Amer Networks SS2GD8i
Contents
1. EEPROM Test OK UART Test OK DRAM Test OK Flash Test OK loopback Syntax loopback Description Tests internal external loopback Arguments None Example SS2GD8I diag loopback Internal Loopback Test OK External Loopback Test Port 12 3 45 67 8 Fail ping Syntax ping lt ip gt Description Tests if the switch is able to ping a specific IP address or domain Arguments lt ip gt IP address or domain name e g 192 168 0 100 or www yahoo com Example SS2GD8I1 diag ping 192 168 1 115 Gateway 192 168 1 253 192 168 1 115 is alive 85 gt firmware set upgrade path Syntax set upgrade path lt file path gt Description To set up the image file that will be upgraded Arguments lt file path gt upgrade file path relative to the root directory of the TFTP server Example SS2GD81 firmware set upgrade path gs2108c SS2GD8I v2 03 img show Syntax show Description Displays information for the TFTP server and upgrade path Arguments None Example SS2GD81 firmware show TFTP Server IP Address 192 168 3 111 Path and Filename gs2108c SS2GD8I_ v2 03 img upgrade Syntax upgrade Description Upgrades the firmware using the path and file defined using set upgrade path Arguments None Example SS2GD81 firmware upgrade Upgrading firmware gt gvrp disable Syntax disable Description Disables GVRP Arguments None Example SS2GD8I1 gvrp2. Example SS2GD8I stp set port 1 8 0 128 yes auto set version Syntax set version lt ver gt Description Set the STP version Arguments lt ver gt can be stp or rstp Example SS2GD8I stp set version rstp 112 show config Syntax show config Description Displays the STP configuration Arguments None Example SS2GD81 stp show config STP State Configuration Spanning Tree Protocol Enabled Bridge Priority 0 61440 61440 Hello Time 1 10 sec E2 Max Age 6 40 sec 2 20 Forward Delay 4 30 sec A Force Version 2 RSTP show port Syntax show port Description Displays the STP port information Arguments None Example SS2GD81 stp SS2GD81 stp show port Port Port Status Path Cost Priority Admin Edge Port Admin Point To Point T DISCARDING 2000000 128 No Auto 2 DISCARDING 2000000 128 No Auto 3 DISCARDING 2000000 128 No Auto 4 DISCARDING 2000000 128 No Auto 5 DISCARDING 2000000 128 No Auto 6 DISCARDING 2000000 128 No Auto 7 DISCARDING 2000000 128 No Auto 8 DISCARDING 2000000 128 No Auto 113 show status Syntax show status Description Displays the STP status Arguments None Example S5S2GD81 stp show status STP Status STP State Enabled Bridge ID 00 40 C7 D8 09 1D Bridge Priority 61440 Designated Root 00 40 C7 D8 09 1D Designated Priority 61440 Root Port 0 Root Path Cost 0 Current Max Age sec 20 Current Forward Delay
3. Auto Upload Enable Link Up Port 1 Link Down Port 2 Link Down Port 1 LACP Enabled Port 5 Group 1 Login admin Login admin Logout admin Logout admin Login admin Logout admin Login admin Link Up Port 2 Link Down Port 2 Login admin Link Up Port 2 Link Down Port 2 Login admin Login admin Login admin y Upload Log Figure 3 60 Log Data Table No Display the order in which the trap occured Time Display the time that the trap occured Events Display the trap event name Auto Upload Enable Switch the enabled or disabled status of the auto upload function which will upload the log through TFTP automatically Upload Log Upload log data through TFTP Clear Log Clear log data 57 3 21 Firmware Upgrade The Firmware Upgrade page Figure 3 61 allows you to update the firmware on the switch with new firmware that is provided by the manufacturer Software upgrades typically improve the performance or increase the feature set of the switch The switch requires a TFTP client running on a computer on the network for firmware upgrades To upgrade the firmware first enter the IP address of the computer with the TFTP client and the new firmware on it under TFTP server see section 3 19 then specify the filename of the firmware on the computer Click Upgrade to complete the procedure Once the upload has finished the switch will start upgrading software A reboot message will be d
4. Land Amer com SS2GD8l 6 port 10 100 1000 2 Combo SFP Port L2 Managed Switch User s Guide Version 1 0 Amer com 6901 Bryan Dairy Road Suite 150 Largo FL 33777 Amer com Corp 1997 2006 All rights reserved No part of this publication may be reproduced in any form or by any means or used to make any derivative such as translation transformation or adaptation without permission from Amer com as stipulated by the United States Copyright Act of 1976 Amer com reserves the right to make changes to this document and the products which it describes without notice Amer com shall not be liable for technical or editorial errors or omissions made herein nor for incidental or consequential damages resulting from the furnishing performance or use of this material Amer com is a registered trademark of Amer com All other trademarks and trade names are properties of their owners Table of Contents 1 INTRODUCTION Sic cas dice cdi sede naciona cnn din RIA tear 1 1 1 PRODUCT OVERVIEW ista a eee ed a Add e 1 1 2 KEY FEATURES OF THE SWITCH ivi cect acevsdovcotasieeeel veel acinus a aai 1 1 3 CHECKLIST v biacitetesigeevtindininoce O dae ied elds 1 1 4 FEATURES 00d a A ae ned eee eet 2 1 5 SSZGD8I DIAGRAM we cicesesieces vsgececs cdt da deb eaves A a 3 LOT Front Paneliistcsiteent nee itinerant 3 1 5 2 Rear Panel ici scetianiiel adalat ghia a ei ee 4 1 6 FIBER TRANSCEIVERS criticada ieee ws heed el eee 4 INSTALLATION
5. show Syntax show Description Displays all current bandwidth limitation settings Arguments None Example SS2GD8I bandwidth show Ingress Egress Port All State All Rate Storm State Storm Rate All state All Rate 1 Disabled 0 Disabled 0 Disabled 0 2 Disabled 0 Disabled 0 Disabled 0 3 Disabled 0 Disabled 0 Disabled 0 4 Disabled 0 Disabled 0 Disabled 0 5 Disabled 0 Disabled 0 Disabled 0 6 Disabled 0 Disabled 0 Disabled 0 7 Disabled 0 Disabled 0 Disabled 0 8 Disabled 0 Disabled 0 Disabled 0 gt config file set export path Syntax set export path lt file path gt Description Sets the path and filename that settings will be exported to relative to the root directory of the TFTP server Arguments lt file path gt path and file name Example SS2GD81 config file set export path log 21511 txt export start Syntax export start Description Exports startup settings to the file defined using set export path Arguments None Example SS2GD81I config file export start Export successful 82 export user conf Syntax export user conf Description Exports user configuration settings to the file defined using set export path Arguments None Example SS2GD81 config file export user conf Export successful set import path Syntax set import path lt file path gt Description Sets the path and filename that settings will be imported from relativ
6. to set the LACP to active mode or passive to set the LACP to passive mode Example SS2GD8I trunk set trunk 1 4 lacp 1 active show aggtr view Syntax show aggtr view Description Displays the aggregator list Arguments None Example SS2GD81 trunk show aggtr view Aggregator 1 Method None Member Ports 1 Ready Ports 1 Aggregator 2 Method LACP Member Ports 2 Ready Ports 118 show lacp detail Syntax show lacp detail lt aggtr gt Description Displays detailed information for the LACP trunk group Arguments lt aggtr gt aggregator range from 1 to 8 Example SS2GD81I trunk show lacp detail 2 Aggregator 2 Information Actor Partner System Priority MAC Address System Priority MAC Address 32768 00 40 c7 e8 00 02 32768 00 00 00 00 00 00 PORE Key Trunk Status PROFE Key 2 257 as 2 0 show lacp priority Syntax show lacp priority Description Displays the LACP Priority Arguments None Example SS2GD81 trunk show lacp priority LACP System Priority 32768 119 show status Syntax show status Description Displays the aggregator status and settings for each port Arguments None Example SS2GD81 trunk show status Trunk Port Setting Trunk Port Status Port Method Group Active LACP Aggregator Status 1 None 0 Active 1 AS 2 None 0 Active 2 3 LACP 2 Active 3 A 4 None 0 Active 4 sns 5 None 0 Active 5 Raia 6 None 0 Active 6 Goa 7 None 0 Active 7 A
7. Total GVRP Packets Invalid GVRP Packets LeaveAll messag JoinEmpty message JoinIn message eaveEmpty message OOO 0 0 0 SO 90 00 CO de Empty message 91 show group Syntax show group Description Show all GVRP groups Arguments None Example SS2GD81 gvrp show group GVRP group information VID Member Port gt hostname hostname Syntax hostname lt name gt Description Sets the hostname of the switch Arguments lt name gt hostname maximum 40 characters Example SS2GD81 hostname Company Company gt igmp set igmp_snooping Syntax set igmp_snooping lt status gt Description Set the mode for IGMP Snooping Arguments lt status gt IGMP snooping status can be one of the following 0 for disabled 1 for active or 2 for passive Example SS2GD81I igmp set igmp snooping 2 92 show Syntax show Description Displays the IGMP snooping mode and IP Multicast Table Arguments None Example SS2GD8I1 igmp show Snoop Mode Active IP Multicast Y LP Address 4 224 21 1 1 VLAN ID 0 Member Port 22 gt IP disable dhcp Syntax disable dhcp Description Disables the DHCP server Arguments None Example SS2GD8I1 ip disable dhcp enable dhcp Syntax enable dhcp lt dns gt Description Enables the DHCP server and set the DNS server to manual or auto mode Arguments lt dns gt set DHCP by using manual or auto mode can be
8. 1550 nm Single Mode 20km TX Transmit 1550 nm RX Receive 1310 nm Table 2 1 Cable Types Typical Network Topologies A network with the lowest number of levels of switches will reduce the timing delay between server and client With this approach the number of switches in any one path will be minimized lowering the possibility of a network loop and improving network efficiency If more than two switches are connected in the same network select one switch as the Level 1 switch and connect all other switches to it at Level 2 It is recommended to connect the servers to the Level 1 switch This is a general case if no VLANs or other special requirements are applied Case 1 All ports are in the same local area network Every port can access each other See Figure 2 3 ear a a a a a a E E q gt P i AAA gt gt A A gt A gt Figure 2 3 No VLAN Configuration Diagram z zp If VLANs are enabled and configured each node in the network can only communicate with other nodes in the same VLAN Here VLAN area is defined by what VLAN you are using The switch supports both port based VLAN and tag based VLAN They are different in practical deployment especially in terms of physical location The following diagram shows how each on works and the differences between the two Case 2a Port based VLAN See Figure 2 4 AAA Y AAA O A E AAA VLAN VLAN Figure 2 4 Port based VLAN Diagram 1 The same VL
9. Port mirroring allows you to duplicate all of the traffic going to one or more ports on to your monitoring port This is typically used for diagnosing and troubleshooting problems on the network For example if port 1 is the monitoring port and ports 2 and 3 are monitored ports then all traffic going to ports 2 and 3 will be copied to port 1 Note When using port mirroring you should avoid setting a port to be a monitoring port and an aggregated port at the same time to avoid conflicts 23 Mirror O mode IDET Monitoring 1M 2M 34 sM oM y Mg H Figure 3 13 Port Mirroring Page Mode Used to Enable or Disable port mirroring Default is Disable Monitoring Port Set the port that will be monitoring the other ports Default is Port 1 Monitored Port Set the port s to be monitored Place an X beside the number of the port s to monitor The Monitoring port should not be selected as a Monitored port 3 4 Bandwidth Management The Bandwidth Management page Figure 3 14 allows you to set both incoming and outgoing bandwidth limitations for each port Note Each port on the switch has its own 16KB packet buffer The packet buffer size will be reduced when the bandwidth rate limitation is enabled which may cause jumbo frames not to be forwarded Jumbo frames should not be used in conjunction with bandwidth limitations Bandwidth Management Configuration Port Number F Ingress Rate Limiting Policing Data
10. and to restore the configuration of the switch from a file saved on the local computer using TFTP See section 3 19 for details on changing the TFTP server settings 54 Configure Export Import File Path MENO 0 0 0 0 Export File Path cx Export Start Export User Conf Import File Path Import Start Import User Conf Figure 3 55 Configure File Path Page Export File Path The name and path to use when saving the file Export Start Export the switch s startup configuration stored in flash to the local computer Export User Conf Export the switch s user configuration stored in flash to the local computer Import File Path The name and path to use when retrieving the file Import Start Overwrite the switch s startup configuration stored in flash with the file from the local computer Import User Conf Overwrite the switch s user configuration stored in flash with the file from the local computer 3 18 Diagnostics Three functions including Diagnostics Loopback Test and Ping Test are contained in this section for self diagnostics Each of them will be described in the following sections 3 18 1 Diagnostics The Diagnostics page Figure 3 56 provides a set of basic system diagnoses lt lets the user know whether the system is healthy or needs to be repaired The basic system check includes EEPROM test UART test DRAM test and Flash test Diagnostics OK OK OK OK Figure 3 56 Diagnostics Page 3 18 2 Loopbac
11. enable sym vlan lt range gt Description Enabled dropping of frames from non member port s Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 Example SS2GD8I vlan enable sym vlan 5 8 121 set mode Syntax set mode lt mode gt up link Description Switches VLAN mode Arguments lt mode gt can be disable to disable VLANs tag to set tag based VLAN port to set port based VLAN metro to set metro mode VLAN or double tag to enable Q in Q function up link optional can be 7 8 or 7 8 only for metro mode VLAN Example SS2GD81 vlan set mode port set port group Syntax set port group lt name gt lt port range gt Description Adds or edits a port based VLAN group Arguments lt name gt port VLAN name lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 Example SS2GD8I1 vlan set port group VLAN 1 2 5 6 8 set port role Syntax set port role lt port range gt lt role gt vid Description Sets egress rule and configures port roles Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt role gt can be access to not tag frames trunk to tag all frames or hybr
12. traps To enable a trap to be sent using a specific method check the box beside the event and under the desired notification method Trap Events Configuration Email Select Unselect All M SMS Select Unselect All M Trap Select Unselect All M AT E TT A Authentication Failure STP Topology Changed STP Enabled LACP Disabled a a 1215 5 2 5 5 3 8 a oe A Q I cjoj jg E 284084 8H El a 8 8 7 213 E a m jm jim LD lan ff fl ln fla flia ss m jm jan me em lan fl flea fl ln ln Bl j ca li fl ln ln fl la Figure 3 52 Trap Events Configuration Page Trap types System traps Cold Start Warm Start Link Down Link Up Authentication Failure User login User logout STP STP Topology Changed STP Disabled STP Enabled LACP LACP Disabled LACP Enabled LACP Member Added LACP Port Failure GVRP GVRP Disabled GVRP Enabled VLAN VLAN Disabled Port based VLAN Enabled Tag based VLAN Enabled Metro mode VLAN Enabled Double tag VLAN Enabled Module Swap Module Inserted Module Removed Dual Media Swapped 52 3 16 2 Email SMS The Email SMS Configuration page figure 3 53 allows the user to configure the email and SMS settings for the switch to use to contact the network administrator An email address and or a mobile phone number has to be set in order for traps to be sent to users using those methods The switch supports up to 6 email addresses and 6 mobile phone numbers The 24 different trap events will
13. 0 4 0 0 0 0 0 0 5 0 0 D 0 0 0 6 0 0 0 0 0 0 7 0 0 0 0 0 0 8 0 0 0 0 0 0 Figure 3 11 Simple Counter Page Tx Byte Total transmitted bytes Rx Byte Total received bytes Tx Packet Total number of packets transmitted Rx Packet Total number of packets received Tx Collision Number of collisions experienced while transmitting Rx Error Packet Number of bad packets received 3 2 4 Detail Counter The Detail Counter Page Figure 3 12 displays the detailed traffic information for the switch The user can select which port to view the details for and how often the page refreshes itself and can also click Reset to reset all of the counters Each counter can count up to 20 digits long before automatically resetting to 0 21 Detail Counter Select Port 1 y Refresh Interval 3 sec y Time elapsed since last reset 1 Days 6 Hours 37 Mins 17 Secs Receive Total Transmit Total 1810914416 10848 2532826 LESE GG 3145344 Rx High Priority Tx High Priority Rx Low Priority Tx Low Priority Rx Broadcast 1609 Faint 0 6975 eau ae o Receive Size Counters 13610 EAZI 5949 127 Bytes 1642 DATEI ee 1504 319 ESPET 621 482 EFE 998 2054 Eee PE ic 228 y4Tx 1024 Bytes 1548 Receive Error Counters Tx Collisions O Tx FIFO Drops oja x x D 215 0 ol ule w AIAIVA V RE ZISTIS ElSe ze Ajo ja Sjn a Qa Ww or ADD DAD X X X X X X m an N e oa AN a S NIN o i e A S EJO 1110 mln p S o
14. 1 high or 0 low Example SS2GD8I qos set port 1 8 1 set pri tag Syntax set pri_tag lt port range gt lt tag range gt lt class gt Description Sets class of ports on VLAN tag based QoS Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt tag range gt tag priority level can be a single level e g 1 or a range of levels e g 5 7 range from 0 7 lt class gt class of service can be 1 high or 0 low Example SS2GD81 qos set pri tag 1 7 1 2 1 107 set simple layer4 Syntax set simple layer4 lt gt Description Sets class of ports on simple mode of Layer 4 QoS Arguments lt gt layer 4 configuration mode valid values are 0 disable IP tcp udp port classification 1 lower priority of web browsing e mail FTP and news 2 prioritize IP telephony VoIP 3 prioritize iSCSI 4 prioritize web browsing e mail FTP transfers and news 5 prioritize streaming Audio Video 6 prioritize databases Oracle IBM DB2 SQL Microsoft Example SS2GD8I1 qos set simple layer4 2 set tos Syntax set tos lt port range gt lt tos range gt lt class gt Description Sets the class of ports for IP ToS QoS Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt tos range gt ToS precedence
15. 120 log records are saved by the switch Arguments None Example SS2GD81 log show T tp Server 0 0 0 0 Auto Upload Disable 1 Sat Jan 12143227 200 5 Link Up Port 1 2 Sat Jan 12 13 26 2005 Link Down Port 1 3 Sat Jan 11 58 31 2005 Login admin 4 Sat Jan 11 19 45 2005 Login admin e re PP PP PB 5 Sat Jan LLETRES 2005 Logout admin upload Syntax upload Description Uploads log data through TFTP Arguments None Example SS2GD8I1 log upload gt mac table gt gt alias del Syntax del lt mac gt Description Deletes the MAC address alias entry Arguments lt mac gt MAC address format 00 02 03 04 05 06 Example SS2GD8I mac table alias del 00 44 33 44 55 44 95 set Syntax set lt mac gt lt alias gt Description Set the MAC address alias entry Arguments lt mac gt MAC address format 00 02 03 04 05 06 lt alias gt MAC address alias name maximum 15 characters Example SS2GD81I mac table alias set 00 44 33 44 55 44 www show Syntax show Description Displays the MAC address alias list Arguments None Example SS2GD8I mac table alias show MAC Alias List MAC Address Alias 1 00 02 03 04 05 06 aaa 2 00 33 03 04 05 06 ccc 3 00 44 33 44 55 44 www gt gt information search Syntax search lt port range gt lt mac gt lt vid gt Description Looks for a specific MAC address in the MAC table Arguments lt por
16. 209 81 9 7 USA 137 189 8 174 HK 133 100 9 2 JP Mle emT 12 00 gt 131 188 3 222 Germany Cc Daylight SEHT 5 y Daylight Saving Start Mth 1 Day 1 Hour 0 Daylight Saving End Mth 1 Dayli gt Hour 0 Figure 3 5 System Time Page NTP is a standard protocol used to synchronize system clocks over a network or the internet The switch includes four common NTP server IP addresses which you can choose from or you can enter your own The time zone is Greenwich centered which uses the expression form of GMT xx hours Current Time Shows the current time of the switch Manual Allows you to manually set the time on the switch Enter the desired parameters and click Apply to set the time There is no time zone setting in Manual mode NTP Allows you to select an NTP server for the switch to use to obtain its system time You will also need to select your time zone to get the correct time from the server The switch will synchronize the time shortly after pressing Apply The switch supports time zones from 12 to 13 in 1 hour increments Daylight Saving Allows you to set the daylight saving time settings for your region If this is set the time will be changed by a certain amount on the start date and will be change back on the end date Typically the amount of change would be 1 turn the clock ahead and it will start in the Spring and end in the 15 Fall Available choices f
17. 8 None 0 Active 8 E gt vlan del port group Syntax del port group lt name gt Description Deletes a port based VLAN group Arguments lt name gt the VLAN group to delete Example SS2GD81 vlan del port group VLAN 2 del tag group Syntax del tag group lt vid gt Description Delete a tag based VLAN group Arguments lt vid gt the VLAN group to delete range from 1 to 4094 Example SS2GD8I1 vlan del tag group 2 120 disable drop untag Syntax disable drop untag lt port range gt Description Disables dropping of untagged frames Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 Possible values lt range gt 1 to 8 Example SS2GD8I vlan disable drop untag 5 8 disable sym vlan Syntax disable sym vlan lt port range gt Description Disables dropping of frames from non member port s Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 Example SS2GD81 vlan disable sym vlan 5 8 enable drop untag Syntax enable drop untag lt port range gt Description Drops untagged frames Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 Example SS2GD8I vlan enable drop untag 5 8 enable sym vlan Syntax
18. Cancels the storm rate of a port Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 Example SS2GD8I1 bandwidth disable storm rate 1 8 80 enable egress rate Syntax enable egress rate lt port range gt lt data rate gt Description Sets the egress rate of a port Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt data rate gt the egress rate limit in Mbps range from 0 1000 Example SS2GD8I bandwidth enabl gress rate 1 8 200 enable ingress rate Syntax enable ingress rate lt range gt lt data rate gt Description Sets the ingress rate of a port Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt data rate gt the ingress rate limit in Mbps range from 0 1000 Example SS2GD8I1 bandwidth enable ingress rate 1 8 100 enable storm rate Syntax enable storm rate lt range gt lt data rate gt Description Sets the storm rate of a port Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt data rate gt the storm rate limit in Mbps range from 0 1000 Example SS2GD8I1 bandwidth enable strom rate 1 8 150 81
19. None Example SS2GD8I management show 1 Name Tom Vlan TD 2 IP 192 168 1 30 192 168 1 80 Type SNMP Action Deny Bott LpZ SS2GD8I management delete 1 SS2GD8I management show Security rule list is empty now gt gt add set Syntax set name lt name gt vid lt vid gt ip lt ip gt port lt port gt type lt type gt action lt action gt Description Allows a user to manage the switch using one or more methods and from one or more IP addresses and or ports If you just enter the command set you will be prompted for each option Arguments name lt name gt access control list ACL user name vid lt vid gt optional VLAN ID range from 1 4095 or any default is any ip lt ip gt optional IP range that user can log in from or any e g 192 168 1 90 192 168 1 90 default is any port lt port gt optional Physical port that user can log in from can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 default is all ports type lt type gt optional Access type for user can be h for HTTP s for SNMP t for Telnet or any or a combination of two of the three separated by a comma default is any action lt action gt a ccept or d eny Example SS2GD8I management add set name Mary vid 20 ip 192 168 1 1 192 168 1 90 port 2 5 8 type h s action a SS2GD8I management add
20. Result Input an address to ping ex 192 168 1 1 Figure 3 58 Ping Test Page 56 3 19 TFTP Server The TFTP Server page Figure 3 59 allows the user to set the TFTP server for the switch to use to send and receive files from a local computer on the network Enter the IP address of the server and click Apply to save the changes TFTP Server Figure 3 59 TFTP Server Page 3 20 Log The Log page Figure 3 60 shows the log of system events There are 19 private trap logs and 5 public trap logs that are stored in the log which correspond to the SNMP trap events The switch supports a total of 120 log entries For more details on log entries refer to the section on Trap Alarm Configuration and SNMP Configuration In the report table No Time and Events are displayed for each trap record Log Data TFTP Server 0 0 0 0 Auto Upload Disabled ANA TT STA Fri Oct 27 01 12 44 2006 Link Up Port 2 2 al 2 Fri Oct 27 01 12 43 2006 3 Fri Oct 27 01 12 42 2006 4 Fri Oct 27 01 12 42 2006 5 Fri Oct 27 01 07 46 2006 6 Fri Oct 27 00 45 40 2006 7 Fri Oct 27 00 38 43 2006 8 Fri Oct 27 00 25 12 2006 9 Fri Oct 27 00 21 53 2006 10 Fri Oct 27 00 21 29 2006 11 Fri Oct 27 00 21 08 2006 12 Fri Oct 27 00 18 42 2006 13 Fri Oct 27 00 16 15 2006 14 Fri Oct 27 00 16 12 2006 15 Fri Oct 27 00 15 17 2006 16 Fri Oct 27 00 13 41 2006 17 Fri Oct 27 00 13 39 2006 18 Thu Oct 26 23 56 47 2006 19 Thu Oct 26 23 52 10 2006 20 Thu Oct 26 23 49 59 2006
21. a diese Dacia 4 5 2 1 INSTALLING SWITCH INTO 19 INCH RACK eecceeeeeeeeeeeeeeeeeeeceeeeeeeseeeaeeeseeeaeeeseeeaeeeeeeaaeees 5 2 2 GABLE INSTALLATION Zerra ir 5 2 2 1 Cabling Requirement areae aAa ERN E AAE AERE ERR E EKER REER 6 2 2 2 s RONGI THE SWC a aa OER E EEE ERENER 9 WEBINTERFACE cnni renane Areaan dada 11 3 1 HOME PAGE rasene ree ainda iria 12 IET Sytem IOMA Micenas 13 312 IPM COMMGUPATIOMN ita iaa 14 A O ON 15 3 1 4 Account CONMQUIATION eessen eaaa E A EAA EERE S 16 Bl Management PollCV a enia ae e EEE AA E ER 16 300 Virtual Stak er E E AAEE tats 17 3 2 PORT CONFIGURATION iaae EaR SAK E AEEA li 18 ZA Pot Status adi di Ia ia 18 3 22 Port CONTIgUTatON codes idad 19 3 23 colmple Counte aet e aeaaea A tds dela 20 32 42 Detail COUET irasa aa aa a A SA E RAE EAA EER 21 3 3 MIRROR siira n AA AA EART A ds 23 3 4 BANDWIDTH MANAGEMENT coooocccccononccccononcnccnnnnnnccnnnnnnr cano nn nr cane Daaa NARATAS K LEAS rra 24 3 5 QOS QUALITY OF SERVICE CONFIGURATION cocooccccoconccccononcccnnnnncncnnnnnnnnnnnnncncnnnnnncnnnnns 25 3 6 SNMP CONFIGURATION are issant aan RE AREA A EA EST AAE IARE ARRE EAA 29 3 7 IGMP SNOOPING or aE AETA EATE EET E een oa 30 3 8 MAXIMUM PACKET LENGTE reaa Errr aT EE E OE OE EG 31 3 9 DHCP BOOT cia SEA AA A E A ER E RE E 32 S105 MAN e E E AEE A NOT 32 3 10 1 VEAN MOCO it EE ATE 32 3 10 2 Tag based Group ad ii 33 3 10 3 Port based Grou TE 34 3 10 4 Tag Uli itt ea cries ahha era iene te ete e
22. also be sent to an SNMP Manager when a trap event occurs Click Apply to save the changes once entered Note SMS may not work with your mobile phone carrier Different carriers use different customizations This should be tested before being used in a live environment Alarm Configuration Pa rwora III Email address 2 M lt mai address a Email address 5 M Email address o E Poscword III Mobile Phone 1 IIS Mobile Phone 2 IIS Mobile Phone 3 IIS Mobile Phone Mobile Phone 5 IIS Mobile Phone o M Figure 3 53 Alarm Configuration Page Mail Server The IP address of the SMTP server Username The username on the SMTP server used for authentication Password The password on the SMTP server used for authentication Email Address 1 6 The email addresses to send the alarm messages to SMS Server The IP address of the SMS server contact your cell carrier to find out if this is supported Username The username for your ISP 53 Password The password for your ISP Mobile Phone 1 6 The mobile phone numbers to send the alarm messages to 3 17 Configuration The switch saves up to three version of the configuration file The first is the factory default settings the switch can be restored to these settings should any problems arise during configuration The second is the startup or working configuration this is the configuration that the switch uses when it starts up and thi
23. be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt type gt applicant type can be normal or non participant Example SS2GD8I1 gvrp set applicant 1 8 non participant set registrar Syntax set registrar lt port range gt lt type gt Description Sets the default registrar mode for each port Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt type gt registrar type can be normal fixed or forbidden Example SS2GD8I1 gvrp set registrar 1 5 fixed 89 set restricted Syntax set restricted lt port range gt lt status gt Description Sets the restricted mode status for each port Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt status gt restricted mode status either enable or disable lt enable disable gt enable or disable Example SS2GD8I1 gvrp set restricted 1 8 enabl SS2GD8I1 gvrp show config GVRP state Enable Port Join Time Leave Time LeaveAll Time Applicant Registrar Restricted 1 20 60 1000 ormal ormal Enable 2 20 60 1000 ormal ormal Enable 3 20 60 1000 Normal ormal Enable 4 20 60 1000 ormal Normal Enable 5 20 60 1000 ormal ormal Enable 6 20 60 1000 ormal ormal Enable 7
24. is used to configure the global parameters for RADIUS authentication to authenticate for 802 1X port security 802 1X State Setting Port Number 1 65535 1832 Secret Key Radius Figure 3 48 802 1X State Setting Page Radius Server RADIUS server IP address for authentication Default is 192 168 1 1 Port Number The port number used to communicate with the RADIUS server Valid value ranges from 1 65535 Default port number is 1812 Secret Key The secret key between authentication server and authenticator It is a string up to 31 characters long The string may contain only letters and numbers and is case sensitive Default is Radius 3 15 2 Mode The 802 1X Mode Setting page Figure 3 49 sets the operation mode of 802 1X for each port Only multi host operation mode is supported 49 802 1X Mode Setting rt 802 1X Mode Multi host y Multi host y Disable z Disable Disable Disable Disable y Disable y Figure 3 49 802 1X Mode Setting Page as ES m Port Number Port number to configure 802 1X Mode 802 1X operation mode Can either be Disable and Multi host mode In disable mode no authentication is performed In multi hose mode all supplicants must be authorized before connecting to the network Default is Disable 3 15 3 Security The Port Security Management page Figure 3 50 shows the status of each port In Multi host mode it shows the port numb
25. operated in a commercial environment European Community CE Electromagnetic Compatibility Directive This equipment has been tested and found to comply with the protection requirements of European Emission Standard EN55022 EN60555 2 and the Generic European Immunity Standard EN50082 1 EMC EN55022 1988 CISPR 22 1985 class A EN60555 2 1995 class A EN60555 3 IEC 1000 4 2 1995 4K V CD 8KV AD 1EC1000 4 3 1995 3V m 1EC1000 4 4 1995 1KV power line 0 5KV signal line About this user s manual This user s manual will show you how to install and connect the switch to your network and also how to configure and monitor the switch through the built in CLI and web interface through RS 232 serial interface and Ethernet with step by step instructions Many explanations of hardware and software functions are shown as well as examples of the operation for the web based graphical user interface GUI and command line interface CLI Overview of this user s manual e Chapter 1 Introduction describes the features of 8 Gigabit L2 Managed Switch e Chapter 2 Installation e Chapter 3 Operation of Web based Management e Chapter 4 Operation of CLI Management e Chapter 5 Maintenance 1 Introduction 1 1 Product Overview The SS2GD8l is a managed switch that meets all IEEE802 3 u x z Fast Ethernet and Gigabit specifications The switch features 6 Gigabit copper ports and 2 Gigabit Combo SFP ports The
26. ports belong to the VLAN be selecting the check boxes beside each port 3 10 3 Port based Group The Port based Group page Figure 3 30 allows the user to create edit and delete port based VLAN groups To delete a group select the VLAN to delete and click the Delete button at the bottom of the page 34 Port based Group LAN NAME O O O OO 1 default EE Ea Ea Figure 3 30 Port based Group Page To edit a group select the group and click the Edit button at the bottom of the page To add a new group click Add at the bottom of the page Enter a VLAN name and choose the member ports by checking the check boxes beside the desired port numbers then click the Apply to save the settings Figure 3 31 VLAN names can be a string up to 15 characters long consisting of letters numbers hyphens and underscores Port based VLAN VLAN Default Default ml a gil gi gi IA A Figure 3 31 Add Edit Port based VLAN 3 10 4 Tag Rule The Tag Rule page Figure 3 32 allows the user to set the VID number for each port The range of VID numbers is from 1 to 4094 The user can also choose ingress filtering rules for each port There are two ingress filtering rules which can be applied to the port Ingress Filtering Rule 1 is forward only packets with VID matching this port s configured VID Ingress Filtering Rule 2 is drop untagged frame You can also select the Role of each port as Access Trunk or Hyb
27. show 1 Name Mary VlanID 20 IP 192 168 1 1 192 168 1 90 Type Http SNMP Action Accept Port 2 3 4 5 8 99 gt gt edit set Syntax set name lt name gt vid lt vid gt ip lt ip gt port lt port gt type lt type gt action lt action gt lt type gt lt value gt lt action gt lt value gt Description Edits a management policy record Arguments name lt name gt access control list ACL user name vid lt vid gt optional VLAN ID range from 1 4095 or any default is any ip lt ip gt optional IP range that user can log in from or any e g 192 168 1 90 192 168 1 90 default is any port lt port gt optional Physical port that user can log in from can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 default is all ports type lt type gt optional Access type for user can be h for HTTP s for SNMP t for Telnet or any or a combination of two of the three separated by a comma default is any action lt action gt a ccept or d eny Example SS2GD8I management edit 1 SS2GD8I management edit 1 set name Tom vid 2 ip 192 168 1 30 192 168 1 80 port 1 2 type s action d SS2GD8I management edit 1 show 1 Name Tom VlanID 2 IP 192 168 1 30 192 168 1 80 Type SNMP Action Deny Pont ty 2 show Syntax show Description Shows all management policy records Argumen
28. static and dynamic MAC entries MAC Table Information MoiFo25 031 04 losl o6F 071 os M Select Unselect All emac Poo oc 6e 47 os 9a vo 3 os orion alias MAC Address A VID ES OOOO O Figure 3 33 MAC Table Information Page Port Select the port you would like to filter by Search Search by a specific MAC address or VID MAC Display the MAC address of the entry you selected from the search results Used for Set Alias Alias Create an alias for the selected MAC entry Click Set Alias to save Search Find entries that meet the criteria Previous Page Move to the previous page Next Page Move to the next page Search results Alias The alias of the entry MAC Address The MAC address of the entry Port The port associated to the MAC address VID The VLAN Group for the MAC entry State The method that this MAC entry was entered either Dynamic MAC or Static MAC 37 3 11 2 Maintenance Page The Maintenance page Figure 3 34 allows the user to set the aging time for dynamic MAC address entries and flush all dynamic MAC address entries MAC Maintenance Aging time Enable y 800 Secs 1065535 Remove all non static mac entry Figure 3 34 MAC Table Maintenance Page Aging Time An idle MAC address that has exceeded the MAC address aging time will be removed from the MAC address table This setting has no effect on static MAC address Range for Aging Time is from 10 6
29. switch can be managed through the RS 232 serial port or through an Ethernet port using either the CLI or Web GUI With an SNMP agent the network administrator can also log into the switch to monitor configure and control the switch using SNMP In addition the switch features comprehensive and useful functions such as QoS Quality of Service Spanning Tree VLAN Port Trunking Bandwidth Control Port Security SNMP RMON and IGMP Snooping The 10 100 1000Mbps Ethernet ports are standard ports that meet all IEEE 802 3 u x z Fast Ethernet and Gigabit specifications The 1000Mbps SFP Fiber transceiver is a Gigabit Ethernet port that fully complies with all IEEE 802 32 and 1000Base SX LX standards 1000Mbps Single Fiber WDM BiDi transceivers are designed with an optic Wavelength Division Multiplexing WDM technology that transports bi directional full duplex signal over a single fiber simultaneously 1 2 Key Features of the Switch QoS Supports Quality of Service using the 802 1p standard There are two priority queues and packet transmission schedules Spanning Tree Supports 802 1D 802 1w RSTP Rapid Spanning Tree Protocol standards VLAN Supports port based VLAN and 802 1Q tagged VLAN Supports 256 active VLANs and 4094 VLAN IDs Port Trunking Supports static port trunking and port trunking with 802 3ad LACP Bandwidth Control Supports ingress and egress per port bandwidth control Port Security Supports allowing and denying forwa
30. switch will accept all incoming connections Only Accept rules are defined The switch will only accept connections defined by the Accept rules and will Deny all other connection attempts Only Deny rules are defined The switch will accept any connections that do not defined the Deny rules Both Accept and Deny rules are defined The switch will only accept connections defined by the Accept rules and are not defined by the Deny rules and Deny all other attempts as well 16 Management Security Configuration PT TVD Range oo Cy Any pas admin 2 Admin C Custom JT Custom Incoming Port Access Type e Any any C Custom fin C Custom T Http E gn cce 1 48 25 3E 4E 5E E 7 8 6 8 Telnet F SNMP Name VID IP Range Incoming Port Access Type Action Figure 3 7 Management Policy Page Name A name for the rule made up of letters and numbers up to 8 characters VID If set to Any the rule applies to users from any VLAN otherwise you can enter a specific VID to limit the rule Valid VID range is from 1 to 4094 IP Range If set to Any the rule applies to users with any IP address otherwise you can enter a range of IP addresses to restrict which users the rule will apply to The valid IP range is from 0 0 0 0 to 255 255 255 255 Incoming Port If set to Any the rule applies to users connected to any physical port otherwise you can select which physical ports apply to the rule The numbers here corres
31. will not continue booting If set to Disable you will have to manually input the IP address in the fields below IP address Allows you to manually set the switch s IP address if DHCP Setting is set to Disable otherwise this field is not used Default 192 168 1 1 Subnet mask Allows you to manually set the switch s subnet mask if DHCP Setting is set to Disable otherwise this field is not used Default 255 255 255 0 14 Default gateway Allows you to manually set the IP address for your network gateway which is typically a router or bridge to the internet or other subnet All packets which are addressed to a device that is not in the switch s routing table will be sent to the default gateway Default 192 168 1 254 DNS The Domain Name Server used to serve the translation between IP addresses and domain names If set to Manual it must be entered manually by the user If set to Dynamic it will take the DNS server given by the DHCP server DHCP Setting must be set to Enable for this to work Default 0 0 0 0 3 1 3 Time The Time page under the System menu Figure 3 5 allows you to set the system time for the switch The time can either be set manually or by using an NTP network time protocol server which are freely available on the internet System Time Setting Fri Oct 27 00 18 05 2006 Year 2006 2000 2036 Month 1 12 Day 1 31 Hour 0 23 Minute 0 59 Second 059 S NTP
32. 0 3 Web Interface Using the web interface you can monitor and control all aspects of the switch including port status and activity spanning tree status port aggregation status multicast traffic VLAN and priority status illegal access records The default settings of the switch are as follows IP Address 192 168 1 1 Subnet Mask 255 255 255 0 Default Gateway 192 168 1 254 Username admin Password Admin Table 3 1 Default Settings To connect and log into the switch refer to section 2 2 2 After logging into the switch using the default username and password you will see the main menu Note The switch only allows one user to log in and manage the switch at a time Any other users who log in after the first user is already in regardless of their access level will only be able to monitor the status of the switch Up to three users can be logged into the switch simultaneously Password Recovery If you forget the password to log into the switch click the link Forget Password in GUI or type Ctrl Z in the CLI login screen The switch will display a serial number used to recover the password See Figure 3 1 Write down the serial number and email it to Amer com in order to get a temporary password Use this new password as the Username and Password and it will allow you to login to the switch temporarily This temporary password will only work once therefore you should change your password im
33. 20 60 1000 ormal Normal Enable 8 20 60 1000 ormal ormal Enable set timer Syntax set timer lt port range gt lt join gt lt leave gt lt leaveall gt Description Sets GVRP join time leave time and leaveall time for each port Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt join gt join timer range from 20 to 100 lt leave gt leave timer range from 60 to 300 Leave Time must equal to or greater than double the Join Time lt leaveall gt leaveall timer range from 1000 to 5000 Example SS2GD81 gvrp set timer 2 8 25 80 2000 90 show config Syntax show config Description Displays the GVRP configuration Arguments None Example SS2GD81 gvrp show config GVRP state Enable Port Join Time Leave Time LeaveAll Time Applicant Registrar Restricted 1 20 60 1000 Normal Normal Disable 2 25 80 2000 Normal Normal Disable 3 25 80 2000 Normal ormal Disable 4 25 80 2000 ormal Normal Disable 5 25 80 2000 Normal Normal Disable 6 25 80 2000 Normal Normal Disable y 25 80 2000 ormal Normal Disable 8 25 80 2000 ormal Normal Disable show counter Syntax show counter lt port gt Description Display the counter number of a port Arguments lt port gt port number range from 1 to 8 Example SS2GD8I1 gvrp show counter 2 GVRP Counter port 2 Counter Name Received Transmitted
34. 2GD81 vlan show pvid Port PVID Rulel Rule2 Port Rule Untag Vid T 1 Disable Disable Access E 2 1 Disable Disable Access ze 3 5 Disable Disable Access z 4 1 Disable Disable Access z 5 5 Enable Disable Hybrid 6 6 5 Enable Disable Access 7 5 Enable Disable Access E 8 5 Enable Disable Access gt VS disable Syntax disable Description Disables the virtual stack Arguments None Example SS2GD8I vs disable enable Syntax enable Description Enables the virtual stack Arguments None Possible values None Example SS2GD8I vs enable 124 set gid Syntax set gid lt gid gt Description Sets the group ID Arguments lt gid gt Group ID Example SS2GD81 vs set gid groupl set role Syntax set role lt role gt Description Sets the role Arguments lt role gt can be master to act as master or slave to act as slave Example SS2GD8I1 vs f set role master show Syntax show Description Displays the configuration of the virtual stack Arguments None Example SS2GD81 vs show Virtual Stack Config State Enable Role Master Group ID groupl 125 5 Troubleshooting 5 1 Resolving Connection Problems Possible causes a connection problem where the Link LED does not light up even though the cable is connect are 5 2 Q1 A1 Q2 A2 The attached device is not powered on The cable may not be the correct type or is defecti
35. 33 1434 to high priority Quality of Service QoS Layer 4 Configuration Disable IP TCP UDP Port Classification Down prioritize web browsing e mail FTP and news Prioritize IP Telephony VoIP Prioritize iSCSI Prioritize web browsing e mail FTP transfers and news Prioritize Streaming Audio Video Prioritize Databases Oracle IBM DB2 SQL Microsoft Simple lt lt TCP IP Layer 4 TCP UDP Classes A z 7 Default class all other Special TCP UDP class High y TCP UDP ports Low z lo Pot Special UDP TCP Port Selection Custom Custom Custom Custom Custom Custom Custom Custom Custom Custom pastam ETA Figure 3 20 QoS Advanced Mode CW Advanced Mode Figure 3 20 allows you select up to ports to prioritize the traffic on set either to high or low priority with traffic on the other ports being set to the other priority class Special TCP UDP class The priority to assign to traffic that is sent on the port s defined under Special UDP TCP Port Selection Default class all other TCP UDP ports The priority to assign to traffic that is sent on ports not defined under Special UDP TCP Port Selection Port The physical port to apply the rules to If you would like to configure all ports at a time select All Special UDP TCP Port Selection Select which port s to prioritize IP DiffServ Classification IP DiffServ Classification Figure 3 21 works by priori
36. 5535 seconds The default is 300 seconds Flush Remove all entries that are not static MAC entries from the MAC address table 3 11 3 Static Forward The Static Forward page Figure 3 35 allows the user to add or remove static MAC addresses from the MAC address table The static forward table associates a MAC address with a port and VID When a MAC address is assigned to a specific port all of the traffic sent to this MAC address will be forwarded to specified port To add a MAC address entry in the table fill in the four parameters MAC address associated port VID and Alias and click Add To delete an entry select the MAC address entry you wish to delete and click Delete Static Forwarding MAC A AAA CNO E ee ENE No MAC PortNo VID Alias There is no forwarding MAC entry Figure 3 35 Static Forward Page MAC A six byte long Ethernet hardware address and expressed in hex and separated by hyphens Port No Port number of the switch between 1 8 VID VLAN identifier This only applies if tagged VLANs are enabled Valid range is from 1 4094 Alias Alias name for the MAC address 3 11 4 Static Filter The Static Filter page Figure 3 36 allows the user deny packet forwarding to specific MAC addresses The static filter table contains a MAC address and VID All of the traffic sent to this MAC address will be discarded by the switch To add a MAC address entry in the table fill in the three parameters MAC ad
37. 57 As LOG sia alee ieee eae tides Redes esa denne eel deed dies na 57 321 FIRMWARE UPGRADE ioe iiaeo ee aaa aai 58 3 22 A Net ae E A evs ad enced dee ea 58 3 23 LOGOUT oeaiei A A 59 d lt CEMINTERFAGE oi 60 4 1 CLIIMANAGEMENT porako tinana A a A a a er edie keene 60 Al VEOQINE a AA A a 60 4 2 GLI COMMANDS vicio iia tdi dena hate ee 60 4 2 1 CLI Global Commands c ooocccccccccncnnononononnnnnncnnonnnnonnnnnnnnnnnnnnnnnnnnnnnnannnnnnnnnnnnnnninnnnes 61 422 Local Commands of CLI ccececceccececeee eee eeeeeeeeeeeeeeeesecaeaeeeeeeeseesecsncaeeeeeeeeeteee 65 5 TROUBLESHOOTING cnis eaaa A 126 5 1 RESOLVING CONNECTION PROBLEMS raci iiin iara eede Ee ERE edie aaa Eai 126 5 2 OGRA ia a Ai aati 126 Caution Circuit devices are sensitive to static electricity which can damage their delicate electronics Dry weather conditions or walking across a carpeted floor may cause you to acquire a static electrical charge To protect your device always e Touch the metal chassis of your computer to ground the static electrical charge before you pick up the circuit device e Pick up the device by holding it on the left and right edges only Electronic Emission Notices Federal Communications Commission FCC Statement This equipment has been tested and found to comply with the limits for a class A computing device pursuant to Subpart J of part 15 of FCC Rules which are designed to provide reasonable protection against such interference when
38. 7 range from 1 8 lt sec gt timer range from 1 65535 default is 30 Example SS2GD81 802 1X set txPeriod 2 30 show mode Syntax show mode Description Displays the mode of each port Arguments None Example SS2GD81 802 1X show mode Port Mode Disable Multi host Disable Disable Disable DD OO FF W NR Disable 69 show parameter Syntax show parameter Description Displays the parameter settings of each port Arguments None Example SS2GD81 802 1X show parameter port 1 port 2 port control reAuthMax txPeriod Quiet Period reAuthEnabled reAuthPeriod max Request suppTimeout serverTimeout port control reAuthMax txPeriod Quiet Period reAuthEnabled reAuthPeriod max Request suppTimeout serverTimeout Auto 2 30 60 ON 3600 30 30 Auto 30 60 ON 3600 30 30 70 show security Syntax show security Description Displays the authentication status of each port Arguments None Example SS2GD8I 802 1X show security Port Mode Status Disable Multi host Unauthorized Disable Disable 1 2 3 Disable 4 5 6 Disable show state Syntax show state Description Shows the Radius server configuration Arguments None Example SS2GD8I 802 1X show state Radius Server 192 168 1 115 Port Number 1812 Secret Key WinRadius gt account add Syntax add lt name gt Description Creates
39. 8 788 38 7 8 8 etc VLAN Mode CEST metro Mode v Up link Port 8 Figure 3 27 Up link Port Selection 3 10 2 Tag based Group The Tag based Group page Figure 3 28 allows the user to create edit and delete Tag based VLAN groups To delete a group select the VLAN to delete and click the Delete button at the bottom of the page 33 Tag based Group No VLANNAME VID 1 default 1 Pasa Ea E Figure 3 28 Tag based Group Page To edit a group select the group and click the Edit button at the bottom of the page To add a new group click Add at the bottom of the page Enter the VLAN name as well as the VID configure the SYM VLAN and choose the member ports by checking the check boxes beside the desired port numbers then click the Apply to save the settings Figure 3 29 Tag based VLAN VLAN name EDEN CT 200 a a a Aa er a a Figure 3 29 Add Edit Tag based VLAN VLAN Name The name associated with the VLAN as defined by the network administrator Names can be a string up to 15 characters long consisting of letters numbers hyphens and underscores VID The VLAN identifier for the group Each tag based VLAN group has a unique VID It appears only in tag based and Double tag mode SYM VLAN If the SYM VLAN function of the group is enabled all packets with this group VID will be dropped if they are transmitted from the ports that do not belong to this group Member Select which
40. ACP group ID to form a logical trunked port The benefit of using Static Trunk is that a port can immediately become a member of a trunk group without any handshaking with its peer This is also a disadvantage because the peer ports connect to the static trunk group may not know that they should be aggregated together to Using Static Trunk on both ends of a link is strongly recommended Please also note that low speed links will be in a not ready state when using static trunk to aggregate with high speed links The switch supports 8 real trunked groups An LACP trunk group with more than one ready member ports is a real trunked group An LACP trunk group with one or zero ready member ports is not a real trunked group Any Static trunk group is a real trunked group Each Trunking Group supports a maximum of 12 ready member ports Please note that some decisions will automatically be made by the system while you are configuring your trunking ports in order to conform to the rules of 802 3ad 46 3 14 1 Port The Trunk Port Setting Status page Figure 3 44 is used to configure the trunk setting of each port in the switch Trunk Port Setting Status Trunk Port Setting Trunk Port Status Method Active LACP_ Aggtr Status LACP y Active y Ready Lace y Ready Passive z Passive z Passive x Passive z Passive z Passive y Apply Refresh Figure 3 44 Trunk Port Setting Sta
41. AN members cannot be connected to different switches 2 Each VLAN member cannot access members of other VLANs 3 The switch manager has to assign different names for each VLAN group on the switch Case 2b Port based VLAN See Figure 2 5 22282253 FAA VLAN 4 VLAN1 members cannot access VLAN2 VLAN3 and VLAN4 members 2 VLAN2 members cannot access VLAN1 and VLAN3 members but they can access VLAN4 members VLAN3 members cannot access VLAN1 VLAN2 and VLAN4 VLAN4 members cannot access VLAN1 and VLAN3 members but they can access VLAN2 members Case 3 Tag based VLANs The same VLAN members can be at different switches with the same VID See Figure 2 6 a VLAN 1 ee tt ml EV EN Lj VLAN 3 8 Figure 2 6 Tag based VLAN Diagram 2 2 2 Configuring the Switch There are three ways to setup and manage the switch They are via RS 232 console command line interface CLI and web interface Users can use any one of them to monitor and configure the switch To configure the switch using a serial RS 232 connection refer to Section 4 for connection instructions and the CLI reference Assign an IP address For example IP 192 168 1 100 Subnet Mask 255 255 255 0 Default Gateway 192 168 1 254 Figure 2 7 Default Settings To use the switch s web interface to manage the switch your computer must be connected to the switch via a network cable and your computer must be in the same subnet
42. B is installed correctly on the managing computer SNMP is a protocol that is used to govern the transfer of information between SNMP manager and agent and traverses the Object Identity OID of the Management Information Base MIB An SNMP agent runs on the switch to respond to requests issued by SNMP manager The SNMP agent is passive only responding to requests except for trap information which is sent from the switch L y gt BAH E P gt MES E pS a gt SNMP Configuration Enable Disable Get Community public Set Community private Disable y Trap Host 1 IP Address 192 168 1 10 162 Community public Trap Host 2 IP Address 0 0 00 162 Community public Trap Host 3 IP Address 0 0 00 162 Community bublic Trap Host 4 IP Address 0 0 00 162 Community bublic 0 0 0 0 162 fo 0 00 162 MARES 0 0 0 0 fa Community public 0 0 0 0 fa Community public Figure 3 22 SNMP Configuration Page Trap Host 6 IP Address SNMP Used to Enable or Disable SNMP The default is Enable Get Set Trap Community The community name is used as password for authentication The switch will only communicate with the SNMP manager if the community strings are the same Community name is user definable with a maximum length of 15 characters and is case sensitive Any characters other than spaces are allowed Each function has its own community name For exa
43. Gigabit Ethernet ports that are compliant with IEEE802 3 802 3u 802 3z and 802 3ab 2 Gigabit Combo SFP copper fiber ports dual media ports automatically detect which cable is connected Non blocking store and forward shared memory switch Supports auto negotiation for configuring speed and duplex mode Supports 802 3x flow control for full duplex ports Supports collision based and carrier based backpressure for half duplex ports Any ports can be set to disabled mode force mode or auto polling mode Supports Head of Line HOL blocking prevention Supports broadcast storm filtering Auto aging with programmable inter age time Supports 802 1p Class of Service with 2 level priority queuing Supports port sniffing Programmable maximum Ethernet frame length from 1518 to 9208 bytes jumbo frames Supports port based VLAN and 802 1Q tag based VLAN Efficient self learning and address recognition mechanism enables forwarding rate at wire speed Supports management using a single IP address for easy management Web based management provides the ability to manage the switch from any web browser SNMP Telnet interface allows for in band management Supports IEEE 802 1d Spanning Tree Protocol Supports IEEE 802 1w Rapid Spanning Trees Supports IEEE 802 1X port based network access control Supports IP Multicasting to implement IGMP Snooping function Supports 802 1p Class of Service with 2 level priority queuing Supports 802 3ad po
44. Panel 1 6 Fiber Transceivers Ports 7 and 8 on the switch are combo ports which support two types of media copper Ethernet cable recommended Cat 5e or higher and fiber using an SFP mini GBIC transceiver These ports can only support one type of connection at a time The switch supports most types of SFP transceivers including e 1000Mbps LC multi mode SFP Fiber transceiver e 1000Mbps LC single mode 10km SFP Fiber transceiver e 1000Mbps LC single mode 30km SFP Fiber transceiver e 1000Mbps LC single mode 50km SFP Fiber transceiver e 1000Mbps BiDi LC single mode 20km 1550nm SFP Fiber WDM transceiver e 1000Mbps BiDi LC single mode 20km 1310nm SFP Fiber WDM transceiver Figure 1 4 1000Base SX LX LC SFP Fiber Transceiver Figure 1 5 1000Base LX BiDi LC SFP Fiber Transceiver 2 Installation 2 1 Installing Switch into 19 Inch Rack Figure 2 1 Installing the Switch Caution Allow proper spacing and air ventilation for the cooling fans on both sides of the switch To installing the switch into the rack 1 Wear a grounding device for electrostatic discharge 2 Screw the mounting accessory into the sides of the switch See Figure 2 1 3 Place the switch into the 19 inch rack in the proper position then screw the switch to the rack 2 2 Cable Installation Before installing the switch it is recommended that you e Wear a grounding device to avoid damage from electrostatic discharge e Be sure that power
45. Rate ee Incoming traffic is discarded if Disable gt rate is exceeded IS Disable Pause frames are generated if flow control is enabled Broadcast amp Disable gt HER Incoming traffic is discarded if Disable Y rate is exceeded Egress Rate Limiting Shaping Data Rate ane Packet transmission is delayed if Disable gt a rate is exceeded tid Disable Traffic may be lost if egress buffers run full Figure 3 14 Bandwidth Management Page 24 Port Number The port that is currently being configured Can be set to ports 1 through 8 All Traffic for Ingress Rate Limiting Policing Sets the limit of Ingress incoming bandwidth for all traffic Incoming traffic will be discarded if the rate exceeds the value set under Data Rate Pause frames are also generated if flow control is enabled Valid range is from 0 to 1000 Broadcast amp Multicasat for Ingress Rate Limiting Policing Sets the limit of Ingress incoming bandwidth for broadcast and multicast traffic only Incoming broadcast and multicast traffic will be discarded if the rate exceeds the value set under Data Rate Valid range is from 0 to 1000 All Traffic for Egress Rate Limiting Shaping Sets the limit of Egress outgoing bandwidth for the all traffic Packet transmission will be delayed if the rate exceeds the value set under Data Rate Traffic may be lost if egress buffers become full Valid range is from 0 to 1000 3 5 QoS Qu
46. S bod wa NRO g Y olo vn Dje Me 310 la li v ooo Rx Fragments Jabber Errors all ojojo E Xxx ele z 215 32 2 op alo T jo j mh a le SISS E m t Figure 3 12 Detail Counter Page Rx Packets The number of the packet received RX Octets Total received bytes Rx High Priority Packets Number of received packets classified as high priority Rx Low Priority Packets Number of received packets classified as low priority Rx Broadcast The number of the received broadcast packets Rx Multicast The number of the received multicast packets Tx Packets The number of the packet transmitted TX Octets Total transmitted bytes Tx High Priority Packets Number of transmitted packets classified as high priority Tx Low Priority Packets Number of transmitted packets classified as low priority Tx Broadcast The number of the transmitted broadcast packets Tx Multicast The number of the transmitted multicast packets Rx 64 Bytes Number of 64 byte frames in both good and bad packets received Rx 65 127 Bytes Number of 65 126 byte frames in both good and bad packets received Rx 128 255 Bytes Number of 127 255 byte frames in both good and bad packets received Rx 256 511 Bytes Number of 256 511 byte frames in both good and bad packets received Rx 512 1023 Bytes Number of 512 1023 byte frames in both good and bad packets received Rx 1024 Bytes Number of 1024 max_length byte frames i
47. a new guest user When you create a new guest user you must type in a password and confirm the password Arguments lt name gt new account name must be at least 5 characters long Example SS2GD81I account add aaaaa Password Confirm Password Save Successfully SS2GD8I1 account 71 del Syntax del lt name gt Description Deletes an existing user account Arguments lt name gt existing user account name Example SS2GD8I account del aaaaa Account aaaaa deleted modify Syntax modify lt name gt Description Changes the username and password of an existing account Arguments lt name gt existing user account name Example SS2GD8I account modify aaaaa username password the length is from 5 to 15 Current username aaaaa bbbbb New password Confirm password Username changed successfully Password changed successfully show Syntax show Description Shows system accounts including account name and identity Arguments None Example SS2GD8I account show Account Name Identity admin Administrator guest guest 72 gt alarm gt gt email del mail address Syntax del mail address lt gt Description Removes the configuration of an e mail address Arguments lt gt email address number range from 1 to 6 Example SS2GD81 alarm email del mail address 2 del server user Syntax del server user Description Removes the configuration of an
48. ackets coming into and out of the switch are filtered based on the VLAN ID in the packet and are grouped accordingly The switch supports 802 1Q tag based VLANs Each tag based VLAN must be assigned a unique VLAN name and VLAN ID Valid VLAN IDs range from 1 to 4094 Up to 64 VLAN tag groups can be created Metro Mode Metro Mode is a quick configuration that creates 6 or 7 port based VLAN groups see below for details Double tag Double tag mode is similar to tag based mode however it treats all frames as untagged ones which means that a PVID tag will be added to all packets Then these packets will be forwarded using Tag based VLAN rules Thus all incoming packets with tags will become the double tag packets VLAN Mode VLAN H Mode fer Port based Tag based Metro Mode Double tag Figure 3 26 VLAN Mode Page Up link Port This section is only enabled when metro mode is chosen as the VLAN mode Figure 3 27 Possible options are 7 All ports can only transmit data to and from port 7 This effectively creates 7 port based VLAN groups between each port and port 7 1 8 7 28 7 38 7 etc 8 All ports can only transmit data to and from port 8 This effectively creates 7 port based VLAN groups between each port and port 8 1 amp 8 2 amp 8 3 8 8 etc 7 amp 8 All ports can only transmit data to and from ports 7 and 8 This effectively creates 6 port based VLAN groups between each port and ports 7 and 8 18 788 2
49. agged and Untagged or just receive tagged frames If the former is the case then tagged and untagged packets will be processed If the latter is the case only packets containing VLAN tags will be processed the rest of the packets will be discarded Example If Rule 1 is enabled and port 1 receives an untagged packet the switch will apply the PVID of port 1 to tag this packet the packet will then will be forwarded But if the PVID of port 1 is 100 and port 1 is not a member of VLAN 100 the packet will be dropped Role This is an egress rule for the port The available options are Access Trunk or Hybrid Trunk means that outgoing packets must carry a VLAN tag header Access means that outgoing packets carry no VLAN tag header If packets have double VLAN tags one will be dropped and the other will still be left Hybrid is similar to Trunk in that both of them will send tags out However when the port is set to Hybrid its packets will be untagged out if the VID of the outgoing packet with tags is the same as the one in the Untag VID field for this port Untag VID Valid range is 1 4094 Only used when Role is set to Hybrid 3 11 MAC Table The MAC Table menu provides different functions for viewing and managing the MAC address table on the switch The different pages are describe in detail in the following sections 36 3 11 1 Information The Information page Figure 3 33 displays the current MAC address table in the switch including
50. ality of Service Configuration The QoS Configuration page Figure 3 15 allows you to configure the QoS Quality of Service settings for the switch The switch supports 5 kinds of QoS functions There is Per Port Priority that allows you to assign a priority to each port VLAN Tag priority that prioritizes packets based on their VLAN tag IP TOS Classification IP TCP UDP Port Classification and IP DiffServ Classification The Default Class determines the QoS class to assign to packets that are not covered by the QoS type selected For example if you use VLAN Tag Priority mode and then choose Default Class as High then the priority of packets with no tag will be considered as High priority The initial value of the Default Class is High The switch supports two priority classes High and Low For example if Ports 2 and 3 both transmit packets at 1Gbps to Port 1 and Port 2 is set to high priority and Port 3 is low priority then the packets from Port 3 will be dropped when congestion occurs because Port 2 has a higher priority Quality of Service QoS Configuration Default Class C Per Port Priority C YLAN Tag Priority C IP ToS Classification C IP TCP UDP Port Classification C IP Diffserv Classification Figure 3 15 QoS Configuration Page 25 Per Port Priority For Per Port Priority Figure 3 16 you can select which priority to assign each of the 8 ports on the switch Per Port Priority Figure 3 16 Per Port Priori
51. all request IP addresses using DHCP at the same time it may cause an overload on the network or on the DHCP server Delaying the DHCP request using this feature will prevent this from happening DHCP Boot Disable Delay Time 1 30 seconds DHCP Broadcast Suppression Figure 3 25 DHCP Boot Page 3 10 VLAN The switch supports both Tag based VLAN 802 10 and Port based VLAN It supports 256 active VLANs and VLAN IDs from 1 to 4094 VLANs are used to partition your LAN into smaller ones to prevent different networks from talking to each other and to limit broadcast domains Properly configured VLANs provide improved security and performance on the network 3 10 1 VLAN Mode The VLAN Mode page Figure 3 26 allows the user to select the VLAN mode to use Five modes are available Port based Tag based Metro Mode Double tag and Disable Select the desired mode and then click Apply The settings will take effect immediately VLAN Modes Disable Disable VLANS on the switch This is the default setting Port based Port based VLANs are defined by port No filtering is applied to the packets on each port the only limiting factor is that only ports in the same VLAN can communicate with each other Each port based VLAN must be assigned a unique group name The switch can support up to a maximum of 8 port based VLAN groups 32 Tag based Tag based VLANs are identified by its VLAN ID or VID Instead of filtering by port all p
52. ame as this switch s bridge ID Designated Priority Shows the current root bridge priority Root Port Shows the port number connected to root bridge with the lowest path cost Will be 0 if the current switch is the root Root Path Cost Shows the path cost between the root port and the designated port of the root bridge Will be O if the current switch is the root Current Max Age Shows the current root bridge maximum age time The maximum age time is used to monitor if the STP topology needs to change When a bridge does not receive a hello message from the root bridge before the maximum age time counts down to 0 the bridge will treat the root bridge as unavailable and will issue a Topology Change Notification TCN BPDU to all other bridges At this time all bridges in the LAN will re learn and determine which switch is the new root bridge Maximum Age time is assigned by the root bridge Default is 20 seconds Current Forward Delay Shows the current root bridge forward delay time The value of Forward Delay time is set by the root The Forward Delay time is defined as the time spent from Listening state moving to Learning state or from Learning state moving to Forwarding state of a port in a bridge Hello Time Shows the current hello time of the root bridge Hello time is a time interval specified by the root bridge used to request that all other bridges periodically send hello message every hello time 43 seconds to the bri
53. ample SS2GD8I alarm sms set user ABC show Syntax show Description Display the configuration of the SMS trap event Arguments None Example SS2GD8I alarm sms show SMS Server 192 168 1 7 Username ABC Password PKK KKKKKKKK KKK KKK Mobile Phone 8181234567 Mobile Phone Mobile Phone Mobile Phone Mobile Phone DD OO A W N Rp Mobile Phone 79 gt autologout autologout Syntax autologout lt time gt Description Set the timer before the user is automatically logged out Arguments lt time gt range from 1 to 3600 seconds 0 to turn autologout off default is 180 Example SS2GD81 autologout 3600 Set autologout time to 3600 seconds gt bandwidth disable egress rate Syntax disable egress rate lt port range gt Description Cancel the egress rate setting of a port Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 Example SS2GD8I1 bandwidth disabl gress rate 1 8 disable ingress rate Syntax disable ingress rate lt port range gt Description Cancels the ingress rate setting of a port Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 Example SS2GD8I1 bandwidth disable ingress rate 1 8 disable storm rate Syntax disable storm rate lt port range gt Description
54. ansit to forwarding state and skip the listening and learning state because the edge ports cannot create bridging loops in the network This will expedite the convergence When the link on the edge port toggles the STP topology remains unchanged Unlike the designated port or root port though an edge port will transit to a normal spanning tree port immediately if it receives a BPDU Default is No Admin Point To Point A port is a point to point link if it is in full duplex mode but is a shared link if it is in half duplex mode RSTP fast convergence can only happen on point to point links and on edge ports This can expedite the convergence because this will have the port quickly transit to the forwarding state There are three option auto true and false used to configure the type of the point to point link If it is set to auto it means that RSTP will use the duplex mode resulting from auto negotiation This is the safest method because although most links run in full duplex mode auto negotiation may set it to half duplex If it is set to true the port will be treated as a point to point link and unconditionally transit to the forwarding state If it is set to false fast transition to forwarding state will not happen on this port Default Auto M Check Stands for Migration Check Forces the port to send out an RSTP BPDU instead of a legacy STP BPDU during the next transmission The only benefit of this operation is to make the port quickly rev
55. as the switch s default settings Figure 2 7 This can be accomplished by following these steps 1 Connect an Ethernet cable from your computer to Port 1 on the switch 2 Ensure that the Link LED for Port 1 lights up and that a Local Area Connection is shown on your computer 3 Open the network connections window on your computer if you are using Windows XP go to Control Panel gt Network Connections and select Local Area Network then click Properties 2 Go ON Ow RA Select Internet Protocol TCP IP then click Properties Select to use a static IP address or Use the following IP address Enter the following IP address for the computer 192 168 1 5 Enter the following subnet mask for the computer 255 255 255 0 Click OK and save the settings Open up a web browser e g Internet Explorer and enter http 192 168 1 1 in the address bar You should now be presented with the login page of the web interface Figure 2 8 You can log in using the default username admin and default password admin See Section 3 for details on using the web interface to manage the switch Note For best results it is recommended that you use Microsoft IE 6 0 or above Netscape V7 1 or above or FireFox V1 00 or above and have a screen resolution of at least 1024x768 Please Input Username amp Password Username PO Password Forget Password nl x Figure 2 8 Login Screen 1
56. bling Requirements Cabling Requirements for Copper Ports For Fast Ethernet connections the grade of the cable must be at least Cat 5 with a maximum length of 100 meters For Gigabit Ethernet connections the grade of the cable must be at least Cat 5e with a maximum length of 100 meters Cabling Requirements for 1000SX LX SFP Module The length of cable supported depends on the types and quality of the transceiver and the cable Cables are broken up into two categories multi mode MM and single mode SM The latter is categorized into several classes by the distance it supports They are SX LX LHX XD and ZX For the connector type they are mainly LC and BIDI LC Combinations include e Gigabit Fiber with multi mode LC SFP module e Gigabit Fiber with single mode LC SFP module e Gigabit Fiber with BiDi LC 1310nm SFP module e Gigabit Fiber with BiDi LC 1550nm SFP module The following table lists the types of fiber supported by the switch IEEE 802 3z Gigabit Multi mode Fiber Cable and Modal Bandwidth Ethernet 1000SX 850nm Multi mode 62 5 125um Multi mode 50 125um Modal Bandwidth Distance Modal Bandwidth Distance 160MHz km 220m 400MHz km 500m 200MHz km 275m 500MHz km 550m 1000Base Single mode Fiber 9 125um LX LHX XD ZX Single mode transceiver 1310nm 10km Single mode transceiver 1550nm 30 50km 1000Base LX Single Single Mode 20km TX Transmit 1310 nm Fiber BIDI LC RX Receive
57. d a GVRP PDU If enabled the switch does not create dynamic VLANs when this port receives a GVRP PDU except if it receives dynamic VLAN messages in the GVRP PDU that correspond to an existing static VLAN in the switch this port will then be added into the static VLAN members The default setting is Disabled 41 3 12 2 Counter The Counter page Figure 3 39 displays the GVRP packets sent and received by the switch GVRP Counter por i gt Total G RP Packets 0 Invalid GVRP Packets LeaveAll message JoinEmpty message JoinIn message LeaveEmpty message Empty message E E E E E E 0050505 Figure 3 39 GVRP Counter Page Total GVRP Packets Total GVRP BPDU packets sent or received by the switch Invalid GVRP Packets Number of invalid GARP BPDU received by the switch LeaveAll Message Packets Number of GARP BPDU with a Leave All message sent or received by the switch JoinEmpty Message Packets Number of GARP BPDU with a Join Empty message sent or received by the switch Joinln Message Packets Number of GARP BPDU with a Join In message sent or received by the switch LeaveEmpty Message Packets Number of GARP BPDU with a Leave Empty message sent or received by the switch Empty Message Packets Number of GARP BPDU with an Empty message sent or received by the switch 3 12 3 Information The Information page Figure 3 40 displays the dynamic group members and their information GVRP VLAN Group Information Li
58. d by the LACP protocol entity and can t be set manually Trunk Status Shows the trunk status of a single member port means not ready 3 14 3 System Priority The System Priority page Figure 3 47 is used to set the priority part of the LACP system ID LACP will only aggregate together the ports whose peer link partners are all on a single system Each system supporting LACP will be assigned a globally unique System Identifier for this purpose A system ID is a 64 bit field comprising a 48 bit MAC Address and 16 bit priority value The System Priority can be set 48 manually The valid range is from 1 to 65535 Default is 32768 LACP System Priority System Priority 800 1065535 Figure 3 47 LACP System Priority Page 3 15 802 1X Configuration 802 1X port based network access control provides a method to restrict users from accessing network resources by authenticating the user s information beforehand This restricts users from gaining access to network resources through a 802 1X enabled port without authentication If users wish to access the network through a port under 802 1X control they must input their account name for authentication and wait for authorization first The SS2GD8I only supports multi host 802 1X authentication In this mode the devices connected to a port can only gain access to the network through this port after it has been authorized 3 15 1 State The 802 1X State Setting page Figure 3 48
59. dge attached to its designated port STP Topology Change Count Shows the time spent in seconds since the beginning of the Spanning Tree Topology Change to the end of the STP convergence Once the STP change has converged the Topology Change count will be reset to 0 Time Since Last Topology Change Shows the accumulated time in seconds since the last STP Topology Change was made When a Topology Change is initiated again this counter will be reset to 0 It will start counting again once the STP Topology Change is completed 3 13 2 Configuration The STP Configuration page Figure 3 42 allows the user to set the STP settings for the switch The settings are described below STP Configuration Spanning Tree Protocol Disable y Bridge Priority 0 61440 0 Hello Time 1 10 sec Max Age 6 40 sec Forward Delay 4 30 sec Force Version an STP Note 2 Forward Delay 1 gt Max Age Max Age gt 2 Hello Time 1 Note You will lose connection with this device for a while if you enable STP Figure 3 42 STP Configuration Page Spanning Tree Protocol Sets whether 802 1w Rapid STP function is enabled or disabled Default is Disable Bridge Priority The lower the bridge priority the higher the priority it has Usually the bridge with the highest bridge priority is the root If you want to have the SS2GD8I as the root bridge you should set this value lower than that of the other bridges in the LAN Valid values are fr
60. disable 86 enable Syntax enable Description Enables GVRP Arguments None Example SS2GD81 gvrp enable 87 group Syntax group lt group number gt Description Selects which GVRP group is currently actively worked on After a group is selected the commands below can be used to modify the settings for this group Arguments lt group number gt the VID of the GVRP group number to select range from 1 4094 Example SS2GD81 gvrp show group GVRP group information Current Dynamic Group Number 1 VID Member Port 2 5 SS2GD8I1 gvrp group 2 SS2GD81 gvrp group 2 set applicant 1 6 non participant SS2GD8I1 gvrp group 2 show GVRP group VID 2 Port Applicant Registrar 1 Non Participant Normal 2 Non Participant Normal 3 Non Participant Normal 4 Non Participant Normal 5 Non Participant Normal 6 Non Participant Normal 7 Normal Normal 8 Normal Normal SS2GD8I gvrp group 2 set registrar 1 8 fixed SS2GD8I gvrp group 2 show GVRP group VID 2 Port Applicant Registrar 1 Non Participant Fixed 2 Non Participant Fixed 3 Non Participant Fixed 4 Non Participant Fixed 5 Non Participant Fixed 88 6 Non Participant Fixed 7 Normal Fixed 8 Normal Fixed set applicant Syntax set applicant lt port range gt lt type gt Description Sets the default applicant mode for each port Arguments lt port range gt which ports to change can
61. dress VID and Alias and click Add To delete an entry select the MAC address entry you wish to delete and click Delete Static Filtering MAC MAC A Cnn EA eee oo FS 23 33 45 fai fa workstation ETE MA alias There is no filtering MAC entry Figure 3 36 Static Filter Page MAC A six byte long Ethernet hardware address and expressed in hex and separated by hyphens VID VLAN identifier This only applies if tagged VLANs are enabled Valid range is from 1 4094 Alias Alias name for the MAC address 3 11 5 MAC Alias The MAC Alias page Figure 3 37 is used to allows the user to assign a plain English name to a MAC address This will help you tell which MAC address belongs to which user in the illegal access report To create or edit an entry enter the MAC address and alias name and click Create Edit To delete an entry select it from the list and click Delete The alias name must be composed of only letters and number and can be up to 15 characters long 39 MAC Alias 00 J ES J 23 J 33 Jas J 11 mia Create Edit No MAC Address Alias Figure 3 37 MAC Alias Page MAC A six byte long Ethernet hardware address and expressed in hex and separated by hyphens Alias Alias name for the MAC address Note If there are too many MAC addresses in the table it is recommended that you input the MAC address and alias name manually 3 12 GVRP Configuration GVRP is an applicatio
62. e the switch will periodically issue a Membership Query message to all hosts attached to it and gather the Membership report message to update the multicast table Using this method reduces the amount of unnecessary multicast traffic In Passive mode switch will not periodically poll the hosts in the groups The switch will send a Membership Query message to all hosts only when it has received a Membership Query message from a router IP Address Shows all multicast groups IP addresses that are registered on this device VLAN ID Shows the VLAN ID for each multicast group Member Port Shows the member ports that have joined each multicast group Member ports can belong to multiple groups 3 8 Maximum Packet Length The Maximum Packet Length page Figure 3 24 allows you to set the maximum packet size for each port The switch is capable of handling jumbo frames up to 9kb in size The default is 1518 for each port 31 Maximum Packet Length Max Frame Size 1518 1518 y 1518 y 1518 y Figure 3 24 Maximum Packet Length Page 3 9 DHCP Boot The DHCP Boot page Figure 3 25 allows the user to configure the boot up and DHCP request delay for the switch Enabling DHCP Broadcast Suppression will cause the switch to delay booting up for between 1 and 30 seconds to avoid overloading the DHCP server with requests in the event of a building wide power failure If all of the devices are powered up simultaneously and
63. e Port The types and numbers of ports in the switch RAM size The size of the DRAM in this switch Flash size The size of the flash memory in this switch 3 1 2 IP Configuration The IP Configuration page under the System menu Figure 3 4 allows you to set the IP address of the switch The switch supports both static and dynamic IP addresses When you change the IP address of the switch you must reboot the switch in order for the change to take effect You will also have to use the new IP address to access the web interface and CLI for the switch Note If you select dynamic IP address the switch will automatically get an IP address from your DHCP server on the network In order to determine the IP address received by the switch you will either need to log in through the console port or view the DHCP table on your DHCP server IP Configuration DHCP Setting Disable y IP Address 192 168 0 10 Subnetmask 259 255 255 0___ Default Gateway 192 168 0 1 O Manual z Note You will lose connection with this device if enable DHCP Please use CLI to get the new IP address Figure 3 4 IP Configuration Page DHCP Setting If set to Enable the switch will retrieve its IP address from a DHCP server on the network thereby getting a dynamic IP address If the DHCP server is down or does not exist the switch will show that the IP address is being requested until the DHCP server is up Until it gets an IP address the switch
64. e RS 232 serial port on the switch and the other end into an RS 232 serial port on your computer Start a terminal program on your computer by default Windows uses HyperTerminal 4 Configure the connection as shown below Baud rate 57600 Stop bits 1 Data bits 8 Parity N Flow control none To Telnet into the switch connect to the Ethernet port of the switch and then open a command prompt in Windows In the command prompt type telnet lt ip address gt where lt ip address gt is the IP address of the switch The same rules apply to connecting to the switch via Telnet as via the web interface in terms of being on the same subnet as the switch 4 1 1 Login The default username and password are shown below Be sure to change the password as soon as possible for security purposes Username admin Password admin After you login successfully you will see a prompt SS2GD8l if you are the first person to login and you have administrator rights otherwise the prompt may appear as SS2GD8I The former means you have administrator rights and have full access to the switch The latter means you only have guest rights and are only allowed to view the system without changing any settings 4 2 CLI Commands To see the commands available use the command at the prompt Commands fall into two categories global commands and local commands Global commands can be used at any time and are listed in section 4 2 1 whereas
65. e indicates that this port can now contribute its learning knowledge but cannot forward packets e Forwarding state indicates this port can both contribute its learning knowledge and forward packets normally Path Cost Status Shows the contribution value of the path through this port to the root bridge The STP algorithm determines a best path to Root Bridge by calculating the sum of path costs contributed by all ports on this path A port with a smaller path cost value is more likely to become the Root Port Configured Path Cost In the switch if path cost is set to be zero STP will get the recommended value resulting from auto negotiation of the link accordingly and display this value in the field of Path Cost Status Otherwise it may show the value entered in the Configured Path Cost and Path Cost Status Valid range is from 0 200 000 000 Default is 0 The 802 1w RSTP recommended value depends on the speed of the network 10 Mbps is 2 000 000 100 Mbps is 200 000 and 1 Gbps is 20 000 Priority Port Priority and Port Number are mixed to form the Port ID Port IDs are often compared in order to determine which port of a bridge will become the Root Port Valid values are from 0 240 Default is 128 Admin Edge Port If Yes is selected this port will be an edge port An Edge Port is a port connected to 45 a device that knows nothing about STP or RSTP Usually the connected device is an end station Edge Ports will immediately tr
66. e name of the device is shown as the station address the last number of the IP address plus the name of the switch concatenated with an underscore e g 100_SS2GD8l for a switch with an IP address 192 168 0 100 and name SS2GD8 Otherwise it will show if there is no switch active there Once the devices have successfully joined the group then they will only be manageable through the Master device and will be unable to be managed via telnet console web individually Up to 16 devices can be grouped in a Virtual Stack however only one Master is allowed to exist in each group at a time For redundancy you may configure more than two devices as Master devices However the Master device with the smallest MAC value will be set as the Master All of these 16 devices can become the Master device and back up each other Virtual Stack Configuration cou Note Please log out of the switch after changing the state of the Virtual Stack Figure 3 8 Virtual Stack Page State Used to enable or disable virtual stacking Role The role that the switch should play in the virtual stack either Slave or Master Group ID The group identifier GID for the VSM All switches in the same group must have the same Group ID Valid values are letters numbers and underscores up to 15 characters in length 3 2 Port Configuration Four functions including Port Status Port Configuration Simple Counter and Detail Counter are contai
67. e to the root directory of the TFTP server Arguments lt file path gt path and filename Example SS2GD81 config file set import path log 21511 txt import start Syntax import start Description Imports startup settings from the file defined using set import path Arguments None Example SS2GD8I config file import start Import successful import user conf Syntax import user conf Description Imports user configuration settings from the file defined using set import path Arguments None Example SS2GD81 config file import user conf Import successful 83 show Syntax show Description Displays the config file import export configuration Arguments None Example SS2GD8I1 config file show TFTP Server IP Address 192 168 3 111 Export Path and Filename nmap 123 ts Import Path and Filename userl23 txt gt dhcp boot set dhcp boot Syntax set dhcp boot lt sec gt Description Sets the delay time for DHCP Boot Arguments lt sec gt delay in seconds range from 0 30 a value of 0 will disable dhcp boot delay Example SS2GD81I dhcp boot set dhcp boot 30 show Syntax show Description Displays the status of DHCP Boot Arguments None Example SS2GD8I1 dhcp boot show dhcp boot Enable Second x 10 84 gt diag diag Syntax diag Description Tests whether UART DRAM Flash and EEPROM are working normally or not Arguments None Example SS2GD81 diag diag
68. email server including user account and password Arguments None Example SS2GD8I alarm email del server user set mail address Syntax set mail address lt gt lt mail address gt Description Sets up an email address Arguments lt gt email address number range from 1 to 6 lt mail address gt email address Example SS2GD81 alarm email set mail address 1 abc mail abc com set server Syntax set server lt ip gt Description Sets the IP address of the email server Arguments lt ip gt email server IP address or domain name Example SS2GD81I alarm email set server 192 168 1 6 73 set user Syntax set user lt username gt Description Sets the account and password of the email server After you enter the user name you will be prompted for the password Arguments lt username gt email server account and password Example SS2GD8I alarm email set user admin show Syntax show Description Displays the e mail alerts configuration Arguments None Example SS2GD81 alarm email show Mail Server 192 168 1 6 Username admin Password kkxkxkxkxkxkxkxkxkxkxk kxk kxk kxx xx k E mail Address 1 abc mail abc com E mail Address m mail Address m mail Address El mail Address nD Oo FP UU N m mail Address gt gt events del all Syntax del all lt range gt Description Disables events from being sent out via email sms and traps Argum
69. entication attempts that are permitted before the port becomes Unauthorized Arguments lt port range gt which ports are affected can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt max gt number of attempts range from 1 10 default is 2 Example SS2GD8I1 802 1X set reAuthMax 2 2 set reAuthPeriod Syntax set reAuthPeriod lt port range gt lt sec gt Description The number of seconds between re authenticating the supplicant Arguments lt port range gt which ports are affected can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt sec gt timer range from 1 65535 default is 3600 Example SS2GD8I1 802 1X set reAuthPeriod 2 3600 67 set serverTimeout Syntax set serverTimeout lt port range gt lt sec gt Description Sets the timer used by the Backend Authentication state machine in order to determine timeout conditions in the exchanges between the Authenticator and the Supplicant or Authentication Server The initial value of this timer is either suppTimeout or serverTimeout as determined by the operation of the Backend Authentication state machine Arguments lt port range gt which ports are affected can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt sec gt timer range from 1 65535 default is 30 Example SS2GD8I1 802 1X set serverTimeout 2 30 set state Syn
70. ents lt range gt which events to delete can be a single event e g 1 or a range of events e g 5 7 range from 1 24 Example SS2GD8I alarm events del all 1 3 74 del email Syntax del email lt range gt Description Disables events from being sent out via email Arguments lt range gt which events to delete can be a single event e g 1 or a range of events e g 5 7 range from 1 24 Example SS2GD8I alarm events del email 1 3 del sms Syntax del sms lt range gt Description Disables events from being sent out via SMS Arguments lt range gt which events to delete can be a single event e g 1 or a range of events e g 5 7 range from 1 24 Example SS2GD81 alarm events del sms 1 3 del trap Syntax del trap lt range gt Description Disables events from being sent out via traps Arguments lt range gt which events to delete can be a single event e g 1 or a range of events e g 5 7 range from 1 24 Example SS2GD81I alarm events del trap 1 3 set all Syntax set all lt range gt Description Enables events to be sent out via email SMS and traps Arguments lt range gt which events to delete can be a single event e g 1 or a range of events e g 5 7 range from 1 24 Example SS2GD8I alarm events set all 1 3 75 set email Syntax set email lt range gt Description Enables eve
71. er and its status either authorized or unauthorized Port Security Management Port Mode SET disable disable 3 disable disable 5 disable NIP A disable disable EPA disable Param Setting Figure 3 50 Port Security Management Page Port Number The port number can be selected to show its 802 1X port status by clicking Param Setting Mode Shows whether the port has 802 1X disabled or is using multi host mode Status The current 802 1X status of the port either Authorized or Unauthorized In Disable mode this field is blank Param Setting Selecting a port and clicking the Parameter Setting button will open a new window that 50 allows you to configure 802 1X details for the port Figure 3 51 Port Parameter Setting ort 5 Port Control ForceUnauthorized y reAuthMax 1 10 txPeriod 1 65535 s Quiet Period 0 65535 5 reAuthEnabled OFF rir M ca III supgrimeour1 65535 5 III Scr M Figure 3 51 Parameter Setting Page Port Port number being modified Port Control Used to set the operation mode for authorization There are three modes supported ForceUnauthorized ForceAuthorized Auto ForceUnauthorized means the controlled port is always in the unauthorized state ForceAuthorized means the controlled port is always in the authorized state Auto means that the controlled port is set to be in authorized state or unauthorized state depending on the result of the authentication excha
72. ert to act as an RSTP port Click the M Check button to send a RSTP BPDU from the specified port 3 14 Trunking Configuration The Port Trunking Configuration is used to configure the link aggregation settings on the switch With link aggregation you can group multiple ports together that have the same speed are full duplex and have the same MAC address to be a single logical port thus the combining the bandwidth of these ports For example if there are three Fast Ethernet ports aggregated together into one logical port then this logical port has a bandwidth three times faster than a single Fast Ethernet port The switch supports two types of port trunking methods LACP Ports using Link Aggregation Control Protocol according to the IEEE 802 3ad specification as their trunking method can choose their unique LACP Group ID 1 8 to form a logical trunked port The benefit of using LACP is that a port has to negotiate with its peer s ports before it becomes a member of a trunk group also called aggregator LACP is safer than the other trunking method static trunks LACP does not support the followings e Link Aggregation across switches e Aggregation with non IEEE 802 3 MAC links e Operating in half duplex mode e Aggregating ports with different data rates Static Trunk Ports using Static Trunk as their trunk method can choose their unique Static Group ID also 1 8 this Static groupID can be the same with another L
73. field can be a single number e g 1 or a range of numbers e g 5 7 range from 0 7 lt class gt class of service can be 1 high or 0 low Example SS2GD81I qos set tos 1 5 0 3 0 108 show Syntax show Description Displays the information of the active QoS mode Arguments None Example Ss2GD8I qos show IP Diffserv Classification Default Class high DiffServ Class DiffServ Class DiffServ Class DiffServ Class 0 high 1 high 2 high 4 high 5 high 6 high 8 high 9 high 10 high 12 high 13 high 14 high 16 high 17 high 18 high 20 high 21 high 22 high 24 high 25 high 26 high 28 high 29 high 30 high 32 high 33 high 34 high 36 high 37 high 38 high 40 high 41 high 42 high 44 high 45 high 46 high 48 high 49 high 50 high 52 high 53 high 54 high 56 high 57 high 58 high 60 high 61 high 62 high gt reboot reboot Syntax reboot Description Reboots the switch Arguments None Example SS2GD8I reboot 109 11 15 19 23 27 31 35 39 43 47 51 55 59 63 high high high high high high high high high high high high high high high high gt snmp disable Syntax disable lt type gt Description Disables SNMP or set community Arguments lt type gt Can be snmp or set community Example SS2GD81 snmp disable snmp SS2GD81 snmp disable set community enable Syntax enable lt type gt Description Enables SNMP or set community Arguments lt type
74. gt Can be snmp or set community Example SS2GD8I snmp enable snmp SS2GD8I snmp enable set community set Syntax set get community lt community gt set set community lt community gt set trap lt gt lt ip gt port community Description Sets the community used for get community or set community or sets the trap host IP host port and trap community Arguments lt gt trap number range from 1 6 lt ip gt IP address or domain name lt port gt trap port range from 1 65535 lt community gt trap community name Example SS2GD81I snmp set get community public SS2GD8I snmp set set community private SS2GD8I snmp set trap 1 192 168 1 1 162 public 110 show Syntax show Description Displays the SNMP configuration Arguments None Example SS2GD81 snmp show SNMP Enable Get Community public Set Community private Enable Trap Host 1 IP Address 192 168 1 1 Port 162 Community public Trap Host 2 IP Address 0 0 0 0 Port 162 Community public Trap Host 3 IP Address 0 0 0 0 Port 162 Community public Trap Host 4 IP Address 0 0 0 0 Port 162 Community public Trap Host 5 IP Address 0 0 0 0 Port 162 Community public Trap Host 6 IP Address 0 0 0 0 Port 162 Community public gt stp MCheck Syntax MCheck lt port range gt Description Forces the port to transmit RST BPDUs Arguments lt port range gt wh
75. he difference between a multicast packet from the broadcast packet so it can only treat them all as the broadcast packets Without 30 IGMP Snooping multicast packet forwarding is effectively the same as broadcast packet forwarding A switch that supports IGMP Snooping with query report and leave functions based on a type of packet exchanged between the IP Multicast Router Switch and IP Multicast Host can update the information in the Multicast table when a member port joins or leaves an IP Multicast Destination Address With this functionality once a switch receives an IP multicast packet it will forward the packet to the members who belong to a specified IP multicast group Multicast packets that a user transmits to a multicast group that had not been defined in advance are discarded IGMP is used to snoop the status of IP multicast groups and display its associated information in both tagged VLAN and non tagged VLAN networks Enabling IGMP in either passive or active mode allows you to monitor the IGMP information which contains the multicast member list with the multicast groups VID and member ports IGMP Snooping C Disable Active Passive IP Multicast Table apply Refresh Figure 3 23 IGMP Snooping Page IGMP snooping mode selection The switch supports three kinds of IGMP Snooping status including Passive Active and Disable Disable disables IGMP snooping on the switch In Active mod
76. her TCP UDP ports can be 1 high or 0 low lt match gt special TCP UDP class can be 1 high or 0 low Example SS2GD8I1 qos set advance layer4 5 2 80 1 0 set default Syntax set default lt class gt Description Sets the priority class of the packets that QoS doesn t affect Arguments lt class gt class of service can be 1 high or 0 low Example SS2GD8I qos set default 1 set diffserv Syntax set diffserv lt ds range gt lt class gt Description Sets class of ports for IP DiffServ QoS Arguments lt ds range gt DSCP field can be a single number e g 1 or a range of numbers e g 5 7 range from 0 63 lt class gt class of service can be 1 high or 0 low Example SS2GD8I qos set diffserv 0 20 1 106 set mode Syntax set mode lt mode gt Description Sets QoS priority mode of the switch Arguments lt mode gt can be port for per port priority pri_tag for VLAN tag priority tos for IP ToS classification layer4 for IP TCP UDP port classification or diffserv for IP DiffServ classification Example SS2GD81 qos set mode port set port Syntax set port lt port range gt lt class gt Description Sets the class of ports for on port based QoS Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt class gt class of service can be
77. ia Port RJ45 SFP 2 16 M 2M 115 gt tftp set server Syntax set server lt ip gt Description Sets the IP address of the TFTP server Arguments lt ip gt the IP address of tftp server Example SS2GD81I tftp set server 192 168 3 111 show Syntax show Description Display the information of the TFTP server Arguments None Example SS2GD8I tftp show Tftp Server 192 168 3 111 gt time set daylightsaving Syntax set daylightsaving lt hr gt lt MM DD HH gt lt mm dd hh gt Description Sets the daylight saving time Arguments lt hr gt daylight saving hour differential range 5 to 5 lt MM DD HH gt daylight saving start month 01 12 day 01 31 and hour 00 23 lt mm dd hh gt daylight saving end month 01 12 day 01 31 and hour 00 23 Example SS2GD8I time set daylightsaving 3 10 12 01 11 12 01 Save Successfully set manual Syntax set manual lt YYYY MM DD gt lt hh mm ss gt Description Sets the current time manually Arguments lt YYYY MM DD gt year 2000 2036 month 01 12 and day 01 31 lt hh mm ss gt hour 00 23 minute 00 59 and second 00 59 Example SS2GD81 time set manual 2004 12 23 16 18 00 116 set ntp Syntax set ntp lt ip gt lt timezone gt Description Sets the current time via an NTP server Arguments lt ip gt IP address or domain name of NTP server lt timezone gt time zone GMT range from 12 to 13 Example SS2GD8I t
78. ich ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 Example SS2GD81 stp Mcheck 1 8 disable Syntax disable Description Disables STP Possible values None Example SS2GD8I1 stp disable enable Syntax enable Description Enables STP Arguments None Example SS2GD81 stp enable 111 set config Syntax set config lt Bridge Priority gt lt Hello Time gt lt Max Age gt lt Forward Delay gt Description Set the STP parameters Arguments lt Bridge Priority gt priority must be a multiple of 4096 range from 0 to 61440 lt Hello Time gt range from 1 to 10 lt Max Age gt range from 6 to 40 lt Forward Delay gt range from 4 to 30 Note 2 Forward Delay 1 gt Max Age Max Age gt 2 Hello Time 1 Example SS2GD8I stp set config 61440 2 20 15 set port Syntax set port lt port range gt lt path cost gt lt priority gt lt edge_port gt lt admin p2p gt Description Sets the STP port information Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt path cost gt range from 0 200000000 0 means auto status lt priority gt priority must be a multiple of 16 range from 0 to 240 lt edge_port gt admin edge port can be yes or no lt admin p2p gt admin point to point can be auto true or false
79. id to tag all frames except a specific VID vid optional untag VID for hybrid port range from 1 4094 Example SS2GD8I1 vlan set port role 5 hybrid 6 122 set pvid Syntax set pvid lt port range gt lt pvid gt Description Sets the PVID of VLANs Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt pvid gt which PVID s to set from from 1 to 4094 Example SS2GD8I1 vlan set pvid 3 5 6 8 5 set tag group Syntax set tag group lt vid gt lt name gt lt range gt lt gt Description Adds or edits a tag based VLAN group Arguments lt vid gt VLANID range from 1 to 4094 lt name gt tag VLAN name lt range gt VLAN group members can be a single number e g 1 or a range of numbers e g 5 7 range from 1 8 lt gt Can be 1 for symmetric VLAN or 0 for asymmetric VLAN Example SS2GD8I1 vlan set tag group 2 VLAN 2 2 5 6 8 O show group Syntax show group Description Displays the VLAN mode and groups Arguments None Possible values None Example SS2GD81 vlan show group Vlan mode is double tag 1 Vlan Name default Vlan ID al Sym vlan Disable Member Pal Ano 8 2 Vlan Name VLAN 2 Vlan ID oS es Sym vlan Disable Member 2345 6 123 show pvid Syntax show pvid Description Displays pvid and ingress egress rules Arguments None Example SS
80. ime set ntp clock via net 5 Synchronizing 1 Synchronization success show Syntax show Description Shows the time settings Arguments None Possible values None Example SS2GD8I time show Current Time Thu Thu 14 15 04 03 2005 NTP Server 2 209 8L 9 7 Timezone GMT 8 00 Day light Saving 0 Hours Day light Saving Start Mth 1 Day 1 Hour 0 Day light Saving End Mth 1 Day 1 Hour 0 gt trunk del trunk Syntax del trunk lt port range gt Description Deletes a trunk Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 Example SS2GD8I trunk del trunk 1 117 set priority Syntax set priority lt range gt Description Sets the LACP system priority Arguments lt range gt available from 1 to 65535 Example SS2GD8I trunk set priority 33333 set trunk Syntax set trunk lt port range gt lt method gt lt group gt lt active LACP gt Description Sets up a trunk including the group number mode and LACP mode Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt method gt can be static to adopt the static link aggregation or lacp to adopt a dynamic link aggregation using link aggregation control protocol lt group gt range from 1 8 lt active LACP gt can be active
81. irror set monitored port 3 5 8 set monitoring port Syntax set monitoring port lt gt Description Sets the port that will receive the mirrored packets Administrators can view the packets that the monitored port s receives via this port Arguments lt gt the monitoring port Only one port is allowed to configure ranges from 1 to 8 Example SS2GD81 mirror set monitoring port 2 show Syntax show Description Displays the port mirroring settings Arguments None Example SS2GD8I1 mirror show Mirror Mode rx Monitoring Port 2 Monitored Port 3 4 5 8 gt port clear counter Syntax clear counter Description Clears all ports counters including simple and detail port counters Arguments None Example SS2GD8I port clear counter 102 disable flow control Syntax disable flow control lt port range gt Description Disables flow control for a port s Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 Example Ss2GD8I port disable flow control 6 disable state Syntax disable state lt port range gt Description Disables a port s Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 Example SS2GD8I port disable state 1 2 enable flow control Syntax enable flow control lt range gt Desc
82. isplayed after the software has been upgraded At this time you must reboot the switch for the new software to take effect Warning Powering off the switch in the middle of a firmware upgrade may cause the memory in the switch to be corrupted and cause the switch to stop working completely Firmware Upgrade TFTP Server 0 0 0 0 Path and Filename cx Upgrade Figure 3 61 Firmware Upgrade Page 3 22 Reboot The Reboot page Figure 3 62 allows the user to reboot the switch through the web interface Rebooting using this page is the same as pressing the reset button on the switch It takes approximately 30 seconds for the switch to boot up Reboot the System A A Saving Configuration and Reboot Reboot the System Figure 3 62 Reboot Page Save and Reboot Save the current settings as the start configuration before rebooting the switch Reboot Reboot the switch without saving the current settings 58 3 23 Logout The Logout page Figure 3 63 allows the user to log out of the web interface Logout Figure 3 63 Logout Page 59 4 CLI Interface 4 1 CLI Management The command line interface CLI is a text based interface into the switch To use the CLI you can Telnet into the switch or you can connect to the switch s RS 232 port The following are detailed instructions to set up an RS 232 connection 1 Take the null modem cable that comes with the switch out of the box 2 Connect one end of the cable into th
83. itted through this port Port State is configured by the user Auto Negotiation Shows whether the port has speed and duplex auto negotiation enabled on or not When Enabled the switch will automatically negotiation the best speed and duplex supported by both devices If Disabled it must be set manually by the user This option is set by the user Speed Duplex Mode Displays the speed and duplex of the port There are three speeds 10Mbps 100Mbps and 1000Mbps supported for TP media and the duplex supported is half duplex and full duplex If the media is 1Gbps fiber it can be 1000Mbps only Flow Control Shows the port s flow control status Wait State For 10 100M ports this value is irrelevant For Gigabit ports setting of Wait State will remove the issue with ignored pause frames but result in the minimum interframe gap being at least 14 bytes instead of the usual 12 bytes This applies to non congested traffic as well The larger interframe gap will result in throughput rates less than 100 For example for a stream of 64 byte frames and a stream of 1518 byte frames their maximum throughput is 97 7 and 99 9 respectively 3 2 2 Port Configuration The Port Configuration page Figure 3 10 is used to change the settings of each of the ports 19 Port Configuration Port No State Mode _ Flow Control Wait State enable 100m Half Disable Enable Figure 3 10 Port Configuration Page State Ei
84. k The Loopback Test page Figure 3 59 provides two different loopback tests One is an Internal Loopback Test and the other is an External Loopback Test The former test will not send test signals outside the switch The test signal only tests the signals within the switch The latter test sends the test signal to the device connected to the other end If the cable is not connected to an active network device the switch will report that the external loopback test has failed Note Whatever you choose Internal Loopback Test or External Loopback Test these two functions will interfere with normal system operations and all packets will stop being sent and received temporarily Loopback Test Port No Internal Loopback External Loopback 1 OK OK 2 Fail OK a OK Fail 4 OK Fail 5 OK Fail 6 OK Fail 7 OK Fail 8 OK Fail Figure 3 57 Loopback Test Page 3 18 3 Ping Test The Ping Test page Figure 3 58 allows the user to perform a ping on an external address to see if the remote device is accessible or not via ICMP protocol To perform a test enter the IP address to ping and click Ping The results of the ping will appear after a few seconds Note Some devices may not reply to a ping even though they are active and working properly depending on how they are configured Many software firewalls on computers will prevent the computer from replying to a ping request Ping Test IP Address 192 168 1 10 Rae 192 168 1 254 Ping
85. le commands Show a list of previously run commands Logout the system Save as start config Save as user config Restore default config Restore user config 62 history Syntax history Description Displays a list of previous commands that have been entered during this session When you enter this command a list of commands which have been entered before is displayed The CLI supports up to 256 records If no argument is used the entire list is displayed up to 256 If an optional argument is given only the specified number of records will be shown Arguments optional the number of history records to show range from 1 256 Example 1 SS2GD8I ip history Command history trunk exit SS2GD81 trunk SS2GD81 trunk exit SS2GD81 trunk exit Oo AT 06 oO FPF W DN RP O alarm WO events m o end pa E ip help m N 13 ip 14 history Example 2 SS2GD8I ip history 3 Command history 13 ip 14 history 15 history 3 SS2GD81 ip 63 logout Syntax logout Description When you enter this command you will be logged out of the system and disconnected If you are connected the switch through the serial port you will be logged out of the system and be brought back to the initial login prompt Arguments None Example SS2GD81 logout restore default Syntax restore default Description When you enter this command you will receive a pr
86. le tag Vlan Enabled Module Inserted Module Removed Module Media Swapped 77 show alarm Syntax show lt alarm gt Description Displays the configuration of a specific alarm type Arguments lt alarm gt alarm type can be events email or sms Example SS2GD81 alarm show events SS2GD81 alarm show email SS2GD81 alarm show sms gt gt sms del phone number Syntax del phone number lt gt Description Deletes an SMS phone number Arguments lt gt mobile phone number range from 1 to 6 Example SS2GD8I alarm sms del phone number 3 del server user Syntax del server user Description Removes the configuration of an SMS server including user account and password Arguments None Example SS2GD8I alarm sms del server user set phone number Syntax set phone number lt gt lt phone number gt Description Adds an SMS phone number Arguments lt gt SMS slot number range from 1 to 6 lt phone number gt phone number Example SS2GD8I alarm sms set phone number 1 8181234567 78 set server Syntax set server lt ip gt Description Sets the IP address of the SMS server Arguments lt ip gt SMS server IP address or domain name Example SS2GD81 alarm sms set server 192 168 1 7 set user Syntax set user lt username gt Description Sets the user account and password of the SMS server Arguments lt username gt SMS server account Ex
87. local commands only work in a specific submenu and are listed in section 4 2 2 The same local command will perform different functions depending on which submenu the user is currently in 60 4 2 1 CLI Global Commands end Syntax end Description Returns you to the root menu When you enter this command you will be returned to the root menu regardless of which submenu you are in If you use this command while in the root menu you will remain in the root menu Arguments None Example SS2GD81 alarm SS2GD8I1 alarm events SS2GD8I alarm events end SS2GD81 exit Syntax exit Description Brings you up one menu level When you enter this command you will be move up to the parent menu If you use this command while in the root menu you will remain in the root menu Arguments None Example SS2GD81 alarm SS2GD8I alarm events SS2GD8I alarm events exit SS2GD81 alarm 61 help Syntax help Description Shows a list of available commands Some commands are a combination of two or more words Arguments None Example SS2GD8I ip SS2GD81 ip help Commands available set ip set dns enable dhcp disable dhcp show help history logout save start save user restore default restore user Set ip subnet mask and gateway Set dns Enable DHCP and set dns auto or manual Disable DHCP Show IP Configuration Back to the previous mode Back to the top mode Show availab
88. m Information Page The picture of the switch at the top will display all ports which currently have an active link in green For the SFP modules a transceiver will be shown in the picture if one is installed in the slot The transceiver will also light up green if there is an active connection on that link You can also click on any of the ports in the picture to open a new window that displays information specific to that port figure 3 3 On this page you can view all of the information for traffic on this port with a quick glance 12 Port 1 Detail Information TT Up SAO Enabled METETE Enabled 100M Full ATI Enabled TAATETI Disabled 1000 M TAE Disabled 1000 M FEEATECTI Disabled 1000 M ATI 2576485 CITI 2283495 AA 9064 16273 Tx Collision o Rx Error Packet Close Figure 3 3 Port Information Page On the left top corner of the home page there is a dropdown list to set the Auto Logout time For security purposes you will automatically be logged out after a period of inactivity You can change the amount of time the switch waits before automatically logging you out by selecting a duration from this dropdown list You can also disable the auto logout feature by selecting Off from the list Once you are logged out you will need to log back in through the login page The menu on the left hand side of the screen will allow you to navigate through the web interface and manage all of the different featu
89. manual or auto Example SS2GD8I ip enable dhcp manual set dns Syntax set dns lt ip gt Description Sets the IP address of DNS server Arguments lt ip gt IP address of DNS server Example SS2GD8I ip set dns 168 95 1 1 93 set ip Syntax set ip lt ip gt lt mask gt lt gateway gt Description Sets the system IP address subnet mask and gateway Arguments lt ip gt IP address lt mask gt subnet mask lt gateway gt default gateway Example SS2GD8I ip set ip 192 168 1 2 255 255 255 0 192 168 1 253 show Syntax show Description Displays the system s DHCP function state IP address subnet mask default gateway DNS mode DNS server IP address and current IP address Arguments None Example SS2GD81 ip show DHCP Disable IP Address NA AA EA Current IP Address 192 168 2 237 Subnet mask RIO LIL lt 0 Gateway 192 168 2 252 DNS Setting Manual DNS Server LOS OLA gt log clear Syntax clear Description Clears the log data Arguments None Example SS2GD81 log clear disable auto upload Syntax disable auto upload Description Disables auto upload of the log Arguments None Example SS2GD81I log disable auto upload 94 enable auto upload Syntax enable auto upload Description Enables auto upload of the log Arguments None Example SS2GD81I log enable auto upload show Syntax show Description Shows a list of trap log events Up to
90. mediately after you successfully login to the switch Please Input Username amp Password The Serial Number 218 030F12000001 1 Please Keep the Serial Number and Contact The Sales Representative Username Password Y lA y Figure 3 1 Password Recovery Screen 11 3 1 Home Page After you login the switch will display the System Information page figure 3 2 This page shows you some basic information about the switch including Model Name System Description Location Contact Device Name System Up Time Current Time BIOS Version Firmware Version Hardware Mechanical Version Serial Number Host IP Address Host Mac Address Device Port RAM Size and Flash Size A fax Auto Logout 3 min 7 Sia System Information Mirror Bandwidth Model Name SS2GD8I Qos System Description 8 port Gigabit Layer 2 Switch Loop Detection Location SNMP rc IGMP Snooping DHCP Boot System Up Time 1 Days 6 Hours 30 Mins 15 Secs ZEAN AAN Fri Oct 27 00 15 27 2006 sets BIOS Version v1 05 E Firmware Version 2 20 Trunk Hardware Mechanical Version v1 01 v1 01 hice TEE oN O30F 12000001 Alarm 192 168 1 22 Host MAC Address 00 40 C7 DE 00 F7 Configuration Diagnostics AAA VART 1 TP 6 Dual Media Port RI45 SFP 2 TFTP Server RAMSize 16 M Log Flash Size 2M Firmware Upgrade Reboot Logout Apply Figure 3 2 Syste
91. mode 2 1 set port control Syntax set port control lt port range gt lt authorized gt Description Set the 802 1X status of each port Arguments lt port range gt which ports are affected can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt authorized gt Port status 0 1 or 2 0 ForceUnauthorized 1 ForceAuthorized 2 Auto Example SS2GD81 802 1X set port control 2 2 set quiet period Syntax set quiet period lt port range gt lt sec gt Description A timer used by the Authenticator state machine to define periods of time during when it will not attempt to acquire a Supplicant Arguments lt port range gt which ports are affected can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt sec gt timer range from 0 65535 default is 60 Example SS2GD81 802 1X set quiet period 2 30 66 set reAuthEnabled Syntax set reAuthEnabled lt port range gt lt ebl gt Description A constant that defines whether regular reauthentication will take place on this port or not Arguments lt port range gt which ports are affected can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt ebl gt 0 or 1 disable or enable re authentication Example SS2GD81 802 1X f set reAuthEnabled 2 1 set reAuthMax Syntax set reAuthMax lt port range gt lt max gt Description The number of re auth
92. mple the community name for GET only works for GET functions and can t be applied to other functions such as SET and Trap Set Community can be set to Disable to disallow setting of any switch settings by the SNMP management software The default is Enable Default community name for GET public Default community name for SET private Default community name for Trap public Default trap host IP address 0 0 0 0 Default port number 162 Trap The switch supports up to 6 trap hosts each of them having its own community name IP address and port Each host must be running an SNMP management software capable of receiving standard SNMP traps For each public trap the switch supports the following trap events Cold Start Warm Start Link Down Link Up and Authentication Failure Traps They can be enabled or disabled individually When enabled the corresponding trap will send a trap message to the trap host when a trap event occurs If all public traps are disabled no public trap message will be sent The Enterprise trap number 6 is classified as a private trap and is listed in the Trap Alarm Configuration folder The default for all public traps is Enable 3 7 IGMP Snooping The IGMP Snooping page Figure 3 23 is used to establish the multicast groups to forward multicast packets to thereby avoiding wasting the bandwidth while IP multicast packets are running over the network Switches that do not support IGMP or IGMP Snooping cannot tell t
93. n based on Generic Attribute Registration Protocol GARP mainly used to automatically and dynamically maintain the group membership information of VLANs GVRP provides the VLAN registration service through a GARP application It makes use of GARP Information Declaration GID to maintain the ports associated with their attribute database and GARP Information Propagation GIP to communicate among switches and end stations With GID information and GIP the GVRP state machine maintains the contents of Dynamic VLAN Registration Entries for each VLAN and propagates this information to other GVRP aware devices to setup and update their knowledge database including the set of VLANs associated with currently active members and through which ports these members can be reached In the GVRP Configuration function folder there are three functions supported GVRP Config GVRP Counter and GVRP Group which are explained in detail in the following sections 3 12 1 Config The Config page Figure 3 38 is used to configure each ports GVRP operation mode as described below 40 GVRP Configuration GVRP State Disabled gt ENTA Leave Leaveall pee a milled Arale oe 1000 ET E A DE E Pozo 60 1000 Normal gt AA Po 60 i000 Normal Normal Disabled z 1000 Normi z Normal z Disabled 20 60 1000 Normal z Norma gt Disabled z Figure 3 38 GVRP Configuration Page oan Am amp WN be dd o o GVRP State Allows yo
94. n both good and bad packets received Tx 64 Bytes Number of 64 byte frames in both good and bad packets transmitted Tx 65 127 Bytes Number of 65 126 byte frames in both good and bad packets transmitted Tx 128 255 Bytes Number of 127 255 byte frames in both good and bad packets transmitted Tx 256 511 Bytes Number of 256 511 byte frames in both good and bad packets transmitted Tx 512 1023 Bytes Number of 512 1023 byte frames in both good and bad packets transmitted Tx 1024 Bytes Number of 1024 max_length byte frames in both good and bad packets transmitted Rx CRC Alignment Number of Alignment errors and CRC error packets received Rx Undersize Number of short frames lt 64 Bytes with valid CRC received Rx Oversize Number of long frames according to max_length register with valid CRC received Rx Fragments Number of short frames lt 64 bytes with invalid CRC received Rx Jabber Number of long frames according tomax_length register with invalid CRC received Rx Drops Frames dropped due to lack of receiving buffer space Rx Errors Number of the error packets received Tx Collisions Number of collisions experienced while transmitting frames Tx Drops Number of frames dropped due to excessive collision late collision or frame aging Tx FIFO Drops Number of frames dropped due to the lack of transmitting buffer space 3 3 Mirror The Mirror page Figure 3 13 allows you to configure port mirroring on the switch
95. ned in the Port menu for port monitoring and management Each of them will be described in detail in the following sections 3 2 1 Port Status The Port Status page Figure 3 9 displays information for all of the ports on the switch including link status port state auto negotiation status speed duplex and flow control The page will automatically refresh every 5 seconds Clicking on a port will open a status window as shown in Figure 3 3 18 Port Current Status AAA AAA PARTS 1 Up Enabled Enabled 100M Full Enabled Disabled 2 mE Up Enabled Enabled 10M Half Enabled Disabled 3 TP Down Enabled Enabled Auto Enabled Disabled 4 TP DownEnabled Enabled Auto Enabled Disabled 5 TP Down Enabled Enabled Auto Enabled Disabled 6 TP Down Enabled Enabled Auto Enabled Disabled 7 TP DowneEnabled Enabled Auto Enabled Disabled 8 TP DownEnabled Enabled Auto Enabled Disabled Figure 3 9 Port Status Page Port No The port number ranging from 1 8 Both ports 7 and 8 are optional modules Media Shows the media type of the port Ports 1 6 are twisted pair TP or copper while ports 7 and 8 could be twisted pair or fiber Link Shows if the link is active or not If the link is connected to a working device the Link will be Up otherwise it will be Down State Shows whether the port is Enabled or Disabled When it is enabled traffic can be transmitted and received via this port When it is disabled no traffic can be transm
96. nfiguration into the non volatile FLASH You must enter this command after making any changes in the CLI in order for the changes to remain after the unit is restarted Arguments None Example SS2GD81 save start Saving start Save Successfully SS2GD81 save user Syntax save user Description Saves the current configuration as the user defined configuration This is a backup configuration that can be loaded in the future but is not currently active Arguments None Example SS2GD8I save user Saving user Save Successfully SS2GD81 4 2 2 Local Commands of CLI gt 802 1X set max request Syntax set max request lt port range gt lt times gt Description The maximum number of times that the state machine will retransmit an EAP Request packet to the Supplicant before the authentication session times out Arguments lt port range gt which ports are affected can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt times gt maximum number of tries range from 1 10 default is 2 Example SS2GD81 802 1X set max request 2 2 65 set mode Syntax set mode lt port range gt lt mode gt Description Sets the 802 1X authentication mode for each port Arguments lt port range gt which ports are affected can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt mode gt 0 or 1 off or on Example SS2GD8I 802 1X set
97. nge between the authentication server and the supplicant Default is Auto reAuthMax The number of authentication attempts that are permitted before the port becomes unauthorized Default is 2 txPeriod Time period to transmitted EAPOL PDU between the authenticator and the supplicant Default is 30 Quiet Period Period of time during which the switch will not attempt to access the supplicant Default is 60 seconds reAuthEnabled Choose whether regular authentication will take place on this port Default is on reAuthPeriod Period of time between the periodic re authentication of the supplicant Default is 3600 max Request The maximum number of times that the authenticator will retransmit an EAP Request to the supplicant before it times out the authentication session Valid from 1 10 Default is 2 times suppTimeout Timeout condition in the exchange between the authenticator and the supplicant Valid from 1 65535 Default is 30 seconds serverTimeout Timeout condition in the exchange between the authenticator and the authentication server Valid from 1 65535 Default is 30 seconds 51 3 16 Alarm Configuration 3 16 1 Events The Trap Events Configuration page Figure 3 52 allows the user to select which events will be sent to the network administrator using which alert type The switch supports 24 different trap events The trap information can be sent out in three ways email mobile phone SMS short message system and SNMP
98. nts to be sent out via email Arguments lt range gt which events to delete can be a single event e g 1 or a range of events e g 5 7 range from 1 24 Example SS2GD8I alarm events set email 1 3 set sms Syntax set sms lt range gt Description Enables events to be sent out via SMS Arguments lt range gt which events to delete can be a single event e g 1 or a range of events e g 5 7 range from 1 24 Example SS2GD8I alarm events set sms 1 3 set trap Syntax set trap lt range gt Description Enables events to be sent out via traps Arguments lt range gt which events to delete can be a single event e g 1 or a range of events e g 5 7 range from 1 24 Example SS2GD8I alarm events set trap 1 3 76 show Syntax show Description Displays the configuration of alarm events Arguments None Example SS2GD81 alarm events show Events Email SMS Trap 0 TY WD oO BF WB NP 10 11 12 Cold Start v Warm Start M Link Down v Link Up v Authentication Failure v User Login User Logout STP Topology Changed STP Disabled STP Enabled LACP Disabled ACP Enabled 13 14 15 16 17 18 19 20 21 22 23 24 LACP Member Added LACP Port Failure GVRP Disabled GVRP Enabled VLAN Disabled Port based Vlan Enabled T Tag based Vlan Enabled Metro mode Vlan Enabled Doub
99. om 0 61440 The default is 32768 Hello Time Hello Time is used to determine the periodic time to send normal BPDU from designated ports among bridges It decides how often a bridge should send this message to other bridges saying that it is active When the SS2GD8lI is the root bridge for example all other bridges will use the hello time assigned by this switch to communicate with each other Valid values are from 1 10 seconds Default is 2 seconds Max Age When the SS2GDAI is the root bridge all other switch on the LAN will use this number as their maximum age time When a bridge receives a BPDU originating from the root bridge and if the message age conveyed in the BPDU exceeds the max age of the root bridge the bridge will treat the root bridge as unavailable and issue a Topology Change Notification TCN BPDU to all other bridges All bridges in the LAN will then re calculate and determine who the new root bridge is Valid values are from 6 40 44 seconds Default is 20 seconds Forward Delay Set the root bridge forward delay time This figure is set by the root bridge only The forward delay time is defined as the time spent from Listening state moving to Learning state and also from Learning state moving to Forwarding state of a port in a bridge The forward delay time contains two states Listening state to Learning state and Learning state to Forwarding state Assuming that forward delay time is 15 seconds then total forward delay
100. ompt saying Do you want to restore the default IP address y n If you choose Y or y the IP address will be restored to the default 192 168 1 1 If you choose N or n the IP address will not be changed If the unit was successfully restored to defaults you will see a prompt asking if you want to reboot immediately or not If you press Y or y the system will reboot immediately otherwise you will be taken back to the CLI prompt After restoring to defaults all of the changes in the system will be erased and the unit will be reset to factory defaults after being rebooted Arguments None Example SS2GD81 restore default Restoring Restore Default Configuration Successfully Press any key to reboot system restore user Syntax restore user Description Restores the startup configuration with the saved user configuration After restoring the user defined configuration all the changes in the startup configuration will be lost After rebooting the startup configuration will be replace with the user defined one This function requires that a user configuration be saved first using the save user command Arguments None Example SS2GD8If restore user Restoring Restore User Configuration Successfully Press any key to reboot system 64 save start Syntax save start Description Saves the current configuration as the startup configuration When you enter this command the CLI would save your current co
101. or the time change are from 5 to 5 in one hour increments Setting this to zero will disable daylight saving time If the value is non zero you have to set the starting ending date as well otherwise the daylight saving function will not be activated 3 1 4 Account Configuration The Account Configuration page under the System menu Figure 3 6 allows you to manage the users who can manage the switch Only administrators can create modify or delete user accounts Only one Administrator is allowed and cannot be deleted and up to four Guest accounts are allowed The administrator has full access rights to the switch while Guests only have read only access Administrators are also able to modify passwords for all accounts while guests are only able to modify the password for their own account on this page The default settings for the Administrator account is admin for both username and password and for the guest is guest for both username and password Account Configuration Authorization admin Administrator guest Guest Figure 3 6 Account Configuration Page 3 1 5 Management Policy The Management Policy page under the System menu Figure 3 7 allows you to set rules for users to access the management interface of the switch be it web telnet or SNMP You can accept or deny access based on VID IP address physical port connection and access type There are several scenarios for defining rules No rules are defined The
102. pond to the numbers on the physical ports on the switch Access Type If set to Any the rule applies to users using any management interface otherwise you can select which management interfaces apply to the rule Valid options are HTTP Telnet and SNMP Action Allows you to select whether to Allow access to users covered by this rule or the Deny access to them Edit Create After entering the parameters above click this button to save the new rule or the modify an existing one Delete Remove an existing entry from the table 3 1 6 Virtual Stack The Virtual Stack page under the System menu Figure 3 8 allows you set virtual stack settings for the switch Multiple switches in the same LAN can be grouped together in order to simplify management through the web interface All switches in the same stack can be managed using the IP address of the Master switch If Virtual Stack is configured two rows of buttons 16 in total will appear at the top of the web interface after logging into the master switch to allow for selecting the device to manage By using these buttons you can select which switch in the group to connect to and manage without logging into each switch individually 17 The button on the far left of the top row represents the master switch The background color of the active switch will be highlight in green Note If you log into a switch using the console it will disable the virtual stack temporarily Th
103. r firmware upgrade system log upload and config file import export e Remote boot the device through user interface and SNMP e Network time synchronization and daylight saving time e 120 event log records in the main memory and displayed on the local console 1 5 SS2GD8l Diagram Figure 1 1 SS2GD8I 1 5 1 Front Panel There are 8 Gigabit Ethernet ports and 2 SFP fiber ports for optional removable transceivers on the front of the switch The LEDs located on the panel consists of a Power LED which indicates the power status and LEDs for each port on the switch TP Port Status Link ACT Gigabit Ethernet Port TP Port Status Speed Sn A 17008 Ka Ohaba AI A Power Indication LED Reset Button Fiber Port Status Indication LEDs Figure 1 2 Front Panel SFP Fiber Port LED Indicators POWER Lights up green when switch is receiving power CPU Lights up green when switch is on flashes when CPU is working LINK ACT Lights up green when connected to a device flashes when transmitting data 10 100 1000Mbps Lights up green when connected at 1000Mbps amber when connected at 100Mbps and is off when connected at 10Mbps or not connected SFP Lights up green when connected to a device blinks when transmitting data 1 5 2 Rear Panel The RS 232 port used for command line management and the power outlet are on the rear of the unit AC Line 100 240 50 60Hz RS 232 DB 9 Connector Figure 1 3 Rear
104. rding and port security with MAC address SNMP RMON SNMP agent and RMON MIB The SNMP agent is a software client which uses the SNMP protocol to receive commands from the SNMP manager on the server and return the corresponding data i e MIB object The SNMP agent will also actively issue TRAP information when events occur RMON is the abbreviation of Remote Network Monitoring and is a branch of the SNMP MIB The device supports MIB 2 RFC 1213 Bridge MIB RFC 1493 RMON MIB RFC 1757 statistics groups 1 2 3 9 Ethernet like MIB RFC 1643 Ethernet MIB RFC 1643 IGMP Snooping Supports IGMP version 2 RFC 2236 The IGMP snooping function is used to establish multicast groups to forward multicast packets to the member ports which avoid wasting the bandwidth when IP multicast packets are sent over the network 1 3 Checklist Before you start using the switch verify that the package contains the following items e S2GD8l e User s Manual on CD ROM e AC Power Cord RS 232 Cable Please notify your sales representative immediately if any of the aforementioned items are missing or damaged 1 4 Features The SS2GD8I switch provides the features listed below for users to perform system network administration and service the network efficiently and securely Hardware 6 10 100 1000Mbps Auto negotiation Gigabit Ethernet ports 2 10 100 1000Mbps Combo SFP ports 144KB on chip frame buffer Jumbo frame support Programmable clas
105. rement AC Line o Voltage 100 240 V o Frequency 50 60 Hz o Consumption 13W Ambient Temperature 32 to 104 F 0 to 40 C Humidity 5 to 90 Dimensions H x W x D 1 7 x 8 7 x 5 1 in 44 x 220 x 130 5 mm Complies with FCC Part 15 Class A amp CE Mark Approval 128
106. res of the switch Clicking on one of the menu options will reveal a list of submenu items that can be selected Each menu item will be described in detail in the following sections 3 1 1 System Information The System Information page under the System menu Figure 3 2 shows the basic system information for the switch The fields on this page are described below Model name The model name of the switch System description A description of the switch including the number of ports and management level Location A description of the physical location of the switch as defined by the user Contact The contact information for the network administrator in the event of a problem with the switch as defined by the user Device name The name of the switch as defined by the user the default is SS2GD8I System up time The amount of time that the switch has been operational This number is reset if the switch is powered off Current time The system time of the switch BIOS version The version of the BIOS in the switch 13 Firmware version The firmware version on the switch Hardware Mechanical version The hardware and mechanical version of the switch The number before the hyphen is the hardware version the one after the hyphen is the mechanical version Serial number The serial number as assigned by the manufacturer Host IP address The IP address of the switch Host MAC address The Ethernet MAC address the switch Devic
107. rid 35 VLAN Tag Rule Rulel Drop frame from nonmember port Rule2 Drop untagged frame Port No PVID Rule 1 Rule2 Role Untag VID il Disabled Disabled Access Disabled Disabled Access Disabled Disabled Access Disabled Disabled Access Disabled Disabled Access Disabled Disabled Access Disabled Disabled Access Disabled Disabled Access Figure 3 32 VLAN Tag Rule Page ON AO kWN e pl pd pd pd pd pd pab Port No Port number PVID The PVID range is between 1 4094 Before you set a number x as PVID you have to create a Tag based VLAN with VID x For example if port x receives an untagged packet the switch will apply the PVID assume as VID y of port x to tag this packet the packet then will be forwarded as a tagged packet with VID y Rule 1 Forward only packets with VID matching this port s configured VID You can apply Rule 1 to a given port to filter unwanted traffic Using Rule 1 a given port checks if the destination port is a member of the VLAN to which the received packet belongs to in order to determine whether to forward it or not For example if port 1 receives a tagged packet with VID 100 VLAN name VLAN100 and if Rule 1 is enabled the switch will check if port 1 is a member of VLAN100 If it is the received packet is forwarded otherwise the received packet is dropped Rule 2 Drop untagged frame You can configure a given port to accept all frames T
108. ription Enable flow control for a port s Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 Example SS2GD8I port enable flow control 3 8 enable state Syntax enable state lt range gt Description Enables a port s Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 Example SS2GD8I port enable state 3 7 103 set speed duplex Syntax set speed duplex lt port range gt lt speed gt Description Sets the speed and duplex of a port s Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt speed gt the speed of the port can be any of the following auto set auto negotiation mode 10half set speed duplex 10M Half 10full set speed duplex 10M Full 100half set speed duplex 100M Half 100full set speed duplex 100M Full 1Gfull set speed duplex 1G Full Example SS2GD8I1 port set speed duplex 5 auto show conf Syntax show conf Description Displays each port s state speed duplex and flow control Arguments None Example Ss2GD8I port show conf show detail counter Syntax show detail counter lt gt Description Displays the detailed counter for each port Arguments lt gt port range from 1 to 8 E
109. rt trunking with flexible load distribution and failover Supports ingress port security mode for VLAN Tagged and Untagged frames Supports SNMP MIB2 and RMON sampling with sampled packet error indication Hardware Specifications Standard Compliance IEEE 802 3 802 3ab 802 3z 802 3u 802 3x Network Interface gigabit copper and gigabit fiber using SFP transceivers Ports 7 and 8 are Combo SFP dual media ports with auto detection SFP module supports LC and BiDi LC transceivers 127 Transmission Mode 10 100Mbps supports full or half duplex 1000Mbps supports full duplex only Transmission Speed 10 100 1000Mbps for Copper 1000Mbps for Fiber Full Forwarding Filtering Packet Rate PPS packets per second Forwarding Rate Speed 1 488 000 PPS 1000 Mbps 148 800 PPS 100 Mbps 14 880 PPS 10 Mbps MAC Address and Self learning 8K MAC address 4K VLAN table entries Buffer Memory Embedded 144 KB frame buffer Flow Control IEEE802 3x compliant for full duplex Backpressure flow control for half duplex Maximum Cable Lengths Copper Cat 5 UTP cable up to 100m 1000Base SX Up to 220 275 500 550m depending on Multi Mode Fiber type 1000Base LX Single Mode Fiber up to10 30 50km 1000Base LX WDM BiDi Single Mode Fiber up to 20km Diagnostic LEDs o System LEDs Power CPU o Copper Ports 1 to 8 LINK ACT 10 100 1000Mbps o SFP Fiber Ports 7 8 8 SFP LINK ACT Power Requi
110. s Represents the trunking status of a port which uses a trunking method other than None It also represents the management link status of a port which uses the None trunking method means not ready 3 14 2 Aggregator View The Aggregator View page Figure 3 45 displays the current port trunking status Aggregator View Er Member Ports Ready Ports 1 1 None None 2 2 None None None None None None Refresh LACP Detail Figure 3 45 Aggregator View Page Aggregator Ow Oo amp WwW Aggregator Shows the aggregator ID from 1 to 8 of each port which is the same as the port number Method Shows the method a port is using to aggregate with other ports Member Ports Shows all of the member ports of an aggregator port Ready Ports Shows only the ready member ports within an aggregator port Refresh Refreshes the information on the screen LACP Detail Clicking this will open a new window showing detailed information on the LACP trunking group Figure 3 46 Aggregator 5 Information 32768 00 40 c7 de 00 f7 32768 00 00 00 00 00 00 5 257 5 0 Figure 3 46 LACP Detail Page Actor The switch you are watching on Partner The peer system System Priority Shows the System Priority part of a system ID MAC Address Shows the MAC Address part of a system ID Port Shows the port number part of an LACP port ID Key Shows the key value of the aggregator The key value is determine
111. s is updated every time you click Apply in the GUI The last is the user configuration which is a user defined backup configuration which can also be restored as the working configuration if desired 3 17 1 Save Restore The Save Restore page Figure 3 54 allows users to save or restore their configuration settings Configuration Save Start Save as Start Configuration Save as User Configuration Restore Default Restore Default Configuration included default ip address Restore Default Restore Default Configuration without changing current ip address Restore User Configuration Figure 3 54 Configuration Page Save Start Saves the current configuration as the startup or working configuration in flash memory Save User Saves the current configuration as the backup user configuration in flash memory Restore Default including IP address Restores the switch s working configuration to factory defaults including changing the IP address of the switch back to 192 168 1 1 Restore Default not including IP address Restores the switch s working configuration back to factory defaults without changing the IP address Restore User Configuration Restores the saved user configuration as the working configuration Once completed the system must be restarted for the new settings to take effect 3 17 2 Config File The Config File page Figure 3 55 allows the user to save the current configuration to a file on the local computer
112. sec ci 1 Hello Time sec SUZ STP Topology Change Count 0 Time Since Last Topology Change sec 848 gt system set contact Syntax set contact lt contact gt Description Sets the contact description for the switch Arguments lt contact gt a string of up to 40 characters Example SS2GD8I1 system set contact networkadmin set device name Syntax set device name lt device name gt Description Sets the device name description for the switch Arguments lt device name gt a string of up to 40 characters Example SS2GD81 system set device name CR 2600 114 set location Syntax set location lt location string gt Description Sets the location description for the switch Arguments lt location gt a string of up to 40 characters Example SS2GD8I system set location HO show Syntax show Description Displays the basic information for the switch Arguments None Example SS2GD8I1 system show Model Name System Description Location Contact Device Name System Up Time Current Time BIOS Version Firmware Version Hardware Mechanical Version Serial Number Host IP Address Host MAC Address Device Port RAM Size Flash Size SS2GD8I1 L2 Managed Switch HQ networkadmin SS2GD8I1 O Days 3 Hours 28 Mins 17 Secs Sat Jan 1 14 37 19 2005 v1 01 v2 14 v1 01 v1 01 030F03000003 192 3 168 11 00 40 c7 de 00 e7 UART 1 TP 6 Dual Med
113. sifier for QoS Layer 4 Multimedia 8K MAC address and 4K VLAN support IEEE802 1Q Per port shaping policing and Broadcast Storm Control 802 1Q Q in Q nested VLAN support Full duplex flow control IEEE 802 3x and half duplex backpressure Extensive front panel diagnostic LEDs Power LINK ACT and 10 100 1000Mbps for Ethernet Ports 1 8 LINK ACT for SFP Ports 7 8 Management Port configuration Per port traffic monitoring counters Port mirroring Static trunks 802 1Q VLAN Maximum packet length can be up to 9208 bytes for jumbo frames DHCP Broadcasting Suppression to avoid network crashes Sends trap events when monitored events occur Default configuration can be restored to overwrite the current configuration which is working on via web browser and CLI Hot pluggable SFP modules Quality of Service QoS for real time applications based on Layer 2 4 information such as VoIP Built in web based management and CLI management providing a more convenient UI for the user Port mirroring with ingress traffic Rapid spanning tree 802 1w RSTP 802 1x port security on a VLAN e SNMP access can be disabled and prevent from unauthorized SNMP access e Ingress non unicast and egress bandwidth rating management with a resolution of 1Mbps e The trap event and alarm message can be sent via e mail and mobile phone SMS e Diagnostics to let administrators know the hardware status e External loopback test to check if the link is ok e TFTP fo
114. switch is set to Off before you plug in the power cord Copper Cable Installation The switch supports auto MDIX meaning that both straight through and cross over cables will work regardless of the device on the other end To ensure that you get full gigabit throughput with the switch it is recommended that you use category 5e or higher not category 5 cables SFP Transceivers The SFP slots are hot swappable meaning that SFP transceivers can be installed or removed while the switch is on To install a transceiver 1 Verify that the SFP module is the right type and form factor for the switch 2 Slide the module completed into the slot making sure that the module is properly seated against the connector in the back of the slot Install the fiber cable to connect to the network 4 Repeat the above steps for to install the second transceiver if required A SS lt N RS P sae Figure 2 2 Installing SFP Transceivers Power On The switch supports 100 240 VAC 50 60 Hz power supply The power supply will automatically convert the local AC power source to DC power After the switch is powered on all LED indicators will light up immediately and then all of them will turn off except for the power LED Boot Sequence After the switch powers on the bootloader will load the firmware into the memory This process takes about 30 seconds after which all of the LEDs will flash once and the switch will then be operational 2 2 1 Ca
115. t Administrative Control retrato Figure 3 40 GVRP Group Information VID VLAN identifier Each dynamic VLAN group created by GVRP has its own VID Valid range is from 1 4094 Member Port Those are member ports belonging to the same dynamic VLAN group Edit Administrative Control When you create a GVRP group you can use Administrative Control to change the Applicant Mode and Registrar Mode of a GVRP group member Refresh Refreshes the current GVRP group status 3 13 STP Configuration The Spanning Tree Protocol STP is a standardized method IEEE 802 1D for avoiding loops in switched networks When STP is enabled the switch ensures that only one path is active between any two nodes on the network at a time It is recommended that you enable STP on all switches to ensure a single active path on the network 3 13 1 STP Status The STP Status page Figure 3 41 displays the current STP status on the switch STP Status Disabled 00 40 C7 DE 00 F7 32768 00 40 C7 DE 00 F7 32768 0 o 20 is 2 o Time Since Last Topology 0 Change sec Figure 3 41 STP Status Page STP State Shows whether STP is enabled or disabled Bridge ID Shows the switch s bridge ID which is the MAC address of this switch Bridge Priority Shows this switch s current bridge priority setting Default is 32768 Designated Root Shows the root bridge ID of this network segment If this switch is a root bridge the Designated Root will be the s
116. t range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt mac gt MAC address format 01 02 03 04 05 06 can be used as a wildcard lt vid gt VLAN ID range from 1 to 4094 as a wildcard or 0 as untagged Example SS2GD8I mac table information search 1 8 MAC Table List Alias MAC Address Port VID State 00 40 c7 88 00 06 1 0 Dynamic 96 show Syntax show Description Displays the entire MAC address table Arguments None Example SS2GD8I mac table information show MAC Table List Alias MAC Address Port VID State 00 10 db 1d c5 a0 8 0 Dynamic 00 40 4 89 c9 7 8 0 Dynamic 00 e0 18 2b 9d e2 8 0 Dynamic 00 40 c7 d8 00 02 8 0 Dynamic gt gt maintain set aging Syntax set aging lt gt Description Sets the aging time of MAC addresses that are learned dynamically Arguments lt gt age timer in seconds range from 10 to 65535 or 0 to disable aging Example SS2GD8I mac table maintain set aging 300 set flush Syntax set flush Description Deletes all MAC addresses that are learned dynamically Arguments None Example SS2GD8I mac table maintain set flush show Syntax show Description Displays the settings of the age timer Example SS2GD8I mac table maintain show age timer 300 seconds 97 gt gt static mac add Syntax add lt mac gt lt port gt l
117. t vid gt alias Description Adds a static MAC entry Arguments lt mac gt MAC address format 00 02 03 04 05 06 lt port gt Port to assign MAC address to range from 0 8 0 means that this entry is for filtering only lt vid gt VLAN ID range from 0 4094 VID must be 0 if VLAN mode is not tag based alias optional MAC alias name maximum 15 characters Example SS2GD8I mac table static mac add 00 02 03 04 05 06 3 0 aaa del Syntax del lt mac gt lt vid gt Description Deletes a static MAC address entry Arguments lt mac gt mac address format 00 02 03 04 05 06 lt vid gt VLAN ID range from 0 4094 VID must be 0 if VLAN mode is not tag based Example SS2GD8I mac table static mac del 00 02 03 04 05 06 O show filter Syntax show filter Description Displays the static filter table Arguments None Example SS2GD8I mac table static mac show filter Static Filtering Etnry Total 1 item s 1 mac 00 33 03 04 05 06 vid alias ccc show forward Syntax show forward Description Displays the static forwarding table Arguments None Example SS2GD8I mac table static mac show forward Static Forwarding Etnry Total 1 item s 1 mac 00 02 03 04 05 06 port 3 vid alias aaa 98 gt management delete Syntax delete Description To delete a specific record or range Arguments lt gt a specific or range management security entry s Possible values
118. tax set state lt ip gt lt port number gt lt secret key gt Description Configures the settings of the 802 1X Radius Server Arguments lt ip gt the IP address of Radius Server lt port number gt the service port authorization port of the Radius Server from 1 65535 default is 1812 lt secret key gt the value of the secret key which has to have a length between 1 and 31 characters Example SS2GD81 802 1X set state 192 168 1 115 1812 WinRadius set suppTimeout Syntax set suppTimeout lt port range gt lt sec gt Description Sets the timer used by the Backend Authentication state machine in order to determine timeout conditions in the exchanges between the Authenticator and the Supplicant or Authentication Server The initial value of this timer is either suppTimeout or serverTimeout as determined by the operation of the Backend Authentication state machine Arguments lt port range gt which ports are affected can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt sec gt timer range from 1 65535 default is 30 Example SS2GD81 802 1X set suppTimeout 2 30 68 set txPeriod Syntax set txPeriod lt port range gt lt sec gt Description Sets the timer used by the Authenticator PAE state machine to determine when an EAPOL PDU is to be transmitted Arguments lt port range gt which ports are affected can be a single port e g 1 or a range of ports e g 5
119. te abe 35 3 11 MAG TABLE cocida 36 3 11 1 a 37 3 11 2 Maintenance Page cial decidi 38 3 11 3 Static FONI adn 38 3 11 4 Static Hilti a ia ties 39 3 11 5 MAG ANAS ca a iii 39 3 12 GVRP CONFIGURATION comicidad id dd a dd dd 40 3 12 1 O A 40 3 12 2 AO O O awe ene 42 3 12 3 INTO MAIN orita dada ltd 42 3 13 STP CONFIGURATION 0 toi ieee ein tada Mena 43 3 13 1 STP SIIS tt ita ita ieee 43 3 13 2 CONTIQUIATION Hess ete tao natillas 44 3 13 3 RN 45 3 14 TRUNKING CONFIGURATION ccococcococccccononcnnnonnnonnnnnnnnnnn nan n nn a nn nar E a rn nr rr o L E 46 3 14 1 Dd A lot tano 47 3 14 2 Aggregator VieW ciel ssi ne eae ae en ee ee aie ee 47 3 14 3 System PHONY tit dto 48 3 19 802 1X CONFIGURATION oE stencaaestiadeavsusetaasd ATOT 49 3 15 1 Se O EEA T EEEE E E EE EA A T ET EN 49 3 15 2 MOIE anaE atari 49 3 15 3 MOS CUPILY EE EE P EEEE A oido ia EE E 50 3 16 ALARN CONFIGURATION otoki AREEN EE REE E AEREA AE EAEE TAAT 52 3 16 1 EVO O E latte terse e a e a teo a A E A 52 3 16 2 EmallS MSc soria acia 53 SET CONFIGURATION orar drid iria ipods 54 3 17 1 SAVE RESIOMC ocio a a oA AE traca stented A E oad 54 3 17 2 Bn ie N RING EEE A I E E A I ES EE N O T ae 54 3 107 DIAGNOSTICS r a ET O AA TAAT 55 3 18 1 ME ranere iana a eee adie NA AAEE ANENA NEEE ENRERE 55 3 18 2 LOOpDaCK E tee A ae ee eee 56 3 18 3 PING Teste A snes ea ated clades ATAA els laedee dadec NESEN ACE ENEAN ani 56 S19 TFTP SERVER ee ccecctadecnetine esi beset eet ad odiando
120. ther Enable or Disable the port allowing traffic to pass through it or not Default Enable Mode Sets the speed and duplex of the port If the connection is 1Gbps the speed is always 1000Mbps and the duplex is full only If the media is 10 100Mbps copper the Speed Duplex is comprised of a combination of speed 10 or 100Mbps and duplex mode full duplex or half duplex Mode can also be set to auto negotiation Auto mode Flow Control Either set to Enable or Disable If flow control is set Enable both parties can send PAUSE frames to the transmitting device s if the receiving port is too busy to handle it When it is set Disable there will be no flow control in the port It drops the packet if there is too much traffic to handle Default Enable Wait State For more details about this parameter please refer to section 3 2 1 Default Disable 3 2 3 Simple Counter The Simple Counter page Figure 3 11 displays the basic traffic information for the switch The user can select how often the page refreshes itself and can also click Reset to reset all of the counters Each counter can count up to 20 digits long before automatically resetting to 0 20 Simple Counter Refresh Interval 3 sec E Time elapsed since last reset 1 Days 6 Hours 36 Mins 52 Secs Port No Tx Byte Rx Byte Tx Packet Rx Packet Tx Collision Rx Error Packet 1 3101329 RRE 10713 wera 0 2 1512212 334281 11566 3591 0 3 0 0 0 0 0
121. time will be 30 seconds This affects STP convergent time which will be more than 30 seconds because some other factors Valid values are from 4 30 seconds default is 15 seconds Force Version Both RSTP and STP are supported If STP is chosen RSTP will run as a legacy STP The switch supports RSTP 802 1w which is backwards compatible with STP 802 1d 3 133 Port The STP Port Configuration page Figure 3 43 allows the user to configure STP settings for each port You can disable and enable each port and also set Path Cost Priority Admin Edge Port and Admin Point To Point for each port STP Port Configuration Port No Port Status Path Cost Status A Path Cost Priority Admin STD Port Admin Point To Point 1 DISCARDING 2000000 128 Auto 2 DISCARDING 2000000 5 128 Ne Auto 3 DISCARDING 2000000 0 128 No Auto 4 DISCARDING 2000000 0 128 No Auto 5 DISCARDING 2000000 0 128 No Auto 6 DISCARDING 2000000 0 128 No Auto z DISCARDING 2000000 o 128 No Auto 8 DISCARDING 2000000 0 128 No Auto Feit Figure 3 43 STP Port Configuration Page Port Status Displays the current state of a port as defined by 802 1w The three states are e Discarding state indicates that this port can neither forward packets nor contribute learning knowledge Note that three other states disable state blocking state and listening state defined in the 802 1d specification are now all represented as the discarding state e Learning stat
122. tizing traffic based on the 8 bit Service Type field in each packet as defined by the IETF for differentiated services Under the differentiated services interpretation the first six bits comprise a codepoint which is sometimes abbreviated DSCP and the last two bits are left unused IP DiffServ Classification allows you to select the prioritization level high or low based on the DiffServ field value which ranges from 0 to 63 This works similarly to VLAN Tag priority Click Apply to save your settings IP Differentiated Services DiffServ Configuration DiffServ DiffServ Class Ww N EE Sa gt gt EIA N a A lt Ez 2 lt 2 7 7 KIRI 5 W W High High High L BH D p al e E I S lt u w g a N i DiffServ NIN iy Y La g L J u 38 42 46 54 58 62 DiffServ High Y High v High v qe S gt lt a High Y i High v 2 High High Y 35 sJalw w pa f pa JO mN pa High Y High y High High v High Y High y High fagao Figure 3 21 IP DiffServ Configuration 3 6 SNMP Configuration The SNMP Configuration page Figure 3 23 allows the user to configure the SNMP settings for the switch Any Network Management System NMS running the Simple Network Management Protocol SNMP can manage the switch provided that the Management Information Base MI
123. ts None Example SS2GD8I management show Hed Name Tom VIantib lt 2 LP 192 168 1 30 192 168 4 80 Type SNMP Action Deny Port 1 2 100 gt max pkt len set len Syntax set len lt port range gt lt length gt Description Sets the maximum length of the packet that each port can accept Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt length bytes gt maximum packet length can be 1518 1532 or 9208 Example SS2GD8I max pkt len set len 1 8 9208 show Syntax show Description Shows the current maximum packet length setting Arguments None Example SS2GD8I max pkt len show PORT Max Packet Length 1532 1532 1532 1532 1532 1532 1532 1532 0 o OY Ol ae 0 N7 E gt mirror set mirror mode Syntax set mirror mode lt mode gt Description Sets the mode of port mirroring Arguments lt mode gt can be rx to enable mirroring or disable to disable it Example SS2GD8I mirror set mirror mode rx 101 set monitored port Syntax set monitored port lt port range gt Description Sets which port s will be monitored Packets received by this port will be copied to the monitoring port Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 Example SS2GD8I m
124. tus Page None y None y None z None z None z None y dlalalalalalalall on O n A WN qu i Method Determines the method a port uses to aggregate with other ports None means the port does is not aggregated with any other port LACP means the port is using LACP as its trunk method to become aggregated with other ports also using LACP Static means the port is using Static Trunk as its trunk method to become aggregated with other ports also using Static Trunk Group Ports using the same trunking method other than None must be assigned the same unique Group number in order to declare that they wish to aggregate with each other Valid values are from 1 to 8 Active LACP This is used when a port s trunking method is LACP An Active LACP port begins to send LACPDU to its link partner right after the LACP protocol entity starts to take control of this port A Passive LACP port will not actively send LACPDU out until it receives an LACPDU from its link partner Aggtr Aggtr is an abbreviation of aggregator Every port is also an aggregator and its own aggregator ID is the same as its own Port No The aggregator is the main port for each trunk Ports with same Group ID and using same trunking method will have the opportunity to aggregate to a particular aggregator port This aggregator port is usually the port with the smallest Port No within the trunking group Statu
125. ty VLAN TAG Priority For VLAN Tag Priority Figure 3 17 you can set the mapping of VLAN tags to the two priority levels in the switch VLAN Tags support up to 8 values using a combination of three binary numbers That is 000 represent 0 001 represents 1 010 represents 2 and so forth Each of these levels can be mapped to either High or Low priority to be used by the switch You can either set the mapping for all of the ports at the same time or do it per port by selecting the port to configure on the left Click Apply to save the changes VLAN Tag Priority LAN Tag Priority Classes St SS Bit2 Biti Bito Class 0 0 High z Al y A 5 0 0 1 0 Low y 0 1 1 Low y 1 0 0 Low y 1 0 1 Low y 1 il 0 Low y 1 1 1 Low y Figure 3 17 VLAN Tag Priority 26 Quality of Service ToS Configiruation Quality of Service ToS Configuration Figure 3 18 works similarly to VLAN Tag Priority except that the ToS field bits 5 7 of the packet is used instead of the QOS field in the VLAN tag The mapping works in the same way mapping high or low priority to the value of the ToS field Quality of Service QoS ToS Configuration TCP IP ToS Classes Port Bit2 Biti ito Class AT 0 0 0 Low y 0 0 1 Low y 0 1 0 Low y 0 1 1 Low y uf 0 0 Low y 1 0 1 Low y il 1 0 Low y 1 1 1 Low y Figure 3 18 Quality of Service ToS Configuraiton Quality of Service Layer 4 Configuration Quality of Ser
126. u to enable or disable GVRP Join Time The Join Time in centiseconds one hundredths of a second Valid time range is between 20 100 default is 20 Leave Time The Leave Time in centiseconds Valid time range is between 60 300 default is 60 Leave All Time A time period for announcements that all registered devices are going to be de registered If someone issues a new join then the registration will be kept in the switch Valid range is from 1000 5000 default is 1000 Default Applicant Mode Sets the type of participant either normal participant or non participant In normal mode the switch participates normally in GARP protocol exchanges In non participant mode the switch does not send or reply to any GARP messages It just listens to messages and reacts to the received GVRP BPDU The default setting is Normal Default Registrar Mode Sets the type of registrar either normal registrar fixed registrar and forbidden registrar In normal mode the registrar responds normally to incoming GARP messages In fixed mode the Registrar ignores all GARP messages and all members remain in the registered IN state In forbidden mode the registrar ignores all GARP messages and all members remain in the unregistered EMPTY state The default setting is Normal Restricted Mode Used to restrict dynamic VLANs from being created when this port receives a GVRP PDU If disabled the switch s dynamic VLAN will be created when this port receive
127. ve The cable installed in the building is defective The connection has come loose on either end The port is defective Q amp A Computer A can connect to Computer B but cannot connect to Computer C through the switch There are many possibilities for this issue including The network device on Computer C may be defective Check the Link Act status of the port connected to Computer C on the switch Try connecting Computer C to another port and try another connecting another device to this port to ensure the port is not defective The network configuration on Computer C may be incorrect Verify that the network settings e g IP address subnet mask on Computer C are correct A software firewall on Computer C e g ZoneAlarm Windows Firewall Norton Firewall is preventing access to the computer Computer A and Computer C are set up on separate VLANs on the switch and therefore cannot communicate with each other User is unable to access the CLI through the console port Check the following The COM port default parameters are Baud Rate 57600 Data Bits 8 Parity Bits None Stop Bit A Flow Control None Verify the COM port parameters in the terminal program Check the RS 232 cable is not damaged and is connected properly into the console port on the switch and the serial port of the computer Check if the COM of the PC is enabled 126 Appendix A Technical Specifications Features 6 10 100 1000Mbps
128. vice Layer 4 Configuration Figure 3 19 works by prioritizing traffic based on the TCP or UDP port used For your convenience there are predefined groups of ports that are commonly used by certain applications You can also define your own priorities for different port ranges in the advanced mode as well by clicking the Advance gt gt button Quality of Service QoS Layer 4 Configuration Disable IP TCP UDP Port Classification C Down prioritize web browsing e mail FTP and news C Prioritize IP Telephony VoIP C Prioritize iSCSI Prioritize web browsing e mail FTP transfers and news Prioritize Streaming Audio Video C Prioritize Databases Oracle IBM DB2 SQL Microsoft Advance gt gt Figure 3 19 QoS Simple Mode 27 Description of options Down prioritize web browsing e mail FTP and news sets traffic on ports 80 280 443 25 110 20 21 69 119 and 2009 to low priority Prioritize IP Telephony VoIP sets traffic on ports 1718 1719 and 1720 to high priority Prioritize SCSI sets traffic on ports 3225 3260 and 3420 to high priority Prioritize web browsing e mail FTP and news sets traffic on ports 80 280 443 25 110 20 21 69 119 and 2009 to high priority Prioritize Streaming Audio Video sets traffic on ports 2979 1755 7070 7071 554 8000 to high priority Prioritize Databases Oracle IBM DB2 SQL Microsoft sets traffic on ports 66 1571 1575 523 118 156 3306 1232 14
129. xample SS2GD8I port show detail counter 5 104 show sfp Syntax show sfp lt port gt Description Displays information on the SFP module Arguments lt port gt SFP port can be 7 or 8 Example SS2GD8I port show sfp 7 Port 7 SFP information Connector Type SEP S Lie Fiber Type Multi mode MM Tx Central Wavelength 850 Baud Rate 5 16 Vendor OUI 00 40 c7 Vendor Name APAC Opto Vendor PN KM28 C3S TC N Vendor Rev 0000 Vendor SN 5425010708 Date Code 050530 Temperature none Vcc none Monl Bias mA none Mon2 TX PWR none Mon3 RX PWR none show simple counter Syntax show simple counter Description Displays the simple counter for each port Arguments None Example SS2GD8I port show simple counter show status Syntax show status Description Displays the current status of the ports Arguments None Example SS2GD8I port show status 105 gt qos set advance layer4 Syntax set advance layer4 lt port range gt lt gt lt tcp udp port gt lt default gt lt match gt Description Sets the class of ports on advanced mode for Layer 4 QoS Arguments lt port range gt which ports to change can be a single port e g 1 or a range of ports e g 5 7 range from 1 8 lt gt special UDP TCP port selection range from 1 10 lt tcp udp port range gt TCP UDB port range from 0 65535 lt default gt default class all ot
Download Pdf Manuals
Related Search