Netgear GS748TS User's Manual
Contents
1. Bridging Indicates BPDUs are bridged to all ports in the VLAN Status Bridge Identifier Displays the Bridge priority and MAC address Time Since Topology Change Displays the amount of time that has elapsed since the bridge was initialized or reset and the last topographic change that occurred The time is displayed in a day hour minute format such as 2 days 5 hours and 10 minutes Designated Root Displays the Root Bridge priority and MAC address Root Port Indicates the port number that offers the lowest cost path from this bridge to the Root Bridge This field is significant when the bridge is not the Root Bridge The default is zero Max Age Sec Displays the device Maximum Age Time The Maximum Age Time is the amount of time in seconds a bridge waits before sending configuration messages The default Maximum Age Time is 20 seconds Configuring Switching Settings 4 32 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 6 e Forward Delay Sec Displays the device Forward Delay Time The Forward Delay Time is the amount of time in seconds a bridge remains in a listening and learning state before forwarding packets The default is 15 seconds e Hello Time Sec Displays the device Hello Time The Hello Time indicates the amount of time in seconds a Root Bridge waits between configuration messages The default is 2 seconds e CST Regional Root Displays the Commo2. Index 2 v1 0 June 2009
3. Telephony OUI s Enter the OUI to enable on the Voice VLAN The following OUIs are enabled by default 00 E0 BB Assigned to 3COM IP Phones 00 03 6B Assigned to Cisco IP Phones 00 E0 75 Assigned to Polycom Veritel IP Phones 00 DO0 1E Assigned to Pingtel IP Phones 00 01 E3 Assigned to Siemens IP Phones 00 60 B9 Assigned to NEC Philips IP Phones 00 OF E2 Assigned to H3C IP Phones Description Enter an OUI description up to 32 characters 2 Select the OUI entry 3 Enter the Telephony OUI s and Description in the provided fields in the first row 4 Click APPLY to update the device To add a new Voice VLAN OUI 1 Click Switching gt Voice VLAN gt Advanced gt OUI The Voice VLAN OUI screen displays 2 Enter the Telephony OUI s and Description in the provided fields in the first row 3 Click ADD to update the device 4 27 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual To remove a Voice VLAN OUI 1 Click Switching gt Voice VLAN gt Advanced gt OUI The Voice VLAN OUI screen displays 2 Select the OUI entry 3 Click DELETE to remove the entry To restore Voice VLAN OUI factory defaults 1 Click Switching gt Voice VLAN gt Advanced gt OUI The Voice VLAN OUI screen displays 2 Click RESTORE DEFAULTS to restore the factory defaults STP Spanning Tree Protocol STP provi
4. Provides debugging messages e Description Displays the log message text 2 Click REFRESH or CLEAR LOGS to refresh or reset the Flash Logs screen Server Log The Server Log screen contains information for viewing and configuring the remote log servers New log servers can be defined and the log severity sent to each server To configure remote log servers 1 Click Monitoring gt Logs gt Server Log The Server Log screen displays NETGEAR GS748TS pecs wih bn mori Switch tog Configuration gt Log Filter 48 pos Gigabit Stockable 5 so00ur Server Log gt Memory Log gt Flash Log v Server tog Figure 7 5 7 7 Monitoring the Switch v1 0 June 2009 GS700TS Smart Switch Software Administration Manual wr YS NM The Server Log screen contains the following fields Server IP Enter the server s IP address to which logs can be sent UDP Port Enter the UDP port to which the server logs are sent The possible range is 1 65535 The default value is 514 Facility Select an application from which device logs are sent to the remote server Only one facility can be assigned to a single server If a second facility level is assigned the first facility is overridden All applications defined for a device utilize the same facility on a server The field default is Local 0 The possible field values are Local 0 Local 7 Description Enter a user defined server description
5. Unauthorized Indicates either the port control is force Unauthorized or the port control is Auto but a client has not been authenticated via the port Managing Security 6 13 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual e Guest VLAN Select whether the Guest VLAN is enabled or disabled on the port The default VLAN cannot be defined as a Guest VLAN The possible field values are Enable Enables using a Guest VLAN for the unauthorized port If a Guest VLAN is enabled the unauthorized port automatically joins the VLAN selected in the VLAN List field Disable Disables the Guest VLAN on the port This is the default value e Periodic Reauthentication Select whether periodic port reauthentication is enabled or disabled The possible field values are Enable Enables periodic port reauthentication Disable Disables port reauthentication This is the default value e Reauthentication Period Enter the time span in seconds in which the selected port is reauthenticated The field default is 3600 seconds e Authenticator State Displays the port authentication status The possible field values are Initialize Disconnected Connecting Authenticating Authenticated Aborting Held ForceAuth and ForceUnauthNew e Quiet Period Enter the number of seconds that the device remains in the quiet state following a failed authentication exchange The possible field rang
6. VLAN ID 1g VLAN Name p Multicast Address 07 00 5e 01 01 01 Multicast Group Membership Pe Forward Multicast Group o 123456 LAGS All GO TO INTERFACE so mj 1g1 Static B 1492 Static mj 1193 Static Bj 1494 Static mj 1195 Static B 1196 Static mj Aig Static Bj 1198 Static m 1499 Static Bj 1910 Static l Figure 4 30 Configuring Switching Settings 4 48 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Sy ae Da The Multicast Group Membership screen contains the following information Multicast Group Membership e VLAN ID Enter the VLAN ID e VLAN Name Displays the user defined VLAN name e Multicast Address Enter the Multicast group MAC address Multicast Group e Interface Displays the ports and LAGs for which the Multicast settings are displayed e Interface Status Select the interface status The possible field values are Static Indicates the interface is joined to the Multicast group statically Forbidden Indicates the interface is forbidden to join the Multicast group Excluded Indicates the interface is not included in the Multicast group Select the VLAN ID from the list in the provided field Select the Multicast Address from the list in the provided field Select the interface entry in the Multicast Group table Select the Interface Status from the list in the provided field in the first row Click APPLY to update the device Multicast Forward All The
7. e System Name Displays the administratively assigned device name e System Description Describes the device For example system hardware type and version operating system and network software e System Capabilities Describes the primary device function For example Bridge Router Managed Address e Address SubType Displays the managed address subtype For example MAC or IPv4 e Address Displays the managed address e Interface SubType Displays the port subtype Interface Number Displays the port number MAC PHY Details e Auto Negotiation Supported Displays the port speed auto negotiation support status The possible values are True Indicates Auto negotiation is supported on the port False Indicates Auto negotiation is not supported on the port 3 53 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual e Auto Negotiation Enabled Displays the port speed auto negotiation active status The possible values are True Indicates Auto negotiation is enabled on the port False Indicates Auto negotiation is not enabled on the port e Auto Negotiation Advertised Capabilities Displays the port speed auto negotiation capabilities For example 1OOOBASE T half duplex mode 1OOBASE TX full duplex mode e Operational MAU Type Displays the Medium Attachment Unit MAU type The MAU performs physical layer f
8. 1 2 3 4 Click Security gt ACL gt MAC Rules The MAC Rules screen displays Select the ACL Name from the list in the provided field Enter the provided fields in the first row Click ADD to update the device To delete a MAC rule Managing Security 6 23 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 1 2 3 4 Click Security gt ACL gt MAC Rules The MAC Rules screen displays Select the ACL Name from the list in the provided field Select the rule entry Click DELETE to remove the entry MAC Binding Configuration The MAC Binding Configuration screen contains information for mapping ACLs to MAC addressess When an ACL is bound to an interface all the ACE rules that have been defined are applied to the selected interface Whenever an ACL is assigned on a port LAG or VLAN flows from that ingress interface that do not match the ACL are matched to the default rule which is Drop unmatched packets To bind interfaces to an ACL 1 Click Security gt ACL gt MAC Binding Configuration The MAC Binding Configuration screen displays NETGEAR GS748TS s Ab pert Gigabit Srockoble Smart Switch MAC Binding Configuration MAC Binding Configuration ACL Name ass Port Selection Table Figure 6 14 The MAC Binding Configuration screen contains the following fields MAC Binding Configuration e ACL Name Select the ACL Name for viewing and modifying ACL bou
9. Video Signaling Indicates the network policy is defined for a Video Signaling application e VLAN ID Enter the VLAN ID for which the network policy is defined e VLAN Type Select the VLAN type for which the network policy is defined The possible field values are Tagged Indicates the network policy is defined for tagged VLANs Untagged Indicates the network policy is defined for untagged VLANs e User Priority Select the priority assigned to the network application The field range is 0 7 e DSCP Value Select the DSCP value assigned to the network policy The possible field value is 0 63 Select the Network Policy entry to configure Select the Network Policy Number from the list in the provided field in the first row Enter the VLAN ID in the provided field in the first row Select the VLAN Type from the list in the provided field in the first row Select the User Priority from the list in the provided field in the first row Select the DSCP Value from the list in the provided field in the first row Click APPLY to update the device To add a new network policy entry 1 SS ge Re NS Click System gt LLDP gt Advanced gt LLDP MED Network Policy The LLDP MED Network Policy screen displays Select the Network Policy Number from the list in the provided field in the first row Enter the VLAN ID in the provided field in the first row Select the VLAN Type from the list in the provide
10. e Subnet Mask Enter the IP address mask e Gateway Enter the default gateway IP address The following option is available Delete Deletes the default gateway IP address e Management VLAN ID Select an existing VLAN to be defined as the management VLAN By default the default VLAN defined on the device is VLAN1 2 Select the method of assigning the IP address by selecting either Get Dynamic IP from DHCP Server or Static IP Address 3 If you selected Static IP Address enter the IP Address Subnet Mask and Gateway address 4 Select a VLAN in the Management VLAN ID in the provided fields 5 Click APPLY to update the system settings Time The Time menu enables local system time or SNTP server configuration and contains the following options e Time Configuration e SNTP Server Configuration Time Configuration The Time Configuration screen contains information for defining both the local hardware clock and the external SNTP clock If the system time is managed via an external SNTP clock and the external SNTP clock fails the system time reverts to the local hardware clock To configure the local system time 1 Click System gt Management gt Time gt Time Configuration The Time Configuration screen displays 3 5 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual wa gt amp o N NETGEAR GS748TS AB port Gigabit Steckeble Smert Switc
11. 1 Click Security gt ACL gt IPv6 Binding Configuration The IPv6 Binding Configuration screen displays NETGEAR GS748TS ne AD port Gigabit Stocheble Smart Switch IP Binding Configuration 1P Binding Configuration ACK Name a Port Selection Table Figure 6 20 The IPv6 Binding Configuration screen contains the following fields IPv6 Binding Configuration e ACL Name Select the ACL Name for viewing and modifying ACL bound interfaces Port Selection Table e Port Number 1 XX Displays the bound and unbound ports on the device 2 Select the interfaces for which the ACLs are bound 6 32 Managing Security v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 5 Select the ACL Name from the list in the provided field Select the interfaces to bind to the selected ACL Name by one of the following methods a Click on the port or LAG gold bar to display the associated interfaces and then select the interfaces to bind by clicking on the boxes below the interfaces or b Click on the port s or LAG s quick box to select all the associated interfaces Click APPLY to update the device Binding Table To view the ACL Binding Table 1 Click Security gt ACL gt Binding Table The Binding Table screen displays NETGEAR System Switching Qos Security Monitoring Maintenance Help rosour Binding Table Interface Binding Table 1g test A P MAC tt tae Pa ma to
12. The Login screen appears Help Locour Login Password Figure 2 1 2 1 V1 0 June 2009 GS700TS Smart Switch Software Administration Manual 2 Enter the password the factory default is password and click Login The home screen of the GS700TS Smart Switch browser interface displays The Navigation Menu As shown below logging in brings you to the view of the web browser interface NETGEAR GS748TS f atoe Gigabi Stochobie Swart Smirch System Information o spram Latur eten tantiprezen ee System Information Figure 2 2 The NETGEAR GS700TS web browser interface contains the following views Main Navigation Area Located on the top of the NETGEAR GS700TS web browser interface and marked as 1 in Figure 2 2 The Main Navigation Area includes Primary and Secondary Navigation Bars The Primary Navigation Bar contains a list of the different features that can be configured including System Switching QoS Security Monitoring Maintenance and Help Each feature expands to a subset of features that can be configured as part of the Secondary Navigation Bar Left Navigation Tree Located on the left side of the NETGEAR GS700TS web browser interface and marked as 2 in Figure 2 2 For each Secondary Navigation Feature the Left Navigation Tree contains a subset of features that can be expanded to display all the components Introduction to the Web Browser Interface 2 2 v1 0 June 2009 GS700TS Sma
13. and enables your switch to take advantage of improvements and additional features as they become available The upgrade procedure assumes that you have downloaded or otherwise obtained the firmware upgrade and that you have it available as a binary file on your computer This procedure uses the TFTP protocol to implement the transfer from computer to switch gt Note You can also upgrade the firmware using the Download menu of the switch see Download If you click Firmware Upgrade from the main screen see Figure 1 1 after you have selected the switch to upgrade the following screen appears 1 9 Getting Started with Switch Management v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Firmware Upgrade Upgrade List Progress Product Name IP Address GS748Ts 192 168 0 239 lt i Upgrade Configuration Product Name GS748TsS Product IPAddress 1321630230 nee Product Assigned Firmware CaNetgear Projects S700TS Sottware _ Browse Upgrade Password tr ee cen Apply Upgrade State Start Upgrade Close Window Figure 1 6 1 Enter the following values into the appropriate places in the form e Product Assigned Firmware The location of the new firmware If you do not know the location click Browse to locate the file e Upgrade Password Enter your password the default password is password Click Apply to apply the settings to the Upgrade Configuration Click
14. received on the Voice VLAN The possible field values are 0 7 where zero is the lowest priority and seven is the highest priority Remark CoS Enable or disable reassigning the CoS tag value to packets received on the Voice VLAN The possible field values are Disable Disables remarking the packet CoS tag value This is the default value Enable Enables remarking the packet CoS tag value Voice VLAN Aging Time Enter the Voice VLAN aging time The Voice VLAN aging time sets the maximum inactivity time for a Voice VLAN port member after its MAC address is aged out If the time since the last MAC address with telephony MAC address was aged out exceeds the Voice VLAN aging time the port is dropped from the Voice VLAN The default time is one day The field format is Day Hour Minute The Voice VLAN aging time starts after the MAC address is aged out from the Dynamic MAC Address table The MAC Address Dynamic Aging default time is 300 sec For more information on defining MAC Address age out time see Dynamic Addresses Select the device VoiceVLAN Status in the provided field If you selected Enable in the VoiceVLAN Status field select the VoiceVLAN ID Class of Service Remark CoS and enter the Voice VLAN Aging Time in the provided fields Click APPLY to update the device Advanced The Voice VLAN Advanced menu contains the following options Properties Port Setting OUr 4 23
15. wae OtnJen 2060 015012 nfermational WUNK W Down p16 Figure 7 4 The Flash Log screen contains the following fields e Log Index Displays the log number e Log Time Displays the time at which the log was generated e Severity Displays the log severity and urgency level The following are the available log severity levels Emergency Displays the highest warning level If the device is down or not functioning properly an emergency log message is saved to the specified logging location Monitoring the Switch 7 6 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Alert Indicates the device needs immediate attention Alert is the second highest warning level An alert log is saved if there is a serious device malfunction for example all device features are down Critical Indicates the device is in a critical state Critical is the third highest warning level A critical log is saved if a critical device malfunction occurs for example two device ports are not functioning while the rest of the device ports remain functional Error Indicates a device error has occurred for example if a single port is offline Warning Displays the lowest level of a device warning The device is functioning but an operational problem has occurred Notice Indicates the system is functioning properly but a system notice is logged Informational Provides device information Debug
16. 01 00 5e 01 01 01 Dynamic m 01 00 5e 01 01 01 Static Figure 4 29 The Multicast Group Configuration screen contains the following information e VLAN ID Displays the VLAN ID 4 47 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual e VLAN Name Displays the user defined VLAN name e Multicast Address Enter the Multicast group MAC Address associated with the VLAN e Type Indicates the VLAN ID status in relation to the Multicast group Static Attaches the VLAN ID to the Multicast group as static member Dynamic Dynamically joins the VLAN ID to the Multicast group 2 Select the group entry Enter the Multicast Address in the provided field in the first row 4 Click APPLY to update the device Multicast Group Membership The Multicast Group Membership screen displays the ports and LAGs attached to the selected VLAN and the Multicast service group The Port and LAG tables also reflect the manner in which the port or LAGs joined the Multicast group To configure Multicast group membership 1 Click Switching gt Multicast gt Advanced gt Multicast Group Membership The Multicast Group Membership screen displays NETGEAR GS7A8TS 48 port Gigabit Stackable Smart Switch System Switching Qos Security Monitoring Maintenance Help Ports LAG VLAN Voice VLAN STP Address Table Multicast Group Membership Multicast Group Membership
17. 1 1 Click anywhere on the Unit 1 ports gold button The Unit 1 ports panel is displayed Membership LAG1D LAG Name pe LAG Type Static x CURRENT MEMBERS GE Port 01 02 03 04 05 06 07 08 09 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 JD a a ae i I a eae a ene Se ea eet ie eet Figure 2 10 2 Select the Unit 1 ports to be added as LAG members within the selected LAG by clicking on their respective boxes 3 Click APPLY to update the device Introduction to the Web Browser Interface 2 8 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Quick Boxes Quick Boxes provide users with flexibility in configuring VLANs for all ports on a stacking unit level or LAGs Clicking on the quick box toggles between the various options that exist for this field A quick box appears to the right of the arrow on the left hand side of the gold button The following example displays quick box basic usage options To mark or unmark all Unit 1 ports 1 Click on the quick box that appears to the left of the Unit 1 gold button A T appears in the quick box This sets all Unit 1 ports as Tagged VLAN Membership UNTAGGED PORT MEMBERS TAGGED PORT MEMBERS Figure 2 11 2 Click on the Unit 1 gold button to display the Unit 1 ports which are now all Tagged VLAN Membership VLAN ID DA Group Operation Teg Al VLAN Name UNTAGGED PORT MEMBERS TAGGED PORT MEMBERS lt d 2 2 2 3 i
18. 1191 VLAN4 114 14 11 11 11 11 1ig2 VLANS tttt tt 22 tf ce 11911 VLANI tt t3 tt t6 tt 8f 1198 VLANIO ta ff ac a6 aa fa 1 5 VLANI3 14 17 d1 dd 11 cc 1ig4 First Previous Next All Figure 4 35 The Advanced Address Table screen contains the following fields e Search By Display the MAC Address which can be sorted according to VLAN ID MAC Address or Interface The possible field values are VLAN ID Display the MAC Address table entries that relate to the specific VLAN ID MAC Address Display the MAC Address table entries that relate to MAC address 4 55 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Interface Display the MAC Address table entries that relate to the specific interface e VLAN ID Displays the VLAN ID number to which the entry refers e MAC Address Displays the MAC address to which the entry refers e Interface Displays the interface to which the entry refers 2 Select the Search By key from the list in the provided field 3 Enter the value to be searched for in the provided box 4 Click GO to execute the query To delete all addresses from the Advanced Address Table 1 Click Switching gt Address Table gt Advanced gt Address Table The Advanced Address Table screen displays 2 Click CLEAR ALL to delete all entries in the address table Configuring Switching Settings 4 56 v1 0 June 2009 Chapter 5 Con
19. 6 Managing System Settings 3 16 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual e Unit No After Reset Select the stacking member s Unit number after the device is reset The possible field values are 1 6 Assigns the selected Unit number to the stacking member after the device is reset Auto Assigns the Unit number to the stacking member automatically after the device is reset Select the entry whose Unit ID number is to be changed Select the Unit No After Reset from the list Click APPLY to update the device oC gt YS Reset the device for the new settings to take effect See Reset for detailed instructions on resetting the device To switch the stack masters 1 Open the Stack Configuration screen 2 Select Force Master 3 If Unit 1 is the current Stacking Master select 2 from the list to switch the stack control to the Secondary Stack Master If Unit 2 is the current Stacking Master select 1 from the list 4 Click APPLY A confirmation message displays SNMP Simple Network Management Protocol SNMP provides a method for managing network devices The device supports the following SNMP versions e SNMP vl and v2c e SNMP version 3 The SNMP agents maintain a list of variables that are used to manage the device The variables are defined in the Management Information Base MIB The SNMP agent defines the MIB specification format as well as the format us
20. Check the Delete box for each SNTP server that is to be removed 2 Click APPLY to update the system settings 3 7 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Device View The Device View menu displays the Device View screen which provides a graphic representation of the device including the port and LED statuses To display the Device View screen 1 Click System gt Device View The Device View screen displays NETGEAR GS748T AD port Gigabit Stockeble Smart Switsh System Switching Qos Security Monitoring J Maintenance Help oson Figure 3 5 Stacking All stack members are accessed through a single IP address through which the stack is managed Stacks are managed using e A Web based Interface e An SNMP Management Station The system supports up to six stacking members per stack to a maximum of 192 ports or devices can operate as standalone systems During the Stacking setup one device is selected as the Stacking Master All other devices are named as stack members and assigned a unique Unit ID The Stack Master provides a Single point of control and management as well as a single interface in which to control and manage the stack The device software is downloaded separately for each of the stack members All units in the stack must be running the same software version The Stacking Master maintains switch stacking and configuration The Stack
21. Forbidden Indicates the interface is forbidden to join the mulitcast group Excluded Indicates the interface is not included in the Multicast group 2 Select the VLAN ID from the list in the provided fields 3 Select the port or LAG interface entry in the Multicast Group table 4 Select the Interface Status from the list in the provided field in the first row Configuring Switching Settings 4 50 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 5 Click APPLY to update the device Address Table Packets addressed to destinations stored in either the Static or Dynamic databases are immediately forwarded to the port The Dynamic MAC Address Table can be sorted by interface VLAN or MAC Address Dynamic MAC addresses are learned from packets from sources that arrive at the device while Static addresses are configured manually An address becomes associated with a port by learning the port from the frame s source address but if a frame that is addressed to a destination MAC address is not associated with a port that frame is flooded to all relevant VLAN ports To prevent the bridging table from overflowing a dynamic MAC address from which no traffic arrives for a set period is erased The Address Table menu contains the following options e Basic e Advanced Basic The Address Table Basic menu contains the following options e Address Table Address Table The Basic Ad
22. History Table screen contains the following fields History Entry History Entry No Select the entry number for the History Control Table screen e Owner Displays the RMON station or user that requested the RMON information The field range is 0 20 characters History Table e Sample No Displays the sample number from which the statistics were taken e Drop Events Displays the number of dropped events that have occurred on the interface since the device was last refreshed Monitoring the Switch 7 16 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Received Bytes Displays the number of octets received on the interface since the device was last refreshed This number includes bad packets and FCS octets but excludes framing bits Received Packets Displays the number of packets received on the interface since the device was last refreshed including bad packets Multicast and Broadcast packets Broadcast Packets Displays the number of good Broadcast packets received on the interface since the device was last refreshed This number does not include Multicast packets Multicast Packets Displays the number of good Multicast packets received on the interface since the device was last refreshed CRC Errors Displays the number of CRC and Align errors that have occurred on the interface since the device was last refreshed Undersize Packets Displays the number of unders
23. INTERFACE 22 1 1 1 1 1 1 1 1 gt E r r r r r r r 2 GO TO INTERFACE GO Figure 2 16 To select an interface 1 Enter the number of the interface in the GO TO INTERFACE box 2 Click GO to select the interface as in the following example 2 11 Introduction to the Web Browser Interface v1 0 June 2009 GS700TS Smart Switch Software Administration Manual GS748TS 48 port Gigabit Stackable Smart Switch NETGEAR Connect with innovation system BEM Qos Security Monitoring Maintenance Help Voice VLAN STP Multicast Address Table Ports LAG Port PVID Configuration Port PYID Configuration 123456 LAGS All GO TO INTERFACE Leo fsstoce amsertoce emo O o gt VLAN Configuration gt VLAN Membership gt Port PVID Configuration D 1 1 E 1 D 1g 1 ET 1 C tgs 1 T w 1 C ag 4 r w 1 C 199 1 T1410 4 PF gm 4 O 192 i D 1igt3 1 TF tigia 1 C tits 1 Figure 2 17 Introduction to the Web Browser Interface 2 12 v1 0 June 2009 Chapter 3 Managing System Settings Using the System Settings Utility The navigation pane at the top of the web browser interface contains a System tab that enables you to manage your GS700TS Smart Switch displaying configurable features under the following main menu options e Management e Device View e Stacking SNMP e T LDP The description that follows in this c
24. Information window opens The Port Information window contains the following fields Managed Address Address SubType Displays the managed address subtype For example IPv4 Address Displays the managed address Interface SubType Displays the port subtype Interface Number Displays the port number 3 49 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual MAC PHY Details e Auto Negotiation Supported Displays the port speed auto negotiation support status The possible values are True Indicates auto negotiation is supported on the port False Indicates auto negotiation is not supported on the port e Auto Negotiation Enabled Displays the port speed auto negotiation active status The possible values are True Indicates auto negotiation is enabled on the port False Indicates auto negotiation is not enabled on the port e Auto Negotiation Advertised Capabilities Displays the port speed auto negotiation capabilities For example 1OOOBASE T half duplex mode 1OOBASE TX full duplex mode e Operational MAU Type Displays the Medium Attachment Unit MAU type The MALU performs physical layer functions including digital data conversion from the Ethernet interfaces collision detection and bit injection into the network For example 100BASE TX full duplex mode 802 3 Details e 802 3 Maximum Frame Size Displa
25. June 2009 GS700TS Smart Switch Software Administration Manual To add an entry by creating a new entry in the table 1 Enter the fields for the new entry in the provided fields in the first row cy Configuration Select VLAN ID VLAN Name default Default Figure 2 7 2 Click ADD to update the device The new entry is displayed VLAN Configuration eE VAN name E 1 default Default E Vlan2 Static Figure 2 8 Modifying an Entry An entry may be modified by editing its values in the first row To modify an entry 1 Select the entry to be modified Its contents are displayed in the first row VLAN Configuration seia vian 19 VLAN name Aoo a default Default Figure 2 9 2 Modify the fields in the first row 3 Click APPLY to update the device 2 7 Introduction to the Web Browser Interface v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Deleting an Entry To delete entries from a table 1 Select the entries to be deleted 2 Click DELETE to update the device Special Table Options The NETGEAR web browser interface tables have a unique GUI design which includes the following options e Gold Buttons e Quick Boxes e Interface View and Selection Gold Buttons Gold Buttons provide flexibility in viewing and configuring VLANs LAGs on a port level The following example displays gold button basic usage options To view the LAG configuration of the ports of Unit
26. Minimum Severity Select the minimum severity level for which logs are sent to the server For example if Notice is selected all logs with a severity level of Notice and higher are sent to the remote server The default value is Informational The possible field values are Emergency Displays the highest warning level If the system is down or not functioning properly an emergency log message is saved to the specified logging location Alert Indicates the system needs immediate attention Alert is the second highest warning level An alert log is saved if there is a serious device malfunction for example all device features are down Critical Indicates the system is in a critical state Critical is the third highest warning level A critical log is saved if a critical device malfunction occurs for example two device ports are not functioning while the rest of the device ports remain functional Error Indicates a device error has occurred for example if a single port is offline Warning Displays the lowest level of a device warning The device is functioning but an operational problem has occurred Notice Indicates the system is functioning properly but a system notice is logged Informational Provides device information Debug Provides debugging messages Select the server entry Enter the Server IP address in the provided field in the first row Enter the UD
27. Multicast Forward All screen contains fields for attaching ports or LAGs to a device that is attached to a neighboring Multicast router switch Once IGMP Snooping is enabled Multicast packets are forwarded only to the appropriate port or VLAN To define Multicast forward all settings 1 Click Switching gt Multicast gt Advanced gt Multicast Forward All The Multicast Forward All screen displays 4 49 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual NETGEAR GS748TS C dik ii 48 port Gigabit Stackable Smart Switch System Switching Qos Security Monitoring Maintenance Help Ports LAG VLAN Voice VLAN STP Address Table Multicast Forward All Multicast Forward All VLAN ID VLAN Name Multicast Forward All gt Multicast Forward all 123456 LAGS AIl GO TO INTERFACE lso Static Static Static Static Static Static Static Static Static Static Static a r F E r i r r E Figure 4 31 The Multicast Forward All screen contains the following information Multicast Forward All e VLAN ID Enter the VLAN ID e VLAN Name Displays the user defined VLAN name Multicast Forward All e Interface Displays the interface for which the Multicast settings are displayed e Interface Status Select the interface status The possible field values are Static Indicates the interface is added to the Multicast forward group statically
28. Standby ensures that the Secondary Master takes over for the Stacking Master if a failure occurs This guarantees that the stack continues to operate normally During the Warm Standby the Master and the Secondary Master are synchronized with the static configuration only When the Stacking Master is configured the Stacking Master must synchronize the Stacking Secondary Master The Dynamic configuration is not saved for example dynamically learned MAC addresses are not saved Each port in the stack has a specific Unit No port type and port number which are part of both the configuration commands and the configuration files Configuration files are managed only from the device Stacking Master This includes e Saving to the FLASH memory which retains e Uploading Configuration files to an external TFTP Server e Downloading Configuration files from an external TFTP Server Whenever a reboot occurs topology discovery is performed and the master learns all units in the stack Unit Numbers are saved in the unit and are learned through topology discovery If a unit attempts to boot without a selected Master and the unit is not operating in standalone mode the unit does not boot For example if a stack member Unit No 3 6 is separated from the stack due 3 11 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual to a topology failure the stacking member is no longer connected to the stack
29. The CST Port Configuration screen contains the following fields Interface Displays the port or LAG for which the STP information is displayed STP Status Select the STP status on the interface The possible field values are Enable Enables STP on the interface This is the default Disable Disables STP on the interface Fast Link Select the Fast Link state on the interface If Fast Link mode is enabled for a interface the Port State is automatically placed in the Forwarding state when the port link is up Fast Link optimizes the STP protocol convergence The possible field values are Enable Enables Fast Link on the interface Disable Disables Fast Link on the interface This is the default Port State Displays the current STP state of a port If enabled the port state determines what forwarding action is taken on traffic Possible port states are Forwarding Indicates STP is enabled on the port and the port is forwarding packets based on the STP topology Disabled Indicates STP is currently disabled on the port The port forwards traffic while learning MAC addresses Blocking Indicates the port is currently blocked and cannot forward traffic or learn MAC addresses Listening Indicates the port is in Listening mode The port cannot forward traffic nor can it learn MAC addresses Learning Indicates the port is in Learning mode The port cannot for
30. The web interface simplifies this configuration at all levels How to Use This Book This document describes configuration commands for the GS700TS Smart Switch software The commands can all be accessed from the Web interface e Chapter 1 Getting Started with Switch Management describes how to use the SmartWizard Discovery utility to set up your switch so that you can communicate with it e Chapter 2 Introduction to the Web Browser Interface introduces the Web browser interface e Chapter 3 Managing System Settings describes how to configure the System functions e Chapter 4 Configuring Switching Settings describes how to configure the Switching functions e Chapter 5 Configuring QoS describes how to configure QoS functions About This Manual x V1 0 June 2009 GS700TS Smart Switch Software Administration Manual e Chapter 6 Managing Security describes how to configure security e Chapter 7 Monitoring the Switch describes how to configure switch monitoring e Chapter 8 Maintenance describes the firmware upgrade procedure and reset functions e Chapter 9 Online Help describes how to obtain online help and support e Chapter A Default Settings gives GS700TS Smart Switch specifications and lists default feature values Note Refer to the product release notes for the GS700TS Smart Switch Software application level code The release notes detail the pla
31. Timeout in the provided field in the first row 6 Click APPLY to update the device Traffic Control The Traffic Control menu contains the following options e Storm Control e Port Security e Protected Ports Storm Control Storm Control limits the amount of Multicast and Broadcast frames accepted and forwarded by the device When Layer 2 frames are forwarded Broadcast and Multicast frames are flooded to all ports on the relevant VLAN This occupies bandwidth and loads all nodes on all ports A Broadcast Storm is a result of an excessive amount of broadcast messages simultaneously transmitted across a network by a single port Forwarded message responses are heaped onto the network straining network resources or causing the network to time out Storm control can be enabled per port by defining the packet type and the rate the packets are transmitted The system measures the incoming Broadcast and Multicast frame rates separately on each port and discards the frames when the rate exceeds a user defined rate By default Storm Control is enabled on all ports for Broadcast packets with a threshold of 200 kbps The Storm Control screen provides fields for configuring broadcast storm control To configure Storm Control 1 Click Security gt Traffic Control gt Storm Control The Storm Control screen displays Managing Security 6 15 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual
32. VLAN Configuration The Basic VLAN Configuration screen displays 2 Select the VLAN entry Click DELETE to remove the entry Advanced The VLAN Advanced menu contains the following options e VLAN Configuration e VLAN Membership e Port PVID Configuration VLAN Configuration The Advanced VLAN Configuration screen provides information and parameters for configuring and working with VLANs The maximum number of active VLANs is 128 To define VLAN properties 1 Click Switching gt VLAN gt Advanced gt VLAN Configuration The Advanced VLAN Configuration screen displays NETGEAR GS748TS 48 port Gigab Stackable Smart Switch system S ST Qos Security Monitoring Maintenance Help iocour VLAN Configuration v Advanced s us Contauraeen _ VLAN Configuration gt 5 gt Figure 4 11 Configuring Switching Settings 4 16 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual The Advanced VLAN Configuration screen contains the following fields e VLAN ID Enter the VLAN ID The field range is 2 4093 e VLAN Name Enter the user defined VLAN name e Type Displays the VLAN type The possible field values are Static Indicates the VLAN is user defined Default Indicates the default VLAN ID is 1 It cannot be modified by the user 2 Select the VLAN entry 3 Enter the VLAN ID and VLAN Name in the provided fields in the first row 4 Click APPLY to
33. access to informational services including NETGEAR online support and an online user guide in PDF format For a detailed description of how to access and use these functions see Chapter 9 Online Help Accessing Device Information Each screen of the web browser interface contains a help file with configuration information relating to the selected screen To access the help file for a screen 1 Click the encircled red Question Mark icon shown in the example below Introduction to the Web Browser Interface 2 4 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual NETGEAR GS748TS AB port Gigabit Stackable Smor Switch System Switching Qos Security Monitoring Maintenance Help tocourt Ports LAG Voice VLAN STP Multicast Address Table aun VLAN Configuration VLAN Configuration 3 Advanced VLAN Configuration Select VLAN 1D YLAN Name Type T Bi Dataa Dataa VLAN State Figure 2 3 A help window for the screen opens The Basic VLAN Configuration screen provi ides information and parameters for configuring and working with VLANs The maximum number of active VLANS is 128 TEL fol Type Cleplays the VLAN type The possible feld v alues are Static The VLAN is user define Oefaun The gelaut VLAN ID s i T cannot be modified by the user Figure 2 4 Using Screen and Table Options The NETGEAR GS700TS web browser interface contains screens and tables for configuring
34. an out of the box switch and are not using the SmartWizard Discovery utility you must initially configure your host PC to be on a network segment to match the default parameters of the switch which are e JP address 192 168 0 239 e Subnet Mask 255 255 255 0 You can change the network parameters to match those of your network this procedure is described in Chapter 3 Managing System Settings Your host PC network parameters must then be set to match your network Clicking Web Access on the SmartWizard Discovery utility or accessing the switch directly displays the screen shown below Help Login 0 Password Figure 1 5 Use this screen to proceed to management of the switch covered in Chapter 2 Introduction to the Web Browser Interface Additional Utilities Alternatively from the main screen shown on Figure 1 1 you can access these additional functions e Password Change e Firmware Upgrade Getting Started with Switch Management 1 8 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Password Change You can set a new password of up to 20 ASCII characters 1 Click Password Change from the Switch Setting section The Password Change screen appears You can set a new password You must enter the old and new passwords and confirm the new one 2 Click Set to enable the new password Firmware Upgrade The GS700TS Smart Switch software is upgradeable
35. and forwarding traffic Down Indicates the LAG is currently not linked Reactivate Suspended Select the action to apply to a suspended LAG The possible field values are Enable Reactivates the suspended LAG Disable Does not reactivate the suspended LAG Type Displays the LAG Type The possible field values are Static Indicates the LAG is configured manually LACP Indicates the LAG is configured automatically Speed Select the data transmission rate for the LAG The LAG type determines what speed setting options are available LAG speeds can only be configured when auto negotiation is disabled The possible field values are 10M Indicates the LAG is currently operating at 10 Mbps 100M Indicates the LAG is currently operating at 100 Mbps 4 9 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 1000M Indicates the LAG is currently operating at 1000 Mbps e Duplex Mode Displays the duplex mode of the LAG The possible field values are Full Indicates the interface supports transmission between the device and its link partner in both directions simultaneously None Indicates Duplex mode is not enabled on the LAG e Auto Negotiation Select the auto negotiation status of the LAG Auto Negotiation is a protocol between two link partners that enables a port to advertise its transmission rate d
36. cables e The Unit ID numbering To restore stacking defaults press the reset button on the front panel of your device To reset the device to the factory defaults 1 Click Maintenance gt Reset gt Factory Default The Factory Default screen displays Maintenance 8 2 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual NETGEAR GS748TS AB pert Gigabit Stackable Smart Switch System Switching QoS Security Monitoring Mointenonce Help tocour Factory Default gt Device Reboot v Factory Default Factory Default Note all configuration settings mil return to their default valve after p reset Figure 8 2 2 Check the confirmation box 3 Click APPLY to reset the device to the factory defaults Upload The Upload menu contains the following option e Upload Upload System Files can be backed up using the Upload screen To back up files 1 Click Maintenance gt Upload The Upload screen displays 8 3 Maintenance v1 0 June 2009 GS700TS Smart Switch Software Administration Manual NETGEAR GS748TS bit Stackable Smort Switch System Switching Qos Security Monitoring Maintenance Help osu Upload v Upload File Upload Faelype Fimwae G warp C vis mme server m Remote F enamo Figure 8 3 The Upload screen contains the following fields File Type Enter the type of file to be uploaded The possible field values are Firmware U
37. devices This section describes the table options e Selecting an Entry e Adding an Entry e Modifying an Entry e Deleting an Entry e Special Table Options 2 5 Introduction to the Web Browser Interface v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Selecting an Entry To select an entry 1 Check the entry s Select box The selected entry is highlighted and the information appears in the first row which contains the editable fields LAG Configuration Reactivate Duplex Auto Flow Ee eee oc ald Bagatintion ie LAGI Down Disable Static 100M None Unknown Disable rH tae2 notPresent Disable Static None Unknown Disable Ee eee Ej LAG4 notPresent Disable Static None Unknown Disable O LaGs notPresent Disable Static None Unknown Disable r LAGE notPresent Disable Static None Unknown Disable LAG7 notPresent Disable Static None Unknown Disable Ej LAGS notPresent Disable Static None Unknown Disable Figure 2 5 To select all entries 1 Check the Select box in the first row to select all entries in the table Fields that are unique are grayed out and displayed as read only fields LAG Configuration Reactivate Duplex Auto Flow cl ne Neue eatios Comet 3 M M vw M M M M Figure 2 6 Adding an Entry An entry may be added to the table by creating a new entry or by duplicating an existing entry Introduction to the Web Browser Interface 2 6 v1 0
38. displays 40 port Gigabit Stackable 3mar NETGEAR GS748TS aniis ala bi i Switch iocovt Bandwidth Port Settings PORTS LAGS All J a r r r r r r r r r r r r Figure 5 4 The Bandwidth screen contains the following fields e Interface Displays the ports for which the bandwidth settings are displayed e Ingress Rate Limit Status Select whether rate limiting is defined on the interface The possible field values are Enable Enables ingress rate limiting on the interface Configuring QoS 5 6 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Disable Disables ingress rate limiting on the interface e Ingress Rate Limit Enter the rate limit in kilobits per second The possible field range is 3500 to the maximum port speed GE Gigabit Ethernet ports have a maximum speed of 1000000 kilobits per second The field default value is 3500 e Egress Shaping Rates Status Select whether egress shaping is defined on the interface The possible field values are Enable Enables egress shaping rate on the interface Disable Disables egress shaping rate on the interface This is the default value e Egress Shaping Rates CIR Enter the Egress Shaping Committed Information Rate CIR in kilobits per second The possible field range is 64 to 1000000 e Egress Shaping Rates CbS Enter the Egress Shaping Committed Burst Size CbS in bits per sec
39. e Alarm Entry Displays the alarm entry e Counter Name Select the MIB variable e Interface Enter the port or LAG interface e Counter Value Displays the selected MIB variable value Monitoring the Switch 7 20 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Sample Type Select the sampling method for the selected variable and comparing the value against the thresholds The possible field values are Absolute Compares the values directly with the thresholds at the end of the sampling interval Delta Subtracts the last sampled value from the current value The difference in the values is compared to the threshold Rising Threshold Enter the rising counter value that triggers the rising threshold alarm The rising threshold is presented on top of the graph bars Each monitored variable is designated a color Rising Event Enter the event number by which rising alarms are reported Falling Threshold Enter the falling counter value that triggers the falling threshold alarm The falling threshold is graphically presented on top of the graph bars Each monitored variable is designated a color Falling Event Enter the event number by which falling alarms are reported Startup Alarm Select the trigger that activates the alarm generation Rising is defined by crossing the threshold from a low value threshold to a higher value threshold The possible field valu
40. for the Port Based Authentication State in the provided field If you selected Enable for the Port Based Authentication State then select the Authentication Method from the list in the provided field Select Disable or Enable for the Guest VLAN status in the provided field If you selected Enable for the Guest VLAN field then select the VLAN ID from the list in the provided field If you selected Disable for the Port Based Authentication State select the EAPOL Handling mode in the provided field Click APPLY to update the device Port Authentication The Port Authentication screen enables configuring port authentication interface parameters 6 12 Managing Security v1 0 June 2009 GS700TS Smart Switch Software Administration Manual To configure port based authentication global properties 1 Click Security gt Port Authentication gt Advanced gt Port Authentication The Port Authentication screen displays NETGEAR GS7 dt pori Gigadis Hrechable Saai System Switching QoS Monitoring Maintenance Help Port Authentication Bosk Advanced Port Authentication 902 1x Cantguranon gt Best Authanbsation C aanerzec Sasse Daas wec cease x x set aare row mmerses Dese Desse xo otace 2 senaera C w aanerzec Dase Desse wee cease x x soraene roi Osse Dase mee oeaio 2 sortere C w dese Desce wee esse i x x r w Ose Dase wo nemze e x 2 soere C w Deere Deane xo neoze e x
41. in the GS700TS Smart Switch Ports The Ports menu contains the following option e Port Configuration Port Configuration The Port Configuration screen contains fields for defining port parameters enabled on the ports To configure port parameters 1 Click Switching gt Ports gt Port Configuration The Port Configuration screen displays 4 1 V1 0 June 2009 GS700TS Smart Switch Software Administration Manual NETGEAR GS748TS AB port Gigabit Sloshable Smart Switch Switching Qos Security Monitoring Maintenance ecour LAG VLAN Voice VLAN STP Multicast Address Table Port Configuration Port Configuration Port Configuration 123456an GO TO INTERFACE s MDI moix io 1 Po 5 r w up 100m fa Crcamies Ago Lae ro w wW 100M fu Owed ato LaG2 C Ww 100m ful Disate Auto ust TC ie ve 100m Ful Osobie Auto co r w up 100m Ful Denbies Aito last r ug Up 100M ra Omabied Ato Lac C w Up 100m ma Diss ied Auto ua r w uW 100M fat Destia Aldo Lac r w up 100m fa Orcabies Ago Lact r wo wW 100M fa Casatie Ato uG D um W 100m Pua Oracles Auto Laoi r m up 100m Ful Disabied AAO cz roms Up 100m Ful Disstied Auto Laor r um Up 100m ra Disabied Ato LAG r ws up 100m ra Deste Auto Laer r wpe wW 100m fa Cwatied ao G2 r ww up 100m fu Dissdied auto Lact r mo wW 100M ru Casatie AIRO LAG r ws u 100m Ful Denbies Aito ast rte Up 100M Fal Deabled Ato uo C um Up 100m ra Disstied Auto ust Figure 4 1 Th
42. is zero when the device is not connected to the network e Root Path Cost Displays the cost of the path from this bridge to the Root Bridge The current root path cost is zero when the device is not connected to the network MSTP Status e MST ID Specifies the instance to which the VLAN is assigned e VID Displays the VLAN ID 2 Enter the Bridge Priority in the provided field 3 Select Hello Time Max Age Forward Delay or Spanning Tree Maximum Hops and enter the value in the provided field 4 Click APPLY to update the device CST Port Configuration The CSP Port Configuration screen contains parameters for assigning Common Spanning Tree CST values to interfaces To configure CST ports on the device 1 Click Switching gt STP gt Advanced gt CST Port Configuration The CST Port Configuration screen displays NETGEAR GS748TS meet with ban 1 Switch 48 port Gigablt Stackable Saor system BERTENITE Qos Security Monitoring Maintenance Help ioo CST Port Configuration Port Configuration 123456 LAGS All GO TO INTERFACE Go Status ASTUAK State o Ay Oisotied 1000 r u Disabled 1000 m Dissdiad 1000 BRT Otsatiea 1000 a 6 Owatied 1000 r n Disatied 1000 0 4 isotied 1000 r m Oisotied 1000 r 1 9 Otaties 1000 r wo Disabled 1000 C um Disabled 1000 Figure 4 23 4 35 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual
43. needs immediate attention Critical 2 The system is in a critical state Error 3 A system error has occurred Warning 4 A system warning is logged Notice 5 The system is functioning properly but a system notice is logged Informational 6 Device information is provided Debug 7 Detailed log information is provided 7 1 V1 0 June 2009 GS700TS Smart Switch Software Administration Manual This section provides information for managing logs The logs enable viewing device events in real time and recording the events for later usage Logs record and manage events and report errors and informational messages The Logs menu contains the following options Logs Configuration Log Filter Memory Log Flash Log Server Log Logs Configuration The Logs Configuration screen contains fields for enabling and disabling logs globally To enable or disable event logging 1 Click Monitoring gt Logs gt Logs Configuration The Logs Configuration screen displays NETGEAR GS748TS tocour Logs Configuration Leo Fitter Logs Configuration Logging State Figure 7 1 The Logs Configuration screen contains the following field e Logging State Select whether to enable or disable the device global logs for Cache File and Server Logs Console logs are enabled by default The possible field values are Disable Disables device logs Enable Enables devic
44. occurred in the cable the last time a cable test was performed and the type of cable error that occurred The tests use Time Domain Reflectometry TDR technology to test the quality and characteristics of a copper cable attached to a port Cables up to 120 meters long can be tested Cables are tested when the ports are in the down state with the exception of the Approximated Cable Length test To test cables 1 Click Maintenance gt Troubleshooting gt Cable Test The Cable Test screen displays 8 7 Maintenance v1 0 June 2009 GS700TS Smart Switch Software Administration Manual NETGEAR GS748TS ect wah tan k art Switch System 4B port Gigabit Stackable Sm Switching Qos Security Monitoring Maintenance iocour Reset Upload Download File Management Cable Test Cable Test PORTS All Figure 8 6 The Cable Test screen contains the following fields Interface Enter the port to which the cable is connected Test Result Displays the cable test results Possible values are No Cable Indicates a cable is not connected to the port Open Cable Indicates a cable is connected on only one side Short Cable Indicates a short has occurred in the cable OK Indicates the cable passed the test Cable Fault Distance Displays the distance from the port where the cable error occurred Last Update Displays the last time the port was tested Test Click TEST to perform the cable te
45. privacy keys are entered to define the authentication key If only authentication is required 16 bytes are defined If both privacy and authentication are required 32 bytes are defined Each byte in hexadecimal character strings is two hexadecimal digits e Privacy Key Enter the privacy key LSB If only authentication is required 20 bytes are defined If both privacy and authentication are required 36 bytes are defined Each byte in hexadecimal character strings is two hexadecimal digits Select the user entry Enter the User Name in the provided field in the first row Select the Group Name and Engine ID from the lists in the provided fields in the first row Select the Authentication method from the list in the provided field in the first row If you selected a password method of Authentication enter the Password in the provided field in the first row If you selected a key method of Authentication enter the Authentication Key and Privacy Key in the provided fields in the first row Click APPLY to update the device To add a new SNMPV3 user 1 Ge Re a Click System gt SNMP gt SNMPv3 gt Users Configuration The SNMPv3 User Configuration screen displays Enter the User Name in the provided field in the first row Select the Group Name and Engine ID from the lists in the provided fields in the first row Select the Authentication method from the list in the provided field in the first row If you selected a passwo
46. s port panel displays Select the ports to be members of the LAG Click APPLY to update the device Click CURRENT MEMBERS The Current Members window opens and displays the member ports included in the LAG 4 11 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Current Members Unit 1 91 904 907 Figure 4 7 LACP Configuration Aggregated links can be set up manually or automatically established by enabling LACP on the relevant links Aggregated ports can be linked into link aggregation port groups Each group is comprised of ports with the same speed The LACP Configuration screen contains a field for configuring a global LACP priority value To configure LACP 1 Click Switching gt LAG gt Advanced gt LACP Configuration The LACP Configuration screen displays NETGEAR tigen gta tetas kan enat xo00ur Ports VLAN STP Multicast Address Table LACP Configuration Cn Figure 4 8 Configuring Switching Settings 4 12 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual The LACP Configuration screen contains the following field e LACP System Priority Enter the system priority value The field range is 1 65535 The field default is 1 2 Enter the LACP System Priority in the provided field Click APPLY to update the device LACP Port Configuration The LACP Port Configuration screen provides information and paramet
47. the access rights of the community The possible field values are Read Only Indicates Management access is restricted to read only Changes cannot be made to the device configuration and to the community Read Write Indicates Management access is read write Changes can be made to the device configuration but not to the community SNMP Admin Indicates the user has access to all device configuration options as well as permissions to modify the community Select the community entry Enter the Management Station IP Management Station IP Mask and Community String in the provided fields in the first row 4 Select the Access Mode from the list in the provided field in the first row 3 19 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 5 Click APPLY to update the device To add a new SNMP community 1 3 4 Click System gt SNMP gt SNMPv1 v2 gt Community Configuration The Community Configuration screen displays Enter the Management Station IP Management Station IP Mask and Community String in the provided fields in the first row Select the Access Mode from the list in the provided field in the first row Click ADD to update the device To remove an SNMP community 1 Click System gt SNMP gt SNMPv1 v2 gt Community Configuration The Community Configuration screen displays Select the entry to be removed Click DEL
48. the provided field Select Disable or Enable for the Guest VLAN status in the provided field If you selected Enable for the Guest VLAN field then select the VLAN ID from the list in the provided field 6 10 Managing Security v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 6 If you selected Disable for the Port Based Authentication State select the EAPOL Handling mode in the provided field 7 Click APPLY to update the device Advanced The Port Authentication Advanced menu contains the following options e 802 1x Configuration e Port Authentication 802 1x Configuration The Advanced 802 1x Configuration screen allows network managers to configure network authentication parameters In addition the Guest VLAN option is enabled from the Advanced 802 1x configuration screen To define the 802 1x configuration 1 Click Security gt Port Authentication gt Advanced gt 802 1x configuration The Advanced 802 1x Configuration screen displays NETGEAR Duana nee System Switching Qos Security Monitoring g Maintenance Help iocour 802 1x Configuration v Advomnd 802 1x Configuration Figure 6 7 The Advanced 802 1x Configuration screen contains the following fields e Port Based Authentication State Enable port based authentication on the device The possible field values are Disable Disables port based authentication on the device This is the
49. the total amount of LLDP packets received on the port including Total Indicates the total amount of valid LLDP packets received on the port Discarded Indicates the total amount of LLDP packets that were discarded on the port Errors Indicates the total amount of LLDP packets that were errors on the port Rx TLVs Indicates the total amount of Type Length Value received on the port including 3 57 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Discarded Indicates the total number of TLVs discarded on the port Unrecognized Indicates the total number of TLV which were not recognized by the port e Rx Age outs Total Indicates the total amount of LLDP entries that were aged out on the port 2 Select a stacking member in the Unit No field The LLDP statistics for the stacking member are displayed Managing System Settings 3 58 v1 0 June 2009 Chapter 4 Configuring Switching Settings Configuring Switching Settings The navigation pane at the top of the web browser interface contains a Switching tab that enables you to manage your GS700TS Smart Switch with features under the following main headings e Ports e LAG e VLAN e Voice VLAN e STP e Multicast e Address Table The description that follows in this chapter describes configuring and managing switching settings
50. trunking In addition NETGEAR provides the SmartWizard Discovery utility with this product This program runs under Microsoft Windows XP or Windows 2000 and provides a front end that discovers the switches on your network segment When you power up your switch for the first time the SmartWizard Discovery utility enables you to configure its basic network parameters without prior knowledge of IP address or subnet mask Following such configuration this program leads you into the Web Management interface Some features of the SmartWizard Discovery utility and Web Management interface are shown in the table below Getting Started with Switch Management 1 2 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Table 1 1 Switch Management Methods Management Method Features SmartWizard Discovery utility No IP address or subnet mask setup needed Discover all switches on the network User friendly interface under Microsoft Windows Firmware upgrade capability Password change feature Provides entry to web configuration of switch Web browser interface Password protection Ideal for configuring the switch remotely Compatible with Internet Explorer and Netscape Navigator on any platform Extensive switch configuration possible Configuration backup and restore Can be accessed from any location via the switch s IP address Intuitive browser interface Most visually appealing For a mo
51. v1 0 June 2009 GS700TS Smart Switch Software Administration Manual SNTP Server Configuration The SNTP Server Configuration screen allows network administrators to define primary and secondary SNTP servers The system time is initially retrieved through the primary SNTP server If the device is unable to retrieve the system time through the primary server the device retrieves the system time from the secondary server To configure SNTP servers 1 2 3 Click System gt Management gt Time gt SNTP Server Configuration The SNTP Server Configuration screen displays NETGEAR GS748TS 40 port Gigebit Stow System Switching Qos Security Monitoring Maintenance Help tocour SNIP Server Configuration SNTP Server Configuration SNIP Server 1 pn r SNT Server 2 Bss r Figure 3 4 The SNTP Server Configuration screen contains the following fields SNTP Server 1 Enter the primary SNTP server IP address The Primary SNTP server is the first server used to retrieve the system time e Delete Removes the currently configured SNTP Server 1 e SNTP Server 2 Enter the secondary SNTP server IP address The Secondary SNTP server retrieves the system time if the Primary SNTP server becomes unavailable e Delete Removes the currently configured SNTP Server 2 Enter the SNTP Server 1 and SNTP Server 2 in the provided fields Click APPLY to update the system settings To remove SNTP servers 1
52. which the entry refers e MAC Address Displays the MAC address to which the entry refers e Interface Displays the interface to which the entry refers 2 Select the Search By key from the list in the provided field Enter the value to be searched for in the provided box 4 Click GO to execute the query Configuring Switching Settings 4 52 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual To delete all addresses from the Basic Address Table 1 Click Switching gt Address Table gt Basic gt Address Table The Basic Address Table screen displays 2 Click CLEAR ALL to delete all entries in the address table Advanced The Address Table Advanced menu contains the following options e Static Addresses e Dynamic Addresses e Address Table Static Addresses The Static Addresses screen contains a list of static MAC addresses Static Addresses are added and removed from the Static Addresses screen To prevent static MAC addresses from being deleted when the device is reset ensure the port attached to the MAC address is locked To configure the Static MAC Address table 1 Click Switching gt Address Table gt Advanced gt Static Addresses The Static Addresses screen displays NETGEAR GS748TS Connect with Innovation 48 port Gigabit Stackable Smart Switch System Switching Qos Security Monitoring Maintenance Help Ports LAG VLAN Voice VLAN STP Multicast AS S
53. with the same Unit No replaces an existing Unit No with the same Unit No the previous device configuration is applied to the inserted stack member If the new inserted device has either more than or less ports than the previous device the relevant port configuration is applied to the new stack member Managing System Settings 3 12 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Switching the Stacking Master The Secondary Master replaces the Stacking Master if one of the following events occur e The Stacking Master fails or is removed from the stack e Links from the Stacking Master to the stacking members fails e A soft switchover is performed via the web interface Switching between the Stacking Master and the Secondary Master results in a limited service loss Any dynamic tables are relearned if a failure occurs The Running Configuration file is synchronized between the Stacking Master and the Secondary Master and continues running on the Secondary Master Stack Configuration and Management The Stacking menu contains the following options e Basic e Advanced Basic The Stacking Basic menu contains the following option e Stack Configuration Stack Configuration The Basic Stack Configuration screen allows network managers to define the stacking master election mode A unique Unit Number 1 6 identifies a stack member The configuration is saved and managed by the Master un
54. x serene r w Osse Darde xo intaize CJ x 2 potent cue Dane Deane wo cence e s 2 s sortere ro ew Dase Dassie xo oteze e x 2 portent C um Dane dese woo cence 2 sortere ro w Dame Dasto xo cence x 2 x setene C un Dase Deate xo rtece 2 serene ro wu Dame Dase xo eeaice x 2 x x serene r gis Osse Desce xo reece 2 porene ro o ose Dase eo wate 2 peere E o Sasse Desse ee cease 2 peorRens r w ossze Dase ee ntaize 2 secRect C o esse Desse wec cease v x 2 x x sorer ro w Dese Desse wo ntsize 2 secert F wa Sase Desse woe cease 2 pesans r ya Dana Dase xo tase x 2 detent in cane Osade wo wom x 2 x eC ermeae Tr we Osse Dase xo soreeaae k a x ereraa C a Sasse dasse xee ceece e x sertene rws dse Dasso xo eee co settene Cover Dene case see cenee e x x s sertene r ws Dase Dasso xo reece e x settene C vs Sasse cose mwee crese x s sortere r ww Osse Sasse xo reece e x pethert Figure 6 8 The Port Authentication screen contains the following fields e Interface Displays the interfaces e User Name Displays the supplicant client user name once the user is authenticated e Port Control Select the port authorization state Auto Indicates the port control is set to Auto and a single client has been authenticated via the port Authorized Indicates the port control is Forced Authorized and clients have full port access
55. 11 The Protected Ports Membership screen contains the following fields Protected Ports Membership Table e Port Number 1 XX Displays the unprotected and protected ports on the device 2 Select the interfaces to the be defined as a Protected Port by one of the following methods a Click on the Unit s Unit s or LAG s gold bar to display the associated interfaces and then select the interfaces to bind by clicking on the boxes below the interfaces or b Click on the Unit s or LAG s quick box to select all the associated interfaces Click on the gold button The port panel displays 4 Select the ports to be defined as protected ports 5 Click APPLY to update the device ACL Access Control Lists ACL allow network managers to define classification actions and rules for specific ingress ports Packets entering an ingress port with an active ACL are either admitted or denied entry and the ingress port is disabled If they are denied entry the user can disable the port The ACL menu contains the following options e MAC ACL 6 20 Managing Security v1 0 June 2009 GS700TS Smart Switch Software Administration Manual e MAC Rules e MAC Binding Configuration e TPv4 ACL e TPv4 Rules e TPv4 Binding Configuration e TPv6 ACL e TPv6 Rules e TPv6 Binding Configuration e Binding Table MAC ACL The MAC Configuration screen allows a MAC Based A
56. 255 255 0 Gateway 192 168 0 254 System Name Password cam Cancel DHCP Refresh Discover Setting Configuration Setting Password Change Web Access Firmware Upgrade Exit You need Windows Administrator privileges to change these settings 1 On your PC access the MS Windows operating system TCP IP Properties 2 Set IP address and subnet mask appropriately The subnet mask value is identical to that set in the switch The PC IP address must be different from that of the switch but lie in the same subnet 3 Click Web Access in the SmartWizard Discovery utility to enable the management screens as described in the following section Web Access For Web access you can either e Select Web Access using the SmartWizard Discovery utility see Network with a DHCP Server or Network without a DHCP Server e Access the switch directly without using the SmartWizard Discovery utility 1 7 Getting Started with Switch Management v1 0 June 2009 GS700TS Smart Switch Software Administration Manual You must work from the same network segment that contains the switch 1 e the subnet mask values of switch and PC host must be the same and you must point your browser using the switch IP address If you used the SmartWizard Discovery utility to set up IP address and subnet mask either with or without DHCP server use that IP address in your browser window If you are starting with
57. 3 47 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual wa PF amp BS 6 Disable Disables notification on the selected port e Network Policies Click on the gold button to select the network policy numbers to apply to the selected port Select the Port from the list in the provided field Select the LLDP MED status of the selected port from the list in the provided field Select the Notification Status of the selected port from the list in the provided field Click on the Network Policies gold bar and select the network policy numbers to apply to the port Click APPLY to update the device Local Information The LLDP Local Information screen enables viewing detailed port LLDP MED information To view LLDP MED port information 1 Click System gt LLDP gt Advanced gt Local Information The LLDP MED Local Information screen displays NETGEAR EOIN sy System Switching Qos Security Monitoring Maintenance Help iocour Management Device View Stocking SNMP Local Information al Device Information Chassis ID Subtype MAC address waa tea Smart sas System Capabilities tndee 4 ee Port Information iai mac 0010105000 PORT 080 Cratied ioe MAC 00101858300 PORT088 Crsatied uot we ae Sa oat EEEE ron cua sia Me AHERE Ponta am i o mac 0010105000 PORT 080 habied i aid MAC Ob1h18483600 PCAT DsS Cerabied Figure 3 26 The LLDP MED Local Information
58. ACS authentication the user name should be configured as enab15 on the RADIUS TACACS G server To configure the Authentication List method 1 Click Security gt Management Security gt Authentication List The Authentication List screen displays NETGEAR GS748TS 48 port Gigabit Steckable Smert icour Authentication List User Configuration gt Change Password Authentication List gt RADIUS Select 1 F 7 Epos v Authentication Ust TACACS Loca RADIUS Figure 6 5 The Authentication List screen contains the following fields e 1 2 3 Select the order in which authentication is applied The possible field values are TACACS Authenticates the user at the TACACS server For more information see TACACS RADIUS Authenticates the user at the RADIUS server For more information see RADIUS Local Authenticates the user at the device level The device checks the user name and password for authentication None Assigns no authentication method to the authentication list 2 Select the Authentication List entry 6 8 Managing Security v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 3 Select the order of authentication 1 2 3 for each method from the list in the provided field in the first row 4 Click APPLY to update the device Port Authentication The Port Authentication menu contains the followin
59. AL Authentication faled f TET First Previous Next All Figure 7 3 The Memory Log screen contains the following fields e Log Index Displays the log number e Log Time Displays the time at which the log was generated e Severity Displays the log severity and urgency level The following are the available log severity levels Emergency Indicates the device is not functioning Emergency is the highest warning level If the device is down or not functioning properly an emergency log message is saved to the specified logging location Alert Indicates the device needs immediate attention Alert is the second highest warning level An alert log is saved if there is a serious device malfunction for example all device features are down Critical Indicates the device is in a critical state Critical is the third highest warning level A critical log is saved if a critical device malfunction occurs for example two device ports are not functioning while the rest of the device ports remain functional Error Displays a device error has occurred for example if a single port is offline Warning Displays the lowest level of a device warning The device is functioning but an operational problem has occurred Notice Indicates the system is functioning properly but a system notice is logged Informational Provides device information Debug Provides debugging m
60. CL to be defined To view or rename MAC Based ACLs 1 Click Security gt ACL gt MAC ACL The MAC Configuration screen displays NETGEAR GS748TS MAC ACL MAC ACL Current number of ACL 2 MAC ACL Table Setect Name Figure 6 12 The MAC Configuration screen contains the following fields MAC ACL e Current number of ACL Displays the current number of user defined ACLs MAC ACL Table Managing Security 6 21 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual e Name Enter the user defined MAC based ACL name e Number of Rules Displays the current number of rules in the ACL 2 Select the ACL entry 3 Enter the new ACL Name in the provided field in the first row 4 Click APPLY to update the device To add a new MAC based ACL entry 1 Click Security gt ACL gt MAC ACL The MAC Configuration screen displays 2 Enter the ACL Name in the provided field in the first row 3 Click ADD to update the device To remove a MAC based ACL entry 1 Click Security gt ACL gt MAC ACL The MAC Configuration screen displays 2 Select the ACL entry 3 Click DELETE to remove the entry MAC Rules The MAC Rules screen allows a MAC Rule to be defined within a configured ACL Rules can be added only if the ACL is not bound to an interface To define MAC Rules 1 Click Security gt ACL gt MAC Rules The MAC Rules screen displays NETGEAR der Ohka et eso MAC Rules MAC Rul
61. Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Properties The Voice VLAN Advanced Properties screen contains information about Voice VLAN on the device including the ports enabled and included in the Voice VLAN To define Voice VLAN settings 1 Click Switching gt Voice VLAN gt Advanced gt Properties The Voice VLAN Advanced Properties screen displays NETGEAR GS748TS rect with to 48 port Gigobh Stackable Smart Swinch System PTT me oS Security Monitoring Maintenance Help TooouT Remark CoS Disable E nable Voice VLAN Aging Time fI ow P Hour f ma Figure 4 17 The Voice VLAN Advanced Properties screen contains the following fields VoiceVLAN Status Select the Voice VLAN status on the device The possible field values are Disable Disables Voice VLAN on the device This is the default value Enable Enables Voice VLAN on the device VoiceVLAN ID Select the Voice VLAN ID number Class of Service Select the CoS tag to add to incoming packets not containing a VPT received on the Voice VLAN The possible field values are 0 7 where zero is the lowest priority and seven is the highest priority Remark CoS Enable or disable reassigning the CoS tag value to packets received on the Voice VLAN The possible field values are Disable Disables remarking the packet CoS tag value This is the default value Enable E
62. DPDU Handling from the list in the provided field 4 Ifyou selected Enable in the LLDP field enter the TLV Advertised Interval Topology Change Notification Interval Hold Multiplier Reinitializing Delay Transmit Delay and Fast Start Duration in the provided fields 5 Click APPLY to update the device Managing System Settings 3 42 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual LLDP Port Settings The LLDP Port Settings screen allows network administrators to define LLDP port settings including the port type the LLDP port state and the type of port information advertised To define LLDP Port Properties 1 Click System gt LLDP gt Advanced gt LLDP Port Settings The LLDP Port Settings screen displays NETGEAR GS748TS 40 port Gigabit Stockeble System Switching Qos Security Monitoring Maintenance Help tosour LLDP Port Settings al LLOP Port Settings GO TO INTERFACE S9 12945640 n tatus r 0 Feaatund Enaria r Enabled r tostea naties r Adondrenise Enabled r w StopAdvertse Enabled Enables r w AitoAdvortise Enebled CT w Stopadversse Enabied Enaties r u AutoAdvertion Enabled Enabled C ua StopAdvertion Frsbisd Frnklect r wmo Atoadrerise brated Enacted ott StopAdvemes Enabled Enabies r ipi AutoAdvertise Enabled Enabled C tmt3 Stopadverise Enabled Enables r w Aaigaasvense Erabied Enables tuts StopAdverise Erabied Enabled r we AtoAdrerise rated Enacted r w
63. Discover for the SmartWizard Discovery utility to find your GS700TS Gigabit Stackable Smart Switch You should see a screen similar to that shown in Figure 1 1 6 Click Configuration Setting A screen similar to that shown below appears 1 5 Getting Started with Switch Management v1 0 June 2009 GS700TS Smart Switch Software Administration Manual l Smartwizard Discovery Device List MAC Address IP Address Protocol Version Product Name System Name Location 00 0F B5 97 42 2C 192 168 0 239 2 001 002 Configuration setting Product Name GS748TS IP Address 192 168 O 2 Gateway 192 168 O 254 Location DHCP Enable Disable Device Setting Configuration Setting Password Change Figure 1 3 Select Disable to disable DHCP Web Access Gs748Ts MAC Address 00 O0F B5 97 42 2C Subnet Mask 255 255 255 0 System Name Password Cancel DHCP Refresh Discover Firmware Upgrade Exit The default IP address is 192 168 0 239 and the default subnet mask is 255 255 255 0 If you want different values enter the switch IP address gateway IP address and subnet mask 9 Type your password and click Set Please ensure that your PC and the GS700TS Gigabit Stackable Smart Switch are in the same subnet Note the settings for later use NIC Setting on the Host that Accesses the GS700TS Gigabit Stackable Smart Switch The settings of your Network Interface Card NIC under MS Wi
64. E Gigabit Ethernet ports have a range of 3500 1000000 The default value for both FE and GE ports is 3500 6 16 Managing Security v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 2 Select the interface Select Enable or Disable Broadcast Control in the provided field in the first row 4 Ifyou selected Enable Broadcast Control select the Broadcast Mode from the list in the provided field in the first row 5 If you selected Enable Broadcast Control enter the Broadcast Rate Threshold in the provided field in the first row 6 Click APPLY to update the device Port Security Network security can be increased by limiting access on a specific port only to users with specific MAC addresses The MAC addresses can be dynamically learned or statically configured Locked port security monitors both received and learned packets that are received on specific ports Access to the locked port is limited to users with specific MAC addresses These addresses are either manually defined on the port or learned on that port up to the point when it is locked When a packet is received on a locked port and the packet source MAC address is not tied to that port either it was learned on a different port or it is unknown to the system the protection mechanism is invoked It provides the following options for unauthorized packets arriving at a locked port e Forwarded e Discarded with no trap e Discarded with a trap e
65. ETE to remove the entry Trap Configuration The SNMPv1 v2 Trap Configuration screen contains information for defining filters that determine whether traps are sent to specific users and the trap type sent SNMP notification filters provide the following services Identifying Management Trap Targets Defining Trap Filtering Defining Trap Generation Parameters Providing Access Control Checks To configure SNMPv1 v2 trap station management 1 Click System gt SNMP gt SNMPv1 v2 gt Trap Configuration The SNMPv1 v2 Trap Configuration screen displays Managing System Settings 3 20 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual NETGEAR GS748TS hoble Smert Switch AB port Gigabit Stas System Switching Qos Security Monitoring Maintenance Help socour Trap Configuration Trap Configuration Figure 3 10 The SNMPv1 v2 Trap Configuration screen contains the following fields Recipients IP Enter the IP address to which the traps are sent Notification Type Configurable only if the Notification Version is SNMPv2 Select the type of notification sent The possible field values are Traps Indicates Traps are sent Informs Informs are sent only when SNMPv2 2 is enabled Community String Enter the community string of the trap manager Notification Version Select the trap type The possible field values are SNMPv1 Indicates SNMP Vers
66. Enatied Forwarding Master 0 82002 1S 12aabece 32769 r umu 178 20000 S769 Enntied Forwarding Master 0 BOGOR IS IZeakbce 32789 r Tats 2 x20000 INEA Ersted Forwarding Matie O MOOR i2eathce 37789 Figure 4 26 The MST Port Configuration screen contains the following fields Select MST Select an MST to be displayed Interface Displays the Port or LAG for which the MSTP settings are displayed Port Priority Defines the interface priority for the specified instance The field range is 0 240 The default value is 128 Port Path Cost Indicates the port contribution to the Spanning Tree instance The range should always be 1 200 000 000 The field default is 100 Port ID Indicates the port priority and interface number of the source port Port Mode Indicates MST is enabled on the interface The possible field values are Enabled Enables MST on the interface Disabled Disables MST on the interface Port Forwarding State Indicates whether the port is enabled for the specific instance The possible field values are Disabled Indicates that STP is currently disabled on the port Blocking Indicates that the port is currently blocked and cannot forward traffic or learn MAC addresses 4 41 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Listening Indicates that the port is in Listening mode The port cannot forward traff
67. Enter the user defined IP based ACL name e Number of Rules Displays the current number of rules in the ACL 2 Select the ACL entry 3 Enter the new ACL Name in the provided field in the first editable row 4 Click APPLY to update the device To add a new IP based ACL entry 1 Click Security gt ACL gt IPv6 ACL The IPv6 ACL screen displays 2 Click ADD to create a new entry or duplicate an existing entry 3 Select the ACL entry Managing Security 6 29 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 4 Enter the ACL Name in the provided field in the first editable row 5 Click APPLY to update the device To remove an IP based ACL entry 1 Click Security gt ACL gt IPv6 ACL The IPv6 ACL screen displays 2 Select the ACL entry 3 Click DELETE to remove the entry IPv6 Rules The IPv6 Rules screen allows an IPv6 Rule to be defined within a configured ACL Rules can be added only if the ACL is not bound to an interface To define IPv6 Rules 1 Click Security gt ACL gt IPv6 Rules The IPv6 Rules screen displays 48 port Gigabit Stackable Smart Switch NETGEAR 7 GS748TS System Switching Qos Security Monitoring Maintenance Help tosour IPv6 Rules IPv6 Rules ACE Name Figure 6 19 The IPv6 Rules screen contains the following fields IPv6 Rules e ACL Name Select the ACL Name from the list IPv6 Rules Table e Priority Enter the rule priority When the
68. Filter Name screen also allows network managers to filter notifications To define the SNMPv3 Trap Filter Name 1 Click System gt SNMP gt SNMPv3 gt Trap Filter Name The SNMPv3 Trap Filter Name screen displays 3 35 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual NETGEAR GS7A8TS seat ith ls bit Stockoble Smart Switch System Swite hing Qos Security Monitoring Maintenance Help Lresour Trap Filter Name Trap Filter Name Figure 3 19 The SNMPv3 Trap Filter Name screen contains the following field e Filter Name Enter the trap filter name 2 Select the trap filter entry 3 Enter the trap Filter Name in the provided field in the first row 4 Click APPLY to update the device To add a new trap filter name 1 Click System gt SNMP gt SNMPv3 gt Trap Filter Name The SNMPv3 Trap Filter Name screen displays 2 Enter the trap Filter Name in the provided field in the first row 3 Click ADD to update the device To remove a trap filter name 1 Click System gt SNMP gt SNMPvVv3 gt Trap Filter Name The SNMPv3 Trap Filter Name screen displays 2 Select the trap filter name entry Click DELETE to remove the entry Trap Filter Content The SNMPv3 Trap Filter Content screen permits filtering traps based on OIDs Each OID is linked to a device feature or a portion of a feature The SNMPv3 Trap Filter Content screen also allows network m
69. GE Port 01 02 03 04 05 06 07 OS 09 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 TTT TT eT T ll GE Port 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 A Weed et Weed ea Mead Weed a aT a Pa a aT Wad fc Pct fe Figure 2 12 3 Click again on the Unit 1 quick box and a U appears in the quick box and in all the port boxes f for Unit 1 marking the ports as untagged 2 9 Introduction to the Web Browser Interface v1 0 June 2009 GS700TS Smart Switch Software Administration Manual VLAN Membership MLAN 1D Ts Group Operation EEEE UNTAGGED PORT MEMBERS TAGGED PORT MEMBERS GE Port 01 02 03 04 05 06 07 03 09 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 u uj vt u vf f vf vf vf vf vf of of vf vf vf of vf of vf of vf of of GE Port 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 uj uf vf vf uf vf of uf vf of vf vf of of of of vf vf of of vf vf vf of Figure 2 13 4 Click again on the Unit 1 quick box and the quick box and all the port boxes for Unit 1 appear blank marking the ports as neither tagged nor untagged 5 You may click on individual port boxes to toggle their tagged untagged status Interface View and Selection A port or LAG interface may be selected from a table by using the interface selection row located above the row of column headers Clicking on the Unit No or LAGS displays the ports in the unit or the LAGs NETGEAR GS7A8TS Conn
70. GS700TS Smart Switch Software Administration Manual NETGEAR NETGEAR Inc 350 East Plumeria Drive San Jose CA 95134 USA June 2009 202 10505 01 GS700TS Smart Switch Software Administration Manual 2009 by NETGEAR Inc All Rights reserved Trademarks NETGEAR and the NETGEAR logo are registered trademarks of NETGEAR Inc in the United States and or other countries Microsoft Windows and Windows NT are registered trademarks and Vista is a trademark of Microsoft Corporation Other brand and product names are trademarks or registered trademarks of their respective holders Statement of Conditions In the interest of improving internal design operational function and or reliability NETGEAR reserves the right to make changes to the products described in this document without notice NETGEAR does not assume any liability that may occur due to the use or application of the product s or circuit layout s described herein Information is subject to change without notice Certificate of the Manufacturer Importer It is hereby certified that the GS700TS Gigabit Stackable Smart Switch has been suppressed in accordance with the conditions set out in the BMPT AmtsblVfg 243 1991 and Vfg 46 1992 The operation of some equipment for example test transmitters in accordance with the regulations may however be subject to certain restrictions Please refer to the notes in the operating instructions The Federal Office for Telecommun
71. LAGS All GO TO INTERFACE co 1 110 um 12 1 1 1 1913 tate 1916 1 141 1 tata 1 s r r r r r r r r r r r r r r e r Figure 4 15 The Port PVID Configuration screen contains the following fields e Interface Displays the interface port number or LAG number to which the PVID tag is assigned e PVID Enter the PVID value The possible field range is 1 4093 2 Select an interface Enter the PVID in the provided field in the first row Click APPLY to update the device Voice VLAN Voice VLAN allows you to enhance VoIP service by configuring ports to carry IP Voice traffic from IP phones on a specific VLAN VoIP traffic has a preconfigured OUI prefix in the source MAC address Network managers can configure VLANs on which voice IP traffic is forwarded Non VoIP traffic is dropped from the Voice VLAN in auto Voice VLAN secure mode Voice VLAN also provides QoS to VoIP ensuring that the quality of voice does not deteriorate if the IP traffic is received unevenly The system supports one Voice VLAN 4 21 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual There are two operational modes for IP Phones e IP phones are configured with VLAN mode as enabled ensuring that tagged packets are used for all communications e Ifthe IP phone s VLAN mode is disabled the phone uses untagged packets The phone uses untagged pack
72. LDP MED Network Policy 1 Click System gt LLDP gt Advanced gt LLDP MED Network Policy The LLDP MED Network Policy screen displays NETGEAR GS748TS pect wth mn 4B port Gigubit Stechoble Smeri Switch 8y Switching QoS Securit y Monitoring Maintenance Holp iocour LLDP MED Network Policy v Advanced LLOP MED Network Policy P C von x Figure 3 24 The LLDP MED Network Policy screen contains the following fields e Network Policy Number Select the network policy number The field range is 32 e Application Select the application for which the network policy is defined The possible field values are Voice Indicates the network policy is defined for a Voice application Voice Signaling Indicates the network policy is defined for a Voice Signaling application Guest Voice Indicates the network policy is defined for a Guest Voice application Guest Voice Signaling Indicates the network policy is defined for a Guest Voice Signaling application Softphone Voice Indicates the network policy is defined for a Softphone Voice application Video Conferencing Indicates the network policy is defined for a Video Conferencing application 3 45 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Se yh B p Streaming Video Indicates the network policy is defined for a Streaming Video application
73. N Membership screen displays Click the stacking unit s quick box or the LAG quick box repeatedly if necessary until a T or U appears in the quick box marking all the unit s ports or LAGs as tagged or untagged respectively Click APPLY to update the device To view VLAN tagged port members 1 Click Switching gt VLAN gt Advanced gt VLAN Membership The VLAN Membership screen displays Click TAGGED PORT MEMBERS The VLAN Tagged Ports window opens Tagged Ports Unit 1 g1 g5 LAG 2 Figure 4 13 4 19 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual To view VLAN untagged port members 1 Click Switching gt VLAN gt Advanced gt VLAN Membership The VLAN Membership screen displays 2 Click UNTAGGED PORT MEMBERS The VLAN Untagged Ports screen opens Untagged Ports Unit 1 92 93 94 96 97 98 99 910 g11 g12 913 g14 915 916 917 918 919 g20 921 922 923 924 925 926 927 928 929 930 931 932 933 934 935 936 937 938 939 940 941 942 943 944 945 946 947 948 Unit 2 91 92 93 95 96 97 98 99 910 911 912 913 g14 915 g16 917 g18 g19 g20 g21 g22 923 924 925 926 927 928 929 930 931 932 933 934 935 936 937 938 939 940 941 942 943 944 945 946 947 948 Unit 3 g1 92 93 94 95 96 97 99 910 g11 g12 913 g14 g15 g16 917 g18 g19 g20 g21 922 923 924 925 926 927 928 929 930 931 932 933 934 935 936 937 938 939 940 941 942 943 944 945 946 947 948 Uni
74. NETGEAR GS7A8TS 48 port Gigabit Stackable Smart Switch System Switching Qos Security Monitoring Maintenance Help Management Security Port Authentication Storm Control Storm Control gt Port Security Port Settings o gt Protected Ports 123456All GO TO INTERFACE ca Broadcast Mode Broadcast Rate Threshold 1191 1492 1193 1194 1195 196 Aig 1198 1499 11910 1111 1igh2 113 1114 MRG m m OT fm a OM fm a fa a faj a fa Figure 6 9 The Storm Control screen contains the following fields Interface Displays the port number for which the storm control information is displayed Broadcast Control Select whether storm control is enabled or disabled on the interface according to Broadcast mode The possible field values are Enable Enables storm control on the interface Disable Disables storm control on the interface Broadcast Mode Select the Broadcast control mode on the interface The possible field values are Multicast amp Broadcast amp Unknown Unicast Counts Broadcast Multicast and Unknown Unicast traffic together Multicast amp Broadcast Counts Broadcast and Multicast traffic together Broadcast Only Counts Broadcast traffic only This mode is enabled by default Broadcast Rate Threshold Enter the maximum rate kilobits per second at which broadcast packets are forwarded FE Fast Ethernet ports have a range of 70 100000 and G
75. NTERFACE co Interface r Nere Dassie e r g Asto nadie Net Actve ros tare Osave e moy Asto Owarie Net Active O s nece Oeste ac rs au Osse Net cove O iv are Oware Act rT 3 auto Dearie Ner actve C a None Destie r rT gts Asto Dssdie Net Actve moon here Oseve cive gi Ate Osade Net Active C m ene Oware e T gm Auto Disate Net Aene C gts ere Dearie e r ge huto Dassie Net active C Neve Dassie we r gs Aio Osae Net Actve Figure 4 18 4 25 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual The Voice VLAN Port Setting screen contains the following fields e Interface Displays the interface for which the Voice VLAN settings are applied Voice VLAN Mode Select the Voice VLAN mode The possible field values are None Maintains the current Voice VLAN port LAG settings This is the default value Auto Enables the port LAG to join the Voice VLAN if traffic with an IP Phone MAC Address is transmitted on the port LAG The port LAG is aged out of the Voice VLAN if the IP phone s MAC address with an OUI prefix is aged out and exceeds the defined aging time If the MAC Address of the IP phones OUI was added manually to a port LAG in the Voice VLAN the user cannot add it to the Voice VLAN in Auto mode only in Manual mode e Voice VLAN Security Select the port LAG security mode on the Voice VLAN Port Security ensures that packets arriving with an unrecogniz
76. Napa EES 3 39 Fale E 5 ccs cc Soteese cece tate uaet yaucuigdsaaeiavencelaam ieee maeednect Uleaae es ete ee 3 40 LLOP SEEE araia E E 3 56 Chapter 4 Configuring Switching Settings Gonkguring S wWichng SOUS oni dee raacei ars AEE nen eee asleveens 4 1 PO yacan bcs k cue casdstatne ua aa 4 1 PNT COUP casei cctacedaccanteeantetanenss iaveadataadind aeae dake nadated scueeanneednancontessumanteniecetanuens 4 1 E E estas nate la iia taste sansa Sa Sta inns ean Lida sanded A NEEE T E anda dara 4 4 Peso SUG E avec aac A A E A 4 5 P O a ya aae eR ae et ase a aa ae a a eae 4 8 SLAN erence entre tomer nero ron Tomer eer Maren tree ent n remtereee errr terror merch nner Te 4 14 BARS oiiae a 4 14 vi v1 0 June 2009 GS700TS Smart Switch Software Administration Manual PING E E EE E E E T A E E haart naaecniee sea cba E E E T 4 16 VORE VLAN ooi a a uaa al Sana i al eclundoncdanas 4 21 TENS dat cssssrearncsm ida atnatuieiacac te tedawate tesivadaew OR 4 22 PAV AINE EU rrisni EE eRN IRE 4 23 ae ane essa pa S Fes as ds head ogee cele pads eaten da eu T O A E 4 24 PO UU aia cca eh aie cade eon ened eee E a 4 25 NOM aaside a a ahapeueen ear rected iad verve laches 4 26 GIP ana R aud caneaneea eer aden 4 28 eae e A APEN PE A E EN SEAN A E A EE E A E E 4 28 pietat i S EEE A E PEE A P S A E AA T P EE E O EE T 4 31 MUCAS rra etanuemei Mic tadend pau leet aiiemintd eden eeieuieeeaemimeas 4 43 BASE eas is Saanaiasbons AAR eds daly iad ain naan mld pa on
77. OOS sister coor cac crs renee en ees eecncntetas aeaweonn nese ieee eee i 6 26 Pya Binding Connotea sated scenic pean omnes aieiaa a n REESS 6 28 E E E A A T A E E A NNT 6 29 a E a E ee heen ceeded P A E A E e eee 6 30 PvE Binding Contou alom sioria TENG 6 32 T O aaa S E decdecascaley eat acard sana 6 33 Chapter 7 Monitoring the Switch Salma Montong ATION sirsiran a RORE 7 1 Eos E E E S A I N S 7 1 Ene Aee e U e a E E T E N EE A E AT 7 2 EOG FIO oana decedadewerasauucmteesjalomen ice niecleee 7 3 Pomoy DO ie ecaiaech da kee Suances vn pasesetda Saker pe ORE aan ee 7 4 eS Un Ee ene merry A ence T E E tr eter ccna corer ry cere cern 7 6 DIV EP LOO sicdascccnencedciceaiceici aa aE aE A a E aAA EEEN 7 7 PURITY ian A A N A eR 7 9 SE A E E A A E A E eee A reer tr 7 9 AVANCO G si setrectvenitectesesteetacnisdse a 7 11 POEET IO Sacto sete sronaivts cai anuntv asia Ghety oss hratiyteess aaluntyecis Ghadet tation es naseneeniaa eatin 7 23 saa dee lilt Mernerer repre neerrreer rer terr teers merecennrare ree tier reer renter nee tere ner rrr ne renee 7 23 Chapter 8 Maintenance Using the Mantenange OOUONS sciccicccasedescted ccetckecadaues Scentanirndies aia EA aA EENS 8 1 E E E S T E E S E E E E 8 1 Dorce FODOR 8 1 Fa On DORU aa tree rent rte rrr tre renter rrr tree re rte rrr thre Trey 8 2 Bele e EET E E E A A E aide ete comet Sat ue teen ciate amt T 8 3 UNOSI siirat onoi EO 8 3 viii v1 0 June 2009 GS700TS Smart Switch Software Administratio
78. P gt Advanced gt Neighbors Information The LLDP Neighbors Information screen displays 2 Click the MSAP Entry to view its detailed information The Neighbors Information window opens Neighbors Information Port Details Local Port MSAP Entry Basic Details Chassis 1D SubType mac Chassis 1D Port 10 subtype Port 10 System Desenption Syst rn Capabilities Managed Address Operational MAU Type Fourpair Category 5 UTP full duplex mode 802 3 Power via MDI MDI Power Support Port tlass PSE MDI Power Support PSE MDI Power State DSE Power Pair Control Ability PSE Power Pair PSE Power Clase Figure 3 28 Managing System Settings v1 0 June 2009 3 52 GS700TS Smart Switch Software Administration Manual The Neighbors Information window contains the following fields Port Details e Local Port Displays the port number e MSAP Entry Displays the device s Media Service Access Point MSAP entry number Basic Details e Chassis ID SubType Displays the chassis ID subtype For example MAC address e Chassis ID Displays the chassis identification of the device transmitting the LLDP frame e Port ID SubType Displays the port ID subtype For example IPv4 address e Port ID Displays the port identification of the port transmitting the LLDP frame e Port Description Displays information about the port including manufacturer product name and hardware software version
79. P Port number in the provided field in the first row Select the Facility assigned to the server from the list in the provided field in the first row Monitoring the Switch 7 8 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 6 Enter an optional server Description in the provided field in the first row Select the Minimum Severity level message sent to the server from the list in the provided field in the first row 8 Click APPLY to update the device To add a remote log server Click Monitoring gt Logs gt Server Log The Server Log screen displays Enter the Server IP address in the provided field in the first row Enter the UDP Port number in the provided field in the first row Select the Facility assigned to the server from the list in the provided field in the first row Enter an optional server Description in the provided field in the first row Aw fF SY NY Select the Minimum Severity level message sent to the server from the list in the provided field in the first row 7 Click ADD to update the device To remove a remote log server 1 Click Monitoring gt Logs gt Server Log The Server Log screen displays 2 Select the log server entry 3 Click DELETE to remove the log server entry RMON This section contains information for viewing Remote Monitoring Statistics RMON Statistics allow network managers to view network traffic information from a single workstation The
80. RMON menu contains the following options e Basic e Advanced Basic The RMON Basic menu contains the following options e Statistics 7 9 Monitoring the Switch v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Statistics The RMON Basic Statistics screen contains fields for viewing information about device utilization and errors that occurred on the device To view RMON Basic Statistics 1 Click Monitoring gt RMON gt Basic gt Statistics The RMON Basic Statistics screen displays NETGEAR GS748TS AB pert Gigabit Stockeble Smart Switch System Switching Qos Security Maintenance Help Losour Statistics asic Poe RMON Summary Statistics gt Ade ad sais 1 LAGS all Interface Drop Received Received Broadcast Multicast CRC and vents Bytes Packets Packets Packets Alignment Received Received Errors Figure 7 6 The RMON Basic Statistics screen contains the following fields Interface Displays the port or LAG for which statistics are displayed Drop Events Displays the number of dropped events that have occurred on the interface since the device was last refreshed Received Bytes Displays the number of octets received on the interface since the device was last refreshed This number includes bad packets and FCS octets but excludes framing bits Received Packets Displays the number of packets received on the interf
81. RSTP information To define RSTP on the device 1 Click Switching gt STP gt Advanced gt RSTP The Rapid STP screen displays System Switching Qos Security Monitoring Maintenance Help iosour Rapid STP Rapid STP 123456 LAGS All GO TO INTERFACE co A sw RSTP sw RSTe kid STP Cheated Crrebied Ant RSP sm RST sw 1mo RTP 1 sie 112 RST ninia inin fn 797977 Figure 4 24 The Rapid STP screen contains the following fields e Interface Displays the port or LAG on which Rapid STP is enabled or disabled e Role Displays the port role assigned by the STP algorithm to provide to STP paths The possible field values are Root Provides the lowest cost path to forward packets to the root switch 4 37 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Designated Indicates the port or LAG through which the designated switch is attached to the LAN Alternate Provides an alternate path to the root switch from the root interface Backup Provides a backup path to the designated port path toward the Spanning Tree leaves Backup ports occur only when two ports are connected in a loop by a point to point link or when a LAN has two or more connections connected to a shared segment Disabled Indicates the port is not participating in the Spanning Tree e Mode Displays the current STP mode The STP mode is se
82. S System 48 port Gigabit Stackable Smart Switch Switching Qos Security Monitoring Maintenance Help Ports LAG VLAN Voice VLAN STP Multicast Dynamic Addresses pe v Advanced Dynamic Addresses resses Address Aging 300 sec resses Figure 4 34 The Dynamic Addresses screen contains the following field Configuring Switching Settings 4 54 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual e Address Aging Enter the amount of time the MAC address remains in the Dynamic MAC Address table before it is timed out if no traffic from the source is detected The range is 10 630 seconds The default value is 300 seconds 2 Enter the Address Aging in the provided field in the first row 3 Click APPLY to update the device Address Table The Advanced Address Table screen displays the MAC Address table according to the defined categories To query the Advanced MAC Address Table 1 Click Switching gt Address Table gt Advanced gt Address Table The Advanced Address Table screen displays NETGEAR GS748TS 48 port Gigabit Stackable Smart Switch System Switching Qos Security Monitoring Maintenance Help Address Table v Basic v Advanced Address Table gt Static Addresses Dynamic Addresses Search ey VLANID 2 w Address Table MAC Address Table First Previous Next all VLANI 11 tf aa 2233 cc 1493 VLAN fhibtithtttt Aig VLAN3 tt tfaaaaaaaa
83. S Smart Switch Software Administration Manual Location Information Civic Displays the device s civic or street address location For example 123 45th St E The field value length range is 6 160 characters Coordinates Displays the device s location map coordinates latitude longitude and altitude ECS ELIN Displays the device s Emergency Call Service ECS Emergency Location Identification Number ELIN The field range is 10 25 Unknown Displays unknown location information Network Policies Application Type Displays the network policy application type For example Voice VLAN ID Displays the VLAN ID for which the network policy is defined VLAN Type Displays the VLAN type for which the network policy is defined The possible field values are Tagged Indicates the network policy is defined for tagged VLANs Untagged Indicates the network policy is defined for untagged VLANs User Priority Displays the network policy user priority DSCP Displays the network policy DSCP LLDP Unknown TLVs Type Displays the unknown TLV type field Value Displays the unknown TLV value field 3 Click the Network Policies gold bar to display the network policies applied to the MSAP entry 4 Click the LLDP Unknown TLVs gold bar to display the MSAP entry s unknown TLVs LLDP Statistics The LLDP Statistics screen contains LLDP statistics including when table entries we
84. S748TS i Ab pert Gigabit Stackoble Smet Switch CoS Global Configuration CoS Global Cont Figure 5 1 The CoS Global Configuration screen contains the following e QoS Status Select whether QoS is enabled or disabled on the device The possible values are Enable Enables QoS globally This is the default value Disable Disables QoS globally e QoS Mode Select whether basic or advanced mode is enabled on the device The possible values are Basic Indicates that basic QoS mode is enabled on the device Basic CoS mode allows the user to classify frames into broad classes by the ingress interface or by the value of a single frame header field Each class can be directed to a desired egress queue and the user can also configure the queue servicing parameters Advanced Indicates that advanced QoS mode is enabled on the device In Advanced mode the user has access and must explicitly configure all aspects of all CoS QoS facilities in use Traffic may be classified into broad classes or fine grained flows Selecting the Advanced option disables the Trust Mode field 5 3 Configuring QoS v1 0 June 2009 GS700TS Smart Switch Software Administration Manual e Trust Mode Select which packet fields to use for classifying packets entering the device The possible Trust Mode field values are CoS Classifies traffic based on the CoS VPT tag value DSCP Classifies traffic bas
85. STP Configuration screen contains the following fields Global Settings e Spanning Tree State Select the STP state on the device The possible field values are Disable Disables STP on the device Enable Enables STP on the device This is the default value e STP Operation Mode Specifies the STP mode enabled on the device The possible field values are STP Enables Classic STP on the device RSTP Enables Rapid STP on the device This is the default value MSTP Enables Multiple STP on the device e Configuration Name Enter the user defined configuration name The maximum length is 32 characters e Configuration Revision Level Defines an unsigned 16 bit number that identifies the revision of the current STP configuration The revision number is required as part of the STP configuration The possible field range is 0 65535 e BPDU Handling Determines how the Bridge Protocol Data Unit BPDU packets are managed when STP is disabled on the port or device BPDUs are used to transmit spanning tree information The possible field values are 4 29 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual e Filtering Filters BPDU packets when Spanning Tree is disabled on an interface or globally on the device Filtering is used when a bridge interconnects two regions and there is a need to have a separate spanning tree for each region Filterin
86. Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual To add a new trap filter content entry 1 Click System gt SNMP gt SNMPv3 gt Trap Filter Content The SNMPv3 Trap Filter Content screen displays 2 Select the Filter Name from the list in the provided field 3 Enter the Object ID Subtree in the provided field in the first row 4 Select the Filter Type from the list in the provided field in the first row 5 Click ADD to update the device To remove a trap filter content entry 1 Click System gt SNMP gt SNMPv3 gt Trap Filter Content The SNMPv3 Trap Filter Content screen displays 2 Select the Filter Name from the list in the provided field Select the trap filter content entry Click DELETE to remove the entry LLDP The Link Layer Discovery Protocol LLDP allows network managers to troubleshoot and enhance network management by discovering and maintaining network topologies over multi vendor environments LLDP discovers network neighbors by standardizing methods for network devices to advertise themselves to other system and to store discovered information Device discovery information includes e Device Identification e Device Capabilities e Device Configuration The advertising device transmits multiple advertisement message sets in a single LAN packet The multiple advertisement sets are sent in the packet Type Length Value TLV field LLDP devices must support chassi
87. Shuts down the port Locked port security also enables storing a list of MAC addresses in the configuration file The MAC address list can be restored after the device has been reset To define port security 1 Click Security gt Traffic Control gt Port Security The Port Security screen displays Managing Security 6 17 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual GS7A8TS 48 port Gigabit Stackable Smart Switch System Switching Qos Security Monitoring Maintenance Help Management Security Port Authentication Port Security gt Storm Control Port Security Port Security gt Protected Ports 123456 LAGS all GO TO INTERFACE SO earnin Max Trap a er Enies rronsaniy EE a Lock im dre Classic Lock O 1 Classic Lock Boye Classic Lock O tgs Classic Lock TF 1 Classic Lock D ag Classic Lock O 1498 Classic Lock T g Classic Lock r 190 Classic Lock D agm Classic Lock O 1912 Classic Lock D 13 Classic Lock Do g Classic Lock m lanar aoa The Port Security screen contains the following fields Interface Displays the port or LAG name Status Select the port security status The possible field values are Locked Indicates the port is currently locked Unlocked Indicates the port is currently unlocked This is the default value Learning Mode Select the locked port type The possible field values are Classic Lock Locks the port and only forwards pa
88. Start Upgrade to begin loading the upgrade The system software is automatically loaded to all stacking members The Upgrade State field shows upgrading in progress When the process is complete the switch automatically reboots Exit Click Exit from the SmartWizard Discovery screen to close the SmartWizard Discovery utility Getting Started with Switch Management 1 10 v1 0 June 2009 Chapter 2 Introduction to the Web Browser Interface This section introduces the web browser interface that enables you to configure and manage your NETGEAR GS700TS Gigabit Stackable Smart Switch Your GS700TS Smart Switch provides a built in browser interface that enables you to configure and manage it remotely using a standard Web browser such as Microsoft Internet Explorer or Netscape Navigator Online Help is also provided for many of the basic functions and features of the switch This section introduces the areas of the browser interface and includes the following topics e Logging Into the NETGEAR Home Screen e Using the NETGEAR Web Management System Options Logging Into the NETGEAR Home Screen Begin your overview of the GS700TS Smart Switch browser interface by logging in 1 Start the application by one of the following methods as described in Chapter 1 Getting Started with Switch Management a In the SmartWizard Discovery utility click Web Access or b Inthe web browser enter the switch s IP address and press Enter
89. TS Smart Switch Software Administration Manual Removing and Replacing Stacking Members Stacking member 1 and stacking member 2 are Stacking Master enabled units Unit Numbers 1 and 2 are designated as either Master Unit or Secondary Master Unit The Stacking Master assignment is performed during the configuration process One Master enabled stack member is elected Master and the other Master enabled stack member is elected Secondary Master according to the following decision process e Ifonly one Stacking Master enabled unit is present this is the stacking Master e Iftwo Stacking Master enabled stacking members are present and one has been manually configured as the Stacking Master this is the Stacking Master e Iftwo Master enabled units are present and neither has been manually configured as the Stacking Master the one with the longer up time is elected Stacking Master e If the two Master enabled stacking members are the same age Unit 1 is elected Stacking Master Two stacking members are considered the same age if they joined the stack within the same ten minute interval For example Stack member 2 is inserted in the first minute of a ten minute cycle and Stack member 1 is inserted in the fifth minute of the same cycle the units are considered the same age If there are two Master enabled units that are the same age thus Unit 1 is elected master The Stacking Master and the Secondary Master maintain a Warm Standby The Warm
90. The device can be booted but it cannot be managed through the Stacking Master The network manager can either reset the device defaults or correct the topology failure and then reconnect the unit to the stack Configuration files are changed only through explicit user configuration Configuration files are not automatically modified when e Units are added e Units are removed e Units are reassigned Unit Numbers e Units toggle between Stacking Mode and Standalone Mode Each time the system reboots the Startup Configuration file in the Master unit is used to configure the stack If a stack member is removed from the stack and then replaced with a unit with the same Unit No the stack member is configured with the original device configuration Only ports that are physically present are displayed in the GS700TS web screens and can be configured through the web management system By default Unit Numbers are assigned automatically However you can use the browser to assign a specific Unit No for example the same Unit No as the unit which was recently removed Inserting a Stacking Member When a stacking member is inserted into a running stack it is automatically assigned a unit number Note that a unit should not be powered up until it has been connected to the stack If the user has already configured a Unit No for the new unit a Unit No is not assigned automatically by the system Exchanging Stacking Members If a stack member
91. Traffic Control ACL RADIUS v User eer gt Change Pa RADIUS 0 eA Aan gt TACACS Li Login Primary gt Authentication List Figure 6 2 The RADIUS screen contains the following fields Host IP Address Enter the RADIUS Server IP address Authentication Port Enter the authentication port number The authentication port is used to verify the RADIUS Server authentication The field default is 1812 Number of Retries Enter the number of transmitted requests sent to the RADIUS Server before a failure occurs Possible field values are 1 10 The default value is 3 Timeout for Reply Enter the amount of time in seconds the device waits for an answer from the RADIUS Server before retrying the query or switching to the next server Possible field values are 1 30 The default value is 3 Dead Time Enter the default amount of time in minutes that a RADIUS Server is bypassed for service requests The range is 0 200 The default value is 0 Key String Enter the default key string used for authenticating and encrypting all RADIUS communications between the device and the RADIUS Server This key must match the RADIUS encryption Usage Type Select the RADIUS Server usage type The default value is Login The possible field values are Login Indicates the RADIUS Server is used for authenticating user names and passwords 802 1x Indicates the RADIUS Server is used for 802 1x authenticati
92. a xX Conventions Formats and SCOPE esnssssrssssisiidi a xi Howo Uce THS Manuali norisiarsnsina atlas Rea xii Howto Prim this Mantal a oisiriisrianai ea aaeh xiii ROSO PO aa ecanuusincgee miata Uuiades reek eo maateaguads xiii Chapter 1 Getting Started with Switch Management Saa MO CUIUMIT MOTUS paaano E AEA 1 1 Swich Management IMerngeg arsenido ae aer e aaea 1 2 Network witha DHOP SGI sasserseinossisnnanoie tusiina ekaan aN ONE an EE S AASER EESE 1 3 Network without a DHCP Servel asicssiaieccsatnsadsciaga ial acuenecoiaisiecsacadegslateldsn bam E A 1 5 Manually Assigning Network Parameters cccccescccceesesecceceeesseeceeeeeseneeeeeeetsneees 1 5 NIC Setting on the Host that Accesses the GS700TS Gigabit Stackable Smart SS Me car E E E E A E T E E E E T 1 6 WE EE Sam A A A E E E E A A T 1 7 Pee ial UNNOS casen A A 1 8 PASE WOR GRANDE daa NEA 1 9 aa aes a e aaa sen A EE E O T A E E T E 1 9 E E E E E E N P E E E E E eee 1 10 Chapter 2 Introduction to the Web Browser Interface Logging Into the NETGEAR Home Screen aisticsssciepsccccsscetasttnendaecesiedeednanecesbeedaeneiees 2 1 TOENE NOn NIO arin cterrrrn tectr tery neernt ey cerrret nr ner te Trent Te 2 2 Using the NETGEAR Web Management System Options ccccceeeeeeeeeeeeteeeteneeees 2 3 Device Management BUTONS sk wstesiisinssantire meds eae riya e ee 2 3 inonnatona Bd ta darn ssa tduasanisui sands waar beO AE EAEE ESE 2 4 Using Sergen and Table pHi cases snccssncts csv
93. able Smart Switch E Figure 5 6 CANCEL The DSCP To Queue Mapping screen contains the following fields DSCP to Queue Mapping e DSCP In Displays the incoming packet s DSCP value The following DSCP In values are predefined 3 11 19 27 35 43 51 59 APPLY v1 0 June 2009 Configuring QoS GS700TS Smart Switch Software Administration Manual e Queue Select the traffic forwarding queue to which the DSCP is mapped Four traffic priority queues are supported Lowest Low Normal and High The High Queue is reserved for special traffic and is not recommended for use Restore Default Mapping e Restore Defaults Restore the DSCP Mapping device factory default values The possible field values are Checked Restores the factory default settings for DSCP mapping values Unchecked Maintains the current DSCP mapping settings 2 Select the Queue values for each DSCP In value in the provided fields Check or uncheck the Restore Defaults box in the provided field Click APPLY to update the device Creating Class Mapping One IP ACL and or one MAC ACL comprise a class map Class maps are configured to match packet criteria and are matched to packets on a first fit basis For example Class Map A is assigned packets based only on an IP based ACL or a MAC based ACL Class Map B is assigned to packets based on both an IP based and a MAC based ACL To define class maps 1 Click QoS gt CoS
94. access to packets originating from the blocked IP address Shutdown Drops packets that meet the ACL criteria and disable the port to which the packet was addressed Select the ACL Name from the list in the provided field Select the rule entry Enter the provided fields in the first row Click APPLY to update the device To add an IPv6 rule 1 2 3 4 5 6 Click Security gt ACL gt IPv6 Rules The IPv6 Rules screen displays Select the ACL Name from the list in the provided field Click ADD to create a new entry or duplicate an existing entry Select the added entry Enter the provided fields in the first row Click APPLY to update the device To delete an IP rule Managing Security 6 31 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 1 Click Security gt ACL gt IPv6 Rules The IPv6 Rules screen displays 2 Select the ACL Name from the list in the provided field 3 Select the rule entry 4 Click DELETE to remove the entry IPv6 Binding Configuration The IPv6 Binding Configuration screen contains information for mapping ACLs to IPv6 interfaces When an ACL is bound to an interface all the ACE rules that have been defined are applied to the selected interface Whenever an ACL is assigned on a port LAG or VLAN flows from that ingress interface that do not match the ACL are matched to the default rule which is Drop unmatched packets To bind interfaces to an ACL
95. ace including bad packets Multicast and Broadcast packets since the device was last refreshed Broadcast Packets Received Displays the number of good broadcast packets received on the interface since the device was last refreshed This number does not include Multicast packets Monitoring the Switch v1 0 June 2009 7 10 GS700TS Smart Switch Software Administration Manual e Multicast Packets Received Displays the number of good Multicast packets received on the interface since the device was last refreshed e CRC amp Alignment Errors Displays the number of CRC and Align errors that have occurred on the interface since the device was last refreshed 2 Click REFRESH or CLEAR ALL COUNTERS to refresh or reset the RMON Basic Statistics screen Advanced The RMON Advanced menu contains the following options Statistics History Control History Table Events Control Events Log Alarms Statistics The RMON Advanced Statistics screen contains fields for viewing information about device utilization and errors that occurred on the device To view RMON Advanced Statistics 1 Click Monitoring gt RMON gt Advanced gt Statistics The RMON Advanced Statistics screen displays Monitoring the Switch v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 4B por Gigabit Stockable Smor Swi NETGEAR GS748TS Switching Qos curi itori a
96. ach is assigned a priority After exchanging BPDUs the device with the lowest priority value becomes the Root Bridge The default value is 32768 The bridge priority value is provided in increments of 4096 e Hello Time Enter the device Hello Time The Hello Time indicates the amount of time in seconds a Root Bridge waits between configuration messages The default is 2 seconds e Max Age Enter the device Maximum Age Time The Maximum Age Time is the amount of time in seconds a bridge waits before sending configuration messages The default Maximum Age Time is 20 seconds e Forward Delay Enter the device Forward Delay Time The Forward Delay Time is the amount of time in seconds a bridge remains in a listening and learning state before forwarding packets The default is 15 seconds e Spanning Tree Maximum Hops Specifies the total number of hops that occur in a specific region before the BPDU is discarded Once the BPDU is discarded the port information is aged out The possible field range is 1 40 The field default is 20 hops Designated Root e Root Bridge ID Displays the priority and MAC Address of the root bridge Configuring Switching Settings 4 34 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual e Root Port Displays the port number that offers the lowest cost path from this bridge to the Root Bridge This field is significant when the bridge is not the Root Bridge The current root port
97. anagers to define the SNMP Engine ID or to assign the default Engine ID to SNMP To define the Local Engine ID 1 Click System gt SNMP gt SNMPv3 gt Engine ID The SNMPv3 Engine ID screen displays Managing System Settings 3 22 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual NETGEAR GS748TS k s 40 porr Gigebir Srockoble Smart Switch Engine ID Engine 1D Local Engine 10 Sissi Use betat Figure 3 11 The SNMPv3 Engine ID screen contains the following fields Local Engine ID 10 64 Hex Characters Enter the local device Engine ID The field value is a hexadecimal string Each byte in hexadecimal character strings is two hexadecimal digits The Engine ID must be defined before SNMPv3 is enabled e Use Default Check the box to use the device generated Engine ID The default Engine ID is based on the device MAC address and is defined per standard as First 4 octets Indicates first bit 1 the other 3 represent the IANA Enterprise number Fifth octet Set to 3 to indicates the MAC address that follows Last 6 octets Represents the MAC address of the device 2 Specify the Local Engine ID field or check Use Default to use the device generated Engine ID Checking Use Default will override any entry in the Local Engine ID field 3 Click APPLY to update the device View Name The SNMPv3 View Name screen allows network managers to define SNMPv3 Vie
98. anagers to filter notifications Managing System Settings 3 36 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual To define SNMPv3 Trap Filter settings 1 aA a PF amp NM Click System gt SNMP gt SNMPv3 gt Trap Filter Content The SNMPv3 Trap Filter Content screen displays NETGEAR GS748TS neci w pobit Stecheble Swert Switch System Switching Qos Security Monitoring Maintonance Help osou Trap Filter Content Trap Filter Settings Filter namo Fiel Trap Filter Settings Figure 3 20 The SNMPv3 Trap Filter Content screen contains the following fields Trap Filter Settings e Filter Name Select the user defined notification filter from the list Trap Filter Settings e Object ID Subtree Enter the OID for which notifications are sent or blocked If a filter is attached to an OID traps or informs are generated and sent to the trap recipients e Filter Type Select whether to send traps or informs relating to the selected OID The possible field values are Excluded Do not send traps or informs Included Send traps or informs Select the Filter Name from the list in the provided field Select the trap filter content entry from the OID table Enter the Object ID Subtree in the provided field in the first row Select the Filter Type from the list in the provided field in the first row Click APPLY to update the device 3 37 Managing System
99. ard Discovery utility 7 Select your switch by highlighting the name of the switch Then click Web Access The discovery utility displays a login window similar to the following Help Figure 1 2 8 Use your web browser to manage your switch The default password is password Then use this screen to proceed to management of the switch covered in Chapter 2 Introduction to the Web Browser Interface Getting Started with Switch Management 1 4 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Network without a DHCP Server This section describes how to set up your switch in a network without a DHCP server and is divided into the following tasks e Manually assign network parameters for your switch e Configure the NIC settings on the host PC e Log in to the web based switch management utility Manually Assigning Network Parameters If your network has no DHCP service you must assign a static IP address to your switch You can also assign the switch a static IP address even if your network has DHCP service Proceed as follows 1 Connect the GS700TS Gigabit Stackable Smart Switch to your existing network 2 Power on the switch by plugging in the AC DC power adapter The default IP is 192 168 0 239 3 Install the SmartWizard Discovery utility on your computer The SmartWizard Discovery utility is located on the switch installation CD 4 Start the SmartWizard Discovery utility Click
100. atistics select Port or LAG as the type of Interface and select the interface from the list in the provided field The RMON Interface Statistics for the selected interface are displayed 3 To view RMON Summary Statistics select the interface and click GO To refresh or clear the RMON Advanced Statistics screen 1 Open the RMON Advanced Statistics screen 2 Click REFRESH or CLEAR ALL COUNTERS to clear or reset the RMON Advanced Statistics screen History Control The RMON History Control screen contains information about samples of data taken from ports For example the samples may include interface definitions or polling periods To configure RMON history information 1 Click Monitoring gt RMON gt Advanced gt History Control The RMON History Control screen displays Monitoring the Switch 7 14 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 4 NETGEAR GS748TS so00uT Figure 7 8 The RMON History Control screen contains the following fields e History Entry No Displays the entry number for the History Control Table screen e Source Interface Enter the interface from which the history samples were taken e Sampling Interval Enter in seconds the time that samples are taken from the ports The field range is 1 3600 The default is 1800 seconds equal to 30 minutes e Samples Requested Enter the number of samples to be saved The field range is 1 65535 The default val
101. atures For example a view can be defined to provide a view that SNMP group A has Read Only R O access to Multicast groups while SNMP group B has Read Write R W access to Multicast groups Feature access is granted via the MIB name or MIB Object ID To define the SNMP View Content 1 Click System gt SNMP gt SNMPv3 gt View Content The SNMPv3 View Content screen displays NETGEAR GS7A8TS nocd with lon Smart Switch 48 port Gigabit Stockeble Smart system s 3 Qos Securi ty Monitoring Maintenance Help oco View Content v SNMPv1 v2 v Siva views View Name ual Object ID Subtree Figure 3 13 The SNMPv3 View Content screen contains the following fields Views View Name Select the user defined view name The view name can contain a maximum of 30 alphanumeric characters Object ID Subtree Enter the device feature OID View Type Select whether the defined OID branch will be included in or excluded from the selected SNMP view The possible field values are Included Indicates the OID is included in the SNMP view Excluded Indicates the OID is excluded from the SNMP view 2 Select the View Name from the list in the provided field in the Views table 3 Enter the Object ID Subtree in the provided field in the first row 3 25 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 4 5 Select either Included or Exclude
102. ault value is 10 seconds Configuring Switching Settings 4 46 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 2 Select the IGMP Snooping Status and Bridge Multicast Filtering Status in the provided fields 3 Click APPLY to update the device To configure IGMP Snooping on a VLAN 1 Click Switching gt Multicast gt Advanced gt IGMP Snooping Configuration The Advanced IGMP Snooping Configuration screen displays Select the VLAN ID entry in the Interface Settings table 2 3 Select the Status and Auto Learn status from the lists in the provided fields in the first row 4 Enter the Host MRouter and Leave Timeouts in the provided fields in the first row 5 Click APPLY to update the device Multicast Group Configuration The Multicast Group Configuration screen contains fields for creating deleting and modifying Multicast service groups The Multicast Group Configuration table contains up to 32 Multicast service groups To configure Multicast groups 1 Click Switching gt Multicast gt Advanced gt Multicast Group Configuration The Multicast Group Configuration screen displays NETGEAR GS748TS 48 port Gigabit Stackable Smart Switch System Switching Qos Security Monitoring Maintenance Help Ports LAG VLAN Voice VLAN STP Multicast Group Configuration v Advanced Multicast Group configuration STOMP Snooping VLAN ID YLAN Name Multicast Address Configuration oni
103. cast Advanced menu contains the following options e IGMP Snooping Configuration e Multicast Group Configuration e Multicast Group Membership e Multicast Forward All IGMP Snooping Configuration To configure Advanced IGMP Snooping 1 Click Switching gt Multicast gt Advanced gt IGMP Snooping Configuration The Advanced IGMP Snooping Configuration screen displays NETGEAR GS7A8TS Connect with Innovation 48 port Gigabit Stackable Smart Switch System Switching Qos Security Monitoring Maintenance Help Ports LAG VLAN Voice VLAN STP Address Table s IGMP Snooping Configuration v Basic v Advanced IGMP Snooping Configuration gt IGMP Snooping Configuration Status Disable C Enable Bridge Multicast Filtering Status C Disable Enable Interface Settings Noster neo i Disabled Enabled Figure 4 28 4 45 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual The Advanced IGMP Snooping Configuration screen contains the following fields IGMP Snooping Configuration Status Select the IGMP Snooping status on the device IGMP Snooping is operational if both the Status and Bridge Multicast Filtering fields are enabled The possible field values are Disable Disables IGMP Snooping on the device This is the default value Enable Enables IGMP Snooping on the device Bridge Multicast Filtering Status Select the b
104. ck ADD to update the device To remove a class mapping entry 11 Click QoS gt CoS gt Advanced gt Class Mapping The Class Mapping screen displays 12 Select the Class Map Name from the list in the provided field 13 Click DELETE to remove the entry Policy Table Mapping A policy is a collection of classes each of which is a combination of a class map and a QoS action to apply to matching traffic Classes are applied in a first fit manner within a policy Before configuring policies for classes whose match criteria are defined in a class map a class map must first be defined or the name of the policy map to be created added to or modified must first be specified Class policies can be configured in a policy map only if the classes have defined match criteria 5 11 Configuring QoS v1 0 June 2009 GS700TS Smart Switch Software Administration Manual An aggregate policer can be applied to multiple classes in the same policy map but an aggregate policer cannot be used across different policy maps Define an aggregate policer if the policer is shared with multiple classes policers in one port cannot be shared with other policers in another device Traffic from two different ports can be aggregated for policing purposes To define policies 1 Click QoS gt CoS gt Advanced gt Policy Table screen The Policy Table screen displays gt GS748TS NETGEAR 8 port Gigebit Steshable Smart Switch System Switching Se
105. ckets that have been learned statically or dynamically prior to locking the port The lock is effective immediately Limited Dynamic Lock Indicates the port is unlocked Locks the port after a user defined number of MAC addresses have been dynamically learned on the port After the port is locked packets are forwarded only from MAC addresses that have been learned prior to locking the port Max Entries Enter the maximum number of MAC addresses that can be learned on the port The Max Entries field is enabled only if the Limited Dynamic Lock mode is selected The range is 1 128 entries The default value is 1 Action Select the action to be applied to packets arriving on a locked port The possible field values are 6 18 Managing Security v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Forward Forwards packets from an unknown source without learning the MAC address Discard Discards packets from any unlearned source This is the default value Shutdown Discards packets from any unlearned source and shut down the port The port remains shut down until reactivated or until the device is reset e Trap Select whether traps are enabled or disabled when a packet from an unknown source is received on a locked port The possible field values are Enable Enables traps Disable Disables traps This is the default value e Trap Frequency Enter the f
106. cription e Status Select the current link operation The possible field values are Up Indicates the LAG is currently linked and forwarding traffic Down Indicates the LAG is currently not linked e Reactivate Suspended Select the action to apply to a suspended LAG The possible field values are 4 5 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Enable Reactivates the suspended LAG Disable Does not reactivate the suspended LAG e Type Displays the LAG type The possible field values are Static Indicates the LAG is configured manually LACP Indicates the LAG is configured automatically e Speed Select the data transmission rate for the LAG The LAG type determines what speed setting options are available The possible field values are 10M Indicates the LAG is currently operating at 10 Mbps 100M Indicates the LAG is currently operating at 100 Mbps 1000M Indicates the LAG is currently operating at 1000 Mbps e Duplex Mode Displays the duplex mode of the LAG The possible field values are Full Indicates the interface supports transmission between the device and its link partner in both directions simultaneously None Indicates Duplex mode is not enabled on the LAG e Auto Negotiation Select the auto negotiation status of the LAG Auto Negotiation is a protocol between two link par
107. critical time sensitive traffic over less time sensitive applications For example under SP Voice over IP VoIP traffic can be prioritized so that it is forwarded before FTP or email SMTP traffic 5 1 V1 0 June 2009 GS700TS Smart Switch Software Administration Manual e Weighted Round Robin Ensures that a single application does not dominate the device forwarding capacity Weighted Round Robin WRR forwards entire queues in a round robin order All queues can participate in WRR except SP queues If the traffic flow is minimal and SP queues do not occupy the whole bandwidth allocated to a port the WRR queues can share the bandwidth with the SP queues This ensures that the remaining bandwidth is distributed according to the weight ratio If WRR is selected the following weights are assigned to the queues 1 2 4 8 The CoS menu contains the following options e Basic e Advanced Basic The CoS Basic menu contains the following options e CoS Global Configuration e CoS Interface Configuration e Queue e Bandwidth CoS Global Configuration The CoS Global Configuration screen contains information for enabling QoS globally To configure CoS global parameters 1 Click QoS gt CoS gt Basic gt CoS Global Configuration The CoS Global Configuration screen displays Configuring QoS 5 2 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual NETGEAR G
108. curity Monitoring Maintenanc ce Help socour Policy Table Policy Table Select Policy Name Figure 5 8 The Policy Table screen contains the following fields e Policy Name Define the user defined policy name e Class Map Select a class map for the class e Action Define the action assigned to incoming packets exceeding the CIR Type Set the packets DSCP Queue or CoS tag Value Set the packets DSCP Queue or CoS tag value 2 Select a Class Map from the list in the first row 3 Select an Action and define a new value in the first row 4 Click APPLY to update the device To add a new policy entry 5 Click QoS gt CoS gt Advanced gt Policy Table The policy Table screen displays 6 Select a Class Map from the list in the first row Configuring QoS 5 12 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 7 Select an Action and define a new value in the first row 8 Click ADD to update the device To remove a class mapping entry 9 Click QoS gt CoS gt Advanced gt Policy Table screen The Policy Table screen displays 10 Select the Policy Name from the list in the provided field 11 Click DELETE to remove the entry Policy Binding The Policy Binding screen contains information for attaching policies on interfaces 1 Click QoS gt CoS gt Advanced gt Policy Binding screen The Policy Binding screen displays NETGEAR GS7A48TS nec wth be 40
109. d fault tolerance provision For example while port A is blocked in one STP instance the same port can be placed in the Forwarding state in another STP instance To define MSTP 1 Click Switching gt STP gt Advanced gt MST Configuration The MST Configuration screen displays 4 39 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual NETGEAR GS7A8TS Connect with Innovation 48 port Gigabit Stackable Smart Switch System Switching Qos Security Monitoring Maintenance Help Ports LAG VLAN Voice VLAN Multicast Address Table MST Configuration Advanced MST Configuration 2a Configuration gt RSTP m 2 MST Configuration MST Port Configuration Figure 4 25 The MST Configuration screen contains the following fields MST ID Specifies the instance to which the VLAN is assigned Priority Specifies the selected spanning tree instance device priority The field range is 0 61440 The field default is 32768 VLAN ID Maps the selected VLANs to the selected instance Each VLAN belongs to one instance Bridge Identifer Indicates the bridge ID of the selected instance Designated Root Indicates the priority and MAC address of the bridge with the lowest path cost to the instance ID Root Path Cost Indicates the selected instance s path cost Root Port Indicates the selected instance s root port Select the MST ID and
110. d field in the first row Select the User Priority from the list in the provided field in the first row Select the DSCP Value from the list in the provided field in the first row Click ADD to update the device Managing System Settings 3 46 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual To remove a network policy entry 1 Click System gt LLDP gt Advanced gt LLDP MED Network Policy The LLDP MED Network Policy screen displays 2 Select the Network Policy entry Click DELETE to remove the entry LLDP MED Port Settings The LLDP MED Port Settings screen contains parameters for assigning LLDP MED network policies to specific ports To configure LLDP MED port settings 1 Click System gt LLDP gt Advanced gt LLDP MED Port Settings The LLDP MED Port Settings screen displays NETGEAR GS748TS 48 port Gigabit Stackable Smart Switch LLDP MED Port Settings LLDP MED Port Settings Figure 3 25 The LLDP MED Port Settings screen contains the following fields e Port Select the port to configure e LLDP MED status Select the LLDP MED status for the selected port The possible field values are Enable Enables LLDP MED on the selected port Disable Disables LLDP MED on the selected port e Notification Select the notification status for the selected port The possible field values are Enable Enables notification on the selected port
111. d from the View Type provided field in the first row Click APPLY to update the device To add a new SNMP OID entry 1 2 3 4 5 Click System gt SNMP gt SNMPv3 gt View Content The SNMPv3 View Content screen displays Select the View Name from the list in the provided field in the Views table Enter the Object ID Subtree in the provided field in the first row Select either Included or Excluded from the View Type provided field in the first row Click ADD to update the device To remove an SNMP OID entry 1 4 Click System gt SNMP gt SNMPv3 gt View Content The SNMPv3 View Content screen displays Select the View Name from the list in the provided field in the Views table Select the OID entry to be removed Click DELETE to remove the entry Community Configuration Access rights are managed by defining communities in the Community Configuration screen When community names are changed access rights are also changed To define SNMPv3 communities 1 Click System gt SNMP gt SNMPv3 gt Community Configuration The SNMPv3 Community Configuration screen displays Managing System Settings 3 26 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 2 3 4 5 4B port Gigabit Stocksble Smart Switch NETGEAR GS748TS Eee Switching QoS Security Monitoring Maintenance Help icour Community Configuration V3 Host Configuration Table n ta ai me tion I Commun
112. d used for port authentication The possible field values are RADIUS None Indicates port authentication is first attempted through the RADIUS server If the RADIUS server is inaccessible or not defined then no authentication method None is used and the session is permitted RADIUS Indicates port authentication is through the RADIUS server None Indicates no authentication method is used to authenticate the port Guest VLAN Select whether the Guest VLAN is enabled or disabled on the device The default VLAN cannot be defined as a Guest VLAN The possible field values are Disable Disables the Guest VLAN on the device This is the default value Enable Enables using a Guest VLAN for unauthorized ports If a Guest VLAN is enabled the unauthorized port automatically joins the VLAN selected in the VLAN List field Guest VLAN ID Select the guest VLAN ID from the list of currently defined VLANs EAPOL Handling Select the method of handling EAPOL Extensible Authentication Protocol Over LAN packets when 802 1x authentication is disabled The possible field values are Filtering Indicates EAPOL packets are filtered Flooding Indicates EAPOL packets are flooded to all ports Select Disable or Enable for the Port Based Authentication State in the provided field If you selected Enable for the Port Based Authentication State then select the Authentication Method from the list in
113. d with approved antennas only Any product changes or modifications will invalidate all applicable regulatory certifications and approvals FCC Guidelines for Human Exposure This equipment complies with FCC radiation exposure limits set forth for an uncontrolled environment This equipment should be installed and operated with a minimum distance of 20 cm between the radiator and your body This transmitter must not be co located or operating in conjunction with any other antenna or transmitter FCC Declaration Of Conformity We NETGEAR Inc 4500 Great America Parkway Santa Clara CA 95054 declare under our sole responsibility that the model GS700TS Gigabit Stackable Smart Switch complies with Part 15 of FCC Rules Operation is subject to the following two conditions a This device may not cause harmful interference and b This device must accept any interference received including interference that may cause undesired operation Product and Publication Details Model Number GS700TS Publication Date June 2009 Product Family Smart Switch Product Name GS700TS Gigabit Stackable Smart Switch Home or Business Product Business Language English Publication Part Number 202 10505 01 Publication Version Number 1 0 v1 0 June 2009 Contents About This Manual Who Srould Use this BOOR is iscsi un Siac diddy i ai aiaa x PTO Use NRE BOOK ccscccedencatiatanuciecaa sates dsentaueeadasuencintedacantenenciarmnamaciae tonnes nan Ei
114. default value Enable Enables port based authentication on the device Managing Security 6 11 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 7 e Authentication Method Enter the authentication method used for port authentication The possible field values are RADIUS None Indicates port authentication is first attempted through the RADIUS server If the RADIUS server is inaccessible or not defined then no authentication method None is used and the session is permitted RADIUS Indicates port authentication is through the RADIUS server None Indicates no authentication method is used to authenticate the port e Guest VLAN Enter whether the Guest VLAN is enabled on the device The possible field values are Disable Disables Guest VLAN on the device This is the default value Enable Enables using a Guest VLAN for unauthorized ports If a Guest VLAN is enabled the unauthorized port automatically joins the VLAN selected in the VLAN List field e Guest VLAN ID Select the guest VLAN ID from the list of currently defined VLANs e EAPOL Handling Select the method of handling EAPOL Extensible Authentication Protocol Over LAN packets when 802 1x authentication is disabled The possible field values are Filtering Indicates EAPOL packets are filtered Flooding Indicates EAPOL packets are flooded to all ports Select Disable or Enable
115. des network topology for any arrangement of bridges STP also provides a single path between end stations on a network eliminating loops Loops occur when alternate routes exist between hosts Loops in an extended network can cause bridges to forward traffic indefinitely resulting in increased traffic and reducing network efficiency The STP menu contains the following options e Basic e Advanced Basic The STP Basic menu contains the following options e STP Configuration STP Configuration The Basic STP Configuration screen contains parameters for configuring STP on the device To configure STP on the device 1 Click Switching gt STP gt Basic gt STP Configuration The Basic STP Configuration screen displays Configuring Switching Settings 4 28 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual NETGEAR GS748TS AB port Gigabit Stackable Smort System Switching Qos Security Monitoring Maintenance Help wooour Ports LAG VLAN Voice VLAN STP Configuration RTD Configuration Global Settings o Advanced Spanniny Tree State C Disable Enable STP Operation Mode Csr Gaso Cmsre Configuration Name aaa Configuration Revision Level J BPDU nanding z Status Bridge Identifier Tine Since Topology Change Designated Root Root Port Mau Age See 20 Forward Delay Se as Mallo Tine ee EST Regional Root 00 00 00 1b 2f b4 04 49 Figure 4 20 The Basic
116. dress Table screen displays the MAC Address table according to the defined categories 4 51 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual To query the Basic Address Table 1 Click Switching gt Address Table gt Basic gt Address Table The Basic Address Table screen displays NETGEAR GS7A8TS 48 port Gigabit Stackable Smart Switch System Switching Qos Security Monitoring Maintenance Help LOGOUT Ports LAG VLAN Voice VLAN STP Multicast Address Table v Basic Address Table Address Table gt Advance d Shi search By VANDI so MAC Address Table First Previous Next All VLANI 11 ff aa 22 33 cc 1103 VLAN2 tt tt tt tt tt ff Aig VLANS tt tt aa aa aa aa 1g VLAN4 44 11 11 11 11 11 1192 VLANS tt tt tt 22 tt cc Aig VLAN tt ta tt t6 tf 8t 1198 VLANIO ta tf ac a6 aa fa 1495 VLAN 14 17 01 dd 11 cc 1494 First Previous Next All Figure 4 32 The Basic Address Table screen contains the following fields e Search By Display the MAC Address list according to selected category and query field The possible field values are VLAN ID Display the MAC Address table entries that relate to the specific VLAN ID MAC Address Display the MAC Address table entries that relate to MAC Address Interface Display the MAC Address table entries that relate to the specific interface e VLAN ID Displays the VLAN ID number to
117. duce the amount of time it takes for network changes additions and moves to be implemented VLANs have no minimum number of ports and can be created per unit per device or through any other logical connection combination since they are software based and not defined by physical attributes VLANs function at Layer 2 Since VLANs isolate traffic within the LAN a Layer 3 router working at a protocol level is required to allow traffic flow between VLANs Layer 3 routers identify segments and coordinate with VLANs VLANs are Broadcast and Multicast domains Broadcast and Multicast traffic is transmitted only in the VLAN in which the traffic is generated VLAN tagging provides a method of transferring VLAN information between VLAN groups VLAN tagging attaches a 4 byte tag to packet headers The VLAN tag indicates to which VLAN the packets belong VLAN tags are attached to the VLAN by either the end station or the network device VLAN tags also contain VLAN network priority information The VLAN menu contains the following options e Basic e Advanced Basic The VLAN Basic menu contains the following options e VLAN Configuration VLAN Configuration The Basic VLAN Configuration screen provides information and parameters for configuring and working with VLANs The maximum number of active VLANs is 128 Configuring Switching Settings 4 14 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual To d
118. e Management access is read write Changes are made to the assigned SNMP view Notify Sends traps for the assigned SNMP view Select the SNMP group entry Select the Security Model and Security Level from the lists in the provided fields in the first row Specify the group access rights for the selected SNMP views in the Operation provided fields in the first row Click APPLY to update the device To add a new SNMPVv3 group 1 4 Click System gt SNMP gt SNMPv3 gt Group Configuration The SNMPv3 Groups screen displays Select the Security Model and Security Level from the lists in the provided fields in the first row Specify the group access rights for the selected SNMP views in the Operation provided fields in the first row Click ADD to update the device To remove an SNMPv3 group 1 Click System gt SNMP gt SNMPv3 gt Group Configuration The SNMPv3 Groups screen displays 3 29 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 2 Select the group entry 3 Click DELETE to remove the entry User Configuration The SNMPv3 User Configuration screen provides information for creating users assigning the user a group an Engine Id and Authentication attributes To define SNMP users 1 Click System gt SNMP gt SNMPv3 gt User Configuration The SNMPv3 User Configuration screen displays NETGEAR GS748TS Arati t Switc
119. e Help gt User Guide The User Guide screen displays NETGEAR System User Guide Support v Usar Cuida User Guide Please chich APPLY below to view the User Guide Figure 9 2 2 Click APPLY to open a window and display the User Guide in PDF format GS748TS Stechoble Smor Switch s000u1 Online Help v1 0 June 2009 9 2 Chapter A Default Settings This appendix provides default settings for the NETGEAR Model GS700TS Smart Switch You can always configure the switch to default settings by using the Factory Reset function from a Web browser Table A 1 Default Settings Feature GS700TS Default Setting Port Speed Auto negotiation Port Duplex Auto negotiation Flow Control half duplex Disabled Flow Control full duplex Disabled IP Configuration DHCP enabled Password password VLAN 802 1q based VLAN Link Aggregation Trunk Disabled Traffic Prioritization QoS Optimized for flow control all ports set normal priority A 1 V7 0 June 2009 A ACE 24 28 32 ACL 20 binding 24 28 32 Bandwidth Settings 6 Boot File Download 5 C changing the password 9 configuration monitoring 1 network parameters 5 Qos 1 security 1 switch 1 system settings 1 Configuration Download 5 Configuration Upload 4 CoS 4 CPU 43 D defaults IP address 8 subnet mask 8 DHCP 4 DHCP server 3 DSCP 1 Dynamic MAC Address Table 51 Index F Fir
120. e Port Configuration screen contains the following fields Port Displays the port number Port Description Enter a user defined port description Status Select the port s operational status The possible field values are Up Indicates the port is operational Down Indicates the port is not operational Suspended Indicates the port is suspended either through the locked port security option or through the Access Control List configurations Reactivate Suspended Select the reactivation status for a port disabled through the locked port security option The possible field values are Enable Enables reactivation Disable Disables reactivation Port Speed Select the data transmission rate for the port The port type determines which speed setting options are available Port speeds can only be configured when auto negotiation is disabled The possible field values are Configuring Switching Settings 4 2 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 10M Indicates the port is currently operating at 10 Mbps 100M Indicates the port is currently operating at 100 Mbps 1000M Indicates the port is currently operating at 1000 Mbps Duplex Mode Select the port duplex mode This field is configurable only when auto negotiation is disabled and the port speed is set to 10M or 100M The possible field values are Half Indicates the inte
121. e device Device Management Buttons The NETGEAR GS700TS Smart Switch web browser GUI management buttons allow network managers to easily configure the device from remote locations The management buttons are shown below Table 2 1 Device Management Buttons Button Name Description ADD Adds information to tables or information windows APPLY Applies configured changes to the device CANCEL Cancels modifications to tables or information windows 2 3 Introduction to the Web Browser Interface v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Table 2 1 Device Management Buttons Button Name Description CLEAR ALL Refreshes device information CLEAR ALL COUNTERS Resets statistics counters CLEAR LOGS Clears logs CURRENT MEMBERS Displays current members of a LAG DELETE Deletes information from tables or information windows GO Selects the specified interface REFRESH Refreshes the screen with current data TAGGED PORT MEMBERS Displays tagged port members of a VLAN TEST Tests copper cables UNTAGGED PORT MEMBERS Displays untagged port members of a VLAN Informational Services Informational services provide access to technical support online help and device information and are displayed in the following topics e Help Navigation Tab e Accessing Device Information Help Navigation Tab The Help Navigation Tab provides
122. e is 0 65535 The field default is 60 seconds e Resending EAP Enter the amount of time in seconds that lapses before EAP requests are resent The field default is 30 seconds e Max EAP Requests Enter the total amount of EAP requests sent If a response is not received after the defined period the authentication process is restarted The field default is 2 retries e Supplicant Timeout Enter the amount of time in seconds that lapses before EAP requests are resent to the supplicant The field default is 30 seconds e Server Timeout Enter the amount of time in seconds that lapses before the device re sends a request to the authentication server The field default is 30 seconds e Termination Cause Displays the reason port authentication was terminated The possible field values are Supplicant logoff Port failure Supplicant restart Reauthentication failed Force unauthorized Port reinitialize Port admin disabled and Undefined 2 Select the interface 6 14 Managing Security v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 3 Select the Port Control state Guest VLAN mode and Periodic Reauthentication status in the provided fields in the first row 4 If you selected Enable as the Periodic Reauthentication status enter the Reauthentication Period in the provided field in the first row 5 Enter the Quiet Period Resending EAP time Max EAP Requests Supplicant Timeout and Server
123. e logs This is the default value Select either Enable or Disable as the Logging State in the provided field Click APPLY to update the device Monitoring the Switch 7 2 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Log Filter The Log Filter screen contains fields for defining which events are recorded to which logs Log messages are listed from the highest severity to the lowest severity level To configure log filters 1 Click Monitoring gt Logs gt Log Filter The Log Filter screen displays NETGEAR System Log Configuration v Lag Filter GS748TS lochoble Smert Switch AB port Gigabit Stor Switching o ecuri i jaintenance tocou Log Filter Log Filter leet RAM Logs Log File Figure 7 2 The Log Filter screen contains the following fields e RAM Logs Select the minimum message severity level to appear in the RAM Log The following are the available message severity levels Emergency Indicates the system is not functioning Emergency is the highest warning level If the system is down or not functioning properly an emergency log message is saved to the specified logging location Alert Indicates the system needs immediate attention Alert is the second highest warning level An alert log is saved if there is a serious device malfunction for example all device features are down Critical Indicates the system is in a critical state Critical is the
124. e top left of any page in the manual The PDF version of the complete manual opens in a browser window e Click the print icon in the upper left of your browser window Y Tip If your printer supports printing two pages on a single sheet of paper you can save paper and printer ink by selecting this feature Revision History Part Number Version Date Description Number 202 10505 01 1 0 June 2009 Product updated About This Manual xiii v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Chapter 1 Getting Started with Switch Management This section provides an overview of switch management including the methods you can choose to start managing your NETGEAR GS700TS Gigabit Stackable Smart Switch It also leads you through the steps necessary to get started using the SmartWizard Discovery utility The section includes this information under the following menu options e System Requirements e Switch Management Interface e Network with a DHCP Server e Network without a DHCP Server e Web Access e Additional Utilities System Requirements The following hardware and software facilities are required to run the applications described in this manual e Network facilities Ethernet network with or without DHCP server as appropriate Ethernet cable to connect the switch to a PC e For running the SmartWizard Discov
125. e with the instructions may cause harmful interference to radio communications However there is no guarantee that interference will not occur in a particular installation If this equipment does cause harmful interference to radio or television reception which can be v1 0 June 2009 GS700TS Smart Switch Software Administration Manual determined by turning the equipment off and on the user is encouraged to try to correct the interference by one or more of the following measures e Reorient or relocate the receiving antenna e Increase the separation between the equipment and receiver e Connect the equipment into an outlet on a circuit different from that which the receiver is connected e Consult the dealer or an experienced radio TV technician for help EU Statement of Compliance The NETGEAR GS700TS Gigabit Stackable Smart Switch is compliant with the following EU Council Directives 89 336 EEC and LVD 73 23 EEC Compliance is verified by testing to the following standards EN55022 Class A EN55024 and EN60950 1 A Warning This is a Class A product In a domestic environment this product may cause radio interference in which case the user may be required to take appropriate measures Canadian Department of Communications Radio Interference Regulations This digital apparatus NETGEAR GS700TS Smart Switch does not exceed the Class A limits for radio noise emissions from digital apparatus as set out in t
126. ecemcewnedsecayiacuecteedt aa 2 5 V1 0 June 2009 GS700TS Smart Switch Software Administration Manual Chapter 3 Managing System Settings Using the System Settings UIII ssscnscoicsscssteseadeeetialecees Ransdaudessdedetaseontiuarerasinseaniiapnlegaeis 3 1 E EE E E A E E E E I EA ETA 3 1 SOTA ES LOM MAn aa aa a Oaa 3 1 P OEA raitinn ae decided E S Na Eai 3 4 WAS EEEN TEI PAE AEE E A E A tee ens 3 5 P L E E E E N E R 3 8 O e aa E a E Eaa 3 8 Operation ModS rcuz a A tO uiuieventaalulyan iments 3 9 Lngerstanding Stack TOPA Ogy a 2s case ss nasaroace niiina iiae 3 9 SIRI FONE ia RE A ann 3 10 Stacking Members and Unit ING sicasisaisursueacapinsaasetagpinsesehtananiass aaia 3 10 Removing and Replacing Stacking Members ssssssssseessssssssssssrnssrnnesrnnersnssrressnne 3 11 isening a Skekng Member airesin a a 3 12 Exchanging Stacking Member acccicsscccisisieccnesconrcacncnsiadancts ine 3 12 Switching he Stacking Mastet sc csccisccdsccsssnnniesecscerstssceencetdieconmcasegsanianseteraunredacuaene 3 13 Stack Configuration and Management sssissisisiwi sisaan aiina 3 13 ADVE 25 saci ices Veicasceaa E ceeidacmteaesesiauiega samira 3 17 SNMP Oe ee ene ee reper ey Pee re eT Frere en ere ee eney Teeter hip rrre err errr re errr ier rere 3 18 ol tL Le ROR ee Reenter noon eT Serena cce rT cont rN monte fr E A mene T errr rt oe 3 22 MIP caiscnacuet iccetenpeedianentede Lacnantepiane tenpeacignainde E EEE AES 3 38 ICS hv snsaudes nyo A A O A AAE OEA
127. ect with Innovation 48 port Gigabit Stackable Smart Switch System Switching Qos Security Monitoring Maintenance Help Ports LAG Voice VLAN STP Multicast Address Table Port PVID Configuration v Basic v Advanced Port P ID Configuration gt VLAN Configuration VLAN Membership 123456 LAGS All GOTOINTERFACE _ aeo O tigt 1 m 1 D 1s 1 D tga 1 O 1 1 D 196 1 D 1a 1 F168 1 PF 199 1 TF 1m0 4 D 1m 1 M 1912 fl DO 1g13 4 Figure 2 14 To display all ports in a stacking unit 1 Click the unit number in the interface selection row The screen displays a table of all ports in the selected stacking unit Introduction to the Web Browser Interface 2 10 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual To display all interfaces in all stacking units 1 Click All in the interface selection row A confirmation window opens YD This operation may take some time would you like to proceed Lx J cn Figure 2 15 2 Click OK The screen displays a table of all interfaces in all stacking units To display the LAG table 1 Click LAGS in the interface selection row The screen displays a table of all LAGs NETGEAR GS748TS sea vi alkaa ble Smart Switch 48 port Gigab Stackabl system Gunes QoS Security Monitoring Maintenance Heip cour oice VLAN STP Multicast Address Table Port PVID Configuration Port PVID Configuration 123456 LAGS AN GO TO
128. ecurity Monitoring Maintenance Help Ports LAG VLAN Voice VLAN STP IGMP Snooping Configuration v Basic gt IGMP Snooping IGMP Snooping Configuration onfiguration gt Advances d IGMP Snooping Status Disable Enable Interface Settings Oo 1 Disabled Figure 4 27 The Basic IGMP Snooping Configuration screen contains the following fields IGMP Snooping Configuration IGMP Snooping Status Select the IGMP Snooping status on the device The possible field values are Disable Disables IGMP Snooping on the device This is the default value Enable Enables IGMP Snooping on the device Interface Settings e VLAN ID Displays the VLAN ID e Status Select the IGMP Snooping status on the VLAN The possible field values are Enable Enables IGMP Snooping on the VLAN Disable Disables IGMP Snooping on the VLAN 2 Select the IGMP Snooping Status in the provided field 3 Click APPLY to update the device To configure IGMP Snooping on a VLAN 1 Click Switching gt Multicast gt Basic gt IGMP Snooping Configuration The Basic IGMP Snooping Configuration screen displays Configuring Switching Settings 4 44 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 2 Select the VLAN ID entry in the Interface Settings table 3 Select the Status from the list in the provided field in the first row 4 Click APPLY to update the device Advanced The Multi
129. ed The possible field values are Permit Permits access to the device Deny Denies access to packets originating from the blocked IP address Shutdown Drops packets that meet the ACL criteria and disable the port to which the packet was addressed Select the ACL Name from the list in the provided field Select the rule entry Enter the provided fields in the first row Click APPLY to update the device To add an IPv4 rule 1 2 3 4 5 6 Click Security gt ACL gt IPv4 Rules The IPv4 Rules screen displays Select the ACL Name from the list in the provided field Click ADD to create a new entry or duplicate an existing entry Select the added entry Enter the provided fields in the first row Click APPLY to update the device To delete an IPv4 rule 1 2 3 4 Click Security gt ACL gt IPv4 Rules The IPv4 Rules screen displays Select the ACL Name from the list in the provided field Select the rule entry Click DELETE to remove the entry Managing Security 6 27 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual IPv4 Binding Configuration The IPv4 Binding Configuration screen contains information for mapping ACLs to IPv4 interfaces When an ACL is bound to an interface all the ACE rules that have been defined are applied to the selected interface Whenever an ACL is assigned on a port LAG or VLAN flows from that ingress interface that do not ma
130. ed OUI are dropped Enable Enables port LAG security on the Voice VLAN Disable Disables port LAG security on the Voice VLAN This is the default value e Membership Displays the Voice VLAN member status The possible field values are Active Indicates the Voice VLAN membership is active for the interface Not Active Indicates the Voice VLAN membership is not active for the interface 2 Select the interface 3 Select the Voice VLAN Mode Voice VLAN Security and Membership in the provided fields in the first row 4 Click APPLY to update the device OUI The OUI screen lists the Organizationally Unique Identifiers OUIs associated with the Voice VLAN The first three bytes of the MAC Address contain a manufacturer identifier while the last three bytes contain a unique station ID Using the OUI you can add specific manufacturer s MAC addresses to the OUI table Once the OUIs are added all traffic received on the Voice VLAN ports from the specific IP phone with a listed OUI is forwarded on the Voice VLAN To define OUIs 1 Click Switching gt Voice VLAN gt Advanced gt OUI The Voice VLAN OUI screen displays Configuring Switching Settings 4 26 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual NETGEAR GS748TS pect w AB port Gigebil Steckeble Swert Switch Maintenance Holp iocour Figure 4 19 The Voice VLAN OUI screen contains the following fields
131. ed on the DSCP tag value 2 Select Enable or Disable in the QoS Status field Select the QoS Mode and Trust Mode in the provided fields 4 Click APPLY to update the device CoS Interface Configuration The CoS Interface Configuration screen contains information for configuring the default CoS value on a selected interface After CoS has been configured the device s original CoS default settings can be reassigned to the interface in the CoS Interface Configuration screen To configure CoS interface parameters 1 Click QoS gt CoS gt Basic gt CoS Interface Configuration The CoS Interface Configuration screen displays NETGEAR GS748TS AB port Gigeblt Brackeble Smart Switch jm faln 757 77 7B Ss aS k c 7 z k r z 5 E Figure 5 2 Configuring QoS 5 4 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 2 3 4 5 The CoS Interface Configuration screen contains the following fields e Interface Displays the interface for which the default CoS parameters are defined e Default CoS Select the default CoS value for incoming packets to the selected interface for which a VLAN priority VPT is not defined e Restore Defaults Restore the factory CoS default settings to the selected interface The possible field values are Checked Restores the factory CoS default settings to the ports Unchecked Maintains the current CoS settings Select the interface S
132. ed to access the information over the network Access strings control access rights to the SNMP agents SNMP v3 applies access control and a new traps mechanism In addition User Security Model USM parameters are defined for SNMPv3 including e Authentication Provides data integrity and data origin authentication 3 17 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual e Privacy Protects against the disclosure of message content Cipher Block Chaining CBC is used for encryption Either authentication is enabled on an SNMP message or both authentication and privacy However privacy cannot be enabled without authentication e Timeliness Protects against message delay or message redundancy The SNMP agent compares the incoming message to the message time information Enter the amount of time the device waits before re sending informs e Key Management Enter key generation key updates and key usage The device supports SNMP notification filters based on Object IDs OIDs OIDs are used by the system to manage device features SNMP v3 supports the following features e Security e Feature Access Control e Traps The device generates copy traps The SNMP menu contains the following options SNMPv1 v2 SNMPv3 SNMPv1 v2 The SNMPv1 v2 menu contains the following options e Community Configuration e Trap Configuration Community Confi
133. ed to the stack without interruption and the Ring topology is restored Stacking Ports The mode type determines the Gigabit Ethernet ports that are configurable by the user e In Standalone mode all Gigabit Ethernet ports are available e In Stack mode two dedicated Gigabit Ethernet ports are used for stack connection The factory default of the device is stack mode Use the System Information screen to change the unit mode from Standalone to Stack mode The ports used for stacking can be either the combo ports or the copper ports By default the copper ports are reserved for stacking The Stack Management screen allows network managers to configure the combo ports as the stacking ports Two full duplex stacking link up down ports are available via HDMI connectors and provide 10 Gps throughput stacking capacity Stacking Members and Unit No Stacking Unit Numbers are essential to the stacking configuration Unit No 1 and Unit No 2 are reserved for Master enabled units Unit Numbers 3 to 6 can be defined for stack members When the Master unit boots or when inserting or removing a stack member the Master unit initiates a stacking discovering process If two members are discovered with the same Unit No the stack continues to function However only the unit with the older join time joins the stack A message is sent to the user notifying that a unit failed to join the stack Managing System Settings 3 10 v1 0 June 2009 GS700
134. eeR 4 43 MANNY cece ace at aics cataact ata ts snatch estes mime eh iar edu aanie died nehetsa Manubex Gude sani mucee tenia tin 4 45 POCO SG TAD iiai 4 51 BASE ces oni nates speaks aE eae ene 4 51 PONSA O oain R A a ONR 4 53 Chapter 5 Configuring QoS Configuring the Basic and Advanced QoS Settings 00 0 eeeescesseeeseeeseeeseeeeeneeeeeeeaaes 5 1 GOS okna ia Sv as gph aan a E 5 1 5 5 a ae ee ee eee ey eee ORR ee Conner eet er ere Te nee T nee re one corre Te merrier ts 5 2 PIPING CU E E AE E A A A A E E E AA E E A E 5 7 Chapter 6 Managing Security Setting Security Configuration OPNS sesser a aatdent head 6 1 Mendocinon IIR aasia aA EESE onus cedeucause 6 1 User Contiouraliaii cicna a 6 1 RADIUS unnan a a A E Babe ee dees 6 2 TAOCA SE ara ceiercade ac neeeetat essences ene ease 6 6 PIIIOMIIGAINGNULISY eioi i E A 6 8 Pe PINS MEGAN aa aE E A r E 6 9 BaS oiean E nr rer rent ort rr 6 9 PAINS paseo ceca eset N 6 11 ee Gin lies Meer eeennete ceeereree reeeeteree me rrtne trnenn reer Uemantmr eran che tetertmemen nme career mr eerraet 6 15 PPE GORING corsa a Ea EE 6 15 vii v1 0 June 2009 GS700TS Smart Switch Software Administration Manual POUL CEN ares E E A A E E cease ntact T 6 17 PD FONS ainireti a A 6 19 i E E E E A E E E E E Re E 6 20 WA PGE iora N EE E 6 21 PAC RUES siinon oaa a aR aE DEE EE 6 22 MAC Binding Configuratio seeks cose se hs caiedaeends daaa tahini iedsaae 6 24 DPE Pe scrseet atna ets cata ahaa eee ANEA 6 25 Pye P
135. efine VLAN properties 1 Click Switching gt VLAN gt Basic gt VLAN Configuration The Basic VLAN Configuration screen displays NETGEAR GS748TS System Sita oS Security Monitoring Maintenance Holp iooour Sim VLAN Configuration gt VLAN Configuration gt Advanced VLAN Configuration Figure 4 10 The Basic VLAN Configuration screen contains the following fields e VLAN ID Enter the VLAN ID The field range is 2 4093 e VLAN Name Enter the user defined VLAN name e Type Displays the VLAN type The possible field values are Static Indicates the VLAN is user defined Default Indicates the default VLAN ID is 1 It cannot be modified by the user Select the VLAN entry Enter the VLAN ID and VLAN Name in the provided fields in the first row Click APPLY to update the device To add anew VLAN 1 Click Switching gt VLAN gt Basic gt VLAN Configuration The Basic VLAN Configuration screen displays Enter the VLAN ID and VLAN Name in the provided fields in the first row Click ADD to update the device 4 15 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual To remove a VLAN Note Prior to deleting a VLAN ensure all multicast group configuration entries associated with the VLAN are deleted Refer to Multicast Group Configuration for deleting multicast group entries 1 Click Switching gt VLAN gt Basic gt
136. eld values are Firmware Downloads the Firmware file Boot File Downloads the Boot file Configuration Downloads the Configuration file via TFTP Select to download the file from the TFTP Server via HTTP Select to download the file via the web browser interface HTTP and enter the file name in the provided box TFTP Server IP Enter the TFTP Server IP Address from which the Firmware Boot or Configuration file is downloaded Remote Filename Enter the destination file name to be downloaded 8 5 Maintenance v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 2 Select Firmware Boot File or Configuration as the download File Type from the provided field Select whether to download via TFTP or via HTTP If you selected via HTTP enter the file name in the provided box If you selected via TFTP enter the TFTP Server IP address in the provided field If you selected via TFTP enter the Remote Filename in the provided field Click APPLY to download the file You must reboot the device for the downloaded file settings to take effect See Device Reboot for detailed instructions on rebooting the device aA MF Y amp File Management The File Management menu contains the following option e Active Image Active Image The Active Image screen enables the user to select which image will be set as active after the next reset The Active Image file f
137. elect the Default CoS value from the list in the provided field in the first row Check or uncheck the Restore Defaults box in the interface entry row Click APPLY to update the device Queue The Queue screen contains fields for defining the QoS queue forwarding types To set the queue settings 1 Click QoS gt CoS gt Basic gt Queue The Queue screen displays NETGEAR Met a commas oa Figure 5 3 The Queue screen contains the following fields e Strict Priority Select to specify traffic scheduling based strictly on the queue priority e WRR Select to assign WRR weights to queues The queue weights are preconfigured and are set to 1 2 4 and 8 5 5 Configuring QoS v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 2 Select either Strict Priority or WRR to specify the traffic scheduling method 3 Click APPLY to update the device Bandwidth After packets are assigned to a queue a scheduling scheme can be assigned to an interface using either e Committed Burst Size Indicates the maximum number of data bits transmitted within a specific time interval e Committed Information Rate Indicates the rate that data is transmitted The rate is averaged over a minimum time increment The Bandwidth screen allows the network manager to define Ingress Rate Limit and Egress Shaping Rates To define bandwidth settings 1 Click QoS gt CoS gt Basic gt Bandwidth The Bandwidth screen
138. enter Priority field Click APPLY to update the device MST Port Configuration Network Administrators can assign MST port settings in the MST Port Configuration screen To define MST port settings 1 Click Switching gt STP gt Advanced gt MST Port Configuration The MST Port Configuration screen displays Configuring Switching Settings 4 40 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual NETGEAR GS7A8TS AB port Gigabit Stechoble Smart Swi recor Ports LAG VLAN Voice VLAN MST Port Configuration Status on n Select MST MST Port Configuration 1234 56 LAGS All im 1 20099 A Enacted Forwerang Master O WOOL IKIZearece 32769 r ro 12 2000 708 Khatied Forwarding Manter O WOKEO2IZembeCe 32709 r w 2 2000 1069 Enatied Forwarding Matter 0 MOCO IZeatoce 12769 r 13 200000 32769 Ehotied Forwerdng Moster OOO 1GIZembbce 32709 C tms 12 200000 32769 Enatied Forwerdng Morter 0 000218 I2onbeoe 32769 row 1 20000 32769 Enatied Forwarding Master O B00c021812anbece 32769 r w 178 200000 32789 Enatied Forwarding Master 0 8000218 Peakbce 32789 i 12 200000 39769 Ensbied Forwarding Master O 800c021812asb ce 37769 r w 12 200W 32703 Enatied Forwarding Maner O W002 Zoaboce 22769 ro o 12 7000002769 Enatied Forwarding Manter 0 OnoeO2eIZeabnee 32769 C m 120 200000 32769 Enetied Forwerdng Morter Mittoo 32769 r um 123 200000 32769 Enabled Forwarding Moster 0 SOOO SI Zoabece 32769 r w 12 200000 32769
139. entication and device management sessions are recorded Accounting Server Address Select the RADIUS Accounting Server IP address Accounting Port Enter the RADIUS Accounting port number The accounting port is used to handle RADIUS server accounting The field default is 1813 Select the RADIUS Accounting Mode from the list in the provided field Select the RADIUS Accounting Server Address from the list in the provided field Enter the RADIUS Accounting Port in the provided field Click APPLY to update the device Managing Security 6 5 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual TACACS Terminal Access Controller Access Control System TACACS provides centralized security user access validation The system supports up to 2 TACACS servers TACACS provides a centralized user management system while still retaining consistency with RADIUS and other authentication processes The TACACS protocol ensures network integrity through encrypted protocol exchanges between the client and TACACS server The user assigned TACACS parameters are applied to newly defined TACACS servers If values are not defined the system defaults are applied to the new TACACS servers To configure TACACS Settings 1 Click Security gt Management Security gt TACACS The TACACS screen displays m ABT NETGEAR EERE eon System Switching Security Monitoring Maintenance Help ocour TACACS v U
140. ers for configuring the LACP Priority and Timeout fields on interfaces To configure LACP port priority 1 Click Switching gt LAG gt Advanced gt LACP Port Configuration The LACP Port Configuration screen displays 748T NETGEAR Pr bed LACP Port Configuration Lace 123456All GO TO INTERFACE GO Interface ACP Priorit 110 m i ajin Ba Din Sa fin Ba Jon Sa Din Sa fin Ba m F Figure 4 9 The LACP Port Configuration screen contains the following fields e Interface Displays the interface number to which timeout and priority values are assigned e LACP Priority Enter the LACP port priority value The field range is 1 65535 e Timeout Select the administrative LACP timeout The possible field values are Long Indicates a long timeout value 90 seconds Short Indicates a short timeout value 3 seconds This is the default 4 13 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 2 Select the interface 3 Enter the LACP Priority and select the Timeout in the provided fields in the first row 4 Click APPLY to update the device VLAN VLANs are logical subgroups with a Local Area Network LAN which combine user stations and network devices into a single unit regardless of the physical LAN segment to which they are attached VLANs allow network traffic to flow more efficiently within subgroups VLANs use software to re
141. ery utility and local or remote Web Management IBM type PC with CD drive RAM size and disk specification are not critical OS software Microsoft Windows Vista Windows XP or Windows 2000 Desktop computer running Microsoft Internet Explorer 5 0 or later or Netscape Navigator 6 0 or later or equivalent 1 1 Getting Started with Switch Management v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Note For complete hardware installation instructions refer to the GS700TS Smart Switch gt Hardware Installation Manual included on your Resource CD or go to http www netgear com support Switch Management Interface Your NETGEAR GS700TS Gigabit Stackable Smart Switch contains an embedded web server and management software for managing and monitoring switch functions This switch operates as a simple switch without using the management software The management software enables you to configure more advanced features and consequently improve switch efficiency as well as overall network performance Web Based Management enables you to monitor configure and control your switch remotely using a common web browser instead of having to use expensive and complicated SNMP software products Simply by using your web browser you can monitor the performance of your switch and optimize network configuration Using your browser for example you can set up VLANs traffic priority and configure port
142. es ACK Nama MAC Rules Table Figure 6 13 6 22 Managing Security v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 2 3 4 5 The MAC Rules screen contains the following fields MAC Rules e ACL Name Select the ACL Name from the list MAC Rules Table e Priority Enter the rule priority When the packet is matched to a rule user groups are either granted permission or denied device management access The rule number is essential to matching packets to rules as packets are matched on a first fit basis e Source MAC Address Enter the source MAC Address e Source Mask Enter the mask of the new source MAC address e Destination MAC Address Enter the destination MAC address e Destination Mask Enter the mask of the new destination MAC address e VLAN ID Enter the VLAN ID to which the MAC address is attached in the MAC Rules database e Action Select the action applied to packets with MAC addresses that have been filtered The possible field values are Permit Permits access to the device Deny Denies access to packets originating from the blocked MAC address Shutdown Drops packets that meet the ACL criteria and disable the port to which the packet was addressed Select the ACL Name from the list in the provided field Select the rule entry Enter the provided fields in the first row Click APPLY to update the device To add a MAC rule
143. es are Rising Alarm Indicates the alarm is triggered by the rising counter crossing the rising threshold value Falling Alarm Indicates the alarm is triggered by the falling counter crossing the falling threshold value Rising and Falling Indicates the alarm is triggered by either the rising counter crossing the rising threshold value or the falling counter crossing the falling threshold value Interval Enter the alarm interval time in seconds Owner Enter the device or user that defined the alarm Select the alarm entry Select the Counter Name from the list of MIB variable values in the provided field in the first TOW Enter the Interface in the provided field in the first row 7 21 Monitoring the Switch v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 9 Select the Sample Type from the list in the provided field in the first row Select the Startup Alarm from the list in the provided field in the first row If you selected Rising Alarm or Rising and Falling as the Startup Alarm enter the Rising Threshold and select the Rising Event number in the provided fields in the first row If you selected Falling Alarm or Rising and Falling as the Startup Alarm enter the Falling Threshold and select the Falling Event number in the provided fields in the first row Enter the Interval and Owner in the provided fields in the first row 10 Click APPLY to update the d
144. es the amount of time in seconds a Root Bridge waits between configuration messages The default is 2 seconds e CST Regional Root Displays the Common STP regional bridge priority and MAC address 2 Select Enable or Disable in the Spanning Tree State provided field Select the STP Operation Mode in the provided field If you selected Disable in the Spanning Tree State field select the BPDU Handling mode from the list in the provided field 5 Click APPLY to update the device Configuring Switching Settings 4 30 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Advanced The STP Advanced menu contains the following options STP Configuration CST Configuration CST Port Configuration RSTP MST Configuration MST Port Configuration STP Configuration The Advanced STP Configuration screen contains parameters for enabling STP on the device To configure STP on the device 1 Click Switching gt STP gt Advanced gt STP Configuration The Advanced STP Configuration screen displays NETGEAR GS748TS AB port Gigabit Steckable Sm Systom Switching Qos Security Monitoring Maintenance Help socour STP Configuration Global Settings Spanning Tree State Dissble trable STP Operation Mode C ste Gaste Cms Configuration Name PpEroos n Conniguration Revision Level a BPDU Handing Frere E Status Bridas Identifier 8010000114160836 Jaa T
145. essages e Description Displays the log message text 7 5 Monitoring the Switch v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 2 Click REFRESH or CLEAR LOGS to refresh or reset the Memory Logs screen Flash Log The Flash Log screen contains information about log entries saved to the log file in Flash including the time the log was generated the log severity and a description of the log message The message log is available after reboot To view the message logs in Flash 1 Click Monitoring gt Logs gt Flash Log The Flash Log screen displays NETGEAR GS748TS AB por Gigabit Stockable Smert Seite System switching RMON Port Mirroring Flash L Log Configuration hea ew Note Logs stored in flash memory are saved alter device reset 3 Memory Log Hlash tog gt Server Log Flash Log First Previous Next All Severity Description wena SAAA AUTHFAL Aumnentcation faled fer hts source 10 39 20 Intermatonal GAAA E AUTHFAL Auterteaten fates fer nite ecrmatonal SAAAEAUTHFAi evteation taled for hip source 136 38 16 R 01 Jan 2000 01 5012 ot Te bed 01 Jan 2000 01 50 12 nfcematonal WAT Startup Warm Startup 12 infeematenal LAUGLUp Vian 1 2 nimero NK WDown ga Infermanenal SUNK LUp p3 ntermaneral SUNCW Down 623 O1 J0 gt 0 12 01 Jan 2000 01 60 12 o O12 eto Plermateral WLIKWDown 522 G 0 12 01 Jan 2000 01 50 12
146. ets while retrieving the initial IP address through DHCP The phone eventually uses the Voice VLAN and starts sending tagged packets The Voice VLAN menu contains the following options e Basic e Advanced Basic The Voice VLAN Basic menu contains the following options e Properties Properties The Voice VLAN Basic Properties screen contains information about Voice VLAN on the device including the ports enabled and included in the Voice VLAN To define Voice VLAN settings 1 Click Switching gt Voice VLAN gt Basic gt Properties The Voice VLAN Basic Properties screen displays NETGEAR den tanh wert een tone system EEN gos Security Monitoring Maintenance Help toco Ports LAG VLAN Properties v Basie gt Propemer Properties gt Advanced Remark CoS visable E is ab nable Voice VLAN Aging Tume T os D mour fi Min Gm Figure 4 16 Configuring Switching Settings 4 22 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 4 The Voice VLAN Basic Properties screen contains the following fields Voice VLAN Status Select the Voice VLAN status on the device The possible field values are Disable Disables Voice VLAN on the device This is the default value Enable Enables Voice VLAN on the device VoiceVLAN ID Select the Voice VLAN ID number Class of Service Select the CoS tag to add to incoming packets not containing a VPT
147. ettings 3 32 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Authentication Notifications Select the SNMP authentication failure notification status on the device The possible field values are Disable Disables the device from sending authentication failure notifications Enable Enables the device to send authentication failure notifications This is the default value Select either Enable or Disable in the SNMP Notifications provided field Select either Enable or Disable in the Authentication Notifications provided field Click APPLY to update the device Trap Configuration The SNMPv3 Trap Configuration screen contains information for defining filters that determine whether traps are sent to specific users and the trap type sent SNMP notification filters provide the following services e Identifying Management Trap Targets e Defining Trap Filtering e Selecting Trap Generation Parameters e Providing Access Control Checks To define trap station management 1 Click System gt SNMP gt SNMPv3 gt Trap Configuration The SNMPv3 Trap Configuration screen displays NETGEAR GS748TS 4O port Gigabit Stockoble Swart ocou Trap Configuration Trap Configuration Figure 3 18 3 33 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual re Se Ge ek The SNMPv3 Trap Configuration screen contains the follow
148. evice To add an alarm entry 1 2 A we amp 8 9 Click Monitoring gt RMON gt Advanced gt Alarms The RMON Alarms screen displays Select the Counter Name from the list of MIB variable values in the provided field in the first row Enter the Interface in the provided field in the first row Select the Sample Type from the list in the provided field in the first row Select the Startup Alarm from the list in the provided field in the first row If you selected Rising Alarm or Rising and Falling as the Startup Alarm enter the Rising Threshold and select the Rising Event number in the provided fields in the first row If you selected Falling Alarm or Rising and Falling as the Startup Alarm enter the Falling Threshold and select the Falling Event number in the provided fields in the first row Enter the Interval and Owner in the provided fields in the first row Click ADD to update the device To remove an events control entry 1 Click Monitoring gt RMON gt Advanced gt Alarms The RMON Alarms screen displays 2 Select the alarm entry 3 Click DELETE to remove the alarm entry Monitoring the Switch 7 22 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Port Mirroring Port mirroring monitors and mirrors network traffic by forwarding copies of incoming and outgoing packets from one port to a monitoring port Port mirroring can be used as a diagnostic tool as well as a deb
149. figuring QoS Configuring the Basic and Advanced QoS Settings The navigation pane at the top of the web browser interface contains a QoS tab that enables you to manage your GS700TS Smart Switch with features under the following main heading e Cos The description that follows in this chapter describes configuring and managing QoS settings in the GS700TS Smart Switch CoS Quality of Service QoS provides the ability to implement QoS and priority queuing within a network For example certain types of traffic that require minimal delay such as Voice Video and real time traffic can be assigned to a high priority queue while other traffic can be assigned to a lower priority queue The result is an improved traffic flow for traffic with high demand QoS is defined by e Classification Specifies which packet fields are matched to specific values All packets matching the user defined specifications are classified together e Action Defines traffic management where packet forwarding is based on packet information and packet field values such as VLAN Priority Tag VPT and DiffServ Code Point DSCP After packets are assigned to a specific egress queue CoS services can be assigned to the queue Egress queues are configured with a scheduling scheme by one of the following methods Strict Priority Ensures that time sensitive applications are always forwarded Strict Priority SP allows the prioritization of mission
150. fined device name The field may contain 0 160 characters System Location Enter the location where the system is currently running The field may contain 0 160 characters System Contact Enter the name of the contact person The field may contain 0 160 characters System Object ID Displays the vendor s authoritative identification Date amp Time Displays the current date and local time System Up Time Displays the amount of time since the most recent device reset The system time is displayed in the following format days hours minutes seconds For example 41 days 2 hours 22 minutes 15 seconds Managing System Settings 3 2 v1 0 June 2009 Aw eB amp Idle Timeout Enter the amount of time minutes that elapses before an idle station is timed out Idle stations that are timed out must login to the system The field range is 5 30 minutes The field default value is 10 minutes e Base MAC Address Displays the MAC Address If the device is in stack mode the Base MAC Address of the master unit is displayed e Serial Number Displays the device serial number e Unit Mode Indicates if the device is currently in standalone or stacking mode e Change Unit Mode To After Reset Toggle the device unit mode from the current value of Unit Mode to the value indicated by Stack or Standalone after resetting the device e Jumbo Frames Status Displays the Jumbo Frame status e Ju
151. g options e Basic e Advanced Basic The Port Authentication Basic menu contains the following option e 802 1x Configuration 802 1x Configuration The Basic 802 1x Configuration screen allows network managers to configure network authentication parameters In addition the Guest VLAN option is enabled from the Basic 802 1x Configuration screen To define the 802 1x configuration 1 Click Security gt Port Authentication gt Basic gt 802 1x Configuration The Basic 802 1x Configuration screen displays NETGEAR GS748TS 48 port Gigabit Stockable Smar System Switching Qos Security Monitoring Maintenance Help socour Traffic 802 1x Configuration v Basic gt 202 1 002 1x Configuration Configuration gt Advanced Port Based Authentcaton State visable C Enable Authentication Methed RADIUS Nore Guest VLAN C Dis Guest VLAN ID EAPOL Handling Firg Digable fnable Figure 6 6 Managing Security 6 9 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual The Basic 802 1x Configuration screen contains the following fields Port Based Authentication State Select whether port based authentication is enabled or disabled on the device The possible field values are Disable Disables port based authentication on the device Enable Enables port based authentication on the device Authentication Method Select the authentication metho
152. g the BPDU in the bridge connecting the two regions will serve this purpose e Flooding Floods BPDU packets when Spanning Tree is disabled on an interface or globally on the device This is the default value e Bridging Forwards BPDU packets subject to ingress and egress VLAN rules when Spanning Tree is disabled on an interface or globally on the device Status e Bridge Identifier Displays the Bridge priority and MAC address Time Since Topology Change Displays the amount of time that has elapsed since the bridge was initialized or reset or the last topology change that occurred The time is displayed in a day hour minute format such as 2 days 5 hours and 10 minutes e Designated Root Displays the Root Bridge priority and MAC address e Root Port Displays the port number that offers the lowest cost path from this bridge to the Root Bridge This field is significant when the bridge is not the Root Bridge e Max Age Sec Displays the device Maximum Age Time The Maximum Age Time is the amount of time in seconds a bridge waits before sending configuration messages The default Maximum Age Time is 20 seconds e Forward Delay Sec Displays the device Forward Delay Time The Forward Delay Time is the amount of time in seconds a bridge remains in a listening and learning state before forwarding packets The default is 15 seconds e Hello Time Sec Displays the device Hello Time The Hello Time indicat
153. gs 1 Click System gt LLDP gt Advanced gt LLDP Configuration The Advanced LLDP Configuration screen displays NETGEAR GS748TS na wah kablo Smart Switch AB port Gigabit Sree System Switching Qos Security Monitoring Maintenance Help woco0ut Management Device View Stacking SNMP LLDP Configuration LLDP Properties Lop Disable Enable LOPOV Handling Fixing TLY Advertised Interval e Tepotogy Change Notification Interval 2c FE use oofeur von Mold mulupher f On Reinitialiring Delay e Transmit Delay D LLDP MED Properties Fast Start Duration f ET Time Figure 3 22 The Advanced LLDP Configuration screen contains the following fields LLDP Properties e LLDP Select the LLDP global status on the device The possible field values are Disable Disables LLDP on the device This is the default value Enable Enables LLDP on the device 3 41 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual e LLDPDU Handling Select LLDPDU LLDP Data Unit packet handling when LLDP is disabled The possible field values are Flooding LLDPDU packets are flooded to all ports in the system Filtering LLDPDU packets are filtered This is the default e TLV Advertised Interval Enter the rate in seconds at which LLDP advertisement updates are sent The possible field range is 5 32768 seconds The default value is 30 seconds e Topolo
154. gt Advanced gt Class Mapping The Class Mapping screen displays GS748TS bit Steckable Smart Switch System Switching Security Monitoring Maintenance Help roGout Figure 5 7 The Class Map screen contains the following fields e Class Map Name Displays the user defined name of the class map Configuring QoS 5 10 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual e Pv4 ACL Select a user defined IPv4 ACL from the list e Or Indicates the criteria used to match class maps with an IP ACL address Matches either IPv4 or IPv6 or MAC to the packet e JIPv6 ACL Select a user defined IPv6 ACL from the list e And Or Indicates the criteria used to match class maps with an IP ACL address Matches both IPv4 or IPv6 and Or MAC to the packet e MAC ACL Select a user defined MAC ACL from the list 2 Enter the a new Class Map Name in the provided field in the first row 3 Select the IPv4 ACL or IPV6 ACL in the provided field in the first row 4 Click APPLY to update the device To add a new class mapping entry 5 Click QoS gt CoS gt Advanced gt Class Mapping screen The Class Mapping screen displays 6 Enter the Class Map Name in the provided field in the first row 7 Select the IPv4 ACL or IPv6 ACL from the list in the provided field in the first row 8 Select the AND or OR from the AND Or field 9 Select the MAC ACL from the list in the provided field in the first row 10 Cli
155. gt Advanced gt Neighbors Information The LLDP Neighbors Information screen displays NETGEAR GS748TS neci wih inn AB port Gigabit Stechable Smer Switch System Switching QoS Security Monitoring Maintenance Help toaour Neighbors Information Neighbors Information 0101658380 MaC 001018583600 GSIOST wih new GU MAC 1 MaC 021010580 MAC 001010300 GS10UT wen new GU 25 Ma 001016980 MAC 0010185800 GSI wih new GU 122 Figure 3 27 The LLDP Neighbors Information screen contains the following fields e MSAP Entry Displays the device s Media Service Access Point MSAP entry number e Local Port Displays the port number e Chassis ID SubType Displays the chassis ID subtype For example MAC address e Chassis ID Displays the chassis identification of the device transmitting the LLDP frame 3 51 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 2 Port ID SubType Displays the port ID subtype For example MAC address Port ID Displays the port identification of the port transmitting the LLDP frame System Name Displays the administratively assigned device name Time To Live Displays the amount of time in seconds in which the information received in the LLDPDU from the remote device remains valid Click REFRESH to refresh the Neighbors Information screen To view LLDP Neighbors detailed information 1 Click System gt LLD
156. guration Access rights are managed by defining communities in the Community Configuration screen When community names are changed access rights are also modified To configure SNMP communities 1 Click System gt SNMP gt SNMPv1 v2 gt Community Configuration The Community Configuration screen displays Managing System Settings 3 18 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual NETGEAR GS748TS wth a ble Smart Switch 48 porr Gigab Stackable System Switching Qos Security Monitoring Maintenance Help tocour Community Configuration v SNMPWI w2 of 9 2 Communay Basic Table o Configuration gt Trap Configuration gt SNMP Figure 3 9 The SNMPv1 v2 Community Configuration screen contains the following fields Management Station IP Enter the management station IP address for which the Basic SNMP community is defined Management Station IP Mask Enter the management station IP mask for which the Basic SNMP community is defined If the Management Station IP Mask is set to 255 255 255 255 only the exact IP address specified in the management Station IP field can access If the Management Station IP mask is set to 255 255 255 0 any IP address matches with the first 3 part of the IP address specified in the Management Station IP can access Community String Enter the SNMP community string used to authenticate the management station to the device Access Mode Select
157. gy Change Notification Interval Displays the amount of time that has elapsed since the bridge was initialized or reset or the last topology change that occurred The time is displayed in a day hour minute second format such as 2 days 5 hours 10 minutes and 4 seconds e Hold Multiplier Enter the amount of time that LLDP packets are held before the packets are discarded measured in multiples of the TLV Advertised Interval The possible field range is 2 10 The field default is 4 For example if the TLV Advertised Interval is 30 seconds and the Hold Multiplier is 4 then the LLDP packets are discarded after 120 seconds e Reinitializing Delay Enter the amount of time in seconds that passes between disabling and reinitializing LLDP The possible field range is 1 10 seconds The field default is 2 seconds e Transmit Delay Enter the amount of time in seconds that passes between successive LLDP frame transmissions due to changes in the LLDP local systems MIB The possible field value is 1 8192 seconds The field default is 2 seconds LLDP MED Properties e Fast Start Duration Enter the number of LLDP packets sent when the LLDP MED Fast Start mechanism is initialized which occurs when a new Endpoint device links with the LLDP MED Network Connectivity Device 2 Select the LLDP global status on the device by selecting Enable or Disable in the LLDP field 3 If you selected Disable in the LLDP field select the type of LL
158. h 48 port Gigabit Stockoble Smar System switching Qos Security Monitoring Maintenance Help ocour User Configuration User Configuration Figure 3 16 The SNMPv3 User Configuration screen contains the following fields e User Name Enter the user name The field range is up to 30 alphanumeric characters e Group Name Enter the group name from a list of user defined SNMP groups SNMP groups are defined in the Groups screen e Engine ID Select either the local or remote SNMP entity to which the user is connected Changing or removing the local SNMP Engine ID deletes the SNMPv3 user database e Authentication Select the method used to authenticate users The possible field values are None No user authentication is used MDS Password Indicates the HMAC MD5 96 password is used for authentication The user must enter a password Managing System Settings 3 30 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual So FR GS 7 SHA Password Users are authenticated using the HMAC SHA 96 authentication level The user must enter a password MDS Key Users are authenticated using the HMAC MD5 algorithm SHA Key Users are authenticated using the HMAC SHA 96 authentication level e Password 1 32 Characters Enter the password for the group member e Authentication Key Enter the HMAC MD5 96 or HMAC SHA 96 authentication level The authentication and
159. h System Switching Qos Security Monitoring Maintenance Help 1esour Time Configuration me COnhigusetion Time Configuration Clock Source vocal C tute Date i Te pon Time Zone Offset GMT 1200 3 Figure 3 3 The Time Configuration screen contains the following fields Clock Source Select the source used to set the system clock The possible field values are Local Indicates system time is set locally This is the default value SNTP Indicates system time is set via an SNTP server The Date and Time fields are disabled once you select the SNTP server Date Enter the local system date The field format is DD MMM YY Day Month Year For example 04 May 50 May 4 2050 Time Enter the local system time The field format is HH MM SS For example 21 15 03 Time Zone Offset Select the difference between Greenwich Mean Time GMT and local time For example the Time Zone Offset for Paris is GMT 1 while the Time Zone Offset for New York is GMT 5 Select the Clock Source by selecting either Local or SNTP If you selected Local then enter the local Date and Time in the provided fields Select the Time Zone Offset from the list Click APPLY to update the system settings Note If you selected SNTP you must configure the SNTP servers See SNTP gt Server Configuration for detailed instructions on configuring the SNTP servers Managing System Settings 3 6
160. h z7 High a Restore Default Mapping Restore Defaults m Figure 5 5 The CoS to Queue Mapping screen contains the following fields CoS to Queue Mapping e CoS Displays the CoS priority tag values where 0 is the lowest and 7 is the highest e Queue Select the traffic forwarding queue to which the CoS priority is mapped Four traffic priority queues are supported Lowest Low Normal and High The High Queue is reserved for special traffic and is not recommended for use Restore Default Mapping e Restore Defaults Restore the device factory defaults for mapping CoS values to a forwarding queue The possible field values are Checked Restores the factory default settings for mapping CoS values to a forwarding queue Unchecked Maintains the current CoS queue mapping settings 2 Select the Queue values for each CoS value in the provided fields 3 Check or uncheck the Restore Defaults box in the provided field Configuring QoS 5 8 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 4 Click APPLY to update the device DSCP to Queue Mapping The DSCP To Queue Mapping screen contains fields for mapping DSCP values to traffic queues for various PHBs Per Hop Behaviors These include the CS Class Selector AF Assured Forwarding and EF Expedited Forwarding For example a packet with a DSCP tag value of 1 can be assigned to the High queue To map DSCP value
161. hapter describes configuring and managing system settings in the GS700TS Smart Switch Management The Management menu enables configuration of general device information defining an IP and configuring system time This section contains the following topics e System Information e IP Configuration Time System Information The System Information screen displays basic device information and allows network managers to define the System Name System Location System Contact Idle Timeout Unit Mode and Jumbo Frames 3 1 V1 0 June 2009 GS700TS Smart Switch Software Administration Manual To configure system parameters 1 Click System gt Management gt System Information The System Information screen displays NETGEAR GS748TS AB port Gigabit Steckable Smart Swite Switching QoS Security Monitoring Maintenance Help iocour System Information v System Information IP Configuration System Information Time System Name System Location System Contact System Object 10 Date amp Time System Up Time deys i hours 27 minutes 16 seconds Idle Timeout ey Base MAC Address 44 22 40 40 Serial Number 23 Unit Mode Stacdelene Change Unit Mode To Stack After Reset D Jumbo Frames States Jumbo Frames After Reset Osade Versions Unit No Model Name Hardw Figure 3 1 The System Information screen contains the following fields System Name Enter the user de
162. he Radio Interference Regulations of the Canadian Department of Communications R glement sur le brouillage radio lectrique du minist re des Communications Cet appareil num rique NETGEAR GS700TS Smart Switch respecte les limites de bruits radio lectriques visant les appareils num riques de classe A prescrites dans le R glement sur le brouillage radio lectrique du minist re des Communications du Canada Customer Support For assistance with installing and configuring your NETGEAR system or for questions or problems following installation e Check the NETGEAR Web page at http www NETGEAR com support e Call Technical Support in North America at 1 888 NETGEAR If you are outside North America please refer to the phone numbers listed on the Support Information Card that was included with your switch e Email Technical Support at support NETGEAR com e Defective or damaged merchandise can be returned to your point of purchase representative Internet World Wide Web NETGEAR maintains a World Wide Web home page that you can access at the uniform resource locator URL http www NETGEAR com A direct connection to the Internet and a Web browser such as Internet Explorer or Netscape are required v1 0 June 2009 GS700TS Smart Switch Software Administration Manual FCC Requirements for Operation in the United States FCC Information to User This product does not contain any user serviceable components and is to be use
163. his is the default value Enter the Destination Port in the provided field Select the source port entry Select the port mirroring Type from the list in the provided field in the first row Click APPLY to update the device To add a source port entry 1 2 3 4 Click Monitoring gt Port Mirroring gt Port Mirroring The Port Mirroring screen displays Enter the Source Port in the provided field in the first row Select the port mirroring Type from the list in the provided field in the first row Click ADD to update the device To remove a source port entry 1 Click Monitoring gt Port Mirroring gt Port Mirroring The Port Mirroring screen displays 2 Select the source port entry 3 Click DELETE to remove the source port entry Monitoring the Switch 7 24 v1 0 June 2009 Chapter 8 Maintenance Using the Maintenance Options The navigation pane at the top of the web browser interface contains a Maintenance tab that enables you to manage your GS700TS Smart Switch with features under the following main menu options e Reset e Upload e Download e File Management e Troubleshooting The description that follows in this chapter describes configuring and managing maintenance options in the GS700TS Smart Switch Reset The Reset menu contains the following options e Device Reboot e Factory Default Device Reboot The Device Reboot screen resets the de
164. ible field values are Automatically Indicates Stacking Master is selected automatically by software 3 15 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual wa PF Y N Force Master Forces the selection of a Stacking Master This causes the new Master unit to take control of the current configuration of the Stack The old Master is reset and becomes the Secondary Master Note that only Unit 1 or Unit 2 can be the Stacking Master Select the Master Election mode If you selected Force Master select either 1 or 2 from the stack list Click APPLY to update the device Reset the device for the new settings to take effect See Reset for detailed instructions on resetting the device Stack Management The Stack Management screen allows network managers to assign specific Unit numbers to stacking members or enable the software to automatically assign Unit numbers Assignments take effect after reset To configure Stack Management 1 Click System gt Stacking gt Advanced gt Stack Management The Stack Management screen displays NETGEAR sce nth E ome a System Switching Qos Security Monitoring Maintenance Help cov E Stack Management on oi hao x 2 Aido 6 jis Ako Tr 4 Nao C is Aso cr e Aido Figure 3 8 The Stack Management screen contains the following fields e Unit No Displays the stacking member s current Unit number Possible values are 1
165. ic nor can it learn MAC addresses Learning Indicates that the port is in Learning mode The port cannot forward traffic however it can learn new MAC addresses Forwarding Indicates that the port is in Forwarding mode The port can forward traffic and learn new MAC addresses Broken Indicates that the port is currently in the Broken mode as the bridge detected a malfunction The port cannot forward traffic nor can it learn MAC addresses e Port Role Indicates the port role assigned by the STP algorithm to provide to STP paths The possible field values are Root Provides the lowest cost path to forward packets to the root device Designated Indicates the port or LAG through which the designated device is attached to the LAN Alternate Provides an alternate path to the root device from the root interface Backup Provides a backup path to the designated port path toward the Spanning Tree leaves Backup ports occur only when two ports are connected in a loop by a point to point link or when a LAN has two or more connections connected to a shared segment Disabled Indicates the port is not participating in the Spanning Tree Master Indicates the port provides connectivity from the MSTP region to the outlying CIST root e Designated Cost Indicates that the default path cost is assigned according to the method selected on the STP Configuration screen e Designated Bridge Displays the ID
166. ications Approvals has been notified of the placing of this equipment on the market and has been granted the right to test the series for compliance with the regulations Voluntary Control Council for Interference VCCI Statement This equipment is in the first category information equipment to be used in commercial and or industrial areas and conforms to the standards set by the Voluntary Control Council for Interference by Data Processing Equipment and Electronic Office Machines that are aimed at preventing radio interference in commercial and or industrial areas Consequently when this equipment is used in a residential area or in an adjacent area thereto radio interference may be caused to equipment such as radios and TV receivers Federal Communications Commission FCC Compliance Notice Radio Frequency Notice This device complies with part 15 of the FCC Rules Operation is subject to the following two conditions This device may not cause harmful interference This device must accept any interference received including interference that may cause undesired operation NOTE This equipment has been tested and found to comply with the limits for a Class A digital device pursuant to part 15 of the FCC Rules These limits are designed to provide reasonable protection against harmful interference in a residential installation This equipment generates uses and can radiate radio frequency energy and if not installed and used in accordanc
167. ick APPLY to update the device Reset the device for the new settings to take effect See Reset for detailed instructions on resetting the device Managing System Settings 3 14 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Advanced The Stacking Advanced menu contains the following options e Stack Configuration e Stack Management Stack Configuration The Advanced Stack Configuration screen allows network managers to define the stacking master election mode A unique Unit No 1 6 identifies a stack member The configuration is saved and managed by the master unit The stack configuration has the following default e The stacking numbering method is set to auto numbering To configure Advanced stacking 1 Click System gt Stacking gt Advanced gt Stack Configuration The Advanced Stack Configuration screen displays NETGEAR GS748TS AB port Gigabls Stackable Sm System Switching Qos Security Monitoring Mointenance Help iocour Stack Configuration Stack Configuration p Master Election Figure 3 7 The Advanced Stack Configuration screen contains the following fields e Master Election Select the mode by which the Stacking Master is elected When the stack is powered up and completes the boot up process the Master unit is elected within 0 5 seconds Master election may be based on Master preemptive mode Master push button or MAC address The poss
168. ime Since Topology Change Designated Ruut Root Dort Max Age sec 20 Forward Delay 30 Hallo Time Sec EST Regional Root 0 00 00 1b 2f bd 04 49 Figure 4 21 4 31 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual The Advanced STP Configuration screen contains the following fields STP Configuration Spanning Tree State Select the STP state on the device The possible field values are Disable Disables STP on the device Enable Enables STP on the device This is the default value STP Operation Mode Select the STP mode on the device The possible field values are STP Enables STP on the device RSTP Enables Rapid STP on the device This is the default value MSTP Enables Multiple STP on the device Configuration Name Enter the user defined configuration name The maximum length is 32 characters Configuration Revision Level Defines an unsigned 16 bit number that identifies the revision of the current STP configuration The revision number is required as part of the STP configuration The possible field range is 0 65535 BPDU Handling Select the method of handling STP BPDUs Bridge Protocol Data Units when STP is disabled on the device or interface The possible field values are Filtering Indicates BPDUs are filtered Flooding Indicates BPDUs are flooded to all ports in the system This is the default
169. ing Master detects and reconfigures the ports with minimal operational impact in the event of e Unit Failure Managing System Settings 3 8 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual e Inter unit Stacking Link Failure e Unit Insertion e Removal of a Stacking Unit Operation Modes A stack unit can operate in one of the following modes e Standalone Indicates the device is operating as a single unit and is not connected in a stack e Stacking Master Manages the stacking configuration for all stack members e Secondary Master Operates as a backup to the Stacking Master If the Stacking Master is no longer operating the Secondary Master takes over the stack management e Stacking Member Indicates a device within the stacking topology The stacking member receives its device configuration from the Stacking Master Note When creating stacks ensure the same connection cable types are used gt throughout the stack For example use either all fiber cables or all copper cables This section provides an introduction to the user interface and contains the following topics e Understanding Stack Topology e Stacking Ports e Stacking Members and Unit No e Removing and Replacing Stacking Members e Inserting a Stacking Member e Exchanging Stacking Members e Switching the Stacking Master e Stack Configuration and Management Understa
170. ing fields Recipients IP Enter the IP address to which the traps are sent Notification Type Select the type of notification sent The possible field values are Traps Indicates traps are sent Informs Indicates informs are sent User Name Enter the user name The field range is up to 30 alphanumeric characters Security Level Select the security level attached to the group Security levels apply to SNMPv3 only The possible field values are No Authentication Indicates neither the Authentication nor the Privacy security levels are assigned to the group Authentication Authenticates SNMP messages and ensures that the SNMP message s origin is authenticated Privacy Encrypts SNMP messages UDP Port Enter the UDP port used to send notifications The default is 162 Filter Name Select the SNMP filter name from the list of SNMP Notification filters Timeout Enter the amount of time in seconds the device waits before re sending informs The default is 15 seconds Retries Enter the maximum amount of times the device re sends an inform request if a response is not received The default is 3 times Enter the Recipients IP address in the provided field in the first row Select either Traps or Informs in the Notification Type provided field in the first row Enter the User Name in the provided field in the first row Select the Security Level from the list in the p
171. intenanc oov Statistics Advanced RMON Interface Statistics CREE Align Errors Undersize Packets Oversize Packets Fragments Jabbers Frames of 1024 to 1322 Bytes RMON Summary Statistics PORTS LAGS All Gort Figure 7 7 The RMON Advanced Statistics screen contains the following fields RMON Interface Statistics Interface Select the device for which statistics are displayed The possible field values are Port Select the specific port for which RMON statistics are displayed LAG Select the specific LAG for which RMON statistics are displayed Received Bytes Displays the number of octets received on the interface since the device was last refreshed This number includes bad packets and FCS octets but excludes framing bits Broadcast Packets Received Displays the number of good broadcast packets received on the interface since the device was last refreshed This number does not include Multicast packets Multicast Packets Received Displays the number of good Multicast packets received on the interface since the device was last refreshed CRC amp Align Errors Displays the number of CRC and Align errors that have occurred on the interface since the device was last refreshed Monitoring the Switch 7 12 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Undersize Packets Displays the number of undersized packets less than 64 octets rece
172. ion 1 traps are sent SNMPv2 Indicates SNMP Version 2c traps are sent UDP Port Enter the UDP port used to send notifications The default UDP port is 162 Timeout Enter the amount of time in seconds the device waits before re sending informs The default is 15 seconds Retries Enter the maximum amount of times the device re sends an inform request if a response is not received The default is 3 times 2 Select the trap entry Enter the fields in the first row 4 Click APPLY to update the device 3 21 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual To add a new SNMP trap 1 Click System gt SNMP gt SNMPv1 v2 gt Trap Configuration The SNMPv1 v2 Trap Configuration screen displays 2 Enter the fields in the first row 3 Click ADD to update the device To remove an SNMP trap 1 Click System gt SNMP gt SNMPvI1 v2 gt Trap Configuration The SNMPv1 v2 Trap Configuration screen displays 2 Select the entry to be removed Click DELETE to remove the entry SNMPv3 The SNMPv3 menu contains the following options e Engine ID e View Name e View Content e Community Configuration e Group Configuration e User Configuration e Global Trap Configuration e Trap Configuration e Trap Filter Name e Trap Filter Content Engine ID The SNMPv3 Engine ID screen allows network m
173. it The stack configuration has the following default e The stacking numbering method is set to auto numbering To configure Basic stacking 1 Click System gt Stacking gt Basic gt Stack Configuration The Basic Stack Configuration screen displays 3 13 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual yw FPF YS BN NETGEAR GS748T alport Gigabit Stackable Smart Switeh System Switching Qos Security Monitoring Maintenance Help tooour Stack Configuration Heck Configuration Stack Configuration gt Advanced Mastar Hection automatically Figure 3 6 The Basic Stack Configuration screen contains the following fields e Master Election Select the mode by which the Stacking Master is elected When the stack is powered up and completes the boot up process the Master unit is elected within 0 5 seconds Master election is based on MAC address selection The possible field values are Automatically Indicates the Stacking Master is selected automatically by software Force Master Forces the selection of a Stacking Master This causes the new Master unit to take control of the current configuration of the Stack The old Master is reset and becomes the Secondary Master Note that only Unit 1 or Unit 2 can be the Stacking Master Select the Master Election mode If you selected Force Master select either 1 or 2 from the Unit Number list Cl
174. ity String Group Na Figure 3 14 The SNMPv3 Community Configuration screen contains the following fields e Management Station IP Enter the management station IP address for which the SNMP community is defined e Community String Enter the password used to authenticate the management station to the device e Group Name Select the SNMP group from a list of SNMP groups defined in the SNMP Group Configuration screen Select the SNMP community entry Enter the Management Station and Community String in the provided fields Select the Group Name from the list Click APPLY to update the device To add a new SNMPv3 community 1 Click System gt SNMP gt SNMPv3 gt Community Configuration The SNMPv3 Community Configuration screen displays Enter the Management Station and Community String in the provided fields in the first row Select the Group Name from the list in the provided field in the first row Click ADD to update the device 3 27 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual To remove an SNMPv3 community 1 Click System gt SNMP gt SNMPv3 gt Community Configuration The SNMPv3 Community Configuration screen displays 2 Select the community entry Click DELETE to remove the entry Group Configuration The SNMPv3 Groups screen provides information for creating SNMP groups and assigning SNMP access control privileges to SNMP grou
175. ived on the interface since the device was last refreshed Oversize Packets Displays the number of oversized packets over 1518 octets received on the interface since the device was last refreshed Fragments Displays the number of fragments packets with less than 64 octets excluding framing bits but including FCS octets received on the interface since the device was last refreshed Jabbers Displays the total number of received packets that were longer than 1518 octets This number excludes frame bits but includes FCS octets that had either a bad Frame Check Sequence FCS with an integral number of octets FCS Error or a bad FCS with a non integral octet Alignment Error number The field range to detect jabbers is between 20 ms and 150 ms Collisions Displays the number of collisions received on the interface since the device was last refreshed Frames of 64 Bytes Displays the number of 64 byte frames received on the interface since the device was last refreshed Frames of 65 to 127 Bytes Displays the number of 65 to 127 byte frames received on the interface since the device was last refreshed Frames of 128 to 255 Bytes Displays the number of 128 to 255 byte frames received on the interface since the device was last refreshed Frames of 256 to 511 Bytes Displays the number of 256 to 511 byte frames received on the interface since the device was last refreshed Frames of 512 to 1023 Bytes Disp
176. ized packets less than 64 octets received on the interface since the device was last refreshed Oversize Packets Displays the number of oversized packets over 1518 octets received on the interface since the device was last refreshed Fragments Displays the number of fragments packets with less than 64 octets excluding framing bits but including FCS octets received on the interface since the device was last refreshed Jabbers Displays the total number of received packets that were longer than 1518 octets This number excludes frame bits but includes FCS octets that had either a bad Frame Check Sequence FCS with an integral number of octets FCS Error or a bad FCS with a non integral octet Alignment Error number The field range to detect jabbers is between 20 ms and 150 ms Collisions Displays the number of collisions received on the interface since the device was last refreshed Utilization Displays the percentage of the interface utilized 2 Select the History Entry No from the list in the provided field The statistics are displayed 3 To refresh the RMON History Table screen click REFRESH 7 17 Monitoring the Switch v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Events Control The RMON Events Control screen contains fields for defining RMON events To configure RMON events control 1 Click Monitoring gt RMON gt Advanced gt Events Control The RMON Events Contr
177. k layer protocols has been configured packets from each network layer protocol can be sent over the link The link remains configured for communications until explicit LCP or NCP packets close the link or until some external event occurs This is the actual switch port link type It may differ from the administrative state Configuring Switching Settings 4 38 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Disables Disables point to point link Auto Enables the device to automatically establish a point to point link This is the default value e Point to Point Operational Status Displays the point to point operational status which depends on the connecting link e Activate Protocol Migration Activate sending Link Control Protocol LCP packets to configure and test that the data link is enabled 2 Select the interface Select the Point to Point Admin Status from the list in the provided field in the first row 4 To configure and test the data link check Activate Protocol Migration in the provided field in the first row 5 Click APPLY to update the device MST Configuration Multiple Spanning Tree MST allows the user to group and associate VLANs to spanning tree instances Each Spanning Tree Instance has an independent topology of other Spanning Tree Instances The architecture provides multiple forwarding paths for data traffic thus enabling load balancing in the network an
178. l The HTML version of this manual includes the following e Buttons gt and lt for browsing forwards or backwards through the manual one page at a time e A button that displays the table of contents and a button Double click on a link in the table of contents or index to navigate directly to where the topic is described in the manual e A Fi button to access the full NETGEAR Inc online knowledge base for the product model e Links to PDF versions of the full manual and individual chapters xii About This Manual v1 0 June 2009 GS700TS Smart Switch Software Administration Manual How to Print this Manual To print this manual select one of the following options e Printing a Page from HTML Each page in the HTML version of the manual is dedicated to a major topic Select File gt Print from the browser menu to print the page contents e Printing from PDF Your computer must have the free Adobe Acrobat reader installed in order to view and print PDF files The Acrobat reader is available on the Adobe Web site at http www adobe com Printing a PDF Chapter e Click the PDF of This Chapter link at the top left of any page in the chapter you want to print The PDF version of the chapter you were viewing opens in a browser window e Click the print icon in the upper left of your browser window Printing a PDF version of the Complete Manual e Click the Complete PDF Manual link at th
179. lays the number of 512 to 1023 byte frames received on the interface since the device was last refreshed Frames of 1024 to 1522 Bytes Displays the number of 1024 to 1522 byte frames received on the interface since the device was last refreshed RMON Summary Statistics Interface Displays the port or LAG for which statistics are displayed Drop Events Displays the number of dropped events that have occurred on the interface since the device was last refreshed Received Bytes Displays the number of octets received on the interface since the device was last refreshed This number includes bad packets and FCS octets but excludes framing bits 7 13 Monitoring the Switch v1 0 June 2009 GS700TS Smart Switch Software Administration Manual e Received Packets Displays the number of packets received on the interface including bad packets Multicast and Broadcast packets since the device was last refreshed e Broadcast Packets Received Displays the number of good broadcast packets received on the interface since the device was last refreshed This number does not include Multicast packets e Multicast Packets Received Displays the number of good Multicast packets received on the interface since the device was last refreshed e CRC amp Alignment Errors Displays the number of CRC and Align errors that have occurred on the interface since the device was last refreshed 2 To view RMON Interface St
180. lect the RADIUS Server entry 3 Click DELETE to remove the entry Accounting Server Configuration RADIUS accounting enables recording of device management sessions web login logout but not SNMP as well as 802 1x authentication sessions To configure RADIUS Accounting Servers 1 Click Security gt Management Security gt RADIUS gt Accounting Server Configuration The RADIUS Accounting Server Configuration screen displays 6 4 Managing Security v1 0 June 2009 GS700TS Smart Switch Software Administration Manual wa P amp S P NETGEAR GS7A8TS 48 port Gigabit Stackable Smart Switch System Switching Qos Security Monitoring Maintenance Help Port Authentication Traffic Control ACL p Accounting Server Configuration User Configuration Change Password RADIUS Accounting Server Configuration Accounting Mode None gt RADIUS s accunting Sener Accounting Server Address Configuration Accounting Port EE gt TACACS gt Authentication List Figure 6 3 The RADIUS Accounting Server Configuration screen contains the following fields Accounting Mode Select the RADIUS accounting method The possible field values are None Indicates RADIUS accounting is disabled This is the default 802 1x Indicates 802 1x authentication sessions are recorded Login Indicates device management Web login and logout sessions are recorded Both Indicates both 802 1x auth
181. lected in the STP Configuration screen The possible field values are STP Indicates Classic STP is enabled on the device RSTP Indicates Rapid STP is enabled on the device e Fast Link Operational Status Displays the Fast Link status for the interface If Fast Link is enabled for a port the port is automatically placed in the forwarding state The possible field values are Enabled Indicates Fast Link is enabled on the interface Disabled Indicates Fast Link is disabled on the interface e Status Displays the RSTP status for the interface The possible field values are Enabled Indicates RSTP is enabled on the interface Disable Indicates RSTP is disabled on the interface This is the default value e Point to Point Admin Status Select whether a point to point link is established Ports defined as Full Duplex are considered Point to Point port links The possible field values are Enable Enables a point to point link or configure to automatically establish a point to point link To establish communications over a point to point link the originating PPP first sends Link Control Protocol LCP packets to configure and test the data link After a link is established and optional facilities are negotiated as needed by the LCP the originating PPP sends Network Control Protocol NCP packets to select and configure one or more network layer protocols When each of the chosen networ
182. les in the ACL IPv4 Rules The IPv4 Rules screen allows an IP Rule to be defined within a configured ACL Rules can be added only if the ACL is not bound to an interface To define IPv4 Rules 1 Click Security gt ACL gt IPv4 Rules The IPv4 Rules screen displays NETGEAR Gs74ets saved with inn AD port Gigabit Stockeble Smart Switch iosovt Figure 6 16 The IPv4 Rules screen contains the following fields IPv4 Rules e ACL Name Select the ACL Name from the list IPv4 Rules Table e Priority Enter the rule priority When the packet is matched to a rule user groups are either granted permission or denied device management access The rule number is essential to matching packets to rules as packets are matched on a first fit basis e Protocol ID Enter the protocol in the rule to which the packet is matched e Source IP Address Enter the source IP Address e Source Mask Enter the mask of the new source IP address e Destination IP Address Enter the destination IP address e Destination Mask Enter the mask of the new destination IP address 6 26 Managing Security v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 2 3 4 5 e Source Port Enter the source port that is matched to packets e Destination Port Enter the destination port that is matched to packets e Action Select the action applied to packets with IP addresses that have been filter
183. mbo Frames After Reset Select the Jumbo Frame status The possible field values are Enable Enables Jumbo Frames Disable Disables Jumbo Frames This is the default value The Versions Table displays the following fields e Unit No Displays the stacking member s current number Possible values are 1 6 e Model Name Displays the device model name e Hardware Version Displays the installed device hardware version number e Boot Version Displays the current boot version running on the device e Software Version Displays the installed software version number Enter the System Name System Location System Contact and Idle Timeout in the provided fields If the displayed Unit Mode needs to be changed check the Change Unit Mode box Select whether to enable or disable Jumbo Frames After Reset Click APPLY to update the system settings If you selected the Change Unit Mode box you must reset the device for the new unit mode setting to take effect See Reset for detailed instructions on resetting the device 3 3 V1 0 June 2009 GS700TS Smart Switch Software Administration Manual IP Configuration The IP Configuration screen contains fields for assigning IP addresses IP addresses are either defined as static or are retrieved using the Dynamic Host Configuration Protocol DHCP The DHCP assigns dynamic IP addresses to devices on a network DHCP ensures that network devices can have a diffe
184. mware Download 5 Firmware Upload 4 Flash Logs 6 G getting started 1 H History Table Page 16 IGMP Snooping 43 installing 3 5 interfaces switch management 2 Web browser 1 IP address default 8 L L2 43 LACP 12 LAG 4 Layer 2 43 Link Aggregated Groups 4 Link Aggregation Control Protocol 12 list of RMON events 19 logging into the switch 1 Logs Configuration 2 Index 1 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual map CoS 8 Memory Logs 4 menus 2 Multicast Forward All Page 49 Multicast Groups 47 48 N navigation menu 2 network alarms 20 network parameters 5 NIC settings 6 P password changing 9 Port mirroring 23 Port VLAN ID PVID 20 PVID 20 Q Qos 1 QoS configuration 1 Queue shaping 6 R RADIUS 2 Remote Monitoring Statistics 9 Restoring factory defaults 2 S scheduling scheme 6 security configuration 1 Server Logs 7 SNMP 17 SNMP groups 28 SNMP v3 17 stacking 8 STP 28 subnet mask 8 switch device 8 switch configuration 1 switch monitoring 1 system configuration 8 System Logs 1 system requirements 1 T TACACS 6 TDR 7 Terminal Access Controller Access Control System TACACS 6 traffic queues 9 Trap Filter 35 37 U upgrading the firmware 9 utilities Smartwizard Discovery 2 switch maintenance 1 system settings 1 V view 8 VLAN 14 16 22 VLAN Membership 17 VLANs 14 VPT 1 W Web access 7 1
185. n Manual PNG sirridir i Era DONORI aisi S PU TONGO naa AONO MO i sas vnssinanzineissadeniy asann Als merieas rareee nee e IE MOTTON SUING sirnane eae S E NE ENEE DIAGNOS TOS iarta aaa Chapter 9 Online Help Sr dal e e E ocala etc T eauee aon toene MIL a Uoor WOS eaea Chapter A Default Settings Index v1 0 June 2009 About This Manual The NETGEAR GS700TS Smart Switch Software Administration Manual describes how to install configure operate and troubleshoot the GS700TS Gigabit Stackable Smart Switch using its included software This book describes the software configuration procedures and explains the options available within those procedures Who Should Use this Book The information in this manual is intended for readers with intermediate to advanced system management skills This document was created primarily for the system administrator who wishes to install and configure the GS700TS Smart Switch in a network This user guide assumes that the reader has a general understanding of switch platforms and a basic knowledge of Ethernet and networking concepts To install this switch it is not necessary to understand and use all of its capabilities Once basic configuration is performed the switch operates using the remaining factory default parameters However a greater level of configuration anywhere from the basic up to the maximum possible will allow your network the full benefit of the switch s features
186. n STP regional bridge priority and MAC address Select Enable or Disable in the Spanning Tree State provided field Select STP RSTP or MSTP in the STP Operation Mode provided field If STP or STP operation mode were selected Enter a Configuration Name a Configuration Revision Level in the provided fields Select an Bridge Protocol Data Unit BPDU packet option from the BPDU Handling field This field is available only when STP is disabled Click APPLY to update the device CST Configuration The Common Spanning Tree CST describes the topology connecting STP RSTP Bridges and MSTP regions To configure CST on the device 1 Click Switching gt STP gt Advanced gt CST Configuration The CST Configuration screen displays 4 33 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual NETGEAR GS748TS 48 port Gigabit Stackable Sm system SEGITA Qos Security Monitoring Maintenance Help tocout CST Configuration V Advanced CST Configuration gt ETO Conf n AT Brikye Prunty Mollo Hove e i Man Age po CC Forward Dolay B ee Spanning Tree Maximum Hops F Designated Root Root Bridge 1D 00 00 b0100 00 01 Root Port Root Path Cos o MSTP Status or 1234 Figure 4 22 The CST Configuration screen contains the following fields CST Configuration e Bridge Priority Enter the bridge priority value When switches or bridges are running STP e
187. n a hub or switch is connected to an end station a straight through Ethernet cable can be used and the pairs will match up properly When two hubs or switches are connected to each other or two end stations are connected to each other a crossover cable is used to ensure that the correct pairs are connected The possible field values are 4 3 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual MDI Media Dependent Interface Connects end stations MDIX Media Dependent Interface with Crossover Connects HUBs and switches Auto Provides automatic cable type detection e LAG ID Select the LAG ID to which the selected port is assigned 2 Select the interface Enter or modify the fields in the first row 4 Click APPLY to update the device LAG A Link Aggregated Group LAG optimizes port usage by linking a group of ports together to form a single LAG Aggregating ports multiplies the bandwidth between the devices increases port flexibility and provides link redundancy Ports added to a LAG lose their individual port configuration When ports are removed from the LAG the original port configuration is applied to the ports Ensure the following when configuring LAGs e All ports within a LAG must be of the same media type e A VLAN is not configured on the port e The port is not assigned to a different LAG e Auto negotiation mode is not configured o
188. n the port e The port is in full duplex mode e All ports in the LAG have the same ingress filtering and tagged modes e All ports in the LAG have the same back pressure and flow control modes e All ports in the LAG have the same priority e All ports in the LAG have the same transceiver type e The device supports up to eight LAGs with eight ports in each LAG e LACP LAGs support up to 16 ports with eight ports active at any given time The LAG menu contains the following options e Basic e Advanced Configuring Switching Settings 4 4 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Basic The LAG Basic menu contains the following options e LAG Configuration e LAG Membership LAG Configuration The Basic LAG Configuration screen contains fields for configuring LAG parameters The system supports 8 LAGs and each LAG can contain up to 8 ports To define LAG parameters 1 Click Switching gt LAG gt Basic gt LAG Configuration The Basic LAG Configuration screen displays NETGEAR GS748TS rue u Nore D r u wW 100m None Disabled C u Up 1000m None Crested r uwa uW 10004 None Disabled Cr uo i 1000m Nre D ssbied r ua Up 100M Norm Disabled we up 1000m None Dasti r ua w 1000M Nene Crealoled Figure 4 2 The Basic LAG Configuration screen contains the following fields e Interface Displays the LAG number e Description Enter a user defined LAG des
189. nables LLDP on the device e LLDPDU Handling Select LLDPDU LLDP Data Unit packet handling when LLDP is disabled The possible field values are Flooding Indicates LLDPDU packets are flooded to all ports in the system Filtering Indicates LLDPDU packets are filtered This is the default 3 39 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual e TLV Advertised Interval Enter the rate in seconds at which LLDP advertisement updates are sent The possible field range is 5 32768 seconds The default value is 30 seconds e Topology Change Notification Interval Displays the amount of time that has elapsed since the bridge was initialized or reset or the last topology change that occurred The time is displayed in a day hour minute second format such as 2 days 5 hours 10 minutes and 4 seconds e Hold Multiplier Enter the amount of time that LLDP packets are held before the packets are discarded measured in multiples of the TLV Advertised Interval The possible field range is 2 10 The field default is 4 For example if the TLV Advertised Interval is 30 seconds and the Hold Multiplier is 4 then the LLDP packets are discarded after 120 seconds e Reinitializing Delay Enter the amount of time in seconds that passes between disabling and reinitializing LLDP The possible field range is 1 10 seconds The field default is 2 seconds e Transmit Delay E
190. nables remarking the packet CoS tag value Configuring Switching Settings 4 24 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Voice VLAN Aging Time Enter the Voice VLAN aging time The Voice VLAN aging time sets the maximum inactivity time for a Voice VLAN port member after its MAC Address is aged out If the time since the last MAC Address with telephony MAC Address was aged out exceeds the Voice VLAN aging time the port is dropped from the Voice VLAN The default time is one day The field format is Day Hour Minute The Voice VLAN aging time starts after the MAC Address is aged out from the Dynamic MAC Address table The MAC Address dynamic aging default time is 300 sec For more information on defining MAC address age out time see Dynamic Addresses Select the device VoiceVLAN Status in the provided field 3 If you selected Enable in the VoiceVLAN Status field select the VoiceVLAN ID Class of Service Remark CoS and enter the Voice VLAN Aging Time in the provided fields 4 Click APPLY to update the device Port Setting The Voice VLAN Port Setting screen allows network managers to add ports or LAGs to the Voice VLAN To add ports or LAGs to the Voice VLAN 1 Click Switching gt Voice VLAN gt Advanced gt Port Setting The Voice VLAN Port Setting screen opens e GS724AT NE TG EAR 24 port Gigabit Smart Switch tocou Port Setting Port Setting PORTS LAGS All GO TO I
191. nd interfaces Port Selection Table e Select the interfaces for which the ACLs are bound 6 24 Managing Security v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 2 Select the interfaces to which the ACLs are bound Select the ACL Name from the list in the provided field Select the interfaces to bind to the selected ACL Name by one of the following methods a Click on the Unit s or LAG s gold bar to display the associated interfaces and then select the interfaces to bind by clicking on the boxes below the interfaces or b Click on the Unit s or LAG s quick box to select all the associated interfaces 5 Click APPLY to update the device IPv4 ACL The IPv4 ACL screen allows an IPv4 Based ACL to be defined To view or rename IPv4 Based ACLs 1 Click Security gt ACL gt IPv4 ACL The IPv4 ACL screen displays NETGEAR GS748TS AB port Gigabit Stackable Smart Switch System Switching Qos Security Monitoring Maintenance Help iocour IPv4 ACL IPv4 ACL Current number of ACL IPv4 ACL Table Figure 6 15 The IPv4 ACL screen contains the following fields IPv4 ACL e Current number of ACL Displays the current number of user defined ACLs IPv4 ACL Table e Name Enter the user defined IP based ACL name Managing Security 6 25 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual e Number of Rules Displays the current number of ru
192. nding Stack Topology Stacked devices operate in a Ring or Chain topology The Ring topology connects all stacked devices in a circle Each stacked device accepts data and sends it to the device to which it is physically connected The packet continues through the stack until it reaches the destination port The system automatically discovers the optimal path by which to send traffic A Chain topology 3 9 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual connects stacking members from one to the next This provides a single data path flow The stacking members linked in the middle of the chain are connected to the stacking member on either side of them The members at the end of the chain only have one connection Stacking Ring Topology One of the benefits of the Ring topology is that it offers redundancy in case the connections between two units fail including the case where a unit in the stack fails If a failure occurs in the stacking topology the stack reverts to the Chain stacking topology In the Chain topology devices operate in a chain formation The system automatically switches to a Stacking Failover topology without any system downtime An SNMP message is automatically generated but no stack management action is required However the stacking link or stacking member must be repaired to return to the Ring topology After the stacking issues are resolved the device can be reconnect
193. ndows OS are made with entries into Windows screens similar to the ones shown below For comparison the settings screens of the switch are also shown although they do not appear in the Windows view Getting Started with Switch Management v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 2x General Authentication Advanced Connect using Realtek RTLB139 Family PCIFast Ett Configure This connection uses the following items MI IS Client for Microsoft Networks M E File and Printer Sharing for Microsoft Networks M l QoS Packet Scheduler F Intemet Protocol TCP IP Internet Protocol TCP IP Properties E 2x General You can get IP settings assigned automatically if your network supports this Otherwise you need to ask your network administrator for the appropriate IP settings Obtain an IP address automatically m Use the following IP addes IP address 192 168 0 60 Subnet mask 265 255 255 0 Default gateway 192 168 0 254 Obtain DNS server address automatically m Use the folowing DNS server addresses Prefered DNS server ia Alternate DNS server a Advanced Figure 1 4 Smartwizard Discovery MAC Adcress Protocol Version Product Name System Name 00 0F B5 97 42 2C 192 168 0 239 2 001 002 GS748TS Configuration setting Product Name GS748TS MAC Address 00 0F B5 97 42 2C P Address 192 168 0 2 Subnet Mask 255
194. nter the amount of time in seconds that passes between successive LLDP frame transmissions due to changes in the LLDP local systems MIB The possible field value is 1 8192 seconds The field default is 2 seconds LLDP MED Properties e Fast Start Duration Enter the number of times LLDP packets are sent when the LLDP MED Fast Start mechanism is initialized which occurs when a new Endpoint device links with the LLDP MED Network Connectivity Device 2 Select the LLDP global status on the device by selecting Enable or Disable in the LLDP field 3 If you selected Disable in the LLDP field select the type of LLDPDU Handling from the list in the provided field 4 Ifyou selected Enable in the LLDP field enter the TLV Advertised Interval Hold Multiplier Reinitializing Delay Transmit Delay and Fast Start Duration in the provided fields 5 Click APPLY to update the device Advanced The LLDP Advanced menu contains the following options LLDP Configuration LLDP Port Settings Managing System Settings 3 40 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual e LLDP MED Network Policy e LLDP MED Port Settings e Local Information e Neighbors Information e LLDP Statistics LLDP Configuration The Advanced LLDP Configuration screen allows network managers to assign global LLDP and LLDP MED LLDP Media Endpoint Discovery parameters To configure LLDP settin
195. of the bridge that connects the link or shared LAN to the root e Designated Port Displays the ID of the port on the designated bridge that connects the link or the shared LAN to the root 2 Select an MST to be displayed Enter or modify Port Priority and Port Path Cost fields in the first row Click APPLY to update the device Configuring Switching Settings 4 42 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Multicast Multicast forwarding allows a single packet to be forwarded to multiple destinations L2 Multicast service is based on L2 switch receiving a single packet addressed to a specific Multicast address Multicast forwarding creates copies of the packet and transmits the packets to the relevant ports e Registered Multicast traffic If traffic addressed to a registered Multicast group is seen it is handled by an entry in the Multicast Filtering Database and forwarded only to the registered ports e Unregistered Multicast traffic If traffic addressed to an unregistered Multicast group is seen it is handled by a special entry in the Multicast Filtering Database The default setting of this is to flood all such traffic traffic in unregistered Multicast groups Layer 2 switching forwards Multicast packets to all relevant VLAN ports by default treating the packet as a Multicast transmission Multicast traffic forwarding is functional However irrelevant ports also receive the Multica
196. ol screen displays 4B port Gigobit Stechoble Sm A GS748TS NETGEAR 7481S sooour Events Control Events Control Event Entry com Select ertace Community Figure 7 10 The RMON Events Control screen contains the following fields Event Entry Interface Displays the event e Community Enter the community to which the event belongs e Description Enter the user defined event description e Type Select the event type Possible values are None Indicates no event has occurred Log Indicates the event is a log entry Trap Indicates the event is a trap Log amp Trap Indicates the event is both a log entry and a trap e Time Displays the time that the event occurred e Owner Enter the device or user that defined the event Select the events control entry Enter the Community Description and Owner in the provided field in the first row Monitoring the Switch 7 18 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 4 5 Select the event Type from the list in the provided field in the first row Click APPLY to update the device To add an events control entry 1 2 3 4 Click Monitoring gt RMON gt Advanced gt Events Control The RMON Events Control screen displays Enter the Community Description and Owner in the provided field in the first row Select the event Type from the list in the provided field in the first r
197. on All Indicates the RADIUS Server is used for authenticating user names and passwords and 802 1x port authentication Managing Security 6 3 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual e Active Select the priority in which the system performs authentication with a RADIUS Server The system performs authentication initially with the RADIUS Primary Server and if it fails it performs authentication with the RADIUS Backup Server The possible values are Primary Defines the RADIUS Primary Server Backup Defines the RADIUS Backup Server 2 Select the RADIUS Server entry Enter the Host IP Address Authentication Port Number of Retries Timeout for Reply Dead Time and Key String in the provided fields in the first row 4 Select the Usage Type and Active Server from the lists in the provided fields in the first row 5 Click APPLY to update the device To add a new RADIUS Server entry 1 Click Security gt Management Security gt RADIUS The RADIUS screen displays 2 Enter the Host IP Address Authentication Port Number of Retries Timeout for Reply Dead Time and Key String in the provided fields in the first row 3 Select the Usage Type and Active Server from the lists in the provided fields in the first row 4 Click ADD to update the device To remove a RADIUS Server entry 1 Click Security gt Management Security gt RADIUS The RADIUS screen displays 2 Se
198. ond The possible field range is 4096 to 16769020 2 Select the interface 3 Choose either Enable or Disable in the Ingress Rate Limit Status provided field in the first row 4 Ifyou selected Enable in the Ingress Rate Limit Status field enter the Ingress Rate Limit in the provided field in the first row 5 Choose either Enable or Disable in the Egress Shaping Rate Status provided field in the first row 6 If you selected Enable in the Egress Shaping Rate Status field enter the Egress Shaping Rates CIR and CbS in the provided fields in the first row 7 Click APPLY to update the device Advanced The CoS Advanced menu contains the following options e CoS to Queue Mapping e DSCP to Queue Mapping e Creating Class Mapping e Policy Table Mapping e Policy Binding 5 7 Configuring QoS v1 0 June 2009 GS700TS Smart Switch Software Administration Manual CoS to Queue Mapping The CoS to Queue Mapping screen contains fields for mapping CoS values to traffic queues To map CoS values to queues 1 Click QoS gt CoS gt Advanced gt CoS to Queue Mapping The CoS to Queue Mapping screen displays NETGEAR GS748TS Connect with Innovation 48 port Gigabit Stackable Smart Swit System Switching Security Monitoring Maintenance Help LOGOUT CoS To Queue Mapping CoS To Queue Mapping cos woo es aL ie eo e o low 1 Lowest 2 Lowest 3 Low 4 Nomai 5 Noma 6 Hig
199. or each unit in a stacking configuration can be individually selected To define the active image 1 Click Maintenance gt File Management gt Active Image The Active Image screen displays NETGEAR PEIEE kia cee Active Image Active Image Figure 8 5 The Active Image screen contains the following fields e Unit No Displays the unit number for which the Image file is selected Maintenance 8 6 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual e Active Image Displays the image file which is currently active on the unit e After Reset Select the image file that is active after the specific unit is reset The possible field values are Image 1 Activates Image file 1 after the device is reset Image 2 Activates Image file 2 after the device is reset 2 Select the unit entry Select the image file to be active in the After Reset provided field in the first row 4 Click APPLY to update the device You must reset the device for the active image setting to take effect See Reset for detailed instructions on resetting the device Troubleshooting The Troubleshooting menu contains the following option e Diagnostics Diagnostics The Diagnostics menu contains the following option e Cable Test Cable Test The Cable Test screen contains fields for performing tests on copper cables Cable testing provides information about where errors
200. ord 1 Click Security gt Management Security gt User Configuration gt Change Password The Change Password screen displays GS748TS NETGEAR Ab p0r1 Gigabit Stochoble Smart Switch Change Password v User Configuration Change Sasennnd Change Password User Name Retype New Password Figure 6 1 The Change Password screen contains the following fields e User Name Displays the User Name e Old Password Enter the current password for accessing the system e New Password Enter a new password for accessing the system e Retype New Password Repeat the new password used to access the system 2 Enter the Old Password New Password and Retype New Password in the provided fields Click APPLY to update the device RADIUS Remote Authorization Dial In User Service RADIUS servers provide additional security for networks RADIUS servers provide a centralized authentication method for web access The user assigned RADIUS parameters are applied to newly defined RADIUS servers If values are not defined the system defaults are applied to the new RADIUS servers To configure RADIUS servers 1 Click Security gt Management Security gt RADIUS The RADIUS screen displays 6 2 Managing Security v1 0 June 2009 GS700TS Smart Switch Software Administration Manual NETGEAR GS7A8TS 48 port Gigabit Stackable Smart Switch System Switching Qos Security Monitoring Maintenance Help Port Authentication
201. ow Click ADD to update the device To remove an events control entry 1 2 3 Click Monitoring gt RMON gt Advanced gt Events Control The RMON Events Control screen displays Select the events control entry Click DELETE to remove the events control entry Events Log The RMON Events Log screen contains a list of RMON events To view RMON events logs 1 Click Monitoring gt RMON gt Advanced gt Events Log The RMON Events Log screen displays NETGEAR GS748TS Switching Qo Securit i aintenance elp rocout Figure 7 11 7 19 Monitoring the Switch v1 0 June 2009 GS700TS Smart Switch Software Administration Manual The RMON Events Log screen contains the following fields e Event Displays the RMON Events e Log Number Displays the log number e Log Time Displays the time when the log entry was entered e Description Displays the log entry description 2 To refresh the RMON Events Log screen click REFRESH Alarms The RMON Alarms screen contains fields for setting network alarms Network alarms occur when a network problem or event is detected Rising and falling thresholds generate events To set RMON alarms 1 Click Monitoring gt RMON gt Advanced gt Alarms The RMON Alarms screen displays NETGEAR GS748TS Falling f aling nt Threshold Event Startup Alarm Interval Owne Figure 7 12 The RMON Alarms screen contains the following fields
202. packet is matched to a rule user groups are either granted permission or denied device management access The rule number is essential to matching packets to rules as packets are matched on a first fit basis e Protocol ID Enter the protocol in the rule to which the packet is matched 6 30 Managing Security v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 2 3 4 5 Source IP Address Enter the source IP Address e Prefix Length Enter the source IP Prefix Length The Prefix field is applicable only when the IPV6 Static IP address is defined as a Global IPv6 address The range is 5 128 e Destination IP Address Enter the destination IP address e Prefix Length Enter the destination IP Prefix Length The Prefix field is applicable only when the IPV6 Static IP address is defined as a Global IPv6 address The range is 5 128 e Source Port Enter the source port that is matched to packets e Destination Port Enter the destination port that is matched to packets e DSCP Match the packet DSCP value to the ACL Either the DSCP value or the IP Precedence value is used to match packets to ACLs The possible field range is 0 63 e IP Prec Match the packet IP Precedence value to the ACL e Action Select the action applied to packets with IP addresses that have been filtered The possible field values are Permit Permits access to the device Deny Denies
203. pload the Firmware File Configuration Upload the Configuration File via TFTP Select to upload the Firmware or Configuration File to the TFTP Server via HTTP Select to upload the Configuration File via the web browser interface HTTP TFTP Server IP Enter the TFTP Server IP Address to which the Firmware or Configuration file is uploaded Remote Filename Enter the name of the destination file on the TFTP server 2 Select Firmware or Configuration as the upload File Type from the provided field Select whether to upload via TFTP or via HTTP If you selected the Firmware File to upload you must select via TFTP 4 Ifyou selected via TFTP enter the TFTP Server IP address in the provided field 5 If you selected via TFTP enter the Remote Filename in the provided field 6 Click APPLY to upload the file Maintenance 8 4 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Download The Download menu contains the following option e Download Download System files can be downloaded using the Download screen To download system files 1 Click Maintenance gt Download The Download screen displays NETGEAR GS748TS Download File Download FileType Ferme G via mie C via wre TETP Server IP Remote Hlename Figure 8 4 The Download screen contains the following fields File Type Enter the file type to be downloaded The possible fi
204. port Gigabit Stockable Smart Switch Policy Binding Policy Binding Policy Name fa Port Selection Table Figure 5 9 The Policy Binding screen contains the following fields Policy Binding Table e Policy Name Displays the user defined policy name Port Selection Table e Port Number Displays the bound and unbound ports on the device 5 13 Configuring QoS v1 0 June 2009 Chapter 6 Managing Security Setting Security Configuration Options The navigation pane at the top of the web browser interface contains a Security tab that enables you to manage your GS700TS Smart Switch with features under the following main menu options e Management Security e Port Authentication e Traffic Control e ACL The description that follows in this chapter describes configuring and managing security settings in the GS700TS Smart Switch Management Security The Management Security menu contains the following options e User Configuration e RADIUS TACACS e Authentication List User Configuration The User Configuration menu contains the following options e Change Password 6 1 V1 0 June 2009 GS700TS Smart Switch Software Administration Manual Change Password The Change Password screen contains parameters for configuring device passwords Authentication on this device uses only a password not a username To change the device passw
205. ps Groups allow network managers to assign access rights to specific device features or feature aspects To define an SNMP group 1 Click System gt SNMP gt SNMPv3 gt Group Configuration The SNMPv3 Groups screen displays NETGEAR GS748TS 4B port Gigablt Stackable Smart Switch Figure 3 15 The SNMPv3 Groups screen contains the following fields e Group Name Enter the user defined group to which access control rules are applied The field range is up to 30 characters e Security Model Select the SNMP version associated with the group The possible field values are SNMPv1 SNMPv1 is defined for the group SNMPv2 SNMPv2c is defined for the group Managing System Settings 3 28 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 5 SNMPv3 SNMPv3 is defined for the group e Security Level Select the security level attached to the group Security levels apply to SNMPv3 only The possible field values are No Authentication Neither the Authentication nor the Privacy security levels are assigned to the group Authentication Authenticates SNMP messages and ensures that the SNMP message s origin is authenticated Privacy Encrypts SNMP messages e Operation Select the group access rights The possible field values are Read Management access is restricted to read only Changes are made to the assigned SNMP view Writ
206. rd method of Authentication enter the Password in the provided field in the first row If you selected a key method of Authentication enter the Authentication Key and Privacy Key in the provided fields in the first row Click ADD to update the device 3 31 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual To remove an SNMPv3 user 1 Click System gt SNMP gt SNMPv3 gt Users Configuration The SNMPv3 User Configuration screen displays Select the user entry Click DELETE to remove the entry Global Trap Configuration The SNMPv3 Global Trap Settings screen contains parameters for defining SNMP notification parameters To configure SNMP notification global parameters 1 Click System gt SNMP gt SNMPv3 gt Global Trap Configuration The SNMPv3 Global Trap Settings screen displays GS748TS keble Smart Switch AD pert Gigabit Stee System Switching Qos Security Monitoring Maintenance Help tocour Global Trap Settings Global Trap Settings SNMP Notifications Authentication Notifications C Disable Enable Figure 3 17 The SNMPv3 Global Trap Settings screen contains the following fields e SNMP Notifications Select whether or not the device can send SNMP notifications The possible field values are Disable Disables SNMP notifications Enable Enables SNMP notifications The is the default value Managing System S
207. re detailed discussion of the SmartWizard Discovery utility continue with this section Network with a DHCP Server or Network without a DHCP Server For a detailed discussion of the Web Browser Interface see Chapter 2 Introduction to the Web Browser Interface Network with a DHCP Server To install the switch in a network with a DHCP server proceed as follows 1 Connect the GS700TS Smart Switch to a DHCP network 2 Power on the switch by connecting its AC DC power adapter 3 Install the SmartWizard Discovery utility located on the switch installation CD on your computer 4 Start the SmartWizard Discovery utility Click Discover for the SmartWizard Discovery utility to find your GS700TS Gigabit Stackable Smart Switch You should see a screen similar to that shown below Getting Started with Switch Management v1 0 June 2009 GS700TS Smart Switch Software Administration Manual rJ Smartwizard Discove ry File Hel Device List MAC Address IP Address Protocol Version Product Name System Name Location 00 0F B5 97 42 2C 192 168 0 239 2 001 002 Gs748Ts z DHCP Refresh Discover Device Setting aa o wa a nn ee aeee ne e Configuration Setting Password Change Web Access Firmware Upgrade Exit Figure 1 1 6 Note the displayed IP address assigned by the DHCP server You will need this value to access the switch directly from a web browser without using the SmartWiz
208. re updated or aged out The LLDP Statistics screen also contains statistics for LLDP packets received dropped aged out and TVLs recieved To view LLDP statistics 1 Click System gt LLDP gt Advanced gt LLDP Statistics The LLDP Statistics screen displays Managing System Settings 3 56 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual GS748TS koble Smari Switch A8 port Gigabit Sioc System Switching Qos Security Monitoring Maintenance Help tocour LLDP Statistics Adwana ed LLDP Statistics Figure 3 29 The LLDP Statistics screen contains the following fields Last Update Indicates the last time the LLDP statistics were updated The date and time are displayed inthe following format day month year hour minute second Total Inserts Indicates the total number of new entries since the last time the table was last updated Total Deletes Indicates the total number of deleted entries since the table was last updated Total Drops Indicates the total number of entries that could not be added to the table due to lack of resources These entries are dropped Total Age outs Indicates the total amount of entries that were aged out since the table was last updated Interface Indicates the stacking member for which the LLDP statistics are displayed Tx Frames Total Indicates the total amount of LLDP packets transmitted on the port Rx Frames Indicates
209. rent IP address every time the device connects to the network Note the following when configuring IP Addresses e If the device is accessed using SmartWizard Discovery the IP address retrieved through DHCP is displayed e If the device fails to retrieve an IP address through DHCP the default IP address is 192 168 0 239 The IP Interface screen also contains information for defining default gateways and selecting a Management VLAN ID To define an IP interface 1 Click System gt Management gt IP Configuration The IP Configuration screen displays NETGEAR GS748TS AB port Gigebs Stocheble Smart Switch Switching Qos Security Monitoring Maintenance Help socour IP Configuration system Information v IP Configuration IP Configuration Anz G Got Dynamic IP From DHCP Server C Static 1P Address Address Subnet Mask Gatow r Management VLAN i Management VLAN 10 Figure 3 2 The IP Configuration screen contains the following fields e Get Dynamic IP from DHCP Server Enables the IP address to be configured automatically by the DHCP server Selecting this field disables the IP Address Subnet Mask Gateway and Delete fields This is the default value e Static IP Address Enables the user to define a static IP address e IP Address Enter the static IP address used to manage the device Managing System Settings 3 4 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual
210. requency at which traps are sent The field format is in seconds The range is 1 1 000 000 The default value is 10 seconds 2 Select the port security Status Learning Mode Action and Trap status from the lists in the provided fields in the first row Enter the Max Entries and Trap Frequency in the provided fields in the first row Click APPLY to update the device Protected Ports The Protected Ports Membership screen allows network managers to define protected port membership Protected ports isolates Layer 2 traffic between interfaces that share the same Broadcast domain The isolated ports are defined as protected ports and can forward traffic to unprotected ports but not to other protected ports Undefined ports are perceived as unprotected and can send traffic to any port whether protected or unprotected The default configuration is unprotected To define protected ports 1 Click Security gt Traffic Control gt Protected Ports gt Protected Ports Membership The Protected Ports Membership screen displays Managing Security 6 19 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual NETGEAR GS748TS 48 port Gigabit Stackable Smart Switch System Switching Qos Security Monitoring Maintenance Help tocour Management Security Port Authentication gt Storm Control p Protected Ports Membership gt Port Security v Protected Ports Protected Ports Membership Figure 6
211. rface supports transmission between the device and the client in only one direction at a time Full Indicates the interface supports transmission between the device and its link partner in both directions simultaneously Auto Indicates the interface supports transmission between the device and the link partner based on the transmission mode of the link partner Auto Negotiation Select the port auto negotiation status Auto negotiation is a protocol between two link partners that enables a port to advertise its transmission rate duplex mode and flow control abilities to its partner The possible field values are Enable Enables auto negotiation This is the default value Disable Disables auto negotiation Back Pressure Select the back pressure mode of the Port Back Pressure mode is used with half duplex mode to disable ports from receiving messages Back Pressure mode is disabled by default The possible field values are Enable Enables back pressure mode Disable Disables back pressure mode Flow Control Select the flow control status of the port Operates when the port is in full duplex mode Flow control is disabled by default The possible field values are Enable Enables flow control Disable Disables Flow control MDI MDIX Select the MDI MDIX status of the port Hubs and switches are deliberately wired opposite the way end stations are wired so that whe
212. ridge Multicast filtering status on the device The possible field values are Disables Disables Multicast filtering on the device If Multicast filtering is disabled Multicast frames are flooded to all ports in the relevant VLAN Disabled is the default value Enables Enables Multicast filtering on the device Interface Settings VLAN ID Displays the VLAN ID Status Select the IGMP Snooping status on the VLAN The possible field values are Enable Enables IGMP Snooping on the VLAN Disable Disables IGMP Snooping on the VLAN Auto Learn Select the Auto Learn status on the device If Auto Learn is enabled the devices automatically learns where other Multicast groups are located The possible field values are Enable Enables auto learn Disable Disables auto learn Host Timeout Enter the amount of time in seconds the host waits to receive a message before timing out The default value is 260 seconds MRouter Timeout Enter the amount of the time in seconds the Multicast router waits to receive a message before it times out The default value is 300 seconds Leave Timeout Enter the amount of time in seconds the host waits after requesting to leave the IGMP group and not receiving a Join message from another station before timing out If a Leave Timeout occurs the switch notifies the Multicast device to stop sending traffic The field range is 0 2147483647 The def
213. rovided field in the first row Enter the UDP Port in the provided field in the first row Select the Filter Name from the list in the provided field in the first row Enter the Timeout and Retries in the provided fields in the first row Click APPLY to update the device To add a new trap 1 Click System gt SNMP gt SNMPv3 gt Trap Configuration The SNMPv3 Trap Configuration screen displays Managing System Settings 3 34 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual SE LE IE ee Enter the Recipients IP address in the provided field in the first row Select either Traps or Informs in the Notification Type provided field in the first row Enter the User Name in the provided field in the first row Select the Security Level from the list in the provided field in the first row Enter the UDP Port in the provided field in the first row Select the Filter Name from the list in the provided field in the first row Enter the Timeout and Retries in the provided fields in the first row Click ADD to update the device To remove a trap 1 2 3 Click System gt SNMP gt SNMPv3 gt Trap Configuration The SNMPv3 Trap Configuration screen displays Select the trap entry Click DELETE to remove the entry Trap Filter Name The SNMPv3 Trap Filter Name screen permits creating filtering names based on OIDs Each OID is linked to a device feature or a portion of a feature The SNMPv3 Trap
214. rt Switch Software Administration Manual Work Area Located on the right side of the NETGEAR GS700TS web browser interface and marked as 3 in Figure 2 2 The Work Area contains device tables general device information and configurable device parameters For further description of the functions refer to the appropriate section of this manual e Chapter 3 Managing System Settings describes how to configure the System functions e Chapter 4 Configuring Switching Settings describes how to configure the Switch functions e Chapter 5 Configuring QoS describes how to configure QoS functions e Chapter 6 Managing Security describes how to configure Security functions e Chapter 7 Monitoring the Switch describes how to configure Monitoring functions e Chapter 8 Maintenance describes maintenance functions such as firmware upgrade e Chapter 9 Online Help describes how to obtain online help and support Using the NETGEAR Web Management System Options The GS700TS web browser interface provides the following options e Device Management Buttons Provides an explanation of the management buttons in the NETGEAR GS700TS Smart Switch e Informational Services Provides access to informational services including technical support online help and device information e Using Screen and Table Options Provides an explanation of specific GUI characteristics and tables for configuring th
215. s Displays the advertised VLAN names Protocol IDs Protocol ID Displays the advertised protocol IDs MED Details Capabilities Supported Displays the MED capabilities enabled on the port Current Capabilities Displays the MED TLVs advertised by the port Device Class Displays the LLDP MED endpoint device class The possible device classes are Endpoint Class 1 Indicates a generic endpoint class offering basic LLDP services Endpoint Class 2 Indicates a media endpoint class offering media streaming capabilities as well as all Class 1 features Endpoint Class 3 Indicates a communications device class offering all Class 1 and Class 2 features plus location 911 Layer 2 switch support and device information management capabilities PoE Device Type Displays the port PoE type For example Powered PoE Power Source Displays the port s power source PoE Power Priority Displays the port s power priority PoE Power Value Displays the port s power value Hardware Revision Displays the hardware version Firmware Revision Displays the firmware version Software Revision Displays the software version Serial Number Displays the device serial number Manufacturer Name Displays the device manufacturer name Model Name Displays the device model name Asset ID Displays the asset ID 3 55 Managing System Settings v1 0 June 2009 GS700T
216. s and port ID advertisement as well as system name system ID system description and system capability advertisements The LLDP menu enables configuration of LLDP parameters and contains the following options e Basic e Advanced Managing System Settings 3 38 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Basic The LLDP Basic menu contains the following option e LLDP Configuration LLDP Configuration The Basic LLDP Configuration screen allows network managers to assign global LLDP and LLDP MED LLDP Media Endpoint Discovery parameters To configure LLDP settings 1 Click System gt LLDP gt Basic gt LLDP Configuration The Basic LLDP Configuration screen displays 7 GS748TS NETGEAR Ab port Gigabit Stecheble Smart Switch System Switching QoS Securit y Monitoring y Maintenance Help tocour LLDP Configuration D LLDP Configuration LLDP Properties gt Advanced top G visable C tnable LLOPOU Handling Flroding TLV Advertised Interval Topology Change Notification Interval F use Hold Multiplier f Reinitakring Dell franamit Orel al LLOP MED Properties Fast Start Duration SEs Figure 3 21 The Basic LLDP Configuration screen contains the following fields LLDP Properties e LLDP Select the LLDP global status on the device The possible field values are Disable Disables LLDP on the device This is the default value Enable E
217. s are not functioning while the rest of the device ports remain functional Error Indicates a system error has occurred for example if a single port is offline Warning Indicates the lowest level of a system warning The device is functioning but an operational problem has occurred Notice Indicates the system is functioning properly but a system notice is logged Informational Provides device information Debug Provides debugging messages 2 Select the minimum severity level for RAM logs 3 Select the minimum severity level for FLASH logs 4 Click APPLY to update the device Memory Log The Memory Log screen contains all system logs in a chronological order that are saved in RAM Cache The memory logs are unavailable after reboot To view the Memory Log screen 1 Click Monitoring gt Logs gt Memory Log The Memory Log screen displays Monitoring the Switch 7 4 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual GS748TS lochoble Smert Switch 48 pos Gigabit Stoc NETGEAR System Switching o curi itori jaintenanc Gosov RMON Port Mirroring Memory Log Note Logs stored in SORAM memory are mot saved after devise reset Memory Log First Previous Next All Jon 2 Ero NAAA E AUTHEAL Autnenscation foiea for Pia source 10 6 39 20 12 01 Jan 2000 01 5012 Error NAAAE AUTHFAL Autnenteaton fated for hitg source 19 amp 39 16 an 2000014855 E MAAKEAUTHF
218. s to queues 1 Click QoS gt CoS gt Advanced gt DSCP To Queue Mapping The DSCP To Queue Mapping screen displays NETGEAR Connect with Innovation System Switching Qos Security Monitoring Maintenance Help v Basic v Advanced gt CoS to Queue Mapping DSCP to Queue Mapping gt Class Mapping gt Policy Table gt Policy Binding DSCP To Queue Mapping DSCP To Queue Mapping Class Selector CS PHB osc in queue _ osch in aueue _ osch in aueue_ osch in ucu cst cs2 cs3 cs4 coooen0 Lowest Corooo Lome E roo Lowest Crrooo Lowest E cs Lowest CSS Lowest 6S Lowest S3 Lowest 100000 101000 110000 111000 Assured Forwarding AF PHB Joscp in queue __ pscp in queue scr in queue _ oscr in queue _ AF11 AF 21 AF 31 AF 41 001010 Lowest z 010010 Lowest z 011010 Lowest z 100010 Lowest _ EED Lowest z ES Lowest _ Er Lowest x Eere Lowest AF13 AF 23 AF 33 AF 43 ooo ower E orotic onet conio Lowest Croatia iones E Expedited Forwarding EF PHB iea o a EF 101110 Lowe Fosce in aueue Josce in queue Josce 1m ausus Joser to aueue 41 000001 Lowest 2000010 Lowest 3 000011 Lowest 4000100 Lowest 000101 Lowest 6 000110 Lowest 7 000111 Lowest 9 001001 Lowest a1 001011 Low 13001101 Low 18 001111 Low 17010001 Low 49 010011 Low 210101 Low 2300 Low 25 011001 Low GS7A8TS 48 port Gigabit Stack
219. screen contains the following fields Device Information e Chassis ID Subtype Displays the chassis ID type For example MAC address Managing System Settings 3 48 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Chassis ID Displays the chassis identification of the device transmitting the LLDP frame System Name Displays the administratively assigned device name System Description Describes the device For example system hardware type and version operating system and network software System Capabilities Describes the primary device function For example Bridge Router Port Information Interface Displays the port number Port ID SubType Displays the port ID type For example MAC address Port ID Displays the port identification of the port transmitting the LLDP frame Port Description Displays information about the port including manufacturer product name and hardware software version Advertisement Displays the advertisement status of the port The possible field values are Enable Enables advertisement on the port Disable Disables advertisement on the port 2 Click REFRESH to refresh the Local Information screen To view LLDP MED detailed port information 1 Click System gt LLDP gt Advanced gt Local Information The LLDP MED Local Information screen displays 2 Click the Interface to view its detailed information The Port
220. ser Configuration Change Ba TACACS RADIUS 1 Y TACACS Authentication Lst Figure 6 4 The TACACS screen contains the following fields e Host IP Address Enter the TACACS Server IP address e Key String Enter the default authentication and encryption key for TACACS communication between the device and the TACACS server e Authentication Port Enter the port number via which the TACACS session occurs The default port is port 49 e Timeout for Reply Enter the amount of time in seconds the device waits for an answer from the TACACS server before retrying the query or switching to the next server Possible field values are 1 30 The default value is 5 6 6 Managing Security v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 5 e Single Connection Select whether a single open connection between the host Authentication Port and the TACACS server is enabled or disabled The possible field values are Enable Enables a single connection Disable Disables a single connection e Active Select whether this server is the Primary or Backup TACACS server used for authentication The possible values are Primary Defines the TACACS server as the Primary Server Backup Defines the TACACS as the Backup Server Select the TACACS server entry Enter the Host IP Address Key String Authentication Port and Timeout for Reply in the pro
221. splays the name of the VLAN e VLAN Type Displays the VLAN type The possible field values are Static Indicates the VLAN is user defined Default Indicates the VLAN is the default VLAN The default VLAN is enabled e Group Operation Select the VLAN membership for all ports and LAGs The possible field values are Tag All Defines all selected interfaces as tagged VLAN members Packets belonging to the respective VLAN are tagged The packets contain VLAN information Untag All Defines all selected interfaces as untagged VLAN members Packets belonging to the respective VLAN are untagged Remove All Removes all the interfaces participating in the VLAN 2 Select the VLAN ID from the list in the provided field 3 Select the Group Operation from the list in the provided field 4 Click APPLY to update the device Configuring Switching Settings 4 18 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual To tag or untag selected ports or LAGs 1 Click Switching gt VLAN gt Advanced gt VLAN Membership The VLAN Membership screen displays Click a gold button to display the ports or LAGs Click the boxes below the selected ports or LAGs to mark them as tagged T or untagged U Click APPLY to update the device To tag or untag all the ports within a stacking unit or all the LAGs 1 3 Click Switching gt VLAN gt Advanced gt VLAN Membership The VLA
222. st causing increased network traffic Multicast forwarding filters enable forwarding of Layer 2 packets to port subsets defined in the Multicast filter database The device supports forwarding L2 Multicast Packets Multicast forwarding is enabled by default and not configurable by user The Multicast menu contains the following options e Basic e Advanced Basic The Multicast Basic menu contains the following options e IGMP Snooping Configuration IGMP Snooping Configuration The IGMP Snooping Configuration screen contains information for enabling and defining IGMP Snooping on the device When IGMP snooping is enabled all IGMP packets are forwarded to the CPU The CPU analyzes the incoming packets and determines which ports to join which Multicast groups which ports have Multicast routers generating IGMP queries and what routing protocols are forwarding packets and Multicast traffic A port requesting to join a specific Multicast group issues an IGMP report specifying that Multicast group This results in the creation of the Multicast filtering database 4 43 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual To configure Basic IGMP Snooping 1 Click Switching gt Multicast gt Basic gt IGMP Snooping Configuration The Basic IGMP Snooping Configuration screen displays NETGEAR GS748TS 48 port Gigabit Stackable Smart Switch System Switching Qos S
223. st MAC First Previous Next Ali Figure 6 21 The Binding Table screen contains the following fields Interface Binding Table e Interface Displays the interfaces for which the ACLs are bound e MAC ACL Displays the MAC Based ACL bound to the interface e IPv4 ACL Displays the IPv4 Based ACL bound to the interface e IPv6 ACL Displays the IPv6 Based ACL bound to the interface Managing Security 6 33 v1 0 June 2009 Chapter 7 Monitoring the Switch Setting Monitoring Options The navigation pane at the top of the web browser interface contains a Monitoring tab that enables you to manage your GS700TS Smart Switch with features under the following main menu options e Logs e RMON e Port Mirroring The description that follows in this chapter describes configuring and managing monitoring settings in the GS700TS Smart Switch Logs Event messages have a unique format as per the SYSLOG RFC recommended message format for all error reporting for example Syslog local device reporting Messages are assigned a severity code and include a message mnemonic which identifies the source application generating the message Messages are filtered based on their urgency or relevancy The following table contains the Log Severity Levels Table 7 1 Severity Levels Severity Severity Level Severity Level Description Emergency 0 The system is not functioning Alert 1 The system
224. sts for the selected port Cable Length Displays the approximate cable length This test can only be performed when the port is up and operating at 100Mbps or 1 Gbps 2 On the row containing the interface to be tested click TEST to test the cable connected to the interface Maintenance 8 8 v1 0 June 2009 Chapter 9 Online Help Online Help The navigation pane at the top of the web browser interface contains a Help tab that provides access to informational services including support and an online user guide in PDF format The Help menu contains the following options e Support e User Guide The description that follows in this chapter covers these features Support The Support screen provides access to the NETGEAR online support site at www netgear com To access the Support screen 1 Click Help gt Online Help gt Support The Online Help menu opens and the Support screen displays NETGEAR ieee System Switching Qos Security Monitoring Maintenance 1ocour Support X gt User Cuide Support Please cick APPLY below to be taken to the On ne Support site at netgearcom Figure 9 1 2 Click APPLY to go to the NETGEAR Online Support site at www netgear com 9 1 V1 0 June 2009 GS700TS Smart Switch Software Administration Manual User Guide The User Guide screen provides access to the online User Guide To view the User Guide screen 1 Click Help gt Onlin
225. t 4 g1 02 93 94 95 96 97 98 99 g10 g11 913 g14 915 916 917 918 919 g20 q21 922 923 924 925 926 927 928 929 930 931 932 933 934 935 936 937 038 939 940 941 942 943 044 945 946 947 948 Unit 5 91 92 93 94 95 96 97 98 99 910 g11 912 913 g14 g915 g17 g18 g19 920 g21 922 923 924 925 926 927 928 929 930 931 932 933 934 935 936 937 938 939 940 941 942 943 944 945 946 947 948 Unit 6 g1 92 93 94 95 96 97 98 99 910 g11 912 913 g14 g15 g16 917 g18 g19 g21 g22 923 924 925 026 927 028 929 930 931 932 933 034 935 936 937 938 939 940 941 942 943 944 945 946 947 048 LAG 1 3 4 5 6 7 8 Figure 4 14 Port PVID Configuration The Port PVID Configuration screen contains parameters for assigning Port VLAN ID PVID values to interfaces All ports must have a defined PVID If no value is defined the default VLAN PVID is used VLAN ID 1 belongs to the default VLAN which cannot be deleted from the system Once the PVID is changed from 1 to another VLAN ID on an interface the default VLAN on that interface is automatically removed To configure Port PVID parameters 1 Click Switching gt VLAN gt Advanced gt Port PVID Configuration The Port PVID Configuration screen displays Configuring Switching Settings 4 20 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual NETGEAR GS748TS 40 port Gigabit Stoe ocou sick Port PVID Configuration E Port PVID Configuration gt VLAN Membership 123456
226. t the Interface to configure Select the Admin Status from the list in the provided field in the first row Select the Management IP Address from the list in the provided field in the first row Select the Notification status from the list in the provided field in the first row Select the Optional TLVs status from the list in the provided field in the first row Click APPLY to update the device LLDP MED Network Policy The LLDP MED Network Policy screen allows network administrators to define LLDP MED network policies which include the application VLAN ID VLAN type user priority and DSCP value LLDP Media Endpoint Discovery LLDP MED increases network flexibility by allowing different IP systems to coexist on a single network LLDP Provides detailed network topology information including what devices are located on the network and where the devices are located For example what IP phone is connected to what port what software is running on what switch and what port is connected to what PC Automatically deploys policies over networks for QoS Policies Voice VLANs Provides Emergency Call Service E 911 via IP Phone location information Managing System Settings 3 44 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual e Provides troubleshooting information LLDP MED sends network managers alerts for Port speed and duplex mode conflicts QoS policy misconfigurations To configure L
227. tatic Addresses Advanced Static Addresses ra gt Dynamic A ddresses SOSSE m E E E SS 0 The Static Addresses screen contains the following fields e VLAN ID Select the VLAN ID number to which the entry refers e MAC Address Enter the MAC address to which the entry refers 4 53 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual e Interface Enter the interface to which the entry refers e Status Select the MAC Address duration period status within the table The possible field values are Permanent Indicates the MAC address is permanent Delete on Reset Indicates the MAC address is deleted when the device is reset Delete on Timeout Indicates the MAC address is deleted when the Address Aging Interval expires Secure Indicates the MAC Address is defined for locked interfaces 2 Select the address table entry Enter the MAC Address and Interface in the provided fields in the first row 4 Select the MAC Address duration period Status from the list in the provided field in the first TOW 5 Click APPLY to update the device Dynamic Addresses The Dynamic Addresses screen contains information about the aging time before a dynamic MAC address is erased To configure the Dynamic MAC Address table 1 Click Switching gt Address Table gt Advanced gt Dynamic Addresses The Dynamic Addresses screen displays NETGEAR GS748T
228. tch the ACL are matched to the default rule which is Drop unmatched packets To bind IPv4 interfaces to an ACL 1 Click Security gt ACL gt IPv4 Binding Configuration The IPv4 Binding Configuration screen displays NETGEAR GS748TS 48 port Gigabit Srochoble Swor Switch MAC Binding Configuration MAC Binding Configuration ACL Name ans Port Selection Table Figure 6 17 The IPv4 Binding Configuration screen contains the following fields IPv4 Binding Configuration e ACL Name Select the ACL Name for viewing and modifying ACL bound interfaces Port Selection Table e Select the interfaces for which the ACLs are bound 2 Select the interfaces to which the ACLs are bound Select the ACL Name from the list in the provided field 6 28 Managing Security v1 0 June 2009 GS700TS Smart Switch Software Administration Manual IPv6 ACL The IPv6 ACL screen allows an IPv6 Based ACL to be defined To view or rename IPv6 Based ACLs 1 Click Security gt ACL gt IPv6 ACL The IPv6 ACL screen displays 748T NETGEAR at pan One taal ar son System Switching Qos Security Monitoring Maintenance Help Losout t Security Port Authentication Traffic Control IPv6 Rules 1Pv6 Rules ACL Narve ACL IPv6 Rules Table Figure 6 18 The IPv6 ACL screen contains the following fields IPv6 ACL e Current number of ACL Displays the current number of user defined ACLs IPv6 ACL Table e Name
229. tform specific functionality of the Switching SNMP Config and Management packages Conventions Formats and Scope The conventions formats and scope of this manual are described in the following paragraphs e Typographical Conventions This manual uses the following typographical conventions Italics Emphasis books CDs file and server names extensions Bold User input IP addresses GUI screen text Fixed Command prompt CLI text code italics URL links e Formats This manual uses the following formats to highlight special messages gt Note This format is used to highlight information of importance or special interest 6 Tip This format is used to highlight a procedure that will save time or resources Warning Ignoring this type of note may result in a malfunction or damage to the equipment About This Manual xi v1 0 June 2009 GS700TS Smart Switch Software Administration Manual AY Danger This is a safety warning Failure to take heed of this notice may result in personal injury or death e Scope This manual is written for the GS700TS Smart Switch according to these specifications Product Version GS700TS Gigabit Stackable Smart Switch Manual Publication Date June 2009 gt Note Product updates are available on the NETGEAR Inc website at http www netgear com support How to Use This Manua
230. third highest warning level A critical log is saved if a critical device malfunction occurs for example two device ports are not functioning while the rest of the device ports remain functional Error Indicates a system error has occurred for example if a single port is offline Warning Indicates the lowest level of a system warning The system is functioning but an operational problem has occurred Notice Indicates the system is functioning properly but a system notice is logged Informational Provides device information 7 3 Monitoring the Switch v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Debug Provides debugging messages e Log File Select the minimum message severity level to appear in the log file The following are the available message severity levels Emergency Indicates the device is not functioning Emergency is the highest warning level If the device is down or not functioning properly an emergency log message is saved to the specified logging location Alert Indicates the device needs immediate attention Alert is the second highest warning level An alert log is saved if there is a serious device malfunction for example all device features are down Critical Indicates the device is in a critical state Critical is the third highest warning level A critical log is saved if a critical device malfunction occurs for example two device port
231. tners that enables a port to advertise its transmission rate and flow control abilities to its partner Auto Negotiation is enabled by default The possible field values are Enable Enables auto negotiation Disable Disables auto negotiation e Flow Control Select the flow control status of the LAG Operates when the LAG is in full duplex mode Flow Control is disabled by default The possible field values are Enable Enables flow control Disable Disables flow control 2 Select the interface Enter or modify the fields in the first row Click APPLY to update the device Configuring Switching Settings 4 6 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual LAG Membership The Basic LAG Membership screen allows network managers to assign ports to LAGs To assign ports to LAGs 1 Aw PF amp Click Switching gt LAG gt Basic gt LAG Membership The Basic LAG Membership screen displays NETGEAR i GS748TS AD port Gigabit Stecheble Swert Switch LAG Membership Membership Figure 4 3 The Basic LAG Membership screen contains the following fields e LAG ID Select the LAG ID e LAG Name Displays the user defined LAG name e LAG Type Select the LAG type The possible field values are Static Indicates the LAG is configured manually LACP Indicates the LAG is configured dynamically Select the LAG ID and LAG Type Click on the
232. ue is 50 e Current Number of Samples Displays the current number of samples taken e Owner Enter the RMON station or user that requested the RMON information Select the history control entry Enter the Source Interface Sampling Interval Samples Requested and Owner in the provided field in the first row Click APPLY to update the device To add a history control entry 1 Click Monitoring gt RMON gt Advanced gt History Control The RMON History Control screen displays 2 Enter the Source Interface Sampling Interval Samples Requested and Owner in the provided field in the first row 3 Click ADD to update the device 7 15 Monitoring the Switch v1 0 June 2009 GS700TS Smart Switch Software Administration Manual To remove a history control entry 1 Click Monitoring gt RMON gt Advanced gt History Control The RMON History Control screen displays Select the history control entry Click DELETE to remove the history control entry History Table The RMON History Table screen contains interface specific statistical network samples Each table entry represents all counter values compiled during a single sample To view the RMON History Table 1 Click Monitoring gt RMON gt Advanced gt History Table The RMON History Table screen displays NETGEAR GS748TS Switching History Table History Entry History Entry no E Owner History Table Figure 7 9 The RMON
233. ugging feature Port mirroring also enables switch performance monitoring Network administrators can configure port mirroring by selecting a specific port from which to copy all packets and other ports to which the packets are copied The device supports one destination port and up to eight source ports The Port Mirroring menu contains the following option e Port Mirroring Port Mirroring To define port mirroring 1 Click Monitoring gt Port Mirroring gt Port Mirroring The Port Mirroring screen displays NETGEAR GS748TS Smert Switch 4B por Gigabit Stackable System switching o ecuri aintenance icour Port Mirroring Destination Port Destination Port Source Port Table Figure 7 13 The Port Mirroring screen contains the following fields Destination Port e Destination Port Enter the port to which port traffic is copied Source Port Table e Source Port Enter the port from which the packets are mirrored 7 23 Monitoring the Switch v1 0 June 2009 GS700TS Smart Switch Software Administration Manual 2 3 4 5 e Type Select the port mode configuration for port mirroring The possible field values are TX Only Indicates port mirroring is configured on transmitting ports only RX Only Indicates port mirroring is configured on receiving ports only TX and RX Indicates port mirroring is configured on both receiving and transmitting ports T
234. unctions including digital data conversion from the Ethernet interfaces collision detection and bit injection into the network For example 100BASE TX full duplex mode 802 3 Power via MDI e MDI Power Support Port Class Displays the advertised power support port class e PSE MDI Power Support Indicates if MDI power is supported on the port e PSE MDI Power State Indicates if MDI power is enabled on the port e PSE Power Pair Control Ability Indicates if power pair control is supported on the port e PSE Power Pair Displays the power pair control type supported on the port e PSE Power Class Displays the advertised power class of the port 802 3 Link Aggregation e Aggregation capability Indicates if the port can be aggregated e Aggregation status Indicates if the port is currently aggregated e Aggregation Port ID Displays the advertised aggregated port ID 802 3 Details 802 3 Maximum Frame Size Displays the advertised maximum frame size that is supported on the port 802 1 VLAN and Protocol e PVID Displays the advertised port VLAN ID PPVIDs e VID Displays the protocol VLAN ID Managing System Settings 3 54 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Supported Displays the supported Port and Protocol VLAN IDs Enabled Displays the Enabled Port and Protocol VLAN IDs VLAN IDs VID Displays the Port and Protocol VLAN ID VLAN Name
235. unit s gold button The unit s port panel displays Select the ports to be members of the LAG Click APPLY to update the device Click CURRENT MEMBERS The Current Members window opens and displays the member ports included in the LAG 4 7 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Current Members Unit 1 g1 94 97 Figure 4 4 Advanced The LAG Advanced menu contains the following options e LAG Configuration e LAG Membership e LACP Configuration e LACP Port Configuration LAG Configuration The Advanced LAG Configuration screen contains fields for configuring LAG parameters The system supports 8 LAGs and each LAG can contain up to 8 ports To define LAG parameters 1 Click Switching gt LAG gt Advanced gt LAG Configuration The Advanced LAG Configuration screen displays Configuring Switching Settings 4 8 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual NETGEAR GS748TS Gigebit Stackable Smert Switch socour LAG Configuration LAG Configuration up Up wW up Up w u Figure 4 5 The Advanced LAG Configuration screen contains the following fields Interface Displays the LAG number Description Enter a user defined LAG description Status Select the current link operation The possible field values are Up Indicates the LAG is currently linked
236. update the device To add a new VLAN 1 Click Switching gt VLAN gt Advanced gt VLAN Configuration The Advanced VLAN Configuration screen displays 2 Enter the VLAN ID and VLAN Name in the provided fields in the first row 3 Click ADD to update the device To remove a VLAN Note Prior to deleting a VLAN ensure all multicast group configuration entries associated with the VLAN are deleted Refer to Multicast Group Configuration for deleting multicast group entries 1 Click Switching gt VLAN gt Advanced gt VLAN Configuration The Advanced VLAN Configuration screen displays 2 Select the VLAN entry 3 Click DELETE to remove the entry VLAN Membership The VLAN Membership screen contains a table that maps ports to VLANs Ports are assigned VLAN membership by toggling through the Port Control settings To define VLAN group membership 1 Click Switching gt VLAN gt Advanced gt VLAN Membership The VLAN Membership screen displays 4 17 Configuring Switching Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual NETGEAR GS748TS amp t 4B port Gigabit Jraskoble Smart Switch System Switching Qos Security Monitoring Maintenance Help socour VLAN Membership VLAN Membership Figure 4 12 The VLAN Membership screen contains the following fields e VLAN ID Select the VLAN ID to be displayed and configured VLAN ID 1 cannot be modified e VLAN Name Di
237. uplex mode and flow control abilities to its partner Auto Negotiation is enabled by default The possible field values are Enable Enables auto negotiation Disable Disables auto negotiation e Flow Control Select the flow control status of the LAG Operates when the port is in full duplex mode Flow Control is disabled by default The possible field values are Enable Enables flow control Disabled Disables flow control 2 Select the interface Enter or modify the fields in the first row Click APPLY to update the device LAG Membership The Advanced LAG Membership screen allows network managers to assign ports to LAGs To assign ports to LAGs 1 Click Switching gt LAG gt Advanced gt LAG Membership The Advanced LAG Membership screen displays Configuring Switching Settings 4 10 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Aw PF amp NM NETGEAR GS748TS nect with Inn 48 port Gigobh Stockable Smart Swineh LAG Membership Membership Figure 4 6 The Advanced LAG Membership screen contains the following fields e LAG ID Select the LAG ID e LAG Name Displays the user defined LAG name e LAG Type Select the LAG type The possible field values are Static Indicates the LAG is configured manually LACP Indicates the LAG is configured automatically Select the LAG ID and LAG Type Click on the unit s gold button The unit
238. vice There are two options to reboot e Rebooting a particular unit e Rebooting the entire stack To reset the device 1 Click Maintenance gt Reset gt Device Reboot The Device Reboot screen displays 8 1 V1 0 June 2009 GS700TS Smart Switch Software Administration Manual NETGEAR GS748TS System Switching Qos Security Monitoring Maintenance Help iocour Device Reboot v Device Ruboot Factory Default Device Reboot Reboot Unit Sumber Ta Check this box and click APPLY below to reboot unit s r Figure 8 1 The Device Reboot screen contains the following fields e Reboot Unit Number Select the unit to be reset The possible field values are 1 2 3 4 5 6 Reboots the stacking member associated with the selected unit number All Reboots all stacking members e Check this box and click Apply below to reboot unit s Select the confirmation box to confirm unit changes 2 Select a unit number or All as the Reboot Unit Number in the provided field Check the confirmation box 4 Click APPLY to reboot the device Factory Default The Factory Default screen allows network managers to reset the device to the factory defaults shipped with the switch Restoring factory defaults results in erasing the configuration file Note Selecting this option automatically reboots the device The stacking defaults are not restored from this screen including e The stacking mode e The stacking
239. vided fields in the first row Select the Single Connection status and Active server from the lists in the provided fields in the first row Click APPLY to update the device To add a new TACACS server entry 1 2 4 Click Security gt Management Security gt TACACS The TACACS screen displays Enter the Host IP Address Key String Authentication Port and Timeout for Reply in the provided fields in the first row Select the Single Connection status and Active server from the lists in the provided fields in the first row Click ADD to update the device To remove a TACACS server entry 1 2 3 Click Security gt Management Security gt TACACS The TACACS screen displays Select the TACACS server entry Click DELETE to remove the entry Managing Security 6 7 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Authentication List The Authentication List screen contains information for defining an authentication method for the selected Authentication List For example if the user selects TACACS as the first entry None as the second this causes authentication to first occur at the TACACS server If the TACACS server is inaccessible or not defined the session is permitted Once the Authentication List is defined as Local it is not possible to define an alternative authentication method as it is a built in system authentication method In order to configure RADIUS TAC
240. w Names SNMPv3 views provide or block access to device features or portions of features To define SNMPv3 view names 1 Click System gt SNMP gt SNMPv3 gt View Name The SNMPv3 View Name screen displays 3 23 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual gt GS748TS NETGEAR 0 Stachable Smart Switch System Switching QoS Security Monitoring Maintenance Help tocour Figure 3 12 The SNMPv3 View Name screen contains the following field View Name Enter the user defined view name The view name can contain a maximum of 30 alphanumeric characters 2 Select the entry 3 Enter the View Name field in the first row 4 Click APPLY to update the device To add a new SNMP View Name 1 Click System gt SNMP gt SNMPv3 gt View Name The SNMPv3 View Name screen displays 2 Enter the View Name field in the first row 3 Click ADD to update the device To remove an SNMP View Name 1 Click System gt SNMP gt SNMPv3 gt View Name The SNMPv3 View Name screen displays 2 Select the entry to be removed 3 Click DELETE to remove the entry Managing System Settings 3 24 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual View Content The View Content screen allows the network manager to assign view attributes to views created in the View Content screen Views provide or block access to device features or portions of fe
241. w StopAdvertes raded Lnawies Figure 3 23 The LLDP Port Settings screen contains the following fields e Interface Displays the specific interface for which LLDP parameters are defined e Admin Status Select the LLDP packet transmitting and receiving status of the interface The possible field values are Tx Only Enables transmitting LLDP packets only Rx Only Enables receiving LLDP packets only Tx amp Rx Enables transmitting and receiving LLDP packets Disable Disables LLDP on the interface e Management IP Address Select the management IP address that is advertised from the interface The possible field values are StopAdvertise Stops advertising the management IP address from the interface 3 43 Managing System Settings v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Pi a a E AutoAdvertise Advertises the device s current IP address as the management IP address e Notification Select the topology change notification status on the interface Enable Enables topology change notification on the interface This is the default value Disable Disables topology change notification on the interface e Optional TLVs Select whether optional TLVs are advertised from the interface Enable Enables optional TLVs on the interface This is the default value Disable Disables optional TLVs on the interface Selec
242. ward traffic however it can learn new MAC addresses Speed Displays the speed at which the port is operating Path Cost Enter the method used to assign default path cost to STP ports The possible field range is 1 200000000 The default path cost assigned to an interface varies according to the selected CST configuration method Hello Time Max Age or Forward Delay Priority Select the port priority value When switches or ports are running STP each is assigned a priority After exchanging BPDUs the device with the lowest priority value becomes the Root Port The port priority has a range of 0 240 in increments of 16 The default value is 128 Configuring Switching Settings 4 36 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual Select the STP Status and Fast Link status in the provided fields 2 3 Enter the Path Cost in the provided field 4 Select the Priority from the list in the provided field 5 Click APPLY to update the device RSTP While Classic STP prevents forwarding loops in a general network topology convergence can take between 30 60 seconds This time may delay detecting possible loops and propagating status topology changes Rapid Spanning Tree Protocol RSTP detects and uses network topologies that allow a faster STP convergence without creating forwarding loops The Global System LAG information displays the same field information as the ports but represents the LAG
243. ys the advertised maximum frame size supported on the port 802 3 Link Aggregation e Aggregation capability Indicates if the port can be aggregated e Aggregation status Indicates if the port is currently aggregated e Aggregation Port ID Displays the advertised aggregated port ID MED Details e Capabilities Supported Displays the MED capabilities enabled on the port e Current Capabilities Indicates the TLV is advertised by the port e Device Class Indicates the device is a network connectivity device Network Policies e Application Type Displays the network policy application type For example Voice e VLAN ID Displays the network policy VLAN ID Managing System Settings 3 50 v1 0 June 2009 GS700TS Smart Switch Software Administration Manual e VLAN Type Displays the VLAN type for which the network policy is defined The possible field values are Tagged Indicates the network policy is defined for tagged VLANs Untagged Indicates the network policy is defined for untagged VLANs e User Priority Displays the network policy user priority e DSCP Displays the network policy DSCP 3 Click the Network Policies gold bar to display the network policies applied to the port Neighbors Information The LLDP Neighbors Information screen contains information received from neighboring device LLDP advertisements To view LLDP neighbors information 1 Click System gt LLDP
Download Pdf Manuals
Related Search