PDF User Guide - Datainterfaces.com
Contents
1. config clock summer time word16 recurring 1 5 1 7 1 12 hhmm 1 5 1 7 1 12 lt hhmm gt lt 1 1440 gt config no clock summer time Time Zone config clock timezone word16 23 23 0 59 config no clock timezone Status by Web Configuration gt System gt NTP Configuration gt System gt Time Click at this web page to get details of the settings Status by Command show clock show clock detail 4 Log configuration This switch can records event logs in local flash and syslog server Configuration by Web Configuration gt System gt Log System Log Configuration Server Mode Server Address Syslog Level Click at this web page to get details of the settings Configuration by Command Log Configuration config logging host lt ipv4_ucast gt hostname config logging level info warning error config logging on config no logging host config no logging on Status by Web Monitor gt System gt Log 24 System Log Information Level All w Clear Level All The total number of entries is 4 forthe given level Start fram ID 1 with 20 1 entries per page Info 1870 01 01T 60 00 05 00 00 Switch just made a cold boot info 1870 01 01T 060 00 07 0 00 Link up an part 21 ii 2 3 Info 1870 01 01T 060 00 08 00 00 Link down an part 21 42. User Manual a B GSW 3420FM 20 X 100 1000Base X SFP slots 4 X GbE com 10 100 1000Base T or 1000Base X L2 m lagec Ethernet Switch f union CTC UNION TECHNOLOGIES CO LTD LEGAL The information in this publication has been carefully checked and is believed to be entirely accurate at the time of publication CTC Union Technologies assumes no responsibility however for possible errors or omissions or for any consequences resulting from the use of the information contained herein CTC Union Technologies reserves the right to make changes in its products or product specifications with the intent to improve function or design at any time and without notice and is not required to update this documentation to reflect such changes CTC Union Technologies makes no warranty representation or guarantee regarding the suitability of its products for any particular purpose nor does CTC Union assume any liability arising out of the application or use of any product and specifically disclaims any and all liability including without limitation any consequential or incidental damages CTC Union products are not designed intended or authorized for use in systems or applications intended to support or sustain life or for any other application in which the failure of the product could create a situation where personal injury or death may occur Should the Buyer purchase or use a CTC Union product for any such unintended or unauthorized ap
3. info VS F 0 01 01 700 00 10 00 00 Link up an port 21 Click at this web page to get details of the settings Monitor gt System gt Detailed Log Detailed System Log Information B Message Level Info Time 1970 01 01700 00 05 00 00 Message Switch just made a cold boot Click at this web page to get details of the settings Status by Command show logging show logging lt 1 4294967295 gt show logging info warning error Z9 7 3 Port Configuration This function covers the following items for port setup 1 Speed Duplex Status Flow control Maximum packet size Configuration by Web Configuration gt Ports Port Configuration Flow Contra Maximum Configured Configured Frame Size Collision Mode R lt gt Auta Auto Auto Auta Auto Auto Auta Auto Auta 2 uc som n D w N Auto Auta Auta Auto Auto Auto Auto Auto Auto Auto Auto SFP Auto AMS w Discard SFP Auto AMZ w Discard SFP Auto AME w Discard SFP Auto AM w Discard EU ra Click at this web page to get details of the settings Configuration by Command Apply the following command for configured ports first And the prompt will become config if For single port config interface GigabitEthernet 1 x For several ports config interface GigabitEthernet 1 x y z For a range of ports config interface GigabitEthernet 1 x y
4. Configuration gt VCL gt MAC based VLAN MAC based VLAN Membership Configuration Auto refresh C lx Delete MAC Address VLANID 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 00 00 00 00 00 00 ae ae Ag 48 a Ag i ae ap ahaa ag a a a a og a a a a aa Click at this web page to get details of the settings Configuration by Command Add Remove ports to Mac based VLAN config if switchport vlan mac mac ucast vlan vlan id config if no switchport vlan mac mac ucast vlan vlan id Status by Web Monitor gt VCL gt MAC based VLAN MAC based VLAN Membership Status for User Static Static Au Port Members o 0 PortMembers amp MAC Address VLAN ID 1j2 3 4 5 6 7 8 9 10 t112 13 14 15 16 17 18 19 20 21 22 23 24 25 26 No data exists forthe user S O Mo data exists for the user Click at this web page to get details of the settings Status by Command show vlan mac 97 7 12 4 Protocol based VLAN With protocol based VLAN membership computers are assigned to VLANs by using the protocol that is in use For example this method enables an Internetwork Packet Exchange IPX network or Internet Protocol IP network to have its own VLAN Configuration by Web Create Delete Protocol to Group Mapping Configuration gt VCL gt Protocol based VLAN gt Protocol to Group Protocol to
5. at this web page to get details of the settings Configuration by Command Add Remove ports to IP Subnet based VLAN config if switchport vlan ip subnet id lt 1 128 gt lt ipv4_subnet gt vlan vlan id config if no switchport vlan ip subnet id 1 128 Status by Web Configuration gt VCL gt IP Subnet based VLAN Click at this web page to get details of the settings Status by Command show vlan ip subnet id lt 1 128 gt 100 7 12 6 Voice VLAN Voice VLAN is VLAN configured specially for voice traffic By adding the ports with voice devices attached to voice VLAN we can perform QoS related configuration for voice data ensuring the transmission priority of voice traffic and voice quality Configuration by Web Voice VLAN Configuration Configuration gt Voice VLAN gt Configuration Voice VLAN Configuration VLANID 100 Aging Time Traffic Class c ve s 1 Disabled w Disabled OUI v 2 Disabled Disabled w OUI 3 Disabled Disabled w OUI v 4 Disabed Disabled OUI 5 Disabled v Disabled OUI 6 Disabled Disabled OUI Click 2 at this web page to get details of the settings OUI Definition Configuration gt Voice VLAN gt OUI Voice VLAM OUI Table Telephony OUI O0 01 e5 Siemens AG phones 00 03 6b Cisco phones O0 Of ez H3C phones 00 60 b9 Philips and NEC A
6. show interface GigabitEthernet lt port_list gt capabilities Link Status show interface GigabitEthernet lt port_list gt status Statistics show interface GigabitEthernet lt port_list gt statistics packets bytes errors discards filtered priority lt O 7 gt 4 up down clear statistics GigabitEthernet lt port_list gt 28 7 4 DHCP This function covers the following items for DHCP functions setup 1 DHCP Snooping DHCP Snooping is used to block intruder on the untrusted ports of the switch device when it tries to intervene by injecting a bogus DHCP reply packet to a legitimate conversation between the DHCP client and server Configuration by Web Enable Disable VLAN Range Configuration gt DHCP gt Snooping DHCP Snooping Configuration Snooping Mode Disabled wt Port Mode Configuration Click at this web page to get details of the settings Configuration by Command Enable Disable 29 config ip dhcp snooping config no ip dhcp snooping Port Setting config if ip dhcp snooping trust config if no ip dhcp snooping trust Status by Web Monitor gt DHCP gt Snooping Table Dynamic DHCP Snooping Table Start from MAC address OC O0O O000 00 VLAN 1 with 20 entries per page Click at this web page to get details of the settings Status by Command clear ip dhcp snoopin
7. E l 1 2 4 5 b T 5 g Click at this web page to get details of the settings ACL Entry Configuration Configuration gt Security gt Network gt ACL gt Access Control List Access Control List Configuration Auto refresh C Refresh Clea Policy Bitmask Frame Type Action Rate Limiter Port Redirect Counter Click the following page will appear 50 ACE Configuration l E Policy Filter Logging Ji i Counter Frame Type w F MAC Parameters DMAC Filter Any Click at this web page to get details of the settings Configuration by Command Port Default Configuration config if access list policy 0 255 config if access list action permit deny config if access list rate limiter 1 16 config if access list redirect interface port type id port type list config if access list logging config if access list shutdown config if access list port state config if no access list policy config if no access list rate limiter config if no access list redirect config if no access list logging config if no access list shutdown config if no access list port state Rate Limiter Configuration config access list rate limiter 1 16 pps 0 131071 ACL Entry Configuration Create a ACL Entry with default setting config access list ace update 1 256
8. at this web page to get details of the settings Software Image Select Configuration gt Maintenance gt Software gt Image Select 129 Software Image Selection Image managed Version 424G 2 106G Ver1 00 01 Date 2013 11 05713 43 40 00 00 Alternate Image Image managed bk Version 24i 2 10G Ver1 00 01 Date 2013 09 17 T13 19 39H18 00 Click at this web page to get details of the settings Configuration Save running config to startup config Configuration gt Maintenance gt Configuration gt Save startup config Save Running Configuration to startup config Please note The generation of the configuration file may be tir L Save Configuration Click at this web page to get details of the settings Configuration Download Configuration gt Maintenance gt Configuration gt Download Download Configuration Select configuration file to save Please note running canfig may t running canfig default config startup config Download Configuration Click at this web page to get details of the settings Configuration Upload Configuration gt Maintenance gt Configuration gt Upload 130 Upload Configuration File To Upload L Destination File running canfig Replace Merge startup config Create new file Upload Configuration Click at this web page to get details of th
9. Delete a ACL Entry config no access list ace 1 256 Ingress Port config access list ace update lt 1 256 gt ingress interface lt port_type_id gt port type list any Policy Filter config access list ace update 1 256 policy 0 255 policy bitmask 0x0 OxFF Frame Type config access list ace update 1 256 frametype any arp etype ol etype value 0x600 0x71f 0x801 0x805 0x807 0x86dc 0x86de Oxffff2 any ipv4 ipv4 icmp ipv4 tcp ipv4 udp ipv6 ipv6 icmp ipv6 tcp ipv6 udp DMAC Filter config access list ace update 1 256 dmac type unicast multicast broadcast any VLAN ID Filter config access list ace update 1 256 vid lt 1 4095 gt any Tag Priority config access list ace update 1 256 tag priority 0 7 any Action if matched config access list ace update 1 256 action permit deny Rate Limiter if matched config access list ace update 1 256 rate limiter lt 1 16 gt disable Logging if matched config access list ace update 1 256 logging Shutdown if matched config access list ace update 1 256 shutdown Disable shutdown config access list ace update 1 256 disable Redirect frame to specific port if matched config access list ace update 1 256 redirect disable interf
10. MSTI Priority Configuration config spanning tree mst 0 7 priority 0 61440 config no spanning tree mst 0 72 priority Status by Web Configuration gt Spanning Tree gt MSTI Priorities Click at this web page to get details of the settings 70 4 STP CIST Port Configuration Configuration by Web Configuration gt Spanning Tree gt CIST Ports STP CIST Port Configuration SIST Aggregated Port Configuration PS mes ep t im ski mm Enabled Edge EET asin 128 Non Edge v CIST Normal Po onfiguration ER STP Admin BPDU Point to rige Edge Role TCN Rem v i e d vj 1 F zu Ez 128 vj m PE F F v 2 o Auto Y 12874 Non Edge v H FP o Auto v 3 O Awo w 128 w Non Edge FE Tr o Auto Y 4 o wo 128 w NorBdge vw o o o Avto 5 O Aw 128 v Non Edge n r o Auto Click at this web page to get details of the settings Configuration by Command Enable Disable on Port config if spanning tree config if no spanning tree Path Cost config if spanning tree mst 0 7 cost lt 1 200000000 gt auto config if no spanning tree mst 0 7 cost Priority config if spanning tree mst 0 7 port priority 0 240 config if no spanning tree mst 0 7 port priority Admin Edge config if spanning tree edge config if no spanning tree edge Auto Edg
11. Monitor gt Security gt Network gt NAS gt Switch 47 Network Access Server Switch Status se Port pa cz oe om et fb b i J le l E ls len Fe Les E e PS ea es FS C rmn e Oo h Force Autharized Force Authorized Force Authorized Force Authorized Force Authorized Force Authorized Force Authorized Force Authorized Force Authorized Force Authorized Force Authorized Force Authorized Force Authorized Force Authorized Force Authorized Force Authorized Force Authorized Force Authorized Force Authorized Force Authorized Force Authorized Force Authorized Force Authorized Force Authorized Force Authorized Force Authorized Globally Disabled Globally Disabled Globally Disabled Globally Disabled Globally Disabled Globally Disabled Globally Disabled Globally Disabled Globally Disabled Globally Disabled Globally Disabled Globally Disabled Globally Disabled Globally Disabled Globally Disabled Globally Disabled Globally Disabled Globally Disabled Globally Disabled Globally Disabled Globally Disabled Globally Disabled Globally Disabled Globally Disabled Globally Disabled Globally Disabled Click at this web page to get details of the settings Monitor gt Security gt Network gt NAS NAS Statistics Port 1 gt Port Port State Admin State Force Authorized Port State Globally Disabled
12. opeed config if speed 1000 100 10 auto 10 100 1000 config if no speed 26 Duplex config if duplex half full auto half full config if no duplex Flow Control config if flowcontrol on off config if no flowcontrol Maximum Frame Size config if mtu lt 1518 10056 gt config if no mtu Status by Web Configuration gt Ports Monitor gt Ports gt State Port State Overview i 12 umm m um um um Click at this web page to get details of the settings Monitor gt Ports gt Traffic Overview Port Statistics Overview Auto refr Pat Hc ES er re ee lee Recsed ree 1 0 0 0 0 0 0 0 0 0 2 0 0 0 0 0 0 0 0 0 3 0 0 0 0 0 0 0 0 0 4 0 0 0 0 0 0 0 0 0 5 0 0 0 0 0 0 0 0 0 6 0 0 0 0 0 0 0 0 0 7 0 0 0 0 0 0 0 0 0 8 0 0 0 0 0 0 0 0 0 9 0 0 0 0 0 0 0 0 0 10 0 0 0 0 0 0 0 0 0 11 0 0 0 0 0 0 0 0 0 12 0 0 0 0 0 0 0 0 0 13 0 0 0 0 0 0 0 0 0 14 0 0 0 0 0 0 0 0 0 15 0 0 0 0 0 0 0 0 0 16 0 0 0 0 0 0 0 0 0 17 0 0 0 0 0 0 0 0 0 18 0 0 0 0 0 0 0 0 0 18 0 0 0 0 0 0 0 0 0 20 0 0 0 0 0 0 0 0 0 21 19204 9724 3061121 6382799 159 0 2706 0 2706 22 0 0 0 0 0 0 0 0 0 23 0 0 0 0 0 0 0 0 0 24 0 0 0 0 0 0 0 0 0 25 0 0 0 0 0 0 0 0 0 26 0 0 0 0 0 0 0 0 0 Click at this web page to get details of the settings Status by Command SFP DDMI 27
13. 5 iw 10 v Maintenance 15 15 w 15 15 4 Mirroring 5 B 10 w 5 E 10 WF 5 w 10 s iw 10 NTP 5 v 10v 5 v 10 Ports 5 R 10 1 m 10 wv Private VLAMs 5 ow 10 5 ow 10 ww aos 5 v HO iv 5 s 10 iv RPC 5 iw 40 5 10 Security 5 g 10 we 5 vi TEES sFlow gt pS 10 M BE i ow Spanning Tree 5 10 E 5 w 10 w Click at this web page to get details of the settings Configuration by Command Create User config username lt word31 gt privilege 0 15 password encrypted lt word4 44 gt config username lt word31 gt privilege 0 15 password none config username lt word31 gt privilege 0 15 password unencrypted lt line31 gt config no username lt word31 gt Privilege Levels config web privilege group lt cword gt level cro 0 15 crw 0 15 sro 0 15 srw 0 15 Note 1 lt cword gt Function Name Note 2 cro Configuration Read only crw Configuration Execute Read write sro Status Statistics Read only srw Status Statistics Read write config no web privilege group lt cword gt level Status by Web User Configuration gt Security gt Switch gt Users Click at this web page to get details of the settings 33 Privilege Levels Configuration gt Security gt Switch gt Privilege Levels Click at this web page to get details of the settings Status by Command sho
14. Tag Remarking Mode PCPIDEI Configuration If in Mapped mode 112 Qos Egress Port Tag Remarking Port2 Tag Remarking Mode Mapped K iw DP level Configuration Classified DP level DP level xj D D I gbh B iow m ow os 1 1 lo wj wj Click at this web page to get details of the settings Configuration by Command Default PCP and DEI setting config if qos tag remark pcp 0 7 dei 0 1 config if no qos tag remark Map PCP and DEI setting config if qos tag remark mapped yellow 0 4 config if no qos tag remark Internal Priority to PCP and DEI Map Egress config if qos map cos tag cos 0 7 dpl 0 1 pcp 0 7 dei 0 1 config if no qos map cos tag cos 0 7 dpl 0 1 Status by Web Configuration gt QoS gt Port Tag Remarking Click port number port egress tag remarking setting page will apear Click at this web page to get details of the settings Status by Command show qos interface port type list 113 7 13 6 Port DSCP Configuration This page allows you to configure the basic QoS Port DSCP Configuration settings for all switch ports You can configure DSCP ingress and egress settings In Ingress settings you can change ingress translation and classification settings for individual ports In egress settings you can configure Rewriting or Remapping for individual ports About Ingress Translate
15. Click at this web page to get details of the settings Status by Command show running config feature monitor 124 7 15 sFlow sFlow is an industry standard technology for monitoring switched networks through random sampling of packets on switch ports and time based sampling of port counters The sampled packets and counters referred to as flow samples and counter samples respectively are sent as sFlow UDP datagrams to a central network traffic monitoring server This central server is called an sFlow receiver or sFlow collector Additional information can be found at http sflow org Configuration by Web Configuration gt sFlow sFlow Configuration Agent Configuration IP Address 127001 Receiver Configuration ome T Counter Poller Enabled Sampling Rate Enabled a 0 2 o 0 1 LI i J E aes a ru o S a O Tr E 4 C Click at this web page to get details of the settings Configuration by Command Agent IP Address config sflow agent ip ipv4 lt ipv4_addr gt ipv6 ipv6 addr config no sflow agent ip Receiver Configuration Receiver IP Address config sflow collector address receiver range list word config no sflow collector address receiver range list Receiver UDP Port config sflow collector port receiver range list lt 1 65535 gt config no sfl
16. EN45014 It conforms to the following specifications EMC EN55022 2010 Class A IEC61000 3 2 2005 A1 2008 A2 2009 IEC61000 3 3 2008 EN55024 2010 IEC61000 4 2 2008 IEC61000 4 3 2006 A1 2007 A2 2010 IEC61000 4 4 2004 A1 2010 IEC61000 4 5 2005 IEC61000 4 6 2008 IEC61000 4 8 2009 IEC61000 4 11 2004 This product complies with the requirements of the Low Voltage Directive 2006 95 EC and the EMC Directive 2004 108 EC Warning Do not plug a phone jack connector into the RJ 45 port This may damage this device 139 D Warranty We warrant to the original owner that the product delivered in this package will be free from defects in material and workmanship for a period of warranty time from the date of purchase from us or the authorized reseller The warranty does not cover the product if it is damaged in the process of being installed We recommend that you have the company from whom you purchased this product Install it 140 TC union m WwIW IW ctcu co F 886 2 2659 0237 E sales ctcu com T 886 2 2659 1021
17. first If IP address needs to be changed follow the steps 4 1 4 2 4 3 4 4 4 5 4 6 4 1 4 8 Enter config command and the prompt will become config Enter interface vlan 1 command and the prompt will become config if vlan zz Enter ip address XXxX XXX XXX XXX yyy yyy yyy yyy command XXX XXX XXX XXX is the IP address and yyy yyy yyy yyy is the netmask to modify IP address of the switch Enter exit command to go back to config prompt If IP Gateway will be set enter ip route XXX XXX XXX XXX yyy yyy yyy yyy Zzz zzz zzz zzz command to create a IP route entry XXX XXX XXX XXX is the the destination IP network or host address of this route yyy yyy yyy yyy is the destination IP network or host mask ZZZ ZZZ ZZZ ZZZ is the IP address of Gateway Enter exit command to go back to prompt Enter show ip interface brief to check the IP settings Enter copy running config startup config to save it After IP address configuration done and the switch is connected to network users can start Http connection by entering IP address of the switch to the web address line in Web Browser A login screen will be prompted for user name and password The default user name and password is admin admin Then the management homepage will appear 15 4 8 12 14 16 18 20 22 24 ore cr mee ae BEEE EEEE FERE 8 11 1 3 gt Configuration Monitor System Information Auto refresh O
18. no port security violation Status by Web Configuration gt Security gt Network gt Limit Control Monitor gt Security gt Network gt Port Security gt Switch Port Security Switch Status User Module Legend User Module Name Limit Control 802 1 DHCP Snooping Voice VLAN Port Status MAC Count Current Limit State Disabled Disabled Disabled Disabled Disabled Disabled Disabled Disabled Disabled Disabled Disabled Disabled Disabled Disabled Click at this web page to get details of the settings D en oo 74 Jen peni 4 62 E ps Aer ou as E Status by Command show port security switch interface lt port_type_list gt 2 802 1x Network Access configuration The IEEE 802 1X standard defines a port based access control procedure that 45 prevents unauthorized access to a network by requiring users to first submit credentials for authentication One or more central servers the backend servers determine whether the user is allowed access to the network These backend RADIUS servers are configured on the Configuration gt Security gt AAA page The IEEE802 1X standard defines port based operation but non standard variants overcome security limitations as shall be explored below MAC based authentication allows for authentication of more than one
19. username 11 command under config Users with different previlege levels will have different access rights for functions of the switch Please refer to Privilege Level Configuration of the switch command line level After login the switch a prompt will be shown Because this switch supports command line for console interface you can press to check the command list With command you can find the command list as follow clear Reset functions configure Enter configuration mode copy Copy from source to destination delete Delete one file in flash file system dir Directory of all files in flash file system disable Turn off privileged commands do To run exec commands in config mode dot1x IEEE Standard for port based Network Access Control enable Turn on privileged commands exit Exit from EXEC mode firmware Firmware upgrade swap help Description of the interactive help system logout Exit from EXEC mode more Display file no Negate a command or set its defaults ping Send ICMP echo messages reload Reload system send Send a message to other tty lines show Show running system information terminal Set terminal line parameters These are the basic system commands for the switch For system configuring configure terminal command can enter the configure mode And the prompt will become configure config In the configure mode the general configuration of switch can be do
20. 62 v Dynamic 1 00 11 25 67 19 D0O v Dynamic 1 00 11 2F 45 18 65 v Dynamic 1 00 12 79 DB E2 D Dynamic 1 00 14 85 24 7D 31 v Dynamic 1 00 15 F2 67 07 8D y Click at this web page to get details of the settings Status by Command clear mac address table show mac address table conf static aging time learning count interface port type list address mac addr vlan vlan id vlan vlan id interface port type list 92 7 12 VLAN VLAN Virtual LAN is a method to restrict communication between switch ports At layer 2 the network is partioned into multiple distinct mutually isolated broadcast domains This switch supports 802 10 VLAN Private VLAN MAC based VLAN Protocol based VLAN IP Subnet based VLAN and Voice VLAN for different VLAN applications 7 12 1 802 1Q VLAN IEEE 802 1Q is the networking standard that supports Virtual LANs VLANs on an Ethernet network The standard defines a system of VLAN tagging for Ethernet frames and the accompanying procedures to be used by bridges and switches in handling such frames Portions of the network which are VLAN aware i e IEEE 802 1Q conformant can include VLAN tags Traffic on a VLAN unaware ie IEEE 802 1D conformant portion of the network will not contain VLAN tags When a frame enters the VLAN aware portion of the network a tag is added to represent the VLAN membership of the frame s port or the port protocol combi
21. Command show spanning tree summary show spanning tree active show spanning tree mst 2 MSTI Configuration VLAN Mapping Configuration by Web Configuration gt Spanning Tree gt MSTI Mapping MSTI Configuration Add VLANs separated by spaces or comma Unmapped VLANs are mapped to the CIST The default bridge instance Configuration Identification Configuration Name 00 99 88 77 66 55 Configuration Revision 0 MSTI VLANs Mapped MSTI Click at this web page to get details of the settings 69 Configuration by Command Configuration Identification config spanning tree mst name lt word32 gt revision lt 0 65535 gt config no spanning tree mst name MSTI VLAN Mapping config spanning tree mst 0 7 vlan lt vian_list gt config no spanning tree mst 0 7 vlan Status by Web Configuration gt Spanning Tree gt MSTI Mapping Click at this web page to get details of the settings Status by Command show spanning tree mst configuration 3 MSTI Configuration Priority Configuration by Web Configuration gt Spanning Tree gt MSTI Priorities MSTI Configuration MSTI Priority Configuration cist 32768 v MSTI 32768 w MSTD 32768 vw MSTS 32768 MSTM 32768 MSTS 32768 MSTI6 32768 MST 32768 w Click at this web page to get details of the settings Configuration by Command
22. Dynamic Clients gt v Zl 1 Disabled Unlimited i gi Disabled v M Unlimited 3 Disabled w Unlimited Disabled v Unlimited Disabled w Unlimited Disabled v Unlimited Disabled v Unlimited B Disabled v Unlimited g Disabled s Unlimited 10 Disabled Unlimited Click uQ at this v web page to get details of the settings l I L C3 A amp Ea ea eal E EI Assign Static IP Source Guard Table Configuration gt Security gt Network gt IP Source Guard gt Static Table Static IP Source Guard Table Delete Port VLANID IPAddress IP Mask Click at this web page to get details of the settings Configuration by Command Enable Disable config ip verify source config no ip verify source Dynamic Client Number config ip verify source limit 0 2 config no ip verify source limit Translate Dynamic to Static config ip verify source translate o3 Assign Static Entry config ip source binding interface port type id vlan id lt ipv4_ucast gt lt ipv4_netmask gt config ip source binding interface port type id vlan id lt ipv4_ucast gt mac ucast config no ip source binding interface port type id vlan id lt ipv4_ucast gt lt ipv4_netmask gt config no ip source binding interface port type id vlan id lt ipv4_
23. Group Mapping Table Frame Type E emet Etype Ox osa Click at this web page to get details of the settings Create Delete Group to VLAN Mapping Configuration gt VCL gt Protocol based VLAN gt Group to VLAN Group Name to VLAN mapping Table Auto refresh L Port Members Delete Group Name VLANID 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 pEgogaugggmgugmugguggggmguugtmt t tbtct t tat Click at this web page to get details of the settings Configuration by Command Add Delete Protocol Group config vlan protocol eth2 lt Ox600 Oxffff gt arp ip ipx at snap 0x0 Oxffffff2 rfc 1042 snap 8021h OxO Oxffff2 Ilc OxO Oxff lt Ox0 Oxff gt group lt word16 gt config no vlan protocol eth2 lt Ox600 Oxffff gt arp ip ipx at snap 0x0 Oxffffff2 rfc 1042 snap 8021h OxO Oxffff2 Ilc OxO Oxff lt Ox0 Oxff gt group lt word16 gt Add Remove ports to Protocol based VLAN config if switchport vlan protocol group lt word16 gt vlan vlan id config if no switchport vlan protocol group lt word16 gt vlan vlan id Status by Web Configuration gt VCL Protocol based VLAN Protocol to Group Configuration gt VCL gt Protocol based VLAN gt Group to VLAN Click at this web page to get details of the settings Status
24. The ingress DSCP value can be translated to another DSCP value for QoS operation when Translate is checked The translation mapping is set at DSCP Translation page and the translated DSCP value will be used for ingress DSCP QoS operation About Ingress Classify The DSCP ingress classify does not mean DSCP to QoS classification DSCP to QoS mapping is done in the DSCP Based QoS page Instead Ingress Classify in Port DSCP means QoS to internal DSCP mapping When a QoS class either from port default or VLAN Tag or DSCP is gotten the Ingress Classify can map this QoS class to internal DSCP This internal DSCP then can do another egress map to affect the DSCP value when the frame is sent out The QoS to internal DSCP mapping is set in DSCP Classification page and the mapping will be applied to egress packets when Egress Rewrite in Port DSCP page is enable Remap And the original DSCP value is lost The Ingress Classify could be Disable Disable ingress DSCP QoS class to internal DSCP mapping operation DSCP 0 Classify if incoming or translated if enabled DSCP is O Selected Classify only selected DSCP for which classification is enabled as specified in DSCP Translation page select by checking classify All works for all DSCP values About Egress Rewrite This is used to set the DSCP Rewrite for egress packet Disable No Egress rewrite Enable Rewrite enabled with
25. by Command 98 show vlan protocol eth2 0x600 Oxffff2 arp ip ipx at snap 0x0 Oxffffff2 rfc 1042 snap 8021h lt OxO Oxffff gt Ilc OxO Oxff lt Ox0 Oxff gt 99 7 12 5 IP Subnet based VLAN In an IP subnet based VLAN all the end workstations in an IP subnet are assigned to the same VLAN In this VLAN users can move their workstations without reconfiguring their network addresses IP subnet VLANs are based on Layer 3 information from packet headers The switch makes use of the network layer address for example the subnet address for TCP IP networks in determining VLAN membership If a packet is untagged or priority tagged the switch associates the packet with any matching IP subnet classification If no IP subnet classification can be made the packet is subjected to the normal VLAN classification rules of the switch This IP subnet capability does not imply a routing function or that the VLAN is routed The IP subnet classification feature affects only the VLAN assignment of a packet Appropriate 802 1Q VLAN configuration must exist in order for the packet to be switched Configuration by Web Configuration gt VCL gt IP Subnet based VLAN IP Subnet based VLAN Membership Configuration Auto refresh CI Retesh _Refiesh rt Members lo Se Sa SS eee ease C E E s pem VCE Mask VLAN e ER D TT EET SET TIES Delete 0 0 0 0 0 aa a a a a a a a a a i aa a a a a a mm Click
26. dynamic MAC Table and configure the static MAC table here Configuration by Web Configuration gt MAC Table MAC Address Table Configuration Aging Configuration Disable Automatic Aging Aging Time 300 MAC Table Learning SS Port Members 21331818 LL L8 L9 eL e titi Auto OU V E Y EgTT Disable OoO00O0o0o0o00o0oQ Click at this web page to get details of the settings Configuration by Command Aging Configuration config mac address table aging time 0 10 1000000 config no mac address table Static MAC Table Configuration config mac address table static mac addr vlan vlan id interface port type list config no mac address table static mac addr vlan vlan id interface port type list 91 MAC Address Learning on Port config if mac address table learning config if no mac address table learning MAC Address Secure on Port config if mac address table learning secure config if no mac address table learning secure Status by Web Monitor gt MAC Table MAC Address Table Auto refresh Start from VLAN 1 and MAC address 00 00 00 00 00 00 with 20 entries per page eee VLAN MAC Address jcPu 1 2 3 4 5 6 7 8 9 10 11 12 1314 15 16 17 18 19 20 21 22 23 24 25 26 Dynamic 1 00 00 08 A4 00 36 v Dynamic 1 DO OE 8E 18 08 DC y Dynamic 1 O0 OF a0 00 03 28 v Dynamic 1 OO0 OF FE 11 89 1B J Dynamic 1 00 10 60 DB 5E
27. get details of the settings Ping by IPv6 Configuration gt Diagnostics gt Ping6 Click at this web page to get details of the settings Verify Cable Connection Configuration gt Diagnostics gt VeriPHY Click at this web page to get details of the settings Status by Command Ping by IPvA ping ip lt word1 255 gt repeat 1 60 size lt 2 1452 gt interval 0 30 Ping by IPv6 ping ipv6 ipv6 addr repeat 1 60 size lt 2 1452 gt interval 0 30 interface vlan vlan id Verify Cable Connection show interface port type list veriphy Note This test supports TX ports cable connection only 128 7 17 Maintenance The maintenance functions for the switch include system reboot software update select configuration backup restore factory default Configuration by Web System Reboot Configuration gt Maintenance gt Restart Device Restart Device Are you sure you want to perform a Restart Click at this web page to get details of the settings Factory Default Configuration gt Maintenance gt Factory Defaults Factory Defaults Are you sure you want to reset the configuration to Factory Defaults Click at this web page to get details of the settings Software Upload Configuration gt Maintenance gt Software gt Upload software Upload Mea Click
28. gt System gt Green Ethernet System gt Ports Contact gt Security Name gt LACP Location Loop Protection gt Spanning Tree MAC Address 00 99 88 77 66 55 MVR Time gt IPMC System Date 1970 01 01T01 30 09 00 00 LLDP System Uptime 0d 01 30 09 s MAC Table i Software Version 24G42 10G Ver 1 00 01 sFlow Software Date 2013 09 17713 19 39 08 00 v Diagnostics Ping Ping6 VeriPHY v Maintenance Restart Device Factory Defaults gt Software gt Configuration Left part of the homepage is a function list Users can select one of them for status monitoring or switch configuration There are four operation groups in the function list Configuration this is for switch function configuration Monitor this is for switch function status and statistics monitor Diagnostics this is diagnostics functions for switch Maintenance this is for switch maintenance like firmware upgrade configuration backup restore system reset oN Middle part of homepage is the main operation area for each function This is Logout Click it to logout This is Help Click it to get help information for operation The details about management with http connection will be shown in the following sub sections 6 2 2 Telnet and SNMP Interface Connection lt lt Telnet Management Interface gt gt If you want to use Telnet to manage the switch from remote site you have to set the IP NetMask Gat
29. if vian no ip igmp snooping unsolicited report interval IGMP Snooping Port Filtering Profile config if ip igmp snooping filter lt word16 gt config if no ip igmp snooping filter Status by Web Monitor gt IPMC gt IGMP Snooping gt Status 02 IGMP Snooping Status Auto refresh C Ref Statistics VLAN Querier V1 Reports V2 Reports V3 Reports V2 Leaves Received Received Received Queries Queries Transmitted Received Received Querier Status Click at this web page to get details of the settings Monitor gt IPMC gt IGMP Snooping gt Groups Information ISMP Snooping Group Information Au start from LAN n and group address 224000 with 20 entries per page Fort Members Mo more entries ECCE EIS NUM AERE UII ae VLAN ID Groups 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 20 Mo more entries o Click at this web page to get details of the settings Monitor gt IPMC gt IGMP Snooping gt IPv4 SFM Information IGMP SFM Information Auto n start from WLAN 1 and Group 224 000 with 30 entries per paga VLAN ID Source Address Hardware Filter Switch No more entries ooo Ma mare entries Click at this web page to get details of the settings Status by Command clear ip igmp snooping vlan vlan list statistics 4 show ip igmp snooping vlan vlan list group d
30. in Section 7 17 This switch supports firmware image backup function The old Active Image will become Alternate Image backup image and the new firmware image will be the Active Image The Alternate Image backup image can be switched to be Active Image by Image Select function in Web Maintenance gt Software gt Image Select to run the old firmware image 134 A Product Hardware Specifications 24SFP 4TX combo Model Access Method Standards Conformance Communication Rate TX MDI MDIX Indicator Panel Number of Ports Console Dimensions Certification Temperature Humidity Bridging Function Switching Method Address Table Filtering Forwarding Rate Maximum Packet Size Flow Control Ethernet CSMA CD IEEE 802 3 10BASE T IEEE 802 3u 100BASE IEEE 802 3z IEEE 802 3ab 1000Base 10 100 1000Mbps for TX Full Half duplex auto negotiation 100 1000Mbps for SFP Auto Detect LEDs for each unit Power System each port Link Act Green 1000M Yellow 10 100M 24 SFP 4 RJ45 TX ports 24 GE Ports totally D Sub 9 440 x 172 x 44 mm CE Mark FCC Class A Standard Operating O to 50 C 10 to 9096 Non condensing Filtering forwarding and learning Store and forward 16K entries Line speed 10056 Bytes 802 3x for full duplex backpressure for half duplex 135 136 B Product Software Specifications Port Control L2 Switching L3 Switching VLANs Spanning Tree Link Aggreg
31. settings in DSCP Classification page without remapping Remap Rewrite enabled with remapping setting in DSCP Translation page from the internal DSCP value Configuration by Web Configuration gt QoS gt Port DSCP 114 QoS Port DSCP Configuration ooooo j 4 j z Disable Disable bas Disable le vj Disable 3 Click at this web page to get details of the settings Configuration by Command Ingress DSCP Translate Enable Disable config if qos dscp translate config if no qos dscp translate Ingress Classify DSCP values config if qos dscp classify zero selected any config if no qos dscp classify Egress DSCP Rewrite config if qos dscp remark 1 rewrite remap remap dp config if no qos dscp remark Status by Web Configuration gt QoS gt Port DSCP Click at this web page to get details of the settings Status by Command show qos interface port type list 115 7 13 7 DSCP to Internal Priority Mapping Ingress This setting is used to configure QoS Ingress Classification for each DSCP value Only frames with trusted DSCP values are mapped to a specific QoS class and Drop Precedence Level Frames with untrusted DSCP values will not be applied Configuration by Web Configuration gt QoS gt DSCP Based QoS DSCP Based QoS Ingress Classification oOo elm eB 0 BE 1 ow a a T
32. to affect the DSCP value when the frame is sent out It could rewrite the egress DSCP value when Egress Rewrite in Port DSCP page is not disable Please refer to the description about Egress Rewrite in Port DSCP page Configuration by Web Configuration gt QoS gt DSCP Classification DSCP Classification QoS Class DSCP lt li 4 xis a Click at this web page to get details of the settings Configuration by Command Internal Priority to DSCP Mapping config qos map cos dscp 0 7 dscp 0 63 lt dscp gt config no qos map cos dscp 0 7 Status by Web Configuration gt QoS DSCP Classification Click at this web page to get details of the settings Status by Command Internal Priority to DSCP Mapping show qos maps cos dscp 119 7 13 10 QoS Control List QCL is an acronym for QoS Control List It is the list table of QCEs containing QoS control entries that classify to a specific QoS class on specific traffic objects Each accessible traffic object contains an identifier to its QCL The privileges determine specific traffic object to specific QoS class QCE is an acronym for QoS Control Entry It describes QoS class associated with a particular QCE ID Configuration by Web Configuration gt QoS QoS Control List QoS Control List Configuration Tad Frame ace Pon mac susc ps wo
33. to get details of the settings Configuration by Command Enable Rate Setting config if qos storm unicast broadcast unknown lt 100 13200000 gt fps Disable config if no qos storm unicast broadcast unknown Status by Web Configuration gt QoS gt Storm Control Click at this web page to get details of the settings Status by Command show qos interface lt port_type_list gt 122 7 13 12 Weighted Random Early Detection Configuration Weighted random early detection WRED is a queueing discipline for a network scheduler suited for congestion avoidance It is an extension to random early detection RED where a single queue may have several different queue thresholds Each queue threshold is associated to a particular traffic class For example a queue may have lower thresholds for lower priority packet A queue buildup will cause the lower priority packets to be dropped hence protecting the higher priority packets in the same queue In this way quality of service prioritization is made possible for important packets from a pool of packets using the same buffer It is more likely that standard traffic will be dropped instead of higher prioritized traffic Configuration by Web Configuration gt QoS gt WRED Weighted Random Early Detection Configuration Queue Enable Min Threshold Max DP 1 Max DP 2 0 i 5 Cli
34. user on the same port and doesn t require the user to have special 802 1X supplicant software installed on his system The switch uses the user s MAC address to authenticate against the backend server Intruders can create counterfeit MAC addresses which makes MAC based authentication less secure than 802 1X authentication Configuration by Web Configuration gt Security gt Network gt NAS Network Access Server Configuration System Configuration Mode LB v Reauthentication Enabled l Reauthentication Period seconds RADIUS Assigned QoS Enabled RADIUS Assigned VLAN Enabled Guest VLAM Enabled Guest VLAN ID Max Reauth Count Allow Guest VLAN if EAPOL Seen Port Configuration Restart E Y O L1 T 1 Fome Authorized v Globally Disabled 2 Fouce Authorized v Globally Disabled 3 Fome uthoized w Globally Disabled 4 Fowe uthonzed Globally Disabled 5 Fowe uthonzed Globally Disabled 6 Fome Authorized v Globally Disabled Click at this web page to get details of the settings Configuration by Command Enable Disable config dot1x system auth control config no dot1x system auth control RADIUS Assigned QoS RADIUS Assigned VLAN Guest VLAN Enabled config dot1x feature guest vlan radius qos radius vlan 1 config no dot1x feature guest vlan radius qos radius vlan 1 For Guest VLAN Guest VLAN ID Max Reauth Count Allo
35. variable config if vian no ipv6 mld snooping unsolicited report interval MLD Snooping Port Filtering Profile config if ipv6 mld snooping filter lt word16 gt config if no ipv6 mld snooping filter Status by Web Monitor gt IPMC gt MLD Snooping gt Status MLD Snooping Status Auto refresh CO Statistics VLAN Querier Host Querier Queries Queries V1 Reports V2 Reports V1 Leaves ID Version Version Status Transmitted Received Received Received Received Router Port G Click at this web page to get details of the settings Monitor gt IPMC gt MLD Snooping gt Groups Information MLD Snooping Group Information Au Start from LAN n and group address FOO with Fort Members Mo more entres puc ccr OE IMB C c VLAN ID Groups 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 Momoreenties S Click at this web page to get details of the settings Monitor gt IPMC gt MLD Snooping gt IPv6 SFM Information 86 MLD SFM Information Auto re start from WLAN 1 and Group ff00 with 20 entries VLAN ID Group Port Mode Source Address Hardware Filter Switch Click at this web page to get details of the settings Status by Command clear ipv6 mld snooping vlan vlan list statistics show ipv6 mid snooping vlan lt vian_list gt group database interface port t
36. Awo v Active Fast w 32768 5 1 Auto v Active Fast wj 32768 6 m Amo M Active v Fut w 32068 7 o Awo v Active w Fast w 32768 8 oO Awo w active v Fast 32768 E 1 Auto Active v Fast w 32768 10 oO Auo w Active Fast ww 32768 Click at this web page to get details of the settings Configuration by Command System Priority config lacp system priority 1 655352 config no lacp system priority lt 1 65535 gt LACP Port Configuration config if lacp config if lacp key lt 1 65535 gt auto config if lacp port priority lt 1 65535 gt config if lacp role active passive config if lacp timeout fast slow config if no lacp config if no lacp key lt 1 65535 gt auto config if no lacp port priority lt 1 65535 gt config if no lacp role active passive config if no lacp timeout fast slow Status by Web Monitor gt LACP gt System Status LACP System Status Aaar ID Partner Partner Partner Last Local gg System ID Key Prio Changed Ports Mo pots enabled or no existing partners Click at this web page to get details of the settings 63 Monitor gt LACP gt Port Status LACP Status Partner Partner Partner Por Lace Key aggriD systemi Pom Prio Mo Mo Mo Mo Mo Mo Mo Mo No Mo Click at this web page to get deta
37. CS Web amp CLI Authentication Authorization 15 user levels ACLs for filtering policing port copy IP source guard NTPv4 Client Yes DHCP Client DNS client proxy HTTP Server CLI Console Port amp Telnet Text Configuration download or upload Management access filtering HTTPS SSHv2 IPv6 Management System Syslog Software Upload via web SNMP v1 v2c v3 Agent RMON Group 1 2 3 amp 9 RMON alarm and event CLI web SNMP multiple trap destinations IEEE 802 1AB 2005 Link Layer Discovery LLDP Cisco Discovery filtering CDP sFlow Daylight Saving 138 C Compliances EMI Certification FCC Class A Certification USA Warning This equipment generates uses and can radiate radio frequency energy and if not installed and used in accordance with the instruction manual may cause interference to radio communications It has been tested and found to comply with the limits for a Class A digital device pursuant to Subpart B of Part 15 of FCC Rules which are designed to provide reasonable protection against such interference when operated in a commercial environment Operation of this equipment in a residential area is likely to cause interference in which case the user at his own expense will be required to take whatever measures are required to correct the interference CE Mark Declaration of Conformance for EMI and Safety EEC This is to certify that this product complies with ISO IEC Guide 22 and
38. CS Server is a server that provides such services Configuration by Web Configuration gt Security gt AAA gt TACACS TACACS Server Configuration Global Configuration Server Configuration 49 Click at this web page to get details of the settings Configuration by Command Global Configuration config tacacs server deadtime lt 1 1440 gt config tacacs server key lt line1 63 gt config tacacs server timeout lt 1 1000 gt config no tacacs server deadtime config no tacacs server key config no tacacs server timeout Server Configuration config tacacs server host lt word1 255 gt lt ipv4_ucast gt ipv6 ucast port 0 65535 timeout lt 1 1000 gt key lt line1 63 gt config no tacacs server host lt word1 255 gt ipv4 ucast ipv6 ucast port 0 65535 Status by Web Configuration gt Security gt AAA gt TACACS Click at this web page to get details of the settings 60 Status by Command show tacacs server 61 7 6 Aggregation Port Aggregation Link Aggregation uses multiple ports in parallel to increase the link speed beyond the limits of a port and to increase the redundancy for higher availability 1 Static Configuration by Web Configuration gt Aggregation gt Static Aggregation Mode Configuration Hash Code Contributors Source MAC Address Destination MAC Ad
39. Click at the web page to get details of the settings Configuration gt Security gt Switch gt RMON History RMON History Configuration Delete Data Source Interval Buckets Buckets Granted eer eee Click at the web page to get details of the settings Configuration gt Security gt Switch gt RMON gt Alarm RMOH Alarm Configuration grin aby Falling Falling W im oe oe aay a sew em J Click at the web page to get details of the settings 41 Configuration gt Security gt Switch gt RMON gt Event RMON Event Configuration Delete ID Dese Type Community EventLast Time none v public Click at the web page to get details of the settings Configuration by Command Create an Alarm Entry config rmon alarm 1 65535 word255 lt 1 2147483647 gt absolute delta rising threshold lt 2147483648 2147483647 gt lt 0 65535 gt falling threshold lt 2147483648 2147483647 gt 0 65535 1 rising falling both config no rmon alarm lt 1 65535 gt Configure Threshold for Variables config rmon alarm lt 1 65535 gt iflnOctets ifinUcastPkts iflnNUcastPkKts ifinDiscards iflnErrors iflnUnknownProtos ifOutOctets ifOutUcastPkts ifOutNUcastPkts ifOutDiscards ifOutErrors lt uint gt lt 1 2147483647 gt absolute delta rising threshold
40. Click at this web page to get details of the settings Status by Command clear dot1x statistics interface port type list show dot1x statistics eapol radius all interface port type list 3 ACL configuration ACL is an acronym for Access Control List It is the list table of ACEs containing access control entries that specify individual users or groups permitted or denied to specific traffic objects such as a process or a program ACE is an acronym for Access Control Entry It describes access permission associated with a particular ACE ID There are three ACE frame types Ethernet Type ARP and IPv4 and two ACE actions permit and deny The ACE also contains many detailed different parameter options that are available for individual application 48 Each accessible traffic object contains an identifier to its ACL The privileges determine whether there are specific traffic object access rights ACL implementations can be quite complex for example when the ACEs are prioritized for the various situation In networking the ACL refers to a list of service ports or network services that are available on a host or server each with a list of hosts or servers permitted or denied to use the service ACL can generally be configured to control inbound traffic and in this context they are similar to firewalls There are 3 web pages associated with the manual ACL configuration ACL Access Control
41. Enable Disable config if ipv6 mld snooping immediate leave config if no ipv6 mid snooping immediate leave Throttling Max Group Number config if ipv6 mld snooping max groups 1 10 config if no ipv6 mld snooping max groups MLD Snooping VLAN Configuration Assign VLAN for MLD Snooping config ipv6 mld snooping vlan lt vian_list gt config no ipv6 mld snooping vlan vlan list Configure MLD Snooping for VLAN config if vian ipv6 mld snooping config if vian ipv6 mld snooping compatibility auto v1 v2 config if vian ipv6 mld snooping last member query interval 0 31744 config if vian ipv6 mld snooping priority 0 7 config if vian ipv6 mld snooping querier election 85 config if vian ipv6 mld snooping query interval lt 1 31744 gt config if vian ipv6 mld snooping query max response time 0 31744 config if vian ipv6 mld snooping robustness variable lt 1 255 gt config if vian ipv6 mld snooping unsolicited report interval 0 31744 config if vian no ipv6 mld snooping config if vian no ipv6 mld snooping compatibility config if vian no ipv6 mld snooping last member query interval config if vian no ipv6 mld snooping priority config if vian no ipv6 mld snooping querier election config if vian no ipv6 mld snooping query interval config if vian no ipv6 mld snooping query max response time config if vian no ipv6 mld snooping robustness
42. F De w a n i sj 2 2 x n qm v 3 p mw m 4 4 8E n fa v 5 E a B B 6 v ao f vl 7 7 8E FL ivi Configuration by Command Ingress DSCP values translation mapping config qos map dscp ingress translation 0 63 lt dscp gt to 0 63 lt dscp gt config no qos map dscp ingress translation 0 63 lt dscp gt DSCP values selected for ingress classify config qos map dscp classify 0 63 lt dscp gt config no qos map dscp classify 0 63 lt dscp gt Egress DSCP values translation mapping config qos map dscp egress translation 0 63 lt dscp gt 0 1 to 0 63 lt dscp gt config no qos map dscp egress translation 0 63 lt dscp gt 0 1 117 Status by Web Configuration gt QoS gt DSCP Translation Click at this web page to get details of the settings Status by Command Ingress DSCP values translation mapping show qos maps dscp ingress translation DSCP values selected for ingress classify show qos maps dscp classify Egress DSCP values translation mapping show qos maps dscp egress translation 118 7 13 9 Internal Priority to DSCP Mapping Egress This setting is used to configure the mapping of QoS class to internal DSCP value Frames got a QoS class either from port default or VLAN Tag or DSCP then it can map this QoS to internal DSCP This internal DSCP then can do another egress map
43. G phones 00 d0 1e Fingtel phones OU e 5 Polycom phones OU e0 bb acom phones Click at this web page to get details of the settings E 4 ual a 101 Configuration by Command Enable Disable config voice vlan config no voice vlan VLAN ID config voice vlan vid vlan id config no voice vlan vid Aging Time config voice vlan aging time lt 10 10000000 gt config no voice vlan aging time Traffic Class config voice vlan class 0 7 low normal medium high config Z no voice vlan class OUI Definition config voice vlan oui oui description lt line32 gt config no voice vlan oui oui Port Configuration Mode config if switchport voice vlan mode auto force disable config if no switchport voice vlan mode Security config if switchport voice vlan security config if no switchport voice vlan security Discovery Protocol config if switchport voice vlan discovery protocol oui Ildp both config if no switchport voice vlan discovery protocol Status by Web Configuration gt Voice VLAN gt Configuration Configuration gt Voice VLAN gt OUI Click at this web page to get details of the settings Status by Command show voice vlan oui oui interface port type list 102 7 12 7 GVRP GVRP GARP VLAN Registration Protocol or Generic VLAN Registration Pro
44. If in Weighted mode the weighting of each queue could be configured The traffic shaper could operate by queue or by port Enable by checking it and 108 give a limit value Click at this web page to get details of the settings Configuration by Command Port Egress Shaper config if qos shaper lt uint gt config if no qos shaper Queue Egress Shaper of Port config if qos queue shaper queue 0 7 lt uint gt excess config if no qos queue shaper queue 0 7 Status by Web Configuration gt QoS gt Port Shaping Click at this web page to get details of the settings Status by Command show qos interface port type list 109 7 13 4 Port Egress Schedulers This setting will show port egress scheduler mode and weight of each queue Click Port number to configure its Egress Scheduler Configuration by Web Configuration gt QoS gt Port Scheduler QoS Egress Port Schedulers Q0 1 Q2 Q3 Q4 Q5 strict Priority strict Priority strict Priority strict Priority strict Priority strict Priority strict Priority strict Priority Click port number port and queue egress scheduler and shapers setting page will appear QoS Egress Port Scheduler and Shapers Port2 JOO 4 je rr Re PL qp J Scheduler Mode Strict Priority v Queue Shaper Enable Rate Unit Excess Enable Rate Unit Er 8
45. List The web page shows the ACEs in a prioritized way highest top to lowest bottom Default the table is empty An ingress frame will only get a hit on one ACE even though there are more matching ACEs The first matching ACE will take action permit deny on that frame anda counter associated with that ACE is incremented An ACE can be associated with a Policy 1 ingress port or any ingress port the whole switch If an ACE Policy is created then that Policy can be associated with a group of ports under the Ports web page There are number of parameters that can be configured with an ACE Read the Web page help text to get further information for each of them The maximum number of ACEs is 64 ACL Ports The ACL Ports configuration is used to assign a Policy ID to an ingress port This is useful to group ports to obey the same traffic rules Traffic Policy is created under the Access Control List page You can also set up specific traffic properties Action Rate Limiter Port copy etc for each ingress port They will though only apply if the frame gets past the ACE matching without getting matched In that case a counter associated with that port is incremented See the Web page help text for each specific port property ACL Rate Limiters Under this page you can configure the rate limiters There can be 15 different rate limiters each ranging from 1 1024K packets per seconds Under Ports and Access Control List we
46. NS 94 config if switchport forbidden add remove vid vlan id name lt word gt config if no switchport forbidden vlan Status by Web Monitor gt VLANs gt Membership VLAN Membership Status for Combined users Start fram VLAN 1 with 20 entries per page Port Members ec v B HMWNbRIRE S o a VEAN ID 1 2 3 4 5 6 7 8 9 1011 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 ava va va Va vaa va Val va Vai Val al a l Click at this web page to get details of the settings Monitor gt VLANs gt Ports VLAN Port Status for Combined users Port Port Type Ingress Filtering Frame Type Port VLAN ID Untagged VLAN ID Conflicts Corbined w Auto refresh O Refre 1 C Por 2 C Port 3 C Por 4 C Port 5 C Port B C Port 7 C Port 8 C Port 9 C Port 10 C Port All All All All All All All All All All meee ee ek Untag All Untag All Untag All Untag All Untag All Untag All Untag All Untag All Untag All Untag All Click at this web page to get details of the settings Status by Command show vlan id lt vlan_list gt name lt vword32 gt brief 95 7 12 2 Private VLANs In a private VLAN PVLANs provide layer 2 isolation between ports within the same broadcast domain Isolated ports configured as part of PVLAN cannot communicate with each other Member ports of a PVLAN can commun
47. O 2 o ow 0v 3 ri ba bE 4 CI 0 ie 0 w 5 O ow 0v 5 EF om bE Bg se s Click at this web page to get details of the settings Configuration by Command DSCP to Internal Priority Mapping and trust config qos map dscp cos 0 63 lt dscp gt cos 0 7 dpl dpl config no qos map dscp cos 0 63 lt dscp gt Status by Web Configuration gt QoS gt DSCP Based QoS Click at this web page to get details of the settings Status by Command show qos maps dscp cos cos dscp 116 7 13 8 DSCP Ingress Translation and Egress Remap This setting is used to configure the QoS DSCP Translation settings for all DSCP values DSCP translation can be done in Ingress or Egress Ingress side DSCP can be first translated to new DSCP before using the DSCP for QoS class and DPL map There are two configuration parameters for DSCP Translation 1 Translate DSCP at Ingress side can be translated to any of 0 63 DSCP values 2 Classify Select the DSCP value to enable its QoS Class to internal DSCP mapping operation when Ingess Classify is Selected in Port DSCP page For Egress the settings are applied to Egress Rewrite in Port DSCP page Please refer to the description about Egress Rewrite in Port DSCP page Configuration by Web Configuration gt QoS gt DSCP Translation DSCP Translation cp L___Insress Egress PS Translate e e O je ogg foem O
48. Port and Queue Egress Shapers This setting will show egress shaper settings of each port and each queue Click Port number to configure its Egress Shaper Configuration by Web Configuration gt QoS gt Port Shaping QoS Egress Port Shapers Shapers ao Q1 Q2 Q3 O4 Q5 Q6 Q7 Port disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled 10 disabled disabled disabled disabled disabled disabled disabled disabled disabled Click port number port and queue egress scheduler and shapers setting page will appear QoS Egress Port Scheduler and Shapers Port 2 Scheduler Mode C eor qoo 7 qp OT Hw Jo Queue Shaper Enable Rate Unit Excess Enable Rate Unit Q7 The traffic scheduler could operate in Strict Priority mode or Weighted mode
49. Server Status Overview gH IP Address Status Disabled Disabled Disabled Disabled Disabled RADIUS Accounting Server Status Overview IPAddress Status Disabled Disabled Disabled Disabled Disabled Jcr1 F 22 p Click at this web page to get details of the settings Monitor gt Security gt AAA gt RADIUS Details RADIUS Authentication Statistics for Server 1 eerver tl w Access Accepts Access Requests Access Rejects Access Retransmissions Access Challenges Pending Requests Malformed Access Responses Timeouts Bad Authenticators Unknown Types Packets Dropped IP Address O 0 0 0 0 State Disabled Round Trip Time ms RADIUS Accounting Statistics for Server 1 Responses O Requests Malformed Responses 0 Retransmissions Bad Authenticators O Pending Requests Unknown Types Timeouts Packets Dropped Other Info IP Address O0 0 0 0 0 State Disabled Round Trip Time ms Click at this web page to get details of the settings Status by Command 59 show radius server statistics 2 TACACS Server configuration TACACS is an acronym for Terminal Acess Controller Access Control System Plus It is a networking protocol which provides access control for routers network access servers and other networked computing devices via one or more centralized servers TACACS provides separate authentication authorization and accounting services TACA
50. The traffic scheduler could operate in Strict Priority mode or Weighted mode If in Weighted mode the weighting of each queue could be configured The traffic shaper could operate by queue or by port Enable by checking it and 110 give a limit value Click at this web page to get details of the settings Configuration by Command Weighting of Queue for WRR config if qos wrr 1 100 1 100 1 100 1 100 1 100 1 100 config if no qos wrr Status by Web Configuration gt QoS Port Scheduler Click at this web page to get details of the settings Status by Command show qos interface port type list 111 7 13 5 Port Egress Tag Remarking This setting is used to show Egress Tag Remarking mode of each port The mode could be Classified Use classified PCP DEI values Default Use default PCP DEI values Mapped Use mapped versions of QoS class and DP level Click Port number to configure the Egress Tag Remarking mode for it Configuration by Web Configuration gt QoS gt Port Tag Remarking QoS Egress Port Tag Remarking Classified Classified Classified Classified Classified Classified Classified B Classified Click port number port egress tag remarking setting page will apear Ca 7 4 120 TT J 0d i If in Classified mode Qos Egress Port Tag Remarking Port2 If in Default mode QoS Egress Port Tag Remarking Port2
51. a MAC address and VLAN ID If Limit Control is enabled on a port the limit specifies the maximum number of users on the port If this number is exceeded an action is taken Configuration by Web Configuration gt Security gt Network gt Limit Control Port Security Limit Control Configuration System Configuration Port Configuration Mode Limit State Reopen had lt gt 1 Thsabled Disabled 2 Disabled me Disabled 3 Disabled v Disabled 4 Disabled w Disabled 5 Dished Disabled amp Disabled w Disabled 7 Disabled w Disabled 8 Disabled Tone Disabled 3 Dished Disabled 10 Disshled V Disabled 11 Lusebed Disabled 12 Disabled w Disabled 13 Disabled Disabled 14 DisHed w Disabled Seconds Click at this web page to get details of the settings Configuration by Command Enable Disable config port security config no port security Aging 44 config port security aging config port security aging time 10 10000000 config no port security aging config no port security aging time Enable Disable by Port config if port security config if no port security Control Number and Action by Port config if port security maximum lt 1 1024 gt config if port security violation protect trap trap shutdown shutdown config if no port security maximum config if
52. ace port type id port type list Insert the current ACE before the next ACE ID config access list ace update 1 256 last 1 256 Status by Web Monitor gt Security gt Network gt ACL Status ACL Status Combined w Auto refresh C Refresh Refresh User Ingress Port Frame Type Action Rate Limiter Port Redirect GPU GPU Orisa Gouritar Coniiet Static All Permit Disabled Disabled Mo 31 No Click at this web page to get details of the settings Status by Command clear access list ace statistics show access list ace statistics 1 256 interface port type id port type list rate limiter show access list ace status static link oam loop protect dhcp ptp upnp arp inspection mep ipmc ip source guard ip mgmt conflicts 4 IP Source Guard IP Source Guard is a secure feature used to restrict IP traffic on DHCP snooping untrusted ports by filtering traffic based on the DHCP Snooping Table or manually configured IP Source Bindings It helps prevent IP spoofing attacks when a host tries to spoof and use the IP address of another host Configuration by Web Enable Disable Dynamic Client Number Configuration gt Security gt Network IP Source Guard gt Configuration 52 IP Source Guard Configuration Disabled Port Mode Configuration Port Mode Max
53. atabase interface port type list sfm information detail show ip igmp snooping mrouter detail 2 MLD Snooping MLD is an acronym for Multicast Listener Discovery for IPv6 MLD is used by IPv6 routers to discover multicast listeners on a directly attached link much as IGMP is used in IPv4 The protocol is embedded in ICMPv6 instead of using a separate protocol MLD snooping allows the switch to examine MLD packets and make forwarding decisions based on their content You can configure the switch to use MLD snooping in subnets that receive MLD queries from either MLD or the MLD snooping querier MLD snooping constrains IPv6 multicast traffic at Layer 2 by configuring Layer 2 LAN ports dynamically to forward IPv6 multicast traffic only 03 to those ports that want to receive it Configuration by Web Global Basic and Port Related Configuration Configuration gt IPMC gt MLD Snooping gt Basic Configuration MLD Snooping Configuration Global Configuration Snooping Enabled F Unregistered IPMCv6 Flooding Enabled MLD SEM Range ffe Leave Proxy Enabled Proxy Enabled Port Related Configuration Port Router Port Throttling z mE O d o lt unlimited 2 al d unlimited v 3 1 1 unlimited v 4 O O unlimited v 5 oO unlimited B 1 1 unlimited Click at this web page to get details of the settings MLD Snooping VLAN Co
54. ation IP Multicast Qos Port speed duplex mode and flow control Port Auto MDI MDI X Port frame size jumbo frames Maximum ingress frame size 10056 bytes Port state administrative status Port status link monitoring Port statistics MIB counters Auto MAC address learning aging and MAC addresses static DHCP snooping ARP inspection Port Mirroring DHCP option 82 relay IPv4 Unicast Static routing IEEE 802 10 static VLAN 4096 entries Max Voice VLAN Port isolation Private VLAN MAC based VLAN Protocol based VLAN IP subnet based VLAN IEEE 802 1s MSTP Multiple spanning tree IEEE 802 1w RSTP Rapid spanning tree IEEE 802 1D STP Spanning tree BPDU Guard amp Restricted Role Static and LACP IGMP v2 and v3 snooping MLD v1 snooping IGMP filtering profile IPMC throttling filtering leave proxy MVR and MVR profile Traffic Classes 8 active priorities Port Default Priority User Priority Input priority mapping QoS Control List QCL Mode Storm Control for UC BC and Unknown Port policers Global VCAP ACL policers Port egress shaper Queue egress shapers DiffServ RFC2474 remarking Tag remarking Scheduler mode 137 Security Synchronization SFP DDMI Management Port Based 802 1X Single 802 1X Multiple 802 1X MAC Based Authentication VLAN Assignment QoS Assignment Guest VLAN RADIUS Accounting MAC Address Limit IP MAC binding IP MAC binding dynamic to static TACA
55. b pages you can assign a Rate Limiter ID to the ACE s or ingress port s Configuration by Web Port Default Configuration Configuration gt Security gt Network gt ACL gt Ports ACL Ports Configuration Port Policy ID Action Rate Limiter ID Logging Shutdown State Counter v v v v ES 0 lt gt lt gt lt gt lt gt v lt gt wv lt gt v Z 1 0 Permit Disabled Disabled A Disabled i Disabled Enabled 0 2 0 Permit v Disabled Disabled v Disabled Disabled Enabled 0 3 0 Permit v Disabled w Disabled w Disabled Disabled w Enabled v 0 4 O Permit v Disabled v Disabled Disabled v Disabled v Enabled 0 5 0 Pemit v Disabled Disabled Disabled Disabled Enabled 0 B 0 Permit v Disabled Disabled Disabled v Disabled wv Enabled v 0 7 o Permit v Disabled Disabled Disabled Disabled Enabled v D 8 0 Permit v Disabled v Disabled v Disabled v Disabled w Enabled v 0 9 0 Permit w Disabled Disabled Disabled Disabled Enabled 0 10 0 Permit v Disabled Disabled Disabled i Disabled Enabled jw 0 Click at this web page to get details of the settings 49 Rate Limiter Configuration Configuration gt Security gt Network gt ACL gt Rate Limiters ACL Rate Limiter Configuration Rate Limiter ID Rate pps
56. ces IPv4 DHCP Adm SJNE Delete VLAN Current Mask Mask Enable Fatback CES Address Venom Address engh 192 168 1 179 IP Routes Delete Network Mask Length Gateway Next Hop VLAN Click at this web page to get details of the settings Configuration by Command IPv4 Address config if vian ip address lt ipv4_addr gt lt ipv4_netmask gt dhcp fallback lt ipv4_addr gt lt ipv4_netmask gt timeout lt uint gt For example config if vian ip address 192 168 1 179 255 255 255 0 config if vian no ip address IPv6 Address config if vian ipv6 address ipv6 subnet For example config if vian ipv6 address 1221 215 cbff fe03 4dc7 126 config if vlan no ipv6 address ipv6 subnet IPv4 and IPv6 Routing config ip routing config no ip routing DNS Proxy config ip dns proxy config no ip dns proxy Static Route Entry and Gateway 21 config ip route destination ip addr lt netmask gt gateway ip addr gt config no ip route destination ip addr netmask gateway ip addr gt Status by Web Monitor gt System gt IP Status IP Interfaces O0 00 00 00 00 00 sUP LOOPBACK RUNNING MULTICAST 127 0 0 148 feo 1 1 54 51 128 J 88 B8 7 7 bh 55 lt UP BROADCAST RUNNING MULTICAST 182 158 1 178 24 feo 2 288 Bat fe bb555 54 IP Routes Network Gateway Statu
57. ck at this web page to get details of the settings Configuration by Command config qos wred queue 0 5 min th 0 100 mdp 1 0 100 mdp 2 0 100 mdp 3 0 100 config no qos wred queue 0 5 Status by Web Configuration gt QoS gt WRED Click at this web page to get details of the settings Status by Command show qos wred 123 7 14 Port Mirroring For debugging network problems or monitoring network traffic the switch system can be configured to mirror frames from multiple ports to a mirror port In this context mirroring a frame is the same as copying the frame Both incoming Source and outgoing destination frames can be mirrored to the mirror port Configuration by Web Configuration gt Mirroring Mirror Configuration Port to mirror to Disabled Mirror Port Configuration Disabled v 1 2 Disabled v 3 Disabled v 4 Disabled 5 Disabled v Click at this web page to get details of the settings Configuration by Command Mirroring Destination Port config monitor destination interface lt port_type_id gt config no monitor destination Mirroring Source Port config monitor source interface port type list cpu range list both rx tx config no monitor source interface port type list cpu range list Status by Web Configuration gt Mirroring
58. config no Ildp timer Tx Hold config Ildp holdtime 2 10 config no Ildp holdtime Tx Delay config Ildp transmission delay lt 1 8192 gt 88 config no Ildp transmission delay TX Reinit config Ildp reinit lt 1 10 gt config no Ildp reinit Port Configuration Enable Disabled transmision of LLDP frames config if Ildp transmit config if no Ildp transmit Enable Disable decoding of received LLDP frames config if Ildp receive config if no Ildp receive Optional TLVs to transmit config if Ildp tlv select management address port description system capabilities system description system name config if no lldp tlv select management address port description system capabilities system description system name CDP aware config if Ildp cdp aware config if no Ildp cdp aware Status by Web Monitor gt LLDP gt Neighbors LLDP Neighbor Information Auto refresh O LLDP Remote Device Summary Local Port Chassis ID Port ID Port Description System Name System Capabilities Management Address No neighbor information found Click at this web page to get details of the settings Monitor gt LLDP gt Port Statistics LLDP Global Counters Auto refresh C Global Counters Neighbor entries were last changed 1970 01 01700 00 00 00 00 13765 secs ago Total Neighbors Entries Added 0 Total Neighbors En
59. dress 7 IP Address TCP UDP Port Number F Aggregation Group Configuration Port Members 13 14 15 16 17 18 19 20 21 22 23 24 25 26 0000 OO OOOOGOO O O s O000 O oocoooooooo OOOO O O o gt o s d o 6606 O O oococooooooo O O a d O000 O OOOOOOOOOO OOOO O 9 o 6606 O oeoooooooo s O O 2 2 6066 O eooooooooo gt O O d O000 O O OOOOOOGOO8 o O O o a o o a o Click at this web page to get details of the settings Configuration by Command Traffic distribution mode config aggregation mode smac dmac ip port config no aggregation mode Add Ports to Aggregation Group config if aggregation group lt uint gt config if no aggregation group Status by Web Configuration gt Aggregation Static Click at this web page to get details of the settings Status by Command show aggregation mode 62 2 LACP Configuration by Web Configuration gt Aggregation gt LACP LACP Port Configuration Port LACPEnabled Key Role j Timeout Prio s a o MJ e Iw e i 32768 o Amo v Active Fast 32768 2 m Amo E Active Fast v 32768 3 1 Auto vj Active Fast v 32768 4 1
60. e config if spanning tree auto edge config if no spanning tree auto edge Restricted Role config if spanning tree restricted role config if Z no spanning tree restricted role Restricted TCN config if spanning tree restricted tcn config if no spanning tree restricted tcn BPDU Guard 71 config if spanning tree bpdu guard config if no spanning tree bpdu guard Point to Point config if spanning tree link type point to point shared auto config if no spanning tree link type Status by Web Monitor gt Spanning Tree gt Port Status STP Port Status ES AS IRE EEE 1 Won STP Forwarding Non STP Forwarding Maon STP Forwarding Man STP Farwarding Man STP Forwarding Mon STPF Forwarding Mon STP Forwarding Man STP Forwarding Non STP Forwarding 10 Won STP Forwarding Click at this web page to get details of the settings Monitor gt Spanning Tree gt Port Statistics STP Statistics Aute oa WSTPTRSTP STP TEN WSTP RST STP T TEN Unknown Megal OER M MR RR RR UR RR MR REM MU NUR No ports enabled Click at this web page to get details of the settings Status by Command clear spanning tree statistics interface port type list show spanning tree interface port type list show spanning tree detailed interface port type list 5 MSTI Port Configuration Configuration by Web Configuration gt Spanning Tree g
61. e leave config if no ip igmp snooping immediate leave Throttling Max Group Number config if ip igmp snooping max groups lt 1 10 gt config if no ip igmp snooping max groups IGMP Snooping VLAN Configuration Assign VLAN for IGMP Snooping config ip igmp snooping vlan lt vlan_list gt config no ip igmp snooping vlan lt vlan_list gt Configure IGMP Snooping for VLAN config if vian ip igmp snooping config if vian ip igmp snooping compatibility auto v1 v2 v3 config if vian ip igmp snooping last member query interval 0 31744 config if vian ip igmp Snooping priority 0 7 config if vian ip igmp Snooping querier election address lt ipv4_ucast gt config if vian ip igmp Snooping query interval lt 1 31744 gt config if vian ip igmp snooping query max response time lt 0 31744 gt config if vian ip igmp snooping robustness variable lt 1 255 gt config if vian ip igmp snooping unsolicited report interval lt 0 31744 gt config if vian no ip igmp snooping config if vian no ip igmp snooping compatibility config if vian no ip igmp snooping last member query interval config if vian no ip igmp snooping priority config if vian no ip igmp snooping querier election address config if vian no ip igmp snooping query interval config if vian no ip igmp snooping query max response time config if vian no ip igmp snooping robustness variable config
62. e mst max hops Transmit Hold Count config spanning tree transmit hold count lt 1 10 gt config no spanning tree transmit hold count Edge Port BPDU Filtering config spanning tree edge bpdu filter config no spanning tree edge bpdu filter Edge Port BPDU Guard config spanning tree edge bpdu guard config no spanning tree edge bpdu guard Port Error Recovery Timeout config spanning tree recovery interval lt 30 86400 gt config no spanning tree recovery interval Set the STP migration check clear spanning tree detected protocols interface port type list Status by Web Monitor gt Spanning Tree gt Bridge Status STP Bridges F Bridge ID Topology Topology IDC Port Cost Flag Change Last CSI 327b8 00 839 88 7 bb 55 324766 00 99 00 77 66 55 steady Click at this web page to get details of the settings Click the entry under MSTI Detailed Bridge Status will be shown 68 STP Detailed Bridge Status Bridge Instance CIST Bridge ID 327 60 00 99 58 7 7 66 55 Root ID 327 60 00 99 568 7 7 B5 55 Root Cost 0 Root Port Regional Root 347 60 00 99 68 7 7 66 55 Internal Root Cost Topology Flag steady Topology Change Count O Topology Change Last CIST Ports amp Aggregations State Pert Port ID Role State Path Cost Edge Point to Point Uptime Click at this web page to get details of the settings Status by
63. e settings Configuration Activate Configuration gt Maintenance gt Configuration gt Activate Activate Configuration select configuration file to activa Please note The activated confi default canfig startup confic Activate Configuration Click at this web page to get details of the settings Configuration Delete Configuration gt Maintenance gt Configuration gt Delete Delete Configuration File select configuration file to delete startup confic Delete Configuration File Click at this web page to get details of the settings Configuration by Command System Reboot reload cold Factory Default reload defaults keep ip 131 Software Upload firmware upgrade lt tftp server path and filename gt Software Image Select firmware swap Configuration Save running config to startup config Copy running config startup config Configuration Download copy startup config running config lt tftp server path and filename gt syntax check Configuration Upload copy lt tftp server path and filename gt startup config running config syntax check Configuration Activate copy startup config default config lt word gt running config Configuration Delete delete lt word gt Terminal Configuration Enable command line editing terminal editing no termi
64. e to get details of the settings Monitor gt Security gt Switch gt RMON gt History RMON History Overview Auto refresh LJ gt Start from ControlIndexO andSampleindex 0 with 20 entries per page History Sample Sample Drop Octets Pkts Broad Multi CRC Under Over Frag Jabb Coll Utilization Index Index Start cast cast Errors size size No more entries Click at the web page to get details of the settings Monitor gt Security gt Switch gt RMON gt Alarm RMON Alarm Overview Auto refresh O R start from Control Index 0 with 20 entries per page Type Alarm Threshold Index Threshold Index Nomoreenties O No more entres Click at the web page to get details of the settings Monitor gt Security gt Switch gt RMON gt Event RMON Event Overview Start from Control Index 0 and Sample Index 0 with 20 entries per page Deus Loglndex LogDescription No more entries Click at the web page to get details of the settings Status by Command show rmon alarm lt 1 65535 gt show rmon event lt 1 65535 gt show rmon history lt 1 65535 gt show rmon statistics lt 1 65535 gt 7 5 2 Security for Network Management 1 Mac ID Number Limit Control on Port configuration Limit Control allows for limiting the number of users on a given port A user is identified by
65. ec oet roe es Tor OSCR Click to create a QoS Control Entry QCE Configuration Port Members na aaa NUR DONC LITT aa eet 112 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 Key Parameters Action Parameters o iw Default v Defaut v DMAC Type Frame Type Click at this web page to get details of the settings Configuration by Command Create Edit a QoS Control Entry Setup matched DMAC config qos qce 1 256 dmac unicast multicast broadcast any Setup matched frame type config qos qce 1 256 frame typpe any 1 etype 0x600 0x71f 0x801 0x86dc 0x86de Oxffff2 any llc dsap lt O Oxff gt any ssap 0 Oxff2 any control lt O Oxff gt any snap lt O Oxffff gt any 1 Setup port members config qos qce 1 256 interface port type list Setup matched SMAC config qos qce 1 256 smac mac addr oui any Setup tag options config qos qce 1 256 tag type untagged tagged c tagged s tagged any vid vcap vr any pcp lt pcp gt any dei 0 1 any j 1 120 Setup action config qos qce 1 256 action cos 0 7 default dpl 0 1 default dscp 0 63 dscp default Place QCE before the next QCE ID config qo
66. econds Trap Inform Retry Times Trap Probe Security Engine ID Trap Security Engine ID Trap Security Name SNMP Trap Event System warm Start cold Start Link up 9 none specific all switches Interface _ Link down none specific all switches LLOP none specific all switches AAA J Authentication Fail Switch sTP Click at the web page to get details of the settings Configuration gt Security gt Switch gt SNMP gt Communities SNMPv3 Community Configuration Delete public 0 0 0 0 0 0 0 0 j i Ti ses d private 0 0 0 0 0 0 0 0 Click at the web page to get details of the settings Configuration gt Security gt Switch gt SNMP gt Users SNMPv3 User Configuration User Security Authentication Authentication Privacy Privacy TN Engide iD Name Password Protocol Click at the web page to get details of the settings 38 Auth Priv v MD5 w DES Configuration gt Security gt Switch gt SNMP gt Groups SNMPv3 Group Configuration Delete Security Model Security Name Group Name L v1 public default 10 _group v private default rw group Fi v2c public default 1o group C WC private default Iw nw group default user i i l default rw ayoup rw group Click at the web page to get d
67. ed v Disabled v Nene v Click at this web page to get details of the settings Specify ARP Inspection is enabled on which VLAN Configuration gt Security gt Network gt ARP Inspection gt VLAN Configuration VLAN Mode Configuration start from WYLAN n with 20 entries per page Click at this web page to get details of the settings Assign Static ARP Inspection Entry Configuration gt Security gt Network gt ARP Inspection gt Static Table Static ARP Inspection Table Delete Port VLANID MAC Address IP Address OD Click at this web page to get details of the settings Show Dynamic ARP Inspection Table Configuration gt Security gt Network gt ARP Inspection gt Dynamic Table Dynamic ARP Inspection Table Start from Posti VLAN 1 MAC address QO 0 00 00 00 00 and I VLAN ID MAC Address IP Address Ma mare entries Click at this web page to get details of the settings Configuration by Command Clear ARP cache clear ip arp Enable Disable ip arp inspection no ip arp inspection Check VLAN ip arp inspection check vlan no ip arp inspection check vlan Create ARP Static Entry ip arp inspection entry interface port type id lt vian_id gt lt mac_ucast gt lt ipv4_ucast gt no ip arp inspection entry interface port type id vlan id lt mac_ucast gt lt ipv4_ucast g
68. end business solution Therefore QoS is the set of techniques to manage network resources Every incoming frame is classified to a QoS class which is used throughout the device for providing queuing scheduling and congestion control guarantees to the frame according to what was configured for that specific QoS class There is a mapping between QoS class queue and priority A QoS class of O zero has the lowest priority 7 13 1 Port Ingress Classification This setting is used to configure the basic QoS Ingress Classification settings for all switch ports DSCP Based is used to enable disable doing QoS by DSCP in IP header Check it and it is enabled About DSCP classification For ingress DSCP classification configuration please refer to DSCP Based QoS page Check Trust in that page and the DSCP value will work For ingress DSCP classification translation configuration please refer to DSCP Translation and Port DSCP pages for further settings For egress DSCP remarking configuratiin please refer to Port DSCP DSCP Classification and DSCP Translation pages for further settings Configuration by Web Configuration gt QoS gt Port Classification QoS Ingress Port Classification Port QoS class DP level DSCP Based gt MI lt gt 8 d 1 bM om O 2 om oM 3 lom ow d 4 ow ow O 5 low Oly 1 5 ow bh A 7 bM ow E 8 hbm ow o Click at this web page to get detai
69. etails of the settings Configuration gt Security gt Switch gt SNMP gt Views SNMPv3 View Configuration Delete View Type OID sues F default view included Click at the web page to get details of the settings Configuration gt Security gt Switch gt SNMP gt Access SNMPv3 Access Configuration Delete Read View Name Write View Name L default ra group any NaAuth MoPriv default view w None default rw group any NoAuth MoPriv default view w default view M Click at the web page to get details of the settings Configuration by Command Enable Disable config snmp server config no snmp server Version config snmp server version v1 v2c v3 config no snmp server version Community config snmp server community v2c word1272 ro rw config snmp server community v3 lt word127 gt lt ipv4_addr gt lt ipv4_netmask gt config no snmp server community v2c config no snmp server community v3 lt word127 gt 39 Engine ID config snmp server engine id local lt word10 32 gt config no snmp server engined id local System Information config snmp server host lt word32 gt config snmp server contact lt line255 gt config snmp server location lt line255 gt config no snmp server host lt word32 gt config no snmp server contact config no snmp server location Trap confi
70. eway address to the switch first Refer to Section 6 2 1 Then use telnet lt IP gt command to connect to the switch Its operation 16 interface is the same as console interface lt lt About SNMP Management Interface gt gt If you want to use NMS to management the switch from remote site you have to set the IP NetMask Gateway address to the switch Refer to Section 6 2 1 and configure the SNMP setting of the switch first Then you can use SNMP management program to manage this switch This switch supports SNMP v1 v2c v3 agent function and MIB Il Interface Bridge MIB 802 1Q MIB and Private MIB The default GET community name is public and SET community name is private 17 7 Function Configuration 7 1 Function Brief The switch supports lots of network management functions Here are the brief of these functions 1 System a Name Contact Location Mac ID Firmware version Up time b IP Configuration c Time configuration d Log configuration Port a Speed duplex status flow control maximum packet size DHCP a DHCP Snooping b DHCP Relay Security a Security for Switch Management a Switch administrator and privilege level configuration b Authentication method for console telnet ssh http interfaces c Switch management access limitation d SSH HTTPS configuration e SNMP configuration f RMON configuration b Security for Network Access a Network connection number li
71. g snmp server trap config no snmp server trap config snmp server host lt word32 gt traps linkup linkdown Ildp no snmp server host lt word32 gt traps Users v3 config snmp server user word32 engine id word10 32 md5 word8 32 sha lt word8 40 gt priv des aes lt word8 32 gt config no snmp server user word32 engine id lt word10 32 gt Groups v3 config snmp server security to group model v1 v2c v3 name lt word32 gt group lt word32 gt config no snmp server security to group model v1 v2c v3 name word32 Views v3 config snmp server view word32 lt word255 gt include exclude config no snmp server view word32 lt word255 gt Access v3 config snmp server access lt word32 gt model v1 v2c v3 any level auth noauth priv read lt word255 gt write lt word255 gt config no snmp server access lt word32 gt model v1 v2c v3 any level auth noauth priv Status by Web Configuration gt Security gt Switch gt SNMP gt System Configuration gt Security gt Switch gt SNMP gt Trap Configuration gt Security gt Switch gt SNMP gt Communities Configuration gt Security gt Switch gt SNMP gt Users Configuration gt Security gt Switch gt SNMP gt Groups Configuration gt Sec
72. g statistics interface port type list show ip dhcp snooping table interface port type list 2 DHCP Relay DHCP Relay is used to forward and to transfer DHCP messages between the clients and the server when they are not on the same subnet domain The DHCP option 82 enables a DHCP relay agent to insert specific information into a DHCP request packets when forwarding client DHCP packets to a DHCP server and remove the specific information from a DHCP reply packets when forwarding server DHCP packets to a DHCP client The DHCP server can use this information to implement IP address or other assignment policies Specifically the option works by setting two sub options Circuit ID option 1 and Remote ID option2 The Circuit ID sub option is supposed to include information specific to which circuit the request came in on The Remote ID sub option was designed to carry information relating to the remote host end of the circuit The definition of Circuit ID in the switch is 4 bytes in length and the format is vlan id module id port no The parameter of vlan id is the first two bytes represent the VLAN ID The parameter of module id is the third byte for the module ID in standalone switch it always equal O in stackable switch it means switch ID The parameter of port no is the fourth byte and it means the port number The Remote ID is 6 bytes in length and the value is equal the DHCP relay agents MAC address Config
73. ge to get details of the settings Configuration by Command 103 Enable Disable GVRP config gvrp config no gvrp Max VLAN Number config gvrp max vlans lt 1 4095 gt config no gvrp max vlans lt 1 4095 gt GVRP Time Intervals config gvrp time join time 1 20 leave time 60 300 leave all time 1000 5000 1 config no gvrp time join time lt 1 20 gt leave time 60 300 leave all time 1000 5000 1 Enable Disable GVRP on Port config if gvrp config if no gvrp Emit a Request for test on Port config if gvrp join request vlan vlan list config if gvrp leave request vlan vlan list Status by Web Configuration gt GVRP gt Global config Configuration gt GVRP gt Port config Click at this web page to get details of the settings Status by Command show gvrp protocol state interface port type list vlan lt vlan_list gt show vlan status gvrp 104 7 13 QoS QoS is an acronym for Quality of Service It is a method to guarantee a bandwidth relationship between individual applications or protocols A communications network transports a multitude of applications and data including high quality video and delay sensitive data such as real time voice Networks must provide secure predictable measurable and sometimes guaranteed services Achieving the required QoS becomes the secret to a successful end to
74. gt 1 The switch shall be operated only in horizontal position 2 If the switch works in locations where IT power distribution system is used double pole fusing is required in building installation 3 A LAN or LAN segment with all its associated interconnected equipment shall be entirely contained within a single low voltage power distribution and within a single building The LAN is considered to be in an environment A according IEEE802 3 or environment O according IEC TR 62102 respectively Never make direct electrical connection to TNV circuits Telephone Network or WAN Wide Area Network 3 Configure Network Connection 3 1 Connecting Devices to the Switch oO Connection Guidelines For 10BaseT connection Category 3 or 5 twisted pair Ethernet cable For 100BaseTX connection Category 5 twisted pair Ethernet cable For 1000BaseTX connection Category 5e or 6 twisted pair Ethernet cable For TX cable connection always limit the cable distance to 100 meters 328 ft as defined by IEEE specification For 100 1000BaseSX LX connections you can connect long distance fiber optic cable to the switch Because this switch supports Auto MDI MDI X detection on each TX port you can use normal straight through cable for both workstation connection and hub switch cascading 3 2 Connecting to Another Ethernet Switch Hub This Switch can be connected to existing 10Mbps 100Mbps 1000Mbps hubs switches Because all TX p
75. gt IPMC Profile gt Profile Table IPMC Profile Configurations Global Profile Mode Disabled v IPMC Profile Table Setting Delete Profile Name Profile Description D e Click at this web page to get details of the settings After profile name and description are set and saved Rule can be configured Clicking e the following page will appear for adding entry Entries are created at Configuration gt IPMC Profile gt Address Entry web page IPMC Profile test Rule Settings In Precedence Order Profile Name amp Index Address Range Action Log esl 224 224 0 1 224 224 0010 Deny Disable w Se Configuration by Command Enable Disable config ipmc profile config no ipmc profile Create Delete IP Multicast Profile config ipmc profile word16 And the prompt will become config ipmc profile z config no ipmc profile lt word16 gt 74 Edit Delete IP Multicast Profile Rule config ipmc profile range lt word16 gt permit deny log next lt word16 gt config ipmc profile no range lt word16 gt lt word16 gt is the name of Address Entry Edit Delete Description of Profile config ipmc profile z description lt line64 gt config ipmc profile no description lt line64 gt Status by Web Configuration gt IPMC Profile gt Profile Table Clicking the eye icon the entry table will be sh
76. gy If network loop happens it will cause the network unstable because more and more traffic will loop in the network If network loop happens spanning tree protocol will block one connection in the loop automatically But it will also cause a period of delay 30 seconds for STP and shorter time for RSTP if any network connection is changed because of the network topology detection operation of the protocol This switch supports MSTP RSTP STP functions Configuring them for spanning tree operation is done here 1 STP Bridge Configuration Configure general spanning tree bridge operation settings here Configuration by Web Configuration gt Spanning Tree gt Bridge Settings STP Bridge Configuration Basic Settings Bridge Priority ee IA Transmit Hold Count Advanced Settings Edge Port BPDU Filtering Edge Port BPDU Guard Port Error Recovery Port Error Recovery Timeout Click at this web page to get details of the settings Configuration by Command Protocol Version config spanning tree mode stp rstp mstp config no spanning tree mode Forward Delay config spanning tree mst forward time 4 30 config no spanning tree mst forward time 67 Max Age config spanning tree mst max age lt 6 40 gt forward time lt 4 30 gt config no spanning tree mst max age Maximum Hop Count config spanning tree mst max hops lt 6 40 gt config no spanning tre
77. icast group memberships It is an integral part of the IP multicast specification like ICMP for unicast connections IGMP can be used for online video and gaming and allows more efficient use of resources when supporting these uses IGMP snooping is the process of listening to Internet Group Management Protocol IGMP network traffic The feature allows a network switch to listen in on the IGMP conversation between hosts and routers By listening to these conversations the switch maintains a map of which links need which IP multicast streams Multicasts may be filtered from the links which do not need them and thus controls which ports receive specific multicast traffic Configuration by Web Global Basic and Port Related Configuration Configuration gt IPMC gt IGMP Snooping gt Basic Configuration IGMP Snooping Configuration Global Configuration snooping Enabled E Unregistered IPhiCvd Flooding Enabled W IGMP SSM Range 2320 00 IDE Leave Proxy Enabled d Froxy Enabled Port Related Configuration Router Port Throttling nt L O0 B 2 O O unliraited w 4 oO fannie 5 d unlimited w B d unlimited Click at this web page to get details of the settings IGMP Snooping VLAN Configuration Configuration gt IPMC gt IGMP Snooping gt VLAN Configuration 80 IGMP Snooping VLAN Configuration Start from VLAN 1 with 20 entries per page VLAN Snooping Quer
78. icate with each other Configuration by Web Create Edit Private VLAN Configuration gt Private VLANs gt Membership Private VLAN Membership Configuration Auto refresh O Ref Port Members E ewe eee as PVLAN ID ee 1 v Iv v v v v v v v v v v v v v v v v v v Iv v Ev v v vi Add New Private VLAN Click at this web page to get details of the settings Edit Port Isolation Setting Configuration gt Private VLANs gt Port Isolation Port Isolation Configuration Port Number 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 24 22 23 24 25 26 0 Ae ee ee ee ae ee ae ee ee le tr Eg E Click at this web page to get details of the settings Configuration by Command Assign ports to Private VLAN config if pvlan range list config if no pvlan range list Set ports as Isolation config if pvlan isolation config if no pvlan isolation Status by Web Configuration gt Private VLANs gt Membership Configuration gt Private VLANs gt Port Isolation Click at this web page to get details of the settings Status by Command show pvlan range list 96 7 12 3 MAC based VLAN As a way of grouping VLAN members MAC address based VLAN MAC based VLAN decides the VLAN for forwarding an untagged frame based on the source MAC address of the frame Configuration by Web
79. ier RE al ORI 0 1 LLOI 0 1 URI Delete ID Enabled Election Querier Address Compatibility PRI RV sec sec sec sec Delete 0 0 0 0 IGMP Auto viiov 2 125 100 10 1 Click at this web page to get details of the settings IGMP Snooping Port Filtering Profile Configuration gt IPMC gt IGMP Snooping gt Port Filtering Profile IGMP Snooping Port Filtering Profile Configuration Port Filtering Profile 99090009 ij Click at this web page to get details of the settings Note After Profile is selected clicking the eye icon will show the profile content Configuration by Command IGMP Snooping Basic Configuration Snooping Enable Disable config ip igmp snooping config no ip igmp snooping Unregistered IPMCv4 Flooding Enable Disable config ip igmp unknown flooding config no ip igmp unknown flooding IGMP SSM Range config ip igmp ssm range lt ipv4_mcast gt 4 32 config no ip igmp ssm range Proxy Enable Disable config ip igmp host proxy config no ip igmp host proxy Leave Proxy Enable Disable config ip igmp host proxy leave proxy config no ip igmp host proxy leave proxy Port Related Basic Configuration Router Port Enable Disable config if ip igmp snooping mrouter 81 config if no ip igmp snooping mrouter Immediate Leave Enable Disable config if ip igmp snooping immediat
80. ils of the settings Ow Oo SY ome we Monitor gt LACP gt Port Statistics LACP Statistics pot _ LACP LACP 9I Received Transmitted Ille gal 0 m C uy C 9 ER to hs em OGA AAGO A O DAAA A A GGA a ee O A OcA AAAA O A A cem co Click at this web page to get details of the settings Status by Command clear lacp statistics show lacp internal statistics system id neighbour 64 7 7 Loop Protection This function is used to configure Loop Protection function Loop on port will cause packet storm in switch If Loop Protection is enabled on ports and Tx Mode is enabled the port is actively generating loop protection PDU s If loopback is found the action could be shutdown port or log it The shutdown time could be configured for some interval Configuration by Web Configuration gt Loop Protection Loop Protection Configuration General Settings Global Configuration Enable Loop Protection Dis ble Transmission Time seconds Shutdown Time 18 seconds E m B Shutdown Port Enable 2 Shutdown Port Enable v 3 Shutdown Port s Ente 4 Shutdown Port v Enable ww 5 Shutdown Port v Enable B Shutdown Pot v Enable vw T Shutdown Fort v Enable v 8 Shutdown Port vw Enable 9 Shutdown Port Enake 10 Shutdown Fort Enable v Click at this web page to get detail
81. lan vlan list last member query interval 0 317442 config mvr vlan vlan list mode dynamic compatible config mvr name word16 channel lt word16 gt dd config mvr name word16 frame priority 0 7 config mvr name word16 frame tagged config mvr name word16 igmp address lt ipv4_ucast gt config mvr name word16 last member query interval 0 31744 config mvr name word16 mode dynamic compatible config no mvr vlan vlan list config no mvr vlan vlan list channel config no mvr vlan vlan list frame priority config no mvr vlan vlan list frame tagged config no mvr vlan vlan list igmp address config no mvr vlan vlan list last member query interval config no mvr vlan vlan list mode config no mvr name word16 channel config no mvr name word16 frame priority config no mvr name word16 frame tagged config no mvr name word16 igmp address config no mvr name word16 last member query interval config no mvr name word16 mode Immediate Leave Setting on Port Enable Disable config if mvr immediate leave config if no mvr immediate leave Port Role config if mvr vlan vlan list type source receiver config if no mvr vlan vlan list type config if mvr name word16 type source receiver config if no mvr name word16 type Status by Web Monitor gt MVR gt Sta
82. list port type list show sflow 4 show sflow statistics receiver range list samplers interface range list port type list 126 7 16 Diagnostics This switch supports network connection diagnostics by ping test and TX port cable connection test Configuration by Web Ping by IPvA Configuration gt Diagnostics gt Ping ICMP Ping IP Address 00 00 Ping Length 56 Ping Count 5 Ping Interval li Click at this web page to get details of the settings Ping by IPv6 Configuration gt Diagnostics gt Ping6 ICMP v6 Ping IP Address 00000000 Ping Length 56 Ping Count 5 Ping Interval r Eqress Interface Click at this web page to get details of the settings Verify Cable Connection Configuration gt Diagnostics gt VeriPHY VeriPHY Cable Diagnostics Cable Status Click at this web page to get details of the settings 127 Configuration by Command Ping by IPvA ping ip lt word1 255 gt repeat 1 60 size lt 2 1452 gt interval 0 30 Ping by IPv6 ping ipv6 lt ipv6_addr gt repeat 1 60 size lt 2 1452 gt interval 0 30 interface vlan lt vlan_id gt Verify Cable Connection show interface port type list veriphy Status by Web Ping by IPvA Configuration gt Diagnostics gt Ping Click at this web page to
83. ls of the settings Configuration by Command Port Ingress QoS Class 105 config if qos cos 0 7 config if no qos cos Port Ingress DPL config if qos dpl dpl config if no qos dpl Enable Disable DSCP QoS on Port config if qos trust dscp config if no qos trust dscp Status by Web Configuration gt QoS Port Classification Click at this web page to get details of the settings Status by Command show qos interface port type list 106 7 13 2 Port Ingress Policers This setting is used to configure Port Ingress Rate Limit If flow control is enabled and the port is in flow control mode then pause frames are sent instead of discarding frames when limit rate is reached Configuration by Web Configuration gt QoS gt Port Policing QoS Ingress Port Policers E 50 e iW F 1 o w kM 2 o 500 he v BE 500 kes v 4 O 59 Es vj 5 m 500 kors w 6 500 kbps E 6D 500 kees 8 O o kbps Click at this web page to get details of the settings Configuration by Command Port Ingress Policer config if qos policer lt uint gt fps flowcontrol config if no qos policer Status by Web Configuration gt QoS gt Port Policing Click at this web page to get details of the settings Status by Command show qos interface port type list 107 7 13 3
84. ls of the settings HTTPS Configuration gt Security gt Switch gt HTTPS Click at this web page to get details of the settings Status by Command SSH show ip ssh HTTPS show ip http server secure status 5 SNMP configuration SNMP is an acronym for Simple Network Management Protocol It is part of the Transmission Control Protocol Internet Protocol TCP IP protocol for network management SNMP allow diverse network objects to participate in a network management architecture It enables network management systems to learn network problems by receiving traps or change notices from network devices implementing SNMP Configuration by Web Configuration gt Security gt Switch gt SNMP System 36 SNMP System Configuration Mode Version Read Community public as Engine ID ALTE Click at the web page to get details of the settings Configuration gt Security gt Switch gt SNMP gt Trap Trap Configuration Global Settings Mode Disabled Trap Destination Configurations Delete Destination Address Destination Port Add New Entrv Click Add New Entry The following page will appear 37 SNMP Trap Configuration Trap Contig Name Trap Mode Disabled Trap Version SNMP vac Trap Community Public Trap Destination Address Trap Destination Port Trap Inform Mode Trap Inform Timeout s
85. lt 2147483648 2147483647 gt lt 0 65535 gt falling threshold lt 2147483648 2147483647 gt 0 65535 rising falling both config no rmon alarm lt 1 65535 gt Create a History Entry config rmon collection history lt 1 65535 gt buckets lt 1 65535 gt interval lt 1 3600 gt config no rmon collection history lt 1 65535 gt Create a Statistics Entry config rmon collection stats lt 1 65535 gt config no rmon collection stats lt 1 65535 gt Create an Event Entry config rmon event lt 1 65535 gt log trap lt word127 gt description lt line127 gt config no rmon event lt 1 65535 gt Status by Web Configuration gt Security gt Switch gt RMON gt Statistics Configuration gt Security gt Switch gt RMON gt History Configuration gt Security gt Switch gt RMON gt Alarm Configuration gt Security gt Switch gt RMON gt Event Monitor gt Security gt Switch gt RMON gt Statistics RMON Statistics Status Overview Auto refresh C gt gt Start from Control Index 0 with 20 entries per page 65 128 256 512 1024 64 Under Over Bytes 427 255 511 1023 1588 size size Broad Multi ID Source Drop Octets Pkts Frag Jabb Coll No more entries 42 Click at the web pag
86. lt ipv4_addr gt to lt ipv4_addr gt web snmp telnet all config no access management config no access management lt 1 16 gt Status by Web Configuration gt Security gt Switch gt Access Management Click at this web page to get details of the settings Monitor gt Security gt Access Management Statistics Access Management Statistics Interface Received Packets Allowed Packets Discarded Packets Click at this web page to get details of the settings Status by Command show access management statistics lt 1 16 gt clear access management statistics 4 SSH HTTPS configuration This function is used to enabled disable SSH and HTTPS security functions Configuration by Web SSH Configuration gt Security gt Switch gt SSH SSH Configuration Click at this web page to get details of the settings 35 HTTPS Configuration gt Security gt Switch gt HTTPS HTTPS Configuration Click at this web page to get details of the settings Configuration by Command SSH config ip ssh config no ip ssh HTTPS config ip http secure redirect config ip http secure server config no ip http secure redirect config no ip http secure server Status by Web SSH Configuration gt Security gt Switch gt SSH Click at this web page to get detai
87. mit on port b 802 1x network access configuration c ACL configuration d DHCP snooping and reply configuration e IP source guard configuration f ARP inspection configuration AAA a RADIUS and TACACS servers configuration Aggregation a Static trunk configuration b LACP configuration Loop protection a Loop protection configuration Spanning Tree a Spanning tree configuration 18 10 11 12 13 14 15 16 IP Multicast a IP multicast profile b IGMP snooping configuration c MLD snooping configuration d MVR LLDP a LLDP configuration Mac Table a Aging time learning secure settings b Static Mac ID assignment VLAN 802 1Q VLAN configuration Private VLAN configuration Port isolation configuration Mac based Protocol based IP Subnet based VLAN configuration Voice VLAN configuration GVRP configuration 0ococop o o Port default QoS configuration Port ingress policing and egress shaping configuration Egress scheduling configuration Egress tag remarking DSCP QoS translation classification configuration Storm control configuration WRED configuration Q 7 0o000O09mgm Q Mirroring a Port Mirroring configuration sFlow a sFlow configuration Diagnostics a Ping function b VeriPHY function Maintenance a Restart switch b Restore factory default c Software update d Configuration upload restore 19 7 2 System Configuration This functi
88. nal editing Set the EXEC timeout terminal exec timeout 0 1440 lt 0 3600 gt no terminal exec timeout Description of the interactive help system terminal help Control the command history function terminal history size 0 32 no terminal history size Set number of lines on a screen terminal length lt 0 3 512 gt no terminal length Set width of the display terminal terminal width lt 0 40 512 gt no terminal width Status by Web System Reboot Configuration gt Maintenance gt Restart Device Click at this web page to get details of the settings Factory Default Configuration gt Maintenance gt Factory Defaults Click at this web page to get details of the settings Software Upload Configuration gt Maintenance gt Software gt Upload 132 Click at this web page to get details of the settings Software Image Select Configuration gt Maintenance gt Software gt Image Select Click at this web page to get details of the settings Configuration Save running config to startup config Configuration gt Maintenance gt Configuration gt Save startup config Click at this web page to get details of the settings Configuration Download Configuration gt Maintenance gt Configuration gt Download Click at this web page to get details of the se
89. nation depending on whether port based or port and protocol based VLAN classification is being used Each frame must be distinguishable as being within exactly one VLAN A frame in the VLAN aware portion of the network that does not contain a VLAN tag is assumed to be flowing on the native or default VLAN Configuration by Web Configuration gt VLANs Global VLAN Configuration Existing VLANs 1 Ethertype for Custom S ports 8845 Port VLAN Configuration e we s ree Tis ot oa NUS VLAN yP Filtering Trunking Acceptance Tagging VLANs VLANs m 1 lt gt v Fi lt gt w lt gt wii lt gt Access L Access Access Access Access Access Access Access Access SPO HN MOM ek wD SHS ISSN SIS INNIS EI _ Access Click at this web page to get details of the settings Configuration by Command Add Delete a VLAN config vlan vlan list config no vlan vlan list Ethertype for Custom S ports config vlan ethertype s custom port lt Ox0600 Oxffff gt 93 config no vlan ethertype s custom port lt OxO600 Oxffff gt Port VLAN Configuration Port Mode config if switchport mode access trunk hybrid config if no switchport mode Port VLAN ID If port is in Access mode config if switchport access vlan vlan id config if no switchport access vlan If port is in Trunk mode config if switchport tr
90. ne And exit command can leave this mode If settings for port interface command is used And the prompt will become config interface GigabitEthernet 1 5 config if GigabitEthernet 1 5 means Gigabit Ethernet interface 1 port 5 And exit 12 command can leave this mode interface command has another sub command vlan IP address of the switch can be configured in this mode config interface vian 10 config if vlan z lt lt Function Keys gt gt Here is the function keys for console interface Tab key this key can help to get the full command keyword with just several beginning letters For example his Tab will get the full history command word Esc key this key can use to break message display and go back to command prompt Up Arrow key this key can get last input command Down Arrow key this key can get next input command Left Arrow Right Arrow key the key can move the cursor Backspace key this key can delete the letter in front of cursor key this key can get the command list lt lt Command Mode gt gt There are four command modes for console interface 1 General Basic Commands These are basic commands after login Users can show switch configuration status ping network device reboot switch The prompt is I 2 Configure Mode Commands With configure terminal command user can enter Configure Mode Commands in Configuri
91. nfiguration Configuration gt IPMC gt MLD Snooping gt VLAN Configuration MLD Snooping VLAN Configuration Start from VLAN 1 with 20 entries per page QRI 0 1 LLOI 0 1 sec sec 125 100 10 1 Click at this web page to get details of the settings MLD Snooping Port Filtering Profile Configuration gt IPMC gt MLD Snooping gt Port Filtering Profile MLD Snooping Port Filtering Profile Configuration 1 de k 4 k 4 4 9999999 C tc amp to M 84 Click at this web page to get details of the settings Note After Profile is selected clicking the eye icon will show the profile content Configuration by Command MLD Snooping Basic Configuration Snooping Enable Disable config ipv6 mld snooping config no ipv6 mld snooping Unregistered IPMCv6 Flooding Enable Disable config ipv6 mld unknown flooding config no ipv6 mid unknown flooding MLD SSM Range config ipv6 mld ssm range ipv6 mcast 8 128 config no ipv6 mld ssm range Proxy Enable Disable config ipv6 mld host proxy config no ipv6 mld host proxy Leave Proxy Enable Disable config ipv6 mld host proxy leave proxy config no ipv6 mld host proxy leave proxy Port Related Basic Configuration Router Port Enable Disable config if ipv6 mld snooping mrouter config if no ipv6 mid snooping mrouter Immediate Leave
92. ng Mode are for general switch settings And its prompt is config 3 Interface Configuring Commands for Port VLAN Group If the settings are for ports it is done with interface GigabitEthernet 1 x command in configure mode And the prompt will become config if For example interface ethernet 1 5 is for settings on Port 5 If the settings are for VLAN group it is done with interface vian x command in configure mode And the prompt will become config if vian For example interface vlan 100 is for settings on VLAN 100 4 VLAN Configuring Commands If the settings are general VLAN settings it is done with vlan x command in configure mode And its prompt will become config vlan Z 13 lt lt Save Configuration gt gt Remember to do save after configuration is done with the following command copy running config startup config 14 6 2 Web Telnet and SNMP Interfaces 6 2 1 Web Interface Connection Users can manage the switch with Http Web Browser connection The default IP setting is 192 168 1 1 and NetMask 255 255 255 0 The default IP Gateway Is 192 168 1 254 Before http connection IP address configuration of the switch could be changed first 1 2 3 Please follow the instruction in Section 6 1 to complete the console connection Login in with admin password is also admin by default Use show ip interface brief command to check IP address of the switch
93. ns can meet most of the management request for current network 1 1 Package Contents One Gigabit Management Fiber Optic Switch One AC power cord for AC power model only One console cable Two rack mount kits and screws This user s manual 2 Where To Place the Switch This Switch can be placed on a flat surface your desk shelf or table Place the Switch at a location with these connection considerations in mind The switch configuration does not break the rules as specified in Section 3 The switch is accessible and cables can be connected easily to it The cables connected to the switch are away from sources of electrical interference such as radio computer monitor and light fixtures There is sufficient space surrounding the switch to allow for proper ventilation the switch may not function according to specifications beyond the temperature range of O to 50 degrees C You can install the switch on a 19 rack with rack mount kits as the picture _ lt lt Rack Mount Installation gt gt Before rack mounting the switch please pay attention to the following factors 1 Temperature Because the temperature in a rack assembly could be higher than the ambient room temperature check that the rack environment temperature is within the specified operating temperature range Please refer to Product Specification
94. o odes 26 Ar DEP dede n nv a Ea LL ate aseens 29 FO SECURITY CGONEIGUBA TION a cectuacsededuaedeesesesteedvtei kt ev dbut sus rds edet reda eiue 32 7 5 1 Security for Switch Management cesses 32 7 5 2 Security for Network MandgemMentt cseeesssccceccececceaseesssesseeeees 44 7 5 3 Security for AAA Server Configuration eese 58 70 AGGREGATION 5 eese notes sdlusebd oido eit br en Sr Eo aot M bus 62 1 LOOP PRO VEC TION 3 desees scia celos tecti dc ea a osM caa ca eod ciere Cod 65 Eod M Eig TIT M C Em 67 79 IP MIUIZEICAAS Tresana ol nce Ie io ee ote Sahne hee Tote t Cb dtt 74 AIF IP MUCAS t PrO e sessio Sem eI dis vede ie rie P pent 74 UD te M ME E MD M EI eee I7 Ll MAC TABE Saree ie e aed et Mateo Oe ee E 91 TAIA NEAN Rem 93 VENDU DI DEOR T mE 93 PAZ APT IVGUC VLAN S saco Sarriecsnn E EEHE SUD READS E M ERU eere es NU CE 96 712 4 PrOtOCOIsD sed VLAN Li Done ht en DN ES 98 4 12 5 IP Subnet based VLAN onset ebondebscs e Sanit uto Ub di RS eds 100 512 0 VOICE VLAN ces chet vores deena eiae d Doris Suh ep uses s Pi lutoI aus coconut 101 TaD TIN PRE oT 103 Vid bo Ml Glo p Tr 105 713 1 Port Ingress Classica ON sante ena Io iste bre dn vetus Ma een UE 105 PAS Port Ingress POCO Sianna t uisi tute aee o de Meat 107 7 13 3 Port and Queue Egress Shapers essen 108 713 4 Pont Egress SCHCGUICNS 2 cessat n i t a a e tedens 110 7 13 5 Po
95. on covers the following items for switch setup 1 Name Contact Location Mac ID Firmware version Up time Configuration by Web Configuration gt System gt Information system Information Configuration Click at this web page to get details of the settings Configuration by Command System Name config hostname lt word32 gt config no hostname System Contact config snmp server contact lt line255 gt config no snmp server contact System Location config snmp server location lt line255 gt config no snmp server location Status by Web Monitor gt System gt Information System Information Contact Name Location Hardware MAC Address 00 99 88 77 66 55 Time System Date 1970 01 01 01 43 17 00 00 System Uptime Od 01 43 17 Software Software Version 246427106 Wer 1 00 01 Software Date 2013 11 05713 43 40408 00 Click at this web page to get details of the settings Status by Command 20 show version 2 IP configuration This switch supports L3 routing function It could be enabled at Mode setting In Host mode IP traffic between interfaces will not be routed In Router mode traffic is routed between all interfaces Gateway of the IP configuration is set at IP Route Configuration by Web Configuration gt System gt IP IP Configuration Mode Router v DNS Server No DNS server s DNS Proxy O IP Interfa
96. orts on the Switch support Auto MDI MDI X function you can connect from any TX port of the Switch to the MDI or MDI X port of another hub switch with Straight Through or Crossover cables f the switches have fiber optic ports you can cascade them with fiber optic cable EUM EEP Another Switch Fiber Optic cable 3 3 Application A switch can be used to overcome the hub to hub connectivity limitations as well as improve overall network performance Switches make intelligent decisions about where to send network traffic based on the destination address of the packet As a result the switch can significantly reduce unnecessary traffic The example below demonstrates the switch ability to segment the network The number of nodes on each segment is reduced thereby minimizing network contention collisions and boosting the available bandwidth per port With Management function of the switch network administrator is easy to monitor network status and configure for different applications L File Server FZ E 1 File Server Switch EN Serin TH FRE PowerU ser V Workgroup Workgroup 4 Adding Module 4 1 Adding SFP Module This switch supports SFP for 100 1000SX LX modules connectors for fiber optic connection Because the SFP slots support hot swap function you can plug unplug SFP transceiver to from the SFP slot directly The switch can auto detect the fiber optic connection from SFP slo
97. ow collector port receiver range list Timeout Interval config sflow timeout receiver range list 0 2147483647 125 config no sflow timeout receiver range list Max Datagram Size config sflow max datagram size receiver range list 200 1468 config no sflow max datagram size receiver range list Configuration on Port Counter Poller config if sflow counter poll interval sampler range list lt 1 3600 gt config if no sflow counter poll interval range list Flow Sampler Enable Disable config if sflow range list config if no sflow range list Flow Sampler Max Size config if sflow max sampling size sampler range list 14 200 config if no sflow max sampling size sampler range list Flow Sampler Sampling Rate config if sflow sampling rate sampler range list lt 1 4294967295 gt Status by Web Monitor gt SFlow sFlow Statistics Al Receiver Statistics wner znane IP Address Hostname 0 0 0 0 Timeout Tx Successes Tx Errors Flow Samples 0 0 0 Counter Samples 0 Port Statistics Rx Flow Samples Tx Flow Samples Counter Samples mime ohm c e e e a coceocc cocco Click at this web page to get details of the settings Status by Command clear sflow statistics receiver range list samplers interface range
98. own IPMC Profile test Rule Settings In Precedence Order Profile Name amp Index Address Range Action Log test test 244 7244 0 1 224 224 0 10 Deny Disable Status by Command show ipmc profile lt word16 gt detail 2 Address Entry Configuration by Web Configuration gt IPMC Profile gt Address Entry IPMC Profile Address Configuration Refresh Navigate Address Entry Setting in IPMC Profile by 20 entries per page Delete Entry Name Start Address End Address test01 224 224 0 1 224 224 0 10 Add New Address Range Entry Click at this web page to get details of the settings Configuration by Command Create Delete IP Multicast Address Entry for Profile config ipmc range lt wordi6 gt lt ipv4_mcast gt lt ipv4_mcast gt lt ipv6_mcast gt lt ipv6_mcast gt config no ipmc range lt word16 gt Status by Web Configuration gt IPMC Profile gt Address Entry Click at this web page to get details of the settings Status by Command show ipmc range word16 75 76 7 9 2 MVR The MVR feature enables multicast traffic forwarding on the Multicast VLANs In a multicast television application a PC or a network television or a set top box can receive the multicast stream Multiple set top boxes or PCs can be connected to one subscriber port which is a switch port configured as an MVR receiver po
99. plication the Buyer shall indemnify and hold CTC Union Technologies and its officers employees subsidiaries affiliates and distributors harmless against all claims costs damages expenses and reasonable attorney fees arising out of either directly or indirectly any claim of personal injury or death that may be associated with such unintended or unauthorized use even if such claim alleges that CTC Union Technologies was negligent regarding the design or manufacture of said product WARNING This equipment has been tested and found to comply with the limits for a Class A digital device pursuant to Part 15 of the FCC Rules These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial environment This equipment generates uses and can radiate radio frequency energy and if not installed and used in accordance with the instruction manual may cause harmful interference in which case the user will be required to correct the interference at his own expense NOTICE 1 The changes or modifications not expressively approved by the party responsible for compliance could void the user s authority to operate the equipment 2 Shielded interface cables and AC power cord if any must be used in order to comply with the emission limits CISPR PUB 22 Class A COMPLIANCE This device complies with EMC directive of the European Community and meets or exceeds the following technical
100. rity gt AAA gt RADIUS RADIUS Server Configuration Global Configuration 3 times minutes NAS IP Address NAS IPv6 Address _ NAS Identifier Server Configuration elete imeout Del Ti 1812 1813 Click at this web page to get details of the settings Configuration by Command Global Configuration config radius server attribute 32 lt line1 255 gt config radius server attribute 4 lt ipv4_ucast gt config radius server attribute 95 lt ipv6_ucast gt config radius server deadtime lt 1 1440 gt config radius server key lt line1 63 gt config radius server retransmit lt 1 1000 gt config radius server timeout lt 1 1000 gt config no radius server attribute 32 config no radius server attribute 4 config no radius server attribute 95 config no radius server deadtime config no radius server key config no radius server retransmit config no radius server timeout Server Configuration config radius server host lt word1 255 gt ipv4 ucast ipv6 ucast gt auth port 0 65535 acct port 0 65535 timeout lt 1 1000 gt retransmit o0 lt 1 1000 gt key lt line1 63 gt config no radius server host lt word1 255 gt lt ipv4_ucast gt ipv6 ucast auth port 0 65535 acct port 0 65535 Status by Web Monitor gt Security gt AAA gt RADIUS Overview RADIUS Authentication
101. rt When a subscriber selects a channel the set top box or PC sends an IGMP MLD report message to Switch A to join the appropriate multicast group address Uplink ports that send and receive multicast data to and from the multicast VLAN are called MVR source ports It is allowed to create at maximum 4 MVR VLANs with corresponding channel profile for each Multicast VLAN The channel profile is defined by the IPMC Profile which provides the filtering conditions Configuration by Web Configuration gt MVR MVR Configurations MVR Mode Disabled ww VLAN Interface Setting Role EInactive S Source R Receiver Delete MVR VID IGMP Address Delete 0 0 0 0 Dynamic v Tagged w 0 sel v Pot 12 3 4 56 7 8 9 10 1112 13 14 15 16 17 18 19 20 2122 23 24 25 26 Role Add New MVR VLAN Immediate Leave Setting Port Immediate Leave ui lt gt v Disabled v Disabled ww Disabled Disabled Ul Disabled w Disabled v Click gt at this web page to get details of the settings Cg y 4 C hl Configuration by Command Enable Disable config mvr config no mvr VLAN Interface Setting config mvr vlan vlan list name word16 config mvr vlan vlan list channel lt word16 gt config mvr vlan vlan list frame priority 0 7 config mvr vlan vlan list frame tagged config mvr vlan vlan list igmp address lt ipv4_ucast gt config mvr v
102. rt Egress Tag Remarking cessere 112 1 90 Port DSCP Configuration oso ed acd beetle 114 7 13 7 DSCP to Internal Priority Mapping Ingress 116 7 13 8 DSCP Ingress Translation and Egress Remap 117 7 13 9 Internal Priority to DSCP Mapping Egress 119 Z 90 OOS CoOhIFol DISC cce enr Ee Eo EE S ped 120 PAB EE POPE Storm GONE O lige a ipe d madura as tet ID MTM E MU 122 7 13 12 Weighted Random Early Detection Configuration 123 GA PORT WHRRORING oos tr roter tui direi DeeMas quVelats e me TOS fab ess 124 JS ES SOW ae Se erasers aise acetate re oct tiros dcr tated oes loup aa ien does 125 FEO ATG NOS TIC Seinen tans cda o MEA Dp Pe Pen M M ELA M RU I 127 A MAINTENANCE os tate arate E E ci Ld ra 129 8 SOFTWARE UPDATE AND BACKUP ccccssssssssccssssssscccsssssssceees 134 A PRODUCT HARDWARE SPECIFICATIONS eee creen eee 135 B PRODUCT SOFTWARE SPECIFICATIONS eee e eee eee nenne 137 C COMPLIANCE S in ioneidvuato ee pe atero io e ET edd tei sees unn 139 D WARRANTY itti o a ttai re fola ies 140 1 Introduction This Gigabit Management Fiber Optic Switch is a Layer 2 Management switch with lots of advanced network functions Console is supported for command line settings Web Telnet and SNMP interfaces are for remote switch management through network These functio
103. s 127 0 0 1 32 127 0 0 1 lt UP HOST 182 158 1 0 24 VLAN lt UP H RT 224 0 0 04 127 0 0 1 lt UP gt i3 PNIS 2 zUuP HOST Neighbour cache IP Address Link Address 192 166 1 95 VLARNT DU Of fe 11 88 1b feo 2 299 bot fer 6655 VLANT OD 38 B8 7 7 56 55 Click at this web page to get details of the settings Status by Command Show IP Address show ip interface brief show ipv6 interface vlan vlan list brief statistics Show IP Routing Table show ip route show ipv6 route interface vlan vlan list 3 Time configuration This switch can get time from NTP server and supports Time Zone and Daylight Saving setting Configuration by Web Configuration gt System gt NTP 22 NTP Configuration Click at this web page to get details of the settings Configuration gt System gt Time Time Zone Configuration Daylight Saving Time Configuration Dise v 00 1440 Minutes Click at this web page to get details of the settings Configuration by Command NTP config ntp enable config ntp server 1 5 ip address lt ipv4_ucast gt ipv6 ucast hostname config no ntp enable config no ntp server 1 5 23 Daylight Saving Time config clock summer time word16 date 1 12 1 31 2000 2097 hhmm 1 12 1 31 2000 2097 lt hhmm gt lt 1 1440 gt
104. s in the manual Air flow is necessary in a rack for temperature stable 2 Mechanical Loading Do not place any equipment on top of this rack mounted switch 3 Circuit Overloading Be sure that the supply circuit to the rack assembly is not overload after installing this switch 4 Grounding Rack mounted equipment should be properly and well grounded Particular attention should be given to supply connections other than direct connections to the mains Attach Rack Mount Brackets to the Switch ie ae loef 30 1 Position a Rack Mount Bracket on one side of the Switch 2 Line up the screw holes on the bracket with the screw holes on the side of the switch 3 Use a screwdriver to install the M3 flat head screws through the mounting bracket holes into the switch There could have two or four screws for one bracket That depends on the model that installed 4 Repeat Step 1 3 to install another bracket to the switch 5 Now it is ready to mount to a rack Mount the Switch on a Rack Tom 1 Position a bracket that is already attached to the switch on one side of the rack 2 Line up the screw holes on the bracket with the screw holes on the side of the rack 3 Use a screwdriver to install the rack screws through the mounting bracket holes into the rack 4 Repeat Step 1 3 to attach another bracket that is already attached to the switch on another side of the rack lt lt Safety Note for Installation gt
105. s of the settings Configuration by Command Global Enable Disable config loop protect config no loop protect Global Transmission Time config loop protect transmit time lt 1 10 gt config no loop protect transmit time Global Shutdown Time config loop protect shutdown time lt 0 604800 gt 65 config no loop protect shutdown time Port Loop Protection Enable Disable config if loop protect config if no loop protect Port Action if loop detected config if loop protect action shutdown log config if no loop protect action Port Actively Generate PDUs config if loop protect tx mode config if no loop protect tx mode Status by Web Monitor gt Loop Protection Loop Protection Status BS ne rt ERG RES Sa SEB Shutdown Enabled O Down B Shutdown Enabled 0 Down 3 Shutdown Enabled 0 Down 4 Shutdown Enabled 0 Down 5 shutdown Enabled 0 Down b Shutdown Enabled 0 Down y Shutdown Enabled 0 Down B Shutdown Enabled 0 Down g Shutdown Enabled 0 Down 10 Shutdown Enabled 0 Down 11 Shutdown Enabled 0 Down Ta Shutdown Enabled 0 Down 13 Shutdown Enabled 0 Down 14 shutdown Enabled O Down 15 shutdown Enabled 0 Down 16 Shutdown Enabled 0 Down Click at this web page to get details of the Sob ads Status by Command show loop protect interface port type list 66 7 8 Spanning Tree Spanning tree is a protocol to prevent network loop in network topolo
106. s qce 1 256 next lt uint gt Place QCE at the end config qos qce 1 256 last Delete a QoS Control Entry config no qos qce 1 256 Refresh OCE tables in hardware config qos qce refresh Status by Web Configuration gt QoS gt QoS Control List Click at this web page to get details of the settings Status by Command show qos qce 1 256 121 7 13 11 Port Storm Control This setting allows you to configure the storm control settings for all switch ports There is a storm rate control for unicast frames broadcast frames and unknown flooded frames Configuration by Web Configuration gt QoS gt Storm Control QoS Port Storm Control Port Unicast Frames Enabled Enabled Enabled Rate Unt 50 o 500 o 50 o M FE xo ks B o 500 kbps w o os ISI 2 500 kbps 500 kbps ov 1 500 kbps j 3 D 5 kms v O 00 kos v 50 xes v 4 g 500 kbps 500 kbps v 500 kbps v 5 500 kbps v g 500 kbps 500 kbps B8 r s m iw D 500 keps v O 350 ks v pa 7 500 kbps v O 500 kbps v 500 kbps v 8 500 kbps v 500 kbps v 500 kbps 9 500 kbps vj 500 kors M 500 Kis v 10 500 kbps v Fi 500 kbps v 500 kbps v Click at this web page
107. se eee tree n ore e enano 7 3 1 CONNECTING DEVICES TO THE SWITCH misine i HA EM EE exerts 7 3 2 CONNECTING TO ANOTHER ETHERNET SWITCH HUB cseeeeeeeeeeeeeeees 7 9 9 APPLICA TION oren T Rene ne NRN ane ee 8 4 ADDING MODUL Bisississicccssicciicccscicascecsessdsassnsevaiseccesaesseccsdsdessdssussseavecsebeass 9 2L ADDING SEP MODUEB tttm ni iav andar itn sia ea te Ma Med 9 4 2 ADDING DC POWER MODULE 5 sauber EeE ira PERCHE FERT FERRE FARE ros URUN DUE EE 9 5 LEDS CONDITIONS DEPFINITIONN 4 eee eee eee o na naso e an eaae e aun 10 6 MANAGEMENT CONNEGCTION 4 eese eae o to io ene ovo a sauna saab rne n aea e Reagan 11 6 1 CONSOLE INTERFACE AND COMMAND LINE BRIEF eese 11 6 1 1 Console Interface GONMCCHON as uper xus Ee AR RES IERdED afe 11 012 Command Line BU aks auae ete oU A enti iuis 11 6 2 WEB TELNET AND SNMP INTERFACES eee vn anne sa apa pa re TE rane nl ue 15 6 2 1 Web Interface Connection cesses eene nnns 15 6 2 2 Telnet and SNMP Interface Connection eseeeeeeeeeees 16 7 FUNCTION GONFIGURATION 5 5 tetti vov eoe I ere eo Cos puer voee aea era aevo pas 18 ob JEON GAO NTS RUB bodes oneri o teneat Ces ra iau tdt S ose Ed Dea oT Mud eter epa eiits 18 732 SYSTEM 4 CONEIGURATION 5c 1cuve coeses Coca ee ub ctu EE Sete eda heces bes sea de una aan 20 13 PORT CONFIGURA TION 4o ei nann Cheat e OE oq Te cu HOUR eain d
108. standard EN 55022 Limits and Methods of Measurement of Radio Interference Characteristics of Information Technology Equipment This device complies with CISPR Class A WARNING This is a Class A product In a domestic environment this product may cause radio interference in which case the user may be required to take adequate measures CE NOTICE Marking by the symbol CE indicates compliance of this equipment to the EMC directive of the European Community Such marking is indicative that this equipment meets or exceeds the following technical standards EN 55022 2006 A1 2007 Class A EN55024 2010 and EN60950 1 2006 Version 1 0 December 2013 About this manual This manual is a general manual for different models of our Gigabit Management Fiber Optic Switch They are similar in operation but have different hardware configurations These models are 1 24 SFP 4 TX combo ports model This model supports twenty four SFP ports and four share TX ports Port 21 24 are 1000TX RJ45 port SFP port optional for Gigabit connection And they can auto detect the connection from 1000TX RJ45 port or SFP port Contents 1 INIRODUGLEIO N 5eeeseteesesyerob epos vasos ue oup eap oco t o ee ero n rae NN Ya sacesssusasessacccaseaees 3 Ip sPACKAGE CONTENT Statist aside dud a bed bu area 3 2 WHERE TO PLACE THE SWIICH 22 2 2 e e eee oso beo o o tono seo eso rues osse 4 3 CONFIGURE NETWORK CONNECTION eeeee ee
109. t Follow the steps for module adding and removing Add SFP Transceiver 1 Plug in the SFP Transceiver to SFP slot directly 2 Connect network cable to the SFP Transceiver If the connected devices are working the Link Act LED will be ON Remove SFP Transceiver Unplug the SFP Transceiver from SFP slot directly 4 2 Adding DC Power Module This switch supports AC DC dual power inputs The DC power module could be not installed when the switch is shipped And the DC power module can be installed with the following steps Power OFF the switch first Remove the DC power module slot cover at rear side of the switch Plug in the DC power module Fix it to switch with screws Connection AC DC power to the switch oO If both AC and DC powers are connected to the switch AC power has higher priority to deliver power to switch DC power will deliver power to switch when AC power is not available 5 LEDs Conditions Definition The LEDs provide useful information about the switch and the status of all individual ports For 24 GE Model STATUS CONDITION OFF Switch is power OFF 10 6 Management Connection 6 1 Console Interface and Command Line Brief 6 1 1 Console Interface Connection lt lt Enter Console Interface gt gt Please follow the steps to complete the console hardware connection first 1 Connect from console port of the switch to COM port of PC with the console cable 2 Start the
110. t Logging ip arp inspection logging deny permit all no ip arp inspection logging ip arp inspection vlan vlan list logging deny permit all no ip arp inspection vlan vlan list logging Specify ARP Inspection is enabled on which VLAN ip arp inspection vlan vlan list no ip arp inspection vlan vlan list ip arp inspection trust no ip arp inspection trust Translate Dynamic to Static ip arp inspection translate interface port type id vlan id mac ucast lt ipv4_ucast gt Status by Web 56 Monitor gt Security gt Network gt ARP Inspection Dynamic ARP Inspection Table Start from Pet VLAN I MAC address 00 0 VLAN ID MAC Address IP Address Click at this web page to get details of the settings Status by Command show ip arp show ip arp inspection interface lt port_type_list gt vlan lt vlan_list gt show ip arp inspection entry dhcp snooping static interface port type list syl 7 5 3 Security for AAA Server Configuration 1 RADIUS Server configuration RADIUS is an acronym for Remote Authentication Dial In User Service It isa networking protocol that provides centralized access authorization and accounting management for people or computers to connect and use a network service RADIUS Server is a server that provides such services Configuration by Web Configuration gt Secu
111. t MSTI Ports MSTI Port Configuration Select a MSTI and click Get The port configuration page for the MSTI will appear 72 MST1 MSTI Port Configuration MSTI Aggregated Ports Configuration Porn Path Cost Priority lo BL b 1 Auto 4 128 2 amp wo 128 v 3 amp wo W 128 4 Auto v 128 iw 5 Awo 128 v L Click at this web page to get details of the settings Configuration by Command Path Cost config if spanning tree mst 0 7 cost lt 1 200000000 gt auto config if no spanning tree mst lt 0 7 gt cost Port Priority config if spanning tree mst lt 0 7 gt port priority 0 240 config if no spanning tree mst lt 0 7 gt port priority Status by Web Configuration gt Spanning Tree gt MSTI Ports Click at this web page to get details of the settings Status by Command show spanning tree mst lt 0 7 gt interface lt port_type_list gt 73 7 9 IP Multicast IP multicast is a method of sending Internet Protocol IP datagrams to a group of interested receivers in a single transmission It is often employed for streaming media applications on the Internet and private networks 7 9 1 IP Multicast Profile 1 Profile Table IPMC Profile is an acronym for IP MultiCast Profile IPMC Profile is used to deploy the access control on IP multicast streams Configuration by Web Configuration
112. terminal program of Windows Create a new connection and select COM port of PC used for the console Set the configuration of the terminal as 115200 8 N 1 You can find the terminal program in Start gt Programs gt Accessory Programs gt Communication gt Terminal If you cannot find it please install it from your Windows Installation Disk Please refer to your Windows user manual for the installation 3 Power on the switch If everything is correct the booting screen will appear in the terminal program when the switch is powered on It will stop at the following screen after some initializing messages M25PXX Init device with JEDEC ID 0xC22018 Jaguar 1 board detected V8SC7460 Rev B TRUM d T P L AEE ET Image loaded from 0x80040000 0x809903e4 RedBoot gt go press ENTER to get started Press lt ENTER gt and Username and Password will be asked admin admin is the default Username and Password for the switch 6 1 2 Command Line Brief lt lt Previlege Levels for Users gt gt There are fifteen previlege levels for users of the switch Use username command in system configure mode under prompt config to create users The system default user is admin with password admin and previlege level 15 user previlege level The default user name and password is admin admin with previlege level 15 And users with different previlege level could be created with
113. tistics MVR Statistics Auto refresh C Clear VLAN ID IGMP MLD IGMP MLD IGMPv1 IGMPv2 MLDv1 IGMPv3 MLDv2 IGMPv2 MLDv1 Queries Received Queries Transmitted Joins Received Reports Received Reports Received Leaves Received No more entries Click at this web page to get details of the settings Monitor gt MVR gt MVR Channel Groups MVR Channels Groups Information Aul Start from VLAN n and Group Address l with 20 entries per pa Port Members VLAN ID Groups 1 2 3 4 5 6 7 8 9 jro 12 1314 15 16 17 151920 2122 23 24 25 26 No rore entries Click at this web page to get details of the settings Monitor gt MVR gt MVR SFM Information 78 MVR SFM Information Start from VLAN 1 and Group Address with 20 Hardware Filter Switch VLAM ID Grou Source Address Type No more entries Click at this web page to get details of the settings Status by Command show mvr vlan vlan list name lt word16 gt group database interface port type list sfm information detail clear mvr vlan vlan list name lt word16 gt statistics 79 7 9 3 IP Multicast 1 IGMP Snooping IGMP is an acronym for Internet Group Management Protocol It is a communications protocol used to manage the membership of Internet Protocol multicast groups IGMP is used by IP hosts and adjacent multicast routers to establish mult
114. tocol is a protocol that facilitates control of virtual local area networks VLANs within a larger network GVRP conforms to the IEEE 802 10 specification which defines a method of tagging frames with VLAN configuration data This allows network devices to dynamically exchange VLAN configuration information with other devices GVRP is based on GARP Generic Attribute Registration Protocol a protocol that defines procedures by which end stations and switches in a local area network LAN can register and de register attributes such as identifiers or addresses with each other Every end station and switch thus has a current record of all the other end stations and switches that can be reached GVRP like GARP eliminates unnecessary network traffic by preventing attempts to transmit information to unregistered users In addition it is necessary to manually configure only one switch and all the other switches will be configured accordingly Configuration by Web General GVRP Configuration Configuration gt GVRP gt Global config GVRP Configuration J Enable GYRP Parameter Value Join time LeaveAll time 100 Save Click at this web page to get details of the settings Port GVRP Configuration Configuration gt GVRP Port config GVRP Port Configuration v 1 Disabled 2 Disabled v 3 Disabled 4 Disabled v 5 Disabled wj 6 Disabled Click at this web pa
115. trator and Privilege level configuration About the privilege level of the user The allowed range is 1 to 15 If the privilege level value is 15 it can access all groups i e that is granted the fully control of the device But others value need to refer to each group privilege level User s privilege should be same or greater than the group privilege level to have the access of that group By default setting most groups privilege level 5 has the read only access and privilege level 10 has the read write access And the system maintenance software upload factory defaults and etc need user privilege level 15 Generally the privilege level 15 can be used for an administrator account privilege level 10 for a standard user account and privilege level 5 for a guest account Configuration by Web Create User Configuration gt Security gt Switch gt Users Users Configuration Privilege Level Add New User Click at this web page to get details of the settings Privilege Levels Configuration gt Security gt Switch gt Privilege Levels 32 Privilege Level Configuration Privilege Levels Group Name Aggregation v 5 i 10 w DHCP 5 w 10 sw 5 in Dhcp_Client 5 v 10 vw 5 m 10 v Diagnostics 5 ow 10 v 5 10 IP2 5 KHE 5 ij 10 v IPMC Snonping 5 iw 10 w 5 iw 110 ise LACP 5 v 10 v 5 wj I0 s LLOP 5 w 10 5 w 10 w Loop_Protect 5 wv 10 w s se 10 iw MAC_Table 5v 10
116. tries Deleted 0 Total Neighbors Entries Dropped 0 Total Neighbors Entries Aged Out 0 LLDP Statistics Local Counters Local Tx Frames TLVs TLVs Org aioe Coke Port Frames Discarded Discarded Unrecognized Discarded 1 0 0 0 0 0 0 2 0 0 3 0 4 0 0 0 5 0 0 6 0 0 0 Click at this web page to get details of the settings 89 Status by Command Clear Ildp statistics show lldp neighbors interface port type list show lldp statistics interface port type list 90 7 11 MAC Table Switching of frames is based upon the DMAC address contained in the frame The switch builds up a table that maps MAC addresses to switch ports for Knowing which ports the frames should go to based upon the DMAC address in the frame This table contains both static and dynamic entries The static entries are configured by the network administrator if the administrator wants to do a fixed mapping between the DMAC address and switch ports The frames also contain a MAC address SMAC address which shows the MAC address of the equipment sending the frame The SMAC address is used by the switch to automatically update the MAC table with these dynamic MAC addresses Dynamic entries are removed from the MAC table if no frame with the corresponding SMAC address have been seen after a configurable age time Set timeouts for entries in the
117. ttings Configuration Upload Configuration gt Maintenance gt Configuration gt Upload Click at this web page to get details of the settings Configuration Activate Configuration gt Maintenance gt Configuration gt Activate Click at this web page to get details of the settings Configuration Delete Configuration gt Maintenance gt Configuration gt Delete Click at this web page to get details of the settings Status by Command Show running configuration show running config all defaults show running config feature lt cword gt all defaults show running config interface port type list all defaults show running config interface vlan vlan list all defaults show running config line console vty range list all defaults show running config vlan vlan list all defaults Show Terminal Configuration show terminal 133 8 Software Update and Backup This switch supports software update and configuration backup restore functions It could be done in two ways 1 From web browser Doing by http protocol and by web browser Please refer to the description of Maintenance function in Section 7 17 for Software Update and Configuration Backup Restore 2 From console telnet command Doing by TFTP protocol and done by copy command Please refer to the description of Maintenance function
118. ucast gt mac ucast Status by Web Monitor gt Security gt Network gt IP Source Guard Dynamic IP Source Guard Table Aute Start from Portl w VLAN 1 and IP address 0 0 0 0 with 20 entries per page VLAN ID IP Address MAC Address Ma mare entries Click at this web page to get details of the settings Status by Command show ip verify source interface port type list show ip source binding dhcp snooping static interface port type list 5 ARP Inspection ARP Inspection is a secure feature Several types of attacks can be launched against a host or devices connected to Layer 2 networks by poisoning the ARP caches This feature is used to block such attacks Only valid ARP requests and responses can go through the switch device Configuration by Web Enable Disable Configuration on Port Configuration gt Security gt Network gt ARP Inspection gt Port Configuration 54 ARP Inspection Configuration Dist Translate dynamic to static Port Mode Configuration Port Mode Check VLAN Log Type ic B E B 1 Disabled v Disabled v None 2 Disi gr Diss sd None j 3 Disabled v Disabled we None v 4 Disabled w Disabled v Nome 5 Disabled v Disabled w None v arma gi a ji Nene i 7 Disabled v Disabled v None v B Disabled v Disabled v None v 9 Disabled w Disabled w None 10 Disabl
119. unk native vlan vlan id config if no switchport trunk native vlan vlan id If port is in Hybrid mode config if switchport hybrid native vlan vlan id none config if no switchport hybrid native vlan vlan id none Port Type If port is in Hybrid mode config if switchport hybrid port type unaware c port s port s custom port config if no switchport hybrid port type Ingress Filter If port is in Hybrid mode config if switchport hybrid ingress filtering config if no switchport hybrid ingress filtering Ingress Acceptance If port is in Hybrid mode config if switchport hybrid acceptable frame type 1 all tagged untagged config if no switchport hybrid acceptable frame type Egress Tagging If port is in Trunk mode config if switchport trunk vlan tag native config if no switchport trunk vlan tag native If port is in Hybrid mode config if switchport hybrid egress tag none all except native config if no switchport hybrid egress tag Allowed VLANSs If port is in Trunk mode config if switchport trunk allowed vlan all none add remove except vlan list config if no switchport trunk allowed vlan If port is in Hybrid mode config if switchport hybrid allowed vlan 1 all none add remove except vlan list config if no switchport hybrid allowed vlan Forbidden VLA
120. uration by Web Enable Disable VLAN Range Configuration gt DHCP gt Relay 30 DHCP Relay Configuration Relay Mode Relay Server Relay Information Mode Relay Information Policy Click at this web page to get details of the settings Configuration by Command Enable Disable config ip dhcp relay config no ip dhcp relay config ip dhcp relay information option config no ip dhcp relay information option config ip dhcp relay information policy drop keep replace config no ip dhcp relay information policy DHCP Relay Server config ip helper address lt ipv4_ucast gt config no ip helper address Status by Web Monitor gt DHCP gt Relay Statistics DHCP Relay Statistics Auto refresh L Refresh Server Statistics Receive from Server 0 Transmit Transmit Receive Missing Receive Missing Receive Missing Receive Bad Receive Bad Agent Option Circuit ID Remote ID Circuit ID Remote ID 0 D 0 0 0 Client Statistics to Client Error from Client Agent Option Agent Option Agent Option Agent Option 0 0 0 0 0 0 Click at this web page to get details of the settings Status by Command clear ip dhcp relay statistics show ip dhcp relay statistics 31 7 5 Security Configuration This function covers the following items for security setup 7 5 1 Security for Switch Management 1 Adminis
121. urity gt Switch gt SNMP gt Views Configuration gt Security gt Switch gt SNMP gt Access Click at the web page to get details of the settings Status by Command 40 show snmp show snmp access lt word32 gt v1 v2c v3 any auth noauth priv show snmp community v3 lt word127 gt show snmp host lt word32 gt system switch interface aaa show snmp security to group v1 v2c v3 lt word32 gt show snmp user lt word32 gt lt word10 32 gt show snmp view lt word32 gt lt word255 gt 6 RMON configuration RMON Remote Network Monitoring provides standard information that a network administrator can use to monitor analyze and troubleshoot a group of distributed local area networks LANs from a central site RMON specifically defines the information that any network monitoring system Will be able to provide RMON can be supported by monitoring devices known as probes e g LAN switches includes software in each switch that can trap information as traffic flows through and record it in its MIB A software agent can gather the information for presentation to the network administrator with a graphical user interface Configuration by Web Configuration gt Security gt Switch gt RMON gt Statistics RMON Statistics Configuration Delete ID DataSource 1 3 5 1 2 1 2 2 1 1
122. w Guest VLAN if EAPOL Seen 46 config dot1x guest vlan lt 1 4095 gt config dot1x max reauth req lt 1 255 gt config dot1x guest vlan supplicant config no dot1x guest vlan config no max reauth req config no dot1x guest vlan supplicant For Re authentication Reauthentication Enabled Period EAPOL Timeout Aging Period Hold Time config dot1x re authentication config dot1x authentication timer re authenticate lt 1 3600 gt config dot1x timeout tx period lt 1 65535 gt config dot1x authentication timer inactivity 10 1000000 config dot1x timeout quiet period 10 1000000 config no dot1x re authentication config no dot1x authentication timer re authenticate config no dot1x timeout tx period config no dot1x authentication timer inactivity config no dot1x timeout quiet period For Configuration by Port Admin State config if dot1x port control force authorized force unauthorized auto single multi mac based config if no dot1x port control RADIUS Assigned QoS RADIUS Assigned VLAN Guest VLAN Enabled config if dot1x radius qos config if dot1x radius vlan config if dot1x guest vlan config if no dot1x radius qos config if no dot1x radius vlan config if no dot1x guest vlan Do Re initialize Re authenticate config if dot1x initialize interface port type list config if dot1x re authenticate Status by Web
123. w users show web privilege group lt cword gt level 2 Authentication method for Console Telnet SSH Http interfaces This function allows you to configure how a user is authenticated when he logs into the switch via one of the management client interfaces Configuration by Web Configuration gt Security gt Switch gt Auth Method Authentication Method Configuration Client ___ Methods console local w telnet local w ssh local w http local Click at this web page to get details of the settings Configuration by Command config aaa authentication login console telnet ssh http local radius tacacs config no aaa authentication login console telnet ssh http Status by Web Configuration gt Security gt Switch gt Auth Method Click at this web page to get details of the settings Status by Command show aaa 3 Switch Management Access Limit This function can limit the switch management source interfaces Configuration by Web Configuration gt Security gt Switch gt Access Management 34 Access Management Configuration Mode Dissbled vw Delete VLAN ID Start IP Address End IP Address HTTP HTTPS SNMP TELNET SSH Click at this web page to get details of the settings Configuration by Command config access management config access management 1 16 lt 1 4094 gt
124. ype list sfm information detail show ipv6 mld snooping mrouter detail 87 7 10 LLDP LLDP is an IEEE 802 1ab standard protocol The Link Layer Discovery Protocol LLDP specified in this standard allows stations attached to an IEEE 802 LAN to advertise to other stations attached to the same IEEE 802 LAN the major capabilities provided by the system incorporating that station the management address or addresses of the entity or entities that provide management of those capabilities and the identification of the stations point of attachment to the IEEE 802 LAN required by those management entity or entities The information distributed via this protocol is stored by its recipients in a standard Management Information Base MIB making it possible for the information to be accessed by a Network Management System NMS using a management protocol such as the Simple Network Management Protocol SNMP Configuration by Web Configuration gt LLDP LLDP Configuration LLDP Parameters ceva Tenoa Teea nei luc Optional TLVs Port Mode CDP aware Port Descr Sys Name Sys Descr Sys Capa Mgmt Addr le B 1 Disabled vw O 2 Disabled v oO 3 Disabled v o 4 Disabled v oO 5 Disabled v o B Disabled v Click at this web page to get details of the settings Configuration by Command General Configuration Tx Interval config Ildp timer 5 327682
Download Pdf Manuals
Related Search