni oznacen timto symbolem na produktu anebo na obalu bylo likvidovano s net id nym komun lnim odpadem Tento symbol ud v e dany produkt musi byt likvidov n odd len od b zn ho komunalniho odpadu Odpovidate za likvidaci tohoto produktu a dal ich elektrick ch a elektronick ch za izeni prost ednictvim ur en ch sb rn ch mist stanoven ch vl dou nebo mistnimi ady Spr vn likvidace a recyklace pom h p edch zet potenci lnim negativnim dopad m na ivotn prost ed a lidsk zdrav Podrobn j informace o likvidaci star ho vybaveni si laskav vy dejte od mistnich adu podniku zabyvajiciho se likvidaci komun ln ch odpad nebo obchodu kde jste produkt zakoupili Appendix G Regulatory Information 96 24 Port 10 100 1000 Gigabit Switch with Webview and PoE Dansk Danish Miljoinformation for kunder i EU EU direktiv 2002 9G6 EF kr ver at udstyr der b rer dette symbol pa produktet og eller emballagen ikke ma bortskaffes som usorteret kommunalt affald Symbolet
88. it del proprietario smaltire sia questi prodotti sia le altre apparecchiature elettriche ed elettroniche mediante le specifiche strutture di raccolta indicate dal governo o dagli enti pubblici locali Il corretto smaltimento ed il riciclaggio aiuteranno a prevenire conseguenze potenzialmente negative per l ambiente e per la salute dell essere umano Per ricevere informazioni pi dettagliate circa lo smaltimento delle vecchie apparecchiature in Vostro possesso Vi invitiamo a contattare gli enti pubblici di competenza il servizio di smaltimento rifiuti o il negozio ne quale avete acquistato il prodotto Latvie u valoda Latvian Ekologiska inform cija klientiem Eiropas Savien bas jurisdikcij Direkt v 2002 96 EK ir pras ba ka apr kojumu kam pievienota z me uz pa a izstr d juma vai uz t iesai ojuma nedr kst izmest ne irot veid kop ar komun lajiem atkritumiem tiem ko rada viet ji iedz vot ji un uz mumi z me noz m to ka ier ce ir j izmet atkritumos t lai t nenon ktu kop ar parastiem m jsaimniec bas atkritumiem J su pien kums ir o un citas elektriskas un elektroniskas ier ces izmest atkritumos izmantojot ipasus atkritumu sav k anas veidus un l dzek us ko nodro ina valsts un pa vald bu iest des Ja izme ana atkritumos un p rstr de tiek veikta pareizi tad mazin s iesp jamais kait jums dabai un cilv ku vesel bai S k kas zi as par novecoju a apr kojuma izme anu
89. ll open the Port Setting screen Port Setting Port Select the number of the port from the drop down menu Port Configuration Description Allows you to describe an interface Range 1 64 characters Port Type This is the port type Speed Duplex Allows you to manually set the port speed and duplex mode i e with auto negotiation disabled Auto negotiation Port Capabilities Allows auto negotiation to be enabled disabled When auto negotiation is enabled you need to specify the capabilities to be advertised When auto negotiation is disabled you can force the settings for speed mode and flow control The following capabilities are supported e 10half Supports 10 Mbps half duplex operation e 10full Supports 10 Mbps full duplex operation Port g1 D Port Configuration Description Speed Duplex Autonegotiation af 10h M 100h T 1000h T Sym g Enabled m 10f E dk iw 1000f Flow Control Enabled Port Broadcast Control Status F Enabled Threshold 64 1000000 KE Kbits sec Apply Close Window Figure 5 6 Port Settings Port Setting Detail 30 e 100half Supports 100 Mbps half duplex operation e 100full Supports 100 Mbps full duplex operation e 1000half Supports 1000 Mbps half duplex operation e 1000full Supports 1000 Mbps full duplex operation e Sym Gigabit only Check this item to transmit and receive pause frames or clear it to auto negotiate the sender and receiver for asymmetric p
90. mail server with a fixed domain name e g Wwww xyz com and a dynamic IP address Default Gateway A device that forwards Internet traffic from your local area network DHCP Dynamic Host Configuration Protocol A networking protocol that allows administrators to assign temporary IP addresses to network computers by leasing an IP address to a user for a limited amount of time instead of assigning permanent IP addresses DHCP Clients An Internet host using DHCP to obtain configuration parameters such as a network address DHCP Server An Internet host that returns configuration parameters to DHCP clients DNS Domain Name Server The IP address of your ISP s server which translates the names of websites into IP addresses Domain A specific name for a network of computers Download To receive a file transmitted over a network DSL Digital Subscriber Line An always on broadband connection over traditional phone lines DSCP DiffServe Code Point provides a method of tagging IP packets with QoS priority information Dynamic IP Address A temporary IP address assigned by a DHCP server EIGRP Enhanced Interior Gateway Routing Protocol Provides fast convergence support for variable length subnet mask and supports multiple network layer protocols Encryption Encoding data transmitted in a network Ethernet IEEE standard network protocol that specifies how data is placed on and retrieved from a common transmiss
91. n SNMP trap message Event Setting Event Description Displays the user defined event description Type Describes the event type Possible values are e None Indicates that no event occurred e Log Indicates that the event is a log entry e Trap Indicates that the event is a trap e Log and Trap Indicates that the event is both a log entry and a trap Community Displays the community to which the event belongs Owner Displays the device or user that defined the event Maximum 127 characters The Add button adds the configured RMON event to the Event Table at the bottom of the screen The Event Table area contains Index Description Type Community Last Time Sent Owner To display each time an event was triggered by an alarm first highlight an entry in the Event Control Table and then click on the View Log Table button The Log Table shows the log index number the time of an event and the description of the event that activated the entry Z Seet SISOS Zeng mind GI Gigabt PoE Switch SAWAL v ri Deacrigiien i ay Kal Type abe z Commonity D GI Zenger BU Figure 5 21 Statistics RMON Events hog Table Y O Table Event Index Time Desorption Index Figure 5 22 Statistics RMON Events Log Table 42 24 Port 10 100 1000 Gigabit Switch with Webview and PoE Statistics Tab Port Utilization The Port Utilization screen displays the amount of resources each interface is cu
92. n was taken e LAG Specifies the port from which the RMON information was taken Z pret DODO Zeng mind D I Gigabit PoE Switch Pea BO Goreta interfer P Ta Dem ET io Gh LE An La 20 Li 35 LEO r0 IEH Kid L 35 IEAI 10 D SE 13 i History Tabie es fer Tubie Figure 5 18 Statistics RMON History 39 Sampling Interval Indicates in seconds the time that samplings are taken from the ports The field range is 1 3600 The default is 1800 seconds 30 minutes S Sample internal Broadcast Mutticast Cro Indersize Qvaniza Index cour 1 K tebe P d z i sJobbers Collisions i cuy DAt Deis Packet Packala Packete a Packets Packets FragmuontsJobbees Collisions Wikeatition Sampling Requested Indicates the number of samples to save Range 1 65535 Owner The name of the person who created this entry in the Control Table Maximum 127 characters The Add to List button adds the configured RMON sampling to the Log Table at the bottom of the screen View History Table button This button opens the History Table screen The History Control Table allows you to add edit and delete collection entries or to select a specific index entry and then view the historical data in table form The History Table lists the Index Sample Index Interval Start Description Octets Packets Broadcast Packets Multicast Packets CRCA Align Errors Undersize Packets Oversize Packets Fragments Ja
93. ndicates the port number that offers the lowest cost path from this bridge to the Root Bridge It is significant when the Bridge is not the Root The default is zero Root Path Cost The cost of the path from this bridge to the root Root Maximum Age Indicates the device Maximum Age Time The Maximum Age Time indicates the amount of time in seconds a bridge waits before sending configuration messages The default max age is 20 seconds The range is 6 to 40 seconds Root Hello Time Indicates the device Hello Time The Hello Time indicates the amount of time in seconds a root bridge waits between configuration messages The default is 2 seconds The range is 1 to 10 seconds Root Forward delay Indicates the device forward delay time The Forward Delay Time indicates the amount of time in seconds a bridge remains in a listening and learning state before forwarding packets The default is 15 seconds The range is 4 to 30 seconds Topology Changes Counts Indicates the total amount of STP state changes that have occurred Zi pret DW ROIIDEO Zeen mea D I Gigabit PoE Switch Saatz Real Balls Time fa 2 Raat Fer Dein be 18 Totale Change Cauwespf Lom Tepeigy Chpseg DA1hieeis Figure 5 43 Spanning Tree Global Settings 61 Last Topology Change Indicates the amount of time that has elapsed since the bridge was initialized or reset and the last topographic change occurred The time is displayed in a day hour minute second format f
94. odpadov alebo obchod v ktorom ste si produkt zak pili Sloven ina Slovene Okoljske informacije za stranke v Evropski uniji Evropska direktiva 2002 96 EC prepoveduje odlaganje opreme ozna ene s tem simbolom na izdelku in ali na embala i med obicajne nerazvr ene odpadke Ta simbol opozarja da je treba izdelek odvre i lo eno od preostalih gospodinjskih odpadkov Va a odgovornost je da to in preostalo elektri no in elektronsko opremo odnesete na posebna zbirali a ki jih dolo ijo dr avne ustanove ali lokalna uprava S pravilnim odlaganjem in recikliranjem boste prepre ili morebitne kodljive vplive na okolje in zdravje ljudi e elite izvedeti vec o odlaganju stare opreme se obrnite na lokalno upravo odpad ali trgovino kjer ste izdelek kupili 99 24 Port 10 100 1000 Gigabit Switch with Webview and PoE Suomi Finnish Ymp rist koskevia tietoja EU alueen asiakkaille EU direktiivi 2002 96 EY edellytt ett jos laitteistossa on t m symboli itse tuotteessa ja tai sen pakkauksessa laitteistoa ei saa h vitt lajittelemattoman yhdyskuntaj tteen mukana Symboli merkitsee sit ett t m tuote on h vitett v erill n tavallisesta kotitalousj tteest Sinun vastuullasi on h vitt tama elektroniikkatuote ja muut vastaavat elektroniikkatuotteet viem ll tuote tai tuotteet viranomaisten m r m n ker yspisteeseen Laitteiston oikea h vitt minen est mahdolliset kielteiset vaik
95. on onan ay a TEE Overview Ges Bee Sg L f m Tech 2 di merk i ikp ie A more r a biien Book Prone Dages The Switch features a menu driven console interface for basic configuration of the Switch and management of geste San TT your network The Switch can be configured using CLI through the console interface or through a telnet EE P r e S I mhon connection This chapter describes console interface configuration Configuration can also be performed through aen the web utility which is covered in the next chapter Configuring the HyperTerminal Application Before you use the console interface you will need to configure the HyperTerminal application on your PC 1 Click the Start button Select Programs and choose Accessories Select Communications Select REESEN HyperTerminal from the options listed in this menu Connection Description 2 On the Connection Description screen enter a name for this connection In the example the name of connection is SRW2048P Select an icon for the application Then click the OK button SE Name 3 On the Connect To screen select a port to communicate with the Switch COM1 COM2 or TCP IP SRW2024P L oe IL Ga Figure 4 2 Connection Description Connect To B SRW2024P Enter details for the phone number that you want to diat Figure 4 3 Connect To 11 4 Set the serial port settings as follows Bits per second 38400 Data bits 8 Parity None Sto
96. onfigured addresses The Switch allows 1000 Static Address Counts Interface Port or LAG associated with the device assigned a static address MAC Address XX XX XX XX XX XX Physical address of a device mapped to this interface VLAN ID of a configured VLAN 1 4094 Specify the interface the static MAC address and VLAN then click Add The current static addresses on the Switch are all listed text box To delete a static MAC address from the forwarding database select the entry in the displayed list then click Remove 24 part TOGO 2eeag mieg DC Gigabit Det Switch TRWA GL Pap R Addii CX a KE bd ALAR Figure 5 52 Admin Forwarding Database 70 Dynamic Address Query The Switch s dynamic address table contains the MAC addresses learned by monitoring the source address for traffic entering the Switch When the destination address for inbound traffic is found in the database the packets intended for that address are forwarded directly to the associated port Otherwise the traffic is flooded to all ports You can query the forwarding database to find specific dynamic MAC addresses or view MAC addresses associated with a specific interface or VLAN Dynamic Address Counts The number of addresses dynamically learned on the Switch Interface Indicates to display MAC addresses for a specific port or LAG MAC Address Indicates to display details for a specific MAC address VLAN Indicates to display MAC
97. onfigured using IGMP Snooping and IGMP Query messages For certain applications that require tighter control you may need to statically configure a multicast service on the Switch First add all the ports attached to participating hosts to a common VLAN and then assign the multicast service to that VLAN group Specify the interface attached to a multicast service via an IGMP enabled switch or multicast router indicate the VLAN that will propagate the multicast service specify the multicast IP address and click Add Multicast Tab Static Router Ports Depending on your network connections IGMP snooping may not always be able to locate the IGMP querier Therefore if the IGMP querier is a known multicast router switch connected over the network to an interface port or lag on the Switch you can manually configure the interface and a specified VLAN to join all the current multicast groups supported by the attached router This can ensure that multicast traffic is passed to all the appropriate interfaces within the Switch Specify the interfaces attached to a multicast router indicate the VLAN which will forward all the corresponding multicast traffic and then click Add Chapter 5 Using the Web based Utility for Configuration Multicast Tab Static Member Ports Figure 5 48 Multicast Static Router Ports 67 24 Port 10 100 1000 Gigabit Switch with Webview and PoE Multicast Tab Member Ports Query You can use the Member P
98. onnector that slides and locks into place when plugged into a port or connected to another cable In Europe the round ST connector is more prevalent You must use the Linksys MGBT1 MGBSX1 or MGBLH1 mini GBIC modules with the Linksys Gigabit Switches The MGBSX1 and the MGBLH1 require fiber cabling with LC connectors and the MGBT1 requires a Category 5e Ethernet cable with an RJ 45 connector 79 Appendix B Windows Help Almost all networking products require Microsoft Windows Windows is the most used operating system in the world and comes with many features that help make networking easier These features can be accessed through Windows Help and are described in this appendix TCP IP Before a computer can communicate within a network TCP IP must be enabled TCP IP is a set of instructions or protocol all PCs follow to communicate over a network This is true for wireless networks as well Your PCs will not be able to utilize wireless networking without having TCP IP enabled Windows Help provides complete instructions on enabling TCP IP Shared Resources If you wish to share printers folder or files over your network Windows Help provides complete instructions on utilizing shared resources Network Neighborhood My Network Places Other PCs on your network will appear under Network Neighborhood or My Network Places depending upon the version of Windows you re running Windows Help provides complete instructions on adding PCs
99. or example 2 days 5 hours 10 minutes and 4 seconds Spanning Tree Tab STP Settings Configure the global settings for STP using this screen Global settings apply to the entire Switch Spanning Tree State Indicates if STP is enabled on the device Spanning Tree Type Specifies the type of spanning tree used on the Switch e STP Spanning Tree Protocol IEEE 802 1D i e when this option is selected the Switch will use RSTP set to STP forced compatibility mode e RSTP Rapid Spanning Tree Protocol IEEE 802 1w RSTP is the default Priority Specifies the bridge priority value When switches or bridges are running STP each is assigned a priority After exchanging BPDUs the device with the lowest priority value becomes the Root Bridge The default value is 32768 The port priority value is provided in increments of 4096 For example 4096 8192 12288 etc The range is 0 to 65535 Hello Time Specifies the device Hello Time The Hello Time indicates the amount of time in seconds a root bridge waits between configuration messages The default is 2 seconds The range is 1 to 10 seconds Maximum Age The maximum time in seconds a device can wait without receiving a configuration message before attempting to reconfigure All device ports except for designated ports should receive configuration messages at regular intervals Any port that ages out STP information provided in the last configuration message becomes the designated port f
100. or the attached LAN If it is a root port a new root port is selected from among the device ports attached to the network References to ports in this section mean interfaces which includes both ports and LAGs The default max age is 20 seconds The range is 6 to 40 seconds Forward Delay The maximum time in seconds this device will wait before changing states i e discarding to learning to forwarding This delay is required because every device must receive information about topology changes before it starts to forward frames In addition each port needs time to listen for conflicting information that would make it return to a discarding state otherwise temporary data loops might result The default is 15 seconds The range is 4 to 30 seconds Path Cost Method The path cost is used to determine the best path between devices The path cost method is used to determine the range of values that can be assigned to each interface Z Seet DVDR Zeng mind D I Gigabit PoE Switch SAWAL Spanning Tree Stair F Eriin Spinning Tara Typi este sei Z DS in map Helle Tima Af Maxime Aga Ep Pored Daisy pi ii Figure 5 44 Spanning Tree STP Settings 62 e Long Specifies 32 bit based values that range from 1 200 000 000 This is the default e Short Specifies 16 bit based values that range from 1 65535 Transmission Limit The maximum transmission rate for BPDUs is specified by setting the minimum interval
101. ort Configuration Port PoE Configuration The Power Port Configuration screen allows you to set the PoE settings for each port Select the Edit action and use the left right and up down arrows to select the attribute you would like to set You can set the Admin Status the Priority and the Power Allocation for each port Use the Save action to save the new settings Help Select Help and press the Enter key if you want to view the help information This screen explains how to navigate the various screens of the console interface Log Out Select Log Out to log out of the Console Configuration Utility Figure 4 30 Log Out 23 24 Port 10 100 1000 Gigabit Switch with Webview and PoE Chapter 4 Using the Console Interface for Configuration Configuring the Switch through the Console Interface 24 Chapter 5 Using the Web based Utility for Configuration Overview This chapter describes the features included in the Web based Utility All of the features shown in this chapter unless specifically identified are included in the all of Fast Ethernet switches Additional features for specific switches are noted M porn ANOANO 2 pertmin GBIC Gigabit PoE Switth smerna Accessing the Web based Utility Type in Demper eel Presenil Teen ciek OR ler nime AN NOTE The Web based Utility is optimized for viewing with a screen resolution of 1024 x 768 Internet Explorer version 5 5 or above is recommended
102. ort Query screen to display the ports on the Switch attached to a neighboring multicast router switch for each VLAN and multicast IP address select a VLAN ID and the IP address for a multicast service from the drop down menus The Switch will display all the interfaces that are propagating this multicast service Multicast Tab Router Member Ports Query Multicast routers that are attached to ports on the Switch use information obtained from IGMP to support IP multicasting across the Internet These routers may be dynamically discovered by the Switch or statically assigned to an interface on the Switch You can use the Router Port Query screen to display the ports on the Switch attached to a neighboring multicast router switch for each VLAN ID Select a VLAN ID from the drop down menus The Switch will display all the interfaces that have attached multicast routers dynamically discovered by the Switch or those that have been statically assigned to an interface on the Switch Chapter 5 Using the Web based Utility for Configuration Multicast Tab Member Ports Query Z pret SEO 2 eprg mind GBIC Gigabit Pet Switch ERWA Bo Bere my VLAH Me Bais cyan IP Becki eee irene Figure 5 49 SNMP Member Ports Query Figure 5 50 Router Ports Query 68 Admin Tab User Authentication The Switch supports up to 5 user names and passwords for management access console and web interfaces The default user name is
103. ort is being used the associated LAN port 12 and or 24 cannot be used They link to high speed network peripheral system or clients at speeds of 1000Mbps Use the Linksys MGBT1 MGBSX1 or MGBLH1 miniGBIC modules with the Switch The MGBSX1 and the MGBLH1 require fiber cabling with LC connectors while the MGBT1 requires a Category 5e Ethernet cable with an RJ 45 connector Console The Console port is where you can connect a serial cable to a PC s serial port for configuration using your PC s HyperTerminal program Refer to Chapter 4 Using the Console Interface for Configuration for more information The Back Panel The power port is located on the back panel of the Switch Figure 2 2 Back Panel Power The Power port is where you connect the power cord A NOTE If you need to reset the Switch unplug the power cord from the back of the Switch Wait a few seconds and then reconnect it The Side Panel The security slot is located on a side panel Ce ee Pe eee ee 8 ee ee ae 2 BERR RRR EERIE RE RRR ERE ERIE RRR ee BEB BR RBBB ERE RRR ERERE RE R RR ER ER ERE EE EG BEEBE RE RE RRERRRRERRRRRRRRE eee Figure 2 3 Side Panel Security Slot The security slot is where you can attach a lock so the Switch will be protected from theft LAN Ports The Switch is equipped with twenty four auto sensing RJ 45 LAN ports These RJ 45 ports support network speeds of either 10Mbps 100Mbps or 1000Mbps and can operate in half
104. other image is provided with a figure number and description like this Figure 0 1 Sample Figure Description Figure numbers and descriptions can also be found in the List of Figures section SRW2024P UG 60807NC BW Table of Contents Chapter 1 Introduction Welcome Chapter 2 Getting to Know the Switch Front Panel The Back Panel The Side Panel LAN Ports The Gigabit Expansion Ports The Console Port Chapter 3 Connecting the Switch Overview Before You Install the Switch Placement Options Connecting the Switch Uplinking the Switch Chapter 4 Using the Console Interface for Configuration Overview Configuring the HyperTerminal Application Connecting to the Switch through a Telnet Session Configuring the Switch through the Console Interface Chapter 5 Using the Web based Utility for Configuration Overview Accessing the Web based Utility Setup Tab Summary Setup Tab Network Settings Setup Tab Time Port Management Tab Port Settings Port Management Tab Link Aggregation Port Management Tab LACP Port Management Tab PoE Power Settings VLAN Management Tab Create VLAN VLAN Management Tab Port Settings O OO OO zl NOGA P G UO VLAN Management Tab Ports to VLAN VLAN Management Tab VLAN to Ports Statistics Tab RMON Statistics Statistics Tab RMON History Statistics Tab RMON Alarm Statistics Tab RMON Events Statistics Tab Port Utilization Statistics Tab 802 1x Statistics ACL Tab IP Based
105. p bits 1 Flow control None Then click the OK button Connecting to the Switch through a Telnet Session Open a command line editor and enter telnet 192 168 1 254 Then press the Enter key The Login screen will now appear The first time you open the CLI interface select Edit and hit Enter Enter admin in the User Name field Leave the Password field blank Press the Esc button and you will return to the login screen Use the right arrow button to navigate to Execute and press the Enter button to enter the CLI interface COM Properties Bits per second Data bets Panty Restore Defaults L oe Figure 4 4 COM1 Properties Heloome to SACH er Nese M Figure 4 5 Telnet Login Screen 12 Configuring the Switch through the Console Interface The console screens consist of a series of menus Each menu has several options which are listed vertically You select a menu option when you highlight it pressing the Enter key activates the highlighted option To navigate through the menus and actions of the console interface use the up or down arrow keys to move up or down and use the left or right arrow keys to move left or right Use the Enter key to select a menu option and use the Esc key to return to the previous selection Menu options and any values entered or present will be highlighted The bottom of the screen lists the actions available Switch Main Menu The System Main Menu screen displays these choic
106. p under normal use Your exclusive remedy and Linksys entire liability under this warranty will be for Linksys at its option to repair or replace the Product or refund Your purchase price less any rebates This limited warranty extends only to the original purchaser lf the Product proves defective during the Warranty Period call Linksys Technical Support in order to obtain a Return Authorization Number if applicable BE SURE TO HAVE YOUR PROOF OF PURCHASE ON HAND WHEN CALLING If You are requested to return the Product mark the Return Authorization Number clearly on the outside of the package and include a copy of your original proof of purchase RETURN REQUESTS CANNOT BE PROCESSED WITHOUT PROOF OF PURCHASE You are responsible for shipping defective Products to Linksys Linksys pays for UPS Ground shipping from Linksys back to You only Customers located outside of the United States of America and Canada are responsible for all shipping and handling charges ALL IMPLIED WARRANTIES AND CONDITIONS OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE ARE LIMITED TO THE DURATION OF THE WARRANTY PERIOD ALL OTHER EXPRESS OR IMPLIED CONDITIONS REPRESENTATIONS AND WARRANTIES INCLUDING ANY IMPLIED WARRANTY OF NON INFRINGEMENT ARE DISCLAIMED Some jurisdictions do not allow limitations on how long an implied warranty lasts so the above limitation may not apply to You This warranty gives You specific legal rights and You may also have other rights which
107. parados O simbolo indica que este produto deve ser eliminado separadamente dos residuos dom sticos regulares da sua responsabilidade eliminar este e qualquer outro equipamento el ctrico e electr nico atraves dos instala es de recolha designadas pelas autoridades governamentais ou locais A elimina o e reciclagem correctas ajudar o a prevenir as consequ ncias negativas para o ambiente e para a sa de humana Para obter informa es mais detalhadas sobre a forma de eliminar o seu equipamento antigo contacte as autoridades locais os servi os de elimina o de residuos ou o estabelecimento comercial onde adquiriu o produto Sloven ina Slovak Informacie o ochrane ivotn ho prostredia pre z kaznikov v Eur pskej nii Pod a eur pskej smernice 2002 96 ES zariadenie s t mto symbolom na produkte alalebo jeho baleni nesmie byt likvidovane spolu s netriedenym komun lnym odpadom Symbol znamen e produkt by sa mal likvidova oddelene od bezneho odpadu z dom cnosti Je va ou povinnos ou likvidova toto i ostatn elektrick a elektronick zariadenia prostrednictvom pecializovan ch zbern ch zariadeni urcenych vl dou alebo miestnymi org nmi Spr vna likvidacia a recykl cia pom e zabr ni pripadnym negativnym dopadom na ivotn prostredie a zdravie udi Ak mate z ujem o podrobnej ie inform cie o likvid cii star ho zariadenia obratte sa prosim na miestne organy organiz cie zaoberaj ce sa likvid ciou
108. permezz ta fa ilitajiet ta bir appuntati apposta mill gvern jew mill awtoritajiet lokali Ir rimi b mod korrett u r ri ikla jg in jipprevjeni konsegwenzi negattivi potenzjali g all ambjent u g as sa a tal bniedem G al aktar informazzjoni dettaljata dwar ir rimi tat tag mir antik tieg ek jekk jog bok ikkuntattja lill awtoritajiet lokali tieg ek is servizzi g ar rimi ta l iskart jew il anut minn fejn xtrajt il prodott Magyar Hungarian K rnyezetv delmi inform ci az eur pai uni s v s rl k sz m ra A 2002 96 EC sz m eur pai uni s ir nyelv megkiv nja hogy azokat a term keket amelyeken s vagy amelyek csomagol s n az alabbi cimke megjelenik tilos a t bbi szelekt latlan lakoss gi hullad kkal egy tt kidobni A cimke azt jel li hogy az adott term k kidobasakor a szokvanyos h ztart si hullad kelszallitasi rendszerekt l elk l n tett elj r st kell alkalmazni Az On felel ss ge hogy ezt s mas elektromos es elektronikus berendez seit a korm nyzati vagy a helyi hat s gok ltal kijel lt gyujtoredszereken kereszt l sz molja fel A megfelel hulladekfeldolgozas segit a k rnyezetre s az emberi eg szs gre potenci lisan rtalmas negativ hat sok megel z s ben Ha elavult berendezeseinek felsz mol s hoz tov bbi r szletes inform ci ra van szuksege k rj k lepjen kapcsolatba a helyi hat s gokkal a hulladekfeldolgozasi szolg lattal vagy azzal zlettel ahol a
109. ponen a su disposici n el gobierno y las autoridades locales Al desechar y reciclar correctamente estos aparatos estar contribuyendo a evitar posibles consecuencias negativas para el medio ambiente y la salud de las personas Si desea obtener informaci n m s detallada sobre la eliminaci n segura de su aparato usado consulte a las autoridades locales al servicio de recogida y eliminaci n de residuos de su zona o pregunte en la tienda donde adquiri el producto AAnvika Greek ZTOIXEIA TIEPIBAGAAOVTIKNS TIPOOTAGIAS YIA TEAGTES EvTOS mc Eupwrtraikns Evwons H Koivotikh OSnyia 2002 96 EC artraitei 6110 c omMou o OTTOIOS PEPE AUTO TO GULBOAO GOTO TIDOIOV KOU OTN OGUOKEUOOIO TOU GEV TTPETTE VA ATTOPPITTTETAI pa i UE Ta UIKTO KOIVOTIKG aTtoppiuparta To GOULBOAO UTTOOEIKVUE OTI GUTO TO TIPOIOV Ba TIPETTE va ATTOOPITITETAI EEyWPIOTG OTTO Ta ouv N OIKIOkO aTroppiwwarta Eiote uTrevQuvoc yia Thy aTTOpPIWN TOU TTapOVTOC KOL GAAOU NAEKTPIKOU KOL NAEKTPOVIKOU ELOTTAIGHOU EGU TWV KOBOPIOLEVWV EYKATACTACEWY CUYKEVTOWONS ATIODPIUUGTUWV OI OTTOIES TIAPEXOVTAI ATTO TO KpaTocs D Tic app ie TOTTIKEG opvtc H OWoTh aTTOppIWN Kal avaKUKAWON OUUBGAAE otv TIPOANWN TEGVWY GPVNTIKWY OUVETTEWV VIG TO TTEPIBGAAOV Kal TV uyeia To TEPIOOOTEPES TTANPOMOPIES OXETIKG UE TNV ATTOOPIWN TOU TTAaAIOU Gag E OTTAIGUOU TAPAKAAW ETTIKOIVWVNOTE HE TIC TOTTIKES GPXEC TIC UTINPETIES GTOPPIWNS TO KATAOTNUG OTTO TO OTOIO AYOPACATE TO TTDOION 97 24
110. r both data and power 87 QoS Quality of Service Provides policies that contain sets of filters rules QoS allows network managers to decide how and what network traffic is forwarded according to priorities application types and source and destination addresses RADIUS Remote Authentication Dial In User Service A protocol that uses an authentication server to control network access RJ 45 Registered Jack 45 An Ethernet connector that holds up to eight wires RMON Remote Monitoring Provides network information to be collected from a single workstation Router A networking device that connects multiple networks together RSTP Rapid Spanning Tree Protocol Detects and uses network topologies that allow a faster convergence of the spanning tree without creating forwarding loops Server Any computer whose function in a network is to provide user access to files printing communications and other services SMTP Simple Mail Transfer Protocol The standard e mail protocol on the Internet SNMP Simple Network Management Protocol A widely used network monitoring and control protocol SSH Secure Shell A utility that uses strong authentication and secure communications to log in to another computer over a network SSL Secure Socket Layer Encryption technology for the Internet used to provide secure transactions such as the transmission of credit card numbers for e commerce Static IP Address A fixed add
111. r each port Data packets in a port s high priority queue will be transmitted before those in the lower priority queues You can set the default priority for each interface and configure the mapping of frame priority tags to the Switch s priority queues The priority levels recommended in the IEEE 802 1p standard for various network applications are shown in the following table However you can map the priority levels to the Switch s output queues in any way that benefits application traffic for your own network The CoS Settings screen contains fields for enabling or disabling CoS In addition the Trust mode can be selected The Trust mode relies on predefined fields within the packet to determine the egress queue settings ent re o mo o DEE DEE Pop um Ces Zieser SRN Zeg men D I Gigabit Pet Switch SAHI ZBREEZBBEEBEEB amp TEE ECN 223535 k ta me Figure 5 35 QoS CoS Settings 99 CoS to Queue Assign priorities to the traffic classes output queues for the selected interface Class of Service CoS value Range 0 7 where 7 is the highest priority queue Queue 0 3 The output priority queue Range 0 3 where 3 is the highest CoS priority queue Port to CoS Modify the default priority for any interface using the text field provided Default CoS 0 7 The priority that is assigned to untagged frames received on the interface Range 0 7 where 7 is the highest priority LAG Indic
112. r fax your request in to 949 823 3002 If you experience problems with any Linksys product you can Call us at 800 326 7114 Don t wish to call You can e mail us at support linksys com lf any Linksys product proves defective during its warranty period you can Call the Linksys Return Merchandise Authorization department for obtaining a Return Authorization Number at 949 823 3000 Details on Warranty and RMA issues can be found in the Warranty Information section in this Guide 101
113. r second ten times faster than 100Mbps Fast Ethernet but it still integrates seamlessly with 100Mbps Fast Ethernet hardware Users can connect Gigabit Ethernet hardware with either fiber optic cabling or copper Category 5e cabling with fiber optics more suited for network backbones As the Gigabit standard gradually integrates into existing networks current computer applications will enjoy faster access time for network data hardware and Internet connections Fiber Optic Cabling Fiber optic cabling is made from flexible optically efficient strands of glass and coated with a layer of rubber tubing fiber optics use photons of light instead of electrons to send and receive data Although fiber is physically capable of carrying terabits of data per second the signaling hardware currently on the market can handle no more than a few gigabits of data per second Fiber cables come with two main connector types The most commonly used fiber optic cable is multi mode fiber cable MMF with a 62 5 micron fiber optic core Single mode fiber cabling is somewhat more efficient than multi mode but far more expensive due to its smaller optic core that helps retain the intensity of traveling light signals A fiber connection always require two fiber cables one transmits data and the other receives it Each fiber optic cable is tipped with a connector that fits into a fiber port on a network adapter hub or switch In the USA most cables use a square SC c
114. ress assigned to a computer or device that is connected to a network STP Spanning Tree Protocol Prevents loops in network traffic The Spanning Tree Protocol STP provides tree topography for any arrangement of bridges STP provides one path between end stations on a network eliminating loops Subnet Sub network Subnets are portions of a network that share a common address component In TCP IP networks devices that share a prefix are part of the same subnet For example all devices with a prefix of 157 100 100 100 are part of the same subnet Subnet Mask An address code that determines the size of the network Switch Filters and forwards packets between LAN segments Switches support any packet protocol type 88 TACACS Terminal Access Controller Access Control System Plus Proprietary Cisco enhancement to Terminal Access Controller Access Control System TACACS Provides additional support for authentication authorization and accounting TCP Transmission Control Protocol A network protocol for transmitting data that requires acknowledgement from the recipient of data sent TCP IP Transmission Control Protocol Internet Protocol A set of instructions PCs use to communicate over a network Telnet A user command and TCP IP protocol used for accessing remote PCs TFTP Trivial File Transfer Protocol A version of the TCP IP FTP protocol that has no directory or password capability Throughput The amount o
115. rrently consuming Ports in green are functioning normally while ports in red are currently transmitting an excessive amount of network traffic Click the View All Ports button to view all 24 ports on the screen Global Overloaded Setting Refresh Rate Indicates the amount of time that passes before the port utilization statistics are refreshed The possible field values are e No Refresh Indicates that the statistics are not refreshed e 15 Sec Indicates that the statistics are refreshed every 15 seconds e 30 Sec Indicates that the statistics are refreshed every 30 seconds e 60 Sec Indicates that the statistics are refreshed every 60 seconds Statistics Tab 802 1x Statistics The 802 1X Statistic screen contains information about EAP packets received on a specific port To view the statistics for a port select the required interface from the drop down menu and click Query Refresh Rate Indicates the amount of time that passes before the EAP statistics are refreshed The possible field values are e No Refresh Indicates that the EAP statistics are not refreshed e 15 Sec Indicates that the EAP statistics are refreshed every 15 seconds e 30 Sec Indicates that the EAP statistics are refreshed every 30 seconds e 60 Sec Indicates that the EAP statistics are refreshed every 60 seconds Interface Indicates the port which is polled for statistics Name Displays the measured 802 1x statistic Description Describes the measur
116. rts Z4 part WII 2 eet mieg DC Gigabit Bet Switch SAWALI Figure 5 57 Admin Port Mirroring 74 D A Dart AJIAN IA DDR Cinaksit Cussstak wth Ulahkusnaiwus Anel 24 Port 10 100 1000 uldaDit SWITCN wiin WeDVIEW a DG e Both Defines the port mirroring on both receiving and transmitting ports Target Port Defines the port from which traffic is mirrored Specify the source port the traffic type to be mirrored and the target port then click Add The mirror session is displayed in the text box Admin Tab Cable Test To test the connection quality of an attached cable click on the Test button for the port Note that the cable needs to be connected at both ends otherwise the test will fail Port This is the port to which the cable is connected Test Result This is the test result OK indicates that the cable passed the test No Cable means there is no cable connected to the port Open Cable means the cable is connected on only one side Short Cable indicates that a short has occurred in the cable Undefined indicates that the test could not be properly performed Cable Fault Distance This is the distance from the port at which the cable error occurred Last Update This is the last time the port was tested Test Click the Test button to perform the test Admin Tab Ping You can use a ping to see if another site on the network can be reached Ping sends ICMP echo request packets to another node on the network Enter the I
117. rwarded message responses are heaped onto the network overloading network resources or causing the network to time out Burst A packet transmission at faster than normal rates Bursts are limited in time and only occur under specific conditions Burst Size Indicates the burst size transmitted at a faster than normal rate Byte A unit of data that is usually eight bits long Cable Modem A device that connects a computer to the cable television network which in turn connects to the Internet CBS Committed Burst Size Indicates the maximum number of data bits transmitted within a specific time interval CIR Committed Information Rate The data rate is averaged over a minimum time increment Class Maps An aspect of Quality of Service system that is comprised of an IP ACL and or a MAC ACL Class maps are configured to match packet criteria and are matched to packets in a first fit fashion 84 Combo Ports A single logical port with two physical connections including an RJ 45 connection and a SFP connection Communities Specifies a group of users which retain the same system access rights CoS Class of Service The 802 1p priority scheme CoS provides a method for tagging packets with priority information A CoS value between 0 7 is added to the Layer Il header of packets where zero is the lowest priority and seven is the highest DDNS Dynamic Domain Name System Allows the hosting of a website FTP server or e
118. s TEATA EF 48 Security Tab 802 1x Settings Port based authentication enables authenticating system users on a per port basis via an external server Only authenticated and approved system users can transmit and receive data Ports are authenticated via the RADIUS server using the Extensible Authentication Protocol EAP The IEEE 802 1X dot1X standard defines a port based access control procedure that prevents unauthorized access to a network by requiring users to first submit credentials for authentication Access to all switch ports in a network can be centrally controlled from a server which means that authorized users can use the same credentials for authentication from any point within the network The operation of 802 1X on the Switch requires the following e The Switch must have an IP address assigned e RADIUS authentication must be enabled on the Switch and the IP address of the RADIUS server specified e 802 1X must be enabled globally for the Switch e Each Switch port that will be used must be set to dot1X Auto mode e Each client that needs to be authenticated must have dot1X client software installed and properly configured e The RADIUS server and 802 1X client support EAP The Switch only supports EAPOL in order to pass the EAP packets from the server to the client e The RADIUS server and client also have to support the same EAP authentication type MD5 Some clients have native support in Win
119. s information can be assigned by end hosts or switches or routers along the path Priority can then be assigned based on a general policy or a detailed examination of the packet However note that detailed examination of packets should take place close to the network edge so that core switches and routers are not overloaded Switches and routers along the path can use class information to prioritize the resources allocated to different traffic classes The manner in which an individual device handles traffic in the DiffServ architecture is called per hop behavior All devices along a path should be configured in a consistent manner to construct a consistent end to end QoS solution REE S SB BH BHR Bsa ae EEE eeehe Figure 5 38 QoS Diffserv Settings 57 Class Map A class map is used for matching packets to a specified class The class map uses the Access Control List filtering engine so you must also set an ACL to enable filtering for the criteria specified in the class map The class map is used with a policy map to create a service policy for a specific interface that defines packet Classification service tagging and bandwidth policing Note that one or more class maps can be assigned to a policy map Class Name Name of the class map Range 1 32 characters Type Only one match command is permitted per class map so the match any field refers to the criteria specified by the lone match command Description A brie
120. ssages from level 0 to level 7 will be logged to RAM Range 0 7 Default 7 View Flash Logging Click the button to display log messages stored in the Switch s flash memory View Memory Logging Click the button to display log messages stored in the Switch s RAM memory Enable the System Log Status set the level of event messages to be logged to RAM and flash memory then click Save Settings Syslog Allows you to configure the logging of messages that are sent to remote Syslog servers You can limit the event messages sent to only those messages at or above a specified level Remote Log Status Enables disables the logging of debug or error messages to the remote logging process Default Disabled Logging Facility Sets the facility type for remote logging of Syslog messages There are eight facility types specified by values of 16 to 23 The facility type is used by the Syslog server to dispatch log messages to an appropriate service The attribute specifies the facility type tag sent in Syslog messages See RFC 3164 This type has no effect on the kind of messages reported by the Switch However it may be used by the Syslog server to process messages such as sorting or storing messages in the corresponding database Range 16 23 Default 23 Logging Trap Limits log messages that are sent to the remote Syslog server for all levels up to the specified level For example if level 3 is specified all messages from level 0 to lev
121. subject to the following two conditions 1 This device may not cause interference and 2 This device must accept any interference including interference that may cause undesired operation of the device 95 24 Port 10 100 1000 Gigabit Switch with Webview and PoE Reglement d Industry Canada Le fonctionnement est soumis aux conditions suivantes 1 Ce p riph rique ne doit pas causer d interf rences 2 Ce p riph rique doit accepter toutes les interferences re ues y compris celles qui risquent d entra ner un fonctionnement ind sirable User Information for Consumer Products Covered by EU Directive 2002 96 EC on Waste Electric and Electronic Equipment WEEE This document contains important information for users with regards to the proper disposal and recycling of Linksys products Consumers are required to comply with this notice for all electronic products bearing the following symbol English Environmental Information for Customers in the European Union European Directive 2002 96 EC requires that the equipment bearing this symbol on the product and or its packaging must not be disposed of with unsorted municipal waste The symbol indicates that this product should be disposed of separately from regular household waste streams It is your responsibility to dispose of this and other electric and electronic equipment via designated collection facilities appointed by the government or local authorities Correct as d
122. swords they are case sensitive and can be up to 32 characters long Strings can be specified for read only or read write access Once this is entered click Add Bek por 18101 2 pt ere GEE Gigai Det Src ira E Figure 5 53 Admin SNMP 71 Enter the IP address and community string for each management station that will receive trap messages Strings are case sensitive and can be up to 32 characters long Specify the trap UDP port and version then click Add Click Save Settings to save the changes Admin Tab Log The Switch allows you to configure and limit system messages that are logged to flash or RAM memory configure the logging of messages that are sent to remote System Log Syslog servers and set an event level threshold for sending email alert messages to system administrators The following table describes the system event levels iome rom oe O 5 Notice Normal but significant condition such as a cold start Normal but significant condition such as a cold get but significant condition such as a cold start ang Warning conditions such as return false or unexpected return E eae Error conditions such as invalid input or defaultused conditions such as invalid input or default used O o e Eeer memory error or resource exhausted nu Alert immediate action needed Immediate action needed action needed oo ew m There are only Level 2 5 and 6 event messages for the current firmware release
123. t savings The default is 60 minutes You may enter 1 1440 minutes From If you selected Other for the Daylight Saving setting then enter the date and time when daylight savings begins To If you selected Other for the Daylight Saving setting then enter the date and time when daylight savings ends Recurring If you selected Other for the Daylight Saving setting and daylight savings has the same start and end dates and times every year then select Recurring From If you selected Recurring then enter the date and time when daylight savings begins To If you selected Recurring then enter the date and time when daylight savings ends SNTP Servers anan a Cica Gynnar ie Server1 Enter the primary SNTP server here Server2 Enter a secondary SNTP server here S SNTP Polling Interval The value defined here determines the amount of time in seconds before the Switch polls the SNTP server The default value is every 1024 seconds approx 17 minutes You may enter 60 86400 seconds z d Administrative Link p MI Hire Port Description stet Status Feed Duplas ap Content TYP io KI Eet ME Mos Click the Save Settings button to save your changes or click Cancel Changes to discard the information oe _Detat pel E z E ams Port Management Tab Port Settings ER i a Z Se CH E E The Port Management Port Settings screen shows you the settings for each of the Switch s ports EI E RR
124. tackable hubs A 10Mbps hub connected to another 10Mbps hub can span up to 100 meters 328 feet Before You Install the Switch When you choose a location for the Switch observe the following guidelines e Make sure that the Switch will be accessible and that the cables can be easily connected e Keep cabling away from sources of electrical noise power lines and fluorescent lighting fixtures e Position the Switch away from water and moisture sources e To ensure adequate air flow around the Switch be sure to provide a minimum clearance of two inches 50 mm e Do not stack free standing Switches more than four units high Placement Options Before connecting cables to the Switch first you will physically install the Switch Either set the Switch on its four rubber feet for desktop placement or mount the Switch in a standard sized 19 inch wide 1U high rack for rack mount placement Desktop Placement k 2 3 4 Attach the rubber feet to the recessed areas on the bottom of the Switch Place the Switch on a desktop near an AC power source Keep enough ventilation space for the Switch and check the environmental restrictions mentioned in the specifications Proceed to the section Connecting the Switch Rack Mount Placement To mount the Switch in any standard sized 19 inch wide 1U high rack follow these instructions 1 2 Place the Switch on a hard flat surface with the front panel facing you
125. tegrity of the communication and authenticates the origin of the communication MDI Media Dependent Interface A cable used for end stations MDIX Media Dependent Interface with Crossover A cable used for hubs and switches MIB Management Information Base MIBs contain information describing specific aspects of network components Multicast Transmits copies of a single packet to multiple ports Network A series of computers or devices connected for the purpose of data sharing storage and or transmission between users NMS Network Management System An interface that provides a method of managing a system OID Object Identifier Used by SNMP to identify managed objects In the SNMP Manager Agent network management paradigm each managed object must have an OID to identify it Packet A unit of data sent over a network Ping Packet INternet Groper An Internet utility used to determine whether a particular IP address is online Policing Determines if traffic levels are within a specified profile Policing manages the maximum traffic rate used to send or receive packets on an interface Port The connection point on a computer or networking device used for plugging in cables or adapters Port Mirroring Monitors and mirrors network traffic by forwarding copies of incoming and outgoing packets from one port to a monitoring port Power over Ethernet PoE A technology enabling an Ethernet network cable to delive
126. the discard VLAN Packets classified to the Discard VLAN are dropped Ingress Filtering Enables or disables Ingress filtering on the port Ingress filtering discards packets which do not include an ingress port LAG Indicates the LAG to which the VLAN is defined VLAN Management Tab Ports to VLAN Use the Port to VLAN screen to configure port members for the selected VLAN index Assign ports as tagged if they are connected to 802 1Q VLAN compliant devices or untagged they are not connected to any VLAN aware devices Select VLAN Select the VLAN number from the drop down menu Zieser SOOT Zeng men D I Gigabit Pet Switch Staat Switch Port Mode Indicates VLAN membership mode for an interface Default Access Access Indicates the port belongs to a single untagged VLAN When a port is in Access mode the packet types which are accepted on the port cannot be designated Ingress filtering cannot be enabled disabled on an access port Trunk Indicates the port belongs to VLANs in which all ports are tagged except for one port that can be untagged General Indicates the port belongs to VLANs and each VLAN is user defined as tagged or untagged full 802 10 mode REESEN Figure 5 14 VLAN Management Ports to VLAN select VLAN membership for each interface by marking the appropriate radio button for a port or LAG Excluded Excludes the interface from the VLAN However the interface can be added to the VLAN through GVRP
127. the specific port for which RMON statistics are displayed e LAG Defines the specific LAG for which RMON statistics are displayed Drop Events Displays the number of dropped events that have occurred on the interface since the device was last refreshed Received Bytes Octets Displays the number of octets received on the interface since the device was last refreshed This number includes bad packets and FCS octets but excludes framing bits Received Packets Displays the number of packets received on the interface including bad packets Multicast and broadcast packets since the device was last refreshed Broadcast Packets Received Displays the number of good broadcast packets received on the interface since the device was last refreshed This number does not include Multicast packets Multicast Packets Received Displays the number of good Multicast packets received on the interface since the device was last refreshed Z Seet RODER 2 erg mind GBIC Gigabit PoE Switch SAWARI Frama si ET po 950 yi Aii Figure 5 17 Statistics RMON Statistics 38 CRC amp Align Errors Displays the number of CRC and Align errors that have occurred on the interface since the device was last refreshed Undersize Packets Displays the number of undersized packets less than 64 octets received on the interface since the device was last refreshed Oversize Packets Displays the number of oversized packets over 1518 octets received on
128. ties are mapped to a Class of Service value by the Switch and the traffic then sent to the corresponding output queue Because different priority information may be contained in the traffic the Switch maps priority values to the output queues in the following manner The precedence for priority mapping is DSCP Priority and then Default Port Priority To enable DSCP priority mapping select DSCP Priority Status Priority Status Enables the DSCP priority mapping Enabled is the default setting DSCP to CoS Maps Differentiated Services Code Point values to CoS values Click Save Settings to save the changes QoS Tab Diffserv Settings The commands described in this section are used to configure Quality of Service QoS classification criteria and service policies Differentiated Services DiffServ provides policy based management mechanisms used for prioritizing network resources to meet the requirements of specific traffic types on a per hop basis Each packet is Classified upon entry into the network based on access lists IP Precedence DSCP values or VLAN lists Using access lists allows you select traffic based on Layer 2 Layer 3 or Layer 4 information contained in each packet Based on configured network policies different kinds of traffic can be marked for different kinds of forwarding All switches or routers that access the Internet rely on class information to provide the same forwarding treatment to packets in the same class Clas
129. to the ACE Figure 5 26 ACL Mac Based ACL Wildcard Mask Defines the source IP address wildcard mask Wildcard masks specify which bits are used and which bits are ignored A wild card mask of 255 255 255 255 indicates that no bit is important A wildcard of 0 0 0 0 indicates that all the bits are important For example if the source IP address 149 36 184 198 and the wildcard mask is 255 36 184 00 the first eight bits of the IP address are ignored while the last eight bits are used 46 Dest MAC Address Matches the destination MAC address to which packets are addressed to the ACE Wildcard Mask Defines the destination IP address wildcard mask VLAN ID Matches the packet s VLAN ID to the ACE The possible field values are 2 to 4094 Ethernet Type Specifies the packet s Ethernet type This option can only be used to filter Ethernet II formatted packets Range 0 65535 A detailed listing of Ethernet protocol types can be found in RFC 1060 A few of the more common types include 0800 IP 0806 ARP 8137 IPX The Add to List button adds the configured MAC Based ACLs to the MAC Based ACL Table at the bottom of the screen To remove an ACL rule select an ACL rule from the table and click Remove When all rules are removed from the ACL the ACL is also removed Security Tab ACL Binding After configuring Access Control Lists ACL you should bind them to the ports that need to filter traffic You can assign one IP or MAC acc
130. to your network 80 Appendix C Downloading using Xmodem Startup Menu Procedures The Startup menu can be entered when booting the device There is a two second window of time to enter the Startup Menu immediately after the POST test The menu can be accessed directly from a terminal connected to the console port The Startup menu procedures can be done using the ASCII terminal or Windows HyperTerminal The software download procedure is performed when a new version must be downloaded to replace corrupted files update or upgrade the system software To download software from the Startup menu To enter the Startup menu 1 Power off your computer and Switch 2 Connect the provided null modem cable from the COM port on your computer to the Console port on the Switch 3 Power on your computer and launch HyperTerminal follow the instructions in Chapter 4 Using the Console Interface for Configuration to configure HyperTerminal to connect to the Switch 4 Power on the Switch and watch for the POST done message Done All Pass 5 When the POST done message appears press and hold Ctrl and press the U key to access the Xmodem interface 6 Check that the switch has sufficient flash memory space for the new code file before starting the download You can store a maximum of only two runtime and two diagnostic code files in the switch s flash memory Use the D elete File command to remove a runtime or diagnostic file 7 Press lt
131. ueues together with the Weighted Round Robin and Strict Priority scheduling techniques facilitate efficient co existence of real time traffic with data traffic allowing them each to meet their QoS needs Individual users or applications can be prioritized above others using various Class of Service options by port layer 2 priority 802 1p and Layer 3 priority TOS or DSCP Intelligent Broadcast and Multicast storm control minimizes and contain the effect of these types of traffic on regular traffic IGMP Snooping limits bandwidth intensive video traffic to only the requestors without flooding to all users Incoming traffic can be policed and outgoing traffic can be shaped allowing you to control network access and traffic flow There are features that allow you to expand and grow your network of switches Link aggregation allows multiple high bandwidth trunks between switches to be setup This also provides a level of reliability in that the system continues to operate if one of the links break Spanning Tree STP Fast Spanning Tree and Rapid Spanning Tree RSTP allow you to build a mesh of switches increasing the availability of the system The rich management functionality of the WebView switches includes SNMP RMON Telnet and HTTP Management options allowing you to flexibly integrate and manage these devices in your network What s in this User Guide This user guide covers the steps for setting up and using the Switch Chapter 1
132. uration Admin Tab Jumbo Frame The Switch provides more efficient throughput for large sequential data transfers by supporting jumbo frames up to 10240 bytes on the Gigabit ports and mini jumbo frames on the 10 100Mbps ports Compared to standard a S aiiis Ethernet frames that run only up to 1 5 KB using jumbo frames significantly reduces the per packet overhead S e required to process protocol encapsulation fields To use jumbo frames both the source and destination end nodes such as a computer or server must support this feature Also when the connection is operating at full duplex all switches in the network between the two end nodes must be able to accept the extended frame size And for half duplex connections all devices in the collision domain would need to support jumbo frames Enabling jumbo frames limits the maximum threshold for broadcast storm control to 64 packets per second Figure 5 61 Admin Jumbo Frame 2d Utility for Configuration 76 24 Port 10 100 1000 Gigabit Switch with Webview and PoE Admin Tab Firmware Upgrade Downloads or uploads Switch firmware files from a TFTP server The Switch allows the runtime software and diagnostic boot files to be upgraded You must specify Upgrade to download a new firmware file or Backup to save a firmware file to the server Select the Upgrade or Backup radio button then the file type from the drop down menu either Software Image or Boot Co
133. uthorized e No No connected clients are authorized e Blank Displays nothing when there is no connection on a port Supplicant Indicates the MAC address of a connected client Modify the parameters required using the drop down menus and fields provided for each port then click Detail to configure the 802 1X settings for that port The 802 1x Port Settings screen allows configuration of the following parameters Reauthentication To reauthenticate a client select Enabled Maximum Request Sets the maximum number of times the switch port will retransmit an EAP request packet to the client before it times out the authentication session Range 1 10 Default 2 Quiet Period Sets the time that a switch port waits after the Max Request Count has been exceeded before attempting to acquire a new Client Range 1 65535 seconds Default 60 seconds Reauthentication Period Sets the time period after which a connected client must be re authenticated Range 1 65535 seconds Default 3600 seconds Transmit Period Sets the time period during an authentication session that the Switch waits before re transmitting an EAP packet Range 1 65535 Default 30 seconds Click Save Settings to apply the changes Enable 802 1x Select this to enable 802 1x authentication Port Indicates the port name 802 1x Port Setting E sl Reauthentication l Enabled Maximum Request Quiet Period Reauthentication Period 3600 Transmit Period
134. utukset ymp rist n ja ihmisten terveyteen Lis tietoja vanhan laitteiston oikeasta h vitystavasta saa paikallisilta viranomaisilta j tteenh vityspalvelusta tai siit myym l st josta ostit tuotteen Svenska Swedish Milj information f r kunder i Europeiska unionen Det europeiska direktivet 2002 96 EC kr ver att utrustning med denna symbol p produkten och eller f rpackningen inte f r kastas med osorterat kommunalt avfall Symbolen visar att denna produkt b r kastas efter att den avskiljts fr n vanligt hush llsavfall Det faller p ditt ansvar att kasta denna och annan elektrisk och elektronisk utrustning p fastst llda insamlingsplatser utsedda av regeringen eller lokala myndigheter Korrekt kassering och atervinning skyddar mot eventuella negativa konsekvenser f r miljon och personhalsa For mer detaljerad information om kassering av din gamla utrustning kontaktar du dina lokala myndigheter avfallshanteringen eller butiken d r du k pte produkten For more information visit www linksys com Appendix G Regulatory Information 100 Appendix H Contact Information Need to contact Linksys Visit us online for information on the latest products and updates to your existing products at http www linksys com or ftp linksys com Can t find information about a product you want to buy on the web Do you want to know more about networking with Linksys products Give our advice line a call at 800 546 5797 LINKSYS O
135. y user identity and access rights When a Client i e Supplicant connects to a switch port the Switch e Authenticator responds with an EAPOL identity request The client provides its identity such as a user name in an EAPOL response to the Switch which it forwards to the RADIUS server The RADIUS server verifies the client identity and sends an access challenge back to the client The EAP packet from the RADIUS server contains not only the challenge but the authentication method to be used The client can reject the authentication method and request another depending on the configuration of the client software and the RADIUS server The authentication method must be MD5 The client responds to the appropriate method with its credentials such as a password or certificate The RADIUS server verifies the client credentials and responds with an accept or reject packet If authentication is successful the Switch allows the client to access the network Otherwise network access is denied and the port remains blocked RADIUS Server Setting Index Server IP Address Server Port Number 1 65535 Secret Key Screen Number of Retries 1 30 Timeout for Reply 1 65535 sec TACAGCS Server Setting Index Server IP Address Server Port Number 1 65535 Secret Key Screen Click Save Settings to save the changes Tali bare Gein Zi peor TBD F H erg DIR geg Dot evel cis BAB bawe fering s hae Eve Figure 5 28 Security Athentication Server
Download Pdf Manuals
Related Search