Netgear GS700TP User's Manual
Contents
1. Figure 2 2 The NETGEAR GS700TP web browser interface contains the following views Main Navigation Area Located on the top of the NETGEAR GS700TP web browser interface and marked as 1 in Figure 2 2 The Main Navigation Area includes Primary and Secondary Navigation Bars The Primary Navigation Bar contains a list of the different features that can be configured including System Switching QoS Security Monitoring Maintenance and Help Each feature expands to a subset of features that can be configured as part of the Secondary Navigation Bar Left Navigation Tree Located on the left side of the NETGEAR GS700TP web browser interface and marked as 2 in Figure 2 2 For each Secondary Navigation Feature the Left Navigation Tree contains a subset of features that can be expanded to display all the components 2 2 Introduction to the Web Browser Interface v1 0 December 2007 GS700TP Smart Switch Software Administration Manual Work Area Located on the right side of the NETGEAR GS700TP web browser interface and marked as 3 in Figure 2 2 The Work Area contains device tables general device information and configurable device parameters For further description of the functions refer to the appropriate section of this manual e Chapter 3 Managing System Settings describes how to configure the System functions e Chapter 4 Configuring Switching Settings describes how to configure the Switch functions e2. RADIUS None Port authentication is first attempted through the RADIUS server If the RADIUS server is inaccessible or not defined then no authentication method None is used and the session is permitted RADIUS Port authentication is through the RADIUS server 6 8 Managing Security v1 0 December 2007 GS700TP Smart Switch Software Administration Manual None No authentication method is used to authenticate the port e Guest VLAN Select whether the Guest VLAN is enabled or disabled on the device The default VLAN cannot be defined as a Guest VLAN The possible field values are Disable Disable the Guest VLAN on the device This is the default value Enable Enable using a Guest VLAN for unauthorized ports If a Guest VLAN is enabled the unauthorized port automatically joins the VLAN selected in the VLAN List field e Guest VLAN ID Select the guest VLAN ID from the list of the currently defined VLANs 2 Select Disable or Enable for the Port Based Authentication State in the provided field If you selected Enable for the Port Based Authentication State then select the Authentication Method from the list in the provided field 4 Select Disable or Enable for the Guest VLAN status in the provided field 5 If you selected Enable for the Guest VLAN field then select the VLAN ID from the list in the provided field 6 Click Apply to update the device Advanced The Port Authenti
3. Connect with Innovation System Switching Ports LAG VLAN v Basic Advanced gt properties Port Setting gt OUI Qos Security Monitoring Maintenance Help STP Multicast Address Table Port Setting Port Setting PORTS LAGS All GO TO INTERFACE SO J Select Interface Voice VLAN Voice VLAN Membership Mode a man ri i r r l F a r a r a r i None Disable Active z Auto Disable Not Active g3 None Disable Active g4 Auto Disable Not Active g5 None Disable Active 96 Auto Disable Not Active g7 None Disable Active g8 Auto Disable Not Active g9 None Disable Active g10 Auto Disable Not Active None Disable Active g12 Auto Disable Not Active g13 None Disable Active gi4 Auto Disable Not Active None Disable Active GS748TP 48 port Gigabit PoE Smart Switch LOGOUT Figure 4 18 2 Click Apply to update the device 4 24 v1 0 December 2007 Configuring Switching Settings GS700TP Smart Switch Software Administration Manual Voice VLAN OUI To define OUIs 1 2 Click Switching gt Voice VLAN gt Advanced gt OUI The Voice VLAN OUI screen displays NETGEAR GS748TP Connect with Innovation 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Voice VLAN OUI Basic v Advanced Voice VLAN OUI properties Telephony OUI s Descri ption gt Port Setting I 00 0 88 M 00 03 68 m 00 0 75 I 00 D0 4E 0
4. Ethernet cable to connect the switch to a PC e For running the SmartWizard Discovery utility and local or remote Web Management IBM type PC with CD drive RAM size and disk specification are not critical OS software Microsoft Windows Vista Windows XP or Windows 2000 Desktop computer running Microsoft Internet Explorer 5 0 or later or Netscape Navigator 6 0 or later or equivalent v1 0 December 2007 GS700TP Smart Switch Software Administration Manual Note For complete hardware installation instructions refer to the GS700TP Smart Switch Hardware Installation Manual included on your Resource CD or go to http www netgear com support Switch Management Interface Your NETGEAR GS700TP Gigabit PoE Smart Switch contains an embedded web server and management software for managing and monitoring switch functions This switch operates as a simple switch without using the management software The management software enables you to configure more advanced features and consequently improve switch efficiency as well as overall network performance Web Based Management enables you to monitor configure and control your switch remotely using a common web browser instead of having to use expensive and complicated SNMP software products Simply by using your web browser you can monitor the performance of your switch and optimize network configuration Using your browser for example you can set up VL
5. Click Delete to remove the entry 6 20 Managing Security v1 0 December 2007 GS700TP Smart Switch Software Administration Manual MAC Binding Configuration To bind interfaces to an ACL 1 Click Security gt ACL gt MAC Binding Configuration The MAC Binding Configuration screen displays NETGEAR GS7A8TP 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help tocour Management Securi ity Port Authentication Traffic Control MAC Binding Configuration gt MAC ACL MAC Rules MAC Binding Configuration MAC Binding eos al Configuration Aer Name saa gt IP ACL gt IP Rules Port Selection Table gt sini Tabie Se Figure 6 12 The MAC Binding Configuration screen contains the following fields MAC Binding Configuration ACL Name Select the ACL Name for viewing and modifying ACL bound interfaces Port Selection Table Select the interfaces for which the ACLs are bound Select the ACL Name from the list in the provided field Select the interfaces to bind to the selected ACL Name by one of the following methods a b Click on the port s or LAG s gold bar to display the associated interfaces and then select the interfaces to bind by clicking on the boxes below the interfaces or Click on the port s or LAG s quick box to select all the associated interfaces 5 Click Apply to update the device IP ACL The IP ACL scr
6. e STP Configuration STP Configuration The Basic STP Configuration screen contains parameters for enabling STP on the device To configure STP on the device 1 Click Switching gt STP gt Basic gt STP Configuration The Basic STP Configuration screen displays NETGEAR GS748TP 48 port Gigabit PoE Smort Switch ccour STP Configuration Global Settings Spanning Tree State C Osade inate STP Operation Mode sT C ste Status Bridge Identifier 80 00 00 146e 33 630 Tame Since Topology Change Designated Root Root Port Max Age Sec Forward Oslay Sec Hello Time Sec Figure 4 20 4 26 Configuring Switching Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual The Basic STP Configuration screen contains the following fields Global Settings e Spanning Tree State Select the STP state on the device The possible field values are Enable Enable STP on the device Disable Disable STP on the device Status e Bridge Identifier Displays the Bridge priority and MAC address Time Since Topology Change Displays the amount of time that has elapsed since the bridge was initialized or reset or the last topology change that occurred The time is displayed in a day hour minute second format such as 2 days 5 hours 10 minutes and 4 seconds The current root port and current root path cost display as zero when the device is not connected to the ne
7. e PVID Enter the PVID value The possible field range is 1 4093 Select an interface Enter the PVID in the provided field in the first row Click Apply to update the device 4 20 Configuring Switching Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual Voice VLAN Voice VLAN allows you to enhance VoIP service by configuring ports to carry IP voice traffic from IP phones on a specific VLAN VoIP traffic has a preconfigured OUI prefix in the source MAC address You can configure VLANs on which voice IP traffic is forwarded Non VolIP traffic is dropped from the Voice VLAN in auto Voice VLAN secure mode Voice VLAN also provides QoS to VoIP ensuring that the quality of voice does not deteriorate if the IP traffic is received unevenly The system supports one Voice VLAN There are two operational modes for IP Phones e IP phones are configured with VLAN mode as enabled ensuring that tagged packets are used for all communications e Ifthe IP phone s VLAN mode is disabled the phone uses untagged packets The phone uses untagged packets while retrieving the initial IP address through DHCP The phone eventually uses the Voice VLAN and starts sending tagged packets The Voice VLAN menu contains the following options e Basic e Advanced Basic The Voice VLAN Basic menu contains the following options e Properties Properties The Voice VLAN Properties screen contain
8. 9mentsi Jabbers 1 Figure 7 9 The RMON History Table screen contains the following fields History Entry History Entry No Select the entry number for the History Control Table screen e Owner Displays the RMON station or user that requested the RMON information The field range is 0 20 characters History Table 7 16 Monitoring the Switch v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e Sample No Displays the sample number from which the statistics were taken e Drop Events Displays the number of dropped events that have occurred on the interface since the device was last refreshed e Received Bytes Displays the number of octets received on the interface since the device was last refreshed This number includes bad packets and FCS octets but excludes framing bits e Received Packets Displays the number of packets received on the interface since the device was last refreshed including bad packets Multicast and Broadcast packets e Broadcast Packets Displays the number of good Broadcast packets received on the interface since the device was last refreshed This number does not include Multicast packets e Multicast Packets Displays the number of good Multicast packets received on the interface since the device was last refreshed e CRC Errors Displays the number of CRC and Align errors that have occurred on the interface since the device was last re
9. Alert The second highest warning level An alert log is saved if there is a serious device malfunction for example all device features are down Critical The third highest warning level A critical log is saved if a critical device malfunction occurs for example two device ports are not functioning while the rest of the device ports remain functional Error A device error has occurred for example if a single port is offline Warning The lowest level of a device warning The device is functioning but an operational problem has occurred Notice Provides device information Informational Provides device information Debug Provides debugging messages 2 Select the minimum severity level for RAM logs 3 Select the minimum severity level for FLASH logs 4 Click Apply to update the device Memory Log The Memory Log screen contains all system logs in a chronological order that are saved in RAM Cache 7 4 Monitoring the Switch v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To view the Memory Log screen 1 Click Monitoring gt Logs gt Memory Log The Memory Log screen displays NETGEAR GS748TP Connect with Innovation 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help RMON Mirroring Memory Log gt Log Configuration Log Filter Note Logs stored in SDRAM memory are not saved after device reset v Mem
10. e Dynamic IP Address DHCP Enable the IP address to be configured automatically by the DHCP server Selecting this field disables the IP Address Subnet Mask Gateway and Delete fields e Static IP Address Enable the user to define a static IP address e IP Address Enter the static IP address used to manage the device e Subnet Mask Enter the IP address mask e Gateway Enter the default gateway IP address The following option is available Delete Delete the default gateway IP address 2 Select the method of assigning the IP address by selecting either Dynamic IP Address or Static IP Address 3 If you selected Static IP Address enter the IP Address Subnet Mask and Gateway address in the provided fields 4 Click Apply to update the system settings Time The Time menu enables local system time or SNTP server configuration and contains the following options 3 4 Managing System Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e Time Configuration e SNTP Server Configuration Time Configuration The Time Configuration screen contains information for defining both the local hardware clock and the external SNTP clock If the system time is managed via an external SNTP clock and the external SNTP clock fails the system time reverts to the local hardware clock To configure the local system time 1 Click System gt Management gt Time gt Tim
11. Remove all the interfaces participating in the VLAN 2 Select the VLAN ID from the list in the provided field 3 Select the Group Operation from the list in the provided field 4 Click Apply to update the device To tag or untag selected ports or LAGs 1 Click Switching gt VLAN gt Advanced gt VLAN Membership The VLAN Membership screen displays 2 Click a gold button to display the ports or LAGs 3 Click the boxes below the selected ports or LAGs to mark them as tagged T or untagged U 4 Click Apply to update the device To tag or untag all the ports or all the LAGs 1 Click Switching gt VLAN gt Advanced gt VLAN Membership The VLAN Membership screen displays 2 Click the ports quick box or the LAG quick box repeatedly if necessary until a T or U appears in the quick box marking all the ports or LAGs as tagged or untagged respectively 3 Click Apply to update the device 4 18 Configuring Switching Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To view VLAN tagged port members 1 Click Switching gt VLAN gt Advanced gt VLAN Membership The VLAN Membership screen displays 2 Click Tagged Port Members The VLAN Tagged Ports window opens VLAN 1 Tagged Ports Unit 1 gl g5 LAG gt Figure 4 13 To view VLAN untagged port members 1 Click Switching gt VLAN gt Advanced gt VLAN Membership The VLAN Membership screen displays 2
12. UDP Select Ty T Community String a Port Timeout Retries r ype Version mO ee eee E oe ee Figure 3 10 The SNMPv1 v2 Trap Configuration screen contains the following fields e Recipients IP Enter the IP address to which the traps are sent Notification Type Configurable only if the Notification Version is SNMPv 2 Select the type of notification sent The possible field values are Traps Traps are sent Informs Informs are sent only when SNMPv2 is enabled e Community String Enter the community string of the trap manager e Notification Version Select the trap type The possible field values are SNMPv1 SNMP Version 1 traps are sent SNMPv2 SNMP Version 2c traps are sent e UDP Port Enter the UDP port used to send notifications The default UDP port is 162 Timeout Enter the amount of time in seconds the device waits before re sending informs The default is 15 seconds e Retries Enter the amount of times the device re sends an inform request The default is 3 seconds 2 Select the trap entry Enter the fields in the first row 4 Click Apply to update the device 3 16 Managing System Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To add a new SNMP trap 1 Click System gt SNMP gt SNMPv1 v2 gt Trap Configuration The SNMPv1 v2 Trap Configuration screen displays 2 Enter the fields in the first row
13. 48 port Gigabit PoE Smart Switch Monitoring Maintenance Help Informational Informational Informational Informational Informational Informational Informational Informational Informational Informational Informational Informational Informational Informational Informational Note Logs stored in flash memory are saved after device reset AASA E AUTHFAIL Authentication failed for http source 10 6 39 20 AAA E AUTHFAIL Authentication failed for http source 10 56 39 16 AAA E AUTHFAIL Authentication failed for http source 10 6 39 16 INIT l Startup Yarm Startup LINK Up g14 6LINK I Up Vian 1 LINK W Down 924 6LINK I Up g3 LINK W Down g23 LINK WW Down g22 LINK W Down 921 6LINK WV Down 920 S6LINK W Down g19 S6LINK VV Down 918 LINK W Down g17 Figure 7 4 The Flash Log screen contains the following fields e Log Index Displays the log number CLEAR LOGS REFRESH e Log Time Displays the time at which the log was generated e Severity Displays the log severity and urgency level The following are the available log severity levels v1 0 December 2007 Monitoring the Switch GS700TP Smart Switch Software Administration Manual Emergency The highest warning level If the device is down or not functioning properly an emergency log message is saved to the specified logging location Alert The second highest warning level
14. Alignment Error number The field range to detect jabbers is between 20 ms and 150 ms e Collisions Displays the number of collisions received on the interface since the device was last refreshed e Frames of 64 Bytes Displays the number of 64 byte frames received on the interface since the device was last refreshed e Frames of 65 to 127 Bytes Displays the number of 65 to 127 byte frames received on the interface since the device was last refreshed e Frames of 128 to 255 Bytes Displays the number of 128 to 255 byte frames received on the interface since the device was last refreshed e Frames of 256 to 511 Bytes Displays the number of 256 to 511 byte frames received on the interface since the device was last refreshed e Frames of 512 to 1023 Bytes Displays the number of 512 to 1023 byte frames received on the interface since the device was last refreshed e Frames of 1024 to 1522 Bytes Displays the number of 1024 to 1522 byte frames received on the interface since the device was last refreshed RMON Summary Statistics e Interface Displays the port or LAG for which statistics are displayed Monitoring the Switch 7 13 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 3 Drop Events Displays the number of dropped events that have occurred on the interface since the device was last refreshed Received Bytes Displays the number of octets received on the inter
15. Auto Negotiation is a protocol between two link partners that enables a port to advertise its transmission rate duplex mode and flow control abilities to its partner Auto Negotiation is enabled by default The possible field values are Enable Enable auto negotiation Disable Disable auto negotiation Flow Control Select the flow control status of the LAG Operates when the port is in full duplex mode Flow Control is disabled by default The possible field values are Enable Enable flow control Disable Disable flow control 2 Select the interface Enter or modify the fields in the first row Click Apply to update the device 4 10 Configuring Switching Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual LAG Membership The Advanced LAG Membership screen allows network managers to assign ports to LAGs To assign ports to LAGs 1 wa P amp S NM Click Switching gt LAG gt Advanced gt LAG Membership The LAG Membership screen displays GS7A8TP 48 port Gigabit PoE Smart Switch LAG Membership Membership E E A hl 0 fo S A E Figure 4 6 The Advanced LAG Membership screen contains the following fields e LAG ID Select the LAG ID e LAG Name Displays the user defined LAG name e LAG Type Select the LAG type The possible field values are Static The LAG is configured manually LACP The LAG is co
16. Select to assign WRR weights to queues The queue weights are preconfigured and are set to 1 2 4 and 8 Select either Strict Priority or WRR to specify the traffic scheduling method Click Apply to update the device Bandwidth After packets are assigned to a queue a scheduling scheme can be assigned to an interface using either Committed Burst Size Indicates the maximum number of data bits transmitted within a specific time interval Committed Information Rate Indicates the rate that data is transmitted The rate is averaged over a minimum time increment The Bandwidth screen allows the user to define Ingress Rate Limit and Egress Shaping Rates Configuring QoS 5 5 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To define bandwidth settings 1 Click QoS gt CoS gt Basic gt Bandwidth The Bandwidth screen displays NETGEAR GS7A8TP Connect with Innovation 48 port Gigabit PoE Smart Switch System Switching QoS Security Monitoring Maintenance Help Bandwidth v Basic CoS Global Port Settings Configuration gt CoS Interface PORTS LAGS All GO TO INTERFACE so on 3 st lt r E Disable 0 0 0 0 0 0 Disable 0 Disable 0 Disable i 0 0 0 0 0 0 E r z r r zl r a Disable Figure 5 4 The Bandwidth screen contains the following fields Interface Displays the ports for which the bandwidth set
17. The Storm Control screen contains the following fields e Interface Displays the port number for which the storm control information is displayed Broadcast Control Select whether storm control is enabled or disabled on the interface according to Broadcast mode The possible field values are Enable Enable storm control on the interface This is the default value Disable Disable storm control on the interface 6 14 Managing Security v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e Broadcast Mode Select the Broadcast mode on the interface The possible field values are Multicast amp Broadcast amp Unknown Unicast Count Broadcast Multicast and Unicast traffic together Multicast amp Broadcast Count Broadcast and Multicast traffic together Broadcast Only Count Broadcast traffic only e Broadcast Rate Threshold Enter the maximum rate kilobits per second at which broadcast packets are forwarded The range is 70 285000 kbps The default value is 200 kbps 2 Select the interface Select Enable or Disable Broadcast Control in the provided field in the first row 4 Ifyou selected Enable Broadcast Control select the Broadcast Mode from the list in the provided field in the first row 5 If you selected Enable Broadcast Control enter the Broadcast Rate Threshold in the provided field in the first row 6 Click Apply to update the
18. The power supply unit is not functioning Faulty The power supply unit is functioning but an error has occurred For example a power overload or a short circuit e Nominal Power Displays the actual amount of power the device can supply The field value is displayed in Watts e Consumed Power Displays the amount of the power used by the connecting device The field value is displayed in Watts e System Usage Threshold Enter the percentage of power consumed before an alarm is generated The field value is 1 99 percent The default is 95 percent e Traps Select the PoE device trap state The possible field values are Enable Enable PoE traps on the device Disable Disable PoE traps on the device This is the default value 2 Enter the System Usage Threshold in the provided field Select the Traps mode from the list in the provided field Click Apply to update the device 3 10 Managing System Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual PoE Port Configuration The PoE Interface Configuration screen contains system PoE information for enabling PoE on the device monitoring the current power usage and enabling PoE traps To enable PoE on the device 1 Click System gt PoE gt Advanced gt PoE Port Configuration The PoE Port Configuration screen displays NETGEAR GS748TP 4B port Gigabit PoE Smart Switch rosout PoE Port Configurati
19. 2007 GS700TP Smart Switch Software Administration Manual e Restore Defaults Restore the DSCP Mapping device factory default values The possible field values are Checked Restore the factory default settings for DSCP mapping values Unchecked Maintain the current DSCP mapping settings 2 Select the Queue values for each DSCP In value in the provided fields Check or uncheck the Restore Defaults box in the provided field 4 Click Apply to update the device 5 10 Configuring QoS v1 0 December 2007 Chapter 6 Managing Security Setting Security Configuration Options The navigation pane at the top of the web browser interface contains a Security tab that enables you to manage your GS700TP Smart Switch with features under the following main menu options e Management Security e Port Authentication e Traffic Control e ACL The description that follows in this chapter describes configuring and managing security settings in the GS700TP Smart Switch Management Security The Management Security menu contains the following options e User Configuration e RADIUS TACACS e Authentication List User Configuration The User Configuration menu contains the following options e Change Password 6 1 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual Change Password The Change Password screen contains par
20. 3 Click Add to update the device To remove an SNMP trap 1 Click System gt SNMP gt SNMPv1 v2 gt Trap Configuration The SNMPv1 v2 Trap Configuration screen displays 2 Select the entry to be removed Click Delete to remove the entry SNMPv3 The SNMPv3 menu contains the following options e Engine ID e View Name e View Content e Community Configuration e Group Configuration e User Configuration e Global Trap Configuration e Trap Configuration e Trap Filter Name e Trap Filter Content Managing System Settings 3 17 v1 0 November 2007 GS700TP Smart Switch Software Administration Manual Engine ID The SNMPv3 Engine ID screen allows network managers to define the SNMP Engine ID and to assign the default parameters to SNMP To define the Local Engine ID 1 Click System gt SNMP gt SNMPv3 gt Engine ID The SNMPv3 Engine ID screen displays GS748TP NETGEA R 48 port Gigabit PoE Smart Switch Security Monitoring Maintenance Help Engine ID v SNMPw 1 w2 Engine ID Local Engine ID 30303030303030303030 10 64 Hex Characters gt Trap Filter Content Figure 3 11 The SNMPv3 Engine ID screen contains the following fields e Local Engine ID 10 64 Characters Enter the local device Engine ID The field value is a hexadecimal string Each byte in hexadecimal character strings is two hexadecimal digits Each byte digit can be
21. 4 Click Apply to update the device Advanced The Multicast Advanced menu contains the following options e IGMP Snooping Configuration e Multicast Group Configuration e Multicast Group Membership e Multicast Forward All IGMP Snooping Configuration To configure Advanced IGMP Snooping 1 Click Switching gt Multicast gt Advanced gt IGMP Snooping Configuration The Advanced IGMP Snooping Configuration screen displays NETGEAR GS748TP 48 port Gigabit PoE Smart Switch Connect with Innovation System Switching Qos Security Monitoring Maintenance Help Ports LAG VLAN Voice VLAN STP Address Table IGMP Snooping Configuration v Basic v Advanced IGMP Snooping Configuration gt IGMP Snoopi PN e i Status Disable C Enable gt Multicast Group Bridge Multicast Filtering Status C Disable Enable Configuration Multicast Group Membership Interface Settings i Oo hf 260 300 10 Disabled Enabled Figure 4 26 4 36 Configuring Switching Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual The IGMP Snooping Configuration screen contains the following fields IGMP Snooping Configuration Status Select the IGMP Snooping status on the device IGMP Snooping is operational if both the Status and Bridge Multicast Filtering fields are enabled The possible field values are Enable Enable IGMP Snooping on the device Disable
22. Advanced Managing Security 6 7 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual Basic The Port Authentication Basic menu contains the following option e 802 1X Configuration 802 1X Configuration The Basic 802 1X Configuration screen allows network managers to configure network authentication parameters In addition Guest VLANs are enabled from the Basic 802 1X Configuration screen To define the 802 1X configuration 1 Click Security gt Port Authentication gt Basic gt 802 1X Configuration The Basic 802 1X Configuration screen displays NETGEAR GS7A8TP 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Management Security Traffic Control ACL 802 1x Configuration gt 802 4 802 1x Configuration S Advance d Port Based Authentication State Disable C Enable Authentication Method RADIUS None gt Guest VLAN C Disable Enable Guest VLAN ID hia Figure 6 5 The Basic 802 1X Configuration screen contains the following fields e Port Based Authentication State Select whether port based authentication is enabled or disabled on the device The possible field values are Disable Disable port based authentication on the device Enable Enable port based authentication on the device e Authentication Method Select the authentication method used for port authentication The possible field values are
23. Click Discover for the SmartWizard Discovery utility to find your GS700TP Gigabit PoE Smart Switch You should see a screen similar to that shown in Figure 1 1 6 Click Configuration Setting A screen similar to that shown below appears Getting Started with Switch Management 1 5 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual l Smartwizard Discovery Device List MAC Address IP Address Protocol Version Product Name System Name Location 00 0F B5 97 42 2C 192 168 0 239 2 001 002 FS7001S Configuration setting Product Name FS700TS MAC Address 00 0F B5 97 42 2C IP Address 192 168 0 2 Subnet Mask 255 255 255 Gateway 192 168 0 254 System Name Password Location DHCP C Enable Disable Ce oa DHCP Refresh Discover Device Setting Configuration Setting Password Change Web Access Firmware Upgrade Exit Figure 1 3 Select Disable to disable DHCP 8 The default IP address is 192 168 0 239 and the default subnet mask is 255 255 255 0 If you want different values enter the switch IP address gateway IP address and subnet mask 9 Type your password and click Set Please ensure that your PC and the GS700TP Gigabit PoE Smart Switch are in the same subnet Note the settings for later use NIC Setting on the Host that Accesses the GS700TP Gigabit PoE Smart Switch The settings of your Network Interface Card NIC under MS Windows OS are made with entries
24. Click Untagged Port Members The VLAN Untagged Ports screen opens VLAN 1 Untagged Ports Unit 1 g2 g3 g4 g6 g7 g8 g9 g10 g11 g12 g13 g14 g15 g16 g17 g18 g19 g20 g21 g22 g23 g24 g25 g26 g27 g28 g29 g30 g31 g32 g33 g34 g35 g36 g37 g38 g39 g40 g41 g42 g43 g44 g45 g46 g47 g48 LAG 1 3 4 5 6 7 8 Figure 4 14 Port PVID Configuration The Port PVID Configuration screen contains parameters for assigning Port VLAN ID PVID values to interfaces All ports must have a defined PVID If no other value is configured the default VLAN PVID is used VLAN ID 1 belongs to the default VLAN which cannot be deleted from the system Once the PVID is changed from 1 to another VLAN ID on an interface the default VLAN on that interface is automatically removed Configuring Switching Settings 4 19 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To configure Port PVID parameters 1 Click Switching gt VLAN gt Advanced gt Port PVID Configuration The Port PVID Configuration screen displays S748TP G 48 port Gigabit PoE Smort Switch ccor Port PVID Configuration Port PVID Configuration PORTS LAGS AN AR OOH oo 2 88 82 ec es Ju m r r r r r r r r r r r r r r r r r r oe gz 2 Figure 4 15 The Port PVID Configuration screen contains the following fields e Interface Displays the interface id port number or LAG number to which the PVID tag is assigned
25. Default Settings A ACL 17 Bandwidth Settings 5 Boot File Download 5 C changing the password 8 configuration monitoring 1 network parameters 5 Qos 1 security 1 switch 1 system settings 1 Configuration Download 5 Configuration Upload 3 CoS 3 CPU 34 D defaults IP address 8 subnet mask 8 DHCP 3 DHCP server 3 DSCP 1 Dynamic MAC Address Table 42 F Firmware Download 5 Index Firmware Upload 3 Flash Logs 6 G getting started 1 H History Table Page 16 IGMP Snooping 34 installing 3 5 interfaces switch management 2 Web browser 1 IP address default 8 L L2 33 LACP 12 LAG 4 Layer 2 34 Link Aggregated Groups 4 Link Aggregation Control Protocol 12 list of RMON events 19 logging into the switch 1 Logs Configuration 2 map CoS 7 Index 1 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual Memory Logs 4 menus 2 Multicast Forward All Page 40 Multicast Groups 38 39 N navigation menu 2 network alarms 20 network parameters 5 NIC settings 6 P password changing 8 PoE 7 Port mirroring 22 Port VLAN ID PVID 19 Q Qos 1 QoS configuration 1 Queue shaping 5 R RADIUS 2 Remote Monitoring Statistics 9 Restoring factory defaults 2 S scheduling scheme 5 security configuration 1 Server Logs 7 SNMP 13 SNMP groups 23 25 SNMP v3 13 STP 26 subnet mask 8 switch device 7 switch configuration 1 switch m
26. Delay Designated Root Root Bridge ID 61440 00 00 b0 00 00 01 Root Port Root Path Cost o Figure 4 22 The CST Configuration screen contains the following fields CST Configuration e Bridge Priority Enter the bridge priority value When switches or bridges are running STP each is assigned a priority After exchanging BPDUs the device with the lowest priority value becomes the Root Bridge The default value is 32768 The bridge priority value is provided in increments of 4096 e Hello Time Enter the device Hello Time The Hello Time indicates the amount of time in seconds a Root Bridge waits between configuration messages The default is 2 seconds e Max Age Enter the device Maximum Age Time The Maximum Age Time is the amount of time in seconds a bridge waits before sending configuration messages The default Maximum Age Time is 20 seconds 4 30 Configuring Switching Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e Forward Delay Enter the device Forward Delay Time The Forward Delay Time is the amount of time in seconds a bridge remains in a listening and learning state before forwarding packets The default is 15 seconds Designated Root e Root Bridge ID Displays the priority and MAC Address of the root bridge e Root Port Displays the port number that offers the lowest cost path from this bridge to the Root Bridge This field is significant when the bridge is
27. Disable Flow control is disabled Configuring Switching Settings 4 3 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e MDI MDIX Select the MDI MDIX status of the port Hubs and switches are deliberately wired opposite the way end stations are wired so that when a hub or switch is connected to an end station a straight through Ethernet cable can be used and the pairs will match up properly When two hubs or switches are connected to each other or two end stations are connected to each other a crossover cable is used to ensure that the correct pairs are connected The possible field values are Auto Provides automatic cable type detection MDI Media Dependent Interface Connects end stations MDIX Media Dependent Interface with Crossover Connects HUBs and switches e LAG ID Select the LAG ID to which the selected port is assigned Select the interface Enter or modify the fields in the first row Click Apply to update the device LAG A Link Aggregated Group LAG optimizes port usage by linking a group of ports together to form a single LAG Aggregating ports multiplies the bandwidth between the devices increases port flexibility and provides link redundancy Ports added to a LAG lose their individual port configuration When ports are removed from the LAG the original port configuration is applied to the ports Ensure the following when configuring LAGs All ports
28. Disable IGMP Snooping on the device Bridge Multicast Filtering Status Select the bridge Multicast filtering status on the device The possible field values are Enable Enable Multicast filtering on the device Disable Disable Multicast filtering on the device If Multicast filtering is disabled Multicast frames are flooded to all ports in the relevant VLAN Disabled is the default value Interface Settings VLAN ID Displays the VLAN ID Status Select the IGMP Snooping status on the VLAN The possible field values are Enable Enable IGMP Snooping on the VLAN Disable Disable IGMP Snooping on the VLAN Auto Learn Select the Auto Learn status on the device If Auto Learn is enabled the devices automatically learns where other Multicast groups are located The possible field values are Enable Enable auto learn Disable Disable auto learn Host Timeout Enter the amount of time host waits to receive a message before timing out The default time is 260 seconds MRouter Timeout Enter the amount of the time the Multicast router waits to receive a message before it times out The default value is 300 seconds Leave Timeout Enter the amount of time the host waits after requesting to leave the IGMP group and not receiving a Join message from another station before timing out If a Leave Timeout occurs the switch notifies the Multicast device to stop sending traffi
29. Duplex Mode Select the port duplex mode This field is configurable only when auto negotiation is disabled and the port speed is set to 10M or 100M The possible field values are Half The interface supports transmission between the device and the client in only one direction at a time Full The interface supports transmission between the device and its link partner in both directions simultaneously Auto The interface supports transmission between the device and the link partner based on the transmission mode of the link partner e Auto Negotiation Select the port auto negotiation status Auto negotiation is a protocol between two link partners that enables a port to advertise its transmission rate duplex mode and flow control abilities to its partner The possible field values are Enable Auto negotiation is enabled Disable Auto negotiation is disabled e Back Pressure Select the back pressure mode of the Port Back Pressure mode is used with half duplex mode to disable ports from receiving messages Back Pressure mode is disabled by default The possible field values are Enable Back pressure mode is enabled Disable Back pressure mode is disabled e Flow Control Select the flow control status of the port Operates when the port is in full duplex mode Flow control is disabled by default The possible field values are Enable Flow control is enabled
30. Idle Timeout in the provided fields Click Apply to update the system settings IP Configuration The IP Configuration screen contains fields for assigning IP addresses IP addresses are either defined as static or are retrieved using the Dynamic Host Configuration Protocol DHCP The IP Interface screen also contains information for defining default gateways DHCP and is also configured from the IP Interface screen The DHCP assigns dynamic IP addresses to devices on a network DHCP ensures that network devices can have a different IP address every time the device connects to the network Note the following when configuring IP Addresses If the device is accessed using SmartWizard Discovery the IP address retrieved through DHCP is displayed If the device fails to retrieve an IP address through DHCP the default IP address is 192 168 0 239 Managing System Settings 3 3 v1 0 November 2007 GS700TP Smart Switch Software Administration Manual To define an IP interface 1 Click System gt Management gt IP Configuration The IP Configuration screen displays NETGEAR GS7A8TP 48 port Gigabit PoE Smart Switch System Security Monitoring Maintenance Help IP Configuration gt System Information v IP Configuration IP Configuration FUL Dynamic IP Address DHCP Static IP Address IP Address SS aaz Subnet Mask D Gateway P OE velete Figure 3 2 The IP Configuration screen contains the following fields
31. Key Users are authenticated using the HMAC SHA 96 authentication level MD5 Password The HMAC MD5 96 password is used for authentication The user must enter a password Managing System Settings 3 25 v1 0 November 2007 GS700TP Smart Switch Software Administration Manual SO oR Ge 7 SHA Password Users are authenticated using the HMAC SHA 96 authentication level The user must enter a password None No user authentication is used e Password 1 32 Characters Enter the password for the group member e Authentication Key Enter the HMAC MD5 96 or HMAC SHA 96 authentication level The authentication and privacy keys are entered to define the authentication key If only authentication is required 16 bytes are defined If both privacy and authentication are required 32 bytes are defined Each byte in hexadecimal character strings is two hexadecimal digits Each byte can be separated by a period or a colon e Privacy Key Enter the privacy key LSB If only authentication is required 20 bytes are defined If both privacy and authentication are required 36 bytes are defined Each byte in hexadecimal character strings is two hexadecimal digits Each byte can be separated by a period or colon Select the user entry Enter the User Name in the provided field in the first row Select the Group Name and Engine ID from the lists in the provided fields in the first row Select the Authentication meth
32. Membership e Port PVID Configuration VLAN Configuration The Advanced VLAN Configuration screen provides information and global parameters for configuring and working with VLANs To define VLAN properties 1 Click Switching gt VLAN gt Advanced gt VLAN Configuration The Advanced VLAN Configuration screen displays NETGEAR GS7A8TP 48 port Gigabit PoE Smart Switch tooour VLAN Configuration VLAN Configuration Figure 4 11 The Advanced VLAN Configuration screen contains the following fields e VLAN ID Enter the VLAN ID The field range is 1 4093 e VLAN Name Enter the user defined VLAN name e Type Displays the VLAN type The possible field values are Static The VLAN is user defined Default The VLAN is the default VLAN The default VLAN is enabled by default 2 Select the VLAN entry 4 16 Configuring Switching Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 3 4 Enter the VLAN ID and VLAN Name in the provided fields in the first row Click Apply to update the device To add a new VLAN 1 2 3 Click Switching gt VLAN gt Advanced gt VLAN Configuration The Advanced VLAN Configuration screen displays Enter the VLAN ID and VLAN Name in the provided fields in the first row Click Add to update the device To remove a VLAN 1 Click Switching gt VLAN gt Advanced gt VLAN Configuration The Advanced
33. Smart Switch Software Administration Manual You must work from the same network segment that contains the switch 1 e the subnet mask values of switch and PC host must be the same and you must point your browser using the switch IP address If you used the SmartWizard Discovery utility to set up IP address and subnet mask either with or without DHCP server use that IP address in your browser window If you are starting with an out of the box switch and are not using the SmartWizard Discovery utility you must initially configure your host PC to be on a network segment to match the default parameters of the switch which are e IP address 192 168 0 239 e Subnet Mask 255 255 255 0 You can change the network parameters to match those of your network this procedure is described in Chapter 3 Managing System Settings Your host PC network parameters must then be set to match your network Clicking Web Access on the SmartWizard Discovery utility or accessing the switch directly displays the screen shown below Use this screen to proceed to management of the switch covered in Chapter 2 Introduction to the Web Browser Interface Additional Utilities Alternatively from the main screen shown on Figure 1 1 you can access these additional functions e Password Change e Firmware Upgrade Password Change You can set a new password of up to 20 ASCII characters 1 Click Password Change from the
34. Status Displays the port s PoE status The possible field values are On The device is enabled to deliver power via the interface Off The device is disabled for delivering power via the interface Test Fail The powered device test has failed For example a port could not be enabled and cannot be used to deliver power to the powered device Testing The powered device is being tested For example a powered device is tested to confirm it is receiving power from the power supply Searching The device is currently searching for a powered device Searching is the default PoE operational status Fault The device has detected a fault on the powered device For example the powered device memory could not be read 2 Select an interface 3 12 Managing System Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 3 Select the Admin Mode and Priority Level from the lists in the provided fields in the first row 4 Click Apply to update the device SNMP Simple Network Management Protocol SNMP provides a method for managing network devices The device supports the following SNMP versions e SNMP vl and v2c e SNMP version 3 The SNMP agents maintain a list of variables that are used to manage the device The variables are defined in the Management Information Base MIB The SNMP agent defines the MIB specification format as well as the format used to
35. Switching gt STP gt Advanced gt STP Configuration The Advanced STP Configuration screen displays GS748TP 4B port Gigabit PoE Smort Switch 1oa0ur Porta LAG VLAN Voice VLAN Multicast Address Table STP Configuration Global Settings Root Port Max Age See Forward Delay Sec Malle Time Sec Figure 4 21 The Advanced STP Configuration screen contains the following fields Global Settings e Spanning Tree State Select the STP state on the device The possible field values are Enable Enable STP on the device Disable Disable STP on the device Status e Bridge Identifier Displays the Bridge priority and MAC address e Time Since Topology Change Displays the amount of time that has elapsed since the bridge was initialized or reset and the last topographic change that occurred The time is displayed in a day hour minute second format such as 2 days 5 hours 10 minutes and 4 seconds The current root port and current root cost display as zero when the device is not connected to the network 4 28 Configuring Switching Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e Designated Root Displays the Root Bridge priority and MAC address e Root Port Indicates the port number that offers the lowest cost path from this bridge to the Root Bridge This field is significant when the bridge is not the Root Bridge The default is zero
36. TFTP C via HTTP TFTP Server IP e Remote Filename SSS Figure 8 3 The Upload screen contains the following fields e File Type Enter the file type of the file to be uploaded The possible field values are Firmware Upload the Firmware File Configuration Upload the Configuration File e via TFTP Select to upload the file to the TFTP Server Maintenance 8 3 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e via HTTP Select to upload the file via the web browser interface HTTP and enter the file name in the provided box TFTP Server IP Enter the TFTP Server IP Address to which the Firmware or Configuration file is uploaded e Remote Filename Enter the destination file name to be uploaded Select Firmware or Configuration as the upload File Type from the provided field Enter the TFTP Server IP address in the provided field Enter the upload Remote Filename in the provided field wa PF YS Click Apply to upload the file Download The Download menu contains the following option e Download Download System files can be downloaded using the Download screen To download system files 1 Click Maintenance gt Download The Download screen displays NETGEAR GS7A8TP 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help LOGOUT File Management Troubleshooting Download v Download File Downlo
37. The Secondary SNTP server retrieves the system time if the Primary SNTP server times out The following option is available Delete Remove the currently configured SNTP Server 2 2 Enter the SNTP Server 1 and SNTP Server 2 in the provided fields 3 Click Apply to update the system settings To remove SNTP servers 1 Check the Delete box for each SNTP server that is to be removed 2 Click Apply to update the system settings Device View The Device View menu option displays the Device View screen which provides a graphic representation of the device including the port and LED statuses To display the Device View screen 1 Click System gt Device View The Device View screen displays NETGEAR GS748TP Connect with Innovat 48 port Gigabit PoE Smart Switch Connect with Innovation System Switching Qos Security Monitoring Maintenance Help LOGOUT Management Device View De OF SE AGAP AP BT SP RP DEAA EV GF AD AF BE ST Oe AD ST Ge ADOT aD daraa GS748TP Figure 3 5 PoE Power over Ethernet PoE provides power to devices over existing LAN cabling without updating or modifying the network infrastructure This removes the limitation of placing network devices close to power sources Managing System Settings 3 7 v1 0 November 2007 GS700TP Smart Switch Software Administration Manual Power over Ethernet can be used in the following applications e IP Phones e Wireless Access Points e IP Gateway
38. a round robin order All queues can participate in WRR except SP queues If the traffic flow is minimal and SP queues do not occupy the whole bandwidth allocated to a port the WRR queues can share the bandwidth with the SP queues This ensures that the remaining bandwidth is distributed according to the weight ratio If WRR is selected the following weights are assigned to the queues 1 2 4 8 The CoS menu contains the following options e Basic e Advanced Basic The CoS Basic menu contains the following options e CoS Global Configuration e CoS Interface Configuration e Queue e Bandwidth CoS Global Configuration The CoS Global Configuration screen contains information for enabling QoS globally To configure CoS global parameters 1 Click QoS gt CoS gt Basic gt CoS Global Configuration The CoS Global Configuration screen displays 48 port Gigabit PoE Smart Switch NETGEAR GS7A8TP System Switching Security Monitoring Maintenance Help CoS Global Configuration gt Cos Global CoS Global Configuration n gt CoS Interface Qos Mode Enable Disable oi Trust Mode CoS E Figure 5 1 5 2 Configuring QoS v1 0 December 2007 GS700TP Smart Switch Software Administration Manual The CoS Global Configuration screen contains the following e QoS Mode Select whether QoS is enabled or disabled on the device The possible values are Enable Ena
39. ano VLAN name 1 default Default E 2 Vian2 Static Figure 2 8 Modifying an Entry An entry may be modified by editing its values in the first row To modify an entry 1 Select the entry to be modified Its contents are displayed in the first row VLAN Configuration eit ian 1D VLAN Name default Default a Figure 2 9 2 Modify the fields in the first row 3 Click Apply to update the device Deleting an Entry To delete entries from a table 1 Select the entries to be deleted Introduction to the Web Browser Interface 2 7 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 2 Click Delete to update the device Special Table Options The NETGEAR web browser interface tables have a unique GUI design which includes the following options e Gold Buttons e Quick Boxes e Interface View and Selection Gold Buttons Gold Buttons provide flexibility in viewing and configuring VLANs LAGs on a port level The following example displays gold button basic usage options To view the LAG configuration of the ports 1 Click anywhere on the ports gold button The ports panel is displayed LAG Membership Membership Lac ID IE LAG Name Po LAG Type nz CURRENT MEMBERS FE Port 01 02 03 04 05 06 07 08 09 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 GE Port 1 2 3 4 Figure 2 10 2 Select the ports to be added as LAG members within the selected LAG by clicking on their
40. basic up to the maximum possible will allow your network the full benefit of the switch s features The web interface simplifies this configuration at all levels How to Use This Book This document describes configuration commands for the GS700TP Smart Switch software The commands can all be accessed from the Web interface e Chapter 1 Getting Started with Switch Management describes how to use the SmartWizard Discovery utility to set up your switch so that you can communicate with it e Chapter 2 Introduction to the Web Browser Interface introduces the Web browser interface e Chapter 3 Managing System Settings describes how to configure the System functions e Chapter 4 Configuring Switching Settings describes how to configure the Switching functions e Chapter 5 Configuring QoS describes how to configure QoS functions v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e Chapter 6 Managing Security describes how to configure security e Chapter 7 Monitoring the Switch describes how to configure switch monitoring e Chapter 8 Maintenance describes the firmware upgrade procedure and reset functions e Chapter 9 Online Help describes how to obtain online help and support e Appendix A Default Settings gives GS700TP Smart Switch specifications and lists default feature values Note Refer to the product release notes for the
41. be used with approved antennas only Any product changes or modifications will invalidate all applicable regulatory certifications and approvals FCC Guidelines for Human Exposure This equipment complies with FCC radiation exposure limits set forth for an uncontrolled environment This equipment should be installed and operated with a minimum distance of 20 cm between the radiator and your body This transmitter must not be co located or operating in conjunction with any other antenna or transmitter FCC Declaration Of Conformity We NETGEAR Inc 4500 Great America Parkway Santa Clara CA 95054 declare under our sole responsibility that the model GS700TP Gigabit PoE Smart Switch complies with Part 15 of FCC Rules Operation is subject to the following two conditions a This device may not cause harmful interference and b This device must accept any interference received including interference that may cause undesired operation Product and Publication Details Model Number GS700TP Publication Date December 2007 Product Family Smart Switch Product Name GS700TP Gigabit PoE Smart Switch Home or Business Product Business Language English Publication Part Number 202 10242 02 Publication Version Number 1 0 v1 0 December 2007 Contents About This Manual Who Should Use this Book ccccccccssesesecaeeceseeeceeeeesseeeaseaeseeceeeeceseseseesesaesaesseeeeeeesees ix Powa VIG AG IGN cc idacs doce diaaaaete
42. device Port Security Network security can be increased by limiting access on a specific port only to users with specific MAC addresses The MAC addresses can be dynamically learned or statically configured Locked port security monitors both received and learned packets that are received on specific ports Access to the locked port is limited to users with specific MAC addresses These addresses are either manually defined on the port or learned on that port up to the point when it is locked When a packet is received on a locked port and the packet source MAC address is not tied to that port either it was learned on a different port or it is unknown to the system the protection mechanism is invoked It provides the following options for unauthorized packets arriving at a locked port e Forwarded e Discarded with no trap e Discarded with a trap e Shuts down the port Locked port security also enables storing a list of MAC addresses in the configuration file The MAC address list can be restored after the device has been reset Managing Security 6 15 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To define port security 1 Click Security gt Traffic Control gt Port Security The Port Security screen displays NETGEAR GS7A8TP Connect with Innovation 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Port Security Port Security PORTS LA
43. device was last refreshed This number includes bad packets and FCS octets but excludes framing bits Broadcast Packets Received Displays the number of good broadcast packets received on the interface since the device was last refreshed This number does not include Multicast packets Monitoring the Switch v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e Multicast Packets Received Displays the number of good Multicast packets received on the interface since the device was last refreshed e CRC amp Align Errors Displays the number of CRC and Align errors that have occurred on the interface since the device was last refreshed e Undersize Packets Displays the number of undersized packets less than 64 octets received on the interface since the device was last refreshed e Oversize Packets Displays the number of oversized packets over 1518 octets received on the interface since the device was last refreshed e Fragments Displays the number of fragments packets with less than 64 octets excluding framing bits but including FCS octets received on the interface since the device was last refreshed e Jabbers Displays the total number of received packets that were longer than 1518 octets This number excludes frame bits but includes FCS octets that had either a bad Frame Check Sequence FCS with an integral number of octets FCS Error or a bad FCS with a non integral octet
44. field value is displayed in Watts e System Usage Threshold Enter the percentage of power consumed before an alarm is generated The field value is 1 99 percent The default is 95 percent e Traps Select the PoE device trap state The possible field values are Enable Enable PoE traps on the device Disable Disable PoE traps on the device This is the default value 2 Enter the System Usage Threshold in the provided field Select either Enable or Disable in the Traps field 4 Click Apply to update the device Advanced The PoE Advanced menu contains the following options e PoE Configuration e PoE Port Configuration PoE Configuration The Advanced PoE Configuration screen contains system PoE information for enabling PoE on the device monitoring the current power usage and enabling PoE traps Managing System Settings 3 9 v1 0 November 2007 GS700TP Smart Switch Software Administration Manual To configure PoE on the device 1 Click System gt PoE gt Advanced gt PoE Configuration The Advanced PoE Configuration screen displays GS7A8TP 48 port Gigabit PoE Smart Switch xe00ur PoE Configuration Poe Configuration Select Power Nominal Consums Figure 3 7 The PoE Configuration screen contains the following fields e Power Status Displays the online power source status The possible field values are On The power supply unit is functioning Off
45. is selected The range is 1 128 entries The default value is 1 Action Select the action to be applied to packets arriving on a locked port The possible field values are Forward Forwards packets from an unknown source without learning the MAC address Discard Discards packets from any unlearned source This is the default value Shutdown Discards packets from any unlearned source and shuts down the port The port remains shut down until reactivated or until the device is reset Trap Select whether traps are enabled or disabled when a packet from an unknown source is received on a locked port The possible field values are Enable Enable traps Disable Disable traps This is the default value Trap Frequency Sec Enter the frequency at which traps are sent The field format is in seconds The range is 1 1 000 000 The default value is 10 seconds Select the port security Status Learning Mode Action and Trap status from the lists in the provided fields in the first row Enter the Max Entries and Trap Frequency in the provided fields in the first row Click Apply to update the device Access Control Lists ACL allow network managers to define classification actions and rules for specific ingress ports Packets entering an ingress port with an active ACL are either admitted or denied entry and the ingress port is disabled If they are denied entry the user can disable the
46. number of dropped events that have occurred on the interface since the device was last refreshed e Received Bytes Displays the number of octets received on the interface since the device was last refreshed This number includes bad packets and FCS octets but excludes framing bits e Received Packets Displays the number of packets received on the interface including bad packets Multicast and Broadcast packets since the device was last refreshed 7 10 Monitoring the Switch v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e Broadcast Packets Received Displays the number of good broadcast packets received on the interface since the device was last refreshed This number does not include Multicast packets e Multicast Packets Received Displays the number of good Multicast packets received on the interface since the device was last refreshed e CRC amp Alignment Errors Displays the number of CRC and Align errors that have occurred on the interface since the device was last refreshed 2 Click Refresh or CLEAR ALL COUNTERS to refresh or reset the RMON Basic Statistics screen Advanced The RMON Advanced menu contains the following options Statistics History Control History Table Events Control Events Log Alarms Statistics The RMON Advanced Statistics screen contains fields for viewing information about device utilization and errors
47. remove an IP based ACL entry 1 Click Security gt ACL gt IP ACL The IP ACL screen displays 2 Select the ACL entry 3 Click Delete to remove the entry IP Rules The IP Rules screen allows an IP Rule to be defined within a configured ACL Rules can be added only if the ACL is not bound to an interface To define IP Rules 1 Click Security gt ACL gt IP Rules The IP Rules screen displays NETGEAR GS7A8TP onnect with Innovati 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Management Security Port Authentication Traffic Control IP Rules MAC ACL gt MAC Rules IP Rules gt MAC Binding Configuration ACL Name ACLI gt IP ACL gt IP Rules IP Rules Configuration Select i Source Destination a z source pestimanon gowee gatination acto gt Binding Table Eor pinsh IP IP G ju ICMP Permit ource D Figure 6 14 The IP Rules screen contains the following fields IP ACL e ACL Name Select the ACL Name from the list IP Rules e Priority Enter the rule priority When the packet is matched to a rule user groups are either granted permission or denied device management access The rule number is essential to matching packets to rules as packets are matched on a first fit basis e Protocol ID Enter the protocol in the rule to which the packet is matched Source IP Address Enter the source IP Address Managin
48. respective boxes 3 Click Apply to update the device Quick Boxes Quick Boxes provide users with flexibility in configuring VLANs for all ports or LAGs Clicking on the quick box toggles between the various options that exist for this field A quick box appears to the right of the arrow on the left hand side of the gold button The following example displays quick box basic usage options 2 8 Introduction to the Web Browser Interface v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To mark or unmark all ports 1 Click on the quick box that appears to the left of the ports gold button A T appears in the quick box This sets all ports as Tagged VLAN Membership VLAN Membership ane Figure 2 11 2 Click on the ports gold button to display the ports which are now all Tagged VLAN Membership VLAN Membership MAN name fon Static TAGGED PORT MEMBERS FE Port 01 02 03 04 05 06 07 03 09 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 THT TR TOTO TR TTR TTR TTR Te TTT eT eT eT eT eT eT eT eT Figure 2 12 3 Click again on the quick box and a U appears in the quick box and in all the port boxes marking the ports as untagged VLAN Membership VLAN Membership VLAN ID Group Operation VLAN Name UNTAGGED PORT MEMBERS VLAN Type TAGGED PORT MEMBERS FE Port 01 02 03 04 05 06 07 O8 09 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 UBUBUBUBUBUBUBUBUBUBUBUBUBUBUBUBUBUBUBUBU
49. separated by a period or a colon The Engine ID must be defined before SNMPv3 is enabled e Use Default Check the box to use the device generated Engine ID The default Engine ID is based on the device MAC address and is defined per standard as First 4 octets First bit 1 the rest is the IANA Enterprise number Fifth octet Set to 3 to indicate the MAC address that follows Last 6 octets MAC address of the device 2 Specify the Local Engine ID field or check Use Default to use the device generated Engine ID Checking Use Default will override any entry in the Local Engine ID field 3 Click Apply to update the device 3 18 Managing System Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual View Name The SNMPv3 View Name screen allows the network managers to define SNMPv3 View Names SNMPv3 views provide or block access to device features or portions of features To define SNMPv3 view names 1 Click System gt SNMP gt SNMPv3 gt View Name The SNMPv3 View Name screen displays NETGEAR GS748TP A ret ti 48 port Gigabit PoE Smart Switch onnect with Innovation System Switching Qos Security Monitoring Maintenance Help LoGouT Management Device View PoE View Name v SNMPv1 v2 v SNMPw3 View Name gt Engine ID gt View Name m Defaut I DefautSuper gt Trap Filter Name Trap Filter Content Figure 3 12 The SNMPv3
50. the RADIUS TACACS server 6 6 Managing Security v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To configure the Authentication List method 1 Click Security gt Management Security gt Authentication List The Authentication List screen displays 48 port Gigabit PoE Smart Switch NETGEAR GS7A8TP Connect with Innovation System Switching Qos Security Monitoring Maintenance Help Port Authentication Traffic Control ACL Authentication List User Configuration gt Change Password Authentication List gt TACACS otro EL S T O TACACS RADIUS Local The Authentication List screen contains the following fields e 1 2 3 Select the order in which authentication is applied The possible field values are TACACS Authenticate the user at the TACACS server For more information see TACACS RADIUS Authenticate the user at the RADIUS server For more information see RADIUS Local Authenticate the user at the device level The device checks the user name and password for authentication None Assign no authentication method to the authentication list Select the Authentication List entry Select the order of authentication 1 2 3 from the lists in the provided fields in the first row Click Apply to update the device Port Authentication The Port Authentication menu contains the following options Basic
51. 0 01 63 m 00 60 569 M 00 0F 2 Click Apply to update the device To add a new Voice VLAN OUI 1 2 3 4 5 Click Switching gt Voice VLAN gt Advanced gt OUI The Voice VLAN OUI screen displays Click Add to create a new entry or duplicate an existing entry Select the added OUI entry Enter the Telephone OUI and Description in the provided fields in the first editable row Click Apply to update the device To remove a Voice VLAN OUI 1 2 3 Click Switching gt Voice VLAN gt Advanced gt OUI The Voice VLAN OUI screen displays Select the Voice VLAN entry Click Delete to remove the entry To restore Voice VLAN OUI factory defaults 1 Click Switching gt Voice VLAN gt Advanced gt OUI The Voice VLAN OUI screen displays 2 Click RESTORE DEFAULTS to restore the factory defaults Configuring Switching Settings 4 25 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual STP Spanning Tree Protocol STP provides tree topography for any arrangement of bridges STP also provides a single path between end stations on a network eliminating loops Loops occur when alternate routes exist between hosts Loops in an extended network can cause bridges to forward traffic indefinitely resulting in increased traffic and reducing network efficiency The STP menu contains the following options e Basic e Advanced Basic The STP Basic menu contains the following options
52. 101000 Lowest z 110000 Lowest z 111000 Lowest z Assured Forwarding AF PHB Josce in Queue _ pscr in Queue__ pscr in Queue _ pscr tn Queue AF 21 AF 31 AF 41 Lowest z 010010 Lowest z 11010 Lowest z 100010 Lowest z AF 22 AF 32 AF 42 Lowest 010100 Lowest z 011100 Lowest 100100 Lowest z Lowest F2 Lowen 2 33 Lowen 2 3 Loves 01110 Lowest E gratia Lowest eoria Lowest ed ooro Lowest Expedited Forwarding EF PHB DSCP In EF 101110 Lowest Other DSCP Values Local Experimental Use scr in Jaueue _ psc im aucus ostr ma aueue 1 000001 Lowest 2 000010 Lowest 3 000011 4 000100 Lowest z 5000101 Lowest 6000110 Lowest 7000111 Lowest 9 001001 Lowest 11 001011 Low 13001101 Low 15001111 Low 17010001 Low z 49 010011 Low 2110101 Low 230010111 Low 25 011001 Low l z CANCEL APPLY Figure 5 6 The DSCP To Queue Mapping screen contains the following fields DSCP to Queue Mapping e DSCP In Displays the incoming packet s DSCP value The following DSCP In values are predefined 3 11 19 27 35 43 51 59 e Queue Select the traffic forwarding queue to which the DSCP is mapped Four traffic priority queues are supported Lowest Low Normal and High The High Queue is reserved for special traffic and is not recommended for use Restore Default Mapping Configuring QoS 5 9 v1 0 December
53. 3 v1 0 November 2007 GS700TP Smart Switch Software Administration Manual 5 e Security Level Select the security level attached to the group Security levels apply to SNMPv3 only The possible field values are No Authentication Neither the Authentication nor the Privacy security levels are assigned to the group Authentication Authenticates SNMP messages and ensures that the SNMP message s origin is authenticated Privacy Encrypts SNMP messages e Operation Select the group access rights The possible field values are Read Management access is restricted to read only Changes are made to the assigned SNMP view Write Management access is read write Changes are made to the assigned SNMP view Notify Sends traps for the assigned SNMP view Select the SNMP group entry Select the Security Model and Security Level from the lists in the provided fields in the first row Specify the group access rights for the selected SNMP views in the Operation provided fields in the first row Click Apply to update the device To add a new SNMPVv3 group 1 4 Click System gt SNMP gt SNMPv3 gt Group Configuration The SNMPv3 Groups screen displays Select the Security Model and Security Level from the lists in the provided fields in the first row Specify the group access rights for the selected SNMP views in the Operation provided fields in the first row Cl
54. 8 6 Chapter 9 Online Help PMN e A SU E asa E ca teteah tad Sa Sed ea E E A E E T 9 1 vi Contents v1 0 December 2007 GS700TP Smart Switch Software Administration Manual UII e T A A E E E E E T E ncanels 9 1 Re E a A elena onaluiateaiiesmnn ma tiateentasees 9 2 Appendix A Default Settings Index Contents vii v1 0 December 2007 GS700TP Smart Switch Software Administration Manual viii Contents v1 0 December 2007 About This Manual The NETGEAR GS700TP Smart Switch Software Administration Manual describes how to install configure operate and troubleshoot the GS700TP Gigabit PoE Smart Switch using its included software This book describes the software configuration procedures and explains the options available within those procedures Who Should Use this Book The information in this manual is intended for readers with intermediate to advanced system management skills This document was created primarily for the system administrator who wishes to install and configure the GS700TP Smart Switch in a network This user guide assumes that the reader has a general understanding of switch platforms and a basic knowledge of Ethernet and networking concepts To install this switch it is not necessary to understand and use all of its capabilities Once basic configuration is performed the switch operates using the remaining factory default parameters However a greater level of configuration anywhere from the
55. ACL TACACS gt Change Password TACACS gt RADIUS Host IP uthentication Timeout end ta SAK aad ort Oo 49 Enable Primary E 48 Enable Primary Figure 6 3 The TACACS screen contains the following fields Host IP Address Enter the TACACS Server IP address Key String Enter the default authentication and encryption key for TACACS communication between the device and the TACACS server Authentication Port Enter the port number via which the TACACS session occurs The default port is port 49 Timeout for Reply Enter the amount of time in seconds the device waits for an answer from the TACACS server before retrying the query or switching to the next server Possible field values are 1 30 The default value is 5 Single Connection Select whether a single open connection between the host Authentication Port and the TACACS server is enabled or disabled The possible field values are Enable Enable a single connection Disable Disable a single connection Active Select whether this server is the primary or backup TACACS server used for authentication The possible values are Primary Define the TACACS Primary Server Backup Define the TACACS Backup Server Managing Security 6 5 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 2 Select the TACACS server entry Enter the Host IP Address Key String Authentica
56. ADIUS communications between the device and the RADIUS server This key must match the RADIUS encryption Usage Type Select the RADIUS server authentication type The default value is Login The possible field values are Login The RADIUS server is used for authenticating user name and passwords 802 1X The RADIUS server is used for 802 1X authentication All The RADIUS server is used for authenticating user names and passwords and 802 1X port authentication Managing Security 6 3 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e Active Select the priority in which the system performs authentication with a Radius Server The system performs authentication initially with the Radius Primary Server and if it fails it performs authentication with the Radius Backup Server The possible values are Primary Defines the RADIUS Primary Server Backup Defines the RADIUS Backup Server 2 Select the RADIUS server entry Enter the Host IP Address Authentication Port Number of Retries Timeout for Reply Dead Time and Key String in the provided fields in the first row 4 Select the Usage Type and Active server from the lists in the provided fields in the first row 5 Click Apply to update the device To add a new RADIUS server entry 1 Click Security gt Management Security gt RADIUS The RADIUS screen displays 2 Enter the Host IP Address Authentication Po
57. ADIUS servers 6 2 Managing Security v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To configure RADIUS servers 1 Click Security gt Management Security gt RADIUS The RADIUS screen displays 48 port Gigabit PoE Smart Switch NETGEAR __GS7A8TP System Switching Qos Security Monitoring Maintenance Help ication Traffic Control ACL RADIUS gt Change Password RADIUS v RADIUS Host IP Authentication Number o EEE ae Bee etries or Re a m WD ogi Priemrs Figure 6 2 The RADIUS screen contains the following fields Host IP Address Enter the RADIUS Server IP address Authentication Port Enter the authentication port The authentication port is used to verify the RADIUS server authentication The authenticated port default is 1812 Number of Retries Enter the number of transmitted requests sent to the RADIUS server before a failure occurs Possible field values are 1 10 The default value is 3 Timeout for Reply Enter the amount of time in seconds the device waits for an answer from the RADIUS server before retrying the query or switching to the next server Possible field values are 1 30 The default value is 3 Dead Time Enter the default amount of time in minutes that a RADIUS server is bypassed for service requests The range is 0 200 The default value is 0 Key String Enter the default key string used for authenticating and encrypting all R
58. ANs traffic priority and configure port trunking In addition NETGEAR provides the SmartWizard Discovery utility with this product This program runs under Microsoft Windows XP or Windows 2000 and provides a front end that discovers the switches on your network segment When you power up your switch for the first time the SmartWizard Discovery utility enables you to configure its basic network parameters without prior knowledge of IP address or subnet mask Following such configuration this program leads you into the Web Management interface Some features of the SmartWizard Discovery utility and Web Management interface are shown in the table below 1 2 Getting Started with Switch Management v1 0 December 2007 GS700TP Smart Switch Software Administration Manual Table 1 1 Switch Management Methods Management Method Features SmartWizard Discovery utility No IP address or subnet mask setup needed Discover all switches on the network User friendly interface under Microsoft Windows Firmware upgrade capability Password change feature Provides entry to web configuration of switch Web browser interface Password protection Ideal for configuring the switch remotely Compatible with Internet Explorer and Netscape Navigator on any platform Extensive switch configuration possible Configuration backup and restore Can be accessed from any location via the switch s IP address Intuitive browser inter
59. Address Table Figure 4 32 The Dynamic Addresses screen contains the following field e Address Aging Enter the amount of time the MAC address remains in the Dynamic MAC Address table before it is timed out if no traffic from the source is detected The range is 10 630 seconds The default value is 300 seconds 2 Enter the Address Aging in the provided field in the first row Click Apply to update the device Configuring Switching Settings 4 45 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual Address Table The Advanced Address Table screen displays the MAC Address table according to the defined categories To query the Advanced MAC Address Table 1 Click Switching gt Address Table gt Advanced gt Address Table The Advanced Address Table screen displays NETGEAR GS748TP 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Ports LAG VLAN Voice VLAN STP Multicast Address Table Address Table Search By VLAN ID Address Table T MAC Address Table First Previous Next All VLANI 11 ff aa 22 33 cC fhitththtttt itffaaaaaaaa 11 11 11 11 11 11 tt tt tt 22 ff ce tt t3 tf t6 ff 8f taffiaciabiaa fa 14 17 d1 dd 11 cc First Previous Next All CLEAR ALL REFRESH Figure 4 33 The Advanced Address Table screen contains the following fields e Search By Display the MAC Address which can be sorted accor
60. An alert log is saved if there is a serious device malfunction for example all device features are down Critical The third highest warning level A critical log is saved if a critical device malfunction occurs for example two device ports are not functioning while the rest of the device ports remain functional Error A device error has occurred for example if a single port is offline Warning The lowest level of a device warning The device is functioning but an operational problem has occurred Notice Provides device information Informational Provides device information Debug Provides debugging messages Description Displays the log message text 2 Click Refresh or Clear Logs to refresh or reset the Flash Logs screen Server Log The Server Log screen contains information for viewing and configuring the remote log servers New log servers can be defined and the log severity sent to each server To configure remote log servers 1 Click Monitoring gt Logs gt Server Log The Server Log screen displays NETGEAR GS7A8TP Connect with Innovation 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Server Log gt Log Configuration gt Log Filter Server Log gt Flash Log ee ae eee Oo LERE Figure 7 5 Monitoring the Switch 7 7 v1 0 December 2007 GS700TP Smart Switch Software Administrati
61. BUBUBU Figure 2 13 Introduction to the Web Browser Interface 2 9 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 4 Click again on the quick box and the quick box and all the port boxes appear blank marking the ports as neither tagged nor untagged 5 You may click on individual port boxes to toggle their tagged untagged status Interface View and Selection A port or LAG interface may be selected from a table by using the interface selection row located above the row of column headers Clicking on PORTS or LAGS displays the ports or the LAGs GS748TP 48 port Gigabit PoE Smort Switch Security Monitoring Maintenance Help tocou STP Multicast Address Table Port PVID Configuration Port PVID Configuration s PORTS LAGS All eJ k k kA i a a r r r r r r r r r r r r r r r r r r ra s2 913 gu os one 97 ge 319 Cead 2 2 Figure 2 14 To display all ports 1 Click PORTS in the interface selection row The screen displays a table of all ports 2 10 Introduction to the Web Browser Interface v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To display all interfaces 1 Click All in the interface selection row A confirmation window opens This operation may take some time would you like to proceed es Pee Figure 2 15 2 Click OK The screen displays a table of all interfaces To display t
62. C Address Enter the MAC address to which the entry refers e Interface Enter the interface to which the entry refers e Status Select the MAC Address duration period within the table The possible field values are 4 44 Configuring Switching Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual Permanent The MAC address is permanent Delete on Reset The MAC address is deleted when the device is reset Delete on Timeout The MAC address is deleted when the Address Aging Interval expires Secure The MAC Address is defined for locked interfaces Select the address table entry Enter the MAC Address and Interface in the provided fields in the first row 4 Select the MAC Address duration period Status from the list in the provided field in the first row 5 Click Apply to update the device Dynamic Addresses The Dynamic Addresses screen contains information about the aging time before a dynamic MAC address is erased To configure the Dynamic MAC Address table 1 Click Switching gt Address Table gt Advanced gt Dynamic Addresses The Dynamic Addresses screen displays NETGEAR GS748TP fyi 48 port Gigabit PoE Smart Switch onnect with Innovation System Switching Qos Security Monitoring Maintenance Help LOGOUT Dynamic Addresses v Advanced Dynamic Addresses gt Static Addresses Address Aging 300 gt Dynamic Addresses
63. Chapter 5 Configuring QoS describes how to configure QoS functions e Chapter 6 Managing Security describes how to configure security e Chapter 7 Monitoring the Switch describes how to configure monitoring functions e Chapter 8 Maintenance describes maintenance functions such as firmware upgrade e Chapter 9 Online Help describes how to obtain online help and support Using the NETGEAR Web Management System Options The GS700TP web browser interface provides the following options e Device Management Buttons Provides an explanation of the management buttons in the NETGEAR GS700TP Smart Switch e Informational Services Provides access to informational services including technical support online help and device information e Using Screen and Table Options Provides an explanation of specific GUI characteristics and tables for configuring the device Device Management Buttons The NETGEAR GS700TP Smart Switch web browser GUI management buttons allow network managers to easily configure the device from remote locations The management buttons are shown below Table 1 Device Management Buttons Button Name Description ADD Adds information to tables or information windows APPLY Applies configured changes to the device CANCEL Cancels modifications to tables or information windows Introduction to the Web Browser Interface 2 3 v1 0 December 2007 GS700TP S
64. E A E E E T E e I A E N 4 1 LA aae E A date sa Sadia atau 4 4 VEAN canna ti susaliearsbta acaetrnetaeus aaenteteara eee nt 4 14 WOES GLA arianna E eae nee ea eee 4 21 NR aes aio at pany esis A aed Vaaiinpa do Tisai Ora ascension ese nse aaa anaes LET 4 26 MUNGES soek conch cate pnelesee te aa e Na 4 33 Address TapE saa a a 4 42 Chapter 5 Configuring QoS Configuring the Basic and Advanced QoS Settings sinseriniirninnnanionnnnnini tinni 5 1 E E E pyre EE errert er E E E rr torre tener E tT Srrnorerrr reper re 5 1 Chapter 6 Managing Security SETI Security Coniguraton LUO IONNG csicsa n santebadsuonaede 6 1 peee e aeee E e a a A ceed vnSusiea E E E N E E 6 1 PORES Ue RUBIO naiai E 6 7 Tane GOH acara aime aa AIO 6 13 ss as di iat maith E A NM hia iii E E A A cabin cui taam E 6 17 Chapter 7 Monitoring the Switch Seling Monktonng KIN 52s acc caen oesuraeacenecvaauacnsenaieaaet accaddaptetasaxepuasndadenrtanneiacacetiaiuieacees 7 1 LOOS sccccccaseipisteeniesdate sannipaceandened E cnsedaicysdoansmmaneaccaninis 7 1 EE errs tess aunts Sina A span inne eta A T A AT O 7 9 EoNOT 7 22 Chapter 8 Maintenance Using the Maintenance COURS s siissmirssn viiren a auaa a aa 8 1 ROSEE lt 5 iaateessssiniuietts sashenigren paustasadesaantentid pasinleatiaqea tasada aapivesidaadingnajaattenl tan enad pete purepaas 8 1 AO aaa 8 3 Bare a EE E E E A A E E E E A E TE 8 4 aA e E T A T A N T A re err TT 8 5 Poupe nO re canny lade euhoieLaeededgsoeeeen ito eatenees
65. Enter the rising counter value that triggers the rising threshold alarm The rising threshold is presented on top of the graph bars Each monitored variable is designated a color e Rising Event Enter the event number by which rising alarms are reported e Falling Threshold Enter the falling counter value that triggers the falling threshold alarm The falling threshold is graphically presented on top of the graph bars Each monitored variable is designated a color e Falling Event Enter the event number by which falling alarms are reported e Startup Alarm Select the trigger that activates the alarm generation Rising is defined by crossing the threshold from a low value threshold to a higher value threshold The possible field values are Rising Alarm The alarm is triggered by the rising counter crossing the rising threshold value Falling Alarm The alarm is triggered by the falling counter crossing the falling threshold value Rising and Falling The alarm is triggered by either the rising counter crossing the rising threshold value or the falling counter crossing the falling threshold value e Interval Enter the alarm interval time in seconds e Owner Enter the device or user that defined the alarm Select the alarm entry Select the Counter Name from the list of MIB variable values in the provided field in the first row Enter the Interface in the provided field in the first row Sel
66. GS All GO TO INTERFACE SO eee ESTE COE gt Classic Lock g2 Classic Lock 3 Classic Lock g4 Classic Lock 95 Classic Lock 96 Classic Lock o7 Classic Lock g8 Classic Lock 99 Classic Lock Classic Lock Classic Lock Classic Lock Classic Lock Classic Lock Classic Lock a 6 E mi a m B 6 L Oo B 6 E m Figure 6 9 The Port Security screen contains the following fields e Interface Displays the port or LAG name e Status Select the port security status The possible field values are Locked The port is currently locked Unlocked The port is currently unlocked This is the default value e Learning Mode Select the locked port type The possible field values are Classic Lock Locks the port and only forwards packets that have been learned statically or dynamically prior to locking the port The lock is effective immediately Limited Dynamic Lock The port is unlocked Locks the port after a user defined number of MAC addresses have been dynamically learned on the port After the port is locked packets are forwarded only from MAC addressees that have been learned prior to locking the port 6 16 Managing Security v1 0 December 2007 GS700TP Smart Switch Software Administration Manual ACL Max Entries Enter the maximum number of MAC addresses that can be learned on the port The Max Entries field is enabled only if the Limited Dynamic Lock mode
67. GS700TP Smart Switch Software Administration Manual NETGEAR NETGEAR Inc 4500 Great America Parkway Santa Clara CA 95054 USA 202 10242 02 December 2007 GS700TP Smart Switch Software Administration Manual 2007 by NETGEAR Inc All Rights reserved Trademarks NETGEAR and the NETGEAR logo are registered trademarks of NETGEAR Inc in the United States and or other countries Microsoft Windows and Windows NT are registered trademarks and Vista is a trademark of Microsoft Corporation Other brand and product names are trademarks or registered trademarks of their respective holders Statement of Conditions In the interest of improving internal design operational function and or reliability NETGEAR reserves the right to make changes to the products described in this document without notice NETGEAR does not assume any liability that may occur due to the use or application of the product s or circuit layout s described herein Information is subject to change without notice Certificate of the Manufacturer Importer It is hereby certified that the GS700TP Gigabit PoE Smart Switch has been suppressed in accordance with the conditions set out in the BMPT AmtsblVfg 243 1991 and Vfg 46 1992 The operation of some equipment for example test transmitters in accordance with the regulations may however be subject to certain restrictions Please refer to the notes in the operating instructions The Federal Office for Teleco
68. GS700TP Smart Switch Software es application level code The release notes detail the platform specific functionality of the Switching SNMP Config and Management packages Conventions Formats and Scope The conventions formats and scope of this manual are described in the following paragraphs e Typographical Conventions This manual uses the following typographical conventions Italics Emphasis books CDs file and server names extensions Bold User input IP addresses GUI screen text Fixed Command prompt CLI text code italics URL links e Formats This manual uses the following formats to highlight special messages gt Note This format is used to highlight information of importance or special interest 9 Tip This format is used to highlight a procedure that will save time or resources Warning Ignoring this type of note may result in a malfunction or damage to the equipment x About This Manual v1 0 December 2007 GS700TP Smart Switch Software Administration Manual AY Danger This is a safety warning Failure to take heed of this notice may result in personal injury or death e Scope This manual is written for the GS700TP Smart Switch according to these specifications Product Version GS700TP Gigabit PoE Smart Switch Manual Publication Date November 2007 gt Note Product updates are available on
69. GS700TP Smart Switch Software Administration Manual e Max EAP Requests Enter the total amount of EAP requests sent If a response is not received after the defined period the authentication process is restarted The field default is 2 retries e Supplicant Timeout Enter the amount of time in seconds that lapses before EAP requests are resent to the supplicant The field default is 30 seconds e Server Timeout Enter the amount of time in seconds that lapses before the device re sends a request to the authentication server The field default is 30 seconds e Termination Cause Displays the reason port authentication was terminated 2 Select the interface 3 Select the Port Control state Guest VLAN mode and Periodic Reauthentication status in the provided fields in the first row 4 If you selected Enable as the Periodic Reauthentication status enter the Reauthentication Period in the provided field in the first row 5 Enter the Quiet Period Resending EAP time Max EAP Requests Supplicant Timeout and Server Timeout in the provided field in the first row 6 Click Apply to update the device Traffic Control The Traffic Control menu contains the following options e Storm Control e Port Security Storm Control Storm Control limits the amount of Multicast and Broadcast frames accepted and forwarded by the device When Layer 2 frames are forwarded Broadcast and Multicast frames are floode
70. LAN ports by default treating the packet as a Multicast transmission Multicast traffic forwarding is functional However irrelevant ports also receive the Multicast causing increased network traffic Multicast forwarding filters enable forwarding of Layer 2 packets to port subsets defined in the Multicast filter database The device supports forwarding L2 Multicast Packets Multicast forwarding is enabled by default and not configurable by user The Multicast menu contains the following options e Basic e Advanced Basic The Multicast Basic menu contains the following options e IGMP Snooping Configuration IGMP Snooping Configuration When IGMP snooping is enabled all IGMP packets are forwarded to the CPU The CPU analyzes the incoming packets and determines which ports want to join which Multicast groups which ports have Multicast routers generating IGMP queries and what routing protocols are forwarding packets and Multicast traffic Ports requesting to join a specific Multicast group issues an IGMP report specifying that Multicast group This results in the creation of the Multicast filtering database 4 34 Configuring Switching Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To configure Basic IGMP Snooping 1 Click Switching gt Multicast gt Basic gt IGMP Snooping Configuration The Basic IGMP Snooping Configuration screen displays NETGEAR GS748TP abot
71. Management Station and Community String in the provided fields in the first row Select the Group Name from the list in the provided field in the first row Click Add to update the device 3 22 Managing System Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To remove an SNMPv3 community 1 Click System gt SNMP gt SNMPv3 gt Community Configuration The SNMPv3 Community Configuration screen displays 2 Select the community entry Click Delete to remove the entry Group Configuration The SNMPv3 Groups screen provides information for creating SNMP groups and assigning SNMP access control privileges to SNMP groups Groups allow network managers to assign access rights to specific device features or feature aspects To define an SNMP group 1 Click System gt SNMP gt SNMPvVv3 gt Group Configuration The SNMPv3 Groups screen displays NETGEAR GS748TP 48 port Gigabit PoE Smart Swite rosou Figure 3 15 The SNMPv3 Groups screen contains the following fields e Group Name Enter the user defined group to which access control rules are applied The field range is up to 30 characters e Security Model Select the SNMP version associated with the group The possible field values are SNMPv1 SNMPv1 is defined for the group SNMPv2 SNMPv2c is defined for the group SNMPv3 SNMPv3 is defined for the group Managing System Settings 3 2
72. QoS and priority queuing within a network For example certain types of traffic that require minimal delay such as Voice Video and real time traffic can be assigned to a high priority queue while other traffic can be assigned to a lower priority queue The result is an improved traffic flow for traffic with high demand QoS is defined by e Classification Specifies which packet fields are matched to specific values All packets matching the user defined specifications are classified together e Action Defines traffic management where packet forwarding is based on packet information and packet field values such as VLAN Priority Tag VPT and DiffServ Code Point DSCP After packets are assigned to a specific egress queue CoS services can be assigned to the queue Egress queues are configured with a scheduling scheme by one of the following methods Strict Priority Ensures that time sensitive applications are always forwarded Strict Priority SP allows the prioritization of mission critical time sensitive traffic over less time sensitive applications For example under SP voice over IP VoIP traffic can be prioritized so that it is forwarded before FTP or email SMTP traffic 5 1 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e Weighted Round Robin Ensures that a single application does not dominate the device forwarding capacity Weighted Round Robin WRR forwards entire queues in
73. Switch Setting section The Password Change screen appears You can set a new password You must enter the old and new passwords and confirm the new one 2 Click Set to enable the new password 1 8 Getting Started with Switch Management v1 0 December 2007 GS700TP Smart Switch Software Administration Manual Firmware Upgrade The GS700TP Smart Switch software is upgradeable and enables your switch to take advantage of improvements and additional features as they become available The upgrade procedure assumes that you have downloaded or otherwise obtained the firmware upgrade and that you have it available as a binary file on your computer This procedure uses the TFTP protocol to implement the transfer from computer to switch Note You can also upgrade the firmware using the Download menu of the switch see Download If you click Firmware Upgrade from the main screen see Figure 1 1 after you have selected the switch to upgrade the following screen appears Firmware Upgrade Upgrade List Progress Product Name IP Address FS700TS 192 168 0 239 lt Upgrade Configuration Product Name FS700TS Product IPAddress 192 168 0 239 Product Assigned Firmware C Netgear Projects FS700TS Software Upgrade Password Apply Upgrade State Start Upgrade Close Window Figure 1 5 1 Enter the following values into the appropriate places in the form e Product Assigned Fir
74. To add a new MAC based ACL entry 1 Click Security gt ACL gt MAC ACL The MAC Configuration screen displays 2 Enter the ACL Name in the provided field in the first row 3 Click Add to update the device To remove a MAC based ACL entry 1 Click Security gt ACL gt MAC ACL The MAC Configuration screen displays 2 Select the ACL entry 3 Click Delete to remove the entry MAC Rules The MAC Rules screen allows a MAC Rule to be defined within a configured ACL Rules can be added only if the ACL is not bound to an interface To define MAC Rules 1 Click Security gt ACL gt MAC Rules The MAC Rules screen displays NETGEAR GS748TP Connect with Innovation 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Management Security Port Authentication Traffic Control MAC Rules gt MAC ACL MAC Rules MAC ACL MAC Binding Configuration ACL Name ACLI gt IP ACL raninules Rule Table gt IP Binding Configuration VLAN 10 gt Binding Table MAC MAC aiivess Mook _ aitress mee _ Oo Permit Figure 6 11 The MAC Rules screen contains the following fields MAC ACL e ACL Name Select the ACL Name from the list Rule Table Managing Security 6 19 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 2 3 4 5 e Priority Defines the rule priority When the packet is matched to a rule user groups are either granted perm
75. To configure SNMP notification global parameters 1 Click System gt SNMP gt SNMPv3 gt Global Trap Configuration The SNMPv3 Global Trap Settings screen displays NETGEAR GS748TP 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help tocour Management Device View PoE Global Trap Settings v SNMPv1 v2 v SNMPv3 Global Trap Settings SNMP Notifications C Disable Enable Authentication Notifications Disable Enable gt User gt Global Trap Configuration Trap Configuration Trap Filter Name gt Trap Filter Content Figure 3 17 The SNMPv3 Global Trap Settings screen contains the following fields e SNMP Notifications Select whether or not the device can send SNMP notifications The possible field values are Enable Enable SNMP notifications Disable Disable SNMP notifications Authentication Notifications Select the SNMP authentication failure notification status on the device The possible field values are Enable Enable the device to send authentication failure notifications Managing System Settings 3 27 v1 0 November 2007 GS700TP Smart Switch Software Administration Manual Disable Disable the device from sending authentication failure notifications 2 Select either Enable or Disable in the SNMP Notifications provided field 3 Select either Enable or Disable in the Authentication No
76. Up 100M Disable o a2 Up 100M Full Disable 93 Up 100M Full Disable g4 Up 100M Full Disable g5 Up 100M Full Disable 98 Up 100M Full Disable o7 Up 100M Full Disable 98 Up 100M Full Disable 99 Up 100M Full Disable gid Up Full Disable Up Full Disable g12 Up Full Disable Up Full Disable gia Up Full Disable Up Ful Disable z r z F E A r r E P a r Figure 4 1 The Port Configuration screen contains the following fields e Port Displays the port number Port Description Enter a user defined port description e Status Select the port s operational status The possible field values are Up The port is operational Down The port is not operational e Reactivate Suspended Select the reactivation status for a port disabled through the locked port security option The possible field values are Enable Enable reactivation Disable Disable reactivation 4 2 Configuring Switching Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e Port Speed Select the data transmission rate for the port The port type determines which speed setting options are available Port speeds can only be configured when auto negotiation is disabled The possible field values are 10M The port is currently operating at 10 Mbps 100M The port is currently operating at 100 Mbps 1000M The port is currently operating at 1000 Mbps e
77. VLAN Configuration screen displays Select the VLAN entry Click Delete to remove the entry VLAN Membership The VLAN Membership screen contains a table that maps ports to VLANs Ports are assigned VLAN membership by toggling through the Port Control settings To define VLAN group membership 1 Click Switching gt VLAN gt Advanced gt VLAN Membership The VLAN Membership screen displays GS748TP itch 4B port Gigabit PoE Smart Swi tocovr VLAN Membership VLAN Membership Figure 4 12 Configuring Switching Settings 4 17 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual The VLAN Membership screen contains the following fields e VLAN ID Select the VLAN ID to be displayed and configured VLAN ID 1 cannot be modified e VLAN Name Displays the name of the VLAN e VLAN Type Displays the VLAN type The possible field values are Static The VLAN is user defined Default The VLAN is the default VLAN The default VLAN is enabled e Group Operation Select the VLAN membership for all ports and LAGs The possible field values are Tag All Defines all selected interfaces as tagged VLAN members Packets belonging to the respective VLAN are tagged The packets contain VLAN information Untag All Defines all selected interfaces as untagged VLAN members Packets belonging to the respective VLAN are untagged Remove All
78. View Name screen contains the following field e View Name Enter the user defined view name The view name can contain a maximum of 30 alphanumeric characters 2 Select the entry 3 Enter the View Name field in the first row 4 Click Apply to update the device To add a new SNMP View Name 1 Click System gt SNMP gt SNMPv3 gt View Name The SNMPv3 View Name screen displays 2 Enter the View Name field in the first row 3 Click Add to update the device To remove an SNMP View Name 1 Click System gt SNMP gt SNMPv3 gt View Name The SNMPv3 View Name screen displays 2 Select the entry to be removed Managing System Settings 3 19 v1 0 November 2007 GS700TP Smart Switch Software Administration Manual 3 Click Delete to remove the entry View Content SNMP views provide or block access to device features or portions of features For example a view can be defined to provide a view that SNMP group A has Read Only R O access to Multicast groups while SNMP group B has Read Write R W access to Multicast groups Feature access is granted via the MIB name or MIB Object ID To define the SNMP View Content 1 Click System gt SNMP gt SNMPv3 gt View Content The SNMPv3 View Content screen displays GS7A8TP 48 port Gigabit PoE Smart Switch rooour View Content Views View name ra Object ID Subtree res Figure 3 13 The SNMPv3 View Content screen contains the foll
79. a list of user defined notification filters Trap Filter Settings e Object ID Subtree Enter the OID for which notifications are sent or blocked If a filter is attached to an OID traps or informs are generated and sent to the trap recipients OIDs are selected from either the Select field or the Object ID field e Filter Type Select whether to send traps or informs relating to the selected OID The possible field values are Excluded Does not send traps or informs Included Sends traps or informs Select the Filter Name from the list in the provided field Select the trap filter content entry from the OID table Enter the Object ID Subtree in the provided field in the first row Select the Filter Type from the list in the provided field in the first row Click Apply to update the device To add a new trap filter content entry 1 2 3 4 5 Click System gt SNMP gt SNMPv3 gt Trap Filter Content The SNMPv3 Trap Filter Content screen displays Select the Filter Name from the list in the provided field Enter the Object ID Subtree in the provided field in the first row Select the Filter Type from the list in the provided field in the first row Click Add to update the device To remove a trap filter content entry 1 Click System gt SNMP gt SNMPv3 gt Trap Filter Content The SNMPv3 Trap Filter Content screen displays 2 Select the Filter Name from the list in the provided field Sele
80. access the information over the network Access strings control access rights to the SNMP agents SNMP v3 applies access control and a new traps mechanism In addition User Security Model USM parameters are defined for SNMPv3 including e Authentication Provides data integrity and data origin authentication e Privacy Protects against the disclosure of message content Cipher Block Chaining CBC is used for encryption Either authentication is enabled on an SNMP message or both authentication and privacy However privacy cannot be enabled without authentication e Timeliness Protects against message delay or message redundancy The SNMP agent compares the incoming message to the message time information Enter the amount of time the device waits before re sending informs e Key Management Enter key generation key updates and key usage The device supports SNMP notification filters based on Object IDs OIDs OIDs are used by the system to manage device features SNMP v3 supports the following features e Security e Feature Access Control e Traps The device generates copy traps The SNMP menu contains the following options SNMPv1 v2 e SNMPv3 Managing System Settings 3 13 v1 0 November 2007 GS700TP Smart Switch Software Administration Manual SNMPv1 v2 The SNMPv1 v2 menu contains the following options e Community Configuration e Trap Configuration Community Configur
81. ad FileType Fimwae E via TFTP C via HTTP TFTP Server IP E e Remote Filename a Figure 8 4 8 4 Maintenance v1 0 December 2007 GS700TP Smart Switch Software Administration Manual The Download screen contains the following fields e File Type Enter the file type to be downloaded The possible field values are Firmware Download the Firmware file Boot File Download the Boot file Configuration Download the Configuration file e via TFTP Select to download the file from the TFTP Server e via HTTP Select to download the file via the web browser interface HTTP and enter the file name in the provided box TFTP Server IP Enter the TFTP Server IP Address from which the Firmware Boot or Configuration file is downloaded e Remote Filename Enter the destination file name to be downloaded 2 Select Firmware Boot File or Configuration as the download File Type from the provided field Enter the TFTP Server IP address in the provided field 4 Enter the download Remote Filename in the provided field 5 Click Apply to download the file File Management The File Management menu contains the following option e Active Image Active Image The Active Image screen enables the user to select which image will be set as active after the next reset Maintenance 8 5 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To define the active i
82. aiei 48 port Gigabit PoE Smart Switch Connect with Innovation System Switching Qos Security Monitoring Maintenance Help LOGOUT Ports LAG VLAN Voice VLAN STP IGMP Snooping Configuration v Basic gt IGMP Snooping IGMP Snooping Configuration Configuration gt Advances d IGMP Snooping Status C Disable Enable Interface Settings O ji Disable Figure 4 25 The Basic IGMP Snooping Configuration screen contains the following fields IGMP Snooping Configuration e IGMP Snooping Status Select the IGMP Snooping status on the device The possible field values are Enable Enable IGMP Snooping on the device Disable Disable IGMP Snooping on the device Interface Settings e VLAN ID Displays the VLAN ID e Status Select the IGMP Snooping status on the VLAN The possible field values are Enable Enable IGMP Snooping on the VLAN Disable Disable IGMP Snooping on the VLAN 2 Select the IGMP Snooping Status in the provided field 3 Click Apply to update the device To configure IGMP Snooping on a VLAN 1 Click Switching gt Multicast gt Basic gt IGMP Snooping Configuration The Basic IGMP Snooping Configuration screen displays 2 Select the VLAN ID entry in the Interface Settings table Configuring Switching Settings 4 35 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 3 Select the Status from the list in the provided field in the first row
83. ains the following fields e RAM Logs Select the minimum message severity level to appear in the RAM Log The following are the available message severity levels Emergency The highest warning level If the device is down or not functioning properly an emergency log message is saved to the specified logging location Alert The second highest warning level An alert log is saved if there is a serious device malfunction for example all device features are down Critical The third highest warning level A critical log is saved if a critical device malfunction occurs for example two device ports are not functioning while the rest of the device ports remain functional Error A device error has occurred for example if a single port is offline Warning The lowest level of a device warning The device is functioning but an operational problem has occurred Notice Provides device information Informational Provides device information Debug Provides debugging messages e Log File Select the minimum message severity level to appear in the log file The following are the available message severity levels Monitoring the Switch 7 3 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual Emergency The highest warning level If the device is down or not functioning properly an emergency log message is saved to the specified logging location
84. ameters for configuring device passwords Authentication on this device uses only a password not a username To change the device password 1 Click Security gt Management Security gt User Configuration gt Change Password The Change Password screen displays 48TP NETGEA R 48 port Gigabit PoE osr AAA System Switching Qos Security Monitoring Maintenance Help Port Authentication Traffic Control ACL Change Password v User Configuration gt Change Password Change Password gt RADIUS gt TACACS User Name Admin Old Pa ord New Passwor rd T Retype New Password gt Authentication List Figure 6 1 The Change Password screen contains the following fields e User Name Displays the User Name e Old Password Enter the current password for accessing the system e New Password Enter a new password for accessing the system e Retype New Password Repeat the new password used to access the system 2 Enter the Old Password New Password and Retype New Password in the provided fields Click Apply to update the device RADIUS Remote Authorization Dial In User Service RADIUS servers provide additional security for networks RADIUS servers provide a centralized authentication method for web access The default parameters are user defined and are applied to newly defined RADIUS servers If new default parameters are not defined the system default values are applied to newly defined R
85. amount of time it takes for network changes additions and moves to be implemented VLANs have no minimum number of ports and can be created per unit per device or through any other logical connection combination since they are software based and not defined by physical attributes VLANs function at Layer 2 Since VLANs isolate traffic within the LAN a Layer 3 router working at a protocol level is required to allow traffic flow between VLANs Layer 3 routers identify segments and coordinate with VLANs VLANs are Broadcast and Multicast domains Broadcast and Multicast traffic is transmitted only in the VLAN in which the traffic is generated VLAN tagging provides a method of transferring VLAN information between VLAN groups VLAN tagging attaches a 4 byte tag to packet headers The VLAN tag indicates to which VLAN the packets belong VLAN tags are attached to the VLAN by either the end station or the network device VLAN tags also contain VLAN network priority information The VLAN menu contains the following options e Basic e Advanced Basic The VLAN Basic menu contains the following options e VLAN Configuration VLAN Configuration The Basic VLAN Configuration screen provides information and global parameters for configuring and working with VLANs The maximum number of VLANs is 128 4 14 Configuring Switching Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To defi
86. anescuateniangamnopededaghorneacgenneeapancammemtaisde chien Ei ix Conventions Formats and SCOPE esssssnnnissssisiii a x How io Use This Manual ii dsceuczialeseacicieadacdebinadddiudanniedandueeiudaoseaisaiedaclaianadddacceanleaieexladexied xi Howa Proite Mantal airiran a xii ROS EO si cocaine susat a ealateGas Guasl saad eaatid ea teeing uaudeds xii Chapter 1 Getting Started with Switch Management PSO Regue painanne E A 1 1 Swich Management NATE GOS sormiaan aer aa aaa 1 2 Network with a DHCP Server oc sasncassinwnsscenncisaus anann anaE aA Ee a AASE E EAA RNA AAE NEEE 1 3 Network without a DACP Server sicccscedcseni assdscecdciaicgecsecninasshescard deecasdaceasttseadaseaenideceeis 1 5 WE A CESE soian 1 7 PC ell UUES sogea a a tagaehdvuaaten senna aaealaatbince Deu eennincal es 1 8 Chapter 2 Introduction to the Web Browser Interface Logging Into the NETGEAR Home Screen sisscecivsdcccncciaxosses pacvaasees ancsvaacetsdeasacsactasivacseress 2 1 Using the NETGEAR Web Management System Options ccccceeeeeeeeeeeeteeeeneeees 2 3 Chapter 3 Managing System Settings Using the System Settings UUI ic scaset vente naa 3 1 oe e e I PEA A A E T E N AT T TAE AE A A dnulousies 3 1 DEKE Eaa E 3 7 POE cabon ani 3 7 AIP aa aint ase 3 13 Chapter 4 Configuring Switching Settings Conkgudig Swichno Settings serais Eaa aa 4 1 Contents v v1 0 December 2007 GS700TP Smart Switch Software Administration Manual PINS ET bets ae E A EA A A PE E
87. artWizard Discovery utility 7 Select your switch by highlighting the name of the switch Then click Web Access The discovery utility displays a login window similar to the following LOGIN Figure 1 2 8 Use your web browser to manage your switch The default password is password Then use this screen to proceed to management of the switch covered in Chapter 2 Introduction to the Web Browser Interface 1 4 Getting Started with Switch Management v1 0 December 2007 GS700TP Smart Switch Software Administration Manual Network without a DHCP Server This section describes how to set up your switch in a network without a DHCP server and is divided into the following tasks e Manually assign network parameters for your switch e Configure the NIC settings on the host PC e Log in to the web based switch management utility Manually Assigning Network Parameters If your network has no DHCP service you must assign a static IP address to your switch You can also assign the switch a static IP address even if your network has DHCP service Proceed as follows 1 Connect the GS700TP Gigabit PoE Smart Switch to your existing network 2 Power on the switch by plugging in the AC DC power adapter The default IP is 192 168 0 239 3 Install the SmartWizard Discovery utility on your computer The SmartWizard Discovery utility is located on the switch installation CD 4 Start the SmartWizard Discovery utility
88. ate the device To add a history control entry 1 Click Monitoring gt RMON gt Advanced gt History Control The RMON History Control screen displays Monitoring the Switch 7 15 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 2 Enter the Source Interface Sampling Interval Samples Requested and Owner in the provided field in the first row 3 Click Add to update the device To remove a history control entry 1 Click Monitoring gt RMON gt Advanced gt History Control The RMON History Control screen displays 2 Select the history control entry Click Delete to remove the history control entry History Table The RMON History Table screen contains interface specific statistical network samples Each table entry represents all counter values compiled during a single sample To view the RMON History Table 1 Click Monitoring gt RMON gt Advanced gt History Table The RMON History Table screen displays NETGEAR GS7A8TP 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help P History Table Basic v Advanced History Entry gt Statistics gt History Control Mietory Entry no E gt History Table Ormar gt Events Control 2 Events Log History Table Alarms z A Sample Drop Received Received Broadcast Multicast Undersize Oversize rare Ese Bytes Packets Packets Packets Packets Packets
89. ation Access rights are managed by defining communities in the Community Configuration screen When community names are changed access rights are also modified To configure SNMP communities 1 Click System gt SNMP gt SNMPv1 v2 gt Community Configuration The Community Configuration screen displays GS748TP 48 port Gigabit PoE Smart Switch ropov Community Configuration Basic Table Figure 3 9 The Community Configuration screen contains the following fields e Management Station Enter the management station IP address for which the Basic SNMP community is defined e Community String Enter the password used to authenticate the management station to the device e Access Mode Select the access rights of the community The possible field values are Read Only Management access is restricted to read only Changes cannot be made to the device configuration and to the community Read Write Management access is read write Changes can be made to the device configuration but not to the community SNMP Admin User has access to all device configuration options as well as permissions to modify the community 3 14 Managing System Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 2 3 4 5 Select the community entry Enter the Management Station and Community String in the provided fields in the first row Select the Access Mode f
90. bes configuring and managing monitoring settings in the GS700TP Smart Switch Logs Event messages have a unique format as per the SYSLOG RFC recommended message format for all error reporting for example Syslog local device reporting Messages are assigned a severity code and include a message mnemonic which identifies the source application generating the message Messages are filtered based on their urgency or relevancy The following table contains the Log Severity Levels Table 7 1 Severity Levels Severity Severity Level Severity Level Description Emergency 0 The system is not functioning Alert 1 The system needs immediate attention Critical 2 The system is in a critical state Error 3 A system error has occurred Warning 4 A system warning is logged Notice 5 The system is functioning properly but a system notice is logged Informational 6 Device information is provided Debug 7 Detailed log information is provided 7 1 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual This section provides information for managing logs The logs enable viewing device events in real time and recording the events for later usage Logs record and manage events and report errors and informational messages The Logs menu contains the following options e Logs Configuration e Log Filter e Memory Log e Flash Log e Server Log L
91. ble QoS globally Disable Disable QoS globally e Trust Mode Select which packet fields to use for classifying packets entering the device The possible Trust Mode field values are CoS Classify traffic based on the CoS VPT tag value DSCP Classify traffic based on the DSCP tag value 2 Select the QoS Mode and Trust Mode in the provided fields 3 Click Apply to update the device CoS Interface Configuration The CoS Interface Configuration screen contains information for configuring the default CoS value on a selected interface After CoS has been configured the device original CoS default settings can be reassigned to the interface in the CoS Interface Configuration screen Configuring QoS 5 3 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To configure CoS interface parameters 1 Click QoS gt CoS gt Basic gt CoS Interface Configuration The CoS Interface Configuration screen displays GS748TP NETG EA R 48 port Gigabit PoE Smart Switch ect with Innov System Switching Security Monitoring Maintenance Help CoS Interface Configuration v Basic gt CoS Global CoS Interface Configuration Configuration gt CoS Interface PORTS LAGS All GO TO INTERFACE co Conf sti Cee att Select Interface Default CoS Restore Defaults gt tad ee eee gt Bandwidth gt Advanced F E r 7 r F r E F E r oi r Figure 5 2 The CoS I
92. c The Leave Timeout value is either user defined or an immediate leave value The default timeout is 10 seconds Configuring Switching Settings 4 37 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 2 Select the IGMP Snooping Status and Bridge Multicast Filtering Status in the provided fields 3 Click Apply to update the device To configure IGMP Snooping on a VLAN 1 Click Switching gt Multicast gt Advanced gt IGMP Snooping Configuration The Advanced IGMP Snooping Configuration screen displays Select the VLAN ID entry in the Interface Settings table 2 3 Select the Status and Auto Learn status from the lists in the provided fields in the first row 4 Enter the Host MRouter and Leave Timeouts in the provided fields in the first row 5 Click Apply to update the device Multicast Group Configuration The Multicast Group Configuration screen allows you to create delete and modify Multicast service groups The Multicast Group Configuration table can contain up to 32 Multicast service groups To configure Multicast groups 1 Click Switching gt Multicast gt Advanced gt Multicast Group Configuration The Multicast Group Configuration screen displays NETGEAR GS748TP 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Ports LAG VLAN Voice VLAN STP Multicast Group Configuration Basic v Advanced Multicast Group configuratio
93. cation Advanced menu contains the following options e 802 1X Configuration e Port Authentication 802 1X Configuration The Advanced 802 1 X Configuration screen allows network managers to configure network authentication parameters In addition Guest VLANs are enabled from the Advanced 802 1X configuration screen Managing Security 6 9 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To define the 802 1X configuration 1 Click Security gt Port Authentication gt Advanced gt 802 1X configuration The Advanced 802 1X Configuration screen displays NETGEAR GS7A8TP 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Management Security Traffic Control ACL 802 1x Configuration v Basic v Advanced 802 1x Configuration 802 1 Configuration Port Based Authentication State Disable Enable Port Authentication Authentication Method RADIUS None gt Guest VLAN C Disable Enable Guest VLAN ID 1g The Advanced 802 1X Configuration screen contains the following fields e Port Based Authentication State Enable port based authentication on the device The possible field values are Disable Disable port based authentication on the device Enable Enable port based authentication on the device Authentication Method Enter the authentication method used for port authentication The possible field value
94. ck Monitoring gt RMON gt Advanced gt Events Control The RMON Events Control screen displays Enter the Community Description and Owner in the provided field in the first row Select the event Type from the list in the provided field in the first row Click Add to update the device To remove an events control entry 1 2 3 Click Monitoring gt RMON gt Advanced gt Events Control The RMON Events Control screen displays Select the events control entry Click Delete to remove the events control entry Events Log The RMON Events Log screen contains a list of RMON events To view RMON events logs 1 Click Monitoring gt RMON gt Advanced gt Events Log The RMON Events Log screen displays NETGEAR GS748TP Connect with Innovation A8 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Events Log Basic v Advanced Events Log Statisti z Event ese a Be eerinted as a E Figure 7 11 The RMON Events Log screen contains the following fields e Event Displays the RMON Events Monitoring the Switch 7 19 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e Log Number Displays the log number e Log Time Displays the time when the log entry was entered e Description Displays the log entry description 2 To refresh the RMON Events Log screen click Refresh Alarms The RMON Alarms screen contains fields for settin
95. ck the entry s Select box The selected entry is highlighted and the information appears in the first row which contains the editable fields LAG Configuration Reactivate Davie Auto Flow BE EAE Neatitios LAGI Down Disable Static 100M None Unknown Disable r LAG2 notPresent Disable Static None Unknown Disable oM aas O motpresent Dabe Stale None Unknown Dabe r LAG4 notPresent Disable Static None Unknown Disable mj LAGS notPresent Disable Static None Unknown Disable E LAGE notPresent Disable Static None Unknown Disable Cr LAG7 notPresent Disable Static None Unknown Disable Lass notPresent Disable Static None Unknown Disable Figure 2 5 To select all entries 1 Check the Select box in the first row to select all entries in the table Fields that are unique are grayed out and displayed as read only fields LAG Configuration Reactivate Duplex Auto Flow Josette Figure 2 6 Adding an Entry An entry may be added to the table by creating a new entry or by duplicating an existing entry 2 6 Introduction to the Web Browser Interface v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To add an entry by creating a new entry in the table 1 Enter the fields for the new entry in the provided fields in the first row VLAN Configuration select ian 1D VLAN Nome 7 default Default Figure 2 7 2 Click Add to update the device The new entry is displayed VLAN Configuration sles
96. ct the trap filter content entry Click Delete to remove the entry 3 32 Managing System Settings v1 0 December 2007 Chapter 4 Configuring Switching Settings Configuring Switching Settings The navigation pane at the top of the web browser interface contains a Switching tab that enables you to manage your GS700TP Smart Switch with features under the following main headings e Ports e LAG e VLAN e Voice VLAN e STP e Multicast e Address Table The description that follows in this chapter describes configuring and managing switching settings in the GS700TP Smart Switch Ports The Ports menu contains the following option e Port Configuration Port Configuration The Port Configuration screen contains fields for defining port parameters enabled on the ports 4 1 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To configure port parameters 1 Click Switching gt Ports gt Port Configuration The Port Configuration screen displays NETGEAR GS748TP Connect with Innovation 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help LAG VLAN Voice VLAN STP Multicast Address Table Port Configuration v Port Configuration Port Configuration GO TO INTERFACE go Port Reactivate Port Duplex Auto Back Flow MDIf LAG Suspended Negotiation Pressure Control MDIX ae Full Aut gt
97. d select the Falling Event number in the provided fields in the first row 8 Enter the Interval and Owner in the provided fields in the first row 9 Click Add to update the device To remove an events control entry 1 Click Monitoring gt RMON gt Advanced gt Alarms The RMON Alarms screen displays 2 Select the alarm entry 3 Click Delete to remove the alarm entry Port Mirroring Port mirroring monitors and mirrors network traffic by forwarding copies of incoming and outgoing packets from one port to a monitoring port Port mirroring can be used as a diagnostic tool as well as a debugging feature Port mirroring also enables switch performance monitoring Network administrators can configure port mirroring by selecting a specific port from which to copy all packets and other ports to which the packets are copied The device supports one destination port and up to eight source ports The Port Mirroring menu contains the following option e Port Mirroring 7 22 Monitoring the Switch v1 0 December 2007 GS700TP Smart Switch Software Administration Manual Port Mirroring To define port mirroring 1 2 3 4 5 Click Monitoring gt Port Mirroring gt Port Mirroring The Port Mirroring screen displays NETGEAR GS748TS vith 4t por1 Gigabit Stockoble Smert Switch tocovr Figure 7 13 The Port Mirroring screen contains the following fields Destination Port e Destination Port Ente
98. d to all ports on the relevant VLAN This occupies bandwidth and loads all nodes on all ports A Broadcast Storm is a result of an excessive amount of broadcast messages simultaneously transmitted across a network by a single port Forwarded message responses are heaped onto the network straining network resources or causing the network to time out Managing Security 6 13 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual Storm control can be enabled per port by defining the packet type and the rate the packets are transmitted The system measures the incoming Broadcast and Multicast frame rates separately on each port and discards the frames when the rate exceeds a user defined rate By default Storm Control is enabled on all ports for Broadcast packets with a threshold of 200 kbps Storm Control is enabled by default The Storm Control screen provides fields for configuring broadcast storm control To configure storm control 1 Click Security gt Traffic Control gt Storm Control The Storm Control screen displays NETGEAR GS7A8TP onnect with Innovation A8 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Management Security Port Authentication Storm Control Port Settings PORTS LAGS All Select Interface eS o g1 g2 g3 g4 g5 g6 g7 g8 g9 gid git g2 g13 gi4 g5 EE B Cr E 6 ia B E E m L 6 B m Figure 6 8
99. dance with the instructions may cause harmful interference to radio communications However there is no guarantee that interference will not occur in a particular installation If this equipment does cause harmful interference to radio or television reception which can be v1 0 December 2007 GS700TP Smart Switch Software Administration Manual determined by turning the equipment off and on the user is encouraged to try to correct the interference by one or more of the following measures e Reorient or relocate the receiving antenna e Increase the separation between the equipment and receiver e Connect the equipment into an outlet on a circuit different from that which the receiver is connected e Consult the dealer or an experienced radio TV technician for help EU Statement of Compliance The NETGEAR GS700TP Gigabit PoE Smart Switch is compliant with the following EU Council Directives 89 336 EEC and LVD 73 23 EEC Compliance is verified by testing to the following standards EN55022 Class A EN55024 and EN60950 1 AN Warning This is a Class A product In a domestic environment this product may cause radio interference in which case the user may be required to take appropriate measures Canadian Department of Communications Radio Interference Regulations This digital apparatus NETGEAR GS700TP Smart Switch does not exceed the Class A limits for radio noise emissions from digital apparatus as set out i
100. ding to VLAN ID MAC Address or Interface The possible field values are VLAN ID Display the MAC Address table entries that relate to the specific VLAN ID MAC Address Display the MAC Address table entries that relate to MAC Address Interface Display the MAC Address table entries that relate to the specific interface e VLAN ID Displays the VLAN ID number to which the entry refers e MAC Address Displays the MAC address to which the entry refers 4 46 Configuring Switching Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e Interface Displays the interface to which the entry refers Select the Search By key from the list in the provided field Enter the value to be searched for in the provided box Click GO to execute the query Configuring Switching Settings 4 47 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 4 48 Configuring Switching Settings v1 0 December 2007 Chapter 5 Configuring QoS Configuring the Basic and Advanced QoS Settings The navigation pane at the top of the web browser interface contains a QoS tab that enables you to manage your GS700TP Smart Switch with features under the following main heading e Cos The description that follows in this chapter describes configuring and managing QoS settings in the GS700TP Smart Switch CoS Quality of Service QoS provides the ability to implement
101. dow Printing a PDF version of the Complete Manual e Click the Complete PDF Manual link at the top left of any page in the manual The PDF version of the complete manual opens in a browser window e Click the print icon in the upper left of your browser window Y Tip If your printer supports printing two pages on a single sheet of paper you can a save paper and printer ink by selecting this feature Revision History Version Part Number Number Date Description 202 10242 01 1 0 May 2007 Product created 202 10242 02 1 0 December 2007 Feature update xii About This Manual v1 0 December 2007 Chapter 1 Getting Started with Switch Management This section provides an overview of switch management including the methods you can choose to start managing your NETGEAR GS700TP Gigabit PoE Smart Switch It also leads you through the steps necessary to get started using the SmartWizard Discovery utility The section includes this information under the following menu options e System Requirements e Switch Management Interface e Network with a DHCP Server e Network without a DHCP Server e Web Access e Additional Utilities System Requirements The following hardware and software facilities are required to run the applications described in this manual e Network facilities Ethernet network with or without DHCP server as appropriate
102. e Configuration The Time Configuration screen displays NETGEAR GS7A8TP 48 port Gigabit PoE Smart Switch System Switching Security Monitoring Maintenance Help Device View Po Time Configuration Time Configuration Clock Source Local C SNTP Date 01 Jan 00 DD MMM YY Time 04 49 54 HH MM SS Time Zone Offset GMT 12 00 Figure 3 3 The Time Configuration screen contains the following fields e Clock Source Select the source used to set the system clock The possible field values are Local The system time is set locally via the Date and Time fields SNTP The system time is set via an SNTP server Select SNTP to disable the Date and Time fields e Date Enter the local system date The field format is DD MMM YY Day Month Year For example 04 May 50 May 4 2050 Time Enter the local system time The field format is HH MM SS For example 21 15 03 Managing System Settings 3 5 v1 0 November 2007 GS700TP Smart Switch Software Administration Manual Time Zone Offset Select the difference between Greenwich Mean Time GMT and local time For example the Time Zone Offset for Paris is GMT 1 while the Time Zone Offset for New York is GMT 5 2 Select the Clock Source by selecting either Local or SNTP 3 If you selected Local then enter the local Date and Time in the provided fields 4 Select the Time Zone Offset from the list 5 Click Apply to update the system
103. e Max Age Sec Displays the device Maximum Age Time The Maximum Age Time is the amount of time in seconds a bridge waits before sending configuration messages The default Maximum Age Time is 20 seconds e Forward Delay Sec Displays the device Forward Delay Time The Forward Delay Time is the amount of time in seconds a bridge remains in a listening and learning state before forwarding packets The default is 15 seconds e Hello Time Sec Displays the device Hello Time The Hello Time indicates the amount of time in seconds The device waits between configuration messages The default is 2 seconds 2 Select Enable or Disable in the Spanning Tree State provided field Select the STP Operation Mode in the provided field Click Apply to update the device CST Configuration The Common Spanning Tree CST describes the topology connecting STP RSTP Bridges and MSTP regions Configuring Switching Settings 4 29 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To configure CST on the device 1 Click Switching gt STP gt Advanced gt CST Configuration The CST Configuration screen displays NETGEAR dapat SiyakilteE Swed SHa System Switching Qos Security Monitoring Maintenance Help Ports LAG VLAN Voice VLAN Multicast Address Table CST Configuration v Basic v Advanced CST Configuration gt STP Configuration Bridge Priority gt CST Configuration C Hello Time C Max Age Forward
104. ect the Sample Type from the list in the provided field in the first row Select the Startup Alarm from the list in the provided field in the first row If you selected Rising Alarm or Rising and Falling as the Startup Alarm enter the Rising Threshold and select the Rising Event number in the provided fields in the first row If you selected Falling Alarm or Rising and Falling as the Startup Alarm enter the Falling Threshold and select the Falling Event number in the provided fields in the first row Enter the Interval and Owner in the provided fields in the first row 10 Click Apply to update the device Monitoring the Switch 7 21 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To add an alarm entry 1 Click Monitoring gt RMON gt Advanced gt Alarms The RMON Alarms screen displays 2 Select the Counter Name from the list of MIB variable values in the provided field in the first row Enter the Interface in the provided field in the first row Select the Sample Type from the list in the provided field in the first row Select the Startup Alarm from the list in the provided field in the first row A d eB amp If you selected Rising Alarm or Rising and Falling as the Startup Alarm enter the Rising Threshold and select the Rising Event number in the provided fields in the first row 7 If you selected Falling Alarm or Rising and Falling as the Startup Alarm enter the Falling Threshold an
105. een allows an IP Based ACL to be defined Managing Security 6 21 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To view or rename IP Based ACLs 1 Click Security gt ACL gt IP ACL The IP ACL screen displays NETGEAR GS748TP Connect with Innovation 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Management Security Port Authentication Traffic Control IP ACL gt MAC ACL gt MAC Rules IP ACL gt MAC Binding configuration Current number of ACL 2 gt IP ACL ZIT mulas IP ACL Table gt IP Binding O test 2 T testi 4 Figure 6 13 The IP ACL screen contains the following fields IP ACL e Current number of ACL Displays the current number of user defined ACLs IP ACL Table e Name Enter the user defined IP based ACL name e Number of Rules Displays the current number of rules in the ACL 2 Select the ACL entry 3 Enter the new ACL Name in the provided field in the first editable row 4 Click Apply to update the device To add a new IP based ACL entry 1 Click Security gt ACL gt IP ACL The IP ACL screen displays 2 Click Add to create a new entry or duplicate an existing entry 3 Select the ACL entry 4 Enter the ACL Name in the provided field in the first editable row 5 Click Apply to update the device 6 22 Managing Security v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To
106. elect the LAG ID e LAG Name Displays the user defined LAG name e LAG Type Select the LAG type The possible field values are Static The LAG is configured manually LACP The LAG is configured dynamically e CURRENT MEMBERS Display current members of a LAG Select the LAG ID and LAG Type Click on the gold button The port panel displays Select the ports to be members of the LAG wa P amp S NM Click Apply to update the device Configuring Switching Settings 4 7 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 6 Click CURRENT MEMBERS The Current Members window opens and displays the member ports included in the LAG LAGI Current Members Unit 1 gl g4 g7 Figure 4 4 Advanced The LAG Advanced menu contains the following options e LAG Configuration e LAG Membership e LACP e LACP Port Priority LAG Configuration The Advanced LAG Configuration screen contains fields for configuring LAG parameters The system supports 8 LAGs and each LAG can contain up to 8 ports 4 8 Configuring Switching Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To define LAG parameters 1 Click Switching gt LAG gt Advanced gt LAG Configuration The Advanced LAG Configuration screen displays NETGEAR GS7A8TP 48 port Gigabit PoE Smart Switch tooour Figure 4 5 The Advanced LAG Configuration
107. elect the Minimum Severity level message sent to the server from the list in the provided field in the first row 7 Click Add to update the device To remove a remote log server 1 Click Monitoring gt Logs gt Server Log The Server Log screen displays 2 Select the log server entry 3 Click Delete to remove the log server entry RMON This section contains information for viewing Remote Monitoring Statistics RMON Statistics allow network managers to view network traffic information from a single workstation The RMON menu contains the following options e Basic e Advanced Basic The RMON Basic menu contains the following options e Statistics Monitoring the Switch 7 9 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual Statistics The RMON Basic Statistics screen contains fields for viewing information about device utilization and errors that occurred on the device To view RMON Basic Statistics 1 Click Monitoring gt RMON gt Basic gt Statistics The RMON Basic Statistics screen displays NETGEAR GS748TP 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance socovur Statistics ea a RMON Summary Statistics PORTS LAGS All Figure 7 6 The RMON Basic Statistics screen contains the following fields e Interface Displays the port or LAG for which statistics are displayed e Drop Events Displays the
108. face Most visually appealing For a more detailed discussion of the SmartWizard Discovery utility continue with this section Network with a DHCP Server or Network without a DHCP Server For a detailed discussion of the Web Browser Interface see Chapter 2 Introduction to the Web Browser Interface Network with a DHCP Server To install the switch in a network with a DHCP server proceed as follows 1 Connect the GS700TP Smart Switch to a DHCP network 2 Power on the switch by connecting its AC DC power adapter 3 Install the SmartWizard Discovery utility located on the switch installation CD on your computer 4 Start the SmartWizard Discovery utility Click Discover for the SmartWizard Discovery utility to find your GS700TP Gigabit PoE Smart Switch You should see a screen similar to that shown below Getting Started with Switch Management 1 3 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual l Smartwizard Discovery Device List MAC Address I IP Address l Protocol Version l Product Name System Name Location 00 0F B5 97 42 2C 192 168 0 239 2 001 002 Fs70oTs 2 DHCP Refresh Discover Device Setting Configuration Setting Password Change Web Access Firmware Upgrade Exit Figure 1 1 6 Note the displayed IP address assigned by the DHCP server You will need this value to access the switch directly from a web browser without using the Sm
109. face since the device was last refreshed This number includes bad packets and FCS octets but excludes framing bits Received Packets Displays the number of packets received on the interface including bad packets Multicast and Broadcast packets since the device was last refreshed Broadcast Packets Received Displays the number of good broadcast packets received on the interface since the device was last refreshed This number does not include Multicast packets Multicast Packets Received Displays the number of good Multicast packets received on the interface since the device was last refreshed CRC amp Alignment Errors Displays the number of CRC and Align errors that have occurred on the interface since the device was last refreshed To view RMON Interface Statistics select Port or LAG as the type of Interface and select the interface from the list in the provided field The RMON Interface Statistics for the selected interface are displayed To view RMON Summary Statistics select the interface and click GO To refresh or clear the RMON Advanced Statistics screen 1 Open the RMON Advanced Statistics screen 2 Click Refresh or CLEAR ALL COUNTERS to clear or reset the RMON Advanced Statistics screen History Control The RMON History Control screen contains information about samples of data taken from ports For example the samples may include interface definitions or polling periods Monitoring the Swi
110. freshed e Undersize Packets Displays the number of undersized packets less than 64 octets received on the interface since the device was last refreshed e Oversize Packets Displays the number of oversized packets over 1518 octets received on the interface since the device was last refreshed e Fragments Displays the number of fragments packets with less than 64 octets excluding framing bits but including FCS octets received on the interface since the device was last refreshed e Jabbers Displays the total number of received packets that were longer than 1518 octets This number excludes frame bits but includes FCS octets that had either a bad Frame Check Sequence FCS with an integral number of octets FCS Error or a bad FCS with a non integral octet Alignment Error number The field range to detect jabbers is between 20 ms and 150 ms e Collisions Displays the number of collisions received on the interface since the device was last refreshed e Utilization Displays the percentage of the interface utilized 2 Select the History Entry No from the list in the provided field The statistics are displayed 3 To refresh the RMON History Table screen click Refresh Monitoring the Switch 7 17 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual Events Control The RMON Events Control screen contains fields for defining RMON events To configure RMON events control 1 Cl
111. g Security 6 23 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 2 3 4 5 e Source Mask Enter the mask of the new source IP address e Destination IP Address Enter the destination IP address e Destination Mask Enter the mask of the new destination IP address e Source Port Enter the source port that is matched to packets e Destination Port Enter the destination port that is matched to packets e Action Select the action applied to packets with IP addresses that have been filtered The possible field values are Permit Permit access to the device Denied Deny access to packets originating from the blocked IP address Shutdown Drop packets that meet the ACL criteria and disable the port to which the packet was addressed Select the ACL Name from the list in the provided field Select the rule entry Enter the provided fields in the first row Click Apply to update the device To add an IP rule 1 2 3 4 5 6 Click Security gt ACL gt IP Rules The IP Rules screen displays Select the ACL Name from the list in the provided field Click Add to create a new entry or duplicate an existing entry Select the added entry Enter the provided fields in the first row Click Apply to update the device To delete an IP rule 1 2 3 4 Click Security gt ACL gt IP Rules The IP Rules screen displays Select the ACL Name from the lis
112. g network alarms Network alarms occur when a network problem or event is detected Rising and falling thresholds generate events To set RMON alarms 1 Click Monitoring gt RMON gt Advanced gt Alarms The RMON Alarms screen displays NETGEAR GS748TP Connect with Innovation 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Alarms v Basic v Advanced Alarms Statistics s z 5 Alarm Counter Sample Ris Pe Falling EL gt Hion conte pote Th old Rising Event Threshold Event gt History Table EINE Total Bytes Octets Receive z _ ia Absolute z el Figure 7 12 The RMON Alarms screen contains the following fields e Alarm Entry Displays the alarm entry e Counter Name Enter the selected MIB variable e Interface Enter the port or LAG interface e Counter Value Displays the selected MIB variable value e Sample Type Select the sampling method for the selected variable and comparing the value against the thresholds The possible field values are Absolute Compares the values directly with the thresholds at the end of the sampling interval Delta Subtracts the last sampled value from the current value The difference in the values is compared to the threshold 7 20 Monitoring the Switch v1 0 December 2007 GS700TP Smart Switch Software Administration Manual g PA Oe 9 e Rising Threshold
113. group statically Forbidden The interface is forbidden to join the mulitcast group Excluded The interface is not included in the Multicast group 2 Select the VLAN ID from the list in the provided fields Configuring Switching Settings 4 41 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 3 Select the port or LAG interface entry in the Multicast Group table 4 Select the Interface Status from the list in the provided field in the first row 5 Click Apply to update the device Address Table Packets addressed to destinations stored in either the Static or Dynamic databases are immediately forwarded to the port The Dynamic MAC Address Table can be sorted by interface VLAN or MAC Address MAC addresses are dynamically learned from packets from sources that arrive at the device as apposed to Static addresses that are configured manually An address becomes associated with a port by learning the port from the frame s source address but if a frame that is addressed to a destination MAC address is not associated with a port that frame is flooded to all relevant VLAN ports To prevent the bridging table from overflowing a dynamic MAC address from which no traffic arrives for a set period is erased The Address Table menu contains the following options e Basic e Advanced Basic The Address Table Basic menu contains the following options e Address Table Add
114. he LAG table 1 Click LAGS in the interface selection row The screen displays a table of all LAGs NETGEAR GS7A8TP Connect with Innovation 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Ports LAG Voice VLAN STP Multicast Address Table Port PVID Configuration v Basic maeceecced Port P ID Configuration gt VLAN Configuration gt VLAN Membership PORTS LAGS All GO TO INTERFACE so a a LAGI LAG2 LAG3 LAG4 LAGS LAGS LAG Lacs PORTS LAGS All GO TO INTERFACE Laso Figure 2 16 Introduction to the Web Browser Interface 2 11 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To select an interface 1 Enter the number of the interface in the GO TO INTERFACE box 2 Click GO to select the interface as in the following example NETGEAR GS748TP 48 port Gigabit PoE Smort Switch System ESQ QoS Security Monitoring Maintenance Help tocou Voice VLAN STP Multicast Address Table Port PVID Configuration Basie phic Port PVID Configuration gt VLAN Membership PORTS LAGS An Pant PWED Select Interface Configuration a E r r r r r r r r r r r r r niajn faja Figure 2 17 2 12 Introduction to the Web Browser Interface v1 0 December 2007 Chapter 3 Managing System Settings Using the System Settings Utility The navigation pane at the top of the web browser interface contai
115. he last time a cable test was performed and the type of cable error that occurred The tests use Time Domain Reflectometry TDR technology to test the quality and characteristics of a copper cable attached to a port Cables up to 120 meters long can be tested Cables are tested when the ports are in the down state with the exception of the Approximated Cable Length test To test cables 1 Click Maintenance gt Troubleshooting gt Diagnostics gt Cable Test The Cable Test screen displays NETGEAR GS7A8TP Connect with Innovation 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help LOGOUT Reset Upload Download File Management Cable Test Cable Test Cable Test PORTS All GO TO INTERFACE Go J Test Result Cable Fault Distance Last Update Cable Loagth gt Test Test TEST JESL IESI JEST Figure 8 6 The Cable Test screen contains the following fields e Interface Enter the port to which the cable is connected e Test Result Displays the cable test results Possible values are No Cable A cable is not connected to the port Open Cable A cable is connected on only one side Maintenance 8 7 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual Short Cable A short has occurred in the cable OK The cable passed the test e Cable Fault Distance Displays the distance from the port w
116. he switch Restoring factory defaults results in erasing the configuration file To reset the device to the factory defaults 1 Click Maintenance gt Reset gt Factory Default The Factory Default screen displays NETGEAR GS7A8TP Connect with Innovation 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Upload Download File Management Troubleshooting Factory Default gt Device Reboot v Factory Default Factory Default Note all configuration settings will return to their default value after j reset Figure 8 2 8 2 Maintenance v1 0 December 2007 GS700TP Smart Switch Software Administration Manual The Factory Default screen contains the following field Note all configuration settings will return to their default values after reset Check to confirm that the original factory default values will be restored after reset 2 Check the confirmation box Click Apply to reset the device to the factory defaults Upload The Upload menu contains the following option e Upload Upload System Files can be backed up using the Upload screen To back up files 1 Click Maintenance gt Upload The Upload screen displays NETGEAR GS748TP eo ae 48 port Gigabit PoE Smart Switch System switching Qos Security Monitoring Maintenance Help Download File Management Troubleshooting mess Upload File Upload FileType Firmware gt via
117. her the Guest VLAN is enabled or disabled on the port The default VLAN cannot be defined as a Guest VLAN The possible field values are Enable Enable using a Guest VLAN for unauthorized ports If a Guest VLAN is enabled the unauthorized port automatically joins the VLAN selected in the VLAN List field Disable Disable the Guest VLAN on the port This is the default value Periodic Reauthentication Select whether periodic port reauthentication is enabled or disabled The possible field values are Enable Enable periodic port reauthentication Disable Disable port reauthentication This is the default value Reauthentication Period Enter the time span in seconds in which the selected port is reauthenticated The field default is 3600 seconds Authenticator State Displays whether immediate port reauthentication is enabled or disabled The possible field values are Enable Immediate port reauthentication is enabled Disable Immediate port reauthentication is disabled This is the default value Quiet Period Enter the number of seconds that the device remains in the quiet state following a failed authentication exchange The possible field range is 0 65535 The field default is 60 seconds Resending EAP Enter the amount of time in seconds that lapses before EAP requests are resent The field default is 30 seconds 6 12 Managing Security v1 0 December 2007
118. here the cable error occurred e Last Update Displays the last time the port was tested e Test The test results are displayed e Cable Length Displays the approximate cable length This test can only be performed when the port is up and operating at 100Mbps or 1 Gbps On the row containing the interface to be tested click TEST to test the cable connected to the interface 8 8 Maintenance v1 0 December 2007 Chapter 9 Online Help Online Help The navigation pane at the top of the web browser interface contains a Help tab that provides access to informational services including support and an online user guide in PDF format The Help menu contains the following options e Support e User Guide The description that follows in this chapter covers these features Support The Support screen provides access to the NETGEAR online support site at www netgear com To access the Support screen 1 Click Help gt Online Help gt Support The Online Help menu opens and the Support screen displays NETGEAR GS748TP Connect with Innovation 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Support v Support PP User Guide Support Please click APPLY below to be taken to the Online Support site at netgear cor m Figure 9 1 2 Click Apply to go to the NETGEAR Online Support site at www netgear com 9 1 v1 0 December 2007 GS700TP Smart Swi
119. ick Add to update the device To remove an SNMPv3 group 1 2 Click System gt SNMP gt SNMPv3 gt Group Configuration The SNMPv3 Groups screen displays Select the group entry 3 24 Managing System Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 3 Click Delete to remove the entry User Configuration The SNMPv3 User Configuration screen provides information for creating SNMP groups and assigning SNMP access control privileges to SNMP groups Groups allow network managers to assign access rights to specific device features or feature aspects To define SNMP users 1 Click System gt SNMP gt SNMPvV3 gt User Configuration The SNMPv3 User Configuration screen displays NETGEAR GS748TP 48 port Gigabit PoE Smart Switch hesour Figure 3 16 The SNMPv3 User Configuration screen contains the following fields e User Name Enter the user name The field range is up to 30 alphanumeric characters e Group Name Enter the group name from a list of user defined SNMP groups SNMP groups are defined in the Groups screen e Engine ID Select either the local or remote SNMP entity to which the user is connected Changing or removing the local SNMP Engine ID deletes the SNMPv3 user database e Authentication Select the method used to authenticate users The possible field values are MDS Key Users are authenticated using the HMAC MDS algorithm SHA
120. ick Monitoring gt RMON gt Advanced gt Events Control The RMON Events Control screen displays NETGEAR GS7A8TP Connect with Innovation 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Events Control v Basic v Advanced Events Control History Table gt Events Control Statistics Event Entry 7 r mibistory Control Seteet puente community peseription type rime owner O Figure 7 10 The RMON Events Control screen contains the following fields Event Entry Interface Displays the event Community Enter the community to which the event belongs Description Enter the user defined event description Type Select the event type Possible values are None No event has occurred Log The event is a log entry Trap The event is a trap Log amp Trap The event is both a log entry and a trap Time Displays the time that the event occurred Owner Enter the device or user that defined the event 2 Select the events control entry Enter the Community Description and Owner in the provided field in the first row 7 18 Monitoring the Switch v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 4 5 Select the event Type from the list in the provided field in the first row Click Apply to update the device To add an events control entry 1 2 3 4 Cli
121. igned to the group Authentication Authenticates SNMP messages and ensures that the SNMP message s origin is authenticated Privacy Encrypts SNMP messages e UDP Port Enter the UDP port used to send notifications The default is 162 e Filter Name Select the SNMP filter name from the list of SNMP Notification filters Timeout Enter the amount of time in seconds the device waits before re sending informs The default is 15 seconds e Retries Enter the amount of times the device re sends an inform request The default is 3 seconds Enter the Recipients IP address in the provided field in the first row Select either Traps or Informs in the Notification Type provided field in the first row Enter the User Name in the provided field in the first row Select the Security Level from the list in the provided field in the first row Enter the UDP Port in the provided field in the first row Select the Filter Name from the list in the provided field in the first row Enter the Timeout and Retries in the provided fields in the first row Click Apply to update the device To add a new trap 1 2 3 4 5 Click System gt SNMP gt SNMPv3 gt Trap Configuration The SNMPv3 Trap Configuration screen displays Enter the Recipients IP address in the provided field in the first row Select either Traps or Informs in the Notification Type provided field in the first row Enter the User Name in the pr
122. in the Views table Select the OID entry to be removed Click Delete to remove the entry Community Configuration Access rights are managed by defining communities in the Community Configuration screen When community names are changed access rights are also changed Managing System Settings 3 21 v1 0 November 2007 GS700TP Smart Switch Software Administration Manual To define SNMPv3 communities 1 2 3 4 5 Click System gt SNMP gt SNMPv3 gt Community Configuration The SNMPv3 Community Configuration screen displays NETGEAR GS748TP AB port Gigabit PoE Smart Switch xe00ur Community Configuration SNMP v snmpv3 Advanced Table Figure 3 14 The SNMPv3 Community Configuration screen contains the following fields e Management Station Enter the management station IP address for which the basic SNMP community is defined e Community String Enter the password used to authenticate the management station to the device e Group Name Select the SNMP group from a list of SNMP groups defined in the SNMP Group Configuration screen Select the SNMP community entry Enter the Management Station and Community String in the provided fields Select the Group Name from the list Click Apply to update the device To add a new SNMPv3 community 1 Click System gt SNMP gt SNMPv3 gt Community Configuration The SNMPv3 Community Configuration screen displays Enter the
123. interface varies according to the selected method e Priority Enter the port priority value When switches or ports are running STP each is assigned a priority After exchanging BPDUs the device with the lowest priority value becomes the Root Port The default value is 32768 The port priority value is provided in increments of 4096 2 Select the STP Status and Fast Link status in the provided fields 3 Enter the Path Cost and Priority in the provided fields 4 32 Configuring Switching Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 4 Click Apply to update the device Rapid STP To define RSTP on the device 1 Click Switching gt STP gt Advanced gt RSTP The Rapid STP screen displays NETGEAR GS7A8TP Connect with Innovation 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Ports LAG VLAN Voice VLAN Multicast Address Table Rapid STP Basic v Advanced gt STP Configuration Rapid STP gt CST Configuration CST Port Configuration PORTS LAGS All GO TO INTERFACE so RSTP Activate Fast Link Point to Point Point to Point Select Interface Mode Operational Status Status admin Status Operational Status Protocol ee at Disabled Disable g2 RSTP Disabled Disable Auto Enable g3 STP Disabled Disable Auto Enable g4 RSTP Disabled Disable Auto Enable STP Disabled Disable Auto Enable RSTP D
124. into Windows screens similar to the ones shown below For comparison the settings screens of the switch are also shown although they do not appear in the Windows view 1 6 Getting Started with Switch Management v1 0 December 2007 GS700TP Smart Switch Software Administration Manual General authentication Advanced Correct uiing Rostek RTL8133 Famdy PO Fast Ett Configure J This connection uses the following temi Slane mmm O00F B5 97 42 2C 1921680253 M BF ia and Printer Sharing tor Microsol Networks Contiguration setting MAC Address 00 0F BS 97 42 2C Drm Mash 2 255 255 0 sne Figure 1 4 You need Windows Administrator privileges to change these settings 1 On your PC access the MS Windows operating system TCP IP Properties 2 Set IP address and subnet mask appropriately The subnet mask value is identical to that set in the switch The PC IP address must be different from that of the switch but lie in the same subnet 3 Click Web Access in the SmartWizard Discovery utility to enable the management screens as described in the following section Web Access For Web access you can either e Select Web Access using the SmartWizard Discovery utility see Network with a DHCP Server or Network without a DHCP Server e Access the switch directly without using the SmartWizard Discovery utility Getting Started with Switch Management 1 7 v1 0 December 2007 GS700TP
125. isabled Disable Auto Enable g STP Disabled Disable Auto Enable g8 RSTP Disabled Disable Auto Enable g9 STP Disabled Disable Auto Enable g10 RSTP Disabled Disable Auto Enable git STP Disabled Disable Auto Enable g12 RSTP Disabled Disable Auto Enable D E mi E m al a E mi E mi E O Figure 4 24 Select the Point to Point Admin Status in the provided field To configure and test the data link check Activate Protocol Migration Click Apply to update the device Multicast Multicast forwarding allows a single packet to be forwarded to multiple destinations L2 Multicast service is based on L2 switch receiving a single packet addressed to a specific Multicast address Multicast forwarding creates copies of the packet and transmits the packets to the relevant ports Configuring Switching Settings 4 33 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e Registered Multicast traffic If traffic addressed to a registered Multicast group is seen it is handled by an entry in the Multicast Filtering Database and forwarded only to the registered ports e Unregistered Multicast traffic If traffic addressed to an unregistered Multicast group is seen it is handled by a special entry in the Multicast Filtering Database The default setting of this is to flood all such traffic traffic in unregistered Multicast groups Layer 2 switching forwards Multicast packets to all relevant V
126. ission or denied device management access The rule number is essential to matching packets to rules as packets are matched on a first fit basis e Source MAC Address Enter the source MAC Address e Source Mask Enter the mask of the new source MAC address e Destination MAC Address Enter the destination MAC address e Destination Mask Enter the mask of the new destination MAC address e VLAN ID Enter the VLAN ID to which the MAC address is attached in the MAC Rules database e Action Select the action applied to packets with MAC addresses that have been filtered The possible field values are Permit Permit access to the device Deny Deny access to packets originating from the blocked MAC address Shutdown Drop packets that meet the ACL criteria and disable the port to which the packet was addressed Select the ACL Name from the list in the provided field Select the rule entry Enter the provided fields in the first row Click Apply to update the device To add a MAC rule 1 2 3 4 Click Security gt ACL gt MAC Rules The MAC Rules screen displays Select the ACL Name from the list in the provided field Enter the provided fields in the first row Click Add to update the device To delete a MAC rule 1 2 3 4 Click Security gt ACL gt MAC Rules The MAC Rules screen displays Select the ACL Name from the list in the provided field Select the rule entry
127. l and stops the power supply to the device using the PoE module Managing System Settings 3 11 v1 0 November 2007 GS700TP Smart Switch Software Administration Manual e Priority Level Select the port priority if the power supply is low The field default is low For example if the power supply is running at 99 usage and port 1 is prioritized as high but port 3 is prioritized as low port 1 is prioritized to receive power and port 3 may be denied power The possible field values are Low Set the PoE priority level as low This is the default level Medium Set the PoE priority level as medium High Set the PoE priority level as high e Class Displays the classification of the powered device The class defines the maximum power that can be provided to the powered device The possible field values are Class 0 The minimum power level at the Power Sourcing Equipment is 15 4 Watts Class 1 The minimum power level at the Power Sourcing Equipment is 4 0 Watts Class 2 The minimum power level at the Power Sourcing Equipment is 7 0 Watts Class 3 The minimum power level at the Power Sourcing Equipment is 15 4 Watts Class 4 Treated as Class 0 e Output Voltage Displays the Output Voltage in Volts e Output Current Displays the Output current in milliamps e Output Power Displays the Output power in Watts e Power Limit Displays the power limit in Watts e
128. low gt Advanced je Negotiation Control r AG rT ee ve 10000 Fut Deere rus oe r uu up 1000 Ful Daae r AOS ee 8 Fu Dandie r ua Us rope ra Deere C aG oou fu Tes ve 10000 fa Deere Figure 4 2 The Basic LAG Configuration screen contains the following fields e Interface Displays the LAG number e Description Enter a user defined LAG description e Status Select the current link operation The possible field values are Configuring Switching Settings 4 5 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual Up The LAG is currently linked and forwarding traffic Down The LAG is currently not linked e Reactivate Suspended Select the action to apply to a suspended LAG The possible field values are Enable Reactivate the suspended LAG Disable Do not reactivate the suspended LAG e Type Displays the LAG type The possible field values are Static The LAG is configured manually LACP The LAG is configured automatically e Speed Select the data transmission rate for the LAG The LAG type determines what speed setting options are available The possible field values are 10M The LAG is currently operating at 10 Mbps 100M The LAG is currently operating at 100 Mbps 1000M The LAG is currently operating at 1000 Mbps e Duplex Mode Displays the duplex mode of the LAG The possible field value is Full The i
129. lticast Group Membership Multicast Group Membership VLAN ID 15 VLAN Name gt Mul up Paan Multicast Address 01005e010101 Multicast Group Membership gt Multicast Fe rd i Si AAR TARMAN Multicast Group PORTS LAGS All GO TO INTERFACE GO gt Static g2 Static 93 Static g4 Static g5 Static 96 Static g7 Static 98 Static 99 Static gi0 Static oi r ra r al r l F i F Figure 4 28 Configuring Switching Settings 4 39 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual Sy ae Da The Multicast Group Membership screen contains the following information Multicast Group Membership e VLAN ID Enter the VLAN ID e VLAN Name Displays the user defined VLAN name e Multicast Address Enter the Multicast group MAC address Multicast Group e Interface Displays the ports and LAGs for which the Multicast settings are displayed e Interface Status Select the interface status The possible field values are Static The interface is joined to the Multicast group statically Forbidden The interface is forbidden to join the Multicast group Excluded The interface is not included in the Multicast group Select the VLAN ID from the list in the provided field Select the Multicast Address from the list in the provided field Select the interface entry in the Multicast Group table Select the Interface Status from the list in the provided field in the first
130. mage 1 Click Maintenance gt File Management gt Active Image The Active Image screen displays NETGEAR GS748TP Connect with Innovation 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Reset Upload Download Troubleshooting Active Image v Active Image Active Image o Image1 Figure 8 5 The Active Image screen contains the following fields e Active Image Displays the image file which is currently active on the unit e After Reset Select the image file that is active after the specific unit is reset The possible field values are Image 1 Activate Image file 1 after the device is reset Image 2 Activate Image file 2 after the device is reset 2 Select the image file to be active in the After Reset provided field in the first row Click Apply to update the device You must reset the device for the active image setting to take effect See Reset for detailed instructions on resetting the device Troubleshooting The Troubleshooting menu contains the following option e Diagnostics Diagnostics The Diagnostics menu contains the following option e Cable Test 8 6 Maintenance v1 0 December 2007 GS700TP Smart Switch Software Administration Manual Cable Test The Cable Test screen contains fields for performing tests on copper cables Cable testing provides information about where errors occurred in the cable t
131. mart Switch Software Administration Manual Table 1 Device Management Buttons Button Name Description CLEAR ALL Refreshes device information CLEAR ALL COUNTERS Resets statistics counters CLEAR LOGS Clears logs CURRENT MEMBERS Displays current members of a LAG DELETE Deletes information from tables or information windows GO Selects the specified interface REFRESH Refreshes the screen with current data TAGGED PORT MEMBERS Displays tagged port members of a VLAN TEST Tests copper cables UNTAGGED PORT MEMBERS Displays untagged port members of a VLAN Informational Services Informational services provide access to technical support online help and device information and are displayed in the following topics e Help Navigation Tab e Accessing Device Information Help Navigation Tab The Help Navigation Tab provides access to informational services including NETGEAR online support and an online user guide in PDF format For a detailed description of how to access and use these functions see Chapter 9 Online Help Accessing Device Information Each screen of the web browser interface contains a help file with configuration information relating to the selected screen 2 4 Introduction to the Web Browser Interface v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To access the help file for a screen 1 Click the encircled red Questi
132. me Screen Begin your overview of the GS700TP Smart Switch browser interface by logging in 1 Start the application by one of the following methods as described in Chapter 1 Getting Started with Switch Management a In the SmartWizard Discovery utility click Web Access or b Inthe web browser enter the switch s IP address and press Enter The Login screen appears Figure 2 1 2 1 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 2 Enter the password the factory default is password and click Login The home screen of the GS700TP Smart Switch browser interface displays The Navigation Menu As shown below logging in brings you to the view of the web browser interface NETGEAR GS7A8TP Connect with Innovation 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help 1 Device View PoE SNMP System Information v System Information gt IP Configuration System Information Kame 2 System Name System Location System Contact System Object ID 1 3 6 1 4 1 89 1 1 3955 6 12 Date amp Time O1 Jan 00 02 34 33 GMT 9 00 System Up Time 0 days 1 hours 27 minutes 18 secon ds Idle Timeout ho SdS min Base MAC Address 00 00 44 11 48 40 Serial ber Eli123 Jumbo Frames Status Disabled Jumbo Frames After Reset Disable Versions Model Name Hardware Version Boot Yersion Software Yersion FS728TS 00 00 01 00 00 06 10 014
133. mmunications Approvals has been notified of the placing of this equipment on the market and has been granted the right to test the series for compliance with the regulations Voluntary Control Council for Interference VCCI Statement This equipment is in the first category information equipment to be used in commercial and or industrial areas and conforms to the standards set by the Voluntary Control Council for Interference by Data Processing Equipment and Electronic Office Machines that are aimed at preventing radio interference in commercial and or industrial areas Consequently when this equipment is used in a residential area or in an adjacent area thereto radio interference may be caused to equipment such as radios and TV receivers Federal Communications Commission FCC Compliance Notice Radio Frequency Notice This device complies with part 15 of the FCC Rules Operation is subject to the following two conditions This device may not cause harmful interference This device must accept any interference received including interference that may cause undesired operation NOTE This equipment has been tested and found to comply with the limits for a Class A digital device pursuant to part 15 of the FCC Rules These limits are designed to provide reasonable protection against harmful interference in a residential installation This equipment generates uses and can radiate radio frequency energy and if not installed and used in accor
134. mware The location of the new firmware If you do not know the location click Browse to locate the file e Upgrade Password Enter your password the default password is password Getting Started with Switch Management 1 9 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 2 Click Apply to apply the settings to the Upgrade Configuration Click Start Upgrade to begin loading the upgrade The system software is automatically loaded The Upgrade State field shows upgrading in progress When the process is complete the switch automatically reboots Exit Click Exit from the SmartWizard Discovery screen to close the SmartWizard Discovery utility 1 10 Getting Started with Switch Management v1 0 December 2007 Chapter 2 Introduction to the Web Browser Interface This section introduces the web browser interface that enables you to configure and manage your NETGEAR GS700TP Gigabit PoE Smart Switch Your GS700TP Smart Switch provides a built in browser interface that enables you to configure and manage it remotely using a standard Web browser such as Microsoft Internet Explorer or Netscape Navigator Online Help is also provided for many of the basic functions and features of the switch This section introduces the areas of the browser interface and includes the following topics e Logging Into the NETGEAR Home Screen e Using the NETGEAR Web Management System Options Logging Into the NETGEAR Ho
135. n Pei a a LANID YLANName Multicast Address gt CE 0 n 4 01005e010101 Dynamic 2 01005e010101 Static Figure 4 27 The Multicast Group Configuration screen contains the following information e VLAN ID Displays the VLAN ID e VLAN Name Displays the user defined VLAN name 4 38 Configuring Switching Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e Multicast Address Enter the Multicast group MAC Address associated with the VLAN e Type Indicates the VLAN ID status in relation to the Multicast group Static Attaches the VLAN ID to the Multicast group as static member Dynamic Dynamically joins the VLAN ID to the Multicast group 2 Select the group entry Enter the Multicast Address in the provided field in the first row 4 Click Apply to update the device Multicast Group Membership The Multicast Group Membership screen displays the ports and LAGs attached to the selected VLAN and the Multicast service group The Port and LAG tables also reflect the manner in which the port or LAGs joined the Multicast group To configure Multicast group membership 1 Click Switching gt Multicast gt Advanced gt Multicast Group Membership The Multicast Group Membership screen displays NETGEAR GS7A8TP 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Ports LAG VLAN Voice VLAN STP Address Table Mu
136. n the Radio Interference Regulations of the Canadian Department of Communications R glement sur le brouillage radio lectrique du minist re des Communications Cet appareil num rique NETGEAR GS700TP Smart Switch respecte les limites de bruits radio lectriques visant les appareils num riques de classe A prescrites dans le R glement sur le brouillage radio lectrique du minist re des Communications du Canada Customer Support For assistance with installing and configuring your NETGEAR system or for questions or problems following installation e Check the NETGEAR Web page at http www NETGEAR com support e Call Technical Support in North America at 1 888 NETGEAR If you are outside North America please refer to the phone numbers listed on the Support Information Card that was included with your switch e Email Technical Support at support NETGEAR com e Defective or damaged merchandise can be returned to your point of purchase representative Internet World Wide Web NETGEAR maintains a World Wide Web home page that you can access at the uniform resource locator URL http www NETGEAR com A direct connection to the Internet and a Web browser such as Internet Explorer or Netscape are required v1 0 December 2007 GS700TP Smart Switch Software Administration Manual FCC Requirements for Operation in the United States FCC Information to User This product does not contain any user serviceable components and is to
137. ne VLAN properties 1 Click Switching gt VLAN gt Basic gt VLAN Configuration The Basic VLAN Configuration screen displays GS748TP 48 port Gigabit PoE Smart Switch tocou Ports LAG Voice VLAN STP Multicast Address Table VLAN Configuration VLAN Configuration Figure 4 10 The Basic VLAN Configuration screen contains the following fields e VLAN ID Enter the VLAN ID The field range is 1 4093 e VLAN Name Enter the user defined VLAN name e Type Displays the VLAN type The possible field values are Static The VLAN is user defined Default The default VLAN ID is 1 It cannot be modified by the user 2 Select the VLAN entry 3 Enter the VLAN ID and VLAN Name in the provided fields in the first row 4 Click Apply to update the device To add a new VLAN 1 Click Switching gt VLAN gt Basic gt VLAN Configuration The Basic VLAN Configuration screen displays 2 Enter the VLAN ID and VLAN Name in the provided fields in the first row 3 Click Add to update the device To remove a VLAN 1 Click Switching gt VLAN gt Basic gt VLAN Configuration The Basic VLAN Configuration screen displays 2 Select the VLAN entry Configuring Switching Settings 4 15 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 3 Click Delete to remove the entry Advanced The VLAN Advanced menu contains the following options e VLAN Configuration e VLAN
138. nfigured automatically e CURRENT MEMBERS Display current members of a LAG Select the LAG ID and LAG Type Click on the gold button The port panel displays Select the ports to be members of the LAG Click Apply to update the device Configuring Switching Settings 4 11 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 6 Click CURRENT MEMBERS The Current Members window opens and displays the member ports included in the LAG LAGI Current Members Unit 1 gl g4 g7 Figure 4 7 LACP Aggregated links can be set up manually or automatically established by enabling LACP on the relevant links Aggregated ports can be linked into link aggregation port groups Each group is comprised of ports with the same speed The LACP screen contains fields for configuring LACP To configure LACP 1 Click Switching gt LAG gt Advanced gt LACP Configuration The LACP Configuration screen displays GS748TP 4B port Gigabit PoE Smort Switch toot LACP Configuration LACP Configuration LACE System Priority fi Figure 4 8 The LACP Configuration screen contains the following field e LACP System Priority Enter the system priority value The field range is 1 65535 The field default is 1 2 Enter the LACP System Priority in the provided field 3 Click Apply to update the device 4 12 Configuring Switching Settings v1 0 December 2007 GS700TP Smart Switch Software Adminis
139. not the Root Bridge e Root Path Cost Displays the cost of the path from this bridge to the Root Bridge 2 Enter the Bridge Priority in the provided field Select Hello Time Max Age or Forward Delay and enter the value in the provided field Click Apply to update the device CST Port Configuration To configure CST ports on the device 1 Click Switching gt STP gt Advanced gt CST Port Configuration The CST Port Configuration screen displays NETGEAR GS7A8TP Connect with Innovation 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help LOGOUT Ports LAG VLAN Voice VLAN Multicast Address Table CST Port Configuration v Basic v Advanced Port Configuration Ld conaran PORTS Lacs an ela _ meter oo ls O a Disabled 1000M m Disabled 1000M Ej Disabled 1000M a Disabled 1000M Oo Disabled 1000M E Disabled 1000M mj Disabled 1000M ry Disabled 1000M Ej Disabled 1000M Li Disabled 1000M mj Disabled 1000M E Disabled 1000M m Disabled 1000M al Disabled 1000M Ej Disabled 1000M m Disabled 1000M Figure 4 23 Configuring Switching Settings 4 31 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual The CST Port Configuration screen contains the following fields e Interface Displays the port or LAG for which the STP information is displayed e STP Status Select the STP status on the interface The possible field values a
140. ns a System tab that enables you to manage your GS700TP Smart Switch with features under the following main menu options e Management e Device View e PoR SNMP The description that follows in this chapter describes configuring and managing system settings in the GS700TP Smart Switch Management The Management menu enables configuration of some system parameters the switch IP Address and the system time and contains the following options e System Information e IP Configuration Py Time System Information The System Information screen contains parameters for configuring general device information including the system name system location system contact and idle timeout 3 1 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To configure system parameters 1 Click System gt Management gt System Information The System Information screen displays ipari iaai rot Guoe bore ieoor System Information Figure 3 1 The System Information screen contains the following fields e System Name Enter the user defined device name The field may contain 0 160 characters e System Location Enter the location where the system is currently running The field may contain 0 160 characters e System Contact Enter the name of the contact person The field may contain 0 160 characters e System Object ID Displays the vendor s a
141. nterface Configuration screen contains the following e Interface Displays the interface for which the global QoS parameters are defined e Default CoS Select the default CoS value for incoming packets for which a VLAN priority VPT is not defined e Restore Defaults Restore the factory CoS default settings to the selected port The possible field values are Checked Restore the factory CoS default settings to the ports Unchecked Maintain the current CoS settings 2 Select the interface Select the Default CoS value from the list in the provided field in the first row 4 Check or uncheck the Restore Defaults box in the interface entry row 5 4 Configuring QoS v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 5 Click Apply to update the device Queue The Queue screen contains fields for defining the QoS queue forwarding types To set the queue settings 1 Click QoS gt CoS gt Basic gt Queue The Queue screen displays NETGEAR GS748TP Connect with Innovation 48 port Gigabit PoE Smart Switch System Switching Security Monitoring Maintenance Help ueue Basic Q CoS Global Queue Configuration gt CoS Interface Strict Priority Configurati Guan gt Queue Bandwidth gt Advances d Figure 5 3 The Queue screen contains the following fields e Strict Priority Select to specify traffic scheduling based strictly on the queue priority e WRR
142. nterface supports transmission between the device and its link partner in both directions simultaneously e Auto Negotiation Select the auto negotiation status of the LAG Auto Negotiation is a protocol between two link partners that enables a port to advertise its transmission rate duplex mode and flow control abilities to its partner Auto Negotiation is enabled by default The possible field values are Enable Enable auto negotiation Disable Disable auto negotiation e Flow Control Select the flow control status of the LAG Operates when the LAG is in full duplex mode Flow Control is disabled by default The possible field values are Enable Enable flow control Disable Disable flow control 2 Select the interface Enter or modify the fields in the first row Click Apply to update the device 4 6 Configuring Switching Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual LAG Membership The Basic LAG Membership screen allows network managers to assign ports to LAGs To assign ports to LAGs 1 Click Switching gt LAG gt Basic gt LAG Membership The Basic LAG Membership screen displays GS748TP 4B port Gigabit PoE Smart Switch tooour Membership cio LL AL 1 EASA SSA Shishi of ef afl ail ofl Ales fas ef ofl af ef fi efi fl si al Figure 4 3 The Basic LAG Membership screen contains the following fields e LAG ID S
143. od from the list in the provided field in the first row If you selected a password method of Authentication enter the Password in the provided field in the first row If you selected a key method of Authentication enter the Authentication Key and Privacy Key in the provided fields in the first row Click Apply to update the device To add a new SNMPVv3 user 1 ha a Se Click System gt SNMP gt SNMPv3 gt Users Configuration The SNMPv3 User Configuration screen displays Enter the User Name in the provided field in the first row Select the Group Name and Engine ID from the lists in the provided fields in the first row Select the Authentication method from the list in the provided field in the first row If you selected a password method of Authentication enter the Password in the provided field in the first row If you selected a key method of Authentication enter the Authentication Key and Privacy Key in the provided fields in the first row Click Add to update the device 3 26 Managing System Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To remove an SNMPv3 user 1 Click System gt SNMP gt SNMPvV3 gt Users Configuration The SNMPv3 User Configuration screen displays 2 Select the user entry Click Delete to remove the entry Global Trap Configuration The SNMPv3 Global Trap Settings screen contains parameters for defining SNMP notification parameters
144. ogs Configuration The Log Configuration screen contains fields for enabling and disabling logs globally To enable or disable event logging 1 Click Monitoring gt Logs gt Logs Configuration The Logs Configuration screen displays NETGEAR GS7A8TP 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Shep Log Configuration gt Log Filter Log Configuration gt Memory Log gt Flash Log gt Server Log Logging State C Disable Enable Figure 7 1 The Logs Configuration screen contains the following field e Logging State Select whether to enable or disable the device global logs for Cache File and Server Logs Console logs are enabled by default The possible field values are Disable Disable device logs Enable Enable device logs 2 Select either Enable or Disable as the Logging State in the provided field 3 Click Apply to update the device 7 2 Monitoring the Switch v1 0 December 2007 GS700TP Smart Switch Software Administration Manual Log Filter To configure log filters 1 Click Monitoring gt Logs gt Log Filter The Log Filter screen displays NETGEAR GS748TP pees deck 48 port Gigabit PoE Smart Switch onnect with Innovation System Switching Qos Security Monitoring Maintenance Help Log Filter gt Log Configuration v Log Filter Log Filter gt Flash Log ae Figure 7 2 The Log Filter screen cont
145. on PoE Port Configuration class Output Output Output Power status imit Voltage Current Power L F p Ens 0 Dusi mo Enable Low e oo oo oo oo Deabied C p Enable 20 08 0 0 Dassie cae nasie tow g oo oo oo oo Desea r 9 if oo 9 D r Enade tow e oo oo oo oo Daariec Cc g Enos 00 0 oe r Enssie tow oo oo oo eo basses C le En 20 D rye Enable tow eo os eo oo Dasses r gu nadie o c eo os eo oo Deses ropa Enare tow eo oo eo oo Desses rg oo 00 20 T Das r g Enable tow g ry 00 00 X Deses r os Enssie ow 20 T T 20 Dessie rT ow Enable Low e eo oo oo oo Dessbied C gt Enable ow J rT rT T T Dassia rye Enacie tow e eo oo eo eo Daes C lo Enasie Low Pry 2 zo oo Deszex rm Enable Low e oo oo oo oo Osanies C sga Enacie tow o 0 0 0 0 00 0 0 Dearie Figure 3 8 The PoE Port Configuration screen contains the following fields e Interface Displays the specific interface for which PoE parameters are defined PoE parameters are assigned to the powered device that is connected to the selected interface e Admin Mode Select the device PoE mode The possible field values are Enable Enable the Device Discovery protocol and provides power to the device using the PoE module The Device Discovery Protocol enables the device to discover Powered Devices attached to the device interfaces and to learn their classification This is the default setting Disable Disable the Device Discovery protoco
146. on Manual Se Ge oR ON The Server Log screen contains the following fields Server IP Enter the server s IP address to which logs can be sent UDP Port Enter the UDP port to which the server logs are sent The possible range is 1 65535 The default value is 514 Facility Select an application from which system logs are sent to the remote server Only one facility can be assigned to a single server If a second facility level is assigned the first facility is overridden All applications defined for a device utilize the same facility on a server The field default is Local 0 The possible field values are Local 0 Local 7 Description Enter a user defined server description Minimum Severity Select the minimum severity level for which logs are sent to the server For example if Notice is selected all logs with a severity level of Notice and higher are sent to the remote server The default value is Informational The possible field values are Emergency The highest warning level If the device is down or not functioning properly an emergency log message is saved to the specified logging location Alert The second highest warning level An alert log is saved if there is a serious device malfunction for example all device features are down Critical The third highest warning level A critical log is saved if a critical device malfunction occurs for example two device ports are n
147. on Mark icon shown in the example below NETGEAR Connect with Innovation System Switching Qos Security Ports LAG Voice VLAN STP Multicast Address Table VLAN Configuration Basic gt VLAN Configuration gt Advanced VLAN Configuration E Default DE VLAN 2 Figure 2 3 A help window for the screen opens Monitoring GS7A8TP 48 port Gigabit PoE Smart Switch Maintenance Help Default Static The Basic VLAN Configuration screen provides information and global parameters for configuring and working with VLANs The maximum number of VLANs is 126 The Basic VLAN Configuration screen contains the following fields VLAN ID Enter the VLAN ID The field range is 1 4093 VLAN Name Enter the user defined VLAN name Type Displays the VLAN type The possible held values are Static The VLAN is user defined Default The default VLAN ID is 1 It cannot be modified by the user Figure 2 4 Using Screen and Table Options The NETGEAR GS700TP web browser interface contains screens and tables for configuring devices This section describes the table options e Selecting an Entry e Adding an Entry e Modifying an Entry e Deleting an Entry Special Table Options Introduction to the Web Browser Interface 2 5 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual Selecting an Entry To select an entry 1 Che
148. on pane at the top of the web browser interface contains a Maintenance tab that enables you to manage your GS700TP Smart Switch with features under the following main menu options e Reset e Upload e Download e File Management e Troubleshooting The description that follows in this chapter describes configuring and managing maintenance options in the GS700TP Smart Switch Reset The Reset menu contains the following options e Device Reboot e Factory Default Device Reboot The Device Reboot screen resets the device 8 1 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To reset the device 1 Click Maintenance gt Reset gt Device Reboot The Device Reboot screen displays NETGEAR GS7A8TP 48 port Gigabit PoE Smart Switch Connect with Innovation System Switching Qos Security Monitoring Maintenance Help Upload Download File Management Troubleshooting Device Reboot v Device Reboot Factory Default Device Reboot Check this box and click APPLY below to reboot m Figure 8 1 The Device Reboot screen contains the following field 2 Check this box and click Apply below to reboot Confirm the rebooting operation 3 Check the confirmation box 4 Click Apply to reset the device Factory Default The Factory Default screen allows network managers to reset the device to the factory defaults shipped with t
149. onitoring 1 System Logs 1 system requirements 1 T TACACS 4 TDR 7 Terminal Access Controller Access Control System TACACS 4 traffic queues 9 Trap Filter 30 31 U upgrading the firmware 9 utilities Smartwizard Discovery 2 switch maintenance 1 system settings 1 V view 7 VLAN 14 16 21 VLAN Membership 17 VLANs 14 VPT 1 W Web access 7 1 Index 2 v1 0 December 2007
150. ory Log gt Flash Log Toman gt Server Log SaaS Se J First Previous Next all 2147483377 01 Jan 2000 02 41 01 Error AAA E AUTHFAIL Authentication failed for http source 10 6 39 20 2147483512 01 Jan 2000 01 50 12 Error AAA E AUTHFAIL Authentication failed for http source 10 6 39 16 2147483647 01 Jan 2000 01 46 55 Error AAA E AUTHFAIL Authentication failed for http source 10 6 39 16 First Previous Next All The Memory Log screen contains the following fields e Log Index Displays the log number e Log Time Displays the time at which the log was generated e Severity Displays the log severity and urgency level The following are the available log severity levels Emergency The highest warning level If the device is down or not functioning properly an emergency log message is saved to the specified logging location Alert The second highest warning level An alert log is saved if there is a serious device malfunction for example all device features are down Critical The third highest warning level A critical log is saved if a critical device malfunction occurs for example two device ports are not functioning while the rest of the device ports remain functional Error A device error has occurred for example if a single port is offline Warning The lowest level of a device warning The device is functioning but an operational problem has occurred Notice Provide
151. ot functioning while the rest of the device ports remain functional Error A device error has occurred for example if a single port is offline Warning The lowest level of a device warning The device is functioning but an operational problem has occurred Notice Provides device information Informational Provides device information Debug Provides debugging messages Select the server entry Enter the Server IP address in the provided field in the first row Enter the UDP Port number in the provided field in the first row Select the Facility assigned to the server from the list in the provided field in the first row Enter an optional server Description in the provided field in the first row 7 8 Monitoring the Switch v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 7 Select the Minimum Severity level message sent to the server from the list in the provided field in the first row 8 Click Apply to update the device To add a remote log server Click Monitoring gt Logs gt Server Log The Server Log screen displays Enter the Server IP address in the provided field in the first row Enter the UDP Port number in the provided field in the first row Select the Facility assigned to the server from the list in the provided field in the first row Enter an optional server Description in the provided field in the first row Aw amp NY m S
152. ovided field in the first row Select the Security Level from the list in the provided field in the first row Managing System Settings 3 29 v1 0 November 2007 GS700TP Smart Switch Software Administration Manual 6 Enter the UDP Port in the provided field in the first row 7 Select the Filter Name from the list in the provided field in the first row 8 Enter the Timeout and Retries in the provided fields in the first row 9 Click Add to update the device To remove a trap 1 Click System gt SNMP gt SNMPv3 gt Trap Configuration The SNMPv3 Trap Configuration screen displays 2 Select the trap entry Click Delete to remove the entry Trap Filter Name The SNMPv3 Trap Filter Name screen permits filtering traps based on OIDs Each OID is linked to a device feature or a portion of a feature The SNMPv3 Trap Filter Name screen also allows network managers to filter notifications To define the SNMPv3 Trap Filter Name 1 Click System gt SNMP gt SNMPv3 gt Trap Filter Name The SNMPv3 Trap Filter Name screen displays GS7A8TP 48 port Gigabit PoE Smart Switch oov Trap Filter Name Trap Filter Name Figure 3 19 The SNMPv3 Trap Filter Name screen contains the following field e Filter Name Enter the user defined notification filter name 2 Select the trap filter entry 3 30 Managing System Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Man
153. ow 5 Choose either Enable or Disable in the Egress Shaping Rate Status provided field in the first row 6 If you selected Enable in the Egress Shaping Rate Status field enter the Egress Shaping Rates CIR and CbS in the provided fields in the first row 7 Click Apply to update the device Advanced The CoS Advanced menu contains the following options e CoS to Queue Mapping e DSCP to Queue Mapping CoS to Queue Mapping The CoS to Queue Mapping screen contains fields for mapping CoS values to traffic queues Configuring QoS 5 7 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To map CoS values to queues 1 Click QoS gt CoS gt Advanced gt CoS to Queue Mapping The CoS to Queue Mapping screen displays NETGEAR GS7A8TP 48 port Gigabit PoE Smart Switch System Switching Security Monitoring Maintenance Help CoS To Queue Mapping Advanced CoS To Queue Mapping 0 cos ouere cosl oveve feos oueue cos oueue DSCP to Queue 0 Low 1 Lowest 2 Lowest 3 Low DEAD 4 Nomal 5 Normal 6 High 7 High Restore Default Mapping Restore Defaults Cr Figure 5 5 The CoS to Queue Mapping screen contains the following fields CoS to Queue Mapping e CoS Displays the CoS priority tag values where 0 is the lowest and 7 is the highest e Queue Select the traffic forwarding queue to which the CoS priority is mapped Four traffic priority queues are suppor
154. owing fields Views View Name Select the user defined view name The view name can contain a maximum of 30 alphanumeric characters e Object ID Subtree Enter the device feature OID e View Type Select whether the defined OID branch will be included in or excluded from the selected SNMP view The possible field values are Included The OID is included in the SNMP view Excluded The OID is excluded from the SNMP view 2 Select the View Name from the list in the provided field in the Views table 3 Enter the Object ID Subtree in the provided field in the first row 3 20 Managing System Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 4 5 Select either Included or Excluded from the View Type provided field in the first row Click Apply to update the device To add a new SNMP OID entry 1 2 3 4 5 Click System gt SNMP gt SNMPv3 gt View Content The SNMPv3 View Content screen displays Select the View Name from the list in the provided field in the Views table Enter the Object ID Subtree in the provided field in the first row Select either Included or Excluded from the View Type provided field in the first row Click Add to update the device To remove an SNMP OID entry 1 4 Click System gt SNMP gt SNMPv3 gt View Content The SNMPv3 View Content screen displays Select the View Name from the list in the provided field
155. port The ACL menu contains the following options MAC ACL MAC Rules MAC Binding Configuration TP ACL Managing Security 6 17 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e TP Rules e TP Binding Configuration e Binding Table MAC ACL The MAC ACL screen allows a MAC Based ACL to be defined To view or rename MAC Based ACLs 1 Click Security gt ACL gt MAC ACL The MAC Configuration screen displays NETGEAR GS7A8TP Connect with Innovation 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Management Securi ity Port Authentication Traffic Control MAC Configuration gt MAC ACL gt MAC Rules MAC Configuration gt MAC Binding configuration Current number of ACL 2 gt IP ACL oe MAC ACL Table IP Bindi gontiguration Number of Rules D test 2 M testi 4 The MAC Configuration screen contains the following fields MAC Configuration e Current number of ACL Displays the current number of user defined ACLs MAC ACL Table e Name Enter the user defined MAC based ACL name e Number of Rules Displays the current number of rules in the ACL 2 Select the ACL entry 3 Enter the new ACL Name in the provided field in the first row 4 Click Apply to update the device 6 18 Managing Security v1 0 December 2007 GS700TP Smart Switch Software Administration Manual
156. r the port to which port traffic is copied Source Port Table e Source Port Enter the port from which the packets are mirrored e Type Select the port mode configuration for port mirroring The possible field values are TX Only Port mirroring is configured on transmitting ports only RX Only Port mirroring is configured on receiving ports only TX and RX Port mirroring is configured on both receiving and transmitting ports This is the default value Enter the Destination Port in the provided field Select the source port entry Select the port mirroring Type from the list in the provided field in the first row Click Apply to update the device To add a source port entry 1 Click Monitoring gt Port Mirroring gt Port Mirroring The Port Mirroring screen displays Monitoring the Switch 7 23 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 2 Enter the Source Port in the provided field in the first row 3 Select the port mirroring Type from the list in the provided field in the first row 4 Click Add to update the device To remove a source port entry 1 Click Monitoring gt Port Mirroring gt Port Mirroring The Port Mirroring screen displays 2 Select the source port entry 3 Click Delete to remove the source port entry 7 24 Monitoring the Switch v1 0 December 2007 Chapter 8 Maintenance Using the Maintenance Options The navigati
157. re Enable Enable STP on the interface Disable Disable STP on the interface e Fast Link Select the Fast Link state on the interface If Fast Link mode is enabled for a interface the Port State is automatically placed in the Forwarding state when the port link is up Fast Link optimizes the STP protocol convergence The possible field values are Enable Enable Fast Link on the interface Disable Disable Fast Link on the interface e Port State Displays the current STP state of a port If enabled the port state determines what forwarding action is taken on traffic Possible port states are Forwarding STP is enabled on the port and the port is forwarding packets based on the STP topology Disabled STP is currently disabled on the port The port forwards traffic while learning MAC addresses Blocking The port is currently blocked and cannot forward traffic or learn MAC addresses Blocking is displayed when STP is enabled Listening The port is in Listening mode The port cannot forward traffic nor can it learn MAC addresses Learning The port is in Learning mode The port cannot forward traffic however it can learn new MAC addresses e Speed Displays the speed at which the port is operating e Path Cost Enter the method used to assign default path cost to STP ports The possible field range is 1 200000000 The default path cost assigned to an
158. ress Table The Basic Address Table screen displays the MAC Address table according to the defined categories 4 42 Configuring Switching Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To query the Basic Address Table 1 Click Switching gt Address Table gt Basic gt Address Table The Basic Address Table screen displays NETGEAR GS748TP 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Ports LAG VLAN Voice VLAN STP Multicast Address Table v Basic Address Table Address Table Search By VLAN ID z MAC Address Table First Previous Next All VLANI 11 ff aa 22 33 cc g3 VLAN2 fttt o7 VLANS tt tfaaaaiaaiaa at VLAN 414 14 11 11 11 11 g2 VLAN tt tt tt 22tf cc VLAN tt t3 tt t6 tt 8t 98 VLANIO ta ff ac a6 aa fa g5 VLANI3 14 17 d1 dd 11 c0 94 First Previous Next All CLEAR ALL REFRESH Figure 4 30 The Basic Address Table screen contains the following fields e Search By Display the MAC Address list according to selected category and query field The possible field values are VLAN ID Display the MAC Address table entries that relate to the specific VLAN ID MAC Address Display the MAC Address table entries that relate to MAC Address Interface Display the MAC Address table entries that relate to the specific interface e VLAN ID Displays the VLAN ID number to
159. rface parameters To configure port based authentication global properties 1 Click Security gt Port Authentication gt Advanced gt Port Authentication The Port Authentication screen displays NETGEAR GS748TP Connect with Innovation 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Management Security Traffic Control ACL Port Authentication v Basic v Advanced Port Authentication 802 1x Configuration PORTS All gt Port Authentication i i Select Interface User Name Port Control Guest YLAN A seee oiden daco Quire cation Period State Period E gi m O s O g4 O s M g6 O g m O gg r gio O m O g2 O as O g4 mem ofl Figure 6 7 Managing Security 6 11 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual The Port Authentication screen contains the following fields Interface Displays the interfaces User Name Displays the supplicant client user name once the user is authenticated Port Control Select the port authorization state Auto The port control is Auto and a single client has been authenticated via the port Authorized The port control is Forced Authorized and clients have full port access Unauthorized Either the port control is force Unauthorized or the port control is Auto but a client has not been authenticated via the port Guest VLAN Select whet
160. rity 6 25 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual Binding Table To view the ACL Binding Table 1 Click Security gt ACL gt Binding Table The Binding Table screen displays NETGEAR GS7A8TP Connect with Innovation 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Management Security Port Authentication Traffic Control Binding Table MAC ACL gt MAC Rules Interface Binding Table gt MAC Binding First Previous Next All Configuration gt IP Rules ia blue P gt IP Binding g2 es MAC Configuratior Binding Table st blue P a2 test MAC First Previous Next All Figure 6 16 The Binding Table screen contains the following fields Interface Binding Table e Interface Displays the interfaces for which the ACLs are bound e ACL Name Displays the ACL Name e ACL Type Displays the ACL Type The possible field values are IP The ACL is IP address based MAC The ACL is MAC address based 6 26 Managing Security v1 0 December 2007 Chapter 7 Monitoring the Switch Setting Monitoring Options The navigation pane at the top of the web browser interface contains a Monitoring tab that enables you to manage your GS700TP Smart Switch with features under the following main menu options e Logs e RMON e Port Mirroring The description that follows in this chapter descri
161. rom the list in the provided field in the first row Click Apply to update the device To add a new SNMP community 1 Click System gt SNMP gt SNMPv1 v2 gt Community Configuration The Community Configuration screen displays Enter the Management Station and Community String in the provided fields in the first row Select the Access Mode from the list in the provided field in the first row Click Add to update the device To remove an SNMP community 1 Click System gt SNMP gt SNMPv1 v2 gt Community Configuration The Community Configuration screen displays Select the entry to be removed Click Delete to remove the entry Trap Configuration The SNMPv1 v2 Trap Configuration screen contains information for defining filters that determine whether traps are sent to specific users and the trap type sent SNMP notification filters provide the following services Identifying Management Trap Targets Defining Trap Filtering Defining Trap Generation Parameters Providing Access Control Checks Managing System Settings 3 15 v1 0 November 2007 GS700TP Smart Switch Software Administration Manual To configure SNMPv1 v2 trap station management 1 Click System gt SNMP gt SNMPv1 v2 gt Trap Configuration The SNMPv1 v2 Trap Configuration screen displays NETGEAR GS7A8TP 4B port Gigabit PoE Smart Switch n Trap Configuration Trap Configuration Recipients Notification Notification
162. row Click Apply to update the device Multicast Forward All The Multicast Forward All screen contains fields for attaching ports or LAGs to a device that is attached to a neighboring Multicast router switch Once IGMP Snooping is enabled Multicast packets are forwarded only to the appropriate port or VLAN 4 40 Configuring Switching Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To define Multicast forward all settings 1 Click Switching gt Multicast gt Advanced gt Multicast Forward All The Multicast Forward All screen displays NETGEAR GS7A8TP 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Ports LAG VLAN Voice VLAN STP Address Table Multicast Forward All Multicast Forward All VLAN ID VLAN Name Multicast Forward All 3 Multicast Forward a All PORTS LAGS All GO TO INTERFACE co Static Static Static Static Static Static Static m fm A r F r a F A r E Figure 4 29 The Multicast Forward All screen contains the following information Multicast Forward All e VLAN ID Enter the VLAN ID e VLAN Name Displays the user defined VLAN name Multicast Forward All e Interface Displays the interface for which the Multicast settings are displayed e Interface Status Select the interface status The possible field values are Static The interface is added to the Multicast forward
163. rt Number of Retries Timeout for Reply Dead Time and Key String in the provided fields in the first row 3 Select the Usage Type and Active server from the lists in the provided fields in the first row 4 Click Add to update the device To remove a RADIUS server entry 1 Click Security gt Management Security gt RADIUS The RADIUS screen displays 2 Select the RADIUS server entry 3 Click Delete to remove the entry TACACS Terminal Access Controller Access Control System TACACS provides centralized security user access validation The system supports up to 2 TACACS servers TACACS provides a centralized user management system while still retaining consistency with RADIUS and other authentication processes The TACACS protocol ensures network integrity through encrypted protocol exchanges between the client and TACACS server The TACACS default parameters are user assigned defaults The default settings are applied to newly defined TACACS servers 6 4 Managing Security v1 0 December 2007 GS700TP Smart Switch Software Administration Manual If default values are not defined the system defaults are applied to the new TACACS new servers To configure TACACS Settings 1 Click Security gt Management Security gt TACACS The TACACS screen displays NETGEAR GS748TP 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Port Authentication Traffic Control
164. s e Audio and video remote monitoring Powered Devices are devices that receive power from the device power supply for example IP phones The PoE menu contains the following options e Basic e Advanced Basic The PoE Basic menu contains the following option e PoE Configuration PoE Configuration The Basic PoE Configuration screen contains system PoE information for enabling PoE on the device monitoring the current power usage and enabling PoE traps To configure PoE on the device 1 Click System gt PoE gt Basic gt PoE Configuration The Basic PoE Configuration screen displays GS748TP 48 port Gigabit PoE Smart Switch to00ur PoE Configuration Pol Configuration Pot Configuration Figure 3 6 The Basic PoE Configuration screen contains the following fields 3 8 Managing System Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e Power Status Displays the online power source status The possible field values are On The power supply unit is functioning Off The power supply unit is not functioning Faulty The power supply unit is functioning but an error has occurred For example a power overload or a short circuit e Nominal Power Displays the actual amount of power the device can supply The field value is displayed in Watts e Consumed Power Displays the amount of the power used by the device The
165. s are RADIUS None Port authentication is first attempted through the RADIUS server If the RADIUS server is inaccessible or not defined then no authentication method None is used and the session is permitted RADIUS Port authentication is through the RADIUS server None No authentication method is used to authenticate the port e Guest VLAN Enter whether the Guest VLAN is enabled on the device The possible field values are Disable Disable Guest VLAN on the device This is the default value Enable Enable using a Guest VLAN for unauthorized ports If a Guest VLAN is enabled the unauthorized port automatically joins the VLAN selected in the VLAN List field 6 10 Managing Security v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e Guest VLAN ID Select the guest VLAN ID from the list of the currently defined VLANs Select Disable or Enable for the Port Based Authentication State in the provided field If you selected Enable for the Port Based Authentication State then select the Authentication Method from the list in the provided field 4 Select Disable or Enable for the Guest VLAN status in the provided field 5 Ifyou selected Enable for the Guest VLAN field then select the VLAN ID from the list in the provided field 6 Click Apply to update the device Port Authentication The Port Authentication screen allows to configure port authentication inte
166. s device information Informational Provides device information Debug Provides debugging messages Monitoring the Switch 7 5 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e Description Displays the log message text 2 Click Refresh or Clear Logs to refresh or reset the Memory Logs screen Flash Log The Flash Log screen contains information about log entries saved to the log file in Flash including the time the log was generated the log severity and a description of the log message The message log is available after reboot To view the message logs in Flash 1 Click Monitoring gt Logs gt Flash Log The Flash Log screen displays NETGEAR Connect with Innovation System Switching Qos Security RMON Mirroring Flash Log gt Log Configuration gt Log Filter gt Memory Log v Flash Log gt Server Log Flash Log First Previous Next All 2147483601 2147483602 2147483603 2147483604 2147483605 2147483606 2147483607 2147483608 2147483609 2147483610 2147483611 2147483612 2147483613 2147483614 2147483615 01 Jan 2000 02 41 01 01 Jan 2000 01 50 12 01 Jan 2000 01 46 55 01 Jan 2000 01 50 12 01 Jan 2000 01 50 12 01 Jan 2000 01 50 12 01 Jan 2000 01 50 12 01 Jan 2000 01 50 12 01 Jan 2000 01 50 12 01 Jan 2000 01 50 12 01 Jan 2000 01 50 12 01 Jan 2000 01 50 12 01 Jan 2000 01 50 12 01 Jan 2000 01 50 12 01 Jan 2000 01 50 12 GS748TP
167. s information about Voice VLAN on the device including the ports enabled and included in the Voice VLAN Configuring Switching Settings 4 21 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To define Voice VLAN settings 1 Click Switching gt Voice VLAN gt Basic gt Properties The Voice VLAN Properties screen displays NETGEAR GS7A8TP 4B port Gigabit PoE Smart Switch sooour Remark CoS e oe voice viaw Aging time osy P nos FF Figure 4 16 2 Click Apply to update the device Advanced The Voice VLAN Advanced menu contains the following options e Properties e Port Setting e Voice VLAN OUI 4 22 Configuring Switching Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual Properties To define Voice VLAN settings 1 Click Switching gt Voice VLAN gt Advanced gt Properties The Advanced Voice VLAN Properties screen displays NETGEAR GS748TP 48 port Gigabit PoE Smart Switch toaour Properties v Advanced Properties Remark CoS c ee Voice VLAN Aging Time m m Fj Figure 4 17 2 Click Apply to update the device Port Setting To add ports or LAGs to the Voice VLAN Configuring Switching Settings 4 23 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 1 Click Switching gt Voice VLAN gt Advanced gt Port Setting The Port Setting screen opens NETGEAR
168. screen contains the following fields Interface Displays the LAG number Description Enter a user defined LAG description Status Select the current link operation The possible field values are Up The LAG is currently linked and forwarding traffic Down The LAG is currently not linked Reactivate Suspended Select the action to apply to a suspended LAG The possible field values are Enable Reactivate the suspended LAG Disable Do not reactivate the suspended LAG Type Displays the LAG Type The possible field values are Static The LAG is configured manually LACP The LAG is configured automatically Speed Select the data transmission rate for the LAG The LAG type determines what speed setting options are available LAG speeds can only be configured when auto negotiation is disabled The possible field values are 10M The LAG is currently operating at 10 Mbps Configuring Switching Settings 4 9 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 100M The LAG is currently operating at 100 Mbps 1000M The LAG is currently operating at 1000 Mbps Duplex Mode Displays the duplex mode of the LAG The possible field value is Full The interface supports transmission between the device and its link partner in both directions simultaneously Auto Negotiation Select the auto negotiation status of the LAG
169. settings Note If you selected SNTP you must configure the SNTP servers See SNTP Server Configuration for detailed instructions on configuring the SNTP servers SNTP Server Configuration The SNTP Server Configuration screen allows network administrators to define primary and secondary SNTP servers The system time is first retrieved through the primary SNTP server If the device is unable to retrieve the system time through the primary server the device retrieves the system time from the secondary server To configure SNTP servers 1 Click System gt Management gt Time gt SNTP Server Configuration The SNTP Server Configuration screen displays NETGEAR GS748TP aides ter are 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help SNTP Server Configuration v Time 2 Time Configuration SNTP Server Configuration gt SNTP Server Configuration SNTP Server 1 4 4 4 4 I Delete SNTP Server 2 5555 I Delete The SNTP Server Configuration screen contains the following fields SNTP Server 1 Enter the primary SNTP server IP address The Primary SNTP server is the first server used to retrieve the system time The following option is available Delete Remove the currently configured SNTP Server 1 3 6 Managing System Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e SNTP Server 2 Enter the secondary SNTP server IP address
170. t in the provided field Select the rule entry Click Delete to remove the entry 6 24 Managing Security v1 0 December 2007 GS700TP Smart Switch Software Administration Manual IP Binding Configuration To bind interfaces to an ACL 1 Click Security gt ACL gt IP Binding Configuration The IP Binding Configuration screen displays NETGEAR GS748TP 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Management Security Port Authentication Traffic Control IP Binding Configuration MAC ACL gt MAC Rules IP Binding Configuration gt MAC Binding ea Configuration ACE Nams IP ACL gt IP Rules Port Selection Table gt endino Table ME Figure 6 15 The IP Binding Configuration screen contains the following fields IP Binding Configuration e ACL Name Select the ACL Name for viewing and modifying ACL bound interfaces Port Selection Table e Select the interfaces for which the ACLs are bound 2 Select the ACL Name from the list in the provided field 3 Select the interfaces to bind to the selected ACL Name by one of the following methods a Click on the port or LAG gold bar to display the associated interfaces and then select the interfaces to bind by clicking on the boxes below the interfaces or b Click on the port s or LAG s quick box to select all the associated interfaces 4 Click Apply to update the device Managing Secu
171. tch v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To configure RMON history information 1 Click Monitoring gt RMON gt Advanced gt History Control The RMON History Control screen displays NETGEAR GS7A8TP 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance v Advanced History Control History Control Statistics z History Source amplin History Control Entry No Interface nterval gt History Table gt Events Control 3 Events Log gt Alarms Figure 7 8 The RMON History Control screen contains the following fields History Entry No Displays the entry number for the History Control Table screen Source Interface Enter the interface from which the history samples were taken Sampling Interval Enter in seconds the time that samples are taken from the ports The field range is 1 3600 The default is 1800 seconds equal to 30 minutes Samples Requested Enter the number of samples to be saved The field range is 1 65535 The default value is 50 Current Number of Samples Displays the current number of samples taken Owner Enter the RMON station or user that requested the RMON information The field range is 0 20 characters 2 Select the history control entry 3 Enter the Source Interface Sampling Interval Samples Requested and Owner in the provided field in the first row 4 Click Apply to upd
172. tch Software Administration Manual User Guide The User Guide screen provides access to the PDF format of the User Guide To view the User Guide screen 1 Click Help gt Online Help gt User Guide The User Guide screen displays NETGEAR GS748TP Co r Pais 48 port Gigabit PoE Smart Switch Connect with Innovation System Switching Qos Security Monitoring Maintenance User Guide Support v User Guide User Guide Please click APPLY below to view the PDF User Guide You will need Adobe Acrobat Reader to view the Guide Figure 9 2 2 Click Apply to open a window and display the User Guide in PDF format 9 2 Online Help v1 0 December 2007 Appendix A Default Settings This appendix provides default settings for the NETGEAR Model GS700TP Smart Switch You can always configure the switch to default settings by using the Factory Reset function from a Web browser Table A 1 Default Settings Feature GS700TP Default Setting Port Speed Auto negotiation Port Duplex Auto negotiation Flow Control half duplex Disabled Flow Control full duplex Disabled IP Configuration DHCP enabled Password password VLAN 802 1q based VLAN Link Aggregation Trunk Disabled Traffic Prioritization QoS Optimized for flow control all ports set normal priority A 1 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual A 2 v1 0 December 2007
173. ted Lowest Low Normal and High The High Queue is reserved for special traffic and is not recommended for use Restore Default Mapping e Restore Defaults Restore the device factory defaults for mapping CoS values to a forwarding queue The possible field values are Checked Restore the factory default settings for mapping CoS values to a forwarding queue Unchecked Maintain the current CoS queue mapping settings 2 Select the Queue values for each CoS value in the provided fields 3 Check or uncheck the Restore Defaults box in the provided field 4 Click Apply to update the device 5 8 Configuring QoS v1 0 December 2007 GS700TP Smart Switch Software Administration Manual DSCP to Queue Mapping The DSCP To Queue Mapping screen contains fields for mapping DSCP values to traffic queues For example a packet with a DSCP tag value of 1 can be assigned to queue 2 To map DSCP values to queues 1 Click QoS gt CoS gt Advanced gt DSCP To Queue Mapping The DSCP To Queue Mapping screen displays NETGEAR GS748TP Connect with Innovotion 48 port Gigabit PoE Smart Switch System Switching QoS Security Monitoring Maintenance Help DSCP To Queue Mapping Basic v Advanced DSCP To Queue Mapping E A Class Selector CS PHB Ceno E Mapping CS1 ones Lowea E 3 onea lowest J t0000 Lowest E ooroo Lowest coroooo HLowest oroo Lowest cse cs7 cse 100000 Lowest z
174. that occurred on the device Monitoring the Switch 7 11 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual To view RMON Advanced Statistics 1 Click Monitoring gt RMON gt Advanced gt Statistics The RMON Advanced Statistics screen displays NETGEAR GS748TP 48 port Gigabit PoE Smart Switch snnect with Innovation System Switching Qos Security Monitoring Maintenance Help Mirroring Statistics v Basic Advanced RMON Interface Statistics gt Statistics History Control Interface C Port C aG foal gt History Table Received Packets Events Control Broadcast Packets Recei Events Log Multicast Packets Received eerie CRC amp Align Errors Undersize Packets Oversize Packets Fragments Jabbers Collisions Frames of 64 Bytes Frames of 65 to 127 Bytes Frames of 128 to 255 Bytes Frames of 256 to 511 Bytes Frames of 512 to 1023 Bytes Frames of 1024 to 1522 Bytes RMON Summary Statistics f CLEAR ALL COUNTERS REFRESH APPLY Figure 7 7 The RMON Advanced Statistics screen contains the following fields RMON Interface Statistics Interface Select the device for which statistics are displayed The possible field values are Port Select the specific port for which RMON statistics are displayed LAG Select the specific LAG for which RMON statistics are displayed Received Bytes Displays the number of octets received on the interface since the
175. the NETGEAR Inc website at http www netgear com support How to Use This Manual The HTML version of this manual includes the following e Buttons gt and lt for browsing forwards or backwards through the manual one page at a time e A button that displays the table of contents and a button Double click on a link in the table of contents or index to navigate directly to where the topic is described in the manual e A i button to access the full NETGEAR Inc online knowledge base for the product model e Links to PDF versions of the full manual and individual chapters About This Manual xi v1 0 December 2007 GS700TP Smart Switch Software Administration Manual How to Print this Manual To print this manual select one of the following options e Printing a Page from HTML Each page in the HTML version of the manual is dedicated to a major topic Select File gt Print from the browser menu to print the page contents e Printing from PDF Your computer must have the free Adobe Acrobat reader installed in order to view and print PDF files The Acrobat reader is available on the Adobe Web site at http www adobe com Printing a PDF Chapter e Click the PDF of This Chapter link at the top left of any page in the chapter you want to print The PDF version of the chapter you were viewing opens in a browser window e Click the print icon in the upper left of your browser win
176. tifications provided field 4 Click Apply to update the device Trap Configuration The SNMPv3 Trap Configuration screen contains information for defining filters that determine whether traps are sent to specific users and the trap type sent SNMP notification filters provide the following services e Identifying Management Trap Targets e Defining Trap Filtering e Selecting Trap Generation Parameters e Providing Access Control Checks To define trap station management 1 Click System gt SNMP gt SNMPv3 gt Trap Configuration The SNMPv3 Trap Configuration screen displays GS748TP 48 port Gigabit PoE Smart Switch toaour Trap Configuration Trap Configuration Figure 3 18 The SNMPv3 Trap Configuration screen contains the following fields e Recipients IP Enter the IP address to which the traps are sent e Notification Type Select the type of notification sent The possible field values are Traps Traps are sent 3 28 Managing System Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual SR KN eR Ge Informs Informs are sent e User Name Enter the user name The field range is up to 30 alphanumeric characters e Security Level Select the security level attached to the group Security levels apply to SNMPv3 only The possible field values are No Authentication Neither the Authentication nor the Privacy security levels are ass
177. tings are displayed Ingress Rate Limit Status Select whether rate limiting is defined on the interface The possible field values are Enable Enable ingress rate limiting on the interface Disable Disable ingress rate limiting on the interface Ingress Rate Limit Enter the rate limit in kilobits per second The possible field range is 3500 to the maximum port speed GE ports have a maximum speed of 1000000 kilobits per second The default value is 3500 kilobits per second Egress Shaping Rates Status Select whether egress shaping is defined on the interface The possible field values are Enable Enable egress shaping rate on the interface Disable Disable egress shaping rate on the interface This is the default value 5 6 Configuring QoS v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e Egress Shaping Rates CIR Enter the Egress Shaping Committed Information Rate CIR in kilobits per second The possible field range is 64 to 1000000 for GE ports e Egress Shaping Rates CbS Enter the the Egress Shaping Committed Burst Size CbS in kilobits per second The possible field range is 4 to 16000 2 Select the interface 3 Choose either Enable or Disable in the Ingress Rate Limit Status provided field in the first row 4 Ifyou selected Enable in the Ingress Rate Limit Status field enter the Ingress Rate Limit in the provided field in the first r
178. tion Port and Timeout for Reply in the provided fields in the first row 4 Select the Single Connection status and Active server from the lists in the provided fields in the first row 5 Click Apply to update the device To add a new TACACS server entry 1 Click Security gt Management Security gt TACACS The TACACS screen displays 2 Enter the Host IP Address Key String Authentication Port and Timeout for Reply in the provided fields in the first row 3 Select the Single Connection status and Active server from the lists in the provided fields in the first row 4 Click Add to update the device To remove a TACACS server entry 1 Click Security gt Management Security gt TACACS The TACACS screen displays 2 Select the TACACS server entry 3 Click Delete to remove the entry Authentication List The Authentication List screen contains information for defining an authentication method for the selected Authentication List For example if the user selects TACACS as the first entry None as the second this causes authentication to first occur at the TACACS server If the TACACS server is inaccessible or not defined the session is permitted Once the Authentication List is defined as Local it is not possible to define an alternative authentication method as it is a built in system authentication method In order to configure RADIUS TACACS authentication the user name should be configured as enab15 on
179. tration Manual LACP Port Priority To configure LACP port priority 1 Click Switching gt LAG gt Advanced gt LACP Port Configuration The LACP Port Priority screen displays GS748TP 4B port Gigabit PoE Smart Switch kooour Ports VLAN Voice VLAN STP Multicast Address Table 7 cs a ea kJ Bens E3 Ses eceeces 7m EE se E r r r r r r r r r r r r r r r r r r ral r r r RE Figure 4 9 The LACP Port Priority screen contains the following fields e Interface Displays the interface number to which timeout and priority values are assigned e LACP Priority Enter the port priority value The field range is 1 65535 e Timeout Select the administrative LACP timeout The possible field values are Long A long timeout value 90 seconds This is the default Short A short timeout value 3 seconds 2 Select the interface 3 Enter the LACP Priority and select the Timeout in the provided fields in the first row 4 Click Apply to update the device Configuring Switching Settings 4 13 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual VLAN VLANs are logical subgroups with a Local Area Network LAN which combine user stations and network devices into a single unit regardless of the physical LAN segment to which they are attached VLANs allow network traffic to flow more efficiently within subgroups VLANs use software to reduce the
180. twork e Designated Root Displays the Root Bridge priority and MAC address e Root Port Displays the port number that offers the lowest cost path from this bridge to the Root Bridge This field is significant when the bridge is not the Root Bridge e Max Age Sec Displays the device Maximum Age Time The Maximum Age Time is the amount of time in seconds a bridge waits before sending configuration messages The default Maximum Age Time is 20 seconds e Forward Delay Sec Displays the device Forward Delay Time The Forward Delay Time is the amount of time in seconds a bridge remains in a listening and learning state before forwarding packets The default is 15 seconds e Hello Time Sec Displays the device Hello Time The Hello Time indicates the amount of time in seconds a Root Bridge waits between configuration messages The default is 2 seconds Select Enable or Disable in the Spanning Tree State provided field Select the STP Operation Mode in the provided field Click Apply to update the device Advanced The STP Advanced menu contains the following options STP Configuration Configuring Switching Settings 4 27 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e CST Configuration e CST Port Configuration STP Configuration The Advanced STP Configuration screen contains parameters for enabling STP on the device To configure STP on the device 1 Click
181. ual 3 Enter the trap Filter Name in the provided field in the first row 4 Click Apply to update the device To add a new trap filter name 1 Click System gt SNMP gt SNMPv3 gt Trap Filter Name The SNMPv3 Trap Filter Name screen displays 2 Enter the trap Filter Name in the provided field in the first row 3 Click Add to update the device To remove a trap filter name 1 Click System gt SNMP gt SNMPv3 gt Trap Filter Name The SNMPv3 Trap Filter Name screen displays 2 Select the trap filter name entry Click Delete to remove the entry Trap Filter Content The SNMPv3 Trap Filter Content screen permits filtering traps based on OIDs Each OID is linked to a device feature or a portion of a feature The SNMPv3 Trap Filter Content screen also allows network managers to filter notifications To define SNMPv3 Trap Filter settings 1 Click System gt SNMP gt SNMPv3 gt Trap Filter Content The SNMPv3 Trap Filter Content screen displays NETGEAR GS7A8TP 48 port Gigabit PoE Smart Switch tooo Management Device View Pot Trap Filter Content Trap Filter Settings Fater Name Trap Filter Settings Select Object 1D Subtree Figure 3 20 The SNMPv3 Trap Filter Content screen contains the following fields Managing System Settings 3 31 v1 0 November 2007 GS700TP Smart Switch Software Administration Manual 2 3 4 5 6 Trap Filter Settings Filter Name Contains
182. uthoritative identification of the network management subsystem contained in the entity e Date amp Time Displays the current date and local time e System Up Time Displays the amount of time since the most recent device reset The system time is displayed in the following format days hours minutes seconds For example 41 days 2 hours 22 minutes 15 seconds e Idle Timeout Enter the amount of time minutes that elapses before an idle station is timed out Idle stations that are timed out must login to the system The field range is 5 30 minutes The field default value is 10 minutes 3 2 Managing System Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 3 e Base MAC Address Displays the MAC address of a standalone device e Serial Number Displays the device serial number e Jumbo Frames Status Displays the Jumbo Frame status e Jumbo Frames After Reset Select the Jumbo Frame status The possible field values are Enable Enable Jumbo Frames Disable Disable Jumbo Frames The Versions Table displays the following fields e Model Name Displays the device model name e Hardware Version Displays the installed device hardware version number e Boot Version Displays the current boot version running on the device e Software Version Displays the installed software version number Enter the System Name System Location System Contact and
183. which the entry refers e MAC Address Displays the MAC address to which the entry refers e Interface Displays the interface to which the entry refers 2 Select the Search By key from the list in the provided field Configuring Switching Settings 4 43 v1 0 December 2007 GS700TP Smart Switch Software Administration Manual 3 Enter the value to be searched for in the provided box 4 Click GO to execute the query Advanced The Address Table Advanced menu contains the following options e Static Addresses e Dynamic Addresses e Address Table Static Addresses The Static Addresses screen contains a list of static MAC addresses Static Addresses are added and removed from the Static Addresses screen To prevent static MAC addresses from being deleted when the device is reset ensure the port attached to the MAC address is locked To configure the Static MAC Address table 1 Click Switching gt Address Table gt Advanced gt Static Addresses The Static Addresses screen displays NETGEAR GS748TP Connect with Innovation 48 port Gigabit PoE Smart Switch System Switching Qos Security Monitoring Maintenance Help Ports LAG VLAN Voice VLAN STP Multicast Static Addresses v Advanced Static Addresses pe eet gt Dynamic Addresses D Figure 4 31 The Static Addresses screen contains the following fields e VLAN ID Select the VLAN ID number to which the entry refers e MA
184. within a LAG must be of the same media type A VLAN is not configured on the port The port is not assigned to a different LAG Auto negotiation mode is not configured on the port The port is in full duplex mode All ports in the LAG have the same ingress filtering and tagged modes All ports in the LAG have the same back pressure and flow control modes All ports in the LAG have the same priority All ports in the LAG have the same transceiver type The device supports up to eight LAGs with eight ports in each LAG 4 4 Configuring Switching Settings v1 0 December 2007 GS700TP Smart Switch Software Administration Manual e LACP LAGs support up to 16 ports with eight ports active at any given time The LAG menu contains the following options e Basic e Advanced Basic The LAG Basic menu contains the following options e LAG Configuration e LAG Membership LAG Configuration The Basic LAG Configuration screen contains fields for configuring LAG parameters The system supports 8 LAGs and each LAG can contain up to 8 ports To define LAG parameters 1 Click Switching gt LAG gt Basic gt LAG Configuration The Basic LAG Configuration screen displays S748TP G 48 port Gigabit PoE Smart Switch to00ur LAG Configuration v Basie LAG Contigureton LAG Configuration AG membership Select Interface Description status Seactvats Typa Speed puptex Auto SE F
Download Pdf Manuals
Related Search