Korenix JetNet 5428G Series User Manual
Contents
1. 79 4 6 Private VLAN The private VLAN helps to resolve the primary VLAN ID shortage client ports isolation and network security issues The Private VLAN provides primary and secondary VLAN within a single switch Primary VLAN The uplink port is usually the primary VLAN A primary VLAN contains promiscuous ports that can communicate with lower Secondary VLANs Secondary VLAN The client ports are usually defined within secondary VLAN The secondary VLAN includes Isolated VLAN and Community VLAN The client ports can be isolated VLANs or can be grouped in the same Community VLAN The ports within the same community VLAN can communicate with each other However the isolated VLAN ports can Not The figure shows the typical Private VLAN network The SCADA Public Server or NMS workstation is usually located in primary VLAN The clients PCs or Rings are located within Secondary Secondary VLAN SCADA NMS Ring 1 3 Ring2 i Community i Isolated Isolated 1 VLAN Q VLAN F e hd AEETIS enna Private VLAN PVLAN Configuration group enables you to Configure PVLAN PVLAN Port and see the PVLAN Information Following commands are included in this group 4 6 1 PVLAN Configuration 4 6 2 PVLAN Port Configuration 4 6 3 CLI Commands of the PVLAN 4 6 1 PVLAN Configuration PVLAN Configuration allows you to assign Private VLAN type After created2. lt 1 99 gt Standard IP access list number lt 1300 1999 gt Standard IP access list number expanded range WORD Access list name Switch config ip access list standard 1 Switch config std acl deny Specify packets to reject permit Specify packets to forward 110 end End current mode and change to enable mode exit Exit current mode and down to previous mode list Print command list no Negate a command or set its defaults quit Exit current mode and down to previous mode remark Access list entry comment Add IP Extended access list Switch config ip access list extended lt 100 199 gt Extended IP access list number lt 2000 2699 gt Extended IP access list number expanded range WORD access list name Switch config ip access list extended 100 Switch config ext acl deny Specify packets to reject permit Specify packets to forward end End current mode and down to previous mode exit Exit current mode and down to previous mode list Print command list no Negate a command or set its defaults quit Exit current mode and down to previous mode remark Access list entry comment Example 1 Edit MAC access list Switch config ext macl permit MACADDR_ Source MAC address xxxx xxxXx XXXX any any source MAC address host A single source host Switch config ext macl permit host MACADDR_ Source MAC address xxxx xxxx XXXX Switch config ext macl permit host 0012 7711 2233 MACADDR _ Destination MAC address
3. 6 RD 6 TD 6 TD 1 RD 1 RD RD lt TD 2 RD 2 RD N RD 2 TD Straight through Cabling Schematic Cross over Cabling Schematic Note that Ethernet cables use pins 1 2 3 and 6 of an 8 pin RJ 45 connector The signals of these pins are converted by the automatic MDI X function as shown in the table below Pin MDI X Signals MDI Signals 1 RD TD 2 RD TD 3 TD RD 6 TD RD Connect one side of an Ethernet cable into any switch port and connect the other side to your attached device The LNK LED will light up when the cable is correctly connected Refer to the LED Indicators section for descriptions of each LED indicator Always make sure that the cables between the switches and attached devices e g switch hub or workstation are less than 100 meters 328 feet The wiring cable types are as below 10Base T 2 pair UTP STP Cat 3 4 5 cable EIA TIA 568 100 ohm 100m 100 Base TX 2 pair UTP STP Cat 5 cable EIA TIA 568 100 ohm 100m 1000 Base TX 4 pair UTP STP Cat 5 cable EIA TIA 568 100 ohm 100m 2 5 Wiring Fiber Ports Small Form factor Pluggable SFP The SFP ports accept standard Gigabit MINI GBIC SFP transceiver But to ensure system reliability Korenix recommends using the Korenix certificated Gigabit SFP Transceiver The web UI will show Unknown vendor type when choosing the SFP which is not certificated by Korenix The certificated SFP transceiver inc
4. Following commands are included in this group 4 4 1 STP Configuration 4 4 2 STP Port Configuration 4 4 3 STP Information 4 4 4 MSTP Configuration 4 4 5 MSTP Port Configuration 4 4 6 MSTP information 4 4 7 Multiple Super Ring 4 4 8 Multiple Super Ring Information 4 4 9 Command Lines for Network Redundancy The STP Configuraiton STP Port Configuration and STP Information pages are available while select the STP and RSTP mode The MSTP Configuraiton MSTP Port Configuration and MSTP Information pages are available while select the MSTP mode The Multiple Super Ring and Multiple Super Ring Information are available while select the MSR mode 53 4 4 1 STP Configuration This page allows select the STP mode and configuring the global STP RSTP Bridge Configuration The STP mode includes the STP RSTP MSTP and Disable Please select the STP mode for your system first The default mode is RSTP enabled After select the STP or RSTP mode continue to configure the global Bridge parameters for STP and RSTP After select the MSTP mode please go to MSTP Configuration page Figure 4 4 1 1 show the web page which allows you to select the STP mode configure the global STP RSTP MSTP settings C JetNet5428G D System gt C Basic Setting gt J Port Configuration STP Mode C4 Network Redundancy C STP Configuration C STP Port Configuratio G STP Information C MSTP Configuration C MSTP Port Configurati C MSTP In
5. is 0012 7700 0000 to 0012 7700 0002 Source Destination Wildcard This command allows user to define single host or a group of hosts based on the wildcard Some of the allowance examples are as below Wildcard Bit Number of Note allowance Any 1111 1111 1111 All Host 1 Only the Source or Destination 0000 0000 0003 0000 0000 000 00000011 3 0000 0000 0007 0000 0000 000 00000111 7 4 oi 0000 0000 000F 0000 0000 000 11111111 103 0000 0000 0007 0000 0000 000F 0000 0000 001F 0000 0000 003F Egress Port Bind the MAC Filter rule to specific front port fastethernet21 Ie fastethernet22 fastethernet23 fastethernet24 gigabitethernet25 gigabitethernet26 gigabitethernet27 Modify jiqabitethernet28 Once you finish configuring the ACE settings click on Add to apply your configuration You can see below screen is shown Example of the below Entry Permit Source MAC 0012 7700 0000 to Destination MAC 0012 7700 0002 The Permit rule is egress rule and it is bind to Gigabit Ethernet Port 25 0012 7700 0000 0000 0000 0001 0012 7700 0002 0000 0000 0001 Permit gigabitethernet25 Once you finish configuring the settings click on Apply to apply your configuration IP Filter Type ID Name when select IP Filter The ID for IP access list is listed as below of the field You can also type ACL name in this field it goes to IP Extended
6. 93 This page allows users to configure IGMP Query feature Since JetNet 5428G can only be configured by member ports of the management VLAN IGMP Query can only be enabled on the management VLAN If you want to run IGMP Snooping feature in several VLANs you should notice that whether each VLAN has its own IGMP Querier first The IGMP querier periodically sends query packets to all end stations on the LANs or VLANs that are connected to it For networks with more than one IGMP querier a switch with the lowest IP address becomes the IGMP querier In IGMP Query selection you can select V1 V2 or Disable V1 means IGMP V1 General Query and V2 means IGMP V2 General Query The query will be forwarded to all multicast groups in the VLAN Disable allows you to disable IGMP Query Query Interval s The period of query sent by querier Query Maximum Response Time The span querier detect to confirm there are no more directly connected group members on a LAN Once you finish configuring the settings click on Apply to apply your configuration 4 8 3 Unknown Multicast After enabled IGMP Snooping the known multicast can be filtered by IGMP Snooping mechanism and forwarded to the member ports of the known multicast groups The other multicast streams which are not leant is so called unknown multicast the switch decide how to forward them based on the setting of this page Send to Query Ports The unknown multicast will be sent to the Query ports
7. Disable Authentication Display Switch config no smtp server authentication SMTP Email Alert set Authentication disable ok Switch sh smtp server SMTP Email Alert is Enabled Server 192 168 10 100 Account admin korenix com Authentication Enabled Username admin Password admin SMTP Email Alert Receipt Receipt 1 korecare korenix com Receipt 2 Receipt 3 Receipt 4 119 4 12 Monitor and Diag JetNet 5428G provides several types of features for you to monitor the status of the switch or diagnostic for you to check the problem when encountering problems related to the switch The features include MAC Address Table Port Statistics Port Mirror Event Log and Ping Following commands are included in this group 4 11 1 MAC Address Table 4 11 2 Port Statistics 4 11 3 Port Mirror 4 11 4 Event Log 4 11 5 Topology Discovery LLDP 4 11 6 Ping 4 11 7 CLI Commands of the Monitor and Diag 4 12 1 MAC Address Table JetNet 5428G provides 8K entries in MAC Address Table In this page users can change the Aging time add Static Unicast MAC Address monitor the MAC address or sort them by different packet types and ports Click on Apply to change the value Aging Time Sec Each switch fabric has limit size to write the learnt MAC address To save more entries for new MAC address the switch fabric will age out non used MAC address entry per Aging Time timeout The default Aging Time is 300 seconds
8. immediate leave leave group when receive a leave message last member query interval the interval for which the switch waits before updating the table entry source only learning Source Only Learning vlan Virtual LAN IGMP Snoopi g VLAN Switch config ip igmp snooping vlan VLANLIST allowed vlan list all all existed vlan Switch config ip igmp snooping vlan 1 2 IGMP snooping is enabled on vian 1 IGMP snooping is enabled on vlan 2 Disable IGMP Snoopi g Switch config no ip igmp snoopin Global IGMP snooping is disabled globally ok Disable IGMP Snoopi g Switch config no ip igmp snooping vlan 3 95 VLAN IGMP snooping is disabled on VLAN 3 Display IGMP Snooping Setting Switch sh ip igmp interface vian1 enabled Yes version IGMPv1 query interval 125s query max response time 10s Switch sh ip igmp snooping IGMP snooping is globally enabled Mlan1 is IGMP snooping enabled immediate leave is disabled last member query interval is 100 centiseconds Mlan2 is IGMP snooping enabled immediate leave is disabled last member query interval is 100 centiseconds Mlan3 is IGMP snooping disabled immediate leave is disabled last member query interval is 100 centiseconds Display IGMP Table Switch sh ip igmp snooping multicast all VLAN IP Address Type Ports 1 239 192 8 0 IGMP fa6 1 239 255 255 250 IGMP fa6 IGMP Query IGMP Query V1 Switch config int vlan 1
9. 2 Max Age Time 2 2 x Hello Time value 1 sec STP Port Configuration This page allows you to configure the port parameter after enabled STP or RSTP Port Configuration Select the port you want to configure and you will be able to view current settings and status of the port Path Cost Enter a number between 1 and 200 000 000 This value represents the cost of the path to the other bridge from the transmitting bridge at the specified port 55 Priority Enter a value between 0 and 240 using multiples of 16 This is the value that decides which port should be blocked by priority in a LAN Link Type There are 3 types for you select Auto P2P and Share Some of the rapid state transitions that are possible within RSTP depend upon whether the port of concern can only be connected to another bridge i e it is served by a point to point LAN segment or if it can be connected to two or more bridges i e it is served by a shared medium LAN segment This function allows link status of the link to be manipulated administratively Auto means to auto select P2P or Share mode P2P means P2P is enabled the 2 ends work in Full duplex mode While Share is enabled it means P2P is disabled the 2 ends may connect through a share media and work in Half duplex mode Edge Port A port directly connected to the end stations cannot create a bridging loop in the network To configure this port as an edge port set the port to
10. Exit Type exit or Ctrl Z to global configuration mode Type end to privileged EXEC mode 22 Here are some useful commands for you to see these available commands Save your time in typing and avoid typing error To see all the available commands in this mode It helps you to see the next command you can should type as well Switch config interface IFNAME __Interface s name vlan Select a vlan to configure Character To see all the available commands starts from this character Switch config a access list Add an access list entry administrator Administrator account setting arp Set a static ARP entry Tab This tab key helps you to input the command quicker If there is only one available command in the next clicking on tab key can help to finish typing soon Switch co tab tab Switch configure terminal Switch config ac tab Switch config access list Ctrl C To stop executing the unfinished command Ctrl S To lock the screen of the terminal You can t input any command Ctrl Q To unlock the screen which is locked by Ctrl S Ctrl Z To exit configuration mode Alert message when multiple users want to configure the switch If the administrator is in configuration mode then the Web users can t change the settings JetNet 5428G allows only one administrator to configure the switch at a time Error Message x VTY configuration is locked by other VTY 23 4 2 4 2 1 Ba
11. Go to management VLAN Switch config if ip igmp v1 IGMP Query V2 Switch config int vlan 1 Go to management VLAN Switch config if ip igmp IGMP Query version Switch config if ip igmp version 1 Switch contig if ip igmp version 2 Disable Switch config int vlan 1 Switch config if no ip igmp Display Switch sh ip igmp interface vian1 enabled Yes version IGMPv2 query interval 125s query max response time 10s Switch show running config interface vian1 ip address 192 168 10 17 24 ip igmp no shutdown Unknown Multicast Send to Query Ports Switch config ip igmp snooping source only learning IGMP Snooping Source Only Learning enabled Discard Force filtering Switch config mac address table multicast filtering 96 Filtering unknown multicast addresses ok Send to All Ports No Discard No Send to Query Ports Switch config no mac address table multicast filtering Switch config no ip igmp snooping source only learning IGMP Snooping Source Only Learning disabled 97 4 9 4 9 1 SNMP Simple Network Management Protocol SNMP is a protocol used for exchanging management MANAGER information between network devices SNMP is a member of the TCP IP protocol suite JetNet 5428G series support SNMP v1 and v2c and V3 SNMP An SNMP managed network consists of two main components agents and a manager An agent is a managemen
12. Individual When LACP is enabled member ports of LACP group which are not connected to correct LACP member ports will be displayed in the Individual column Link Down When LACP is enabled member ports of LACP group which are not linked up will be displayed in the Link Down column 4 3 7 Command Lines for Port Configuration Feature Command Line Port Control Port Control State Switch config if shutdown gt Disable port state interface fastethernet1 is shutdown now Switch config if no shutdown gt Enable port state interface fastethernet1 is up now Port Control Auto Switch config interface fat Negotiation Switch config if auto negotiation Auto negotiation of port 1 is enabled Port Control Force Switch config if speed 100 Speed Duplex set the speed mode ok Switch config if duplex full set the duplex mode ok Port Control Flow Switch contfig if flowcontrol on Control Flowcontrol on for port 1 set ok Switch config if flowcontrol off Flowcontrol off for port 1 set ok Port Status Port Status Switch show interface fat Interface fastethernet1 Administrative Status Enable Operating Status Connected Duplex Full Speed 100 MTU 1518 Flow Control off Default Port VLAN ID 1 Ingress Filtering Disabled Acceptable Frame Type All Port Security Disabled Auto Negotiation Disable Loopback Mode None STP Status forwarding Default CoS Value for untagged
13. Static Unicast 0012 777 0100 Management Unicast 0100 5e40 0800 fa6 Multicast 0100 5e7f fffa fa4 fa6 Multicast Remove Reload 4 12 2 Port Statistics ISS 4 In this page you can view operation statistics for each port The statistics that can be viewed include Link Type Link State Rx Good Rx Bad Rx Abort Tx Good Tx Bad and Collision Rx means the received packet while Tx means the transmitted packets Note If you see many Bad Abort or Collision counts increased that may mean your network cable is not connected well the network performance of the port is poor etc Please check your network cable Network Interface Card of the connected device the network application or reallocate the network traffic etc Click on Clear Selected to reinitialize the counts of the selected ports and Clear All to reinitialize the counts of all ports Click on Reload to refresh the counts Port Statistics Enable 100TX Down 2 1007x Down Enable 10 3 1007x Down Enable 0 4 1007x Up Enable 2131 6 100T Down Enable 0 6 100T Down Enable 4884 100TX Up Enable 54 g 1000TX Down Enable 0 g 10007x Down Enable 0 O 10007x Down Enable 0 Clear Selected Clear all Reload Clo a e i See or o o o nio o o o oa o oO ooo ooo 97 OCfO O bO PO bO VO G
14. The Aging Time can be modified in this page Static Unicast MAC Address In some applications users may need to type in the static Unicast MAC address to its MAC address table In this page you can type MAC Address format xxxx xxxx xxxx select its VID and Port ID and then click on Add to add it to MAC Address table MAC Address Table In this MAC Address Table you can see all the MAC Addresses learnt by the switch fabric The packet types include Management Unicast Static Unicast Dynamic Unicast Static Multicast and Dynamic Multicast The table allows users to sort the address by the packet types and port Packet Types Management Unicast means MAC address of the switch It belongs to CPU port only Static Unicast MAC address can be added and deleted Dynamic Unicast MAC is MAC address learnt by the switch Fabric Static Multicast can be added by CLI and can be deleted by Web and CLI Dynamic Multicast will appear after you enabled IGMP and the switch learnt IGMP report Click on Remove to remove the static Unicast Multicast MAC address Click on Reload to refresh the table New learnt Unicast Multicast MAC address will be updated to MAC address table 120 MAC Address Table Aging Time Sec 300 Static Unicast MAC Address Port 1 v Add MAC Address Table All 000f b079 ca3b Dynamic Unicast 1 iv 0012 7701 0386 0012 7710 0101 0012 7710 0102 Dynamic Unicast Static Unicast
15. t need to install new application to read the notification information This page allows users to Enable SNMP Trap configure the SNMP Trap server IP Community name and trap Version V1 or V2 After configuration you can see the change of the SNMP pre defined standard traps and Korenix pre defined traps The pre defined traps can be found in Korenix private MIB SNMP Trap SNMP Trap Apply SNMP Trap Server fi 92 168 10 100 private v1 2c atte Add Trap Server Profile 192 168 10 33 public y1 Remove Reload 100 4 9 4 CLI Commands of the SNMP Command Lines of the SNMP configuration Feature Command Line SNMP Community Read Only Community Switch config snmp server community public ro community string add ok Read Write Community Switch config snmp server community private rw community string add ok SNMP Trap Enable Trap Switch config snmp server enable trap Set SNMP trap enable ok SNMP Trap Server IP without specific community name Switch config snmp server host 192 168 10 33 SNMP trap host add OK SNMP Trap Server IP with version 1 and community SNMP Trap Server IP with version 2 and Switch config snmp server host 192 168 10 33 version 1 private SNMP trap host add OK Note private is the community name version 1 is the SNMP version Switch config snmp server host 192 168 10 33 version 2 private
16. 12 4 Event Log In the 4 10 3 we have introduced System Log feature When System Log Local mode is selected JetNet 5428G will record occurred events in local log table This page shows this log table The entry includes the index occurred data and time and content of the events Click on Clear to clear the entries Click on Reload to refresh the table System Event Logs gt 1 Jan1 02 50 53 Event Link 4 Up 2 Jan 1 02 50 51 Event Link 5 Down Jan1 02 50 50 Event Link 5 Up 4 Jan 1 02 50 47 Event Link 4 Down Clear Reload 4 12 5 Topology Discovery LLDP The 5428G supports 802 1AB Link Layer Discovery Protocol thus the 5428G can be discovered by the Network Management System which support LLDP discovery With LLDP supported the NMS can easier maintain the topology map display port ID port description system description VLAN ID Once the link failure the topology change events can be updated to the NMS as well The LLDP Port State can display the neighbor ID and IP leant from the connected devices LLDP Enable Disable the LLDP topology discovery information LLDP Configuration To configure the related timer of LLDP LLDP timer The LLDPDP interval the LLDP information is send per LLDP timer The default value is 30 seconds LLDP hold time The TTL Time To Live timer The LLDP state will be expired once the LLDPDP is not received by the hold time The default is 120 seconds LLDP Port State
17. 2 3 After created the VLAN the status of the VLAN will remain in Unused until you add ports to the VLAN 73 Note Before you change the management VLAN ID by Web and Telnet remember that the port attached by the administrator should be the member port of the management VLAN otherwise the administrator can t access the switch via the network Note Currently JetNet 5428G supports max 256 group VLAN Static VLAN Configuration You can see the created VLANs and specify the egress outgoing port rule to be Untagged or Tagged here Figure 4 5 2 3 Static VLAN Configuration table You can see that new VLAN 3 is created VLAN name is test Egress rules of the ports are not configured now Static VLAN Configuration 4 4 il gt Figure 4 5 2 4 Configure Egress rule of the ports Static VLAN Configuration Not available U Untag Indicates that egress outgoing frames are not VLAN tagged T Tag Indicates that egress outgoing frames are to be VLAN tagged Steps to configure Egress rules Select the VLAN ID Entry of the selected VLAN turns to light blue Assign Egress rule of the ports to U or T Press Apply to apply the setting If you 74 want to remove one VLAN select the VLAN entry Then press Remove button 4 5 3 GVRP configuration GVRP allows users to set up VLANs automatically rather than manual configuration on every port of every switch in the network In low vol
18. 254 24 NTP Server SWITCH config ntp peer enable disable primary secondary SWITCH config ntp peer primary IPADDR SWITCH config ntp peer primary 192 168 10 120 Time Zone SWITCH config clock timezone 26 Sun Jan 1 04 13 24 2006 GMT Greenwich Mean Time Dublin Edinburgh Lisbon London Note By typing clock timezone you can see the timezone list Then choose the number of the timezone you want to select IEEE 1588 Switch config ptpd run lt cr gt preferred clock Preferred Clock slave Run as slave Display SWITCH sh ntp associations 39 Network time protocol Status Disabled Primary peer N A Secondary peer N A SWITCH show clock Sun Jan 1 04 14 19 2006 GMT Greenwich Mean Time Dublin Edinburgh Lisbon London SWITCH show clock timezone clock timezone 26 GMT Greenwich Mean Time Dublin Edinburgh Lisbon London Switch show ptpd PTPd is enabled Mode Slave Jumbo Frame Jumbo Frame Type the maximum MTU to enable Jumbo Frame SWITCH config system mtu lt 64 9216 gt bytes with VLAN tag Switch config system mtu 9216 Disable Jumbo Frame SWITCH config no system mtu Display SWITCH show system mtu System MTU size is 9216 bytes After disabled Jumbo Frame SWITCH show system mtu System MTU size is 1522 bytes DHCP DHCP Commands Switch config router dhcp Switch config dhcp default router DHCP Default Route
19. 5 1 802 1Q VLAN a ee EOY Tae fre r a a Sa FLOOR2 H i air x T FLOOR QinQ The QinQ is originally designed to expand the number of VLANs by adding a tag to the 802 1Q packets The original VLAN is usually identified as Customer VLAN C VLAN and the new added t g as Service VLAN S VLAN By adding the additional tag QinQ increases the possible number of VLANs After QinQ enabled the JetNet can Upper LAN Metro WAN Server Provider VLAN Customer VLAN reach up to 256x256 VLANs With different standard tags it also improves the network security 70 VLAN Configuration group enables you to Add Remove VLAN configure QinQ port Ingress Egress parameters and view VLAN table VLAN Configuration group enables you to Add Remove VLAN configure port Ingress Egress parameters and view VLAN table Following commands are included in this group 4 5 1 VLAN Port Configuration 4 5 2 VLAN Configuration 4 5 3 GVRP Configuration 4 5 4 VLAN Table 4 5 5 CLI Commands of the VLAN VLAN Port Configurati 4 5 1 on VLAN Port Configuration allows you to set up VLAN port parameters to specific port These parameters include PVID Accept Frame Type and Ingress Filtering Figure 4 5 2 Web UI of VLAN configuration VLAN Port Configuration VLAN Port Configuration Admit All w Disable v Admit All v Disable v Admit All Disable a Admit All w Disable v Admit All w D
20. Display the neighbor information learnt from the connected interface 123 Topology Discovery LLDP LLDP Configuration hao o o ooo LLDP Port State fa15 00 12 77 60 2e 0d 192 168 10 10 4 Apply 4 12 6 Ping Utility This page provides Ping Utility for users to ping remote device and check whether the device is alive or not Type Target IP address of the target device and click on Start to start the ping After few seconds you can see the result in the Result field Ping Utility Ping Target iP f 92 168 10 33 PING 192 168 10 33 192 168 10 33 56 data bytes 64 bytes from 192 168 10 33 icmp_seq 0 ttl 128 time 0 0 ms 64 bytes from 192 168 10 33 icmp_seq 1 ttl 128 time 0 0 ms 64 bytes from 192 168 10 33 icmp_seq 2 ttl 128 time 0 0 ms 64 bytes from 192 168 10 33 icmp_seg 3 ttl 128 time 0 0 ms 64 bytes from 192 168 10 33 icmp_seq 4 ttl 128 time 0 0 ms 192 168 10 33 ping statistics 5 packets transmitted 5 packets received 0 packetloss round trip min ayg max 0 0 0 0 0 0 ms 124 4 12 7 CLI Commands of the Monitor and Diag Command Lines of the Monitor and Diag configuration Feature Command Line MAC Address Table Ageing Time Switch config mac address table aging time 350 mac address table aging time set ok Note 350 is the new ageing timeout value Add Static Unicast MAC address Switch config mac address table static 0012 7701 0101 vian 1 interface f
21. Egress rule Untagged for VLAN 2 Switch config if switchport access vlan 2 switchport access vi n success Egress rule Tagged for VLAN 2 Switch config if switchport trunk allowed vlan add 2 Display Port Ingress Rule PVID Ingress Filtering Acceptable Frame Type Switch show interface fat Interface fastethernet1 Administrative Status Enable Operating Status Not Connected Duplex Auto Speed Auto Flow Control off Default Port VLAN ID 2 Ingress Filtering Disabled Acceptable Frame Type All Port Security Disabled Auto Negotiation Enable Loopback Mode None STP Status disabled Default CoS Value for untagged packets is 0 Mdix mode is Auto Medium mode is Copper Display Port Egress Rule Egress rule IP address status Switch show running config interface fastethernet1 switchport access vlan 1 switchport access vlan 3 switchport trunk native vlan 2 interface vian1 ip address 192 168 10 8 24 no shutdown QinQ Information 802 1Q Tunnel Switch show dott q tunnel dotiq tunnel mode por 1 normal por 2 normal por 3 normal por 4 normal por 5 access por 6 uplink por 7 normal por 8 normal por 9 normal port 10 normal QinQ Information Show Running Switch show running config Building configuration Current configuration hostname Switch vlan learning independent interface fastethernet5 switchport access vlan ad
22. GMT 03 00 GMT 03 30 GMT 04 00 GMT 04 00 GMT 04 30 GMT 05 00 GMT 05 00 GMT 05 30 GMT 05 45 Belgrade Bratislava Budapest Ljubljana Prague Brussels Copenhagen Madrid Paris Sarajevo Skopje Sofija Vilnius Warsaw Zagreb West Central Africa Athens Istanbul Minsk Bucharest Cairo Harare Pretoria Helsinki Riga Tallinn Jerusalem Baghdad Kuwait Riyadh Moscow St Petersburg Volgograd Nairobi Tehran Abu Dhabi Muscat Baku Tbilisi Yerevan Kabul Ekaterinburg Islamabad Karachi Tashkent Calcutta Chennai Mumbai New Delhi Kathmandu Sere ror warren rr wr awe wren sro wre were wre wre Sr Sr TS ww 28 50 GMT 06 00 Almaty Novosibirsk 51 GMT 06 00 Astana Dhaka 52 GMT 06 00 Sri Jayawardenepura 53 GMT 06 30 Rangoon 54 GMT 07 00 Bangkok Hanoi Jakarta 55 GMT 07 00 Krasnoyarsk 56 GMT 08 00 Beijing Chongqing Hong Kong Urumai 57 GMT 08 00 Irkutsk Ulaan Bataar 58 GMT 08 00 Kuala Lumpur Singapore 59 GMT 08 00 Perth 60 GMT 08 00 Taipei 61 GMT 09 00 Osaka Sapporo Tokyo 62 GMT 09 00 Seoul 63 GMT 09 00 Yakutsk 64 GMT 09 30 Adelaide 65 GMT 09 30 Darwin 66 GMT 10 00 Brisbane 67 GMT 10 00 Canberra Melbourne Sydney 68 GMT 10 00 Guam Port Moresby 69 GMT 10 00 Hobart 70 GMT 10 00 Vladivostok 71 GMT 11 00 Magadan Solomon Is New Caledonia 72 GMT 12 00 Aukland Wellington 73 GMT 12 00 Fiji Kamchatka Marshall Is 74 GMT 13
23. MSTMAP the mst instance number or range configuration enter mst configuration mode forward time the forwa_oreneay time hello time the hello time max age the message maximum age time max hops the maximum hops sync sync port state of exist vlan entry Switch config spanning tree mst configuration Switch config spanning tree mst configuration Switch config mst abort exit current mode and discard all changes end exit current mode change to enable mode and apply all changes exit exit current mode and apply all changes instance the mst instance list Print command list name the name of mst region no Negate a command or set its defaults quit exit current mode and apply all changes revision the revision of mst region show show mst configuration Region Configuration Region Name Switch config mst name NAME the name string Switch config mst na orenixnix Region Revision Switch config mst revision lt 0 65535 gt the value of revision Switch config mst revision 65535 Mapping Instance to VLAN Ex Mapping VLAN 2 to Instance 1 Switch config mst instance lt 1 15 gt target instance number Switch config mst instance 1 vlan VLANMAP target vlan number ex 10 or range ex 1 10 Switch config mst instance 1 vlan 2 Display Current MST Configuraion Switch config mst show current Current MST configuration Name orenixnix Revision 65535 65 Instance Vlans Mapped 0 1 4 4094 1
24. The Query port means the port received the IGMP Query packets It is usually the uplink port of the switch Send to All Ports The unknown multicast will be flooded to all ports even they are not the member ports of the groups Discard The unknown multicast will be discarded Non member ports will not receive the unknown multicast streams This page allows you to decide how to forward the unknown multicast traffic canbe is still flooded to all ports The Force filtering function allows the switch to filter the Unknown Multicast Unknown Multicast D Send to Query Ports Send to All Ports J Discard Once you finish configuring the settings click on Apply to apply your configuration 94 4 8 4 GMRP To enable the GMRP configuration the Global GMRP Configuration should be enabled first And all the port interfaces should enable GMRP learning as well Then the switch exchange the IGMP Table with other switches which is also GMRP aware devices GMRP Configuration GMRP Protocol Enable v Disable Enable Disable Disable Disable Disable Disable Il Disable Disable Le 4 8 5 CLI Commands of the Multicast Filtering Command Lines of the multicast filtering configuration IGMP Snooping IGMP Snoopi g Switch config ip igmp snooping Global IGMP snooping is enabled globally Please specify on which vians IGMP snooping enables Switch config ip igmp snooping lt gt
25. Turn on the VLAN Display VLAN table Switch sh vlan VLAN Name Status Trunk Ports Access Ports 1 VLAN1 Static fa1 7 gi8 10 2 VLAN2 Unused 7 3 test Static fa4 7 gi8 10 fa1 3 fa7 gi8 10 Display VLAN interface information Switch show interface vian1 interface vlan1 is up line protocol detection is disabled 78 GVRP configuration index 14 metric 1 mtu 1500 lt UP BROADCAST RUNNING MULTICAST gt HWaddr 00 12 77 ff 01 b0 inet 192 168 10 100 24 broadcast 192 168 10 255 input packets 639 bytes 38248 dropped 0 multicast packets 0 input errors 0 length 0 overrun 0 CRC 0 frame 0 fifo 0 missed 0 output packets 959 bytes 829280 dropped 0 output errors 0 aborted 0 carrier 0 fifo 0 heartbeat 0 window 0 collisions 0 GVRP enable disable Configure GVRP timer Join timer Leave timer LeaveAll timer Switch config gvrp mode disable Disable GVRP feature globally on the switch enable Enable GVRP feature globally on the switch Switch config gvrp mode enable Gvrp is enabled on the switch Switch config inter fat Switch config if garp timer lt 10 10000 gt Switch config if garp timer 20 60 1000 Note The unit of these timer is centisecond Management VLAN Management VLAN Switch config int vlan 1 Go to management VLAN Switch config if no shutdown Display Switch show running config interface vian1 ip address 192 168 10 17 24 ip igmp no shutdown
26. VLAN as an isolated private VLAN primary Configure the VLAN as a primary private VLAN Switch config vlan private vilan primary 83 Isolated Type Community Type lt cr gt Switch config vlan private vlan isolated lt cr gt Switch config vlan private vlan community lt Cr gt Private VLAN Port Configuraiton Go to the port configuraiton Switch config interface port_number ex gi9 Switch config if switchport private vian host association Set the private VLAN host association mapping map primary VLAN to secondary VLAN Private VLAN Port Type Promiscuous Port Type Host Port Type Switch config if switchport mode private vlan Set private vlan mode Switch config if switchport mode private vlan host Set the mode to private vian host promiscuous Set the mode to private vlan promiscuous Switch config if switchport mode private vlan promiscuous lt cr gt Switch config if switchport mode private vlan host lt cr gt Private VLAN Port Configuration PVLAN Port Type Host Association primary to secondary The command is only available for host port Switch config interface gi9 Switch config if switchport mode private vlan host Switch config if switchport private vlan host association lt 2 4094 gt Primary range VLAN ID of the private VLAN port association Switch config if switchport private vlan host association 2 lt 2 4094 gt Secondary range VLAN I
27. VLAN in VLAN Configuraiton page the available VLAN ID will display here Choose the Private VLAN types for each VLAN you want configure None The VLAN is Not included in Private VLAN Primary The VLAN is the Primary VLAN The member ports can communicate with secondary ports Isolated The VLAN is the Isolated VLAN The member ports of the VLAN are isolated Community The VLAN is the Community VLAN The member ports of the VLAN can 80 4 6 2 communicate with each other L STP Configuration a R STP Port Configuration Private VLAN Configuration D STP Information C MSTP Configuration Private VLAN Configuration Amste Pon Contwatt VLAN Private VLAN Type C MSTP Information Primary D Multiple Super Ring D Multiple Super Ring Int A VLAN C VLAN Port Contiguratid D VLAN Configuration D GVRP Configuration VLAN Table Ef Private VLAN C PYLAN Configuration C PYLAN Port Configura C PVLAN Information C Traffic Prioritization gt C Multicast Filtering gt CI SNMP m Isolated Community an Ae wo N Ih Lal Apply PVLAN Port Configuration PVLAN Port Configuration page allows configure Port Configuration and Private VLAN Association Private VLAN Association Secondary VLAN After the Isolated and Community VLAN Type is assigned in Private VLAN Configuration page the VLANs are belonged to the Secondary VLAN and displayed here Pri
28. _ O o o Read Only v 4 9 2 SNMP V3 Profile SNMP v3 can provide more security functions when the user performs remote management through SNMP protocol It delivers SNMP information to the administrator with user authentication all of data between JetNet 5428G and the administrator are encrypted to ensure secure communication SNMP V3 Profile SNMP V3 Username Authentication x SHA M Security Level Here the user can select the following levels of security None User Authentication and Authentication with privacy Authentication Protocol Here the user can select either MD5 Message Digest algorithm 5 or SHA Secure Hash Algorithm MD5 is a widely used cryptographic hash function with a 128 bit hash value SHA Secure Hash Algorithm hash functions refer to five Federal Information Processing Standard approved algorithms for computing a condensed digital representation JetNet 5428G provides 2 user authentication protocols in MD5 and SHA You will need to configure SNMP v3 parameters for your SNMP tool with the same authentication method 99 4 9 3 Authentication Password Here the user enters the SNMP v3 user authentication password DES Encryption Password Here the user enters the password for SNMP v3 user DES Encryption SNMP Traps SNMP Trap is the notification feature defined by SNMP protocol All the SNMP management applications can understand such trap information So you don
29. above items are missing or damaged please contact your local sales representative 2 Hardware Installation This chapter includes hardware introduction installation and configuration information Following topics are covered in this chapter 2 1 Hardware Introduction Dimension Panel Layout Bottom View 2 2 Wiring Power Inputs 2 3 Wiring Earth Ground 2 4 Wiring Ethernet Ports 2 5 Wiring Fiber Ports 2 6 Wiring Gigabit Combo Ports 2 7 Wiring RS 232 console cable 2 8 Rack Mounting Installation 2 9 Safety Warming 2 1 Hardware Introduction LED System Power Green Ring Master Green 10 100 RJ 45 Link Activity Green 100M Yellow 10M Duplex On Full Off Half Gigabit Copper SFP Link Activity Green 1000M Yellow 10M or 100M Duplex On Full Off Half Gigabit SFP Link Activity Green Green Blinking Dimension JetNet 5428G Industrial Modular Managed Ethernet Switch dimension W x H x D is 44mm H x 438mm W x 170mm D JetNet 5428G JetNet 5428G DC JetNet 5428G 2G 2FX FRONT VIEW Panel Layout The front panel includes RS 232 Console Port System amp Port LEDs Fast Ethernet Port Interfaces and Gigabit Combo Port Interfaces The console port chooses RS 232 DB 9 types The pin arrangement is Pin2 TxD Pin3 RxD Pin5 GND Korenix attached the console cable within the shipped box In the Rear panel there are 2 types power input connector applied to JetNet 5428G and JetNet 5428G
30. certificated SFP transceivers when you constructing your network Korenix will keep on certificating and updating the certificated SFP transceivers in Korenix web site and purchase list You can refer to the web site to get the latest information about SFP transceivers Note Poor SFP transceivers may result in poor network performance or can t meet up claimed distance or temperature Model Name Spec SFPGSX 1000Base SX multi mode SFP transceiver 550m 10 70 C 1000Base SX multi mode SFP transceiver 550m wide operating temperature 40 85 C SFPGSX w SFPGSX2 1000Base SX plus multi mode SFP transceiver 2Km 10 70 C 1000Base SX plus multi mode SFP transceiver 2Km wide operating temperature 10 70 C SFPGSX2 w SFPGLX10 1000Base LX single mode SFP transceiver 10Km 10 70 C 1000Base LX single mode SFP transceiver 10Km wide operating temperature 40 85 C SFPGLX10 w SFPGLHX30 1000Base LHX single mode SFP transceiver 30Km 10 70 C 1000Base LHX single mode SFP transceiver 30Km wide operating temperature 40 85 C SFPGLHX30 w SFPGXD50 1000Base XD single mode SFP transceiver 50Km 10 70 C 1000Base XD single mode SFP transceiver 50Km wide operating temperature 40 85 C SFPGXD50 w SFP100MM Multi mode 100Mbps 2KM Fiber Transceiver 0 70 C Multi mode 100Mbps 2KM Fiber Transceiver wide operating temperature 40 85 C SFP100MM w SFP100SM30 Single mode 100Mbps 30KM Fiber Transceiver 0 70 C Single m
31. community SNMP trap host add OK Disable SNMP Trap Switch config no snmp server enable trap Set SNMP trap disable ok Display Switch sh snmp server trap SNMP trap Enabled SNMP trap community public Switch show running config sSnmp server community public ro snmp server community private rw snmp server enable trap snmp server host 192 168 10 33 version 2 admin snmp server host 192 168 10 33 version 1 admin 101 4 10 Security JetNet 5428G provides several security features for you to secure your connection The Filter Set is also known as Access Control List The ACL feature includes traditional Port Security and IP Security Following commands are included in this group 4 9 1 Filter Set Access Control List 4 9 2 IEEE 802 1x 4 9 3 CLI Commands of the Security 4 10 1 Filter Set Access Control List The Filter Set is known as Access Control List feature There are 2 major types one is MAC Filter it is also known as Port Security in other JetNet series It allows user to define the access rule based on the MAC address flexibility Another one is IP Filter It includes the IP security known in other JetNet series IP Standard access list and advanced IP based access lists ACE is short of Access Control Entry user defines the Permit or Deny rule for specific IP MAC address or IP groups by network mask in each ACE One ACL may include several ACEs the system checks the ACEs one after one and forward based
32. group 2 enable ok Failure to configure due to the group ID is existed SWITCH config trunk group 1 fa11 12 an t set trunk group 1 enable The group 1 is alacp enabled group SWITCH config trunk group 2 fa11 12 an t set trunk group 2 enable The group 2 is a static aggregation group Displ y LACP Switch show lacp counters LACP statistical information group LACP group internal LACP internal information neighbor LACP neighbor information port setting LACP setting for physical interfaces system id LACP system identification system priority LACP system priority SWITCH show lacp port setting LACP Port Setting Port Priority Timeout 1 32768 Long 2 32768 Long 3 32768 Long Switch show lacp internal LACP group 1 internal information LACP Port Admin Oper Port 51 Port Priority Key Key State 8 1 8 8 0x45 9 1 9 9 0x45 10 1 10 10 0x45 LACP group 2 is inactive LACP group 3 is inactive LACP group 4 is inactive Displ y Trunk Switch show trunk group 1 FLAGS gt Individual P gt In channel D gt Port Down Trunk Group GroupID Protocol Ports PEES i a a eS 1 LACP 8 D 9 D 10 D 52 4 4 Network Redundancy It is critical for industrial applications that network remains non stop Korenix develops multiple kinds of standard STP RSTP and MSTP and Korenix patterned redundancy protocol Multiple Super Ring to remain the network redundancy can be protected
33. many times this switch has changed its Role from nonRM to RM or from RM to nonRM Role state Transition Count This number means how many times the Ring status has been transformed between Normal and Abnormal state 4 4 9 Command Lines Global Enable Switch config spanning tree enable Disable Switch config spanning tree disable Mode Choose the Switch config spanning tree mode Spanning Tree mode rst the rapid spanning tree protocol 802 1w stp the spanning tree prtotcol 802 1d mst the multiple spanning tree protocol 802 1s 64 Bridge Priority Switch config spanning tree priority lt 0 61440 gt valid range is 0 to 61440 in multiple of 4096 Switch config spanning tree priority 4096 Bridge Times Switch config spanning tree bridge times forward Delay max age Hello Time Switch config spanning tree bridge times 15 20 2 This command allows you configure all the timing in one time Forward Delay Switch config spanning tree forward time lt 4 30 gt Valid range is 4 30 seconds Switch config spanning tree forward time 15 Max Age Switch config spanning tree max age lt 6 40 gt Valid range is 6 40 seconds Switch config spanning tree max age 20 Hello Time Switch config spanning tree hello time lt 1 10 gt Valid range is 1 10 seconds Switch config spanning tree hello time 2 MSTP Enter the MSTP Configuration Tree Switch config spanning tree mst
34. of their transceiver can t be read Rate Control Rate limiting is a form of flow control used to enforce a strict bandwidth limit at a port You can program separate transmit Egress Rule and receive Ingress Rule rate limits at each port and even apply the limit to certain packet types as described below Figure 4 3 4 1 shows you the Limit Rate of Ingress and Egress You can type the volume in the blank The volume of the JetNet 5428G is step by 8Kbps Disable Dis Disable Disable Dis Disable Disable gt Il Rate Control Limit Packet Type and Rate 4 3 5 Storm Control The Storm Control is similar to Rate Control Rate Control filters all the traffic over the threshold you input by UI Storm Control allows user to define the Rate for specific Packet Types Figure 4 3 5 1 Storm Control Rate Configuration 2000 2000 2000 Port Configuration Disable Disable Disable Disable Disable Disable Disable Disable Disable Disable Disable Disable Disable Disable Disable Disable Disable Disable Disable Disable Disable Disable Disable Disable Disable Disable Disable Apply Packet type You can assign the Rate for specific packet types based on packet number per second The packet types of the Ingress Rule listed here include Broadcast DLF Destination Lookup Failure and Multicast Choose Enable Disab
35. other network devices When the lower industrial switches are aggregated to the JetNet 5428G the 24 4G design allows connecting up to 12 100M rings plus 2 Gigabit rings Each of the ring has its own ring redundancy protection This is a unique and Korenix patent protected ring technology JetNet 5428G is designed as a fan less rackmount switch with low power consumption and wide operating temperature JetNet 5428G DC the DC input model allows 24V 12 48V DC input JetNet 5428G supports Jumbo frame featuring up to 9 216 bytes packet size for large size file transmission This is the trend for future industrial application requests The embedded software supports RSTP and Multiple Super Ring technology for ring redundancy protection Full layer 2 management features include VLAN IGMP Snooping LACP for network control SNMP LLDP for network management Secured access is protected by Port Security 802 1x and flexible Layer 2 4 Access Control List With JetNet 5428G you can fulfill the technicians need of having best solution for the industrial Ethernet infrastructure 1 2 Major Features Korenix JetNet 5428G has the following major features 24 port 10 100 Base TX and 4 port Gigabit RU 45 SFP combo ports 10 100 1000 Base TX 1000Base X JetNet 5428G 5428G DC 24 port 10 100 Base TX 2 port Gigabit RJ 45 SFP combo ports 10 100 1000 Base TX 1000Base X and 2 port 100Base FX 1000Base X SFP ports JetNet 5428G 2G 2FX Non Blocking Swit
36. packets is 0 Mdix mode is Disable Medium mode is Copper 49 Note Administrative Status gt Port state of the port Operating status gt Current status of the port Duplex gt Duplex mode of the port Soeed gt Speed mode of the port Flow control gt Flow Control status of the port Rate Control Rate Control Ingress or Egress Switch config if rate limit egress Outgoing packets ingress Incoming packets Note To enable rate control you should select the Ingress or Egress rule first then assign the packet type and bandwidth Rate Contr I Bandwidth Switch config if rate limit ingress bandwidth lt 0 1000000 gt Limit in kilobits per second FE 0 100000 GE 0 1000000 0 is no limit Switch config if rate limit ingress bandwidth 800 Set the ingress rate limit 800Kbps for Port 1 Storm Control Strom Control Rate Configuration Packet Type Storm Contr l Enable Storm Control to a port Switch config if storm control broadcast Broadcast packets dif Destination Lookup Failure multicast Multicast packets SWITCH config storm control broadcast lt 0 100000 gt Rate limit value 0 100000Kbyte sec SWITCH config storm control broadcast 10000 limit_rate 10000 Set rate limit for Broadcast packets SWITCH config storm control multicast 1000 limit_rate 1000 Set rate limit for Multicast packets SWITCH config storm control dif 1000 li
37. private vlan community interface fastethernet7 switchport access vlan add 2 5 switchport trunk native vlan 5 switchport mode private vlan host switchport private vian host association 2 5 interface gigabitethernet8 switchport access vlan add 2 4 switchport trunk native vlan 4 switchport mode private vian host switchport private vlan host association 2 4 interface gigabitethernet9 switchport access vlan add 2 5 switchport trunk native vlan 5 85 switchport mode private vlan host switchport private vlan host association 2 3 interface gigabitethernet10 switchport access vlan add 2 5 switchport trunk native vlan 2 switchport mode private vlan promiscuous switchport private vlan mapping 2 add 3 5 86 4 7 4 7 1 Traffic Prioritization Quality of Service QoS provides traffic prioritization mechanism which allows users to deliver better service to certain flows QoS can also help to alleviate congestion problems and ensure high priority traffic is delivered first This section allows you to configure Traffic Prioritization settings for each port with regard to setting priorities JetNet QOS supports 4 physical queues weighted fair queuing WRR and Strict Priority scheme which follows 802 1p COS tag and IPv4 TOS DiffServ information to prioritize the traffic of your industrial network Following commands are included in this group 4 6 1 QoS Setting 4 6 2 Port based Queue Mapping 4 6 3 CoS Qu
38. well by Korenix switch The JetNet 5428G Series supports advanced Multiple Spanning Tree Protocol MSTP This protocol is a direct extension of RSTP It can provide an independent spanning tree for different VLANs It simplifies network management provides for even faster convergence than RSTP by limiting the size of each region and prevents VLAN members from being segmented from the rest of the group as sometimes occurs with IEEE 802 1D STP Multiple Super Ring MSR technology is Korenix s ga generation Ring redundancy technology This is patented and protected by Korenix and is used in countries all over the world MSR ranks the fastest restore and failover time in the world 0 ms for restore and about 5 milliseconds for failover for copper The single Korenix switch can aggregate multiple Rings within one switch All the ports can be configured as the ring port of a ring each ring has its own Ring ID and the Ring ID will be added to the watchdog packet to monitor the ring status This is Korenix Patterned MultiRing Technology The Ring ports can be LACP Port Trunking ports after aggregated ports to a group the group of ports can act as the Ring port of the Ring This is Korenix Pattened TrunkRing Technology Advanced Rapid Dual Homing RDH technology also facilitates JetNet switch to connect with a core managed switch easily and conveniently With RDH technology you can also couple several Rapid Super Rings or RSTP cloud together
39. xxxx xxxx XXxxXx any any destination MAC address host A single destination host Switch config ext macl permit host 0012 7711 2233 host MACADDR _ Destination MAC address xxxx xxxx Xxxx Switch config ext macl permit host 0012 7711 2233 host 0011 7711 2234 IFNAME Egress interface name Switch config ext macl permit host 0012 7711 2233 host 0011 7711 2234 gi25 Note MAC Rule Permit Deny wildcard Source_MAC wildcard Dest_MAC Egress_Interface Example 1 Edit IP Extended access list Switch config ip access list extended 100 Switch config ext acl permit ip Any Internet Protocol tcp Transmission Control Protocol udp User Datagram Protocol icmp Internet Control Message Protocol Switch config ext acl permit ip A B C D Source address any Any source host host A single source host Switch config ext acl permit ip 192 168 10 1 A B C D Source wildcard bits Switch config ext acl permit ip 192 168 10 1 0 0 0 1 A B C D Destination address any Any destination host host A single destination host 111 Switch config ext acl permit ip 192 168 10 1 0 0 0 1 192 168 10 100 0 0 0 1 IFNAME Egress interface name Switch config ext acl permit ip 192 168 10 1 0 0 0 1 192 168 10 100 0 0 0 1 gi26 Note Follow the below rule to configure ip extended access list IP Rule Permit Deny Source_IP wildcard Dest_IP wildcard Egress_Interface TCP Rule Permit Deny tcp Source_IP wildcard Dest_IP wildcard eq Given_Port_N
40. you do this Figure 4 2 5 1 Main UI of Firmware Upgrade Firmware Upgrade System Firmware Version v0 2 11 System Firmware Date 20090413 15 04 17 re Fi le Name Note When firmware upgrade is finished the switch will restart automatically Upgrade There are 2 modes for users to backup restore the configuration file Local File mode and TFTP Server mode Local File mode In this mode the switch acts as the file server Users can browse the target folder and then type the file name to backup the configuration Users also can browse the target folder and select the existed configuration file to restore the configuration back to the switch This mode is only provided by Web UI while CLI is not supported TFTP Server mode In this mode the switch acts as the TFTP client Before you do so make sure that your TFTP server is ready And then please type the IP address of TFTP Server IP address This mode can be used in both CLI and Web UI TFTP Server IP Address You need to key in the IP address of your TFTP Server here 34 Firmware File Name The file name of the new firmware The UI also shows you the current firmware version and built date of current firmware Please check the version number after the switch is rebooted Figure 4 2 6 2 Firmware Upgrade Local File mode Firmware Upgrade System Firmware Version v0 1 3 System Firmware Date 20091102 17 48 08 WebManager Build Date 2009 11 02 18 02 20 Firmwar
41. 00 Nuku alofa Daylight Saving Time Set when Enable Daylight Saving Time start and end during the Daylight Saving Time the device s time is one hour earlier than the actual time Once you finish your configuration click on Apply to apply your configuration 4 2 5 Jumbo Frame What is Jumbo Frame The typical Ethernet frame is range from 64 to 1518 bytes This is sufficient for general usages However when users want to transmit large files the files may i i be divided into many small size packets The Large File is divided into many small packets i i i 1 1 1 While the transmitting speed becomes Bakau aiin slow long size Jumbo frame can solve the issue The switch allows you configure the size of cate secre ch a ar beth the MTU Maximum Transmission Unit 1518 1518 1518 1518 1518 1518 The default value is 1 518bytes The oe ee ee ee ee maximum Jumbo Frame size is 9 216 bytes You can freely change the available packet size Type 2 Jumbo Frame Packet maximum size is 9216 bytes 9216 bytes 29 Jumbo Frame System MTU size Apply Reset Once you finish your configuration click on Apply to apply your configuration 4 2 6 DHCP Server You can select to Enable or Disable DHCP Server function JetNet 5428G will assign a new IP address to link partners DHCP Server configuration After selecting to enable DHCP Server function type in the Network IP address for the DHCP server IP poo
42. 2 2 Config HMAC MD5 Digest 0xB41829F9030A054FB74EF7A8587FF58D Remove Region Name Switch config mst no name name configure revision revision configure instance the mst instance Switch config mst no name Remove Instance example Switch config mst no instance lt 1 15 gt target instance number Switch config mst no instance 2 Show Pending MST Configuration Switch config mst show pending Pending MST configuration Name i gt The name is removed by no name Revision 65535 Instance Vlans Mapped 0 1 3 4094 1 2 gt Instance 2 is removed by no instance Config HMAC MD5 Digest 0x3AB68794D602F DF43B21C0B37AC3BCA8 Apply the setting and go to the configuration mode Switch config mst quit apply all mst configuration changes Switch config Apply the setting and go to the global mode Switch config mst end apply all mst configuration changes Switch Abort the Setting and go to the configuration mode Show Pending to see Switch config mst abort discard all mst configuration changes Switch config spanning tree mst configuration Switch config mst show pending Pending MST configuration the new settings are Name orenixnix gt The nameis not applied after Abort not applied settings Revision 65535 Instance Vlans Mapped 0 1 4 4094 1 2 2 3 gt The instance is not applied after Abort settings Config HMAC MD5 Digest 0xB41829F9030A054FB74EF7A8587F
43. 28G package Korenix attached one RS 232 DB 9 to DB 9 console cable Please attach RS 232 DB 9 connector to your PC COM port connect the other end to the Console port of the JetNet 5428G If you lose the cable please follow the console cable PIN assignment to find one Refer to the appendix 1 Go to Start gt Program gt Accessories gt Communication gt Hyper Terminal 2 Give a name to the new console connection 3 Choose the COM name 4 Select correct serial settings The serial settings of JetNet 5428G are as below Baud Rate 9600 Parity None Data Bit 8 Stop Bit 1 a After connected you can see Switch login request 6 Login the switch The default username is admin password admin Booting Sun Jan 1 00 00 00 UTC 2006 Switch login admin Password JetNet5428G version 0 2 25 20090414 11 04 13 Copyright 2006 2008 Korenix Technology Co Ltd Switch gt 3 2 3 2 1 Preparation for Web Interface JetNet 5428G provides HTTP Web Interface and Secured HTTPS Web Interface for web management Web Interface Korenix web management page is developed by JAVA It allows you to use a standard web browser such as Microsoft Internet Explorer or Mozila to configure and interrogate the switch from anywhere on the network Before you attempt to use the embedded web interface to manage switch operation verify that your JetNet 5428G Series Rackmount Ethernet Switch is properly installed o
44. 3 6 1 4 1 24062 2 2 8 gt c Security z x amp cI warning n JetNet5428G Industrial Managed Switch cf Monitor and Diag v0 1 3 20091102 Device Front Panel D Save 00 12 77 60 4b ec Bi Logout Copyright c 2006 2009 Korenix Technology Co Ltd All Rights Reserved 3 2 2 Once you enter the web based management interface you can freely change the JetNet s IP address to fit your network environment Note 1 IE 5 0 or later versions do not allow Java applets to open sockets by default Users have to directly modify the browser settings to selectively enable Java applets to use network ports Note 2 The Web UI connection session of JetNet 5428G will be logged out automatically if you don t give any input after 30 seconds After logged out you should re login and key in correct user name and password again Secured Web Interface Korenix web management page also provides secured management HTTPS login All the configuration commands will be secured and will be hard for the hackers to sniff the login password and configuration commands Launch the web browser and Login 1 Launch the web browser Internet Explorer or Mozila Firefox on the PC 2 Type https 192 168 10 1 or the IP address of the switch And then press Enter 3 The popup screen will appear and request you to trust the secured HTTPS connection distributed by JetNet 5428G first Press Yes to trust it Warning Security A Do you want t
45. Base TX copper port The other interface may take longer time due to the media characteristics Advanced Rapid Dual Homing RDH technology also facilitates JetNet Managed Switch to connect with a core managed switch easily and conveniently With RDH technology you can also couple several Rapid Super Rings or RSTP cloud together which is also known as Auto Ring Coupling TrunkRing technology allows integrate MSR with LACP Port Trunking The LACP Trunk aggregated ports is a virtual interface and it can work as the Ring port of the MSR MultiRing is an outstanding technology Korenix can support Multiple rings can be aggregated within one switch by using different Ring ID The maximum Ring number one switch can support is half of total port volume For example the JetNet 5428G is a 24 Fast Ethernet 4 Gigabit port design that means maximum 14 Rings 12 x 100M Rings and 2 Gigabit Rings can be aggregated to one JetNet 5428G The feature saves much effort when constructing complex network architecture To become backwards compatible with the Legacy Super Ring technology implemented in JetNet 4008 4508 V1 series switches JetNet 4510 4518 5000 Series also supports Super Ring Client mode The Super Ring ports can pass through Super Ring control packets extremely well and works with Super Ring New Ring To create a Rapid Super Ring Just fill in the Ring ID which has range from 0 to 31 If the name field is left blank the name of this ring will au
46. D of the private VLAN port association Switch config if switchport private vlan host association 2 3 Mapping primary to secondary VLANs This command is only available for promiscuous port Switch config interface gi10 Switch config if switchport mode private vlan promiscuous Switch config if switchport private vlan mapping 2 add 3 Switch config if switchport private vian mapping 2 add 4 Switch config if switchport private vlan mapping 2 add 5 Private VLAN Information Private VLAN Switch show vlan private vian Information FLAGS gt Isolated P gt Promiscuous C gt Community Primary Secondary Type Ports p 3 Isolated gi10 P gi9 I 2 4 Community gi10 P gi8 C 2 5 Community gi10 P fa7 C gi9 I 10 PVLAN Type Switch show vlan private vlan type Mlan Type Ports 84 2 primary gi10 B isolated gi9 4 community gi8 community fa7 gi9 10 primary E or Host List Switch show vlan private vlan port list Ports Mode Vian normal normal normal normal normal normal host 5 host 4 host 3 10 promiscuous 2 ONOR OUN Running Config Information Private VLAN Type Private VLAN Port Information Switch show run Building configuration Current configuration hostname Switch vlan learning independent vlan 1 vlan 2 private vlan primary vlan 3 private vlan isolated vlan 4 private vlan community vlan 5
47. DC JetNet 5428G 5428G 2G 2FX chooses standard AC plug as power input socket JetNet 5428G DC chooses 4 pin terminal block as power input socket Follow the V V indication in the rear panel to screw the power source 2 2 Wiring Power Inputs JetNet 5428G provides 2 types power input AC power input for JetNet 5428G and DC power input for JetNet 5428G DC The front power switch can switch off all the power input at the same time JetNet 5428G AC Power Input Connect the attached power cord to the AC power input connector the available AC power input is range from 90 264VAC JetNet 5428G DC DC Power Input The suggested power input is 24VDC the available range is from 12 48VDC Follow below steps to wire JetNet 5428G redundant DC power inputs 1 Insert positive and negative wires into V and V contacts respectively of the terminal block connector 2 Tighten the wire clamp screws to prevent DC Tighten the ze Pie cleppistiens wires from being loosened a gt 3 Power 1 and Power 2 support power redundancy one of it failed the other recovered 4 Positive and negative power system inputs are v V v V both accepted but Power 1 and Power 2 must Insert positive and negative wires into Y and Y contacts apply the same mode Note 1 It is a good practice to turn off input and load power and to unplug power terminal block before making wire connections Otherwise your screwdriver blade can inad
48. Dual Homing II Disabled Statistics Watchdog sent 0 received 0 missed 0 Link Up sent 0 received 0 Link Down sent 0 received 0 Role Transition count 0 Ring State Transition count 1 Ring ID is optional If the ring ID is typed this command will only display the information of the target Ring 69 4 5 VLAN A Virtual LAN VLAN is a logical grouping of nodes for the purpose of limiting a broadcast domain to specific members of a group without physically grouping the members together That means VLAN allows you to isolate network traffic so that only members of VLAN could receive traffic from the same VLAN members Basically creating a VLAN from a switch is the logical equivalent of physically reconnecting a group of network devices to another Layer 2 switch without actually disconnecting these devices from their original switches JetNet 5428G Series Industrial Ethernet Switch supports 802 1Q VLAN 802 1Q VLAN is also known as Tag Based VLAN This Tag Based VLAN allows VLAN to be created across different switches see Figure 1 IEEE 802 1Q tag based VLAN makes use of VLAN control information stored in a VLAN header attached to IEEE 802 3 packet frames This tag contains a VLAN Identifier VID that indicates which VLAN a frame belongs to Since each switch only has to check a frame s tag without the need to dissect the contents of the frame this also saves a lot of computing resources within the switch Figure 4
49. End current mode and change to enable mode exit Exit current mode and down to previous mode list Print command list more Display the contents of a file no Negate a command or set its defaults ping Send echo messages quit Exit current mode and down to previous mode reboot Reboot system reload copy a default config file to replace the current one show Show running system information telnet Open a telnet connection terminal Set terminal line parameters traceroute Trace route to destination write Write running configuration to memory network or terminal 19 Global Configuration Mode Press configure terminal in privileged EXEC mode You can then enter global configuration mode In global configuration mode you can configure all the features that the system provides you Type interface IFNAME VLAN to enter interface configuration mode exit to leave to see the command list Available command lists of global configuration mode Switch configure terminal Switch config access list Add an access list entry administrator Administrator account setting arp Set a static ARP entry clock Configure time of day clock default Set a command to its defaults end End current mode and change to enable mode exit Exit current mode and down to previous mode gvrp GARP VLAN Registration Protocol hostname Set system s network name interface Select an interface to configure ip IP information lacp Link Aggregation Control Protocol list Print command l
50. Engineer VLAN is received and Ingress Filtering is enabled the switch will determine if the port is on the Engineer VLAN s Egress list If it is the frame can be processed If it s not the frame would be dropped VLAN Configuration In this page you can assign Management VLAN create the static VLAN and assign the Egress rule for the member ports of the VLAN Figure 4 5 2 1 Web UI of the VLAN Configuration 72 VLAN Configuration Management VLAN ID 1 Apply Static VLAN v 4 il gt Apply Remove Reload Management VLAN ID The switch supports management VLAN The management VLAN ID is the VLAN ID of the CPU interface so that only member ports of the management VLAN can ping and access the switch The default management VLAN ID is 1 Static VLAN You can assign a VLAN ID and VLAN Name for new VLAN here VLAN ID is used by the switch to identify different VLANs Valid VLAN ID is between 1 and 4094 1 is the default VLAN VLAN Name is a reference for network administrator to identify different VLANs The available character is 12 for you to input If you don t input VLAN name the system will automatically assign VLAN name for the VLAN The rule is VLAN VLAN ID Static VLAN Figure 4 5 2 2 The steps to create a new VLAN Type VLAN ID and NAME and press Add to create a new VLAN Then you can see the new VLAN in the Static VLAN Configuration table Refer to Figure 4 5
51. F58D RSTP The mode should be rst the timings can be configured in global settings listed in above Global Information Active Information Switch show spanning tree active Spanning Tree Enabled Protocol MSTP Root Address 0012 77ee eeee Priority 32768 Root Path Cost 0 Root Port N A 66 Root Times max age 20 hello time 2 forward delay 15 Bridge Address 0012 77ee eeee Priority 32768 Bridge Times max age 20 hello time 2 forward delay 15 BPDU transmission limit 3 Port Role State Cost Prio Nbr Type Aggregated fal Designated Forwarding 200000 128 1 P2P RSTP N A fa2 Designated Forwarding 200000 128 2 P2P RSTP N A RSTP Summary Switch show spanning tree summary Switch is in rapid stp mode BPDU skewing detection disabled for the bridge Backbonefast disabled for bridge Summary of connected spanning tree ports Port State Summary Blocking Listening Learning Forwarding Disabled 0 0 0 2 8 Port Link Type Summary AutoDetected PointToPoint SharedLink EdgePort 9 0 1 9 Port Info Switch show spanning tree port detail fa7 Interface_ID Rapid Spanning Tree feature Enabled Port 128 6 as Disabled Role is in Disabled State Port Path Cost 200000 Port Identifier 128 6 RSTP Port Admin Link Type is Auto Oper Link Type is Point to Point RSTP Port Admin Edge Port is Enabled Oper Edge Port is Edge Designated root has priority 32768 address 0012 7700 0112 Designated bri
52. G attaches one RS 232 DB 9 to DB 9 cable in the box Connect the DB 9 connector to the COM port of your PC open Terminal tool and set up serial settings to 9600 N 8 1 Baud Rate 9600 Parity None Data Bit 8 Stop Bit 1 Then you can access CLI interface by console cable Note If you lost the cable please contact with your sales or follow the pin assignment to buy a new one The Pin assignment spec is listed in the appendix 2 8 Rack Mounting Installation The Rack Mount Kit is attached inside the package 2 1 1 Attach the brackets to the device by using the screws provided in the Rack Mount kit The picture is JetNet 5628G the mounting method is the same 2 2 2 Mount the device in the 19 rack by using four rack mounting screws provided by the rack manufacturer The picture is JetNet 5628G the mounting method is the same When installing multiple switches mount them in the rack one below the other It s requested to reserve 0 5U 1U free space for multiple switches installing in high temperature environment This is important to disperse the heat generated by the switch Notice when installing Temperature Check if the rack environment temperature conforms to the specified operating temperature range e Mechanical Loading Do no place any equipment on top of the switch In high vibration environment additional rack mounting protection is necessary like the flat board under above the switch e Gr
53. Korenix JetNet 5428G Series Rackmount Managed Ethernet Switch User Manual Version 1 2 Jun 2011 korenix www korenix com Korenix JetNet 5428G Series Rackmount Managed Ethernet Switch User s Manual Copyright Notice Copyright 2006 2011 Korenix Technology Co Ltd All rights reserved Reproduction in any form or by any means without permission is prohibited Federal Communications Commission FCC Statement This equipment has been tested and found to comply with the limits for a Class A digital device pursuant to Part 15 of the FCC Rules These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial environment This equipment generates uses and can radiate radio frequency energy and if not installed and used in accordance with the instruction manual may cause harmful interference to radio communications Operation of this equipment in a residential area is likely to cause harmful interference in which case the user will be required to correct the interference at his expense The user is cautioned that changes and modifications made to the equipment without approval of the manufacturer could void the user s authority to operate this equipment EVEFOCUICUION grae terass sce SAEK E E AT ISAAT Aa aa tae tesote tasty AA AA SAAFAR 2 1 1 OLI A cid rect caliett a acuplit cca A tece aetneinesa sts Ceaseotie cae tees E canta E E 2 1 2 Major Features
54. Monitor Destination P rt fa6 Egress Monitor Destination P rt fa6 Ingress Source Po ts fa1 fa2 Egress Source Po ts fa1 fa2 Event Log Display Switch show event log lt 1 gt Jan 1 02 50 47 snmpd 101 Event Link 4 Down k2 gt Jan 1 02 50 50 snmpd 101 Event Link 5 Up k3 gt Jan 1 02 50 51 snmpd 101 Event Link 5 Down K4 gt Jan 1 02 50 53 snmpd 101 Event Link 4 Up Topology Discovery LLDP Enable LLDP Switch config Ildp holdtime Specify the holdtime of LLDP in seconds run Enable LLDP timer Set the transmission frequency of LLDP in seconds Switch config Ildp run LLDP is enabled Change LLDP timer Switch config Ildp holdtime lt 10 255 gt Valid range is 10 255 Switch config lIldp timer lt 5 254 gt Valid range is 5 254 126 Ping Ping IP Switch ping 192 168 10 33 PING 192 168 10 33 192 168 10 33 56 data bytes 64 bytes from 192 168 10 33 icmp_seq 0 ttl 128 time 0 0 ms 64 bytes from 192 168 10 33 icmp_seq 1 ttl 128 time 0 0 ms 64 bytes from 192 168 10 33 icmp_seq 2 ttl 128 time 0 0 ms 64 bytes from 192 168 10 33 icmp_seq s ttl 128 time 0 0 ms 64 bytes from 192 168 10 33 icmp_seq 4 ttl 128 time 0 0 ms r 192 168 10 33 ping statistics 5 packets transmitted 5 packets received 0 packet loss round trip min avg max 0 0 0 0 0 0 ms 127 4 12 Device Front Panel Device Front Panel command allows you to see LED status of the switc
55. P Relay Agent The DHCP Relay Agent is also known as DHCP Option 82 It can help relay the DHCP Request to remote DHCP server located in different subnet Note The DHCP Server can not work with DHCP Relay Agent at the same time Relay Agent Choose Enable or Disable the relay agent Relay Policy The Relay Policy is used when the DHCP request is relayed through more than one switch The switch can drop keep or replace the MAC address of the DHCP Request packet Helper Address Type the IP address of the target DHCP Server There are 4 available IP addresses DHCP Relay Agent Relay Agent Enable gt Relay Policy Relay policy drop Relay policy keep Relay policy replace 3S 1 192 168 10 254 4 2 7 Backup and Restore With Backup command you can save current configuration file saved in the switch s flash to admin PC or TFTP server This will allow you to go to Restore command later to restore the configuration file back to the switch Before you restore the configuration file you must place the backup configuration file in the PC or TFTP server The switch will then download this file back to the flash There are 2 modes for users to backup restore the configuration file Local File mode and TFTP Server mode Local File mode In this mode the switch acts as the file server Users can browse the target folder and then type the file name to backup the configuration Users can also browse the target folder and sel
56. PG bS bO PO l 121 4 12 3 Port Mirroring Port mirroring also called port spanning is a tool that allows you to mirror the traffic from one or more ports onto another port without disrupting the flow of traffic on the original port Any traffic that goes into or out of the Source Port s will be duplicated at the Destination Port This traffic can then be analyzed at the Destination port using a monitoring device or application A network administrator will typically utilize this tool for diagnostics debugging or fending off attacks Port Mirror Mode Select Enable Disable to enable disable Port Mirror Source Port This is also known as Monitor Port These are the ports you want to monitor The traffic of all source monitor ports will be copied to destination analysis ports You can choose single port or any combination of ports you can monitor them in Rx only TX only or both RX and TX Click on checkbox of the RX Tx to select the source ports Destination Port This is also known as Analysis Port You can analyze the traffic of all the monitored ports at this port without affecting the flow of traffic on the port s being monitored Only one of the destination ports can be selected A network administrator would typically connect a LAN analyzer or Netxray device to this port Port Mirroring Port Mirror Mode Enable v Port Selection Once you finish configuring the settings click on Apply to apply the settings 122 4
57. You can specify the switch s physical location here The available characters you can input are 64 System Contact You can specify contact people here You can type the name mail address or other information of the administrator The available characters you can input are 64 System OID The SNMP object ID of the switch You can follow the path to find its private MIB in MIB browser Note When you attempt to view private MIB you should compile private MIB files into your MIB browser first System Description JetNet 5428G Industrial Managed Switch is the name of this product Firmware Version Display the firmware version installed in this device MAC Address Display unique hardware address MAC address assigned by the manufacturer Once you finish the configuration click on Apply to apply your settings Note Always remember to select Save to save your settings Otherwise the settings you made will be lost when the switch is powered off Admin Password You can change the user name and the password here to enhance security Figure 4 2 2 1 Web UI of the Admin Password User name You can key in new user name here The default setting is admin Password You can key in new password here The default setting is admin Confirm Password You need to type the new password again to confirm it Once you finish configuring the settings click on Apply to apply your configuration Figure 4 2 2 2 Popup alert window for In
58. a the network 4 2 10 System Reboot System Reboot allows you to reboot the device Some of the feature changes require you to reboot the system Click on Reboot to reboot your device Note Remember to click on Save button to save your settings Otherwise the settings you made will be gone when the switch is powered off Figure 4 2 8 1 Main screen for Rebooting Reboot Please click Reboot button to restart switch device Reboot Figure 4 2 8 2 Pop up alert screen to request confirmation Click on Yes Then the switch will be rebooted immediately Confinn Dialog 2 Do you really want to reboot the switch S Figure 4 2 8 3 Pop up message screen appears when rebooting the switch 37 Success Message a Gi Switch rebooting Auto relogin after 60 seconds Note Since different browser may has different behavior If the Web GUI don t re login well please manually type the IP Address and login the system again 4 2 11 CLI Commands for Basic Setting Feature Command Line Switch Setting System Name Switch config hostname WORD Network name of this system Switch config hostname JN5428G SWITCH config System Location SWITCH config snmp server location Taipei System Contact SWITCH config snmp server contact korecare korenix com Display SWITCH show snmp server name SWITCH SWITCH show snmp server location Taipei SWITCH show snmp server contact korecare kor
59. adius server ip 192 168 10 120 key 1234 RADIUS Server Port number NOT given default 1812 RADIUS Accounting Port number NOT given default 1813 RADIUS Server IP 192 168 10 120 RADIUS Server Key 1234 RADIUS Server Port 1812 RADIUS Accounting Port 1813 Switch config radius server ip Switch config dot1x radius Switch config dot1x radius server ip 192 168 10 120 key 112 1234 RADIUS Server Port number NOT given default 1812 RADIUS Accounting Port number NOT given default 1813 RADIUS Server IP 192 168 10 120 RADIUS Server Key 1234 RADIUS Server Port 1812 RADIUS Accounting Port 1813 Switch config radius secondary server ip Switch config dot1x radius secondary server ip 192 168 10 250 key 5678 Port number NOT given default 1 812 RADIUS Accounting Port number NOT given default 1813 Secondary RADIUS Server IP 192 168 10 250 Secondary RADIUS Server Key 5678 Secondary RADIUS Server Port 1812 Secondary RADIUS Accounting Port 1813 User name password for authentication Switch config dot1x userna orenixnix pass orenixnix vlan 1 Display Switch show dot1x lt cr gt all Show Dot1x information for all interface authentic method Dot1x authentic method interface Interface name radius Remote Access Dial In User Service statistics Interface name username User Name in local radius database Switch show dot1x lt cr gt Switch show dot1
60. aged Ethernet Switch User Manual Following topics are covered in this chapter 1 1 Overview 1 2 Major Features 1 3 Package Checklist 1 1 Overview The JetNet 5428G Series the 19 inch 24 4G Managed Ethernet Ring Switch includes JetNet 5428G JetNet 5428G DC and JetNet 5428G 2G 2FX The JetNet 5428G 5428G DC is equipped with 24 10 100 Base TX ports plus 4 Gigabit RJ45 MINI GBIC combo ports The 5428G 2G 2FX is equipped with 24 10 100 Base TX ports 2 100M Gigabit SFP plus 2 Gigabit RJ45 SFP combo ports JetNet 5428G Series is a special design for control rooms where high port density and performance are required The 2 4 Gigabit Combo port design allows 10 100 1000 triple speed of copper ports and the SFP ports accept all types of Gigabit SFP transceivers including Gigabit SX LX LHX ZX and XD for several connections and distances Additionally the last 2 SFP ports of JetNet 5428G 2G 2FX can support 100Base FX and Gigabit SFP transceivers Model Name Description Rackmount Managed Ethernet Switch with 24 10 100Base TX JetNet 34206 4 Gigabit Combo Ports 90 264VAC input Rackmount Managed Ethernet Switch with 24 10 100Base TX JetNet 5428G DC Gigabit Combo Ports 24V 12 48V DC input Rackmount Managed Ethernet Switch with 24 10 100Base TX 2 100Base FX 1000Base X SFP 2 Gigabit Combo Ports 90 264VAC input JetNet 5428G 2G 2FX The device is mounted within the 19 inch rack along with other 19 inch public servers or
61. apping is set ok Display CoS Queue mapping Switch sh qos cos map CoS to Queue Mapping CoS Queue NOOR WD WOWNN OO DSCP Queue Mapping Format Switch config qos dscp map lt 0 63 gt Assign an priority 63 highest Switch config qos dscp map 0 lt 0 3 gt Assign an queue 0 3 Format qos dscp map priority_value queue_value Map DSCP 0 to Queue 1 Switch config qos dscp map 0 1 The TOS DSCP to queue mapping is set ok Display DSCO Queue mapping Switch show qos dscp map DSCP to Queue Mapping dscp d1 d2 d2 0123456789 di ae Fee 011111111100 1 0000000000 2 0000111111 3 1122222222 4 2222222233 5 3333333333 613333 91 4 8 4 8 1 Multicast Filtering For multicast filtering JetNet 5428G uses IGMP Snooping technology IGMP Internet Group Management Protocol is an Internet Protocol that provides a way for internet device to report its multicast group membership to adjacent routers Multicasting allows one computer on the internet to send data to a multitude of other computers that have identified themselves as being interested in receiving the originating computers data Multicasting is useful for such applications as updating the address books of mobile computer users in the field sending out newsletters to a distribution list and broadcasting streaming media to an audience that has tuned into the event by setting up multicast gr
62. astethernet7 mac address table ucast static set ok Note rule mac address table static MAC_address VLAN VID interface interface_name Add Multicast MAC address Switch config mac address table multicast 0100 5e01 0101 vlan 1 interface fa6 7 Adds an entry in the multicast table ok Note rule mac address table multicast MAC_address VLAN VID interface_list interface_name range Show MAC Address Table All types Show MAC Address Table Dynamic Learnt MAC addresses Switch show mac address table UNICAST MAC ADDRESS Destination Address Address Type Vian Destination Port 000f b079 ca3b Dynamic 1 fa4 0012 7701 0386 Dynamic 1 fa7 0012 7710 0101 Static 1 fa7 0012 7710 0102 Static 1 fa7 0012 77ff 0100 Management 1 MULTICAST MAC ADDRESS Mlan Mac Address COS Status Ports 1 0100 5e40 0800 Oo fa 6 1 0100 5e7f fffa 0 fa4 fa6 Switch show mac address table dynamic Destination Address Address Type Vian Destination Port 000f b079 ca3b Dynamic 1 fa4 0012 7701 0386 Dynamic 1 fa7 Show MAC Address Table Multicast MAC addresses Switch show mac address table multicast Vlan Mac Address COS Status Ports 1 0100 5e40 0800 o fa6 7 1 0100 5e7f fffa 0 fa4 fa6 7 Show MAC Address Table Static MAC addresses Switch show mac address table static Destination Address Address Type Vian Destination Port 0012 7710 0101 Static 1 fa7 0012 7710 0102 Static 1 fa7 Show Aging t
63. ching Performance no collision or delay when wire speed transmission Supports Jumbo Frame up to 9 216 byte RSTP and Multiple Super Ring Rapid Super Ring Rapid Dual Homing MultiRing TrunkRing Maximum 12 x 100M Rings plus 2 Gigabit Rings aggregation capability VLAN LACP GVRP QoS IGMP Snooping Rate Control Online Multi Port Mirroring Link Layer Discovery Protocol LLDP SNMP V1 V2c V3 RMON and JetView Discovering and Management Advanced Security supports IP Port Security 802 1x and Access Control List Event Notification by E mail SNMP Trap Syslog and Relay Output Rigid Aluminum Case complies with IP31 90 264VAC or Dual 12 48VDC power input Note The detail spec is listed in latest datasheet Please download the latest datasheet in Korenix Web site 1 3 Package List Korenix JetNet 5428G Series products are shipped with following items JetNet 5428G 24 4G Rackmount Managed Ethernet Ring Switch JetNet 5428G no SFP transceivers Rack Mount Kit Console Cable Power Cord Document CD JetNet 5428G DC 24 4G Rackmount Managed Ethernet Ring Switch with 12 48VDC input Includes JetNet 5428G DC no SFP transceivers Rack Mount Kit Console Cable Document CD JetNet 5428G 2G 2FX 24 4G Rackmount Managed Ethernet Ring Switch JetNet 5428G 2G 2FX no SFP transceivers Rack Mount Kit Console Cable Power Cord Document CD JetNet 5428G 90 264VAC JetNet 5428G 2G 2FX 90 264VAC JetNet 5428G DC 24V 12 48V DC If any of the
64. class The 10 is the highest ratio The ratio of each class is as below Wx WO W1 W2 W3 Total volume of Queue 0 3 4 7 2 Port based Queue Mapping Choose the Queue value of each port the port then has its default priority The Queue 3 is the highest port based queue 0 is the lowest queue The traffic injected to the port follows the queue level to be forwarded but the outgoing traffic doesn t bring the queue level to next switch Ej Jetneth428G D System gt C Basic Setting gt C3 Port Configuration Port based Queue Mapping CI Network Redundancy amp VLAN Ei Traffic Prioritization Da QoS Setting Port based Queue Mapping Py ce CoS Queue enapan G DSCP Queue Mapping gt CI Multicast Filtering gt EG SNMP c3 Security gt cJ warning C Monitor and Diag ry Device Front Panel L Save D Logout Apply After configuration press Apply to enable the settings 4 7 3 CoS Queue Mapping This page is to change CoS values to Physical Queue mapping table Since the switch fabric of JetNet only supports 4 physical queues Lowest Low Middle and High Users should therefore assign how to map CoS value to the level of the physical queue In JetNet users can freely assign the mapping table or follow the suggestion of the 802 1p standard Korenix uses 802 p suggestion as default values You can find CoS values 1 and 2 are mapped to physical Queue 0 the lowest queue CoS values 0 an
65. correct Username 25 Error Message YTY Connect and Login Failed gt admin 4 2 3 IP Configuration This function allows users to configure the switch s IP address settings IP Configuration DHCP Client pisabie E 92 168 0 48 255 255 255 0 fi 92 168 10 254 DHCP Client You can select to Enable or Disable DHCP Client function When DHCP Client function is enabled an IP address will be assigned to the switch from the network s DHOP server In this mode the default IP address will therefore be replaced by the one assigned by DHCP server If DHCP Client is disabled then the IP address that you specified will be used instead IP Address You can assign the IP address reserved by your network for your JetNet If DHCP Client function is enabled you don t need to assign an IP address to the JetNet as it will be overwritten by DHCP server and shown here The default IP is 192 168 10 1 Subnet Mask You can assign the subnet mask for the IP address here If DHCP Client function is enabled you don t need to assign the subnet mask The default Subnet Mask is 255 255 255 0 Note In the CLI we use the enabled bit of the subnet mask to represent the number displayed in web UI For example 8 stands for 255 0 0 0 16 stands for 255 255 0 0 24 stands for 255 255 255 0 Default Gateway You can assign the gateway for the switch here The default gateway is 192 168 10 254 Note In CLI we use 0 0 0 0 0 to repres
66. d 1 2 10 77 switchport dotiq tunnel mode access interface fastethernet6 switchport access vlan add 1 2 switchport trunk allowed vlan add 10 switchport dot1q tunnel mode uplink VLAN Configuration Create VLAN 2 Switch config vlan 2 vlan 2 success Switch config interface vlan 2 Switch config if Note In CLI configuration you should create a VLAN interface first Then you can start to add remove ports Default status of the created VLAN is unused until you add member ports to it Remove VLAN Switch config no vlan 2 no vlan success Note You can only remove the VLAN when the VLAN is in unused mode VLAN Name VLAN description IP address of the VLAN Switch config vlan 2 vlan 2 has exists Switch config vlan name v2 Switch config vlan no name Note Use no name to change the name to default name VLAN VID Switch config interface vlan 2 Switch config if Switch config if description this is the VLAN 2 Switch Switch Switch Switch config if no description config interface vlan 2 config if config if ip address 192 168 10 18 24 gt Delete the description a oa Switch config if no ip address 192 168 10 8 24 the IP address gt Delete Create multiple VLANs VLAN 5 10 Switch config interface vian 5 10 Shut down VLAN Switch config interface vlan 2 Switch config if shutdown Switch config if no shutdown gt
67. d 3 are mapped to physical Queue 1 the low normal physical queue CoS values 4 and 5 are mapped to physical Queue 2 the middle physical queue CoS values 6 and 7 are mapped to physical Queue 3 the high physical queue 88 4 JetNet5428G O System C Basic Setting C Port Configuration 4 Network Redundancy gt I VLAN Ei Traffic Prioritization FY QoS Setting Port based Queue Mappit CoS Queue Mapping D DSCP Queue Mapping After configuration press Apply to enable the settings 4 7 4 DSCP Queue Mapping CoS Queue Mapping CoS Queue Mapping erer Kide ee Ae e T Note Queue 3 is the highest priority queue in using Strict Priority scheme This page is to change DSCP values to Physical Queue mapping table Since the switch fabric of JetNet only supports 4 physical queues Lowest Low Middle and High Users should therefore assign how to map DSCP value to the level of the physical queue In JetNet users can freely change the mapping table to follow the upper layer 3 switch or routers DSCP setting c JetNeth428G Ly System E Basic Setting C Port Configuration C Network Redundancy VLAN E Traffic Prioritization aos Setting D Port based Queue Mappir f G CoS Queue Mapping O DSCP Queue Mapping c Multicast Filtering o EJ SNMP c Security c warning cf Monitor and Diag D Device Front Panel D Save D Logout Traffic Prioriti
68. dcast Storm Control setting page Add more information of the Multiple Super Ring Add LACP Long Short Feature amp CLI setting Correct some incorrect wordings Update 2 pages web UI Modify some UI and description Change to V1 0 The first version 134 5 5 About Korenix Less Time At Work Fewer Budget on applications The Korenix business idea is to let you spend less time at work and fewer budget on your applications Do you really want to go through all the troubles but still end up with low quality products and lousy services Definitely not This is why you need Korenix Korenix offers complete product selection that fulfills all your needs for applications We provide easier faster tailor made services and more reliable solutions In Korenix there is no need to compromise Korenix takes care of everything for you Fusion of Outstandings You can end your searching here Korenix Technology is your one stop supply center for industrial communications and networking products Korenix Technology is established by a group of professionals with more than 10 year experience in the arenas of industrial control data communications and industrial networking applications Korenix Technology is well positioned to fulfill your needs and demands by providing a great variety of tailor made products and services Korenix s industrial grade products also come with quality services No more searching and no more worries Korenix Technolog
69. dge has priority 32768 address 0012 7760 1aec Designated Port ID is 128 6 Root Path Cost is 600000 Timers message age 0 sec forward delay 0 sec Link Aggregation Group N A Type N A Aggregated with N A BPDU sent 43759 received 4854 TCN sent 0 received 0 Forwarding State Transmit count 12 Message Age Expired count MSTP Information MSTP Configuraiton Display all MST Switch show spanning tree mst configuration Current MST configuration MSTP is Running Name orenixnix Revision 65535 Instance Vlans Mapped 0 1 4 4094 1 2 2 x Config HMAC MD5 Digest 0xB41829F9030A054FB74EF7A8587FF58D Switch show spanning tree mst Information MSTOO vians mapped 1 4 4094 Bridge address 0012 77ee eeee priority 32768 sysid 0 Root this switch for CST and IST Configured max age 2 hello time 15 forward delay 20 max hops 20 67 Port Role State Cost Prio Nbr Type fal Designated Forwarding 200000 128 1 P2P Internal MSTP fa2 Designated Forwarding 200000 128 2 P2P Internal MSTP MSTO1 vlans mapped 2 Bridge address 0012 77ee eeee priority 32768 sysid 1 Root this switch for MST01 Port Role State Cost Prio Nbr Type fai Designated Forwarding 200000 128 1 P2P Internal MSTP fa2 Designated Forwarding 200000 128 2 P2P Internal MSTP MSTP Root Information Switch show spanning tree mst root MST Root Root Root Root Max Hello Fwd Instance Address Priority Cost Port age dl
70. e the BPDU would be ignored and the lower switches are separated to different RSTP domain The switches in other RSTP domain can t be managed through upper switch Since different RSTP aware switches may have their own mechanism to calculate the message age So that this is most possibly occurred when interoperate different vendors RSTP aware switches together The maximum volume of the Korenix RSTP domain is 23 configure the MAX Age lower than 23 is recommended Hello Time 1 10 Enter a value from 1 to 10 seconds here This is a periodic timer that drives the switch to send out BPDU Bridge Protocol Data Unit packet to check current STP status The root bridge of the spanning tree topology periodically sends out a hello message to other devices on the network to check if the topology is healthy The hello time is the amount of time the root has waited during sending hello messages Forward Delay Time 4 30 Enter a value between 4 and 30 seconds This value is the time that a port waits before changing from Spanning Tree Protocol learning and listening states to forwarding state This is the amount of time JetNet will wait before checking to see if it should be changed to a different state Once you have completed your configuration click on Apply to apply your settings Note You must observe the following rule to configure Hello Time Forwarding Delay and Max Age parameter 2 x Forward Delay Time 1 sec
71. e Upgrade LocalFile v flet5428G y1 0 image bin cd Note When firmware upgrade is finished the switch will restart automatically Upgrade aad Click on Folder icon to select the target firmware file you want to upgrade Figure 4 2 6 3 Warning Message Warming Message A Firmware upgrading don t turn off the switch and web page it will take about 3 minutes When firmware upgrade is finished the switch will restart automatically Error Message x Firmware update failed File error or not a firmware for the switch Before upgrading firmware please check the file name and switch model name first and carefully Korenix switch provide protection when upgrading incorrect firmware file the system would not crash even download the incorrect firmware Even we have the protection we still ask you don t try test upgrade incorrect firmware the unexpected event may occure or damage the system 35 Figure 4 2 6 5 Firmware Upgrade TFTP Server mode Firmware Upgrade System Firmware Version v0 1 3 System Firmware Date 20091102 1 7 48 08 WebManager Build Date 2009 11 02 18 02 20 Firmware Upgrade TFTP Server M fi 92 168 10 20 e JetNets428G r1 0 image Note When firmware upgrade is finished the switch will restart automatically Upgrade Type the IP address of TFTP Server and Firmware File Name Then click on Upgrade to start the process After finishing transmit
72. e configuration file Your environment may use different IP addresses or different file name Please type target TFTP server IP or file name in this command Restore Configuration Switch copy tftp 192 168 10 33 default conf startup config Show Startup Switch show startup config Configuration Show Running Switch show running config Configuration Firmware Upgrade Firmware Upgrade Switch archive download sw overwrite tftp 192 168 10 33 JN5428G bin Firmware upgrading don t turn off the switch Tftping file JN5428G bin Firmware upgrading Firmware upgrade success Rebooting Factory Default Factory Default Switch reload default config file Reload OK Switch reboot System Reboot Reboot Switch reboot 42 4 3 4 3 1 4 3 2 Port Configuration Port Configuration group enables you to enable disable port state or configure port auto negotiation speed and duplex flow control rate limit control and port aggregation settings It also allows you to view port status and aggregation information Following commands are included in this group 4 3 1 Understand the port mapping 4 3 2 Port Control 4 3 3 Port Status 4 3 4 Rate Control 4 3 5 Storm Control 4 3 6 Port Trunking 4 3 7 Command Lines for Port Configuration Understand the port mapping Before configuring the port settings understand the port number in 5428G first There are 24 Fa
73. eaning of the Path Cost Priority Link Type and Edge Port is the same as the definition of RSTP MSTP Port Configuration Instance ID 200000 Enable 200000 128 Auto Enable Lal 60 4 4 6 4 4 7 Path Cost Enter a number between 1 and 200 000 000 This value represents the cost of the path to the other bridge from the transmitting bridge at the specified port Priority Enter a value between 0 and 240 using multiples of 16 This is the value that decides which port should be blocked by priority in a LAN Link Type There are 3 types for you select Auto P2P and Share Some of the rapid state transitions that are possible within RSTP depend upon whether the port of concern can only be connected to another bridge i e it is served by a point to point LAN segment or if it can be connected to two or more bridges i e it is served by a shared medium LAN segment This function allows link status of the link to be manipulated administratively Auto means to auto select P2P or Share mode P2P means P2P is enabled the 2 ends work in Full duplex mode While Share is enabled it means P2P is disabled the 2 ends may connect through a share media and work in Half duplex mode Edge A port directly connected to the end stations cannot create a bridging loop in the network To configure this port as an edge port set the port to the Enable state When the non bridge device connects an admin edge por
74. ect existed configuration file to restore the configuration back to the switch This mode is only provided by Web UI while CLI is not supported TFTP Server mode In this mode the switch acts as TFTP client Before you do so make sure that your TFTP server is ready Then please type the IP address of TFTP Server and Backup configuration file name This mode can be used in both CLI and Web UI TFTP Server IP Address You need to key in the IP address of your TFTP Server here Backup Restore File Name Please type the correct file name of the configuration file Configuration File The configuration file of the switch is a pure text file You can open it by word txt read file You can also modify the file add remove the configuration settings and then restore back to the switch Startup Configuration File After you saved the running config to flash the new settings 32 will be kept and work after power cycle You can use show startup config to view it in CLI The Backup command can only backup such configuration file to your PC or TFTP server Technical Tip Default Configuration File The switch provides the default configuration file in the system You can use Reset button Reload command to reset the system Running Configuration File The switch s CLI allows you to view the latest settings running by the system The information shown here is the settings you set up but haven t saved to flash The settings not yet saved to flash w
75. enix com Switch gt show ver JetNet5428G 2G 2FX Loader Version 1 0 0 3 Firmware Version 1 1 26 20101025 10 17 48 Copyright 2006 2009 Korenix Technology Co Ltd SWITCH show hardware led led information mac mac address Switch show hardware mac MAC Address 00 12 77 FF 01 B0 Switch show hardware led RM Off Admin Password NAME Administrator account name Password SWITCH config administrator orwell PASSWORD Administrator account password SWITCH config administrator orwell orwell 38 Change administrator account orwell and password orwell SUCCESS Display SWITCH show administrator Administrator account information name orwell password orwell IP Configuration IP Address Mask 192 168 10 8 255 255 255 0 SWITCH config int vlan 1 SWITCH config if ip address dhcp SWITCH config if ip address 192 168 10 8 24 DHCP Client SWITCH config if ip dhcp client SWITCH contfig if ip dhcp client renew Gateway SWITCH config ip route 0 0 0 0 0 192 168 10 254 24 Remove Gateway SWITCH config no ip route 0 0 0 0 0 192 168 10 254 24 Display Time Setting SWITCH show interface vian1 interface vian1 is up line protocol detection is disabled index 22 metric 1 mtu 1500 lt gt Hwaddr 00 12 77 ff 13 57 inet 192 168 10 8 24 broadcast 192 168 10 255 interface vlan1 ip address 192 168 10 8 24 no shutdown ip route 0 0 0 0 0 192 168 10
76. ent for the default gateway Once you finish configuring the settings click on Apply to apply your configuration 4 2 4 Time Setting Time Setting source allow user to set the time manually or through NTP server Network Time Protocol NTP is used to synchronize computer clocks on the internet You can configure NTP settings here to synchronize the clocks of several switches on the network JetNet 5428G also provides Daylight Saving function 26 Time Setting System Time Tue Jan 1 00 19 11 2008 an zlo 7 oo oo T7 an gt o v 00 00 J gt Manual Setting User can select Manual setting to change time as user wants User also can click the button Get Time from PC to get PC s time setting for switch After click the Get Time from PC and apply the setting the System time display the same time as your PC s time NTP client Select the Time Setting Source to NTP client can let device enable the NTP client service NTP client will be automatically enabled if you change Time source to NTP Client The system will send request packet to acquire current time from the NTP server you assigned NTP Client 192 1 68 10 121 IEEE 1588 With the Precision Time Protocol IEEE 1588 there is now for the first time a standard available which makes it possible to synchronize the clocks of different end devices over a network at speeds faster than one microsecond To e
77. erly installed and used This warranty is voided if defects malfunctions or failures of the warranted Product are caused by damage resulting from force measure such as floods fire etc environmental and atmospheric disturbances other external forces such as power line disturbances host computer malfunction plugging the board in under power or incorrect cabling or the warranted Product is misused abused or operated altered and repaired in an unauthorized or improper way Korenix Technologies Co Ltd Business service sales korenix com Customer service koreCARE korenix com 135
78. es 18 4 1 Command Line Interface Introduction 0 0c cccceceeeeeeeeeeeeeeeeeeeeeeeseeeeeenaeeeseneeees 19 4 2 BasicSetting sccecccnaiin cee el ia antl ral A A E 24 4 3 Port Configurationiza iiAihane ae aia Masha eae as 43 4 4 Network REGUNCANCY ceeeceee een eeeee tenets ee eaeeeeeeaaeeeeeeaaeeeeeetaaeeeeetaeeeeeenaeeeeneaa 53 4 5 VEANG ste TE E A E au AT S E SE 70 4 6 Private VLAN styccccd titi dare rtiees aadnk aaee ARAE alana ARA N e aA AAE aah tales 80 4 7 LFatlicsPHOmtiZaton e a a A a ae seas 87 4 8 Multicast Fieger iinan aitaa e aaa dai iiA N NANa ASSA aiaa 92 4 9 SNMP EnA EER EEEE E T E A TEAT 98 4al 0A SECUN isare e oth ait a a a a aa t aha 102 AAt Warnings a a a a a ert reriveebererrrer erp terre per eerec cree ree 115 A12 Monitor and Didge cereo siini negnna a AE aa EE SA N 120 4 12 Device Front Panel srelen keia a a a a a aa 128 413 Savet Fl sh 1 scwcd tanana aiaa aa anaa ea haaa aia Aaaa 129 py E 00 00 Keer E EA E AEE EE E EE T E E E ETET 130 Appen sns saa aa aatia a aaa DAAL a NA S 131 5 1 Pin Assignment of the RS 232 Console Cable cccccecessceeeeeeeeseeeeeeneeees 131 5 2 5 3 5 4 5 5 Korenix SEP family ies fives ce uim Slee ae dees i ee ese aes 132 Korenbc Private MIB rm nina eat eee tet dat ie aes eae ele 133 Revision FISTOTY rituri naan bea AE EEA AA ETATE AAAA teeta 134 ADOUTt Saan EE A E E AA E E E A AE AT 135 1 Introduction Welcome to Korenix JetNet 5428G Rackmount Man
79. eue Mapping 4 6 4 DSCP Queue Mapping 4 6 5 CLI Commands of the Traffic Prioritization QoS Setting In QoS setting you should choose the QoS Priority Mode first Port Based Cos or DSCP modes Choose the preferred mode and you can configure the next settings in its own configuration pages The other page of the mode you don t select can t be configured In QoS setting you should choose the QoS Priority Mode first Port Based Cos or DSCP modes Choose the preferred mode and you can configure the next settings in its own configuration pages The other page of the mode you don t select can t be configured JetNet6428G gu Y System QoS Setting c Basic Setting gt c Port Configuration QoS Priority Mode d ae Redundancy Portbasaa J Traffic Prioritization Cos D QoS Setting psep Portbased Queue Mappir CoS Queue Mapping Queue Scheduling DSCP Queue Mapping p o CA Multicast Filtering Use a Strict Priority scheme o EJ SNMP Use Weighted Round Robin scheme gt c Security c Warning C Monitor and Diag G Device Front Panel C Save B Logout 87 Queue Scheduling You can select the Queue Scheduling rule as follows Use a strict priority scheme Packets with higher priority in the queue will always be processed first except that there is no packet with higher priority Use Weighted Round Robin scheme This scheme allows users to assign new weight ratio for each
80. evious mode flowcontrol Set flow control value for an interface garp General Attribute Registration Protocol ingress 802 1Q ingress filtering features lacp Link Aggregation Control Protocol list Print command list loopback Specify loopback mode of operation for a port mac MAC interface commands mdix Enable mdix state of a given port no Negate a command or set its defaults qos Quality of Service QoS quit Exit current mode and down to previous mode rate limit Rate limit configuration shutdown Shutdown the selected interface spanning tree spanning tree protocol speed Specify the speed of a Fast Ethernet port or a Gigabit Ethernet port switchport Set switchina mode characteristics VLAN Interface Configuration Press interface VLAN VLAN ID in global configuration mode You can then enter VLAN interface configuration mode In this mode you can configure the settings for the specific VLAN The VLAN interface name of VLAN 1 is VLAN 1 VLAN 2 is VLAN 2 Type exit to leave the mode Type to see the available command list The command lists of the VLAN interface configuration mode Switch config interface vlan 1 Switch config if description Interface specific description end End current mode and change to enable mode exit Exit current mode and down to previous mode ip Interface Internet Protocol config commands list Print command list no Negate a command or set its defaults quit Exit current mode and down to previous mode
81. f hosts based on the wildcard Some of the allowance examples are as below Wildcard Bit Number of Note allowance Any 11111111 11111111 All All IP addresses 11111111 11111111 ae Host 0 0 0 0 1 Only the Source or Destination host 0 0 0 3 0 0 0 0000001 1 0 0 0 7 0 0 0 000001 11 0 0 0 15 0 0 0 11111111 15 Note The mask is a wildcard mask the high order bits of the mask that are binary zeros determine how many corresponding high order bits in the IP address are significant The selected action applies to any source address with these high order bits Protocol Select a protocol you want associate with the filter The field includes IP TCP UDP or ICMP type Destination Port TCP UDP port of the Destination Port field ICMP Type The ICMP Protocol Type range from 1 255 ICMP Code The ICMP Protocol Code range from 1 255 Egress Port Bind this Filter to selected egress port Click the Add button to add the rule to the Filter Click the Remove button to remove the selected rule from Filter Click the Modify button to edit the rule which you selected Click the Reload button to reload the rule table Click the Apply button to apply the Filter configurations 106 Filter Attach Filter attach detach Filter ID Name 100 IP O Cal O O LJ LJ m O O 4 10 2 Filter Set Access Control List After configured the ACL filter rules remember associate t
82. figuration chapter in below 802 1Q Tunnel Uplink The QinQ command applied to the ports which connect to the S VLAN The port receives tagged frame from the S VLAN When the packets are forwarded to S VLAN the S VLAN tag is kept After 802 1Q Tunnel Uplink mode is assigned to a port the egress setting of the port should be Tag it indicates the egress packet is always tagged This is configured in Static VLAN Configuration table Please refer to the VLAN Configuration chapter in below For example the VID of S VLAN Tunnel Uplink is 10 the VID of C VLAN Tunnel is 5 The 802 1Q Tunnel port receives tag 5 from C VLAN add tag 10 to the packet When the packets are forwarded to S VLAN tag 10 is kept EtherType This column allows you to define the EtherType manually This is advanced QinQ parameter which allows to define the transmission packet type Accept Frame Type This column defines the accepted frame type of the port There are 2 modes you can select Admit All and Tag Only Admit All mode means that the port can accept both tagged and untagged packets Tag Only mode means that the port can only accept tagged packets Ingress Filtering Ingress filtering helps VLAN engine to filter out undesired traffic on a port When Ingress Filtering is enabled the port checks whether the incoming frames belong to the VLAN they claimed or not Then the port determines if the frames can be processed or not For example if a tagged frame from
83. formation G Multiple Super Ring A Multiple Super Ring In GI VLAN Apply m STP Configuration Bridge Configur RSTP Refer to the 4 4 1 of previous version manual RSTP is the abbreviation of Rapid Spanning Tree Protocol If a switch has more than one path to a destination it will lead to message loops that can generate broadcast storms and quickly bog down a network The spanning tree was created to combat the negative effects of message loops in switched networks A spanning tree uses a spanning tree algorithm STA to automatically sense whether a switch has more than one way to communicate with a node It will then select the best path primary and block the other path s It will also keep track of the blocked path s in case the primary path fails Spanning Tree Protocol STP introduced a standard method to accomplish this It is specified in IEEE 802 1D 1998 Later Rapid Spanning Tree Protocol RSTP was adopted and represents the evolution of STP providing much faster spanning tree convergence after a topology change This is specified in IEEE 802 1w In 2004 802 1w is included into 802 1D 2004 version This switch supports both RSTP and STP all switches that support RSTP are also backward compatible with switches that support only STP Bridge Configuration Priority 0 61440 RSTP uses bridge ID to determine the root bridge the bridge with the highest bridge ID becomes the ro
84. h You can see LED and link status of the Power DO DI R M and Ports Feature On Link UP Off Link Down Note Power Green Black R M Ring Master Green Black Port Link LED Green Black Port Active LED Green Black Port Link State Green Black Green The port is connected Black Not connected SFP Link State Green Black Gray Plugged but not link up yet JetNet 5428G 5428G DC Front Panel J Net VLAN C Trattic Prioritization Ef Multicast Filtering terre ee ek Console Device Front Panel c Port Contiguration korenix seras7 54206 STIIS 24 4G Rack it Gigabit Redundancy Managed Ethomet Switch Note No CLI command for this feature 128 4 13 Save to Flash Save Configuration allows you to save any configuration you just made to the Flash Powering off the switch without clicking on Save Configuration will cause loss of new settings After selecting Save Configuration click on Save to Flash to save your new configuration Save to Flash Note This command will permanently save the current configuration to flash After saved the configuration successfully the popup window appears to show Save configuration to flash ok Success Message rFe a lure WOTT ATIC He Saye SWITCH write Building Configuration OK Switch copy running config startup config Building Configuration Ok 129 4 14 Logout T
85. hannel etc Most of the implementations now conform to IEEE standard 802 3ad The aggregated ports can interconnect to the other switch which also supports Port Trunking Korenix Supports 2 types of port trunking One is Static Trunk the other is 802 3ad When the other end uses 802 3ad LACP you should assign 802 3ad LACP to the trunk When the other end uses non 802 3ad you can then use Static Trunk In practical the Static Trunk is suggested There are 2 configuration pages Aggregation Setting and Aggregation Status Aggregation Setting Port Trunk Aggregation Setting Static Ii Static Static Static Static Static None Static Note The port parameters of the trunk members should be the same 47 Trunk Size The switch can support up to 8 trunk groups Each trunk group can support up to 8 member ports Since the member ports should use same speed duplex the maximum trunk size is decided by the port volume Group ID Group ID is the ID for the port trunking group Ports with same group ID are in the same group Click None you can select the Trunk ID from Trunk 1 to Trunk 8 Trunk Type Static and 802 3ad LACP Each Trunk Group can only support Static or 802 3ad LACP Choose the type you need here The not active port can t be setup here Extended setting in CLI Port Priority The command allows you to change the port priority setting of the specific port LACP port pri
86. he switch provides 2 logout methods The web connection will be logged out if you don t input any command after 30 seconds The Logout command allows you to manually logout the web connection Click on Yes to logout No to go back the configuration page korenix JETA Ty JetNet5428G D System c Basic Setting gt J Port Configuration Note This command will permanently save the current configuration to flash o C Network Redundancy gt EI VLAN C Traffic Prioritization C Multicast Filtering Your Industrial Computing amp Networking Partner Save to Flash Confirm Dialog gt E SNMP 2 7 gt 9 Security Do you want to really logout o cI Warning Yes Ef Monitor and Diag ji MAC Address Table Port Statistics Cy Port Mirroring C Event Log C Topology Discovery C Ping Bi Device Front Panel f D Save 5 Command Lines SWITCH exit 130 5 Appendix 5 1 Pin Assignment of the RS 232 Console Cable The total cable length is 150cm A B i1 1 2 i eee A s ET b oy A A 3l iir J a ni l B 6 4 eqo s so Mo 7 6 DB 9P F 2o D DB 9P F 8 7 9 9 131 5 2 Korenix SFP family Korenix certificated many types of SFP transceiver These certificated SFP transceivers can be identified by JetNet 5428G and displayed in the Ul The SFP transceivers we certificated can meet up the industrial critical environment needs We recommend you to use Korenix
87. his filter with the physical ports Then the port has the capability to filter traffic attach based on the packets lost 4 10 3 IEEE 802 1x 4 9 1 802 1X configuration IEEE 802 1X is the protocol that performing authentication to obtain access to IEEE 802 LANs It is port base network access control With the function JetNet 5428G could control which connection is available or not 107 korenix nev Your Industrial Computing amp Networking Partner pe 802 1x Port Based Network Access Control Configuration ci Basic Setting 4 Port Configuration System Auth Control Disable w S gt C Network Redundancy Authentication Method Radius CI VLAN S oe 2 C Traffic Prioritization Apply c3 Multicast Filtering C4 SNMP c3 Security G Port Security Bi IP Security 2 c3 802 1x C 802 1 Configuration Ly 802 1x Port Configurat C 802 1x Port Status gt c Warning C Monitor and Diag Cy Device Front Panel Bi Save Bi Logout Radius Server Local Radius User Local Radius User List Apply Remove System AuthControl To enable or disable the 802 1x authentication Authentication Method Radius is a authentication server that provide key for authentication with this method user must connect switch to server If user select Local for the authentication method switch use the local user data base which can be create in this
88. ill not work after power recycle You can use show running config to view it in CLI Figure 4 2 5 1 Main UI of Backup amp Restore Backup amp Restore Backup Configuration LocalFile ne DATFTPibackup conf Backup Restore Configuration TFTP Server 192 168 0 100 e backup conf Figure 4 2 5 2 Bacup Restore Configuration Local File mode v Backup Configuration Local File Backup Help cd Click on Folder icon to select the target file you want to backup restore Note that the folders of the path to the target file do not allow you to input space key Figure 4 2 5 3 Backup Restore Configuration TFTP Server mode 33 4 2 8 Backup Configuration TFTP Server v Type the IP address of TFTP Server IP Then click on Backup Restore Note point to the wrong file will cause the entire configuration missed Firmware Upgrade In this section you can update the latest firmware for your switch Korenix provides the latest firmware in Korenix Web site The new firmware may include new features bug fixes or other software changes We ll also provide the release notes for the update as well For technical viewpoint we suggest you use the latest firmware before installing the switch to the customer site Note that the system will be automatically rebooted after you finished upgrading new firmware Please remind the attached users before
89. imeout time Switch show mac address table aging time the mac address table aging time is 300 sec 125 Port Statistics Port Statistics Switch show rmon statistics fa4 select interface Interface fastethernet4 is enable connected which has Inbound Good Octets 178792 Bad Octets 0 Unicast 598 Broadcast 1764 Multicast 160 Pause 0 Undersize 0 Fragments 0 Oversize 0 Jabbers 0 Disacrds 0 Filtered 0 RxError 0 FCSError 0 Outbound Good Octets 330500 Unicast 602 Broadcast 1 Multicast 2261 Pause 0 Deferred 0 Collisions 0 SingleCollision 0 MultipleCollision 0 ExcessiveCollision 0 LateCollision 0 Filtered 0 FCSError 0 Number of frames received and transmitted with a length of 64 2388 65to127 142 12810255 11 256to511 64 512to1023 10 1024toMaxSize 42 Port Mirroring Enable Port Mirror Switch config mirror en Mirror set enable ok Disable Port Mirror Switch config mirror disable Mirror set disable ok Select Source Port Switch config mirror source fa1 2 both Received and transmitted traffic rx Received traffic tx Transmitted traffic Switch config mirror source fa1 2 both Mirror source fa1 2 both set ok Note Select source port list and TX RX Both mode Select Destination Port Display Switch config mirror destination fa6 both Mirror destination fa6 both set ok Switch show mirror Mirror Status Enabled Ingress
90. ing port 1 and port 2 to each ring thus the switch can have multiple rings in one JetNet switch When implementing MultiRing remember that the different rings can NOT use the same ring ID The other settings are the same as above description Technically the maximum ring volume the MultiRing supported is up to 16 rings Due to the port volume limitation the mximum value is half of the port volume of a switch TrunkRing The MultiRing technology is part of the MSR technology which combines the MSR with the port trunking technology After multiple ports aggregated this is so call port trunking Static or learnt by LACP protocol the Trunk ID can be one of the port ID of the MSR technology Configured the port trunking first then you can add the Trunk group as a Ring Port in managed switch 63 4 4 8 Ring Info This page shows the MSR information Multiple Super Ring Information 1 Rapid Super Ring RM Normal 0012 7760 1455 fa2 2 4 5S 4 ID Ring ID Version which version of this ring this field could be Rapid Super Ring Super Ring or Any Ring Role This Switch is RM or nonRM Status If this field is Normal which means the redundancy is approved If any one of the link in this Ring is broken then the status will be Abnormal RM MAC The MAC address of Ring Master of this Ring It helps to find the redundant path Blocking Port This field shows which is blocked port of RM Role Transition Count This means how
91. isable v Admit All Disable Admit All v Disable v Admit All w Disable v Admit All wv Disable v Admit All v Disable lw PVID The abbreviation of the Port VLAN ID Enter port VLAN ID here PVID allows the switches to identify which port belongs to which VLAN To keep things simple it is recommended that PVID is equivalent to VLAN IDs The values of PVIDs are from 0 to 4095 But 0 and 4095 are reserved You can t input these 2 PVIDs 1 is the default value 2 to 4094 are valid and available in this column Type the PVID you d like to configure here 71 4 5 2 Tunnel Mode This is the new command for QinQ The command includes None 802 1Q Tunnel and 802 1Q Tunnel Uplink The figure shows the relationship between 802 1Q Tunnel and 802 1Q Tunnel Uplink 802 10 Tunnel 802 10 Tunnel Following is the modes you can select None Remian VLAN setting no QinQ 802 1Q Tunnel The QinQ command applied to the ports which connect to the C VLAN The port receives tagged frame from the C VLAN Add a new tag Port VID as S VLAN VID When the packets are forwarded to C VLAN the S VLAN tag is removed After 802 1Q Tunnel mode is assigned to a port the egress setting of the port should be Untag it indicates the egress packet is always untagged This is configured in Static VLAN Configuration table Please refer to the VLAN Con
92. ist log Logging control mac Global MAC configuration subcommands mac address table mac address table mirror Port mirroring no Negate a command or set its defaults ntp Configure NTP password Assign the terminal connection password qos Quality of Service QoS relay relay output type information smtp server SMTP server configuration snmp server SNMP server spanning tree spanning tree algorithm super ring super ring protocol trunk Trunk group configuration vlan Virtual LAN warning event Warning event selection write config Specify config files to write to Port Interface Configuration Press interface IFNAME in global configuration mode You can then enter interface configuration mode In this mode you can configure port settings The port interface name for fast Ethernet port 1 is fa1 fast Ethernet 7 is fa7 gigabit Ethernet port 8 is gi8 gigabit Ethernet port 10 is gi10 Type interface name accordingly when you want to enter certain interface configuration mode Type exit to leave Type to see the command list 20 Available command lists of the global configuration mode Switch config interface fat Switch config if acceptable Configure 802 1Q acceptable frame types of a port auto negotiation Enable auto negotiation state of a given port description Interface specific description duplex Specify duplex mode of operation for a port end End current mode and change to enable mode exit Exit current mode and down to pr
93. l Subnet Mask Default Gateway address and Lease Time for client DHCP Server Enable v DHCP Server Configuration Apply Once you have finished the configuration click Apply to apply your configuration Excluded Address You can type a specific address into the IP Address field for the DHCP server reserved IP address The IP address that is listed in the Excluded Address List Table will not be assigned to the network device Add or remove an IP address from the Excluded Address List by clicking Add or Remove 30 Excluded Address IPAddress i 92 168 10 200 Add Excluded Address List 1 192 168 10 200 Remove Manual Binding JetNet 5428G provides a MAC address and IP address binding and removing function You can type in the specified IP and MAC address then click Add to add a new MAC amp IP address binding rule for a specified link partner like PLC or any device without DHCP client function To remove from the binding list just select the rule to remove and click Remove Manual Binding address mac adaress Add Manual Binding List Remove DHCP Leased Entries JetNet 5428G provides an assigned IP address list for user check It will show the MAC and IP address that was assigned by JetNet 5428G Click the Reload button to refresh the listing DHCP Leased Entries MAC Addres IP Addre ess 0012 7 79 0530 1 Auto 192 168 0 3 604785 al K Reload 31 DHC
94. le to enable or disable the storm control of specific port 46 4 3 6 Rate This column allows you to manually assign the limit rate of the port The unit is packets per second The limit range is from 1 to 262143 packet sec zero means no limit The maximum available value of Fast Ethernet interface is 148810 this is the maximum packet number of the 100M throughput Enter the Rate field of the port you want assign type the new value and click Enter key first After assigned or changed the value for all the ports you want configure Click on Apply to apply the configuration of all ports The Apply command applied all the ports storm control value it may take some time and the web interface become slow this is normal condition Port Trunking Port Trunking configuration allows you to group multiple Ethernet ports in parallel to increase link bandwidth The aggregated ports can be viewed as one physical port so that the bandwidth is higher than merely one single Ethernet port The member ports of the same trunk group can balance the loading and backup for each other Port Trunking feature is usually used when you need higher bandwidth for backbone network This is an inexpensive way for you to transfer more data There are some different descriptions for the port trunking Different manufacturers may use different descriptions for their products like Link Aggregation Group LAG Link Aggregation Control Protocol Ethernet Trunk Ether C
95. ludes 100Base FX single multi mode 100 Gigabit BIDI WDM 1000Base SX LX single multi mode ranger from 550m to 80KM The way to connect the SFP transceiver is to Plug in SFP fiber transceiver fist Cross connect the transmit channel at each end to the receive channel at the opposite end as illustrated in the figure below The SPF cage is 2x1 design check the direction angle of the fiber transceiver and fiber cable when inserted Below figure is the SFP plug in and SFP Fiber Cable Plug in Example Note This is a Class 1 Laser LED product Don t stare at the Laser LED Beam 2 6 Wiring Gigabit Combo Ports JetNet 5428G series includes 4 RJ 45 Gigabit Ethernet ports The speed of the gigabit Ethernet port supports 10Base T 100Base TX and 1000Base TX JetNet 5428G 5428G DC equips 4 Gigabit SFP ports combo with Gigabit Ethernet RJ 45 ports The speed of the SFP port supports 1000Full Duplex The available gigabit SFP supports Gigabit Single mode Multi mode BIDI WDM single mode SFP transceivers The 100Base FX is not supported in gigabit combo ports The JetNet 5428G 2G 2FX equips 2 100M Gigabit SFP ports plus 2 Gigabit SFP ports combo with Gigabit Ethernet RJ 45 Ports The 2 Combo ports capability is the same as JetNet 5428G 5428G DC While the SFP transceiver is plugged the Fiber port has higher priority than copper port and moved to the Fiber mode automatically 2 7 Wiring RS 232 Console Cable Korenix JetNet 5428
96. mary VLAN After the Primary VLAN Type is assigned in Private VLAN Configuration page the secondary VLAN can associate to the Primary VLAN ID Select the Primary VLAN ID here Note Before configuring PVLAN port type the Private VLAN Association should be done first Port Configuraion PVLAN Port T pe Normal The Normal port is None PVLAN ports it remains its original VLAN setting Host The Host type ports can be mapped to the Secondary VLAN Promiscuous The promiscuous port can be associated to the Primary VLAN VLAN ID After assigned the port type the web UI display the available VLAN ID the port can associate to 81 For example 1 VLAN Create VLAN 2 5 are created in VLAN Configuration page 2 Private VLAN Type VLAN 2 5 has its Private VLAN Type configured in Private VLAN Configuration page VLAN 2 is belonged to Primary VLAN VLAN 3 5 are belonged to secondary VLAN Isolated or Community 3 Private VLAN Association Associate VLAN 3 5 to VLAN 2 in Private VLAN Association first 4 Private VLAN Port Configuraiton VLAN 2 Primary gt The member port of VLAN 2 is promiscuous port VLAN 3 Isolated gt The Host port can be mapped to VLAN 3 VLAN 4 Community gt The Host port can be mapped to VLAN 3 VLAN 5 Community gt The Host port can be mapped to VLAN 5 Result VLAN 2 gt VLAN 3 4 5 member ports can communicate with ports in secondary VLAN VLAN 3 gt VLAN 2 member ports are isola
97. mit_rate 1000 Set rate limit for Destination Lookup Failue packets SWITCH config interface fa SWITCH config if storm control broadcast Broadcast packets dif Destination Lookup Failure multicast Multicast packets SWITCH config if storm control broadcast lt CI gt SWITCH config if storm control broadcast Enables rate limit for Broadcast packets for Port 1 Continue apply to other ports Display Rate Configuration and port status SWITCH show storm control Storm control rate limit DLF 1000 Kbytes sec Multicast 1000 Kbytes sec Broadcast 1000 Kbytes se Port 1 DLF Enable Broadcast Enable Multicast Enable 50 Port 2 DLF Enable Broadcast Enable Multicast Enable Port Trunking LACP Switch config lacp group 1 gi8 10 Group 1 based on LACP 802 3ad is enabled Note The interface list is fa1 fa3 5 gi8 10 Note different speed port can t be aggregated together LACP Port Setting SWITCH config if lacp port priority LACP priority for physical interfaces timeout assigns an administrative LACP timeout SWITCH config if lacp port priority lt 1 65535 gt Valid port priority range 1 65535 default is 32768 SWITCH config if lacp timeout long specifies a long timeout value default short specifies a short timeout value SWITCH config if lacp timeout short Set lacp port timeout ok Static Trunk Switch config trunk group 2 fa6 7 Trunk
98. mmand There are some different command modes Each command mode has its own access ability available command lines and uses different command lines to enter and exit These modes are User EXEC Privileged EXEC Global Configuration Port VLAN Interface Configuration modes User EXEC mode As long as you login the switch by CLI You are in the User EXEC mode You can ping telnet remote device and show some basic information Type enable to enter next mode exit to logout to see the command list JN5428G gt enable Turn on privileged mode command exit Exit current mode and down to previous mode list Print command list ping Send echo messages quit Exit current mode and down to previous mode show Show running system information telnet Open a telnet connection traceroute Trace route to destination Privileged EXEC mode Press enable in the User EXEC mode then you can enter the Privileged EXEC mode In this mode the system allows you to view current configuration reset default reload switch show system information save configuration and enter the global configuration mode Type configure terminal to enter next mode exit to leave to see the command list Switch archive manage archive files clear Reset functions clock Configure time of day clock configure Configuration from vty interface copy Copy from one file to another debug Debugging functions see also undebug disable Turn off privileged mode command end
99. mode setting and support both IP Standard and IP Extended mode depend on the setting Click Add to add the rule Click Edit to edit the content for the rule After configured click Apply to apply all the rules Reload to reload setting Remove to remove one of the entries 104 Example Filter Set Add Filter MAC Filter Name aa IP Filter ID Name f 1 99 IP standard access list 100 199 IP extended access list 1300 1999 IP standard access list expanded range 2000 2699 IP extended access list expanded range Server_MAC 100 1300 2000 IP Standard Access List This kind of ACL allows user to define filter rules according to the source IP address IP Extended Access List This kind of ACL allows user to define filter rules according to the source IP address destination IP address Source TCP UDP port destination TCP UDP port and ICMP type and code Click Edit to configure the IP Filter Rules Filter Rule Filter Type IP Extended fi 92 168 10 200 192 168 10 2 192 168 10 200 Host Host Permit fastethernet2 105 Filter ID Name The ID or the name for this IP Filter entry Action Permit to permit traffic from specified sources Deny to deny traffic from those sources Source Destination Address Type the source destination IP address you want configure Source Destination Wildcard This command allows user to define single host or a group o
100. n your network and that every PC on this network can access the switch via the web browser 1 Verify that your network interface card NIC is operational and that your operating system supports TCP IP protocol 2 Wire DC power to the switch and connect your switch to your computer 3 Make sure that the switch default IP address is 192 168 10 1 4 Change your computer IP address to 192 168 10 2 or other IP address which is located in the 192 168 10 x Network Mask 255 255 255 0 subnet 5 Switch to DOS command mode and ping 192 168 10 1 to verify a normal response time Launch the web browser and Login 6 Launch the web browser Internet Explorer or Mozila Firefox on the PC 7 Type http 192 168 10 1 or the IP address of the switch And then press Enter 8 The login screen will appear next 9 Key in user name and the password Default user name and password are both admin Switch Manager Please enter user name and password Site 192 168 10 1 User Name admin Password OK Cancel Click on Enter or OK Welcome page of the web based management interface will then appear korenix JETS cI Jetneth428G Your Industrial Computing amp Networking Partner Welcome tothe JetNet5428G J Basic Setting Industrial Managed Switch C Port Configuration amp C Network Redundancy swith gt VLAN CI Traffic Prioritization I EI Multicast Filtering f amp ET SNMP 1
101. nable IEEE 1588 select Enable in PTP Status and choose Auto Master or Slave Mode After time synchronized from the PTP server the system time will display the correct time of the PTP server 27 Time zone Select the time zone where the switch is located Following table lists the time zones for different locations for your reference The default time zone is GMT Greenwich Mean Time Switch config clock timezone GMT 12 00 Eniwetok Kwajalein GMT 11 00 Midway Island Samoa GMT 10 00 Hawaii GMT 09 00 Alaska GMT 08 00 Pacific Time US amp Canada Tijuana GMT 07 00 Arizona GMT 07 00 Mountain Time US amp Canada GMT 06 00 Central America GMT 06 00 Central Time US amp Canada GMT 06 00 Mexico City GMT 06 00 Saskatchewan GMT 05 00 Bogota Lima Quito GMT 05 00 Eastern Time US amp Canada GMT 05 00 Indiana East GMT 04 00 Atlantic Time Canada GMT 04 00 Caracas La Paz GMT 04 00 Santiago GMT 03 00 NewFoundland GMT 03 00 Brasilia GMT 03 00 Buenos Aires Georgetown GMT 03 00 Greenland GMT 02 00 Mid Atlantic GMT 01 00 Azores GMT 01 00 Cape Verde Is GMT Casablanca Monrovia GMT Greenwich Mean Time Dublin Edinburgh Lisbon London GMT 01 00 Amsterdam Berlin Bern Rome Stockholm Vienna GMT 01 00 GMT 01 00 GMT 01 00 GMT 01 00 GMT 02 00 GMT 02 00 GMT 02 00 GMT 02 00 GMT 02 00 GMT 02 00 GMT 03 00 GMT 03 00 GMT 03 00
102. nformation policy drop Relay Policy keep Drop Keep Replace option82 field replace Switch config dhcp ip dhcp relay information policy drop lt cr gt Switch config dhcp ip dhcp relay information policy keep lt cr gt Switch config dhcp ip dhcp relay information policy replace lt cr gt DHCP Relay IP Helper Address Reset DHCP Settings DHCP Server Information Switch config dhcp ip dhcp helper address A B C D Switch config dhcp ip dhcp helper address 192 168 10 200 Switch config dhcp ip dhcp reset lt cr gt Switch show ip dhcp server statistics DHCP Server ON Address Pool 1 network 192 168 10 0 24 default router 192 168 10 254 lease time 604800 Excluded Address List IP Address 192 168 10 123 Manual Binding List IP Address MAC Address 0012 7701 0203 Leased Address List IP Address MAC Address Leased Time Remains DHCP Relay Information Switch show ip dhcp relay DHCP Relay Agent ON IP helper address 192 168 10 200 Re forwarding policy Replace 41 Backup and Restore Backup Startup Configuration file Switch copy startup config tftp 192 168 10 33 default conf Writing Configuration OK Note 1 To backup the latest startup configuration file you should save current settings to flash first You can refer to 4 12 to see how to save settings to the flash Note 2 192 168 10 33 is the TFTP server s IP and default conf is name of th
103. nt enable ok Display Switch show warning event Warning Event Cold Start Enabled Warm Start Disabled Authentication Failure Disabled Link Down fa4 5 Link Up fa4 5 Power Failure Super Ring Topology Change Disabled Fault Relay Disabled Time synchronize Failure Disable Syslog Configuration Local Mode Switch config log syslog local Server Mode Switch config log syslog remote 192 168 10 33 Both Switch config log syslog local Switch config log syslog remote 192 168 10 33 Disable Switch config no log syslog local SMTP Configuration SMTP Enable Switch config smtp server enable email alert SMTP Email Alert set enable ok Sender mail Switch config smtp server server 192 168 10 100 ACCOUNT SMTP server mail account ex admin korenix com Switch config smtp server server 192 168 10 100_ admin korenix com 118 SMTP Email Alert set Server 192 168 10 100 Account admin korenix com ok Receiver mail Switch config smtp server receipt_1 korecare korenix com SMTP Email Alert set receipt 1 korecare korenix com ok Authentication with username and Switch config smtp server authentication username admin password admin password SMTP Email Alert set authentication Username admin Password admin Note You can assign string to username and password Disable SMTP Switch config no smtp server enable email alert SMTP Email Alert set disable ok
104. nt name Max 40 characters Password Enter the password of the email account Confirm Password Re type the password of the email account You can set up to 4 email addresses to receive email alarm from JetNet Rept E mail Address 1 The first email address to receive email alert from JetNet Max 40 characters Rept E mail Address 2 The second email address to receive email alert from JetNet Max 40 characters 117 Rept E mail Address 3 The third email address to receive email alert from JetNet Max 40 characters Rept E mail Address 4 The fourth email address to receive email alert from JetNet Max 40 characters Once you finish configuring the settings click on Apply to apply your configuration 4 11 4 CLI Commands Command Lines of the Warning configuration Feature Command Line Event Selection Event Selection Ex Cold Start event Ex Link Up event Set cold start event enable ok Switch config warning event coldstart Switch cold start event warmstart Switch warm start event linkdown Switch link down event linkup Switch link up event authentication Authentication failure event super ring Switch super ring topology change event time sync Switch time synchronize event Switch config warning event coldstart Switch config warning event linkup IFNAME Interface name ex fastethernet1 or gi8 Switch config warning event linkup fa5 Set fad link up eve
105. nuiis ie vate evden evade avd deeds Meee 3 1 3 ealo List E EE EE E E AEE A E E T 3 Hardware 1MStallalo miesie aE Aa a I E E AA IEE Ri 5 2 1 Hardware Mtrodutton ssenari ea EEA Enn EEA A EAEAP EREA ERRE 5 2 2 Wiring Power MpuUtS iaoiaeii eiiiai iii e i i ii a i 6 2 3 Wiring Earth Ground eirati ieiti Aeaee tiene eet ent ae 7 2 4 Wiring Fast Ethernet Ports 0 cceeceeeceeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeseneaeeeeeneaees 7 2 5 Airing FID ROMS 2g siccedis duces a lee lie th lQeeleg ETE 8 2 6 Wiring Gigabit Combo Ports ccccccesceceeeceeeeeeeeeeeeeeeeeseaeeeeaaeeeeneeseeeesaeeeeeneeee 9 2 7 Wiring RS 232 Console Cable ccccesceeecceceeeeeceeeeeeeeeeeeeeeaaeseeneeseeeesaeeeeaaeeees 9 2 8 Rack Mounting Installation c ccccceeesceceeeeeeeeaeeeeneeceeeeceaeeesaaeseeeeeseaeessaeeeenees 9 2 9 Safety Warm 6 beeeeeer peepee ere cece creer a a comrrr cer eerrereer errr e 11 Preparation for Management ccccceeceeeeeeeeeeeeeeeceeeeseaeeeeaeeseaeeecaaeeeeaeeseeeeesiaeeseaeeeeaees 12 3 1 Preparation for Serial CONSOIC ccsccceeeceeeeeeeeeeeseeeeeceaeeesaaeeeeneeesaeeeeaeeennees 12 3 2 Preparation for Web Interface ccccsceceeeeeceeeceeneeseeeeecaaeeseneeseeeeeseaeeesaeeeenees 13 3 3 Preparation for Telnet Console cccccceecceceeeeeceeeseeeeeceaeeesaaeeeeeeeseeeesaeeneneees 15 Feature Configuration c cccccccesceceeeeeceeeeeesaeeeeneeceaeeeseaaesseneecaeeseaaeseeaeeseeeesaeseeaeeneae
106. o trust the signed applet distributed by JetNet5010G Publisher authenticity can not be verified d The security certificate was issued by a company that is not trusted Jl The security certificate has not expired and is still valid 4 The login screen will appear next 3 3 3 3 1 3 3 2 Switch Manager Please enter user name and password Site 192 168 10 1 User Name Password Secure Connection OK Cancel 5 Key inthe user name and the password The default user name and password is admin 6 Click on Enter or OK Welcome page of the web based management interface will then appear 7 Once you enter the web based management interface all the commands you see are the same as what you see by HTTP login Preparation for Telnet Console Telnet Korenix JetNet 5428G supports Telnet console You can connect to the switch by Telnet and the command lines are the same as what you see by RS232 console port Below are the steps to open Telnet connection to the switch 1 Go to Start gt Run gt cmd And then press Enter 2 Type the Telnet 192 168 10 1 or the IP address of the switch And then press Enter SSH Secure Shell Korenix JetNet 5428G also support SSH console You can remotely connect to the switch by command line interface The SSH connection can secure all the configuration commands you sent to the switch SSH is a client server architecture while JetNet 5428G is the SSH serve
107. ode 100Mbps 30Km Fiber Transceiver wide operating SFP100SM30 w temperature 40 85 C 132 5 3 Korenix Private MIB Korenix provides many standard MIBs for users to configure or monitor the switch s configuration by SNMP But since some commands can t be found in standard MIB Korenix provides Private MIB to meet up the need Compile the private MIB file by your SNMP tool You can then use it Private MIB can be found in product CD or downloaded from Korenix Web site Private MIB tree is similar to the web tree This is easier to understand and use If you are not familiar with standard MIB you can directly use private MIB to manage monitor the switch no need to learn or find where the OIDs of the commands are The path of the JetNet 5428G is 1 3 6 1 4 1 24062 2 2 8 The path of the JetNet 5428G 2G 2FX is 1 3 6 1 4 1 24062 2 2 15 Compile the private MIB file and you can see all the MIB tables in MIB browser 133 5 4 Revision History Edition Date V1 2 Jun 15 2011 V1 1 Nov 1 2010 V1 0_1116 Nov 16 2009 V1 0 Nov 16 2009 V0 1 Nov 8 2009 Modifications Add more information about the 5428G 2G 2FX Add New Features Multiple Spanning Tree Protocol Private VLAN QinQ Update the combo port behavior Update Port Configuration IGMP Unknown Multicast GMRP description Update new MSR description and commands Add JetNet 5428G 2G 2FX Correct Combo Port Fiber information of the models Correct Broa
108. of selected port to initialize status Click Reauthenticate Selected to send EAP Request to supplicant to request reauthentication 109 Click Default Selected to reset the configurable 802 1x parameters of selected port to the default values 802 1X Port Status Here user can observe the port status for Port control status Authorize Status Authorized Supplicant and Oper Control Direction each port 802 1x Port Based Network Access Control Port Status Force Authorized AUTHORIZED NONE Both E Force Authorized AUTHORIZED NONE Both Force Authorized AUTHORIZED ONE Both Force Authorized AUTHORIZED ONE Both Force Authorized AUTHORIZED NONE Both Force Authorized AUTHORIZED ONE Both Force Authorized AUTHORIZED ONE Both x 1 Reload 4 10 4 CLI Commands of the Security Command Lines of the Security configuration Port Security Add MAC access list Switch config mac access list extended NAME access list name Switch config mac access list extended server1 Switch config ext macl permit Specify packets to forward deny Specify packets to reject end End current mode and change to enable mode exit Exit current mode and down to previous mode list Print command list no Negate a command or set its defaults quit Exit current mode and down to previous mode Add IP Standard access Switch config ip access list list extended Extended access list standard Standard access list Switch config ip access list standard
109. on the result Once the rules conflict the old entry is selected as the forward rule Type the Name when select MAC Filter type ID Name when select IP Filter The ID for IP access list is listed as below of the field Click Add to add the rule Click Edit to edit the content for the rule After configured click Apply to apply all the rules Reload to reload setting Remove to remove one of the entries Filter Set Add Filter MAC Filter Name Server_MAC IP Filter ID Name 1 99 IP standard access list 100 199 IP extended access list 1300 1999 IP standard access list expanded range 2000 2699 IP extended access list expanded range Server2_MAC KI Apply Reload Edit Remove 102 MAC Filter Port Security The MAC Filter allows user to define the Access Control List for specific MAC address or a group of MAC addresses Filter Rule Filter Type MAC Extended Permit v Ay dd ae Aw bet Add Modify Remove 0012 7700 0000 0000 0000 0001 0012 7700 0002 0000 0000 0001 Permit gigabitethernet25 Apply Reload Filter ID Name The name for this MAC Filter entry Action Permit to permit traffic from specified sources Deny to deny traffic from those sources Source Destination Address Type the MAC address you want configure the format is AABB CCDD EEFF Example Source to Destination
110. ooping table from dynamic learnt or static manual key in JetNet5428G support IGMP snooping V1 V2 V3 automatically and IGMP query V1 V2 IGMP Snooping you can select Enable or Disable here After enabling IGMP Snooping you can then enable IGMP Snooping for specific VLAN You can enable IGMP Snooping for some VLANs so that some of the VLANs will support IGMP Snooping and others won t To assign IGMP Snooping to VLAN please select the checkbox of VLAN ID or select 92 Select All checkbox for all VLANs Then press Enable In the same way you can also Disable IGMP Snooping for certain VLANs E JetNeth428G System IGMP Snooping gt CJ Basic Setting gt cI Port Configuration IGMP Snooping Disable o C Network Redundancy gt I YLAN C Traffic Prioritization Cf Multicast Filtering D IGMP Snooping b IGMP Query 5 Disabled D Unknown Multicast C GMRP 258 Disabled gt cI SNMP amp E Security gt C warning gt C Monitor and Diag Device Front Panel D se Ly Logout la IGMP Snooping Table In the table you can see multicast group IP address VLAN ID it belongs to and member ports of the multicast group JetNet 5428G supports 256 multicast groups Click on Reload to refresh the table IGMP Snooping Table 239 255 255 250 1 iGiiia m a i Ge 239 192 8 0 E P E E p A E o e 4 8 2 IGMP Query IGMP Query IGMP Query on the Management VLAN Versioni i25
111. ority is configured on each port using LACP The port priority can be configured through the CLI The higher the number the lower the priority The default value is 32768 LACP Timeout The LACPDU is generated and continue transmit within the LACP group The interval time of the LACPDU Long timeout is 30 sec this is default setting The LACPDP Short timeout is 1 sec the command to change from Long to Short is only applied to the CLI the web GUI doesn t support this Once the LACP port doesn t receive the LACPDP 3 times that means the port may leave the group without earlier inform or does not detect by the switch then the port will be removed from the group This command can be used when connect the switch by 2 port LACP through not direct connected or shared media like the Wireless AP or Hub The end of the switch may not directly detect the failure the LACP Short Timeout can detect the LACP group failure earlier within 3 seconds Aggregation Status This page shows the status of port aggregation Once the aggregation ports are negotiated well you will see following status Port Trunk Aggregation Information y Aggregated Ports Individual Ports Link Down Ports 1 2 3 4 9 10 gt Trunk 3 4 Group ID Display Trunk 1 to Trunk 8 set up in Aggregation Setting Type Static or LACP set up in Aggregation Setting Aggregated When LACP links well you can see the member ports in Aggregated 48 column
112. ot bridge The bridge ID is composed of bridge priority and bridge MAC address So that the bridge with the highest priority becomes the highest 54 4 4 2 bridge ID If all the bridge ID has the same priority the bridge with the lowest MAC address will then become the root bridge Note The bridge priority value must be in multiples of 4096 A device with a lower number has a higher bridge priority Ex 4096 is higher than 32768 Note The Web GUI allows user select the priority number directly This is the convinent of the GUI design When you configure the value through the CLI or SNMP you may need to type the value directly Please follow the n x 4096 ruls for the Bridge Priority Max Age 6 40 Enter a value from 6 to 40 seconds here This value represents the time that a bridge will wait without receiving Spanning Tree Protocol configuration messages before attempting to reconfigure If JetNet is not the root bridge and if it has not received a hello message from the root bridge in an amount of time equal to Max Age then JetNet will reconfigure itself as a root bridge Once two or more devices on the network are recognized as a root bridge the devices will renegotiate to set up a new spanning tree topology The MAX Age value affects the maximum volume of the RSTP loop In the RSTP BPDU packet there is one field message age which start from 0 add 1 after passed one hop in the RSTP loop When the message age is larger than MAX Ag
113. ounding Rack mounted equipment should be properly grounded 10 2 9 Safety Warming 2 2 1 The Equipment intended for installation in a Restricted Access Location Restricted Access Location This equipment is intended to be installed ina RESTRICTED ACCESS LOCATION only 2 2 2 The warning test is provided in user manual Below is the information For tilslutning af de ovrige ledere se medfolgende installationsvejledning Laite on liitettava suojamaadoitus koskettimilla varustettuun pistorasiaan Apparatet ma tilkoples jordet stikkontakt Apparaten skall anslutas till jordat uttag 11 3 Preparation for Management 3 1 JetNet 5428G Rackmount Managed Switch provides both in band and out band configuration methods You can configure the switch via RS232 console cable if you don t attach your admin PC to your network or if you lose network connection to your JetNet 5428G This is so called out band management It wouldn t be affected by network performance The in band management means you can remotely manage the switch via the network You can choose Telnet or Web based management You just need to know the device s IP address and you can remotely connect to its embedded HTTP web pages or Telnet console Following topics are covered in this chapter 3 1 Preparation for Serial Console 3 2 Preparation for Web Interface 3 3 Preparation for Telnet console Preparation for Serial Console In JetNet 54
114. oup membership In effect IGMP Snooping manages multicast traffic by making use of switches routers and hosts that support IGMP Enabling IGMP Snooping allows the ports to detect IGMP queries report packets and manage multicast traffic through the switch IGMP has three fundamental types of messages as shown below Message Description Query A message sent from the querier an IGMP router or a switch which asks for a response from each host that belongs to the multicast group Report A message sent by a host to the querier to indicate that the host wants to be or is a member of a given group indicated in the report message Leave Group A message sent by a host to the querier to indicate that the host has quit as a member of a specific multicast group You can enable IGMP Snooping and IGMP Query functions here You will see the information of the IGMP Snooping function in this section including different multicast groups VID and member ports and IP multicast addresses that range from 224 0 0 0 to 239 255 255 255 In this section Force filtering can determined whether the switch flooding unknown multicast or not Following commands are included in this group 4 7 1 IGMP Snooping 4 7 2 IGMP Query 4 7 3 Unknown multicast 4 7 4 GMRP 4 7 5 CLI Commands of the Multicast Filtering IGMP Snooping This page is to enable IGMP Snooping feature assign IGMP Snooping for specific VLAN and view IGMP Sn
115. our admin PC to your network or if you lose the network connection to your JetNet 5428G This is so called out band management It wouldn t be affected by the network performance The in band management means you can remotely manage the switch via the network You can choose Telnet or Web based management You just need to know the device s IP address Then you can remotely connect to its embedded HTML web pages or Telnet console Korenix web management page is developed by JAVA It allows you to use a standard web browser such as Microsoft Internet Explorer or Mozila to configure and interrogate the switch from anywhere on the network Note IE 5 0 or later versions do not allow Java applets to open sockets by default Users have to directly modify the browser settings to selectively enable Java applets to use network ports Following topics are covered in this chapter 4 1 Command Line Interface CLI Introduction 4 2 Basic Setting 4 3 Port Configuration 4 4 Network Redundancy 4 5 VLAN 4 6 Traffic Prioritization 4 7 Multicast Filtering 4 8 SNMP 4 9 Security 4 10 Warning 4 11 Monitor and Diag 4 12 Device Front Panel 4 13 Save 4 14Logout 18 4 1 Command Line Interface Introduction The Command Line Interface CLI is the user interface to the switch s embedded software system You can view the system information show the status configure the switch and receive a response back from the system by keying in a co
116. p DSCP TOS port based Port based Switch config gos priority dscp Switch show qos priority QoS Priority Mode DSCP Displ y Queue Scheduling Switch show qos queue sched QoS queue scheduling scheme Weighted Round Robin COS queue 0 1 COS queue 1 2 COS queue 2 3 COS queue 3 4 Display Port Priority Setting Port Default Priority Switch show qos port priority Port Default Priority Port Priority Queue arWNDM O OGOGO O OGOOGO CoS Queue Mapping Format Switch config qos cos map PRIORITY Assign an priority 7 highest Switch config qos cos map 1 QUEUE Assign an queue 0 3 90 Note Format qos cos map priority_value queue_value Map CoS 0 to Queue 1 Switch config qos cos map 0 1 The CoS to queue mapping is set ok Map CoS 1 to Queue 0 Switch config qos cos map 1 0 The CoS to queue mapping is set ok Map CoS 2 to Queue 0 Switch config qos cos map 2 0 The CoS to queue mapping is set ok Map CoS 3 to Queue 1 Switch config qos cos map 3 1 The CoS to queue mapping is set ok Map CoS 4 to Queue 2 Switch config qos cos map 4 2 The CoS to queue mapping is set ok Map CoS 5 to Queue 2 Switch config qos cos map 5 2 The CoS to queue mapping is set ok Map CoS 6 to Queue 3 Switch config qos cos map 6 3 The CoS to queue mapping is set ok Map CoS 7 to Queue 3 Switch config qos cos map 7 3 The CoS to queue m
117. page for authentication Radius Server IP The IP address of Radius server Shared Key The password for communicate between switch and Radius Server Server Port UDP port of Radius server Accounting Port Port for packets that contain the information of account login or logout Secondary Radius Server IP Secondary Radius Server could be set in case of the primary radius server down Local Radius User Here User can add Account Password for local authentication Local Radius User List This is a list shows the account information User also can remove selected account Here 2 802 1x Port Configuration After the configuration of Radius Server or Local user list user also need configure the authentication mode authentication behavior applied VLAN for each port and permitted communication The following information will explain the port configuration 108 802 1x Port Based Network Access Control Port Configuration 802 1x Port Configuration Force Authorized Disable Single Both 2 0 Force Authorized Disable 2 0 Single Both Force Authorized Disable 2 0 Single Both Force Authorized Disable 2 0 Single Both Force Authorized Disable 2 0 Single Both Force Authorized Disable 2 0 Single Both Apply Initialize Selected Reauthenticate Selected 802 1x Timeout Configuration 3600 60 30 30 30 3600 60 30 30 30 3600 60 30 30 30 3600 60 30 30 30 3600 60 30 30 30 3600 60 30 30 30 X Apply Once you finish configuring the set
118. r When you want to make SSH connection with the switch you should download the SSH client tool first SSH Client There are many free sharewares trials or charged SSH clients you can find on the internet Fox example PuTTY is a free and popular Telnet SSH client We ll use this tool to demonstrate how to login JetNet by SSH Note PuTTY is copyright 1997 2006 Simon Tatham Download PuTTY hitp Awww chiark greenend org uk sgtatham putty download html The copyright of PUTTY About PuTTY PuTTY Release 0 54 1997 2004 Simon Tatham All rights reserved View Licence Visit Web Site Figure 0 4 Open SSH Client PuTTY In the Session configuration enter the Host Name IP Address of your JetNet 5428G and Port number default 22 Choose the SSH protocol Then click on Open to start the SSH session console DX PuTTY Configuration Category Session Basic options for your PuTTY session Logging Specify your connection by host name or IP address Terminal oni Host Name or IP address Port Bell 192 168 10 17 22 Features Protocol Window ORaw Ovfelnet Rogn SSH Appearance Behaviour Translation Saved Sessions Load save or delete a stored session Selection Colours Default Settings Connection Load seve Close window on exit O Awas O Never Only on clean ext Figure 0 After click on Open then you can see the ciphe
119. r end Exit current mode and down to previous enable mode exit Exit current mode and down to previous mode ip IP protocol lease DHCP Lease Time list Print command list network dhcp network no remove quit Exit current mode and down to previous mode service enable service DHCP Server Enable Switch config dhcp service dhcp lt CI gt DHCP Server IP Pool Network Mask Switch config dhcp network A B C D M network mask ex 10 10 1 0 24 Switch config dhcp network 192 168 10 0 24 DHCP Server Default Gateway Switch config dhcp default router A B C D address Switch config dhcp default router 192 168 10 254 DHCP Server lease Switch config dhcp lease TIME second 40 time Switch config dhcp lease 1000 1000 second DHCP Server Switch config dhcp ip dhcp excluded address A B C D IP address Excluded Address Switch config dhcp ip dhcp excluded address 192 168 10 123 lt Cr gt DHCP Server Static IP and MAC binding Switch config dhcp ip dhcp static MACADDR MAC address Switch config dhcp ip dhcp static 0012 7700 0001 A B C D leased IP address Switch config dhcp ip dhcp static 0012 7700 0001 192 168 10 99 DHCP Relay Enable DHCP Relay Switch config dhcp ip dhcp relay information option Option82 policy Option82 Switch config dhcp ip dhcp relay information option DHCP Relay DHCP policy Switch config dhcp ip dhcp relay i
120. r information in the popup screen Press Yes to accept the Security Alert PuTTY Security Alert The server s host key is not cached in the registry You have no guarantee that the server is the computer you think it is The server s rsa2 key fingerprint is ssh rsa 1024 55 ef 9 67 12 d6 3f 4 30 60 18 50 c0 6e 41 3d If you trust this host hit Yes to add the key to PulTY s cache and carry on connecting If you want to carry on connecting just once without adding the key to the cache hit No If you do not trust this host hit Cancel to abandon the connection ew Cet 3 After few seconds the SSH connection to JetNet 5428G is opened You can see the login screen as the below figure 192 168 10 17 PuTTY login adrming JetNet5425G6 Copyright Switch gt 4 Type the Login Name and its Password The default Login Name and Password are admin admin 5 All the commands you see in SSH are the same as the CLI commands you see via RS232 console The next chapter will introduce in detail how to use command line to configure the switch 17 4 Feature Configuration This chapter explains how to configure JetNet 5428G software features There are four ways to access the switch Serial console Telnet Web browser and SNMP JetNet 5428G series Rackmount Managed Switch provides both in band and out band configuration methods You can configure the switch via RS232 console cable if you don t attach y
121. ration MSTP is the abbreviation of Multiple Spanning Tree Protocol This protocol is a direct extension of RSTP It can provide an independent spanning tree for different VLANs It simplifies network management provides for even faster convergence than RSTP by limiting the size of each region and prevents VLAN members from being segmented from the rest of the group as sometimes occurs with IEEE 802 1D STP While using MSTP there are some new concepts of network architecture A switch may belong to different groups act as root or designate switch generate BPDU for the network to maintain the forwarding table of the spanning tree With MSTP can also provide multiple forwarding paths and enable load balancing Understand the architecture allows you to maintain the correct spanning tree and operate effectively One VLAN can be mapped to a Multiple Spanning Tree Instance MSTI For example the maximum Instance JetNet supports is usually 16 range from 0 15 The MSTP builds a separate Multiple Spanning Tree MST for each instance to maintain connectivity among each of the assigned VLAN groups An Internal Spanning Tree IST is used to connect all the MSTP switches within an MST region An MST Region may contain multiple MSTP Instances 57 The figure shows there are 2 VLANs MSTP Instances and each instance has its Root and forwarding paths ra N Instance 1 VLAN 20 nf aH B Forwarding Paths Instance 1 VLAN20 Ins
122. rt The Port with higher Path Cost in the two ring Port will become the blocking port If the Path Cost is the same the port with larger port number will become the blocking port Ring Port2 Assign another port for ring connection Path Cost Change the Path Cost of Ring Port2 Rapid Dual Homing Rapid Dual Homing is an important feature of Korenix 3 generation Ring redundancy technology When you want to connect multiple RSR or form redundant topology with other vendors RDH could allow you to have maximum 7 multiple links for redundancy without any problem In Dual Homing released with JetNet 4000 4500 series you have to configure additional port as Dual Homing port to two uplink switches In Rapid Dual Homing you don t need to configure specific port to connect to other protocol The Rapid Dual Homing will smartly choose the fastest link for primary link and block all the other link to avoid loop If the primary link failed Rapid Dual Homing will automatically forward the secondary link for network redundant Of course if there are more connections they will be standby links and recover one of then if both primary and secondary links are broken Ring status To enable disable the Ring Please remember to enable the ring after you add it MultiRing The MultiRing technology is one of the pattern of the MSR technology the technology allows you to aggregate multiple rings within one switch Create multiple ring ID and assign different r
123. s 0 to 255 68 default set default Switch config super ring priority 100 Ring Port Switch config multiple super ring port IFLIST Interface list ex fa1 fa3 5 gi8 10 cost path cost Switch config multiple super ring port fai fa2 Ring Port Cost Switch config multiple super ring port cost lt 0 255 gt valid range is 0 or 255 default set default 128 valid range is 0 or 255 Switch config multiple super ring port cost 100 lt 0 255 gt valid range is 0 or 255 default set default 128 valid range is 0 or 255 Switch config super ring plus port cost 100 200 Set path cost success Rapid Dual Homing Switch config multiple super ring rapid dual homing enable Switch config multiple super ring rapid dual homing disable Switch config multiple super ring rapid dual homing port IFLIST Interface name ex fastethernet1 or gi8 auto detect up link auto detection IFNAME Interface name ex fastethernet1 or gi8 Switch config multiple super ring rapid dual homing port fa3 fa5 6 et Rapid Dual Homing port success Hoe auto detect is recommended for dual Homing Ring Info Ring Info Switch show multiple super ring Ring ID Ring1 Ring1 Current Status Disabled Role Disabled Ring Status Abnormal Ring Manager 0000 0000 0000 Blocking Port N A Giga Copper N A Configuration Version Rapid Super Ring Priority 128 Ring Port fal fa2 Path Cost 100 200
124. s VLAN will remain in Unused status until you add ports to the VLAN VLAN Table VLAN Table 2 Y2 3 test Static Pe IEA TLN ae Pe VENI CEN TEN POR CRN ey EN Pek EN EE Unused saie bahe le l ha hea hear ha SE E 4 5 5 CLI Commands of the VLAN Command Lines of the VLAN port configuration VLAN configuration and VLAN table display VLAN Port Configuration Port Interface Configuration Switch conf ter Switch config interface fa5 Switch config if VLAN Port PVID Switch config if switchport trunk native vlan 2 Set port default vlan id to 2 success QinQ Tunnel Mode 802 1Q Tunnel access 802 1Q Tunnel Uplink uplink Port Accept Frame Type Switch config if switchport dot1q tunnel mode _ Set the interface as an IEEE 802 1Q tunnel mode Switch config if switchport dot1q tunnel mode access Set the interface as an access port of IEEE 802 1Q tunnel mode uplink Set the interface as an uplink port of IEEE 802 1Q tunnel mode Switch config inter fat Switch config if acceptable frame type all any kind of frame type is accepted Switch config if acceptable frame type vlantaggedonly only vlan tag frame is accepted Ingress Filtering for fast Ethernet port 1 Switch config interface fa1 Switch config if ingress filtering enable ingress filtering enable Switch config if ingress filtering disable 76 4 ingress filtering disable
125. same duplex mode they will be connected by half mode Port Status Port Status shows you current port status after negotiated 44 La 4 3 4 Figure 4 3 3 1 shows you the port status Port Status 100BASE Tx 100BASE OOBASE 100BASE OOBASE OOBASE 100BASE TX Down U p Down Down Down Down Down Down Down Down Enable Enab Enab Enab Enab Enab Enab Enab Enab Enab Oo oO 100 Full 100 Full The description of the columns is as below P ort Port interface number T ype 100BASE TX gt Fast Ethernet copper port 100BASE FX gt 100Base FX Fiber Port 1000BASE TX gt Gigabit Ethernet Copper port 1000BASE X gt Gigabit Fiber Port Link Link status Up gt Link UP Down gt Link Down State Enable gt State is enabled Disable gt The port is disable shutdown Speed Duplex Current working status of the port Flow Control The state of the flow control SFP Vendor Vendor name of the SFP transceiver you plugged Apply to fiber port Wavelength The wave length of the SFP transceiver you plugged Apply to fiber port Distance The transmission distance of the SFP transceiver you plugged Apply to fiber port Note The UI can display vendor name wave length and distance of all Korenix Gigabit SFP transceiver family If you see Unknown information it may mean that the vendor doesn t provide their information or that the information
126. shutdown Shutdown the selected interface 21 Summary of the 5 command modes User EXEC This is the first level of access Enter Login successfully Switch gt User can ping telnet remote Exit exit to logout device and show some basic Next mode Type enable to information enter privileged EXEC mode Privileged In this mode the system allows Enter Type enable in User Switch EXEC you to view current configuration EXEC mode reset default reload switch show Exec Type disable to exit to system information save user EXEC mode configuration and enter global Type exit to logout configuration mode Next Mode Type configure terminal to enter global configuration command Global In global configuration mode you Enter Type configure Switch config configuration can configure all the features that terminal in privileged EXEC the system provides you mode Exit Type exit or end or press Ctrl Z to exit Next mode Type interface IFNAME VLAN VID to enter interface configuration mode Port In this mode you can configure Enter Type interface IFNAME Switch config if Interface port related settings in global configuration mode configuration Exit Type exit or Ctrl Z to global configuration mode Type end to privileged EXEC mode VLAN Interface In this mode you can configure Enter Type interface VLAN Switch config vlan Configuration settings for specific VLAN VID in global configuration mode
127. sic Setting The Basic Setting group provides you to configure switch information IP address User name Password of the system It also allows you to do firmware upgrade backup and restore configuration reload factory default and reboot the system Following commands are included in this group 4 2 1 Switch Setting 4 2 2 Admin Password 4 2 3 IP Configuration 4 2 4 Time Setting 4 2 5 Jumbo Frame 4 2 6 DHCP Server 4 2 7 Backup and Restore 4 2 8 Firmware Upgrade 4 2 9 Factory Default 4 2 10 System Reboot 4 2 11 CLI Commands for Basic Setting Switch Setting You can assign System name Location Contact and view system information Figure 4 2 1 1 Web UI of the Switch Setting korenix JETA Ci JetNet5428G D System c Basic Setting Switch Setting Admin Password D IP Configuration D Time Setting b Jumbo Frame gt C DHCP Server Bi Backup and Restore D Firmware Upgrade Factory Default D System Reboot CI Port Configuration C Network Redundancy Your Industrial Computing amp Networking Partner A Switch Setting Switeh System Name 1 3 8 1 4 1 24062 2 2 8 JetNet6428G Industrial Managed Switch v0 1 3 20091102 00 12 77 60 4b ec System Name You can assign a name to the device The available characters you can input is 64 After you configure the name CLI system will select the first 12 characters as 24 4 2 2 the name in CLI system System Location
128. st Ethernet ports In Web UI choose the port number you want to configure the available number from port 1 28 Port 1 24 presents Fast Ethernet ports In CLI use fal fa2 fa24 to present port 1 to port 24 As to the Gigabit Compo ports it always uses port 25 26 27 and 28 In CLI use gi25 gi26 gi27 and gi28 to present the port 25 28 Port Control Port Control commands allow you to enable disable port state or configure the port auto negotiation speed duplex and flow control Figure 4 3 2 1 The main Web UI of the Port Configuration 43 4 3 3 ci JetNet5428G D System gt CJ Basic Setting Eq Port Configuration D Fort Control C Port Status Bi Rate Control Ci Storm Control 4 Port Trunking D Aggregation Setting D Aggregation Status C Network Redundancy amp C4 VLAN CI Traffic Prioritization Cf Multicast Filtering gt GE SNMP cI Security gt cI Warning cf Monitor and Diag Port Configuration Speed Duplex Enable Enable Auto Negotiation Disable Enable Enable Enable Enable Enable Enable Enable Enable Select the port you want to configure and make changes to the port In State column you can enable or disable the state of this port Once you disable the port stop to link to the other end and stop to forward any traffic The default setting is Enable which means all the ports are workable when you receive the device In Speed Duplex col
129. system logs in Monitor and Diag Event Log page Remote Mode The remote mode is also known as Server mode in JetNet 4500 series In this mode you should assign the IP address of the System Log server JetNet 5428G will send the occurred events selected in Event Selection page to System Log server you assigned Both Above 2 modes can be enabled at the same time Warning SysLog Configuration Note When enabled Local 4 br the system logs in the Monitor and Diag Event Log page Apply Once you finish configuring the settings click on Apply to apply your configuration 116 Note When enabling Local or Both mode you can monitor the system logs in Monitor and Diag Event Log page 4 11 3 SMTP Configuration JetNet 5428G supports E mail Warning feature The switch will send the occurred events to remote E mail server The receiver can then receive notification by E mail The E mail warning is conformed to SMTP standard This page allows you to enable E mail Alert assign the SMTP Server IP Sender E mail and Receiver E mail If SMTP server requests you to authorize first you can also set up the username and password in this page Warning SMTP Configuration E mail Alert Enable SMTP Configuration 192 1 68 10 1 admin korenix com SMTP Server IP Address Enter the IP address of the email Server Authentication Click on check box to enable password User Name Enter email Accou
130. t this port will be in blocking state and turn to forwarding state in 4 seconds Once you finish your configuration click on Apply to save your settings MSTP Information This page allows you to see the current MSTP information Choose the Instance ID first If the instance is not added the information remains blank The Root Information shows the setting of the Root switch The Port Information shows the port setting and status of the ports within the instance MSTP Information Instance ID fi x Root Information 0012 7760 ad4b 4096 NIA 0 20 second s 2 second s 16 second s Port Information Designated Forwarding 200000 128 P2P InternalMSTP Non Edge Designated Forwarding 200000 128 P2P Internal STP Non Edge Click on Reload to reload the MSTP information display Multiple Super Ring MSR The most common industrial network redundancy is to form a ring or loop Typically the managed switches are connected in series and the last switch is connected back to the 61 first one In such connection you can implement Korenix Multiple Super Ring technology to get fastest recovery performance Multiple Super Ring MSR technology is Korenix s 3 generation Ring redundancy technology This is patented and protected by Korenix and is used in countries all over the world MSR ranks the fastest restore and failover time in the world 0 ms for restore and about milliseconds level for failover for 100
131. t software module that resides in a Ea Eeen managed switch An agent translates the local management information from the managed device e into a SNMP compatible format The manager is the console through the network Sas See eee Following commands are included in this group 4 8 1 SNMP Configuration 4 8 2 SNMPv3 Profile 4 8 3 SNMP Traps 4 8 4 SNMP CLI Commands for SNMP SNMP Configuration This page allows users to configure SNMP V1 V2c Community The community string can be viewed as the password because SNMP V1 V2c doesn t request you to enter password before you try to access SNMP agent The community includes 2 privileges Read Only and Read and Write With Read Only privilege you only have the ability to read the values of MIB tables Default community string is Public With Read and Write privilege you have the ability to read and set the values of MIB tables Default community string is Private JetNet 5428G allows users to assign 4 community strings Type the community string and select the privilege Then press Apply Note When you first install the device in your network we highly recommend you to change the community string Since most SNMP management application uses Public and Private as their default community name this might be the leakage of the network security 98 SNMP SNMP V1 V2c Community pubie t i s s s S SC S S Read Only v orivate Read and Write Reau ony
132. tance 2 VLAN10 Blocking a HH F Instance 2 VLAN 10 TLL LLES Forwarding Paths a Instance 2 VLAN10 Instance 1 VLAN20 Root Switch Root Switch A Common Spanning Tree CST interconnects all adjuacent MST regions and acts as a virtual bridge node for communications with STP or RSTP nodes in the global network MSTP connects all bridges and LAN segments with a single Common and Internal Spanning Tree CIST The CIST is formed as a result of the running spanning tree algorithm between switches that support the STP RSTP MSTP protocols The figure shows the CST large network In this network a Region may has different instances and its own forwarding path and table however it acts as a single Brige of CST CST Common Spanning Tree Korenix To configure the MSTP setting the STP Mode of the STP Configuration page should be changed to MSTP mode first 58 STP Configuration STP Mode MsTe gt Bridge Configuration 0012 7760 46b6 32768 v 20 v 2 v 15 v After enabled MSTP mode then you can go to the MSTP Configuraiton pages MSTP Region Configuration This page allows configure the Region Name and its Revision mapping the VLAN to Instance and check current MST Instance configuration The network can be divided virtually to different Regions The switches within the Region should have the same Region and Revision leve Region Name The name for the Region Maximum leng
133. ted but it can communicate with member port of VLAN 2 VLAN 4 gt VLAN 2 member ports within the community can communicate with each other and communicate with member port of VLAN 2 VLAN 5 gt VLAN 2 member ports within the community can communicate with each other and communicate with member port of VLAN 2 Private VLAN Port Configuration Port Configuration Private VLAN Association Secondary VLAN Primary VLAN Normal None 3 2 Normal None 4 2 Normal None 5 2 Normal None Normal None Normal None Host 5 Host 4 Host 3 Promiscuous 2 zal eI 82 4 6 3 Private VLAN Information This page allows you to see the Private VLAN information Private VLAN Information Private VLAN Information 2 2 3 Isolated 10 9 E 4 Community 10 8 5 Community 10 7 Lal 4 6 4 CLI Command of the PVLAN Command Lines of the Private VLAN configuration Private VLAN Configuration Create VLAN Switch config vlan 2 vlan 2 success Switch config vlan end End current mode and change to enable mode exit Exit current mode and down to previous mode list Print command list name Assign a name to vian no no private vlan Configure a private VLAN Private VLAN Type Choose the Types Primary Type Go to the VLAN you want configure first Switch config vlan VID Switch config vlan private vlan community Configure the VLAN as an community private VLAN isolated Configure the
134. th 32 characters Revision The revision for the Region Range 0 65535 Default 0 Once you finish your configuration click on Apply to apply your settings New MST Instance This page allows mapping the VLAN to Instance and assign priority to the instance Before mapping VLAN to Instance you should create VLAN and assign the member ports first Please refer to the VLAN setting page MSTP Configuration MST Region Configuration Korenix fo i Apply New MST Instance 32768 v si 59 Instance ID Select the Instance ID the available number is 1 15 VLAN Group Type the VLAN ID you want mapping to the instance Instance Priority Assign the priority to the instance After finish your configuration click on Add to apply your settings Current MST Instance Configuration This page allows you to see the current MST Instance Configuration you added Click on Apply to apply the setting You can Remove the instance or Reload the configuration display in this page Current MST Instance Configuration 32768 32768 Apply Remove Reload 4 4 5 MSTP Port Configuration This page allows configure the Port settings Choose the Instance ID you want to configure The MSTP enabled and linked up ports within the instance will be listed in this table Note that the ports not belonged to the Instance or the ports not MSTP activated will not display The m
135. the Enable state When the non bridge device connects an admin edge port this port will be in blocking state and turn to forwarding state in 4 seconds STP Port Configuration Enable Auto Enable Auto Enable Auto Enable Auto Enable Auto Enable 200000000 Auto Enable 20000 Auto Enable 20000 32768 Auto Enable 20000 32768 Auto Enable 200000 200000 200000 200000 200000 200000000 Once you finish your configuration click on Apply to save your settings 56 4 4 3 4 4 4 RSTP Info This page allows you to see the information of the root switch and port status RSTP Information Root Information 8000 0012 7760 1455 32768 NIA 0 20 sec 2 sec 15 sec Port Information Disabled 20000 128 Edge Disabled 200000 128 Shared Edge a Designated Forwarding 200000 128 P2P Non Edge J Disabled 200000 128 Shared Edge Disabled 200000 128 Shared Edge Disabled 200000 128 Shared Edge Disabled 200000 128 Shared Edge Disabled 20000 128 P2P Edge Designated Forwarding 200000 128 P2P Edge Koi Designated Forwarding 20000 128 P2P Edge Root Information You can see root Bridge ID Root Priority Root Port Root Path Cost and the Max Age Hello Time and Forward Delay of BPDU sent from the root switch Port Information You can see port Role Port State Path Cost Port Priority Oper P2P mode Oper edge port mode and Aggregated ID Type MSTP Multiple Spanning Tree Protocol Configu
136. ting the firmware the system will copy the firmware file and replace the firmware in the flash The CLI show until the process is finished 4 2 9 Factory Default In this section you can reset all the configurations of the switch to default setting Click on Reset the system will then reset all configurations to default setting The system will show you popup message window after finishing this command Default setting will work after rebooting the switch Figure 4 2 7 1 The main screen of the Reset to Default Reset to Default Note The command will reset all configurations to the default settings except the IP address Reset Figure 4 2 7 2 Popup alert screen to confirm the command Click on Yes to start it Confirm Dialog Do you really want to reset the configuration to the default settings except the IP address 36 Figure 4 2 7 2 Popup message screen to show you that have done the command Click on OK to close the screen Then please go to Reboot page to reboot the switch Success Message Reset to Deafault OK Please reboot switch to run factory configuration exclude IP address Click on OK The system will then auto reboot the device Note If you already configured the IP of your device to other IP address when you use this command by CLI and Web UI our software will not reset the IP address to default IP The system will remain the IP address so that you can still connect the switch vi
137. tings click on Apply to apply your configuration Port control Force Authorized means this port is authorized the data is free to in out Force unauthorized just opposite the port is blocked If users want to control this port with Radius Server please select Auto for port control Reauthentication If enable this field switch will ask client to re authenticate The default time interval is 3600 seconds Max Request the maximum times that the switch allow client request Guest VLAN 0 to 4094 is available for this field If this field is set to 0 that means the port is blocked after authentication fail Otherwise the port will be set to Guest VLAN Host Mode if there are more than one device connected to this port set the Host Mode to single means only the first PC authenticate success can access this port If this port is set to multi all the device can access this port once any one of them pass the authentication Control Direction determined devices can end data out only or both send and receive Re Auth Period control the Re authentication time interval 1 65535 is available Quiet Period When authentication failed Switch will wait for a period and try to communicate with radius server again Tx period the time interval of authentication request Supplicant Timeout the timeout for the client authenticating Sever Timeout The timeout for server response for authenticating Click Initialize Selected to set the authorize state
138. tomatically naming with Ring ID New Ring Ringid Name C Add Ring Configuration 1 Ring RapidSuperR 128 Port1 128 Port2 128 Disable Enable Apply Remove Reload 62 4 Ring Configuration ID Once a Ring is created This appears and can not be changed Name This field will show the name of the Ring If it is not filled in when creating it will be automatically named by the rule RingID Version The version of Ring can be changed here There are three modes to choose Rapid Super Ring as default Super ring for compatible with Korenix 1 general ring and Any Ring for compatible with other version of rings Device Priority The switch with highest priority highest value will be automatically selected as Ring Master Then one of the ring ports in this switch will become forwarding port and the other one will become blocking port If all of the switches have the same priority the switch with the biggest MAC address will be selected as Ring Master Ring Port1 In Rapid Super Ring environment you should have 2 Ring Ports No matter this switch is Ring Master or not when configuring RSR 2 ports should be selected to be Ring Ports For Ring Master one of the ring ports will become the forwarding port and the other one will become the blocking port Path Cost Change the Path Cost of Ring Port1 If this switch is the Ring Master of a Ring then it determines the blocking po
139. ts are related to the overall function of the switch whereas Port Events related to the activity of a specific ports Device Cold Start Power is cut off and then reconnected Device Warm Start Reboot the device by CLI or Web UI Authentication failure An incorrect password SNMP Community String is entered Time Synchronize Accessing to NTP Server is failure Failure Super Ring Topology Master of Super Ring has changed or backup path is activated Changes Port SS ee The port is connected to another device Link Up Link Down The port is disconnected e g the cable is pulled out or the opposing devices turns down 115 Warning Event Selection System Event Selection _ Device Cold Start Device Warm Start Authentication Failure Time Synchronize Failure _ Super Ring Topology Change Port Event Selection Disable Disable Disable Fie debe Apply Once you finish configuring the settings click on Apply to apply your configuration 4 11 2 SysLog Configuration System Log is useful to provide system administrator locally or remotely monitor switch events history There are 2 System Log modes provided by JetNet 5428G local mode and remote mode Local Mode In this mode JetNet 5428G will print the occurred events selected in the Event Selection page to System Log table of JetNet 5428G You can monitor the
140. umber Egress_Interface UDP Rule Permit Deny udp Source_ P wildcard Dest_IP wildcard eq Given_Port_Number Egress_Interface ICMP Rule Permit Deny icmp Source_ P wildcard Dest_IP wildcard ICMP_Message_Type ICMP_Message_Code Egress_Interface Add MAC Switch config mac address table static 0012 7701 0101 vlan 1 interface fa1 Imac address table unicast static set ok Port Security Switch config interface fat Switch config if switchport port security Disables new MAC addresses learning and aging activities Note Rule Add the static MAC VLAN and Port binding first then enable the port security to stop new MAC learning Disable Port Security Switch config if no switchport port security Enable new MAC addresses learning and aging activities Display 802 1x shot of dot1x Switch show mac address table static Destination Address Address Type Vian Destination Port 0012 7701 0101 Static 1 fal enable diable Switch config dot1x system auth control Switch config Switch config authentic method Switch config no dot1x system auth control Switch config dot1x authentic method local Use the local username database for authentication radius Use the Remote Authentication Dial In User Service RADIUS servers for authentication Switch config dot1x authentic method radius Switch config radius server ip Switch config dot1x radius Switch config dot1x r
141. ume and stable network the GVRP can reduce the configuration effort For high volume and high secure request network the Static VLAN configuration is always preferred GVRP Configuration GVRP Protocol Enable State Disable Disable Disable Disable Disable Disable Disable Disable Disable i Disable Note Timer unit is centiseconds Apply GVRP Protocol Allow user to enable disable GVRP globally State After enable GVRP globally here still can enable disable GVRP by port Join Timer Controls the interval of sending the GVRP Join BPDU An instance of this timer is required on a per Port per GARP Participant basis Leave Timer Control the time to release the GVRP reservation after received the GVRP Leave BPDU An instance of the timer is required for each state machine that is in the LV state Leave All Timer Controls the period to initiate the garbage collection of registered VLAN The timer is required on a per Port per GARP Participant basis 4 5 4 VLAN Table This table shows you current settings of your VLAN table including VLAN ID Name Status and Egress rule of the ports VLAN ID ID of the VLAN Name Name of the VLAN Status Static shows this is a manually configured static VLAN Unused means this VLAN is created by UI CLI and has no member ports This VLAN is not workable yet Dynamic means this VLAN is learnt by GVRP 75 After created the VLAN the status of thi
142. umn you can configure port speed and duplex mode of this port Below are the selections you can choose Fast Ethernet Port 1 24 fa1 fa24 AutoNegotiation 10M Full Duplex 10 Full 10M Half Duplex 10 Half 100M Full Duplex 100 Full and 100M Half Duplex 100 Half Gigabit Ethernet Combo Port 25 28 gi25 gi28 AutoNegotiation 10M Full Duplex 10 Full 10M Half Duplex 10 Half 100M Full Duplex 100 Full 100M Half Duplex 100 Half 1000M Full Duplex 1000 Full 1000M Half Duplex 1000 Half The default mode is Auto Negotiation mode Note The on board Gigabit SFP port SFP 25 26 27 and 28 in JetNet 5428G 5428G DC only support 1000M Full mode SFP Port in JetNet 5428G 2G 2SFP gi27 gi28 100M Full or 1000M Full In Flow Control column Symmetric means that you need to activate the flow control function of the remote network device in order to let the flow control of that corresponding port on the switch to work Disable means that you don t need to activate the flow control function of the remote network device as the flow control of that corresponding port on the switch will work anyway In Description column you can add description for the port You can know the target it attached to easier in remote Once you finish configuring the settings click on Apply to save the configuration Technical Tips If both ends are not at the same speed they can t link with each other If both ends are not in the
143. vertently short your terminal connections to the grounded enclosure Note 2 The range of the suitable DC electric wire is from 12 to 24 AWG Note 3 Please follow the V and V indicator to wire Incorrect wiring would not damage the switch Incorrect wiring can not power on the switch Note Please follow the V and V indicator to wire Incorrect wiring would not damage the switch Incorrect wiring can not power on the switch 2 3 Wiring Earth Ground To ensure the system will not be damaged by noise or any electrical shock we suggest you to make exact connection with JetNet 5428G with Earth Ground For AC input the 3 pin include V V and GND The GND pin must be connected to the earth ground For DC input loosen the earth ground screw by screw drive then tighten the screw after earth ground wire is connected 2 4 Wiring Fast Ethernet Ports JetNet 5428G includes 24 RJ 45 Fast Ethernet ports The fast Ethernet ports support 10Base T and 100Base TX full or half duplex modes All the fast Ethernet ports will auto detect the signal from connected devices to negotiate the link speed and duplex mode Auto MDI MDIX allows users to connect another switch hub or workstation without changing straight through or crossover cables Note that crossover cables simply cross connect the transmit lines at each end to the received lines at the opposite end Switch Router or PC Switch Switch 3 TD s3 RD 3 TD 3 TD 6 TD
144. x all Nou can check all dot1x information for all interfaces Click Ctrl C to exit the display Switch show dot1x interface fa1 Supplicant MAC ADDR lt NONE gt STATE MACHINE AM status FORCE AUTH BM status IDLE PortStatus AUTHORIZED PortControl Force Authorized Reauthentication Disable MaxReq 2 ReAuthPeriod 3600 Seconds QuietPeriod 60 Seconds TxPeriod 30 Seconds SupplicantTimeout 30 Seconds Server Timeout 30 Seconds GuestVlan 0 HostMode Single operControlledDirections Both adminControlledDirections Both Switch show dot1x radius RADIUS Server IP 192 168 10 100 RADIUS Server Key _ radius key 113 RADIUS Server Port 1812 RADIUS Accounting Port 1813 Secondary RADIUS Server IP N A Secondary RADIUS Server Key N A Secondary RADIUS Server Port N A Secondary RADIUS Accounting Port N A Switch show dot1x username 802 1x Local User List Username orwell Password VLAN ID 1 114 4 11 Warning JetNet 5428G provides several types of Warning features for you to remote monitor the status of end devices or the change of your network The features include System Log and SMTP E mail Alert Following commands are included in this group 4 10 1 Event Selection 4 10 2 Syslog Configuration 4 10 3 SMTP Configuration 4 10 4 CLI Commands 4 11 1 Event Selection Event Types can be divided into two basic groups System Events and Port Events System Even
145. y MSTOO 0012 77ee eeee 32768 0 NA 20 2 15 MST01 0012 77ee eeee 32768 0 NA 20 2 15 MST02 0012 77ee eeee 32768 0 NA 20 2 15 MSTP Instance Switch show spanning tree mst 1 Information HHH H MSTO1 vians mapped 2 Bridge address 0012 77ee eeee priority 32768 sysid 1 Root this switch for MST01 Port Role State Cost Prio Nbr Type fal Designated Forwarding 200000 128 1 P2P Internal MSTP fa2 Designated Forwarding 200000 128 2 P2P Internal MSTP MSTP Port Switch show spanning tree mst interface fa1 Information Interface fastethernet1 of MSTOO is Designated Forwarding Edge Port Edge Edge BPDU Filter Disabled Link Type Auto Point to point BPDU Guard Disabled Boundary Internal MSTP BPDUs sent 6352 received 0 Instance Role State Cost Prio Nbr Vians mapped 0 Designated Forwarding 200000 128 1 1 4 4094 1 Designated Forwarding 200000 128 1 2 2 Designated Forwarding 200000 128 1 3 Multiple Super Ring Create or configure a Ring Switch config multiple super ring 1 Ring 1 created Switch config multiple super ring Note 1 is the target Ring ID which is going to be created or configured Super Ring Version Switch config multiple super ring version default set default to rapid super ring rapid super ring rapid super ring super ring super ring Switch config multiple super ring version rapid super ring Priority Switch config multiple super ring priority lt 0 255 gt valid range i
146. y stands by you all the way through Core Strength Competitive Price and Quality With our work experience and in depth know how of industrial communications and networking Korenix Technology is able to combine Asia s research development ability with competitive production cost and with quality service and support Global Sales Strategy Korenix s global sales strategy focuses on establishing and developing trustworthy relationships with value added distributors and channel partners and assisting OEM distributors to promote their own brands Korenix supplies products to match local market requirements of design quality sales marketing and customer services allowing Korenix and distributors to create and enjoy profits together Quality Services KoreCARE KoreCARE is Korenix Technology s global service center where our professional staffs are ready to solve your problems at any time and in real time All of Korenix s products have passed ISO 9000 EMI CE FCC UL certifications fully satisfying your demands for product quality under critical industrial environments Korenix global service center s e mail is kore CARE korenix com 5 Years Warranty Each of Korenix s product line is designed produced and tested with high industrial standard Korenix warrants that the Product s shall be free from defects in materials and workmanship for a period of five 5 years from the date of delivery provided that the Product was prop
147. zation DSCP Queue Mapping pscp o0 Queue A DSCP LI Note Queue 3 is the highest priority queue in using Strict Priority scheme After configuration press Apply to enable the settings 4 7 5 CLI Commands of the Traffic Prioritization Command Lines of the Traffic Prioritization configuration QoS Setting 89 Queue Scheduling Strict Priority Switch config qos queue sched sp Strict Priority wrr Weighted Round Robin Switch config qos queue sched sp The queue scheduling scheme is setting to Strict Priority Queue Scheduli g WRR Switch config qos queue sched wrr lt 1 10 gt Weights for COS queue 0 queue_id 0 Switch config qos queue sched wrr 10 lt 1 10 gt Weights for COS queue 1 queue_id 1 Switch config qos queue sched wrr 1 2 3 4 The queue scheduling scheme is setting to Weighted Round Robin Assign the ratio for the 4 classes of service Port Setting CoS Default Port Priority Switch config interface fat Switch config if gos priority lt 0 3 gt Assign a priority queue Switch config if gos priority 3 The priority queue is set 3 ok Note When change the port setting you should Select the specific port first Ex fa1 means fast Ethernet port 1 QoS Priority Mode Switch config qos priority cos CoS dsc
Download Pdf Manuals
Related Search