manualshive.com logo in svg

Dell 48 Port Gigabit Ethernet Switch, User Manual

Introducing the Dell 48 Port Gigabit Ethernet Switch - the perfect solution for expanding your network capabilities. With lightning-fast speeds and reliable performance, this device is ideal for both small businesses and large enterprises. Access the comprehensive User Manual for free, simply download it from manualshive.com, and unlock the full potential of your Dell switch.

Share
Download
background image

Dell™ PowerConnect™ 34XX Systems

User’s Guide

Summary of Contents for 48 Port Gigabit Ethernet Switch

Page 1: ...Dell PowerConnect 34XX Systems User s Guide ...

Page 2: ...ange without notice 2005 Dell Inc All rights reserved Reproduction in any manner whatsoever without the written permission of Dell Inc is strictly forbidden Trademarks used in this text Dell Dell OpenManage the DELL logo and PowerConnect are trademarks of Dell Inc Microsoft and Windows are registered trademarks of Microsoft Corporation Other trademarks and trade names may be used in this document ...

Page 3: ...ng Members 25 Switching from the Stack Master to the Backup Stack Master 27 Features Overview 28 Power over Ethernet 28 Head of Line Blocking 28 Flow Control Support IEEE 802 3X 28 Back Pressure Support 28 Virtual Cable Testing VCT 28 MDI MDIX Support 29 Auto Negotiation 29 MAC Address Supported Features 29 Layer 2 Features 30 VLAN Supported Features 31 Spanning Tree Protocol Features 31 Link Aggr...

Page 4: ...n System 47 3 Installing the PowerConnect 3424 P and PowerConnect 3448 P Site Preparation 49 Unpacking 49 Package Contents 49 Unpacking the Device 50 Mounting the Device 50 Installing in a Rack 50 Installing on a Flat Surface 51 Installing the Device on a Wall 52 Connecting to a Terminal 53 Connecting a Device to a Power Supply 54 Installing a Stack 54 Overview 54 Stacking PowerConnect 3400 Series...

Page 5: ...FTP Server 73 Port Default Settings 76 Auto Negotiation 76 MDI MDIX 76 Flow Control 76 Back Pressure 76 Switching Port Default Settings 77 5 Using Dell OpenManage Switch Administrator Starting the Application 79 Understanding the Interface 79 Device Representation 81 Using the Switch Administrator Buttons 82 Information Buttons 82 Device Management Buttons 82 Field Definitions 83 Accessing the Dev...

Page 6: ...og Parameters 122 Viewing the RAM Log Table 126 Viewing the Log File Table 128 Viewing the Device Login History 130 Modifying Remote Log Server Definitions 132 Defining IP Addressing 135 Defining Default Gateways 135 Defining IP Interfaces 137 Defining DHCP IP Interface Parameters 140 Configuring Domain Name Systems 142 Defining Default Domains 145 Mapping Domain Host 146 Defining ARP Settings 149...

Page 7: ...2 Management File Overview 212 Downloading Files 213 Uploading Files 215 Activating Image Files 218 Copying Files 219 Managing Device Files 221 Configuring General Settings 223 7 Configuring Switch Information Configuring Network Security 225 Port Based Authentication 225 Configuring Port Based Authentication 227 Configuring Advanced Port Based Authentication 231 Authenticating Users 235 Configuri...

Page 8: ... Defining VLAN Ports Settings 305 Defining VLAN LAGs Settings 307 Binding MAC Address to VLANs 310 Configuring GVRP Parameters 312 Configuring Private VLANs 315 Aggregating Ports 319 Defining LACP Parameters 319 Defining LACP Parameters 320 Defining LAG Membership 322 Multicast Forwarding Support 324 Defining Multicast Global Parameters 324 Adding Bridge Multicast Address Members 326 Assigning Mul...

Page 9: ...N Events Log 362 Defining RMON Device Alarms 363 Viewing Charts 367 Viewing Port Statistics 367 Viewing LAG Statistics 369 Viewing the CPU Utilization 371 9 Configuring Quality of Service Quality of Service QoS Overview 373 CoS Services 374 Defining QoS Global Parameters 375 Configuring QoS Global Settings 375 Defining QoS Interface Settings 377 Mapping CoS Values to Queues 379 Mapping DSCP Values...

Page 10: ...e 2 3 PowerConnect 3448 Front Panel 38 Figure 2 4 PowerConnect 3448 Back Panel 39 Figure 2 5 Console Port 39 Figure 2 6 RJ 45 Copper Based 10 100 BaseT LEDs 40 Figure 2 7 RJ 45 1000 BaseT LED 41 Figure 2 8 SFP Port LEDs 43 Figure 2 9 System LEDs 44 Figure 2 10 Stacking LEDs 45 Figure 2 11 Power Connection 46 Figure 3 1 Bracket Installation for Rack Mounting 51 Figure 3 2 Bracket Installation for M...

Page 11: ... 9 SNTP Authentication 114 Figure 6 10 Add Authentication Key 115 Figure 6 11 Authentication Key Table 115 Figure 6 12 SNTP Servers 117 Figure 6 13 Add SNTP Server 118 Figure 6 14 SNTP Servers Table 118 Figure 6 15 SNTP Interface Settings 120 Figure 6 16 Add SNTP Interface 121 Figure 6 17 Global Log Parameters 123 Figure 6 18 RAM Log Table 126 Figure 6 19 Log File Table 128 Figure 6 20 Login Histo...

Page 12: ...es 152 Figure 6 37 Optical Transceiver 154 Figure 6 38 Access Profiles 157 Figure 6 39 Add an Access Profile 158 Figure 6 40 Add an Access Profile Rule 159 Figure 6 41 Profile Rules Table 160 Figure 6 42 Authentication Profiles 163 Figure 6 43 Add Authentication Profile 165 Figure 6 44 Select Authentication 167 Figure 6 45 Password Management 171 Figure 6 46 Local User Database 173 Figure 6 47 Add...

Page 13: ... 65 Add SNMPv3 User Name 200 Figure 6 66 User Security Model Table 201 Figure 6 67 SNMPv1 2 Community 202 Figure 6 68 Add SNMP Community 203 Figure 6 69 Notification Filter 205 Figure 6 70 Add Filter 206 Figure 6 71 Filter Table 206 Figure 6 72 Notification Recipients 208 Figure 6 73 Add Notification Recipients 210 Figure 6 74 Notification Recipients Tables 210 Figure 6 75 File Download from Serve...

Page 14: ...on Table 249 Figure 7 14 LAG Configuration 252 Figure 7 15 LAG Configuration Table 254 Figure 7 16 Storm Control 257 Figure 7 17 Storm Control Settings Table 258 Figure 7 18 Port Mirroring 261 Figure 7 19 Static MAC Address Table 264 Figure 7 20 Dynamic MAC Address 267 Figure 7 21 GARP Timers 270 Figure 7 22 Spanning Tree Global Settings 274 Figure 7 23 Spanning Tree Port Settings 280 Figure 7 24 ...

Page 15: ... Bridge Multicast Group 327 Figure 7 42 Add Bridge Multicast Group 328 Figure 7 43 Bridge Multicast Forward All 331 Figure 7 44 IGMP Snooping 334 Figure 8 1 Utilization Summary 337 Figure 8 2 Counter Summary 339 Figure 8 3 Interface Statistics 340 Figure 8 4 Etherlike Statistics 343 Figure 8 5 GVRP Statistics 345 Figure 8 6 EAP Statistics 349 Figure 8 7 RMON Statistics 352 Figure 8 8 RMON History ...

Page 16: ...seT LED Indications 42 Table 2 3 PowerConnect 3424 and PowerConnect 3448 RJ 45 Copper based 100BaseT LED Indications 43 Table 2 4 SFP Port LED Indications 43 Table 2 5 System LED Indicators 44 Table 2 6 Stacking LED Indications 45 Table 4 7 Port Default Settings 77 Table 5 8 Interface Components 80 Table 5 9 PowerConnect Port and Stacking Indicators 81 Table 5 10 Information Buttons 82 Table 5 11 ...

Page 17: ... CLI Commands 129 Table 6 28 Log File Table CLI Commands 131 Table 6 29 Remote Log Server CLI Commands 134 Table 6 30 Default Gateway CLI Commands 136 Table 6 31 IP Interface Parameters CLI Commands 139 Table 6 32 DHCP IP Interface CLI Commands 141 Table 6 33 DNS Server CLI Commands 144 Table 6 34 DNS Domain Name CLI Commands 146 Table 6 35 Domain Host Name CLI Commands 148 Table 6 36 ARP Settings...

Page 18: ...MP Community CLI Commands 211 Table 6 55 File Download CLI Commands 215 Table 6 56 File Upload CLI Commands 217 Table 6 57 File Upload CLI Commands 219 Table 6 58 Copy Files CLI Commands 220 Table 6 59 Copy Files CLI Commands 222 Table 6 60 General Settings CLI Commands 224 Table 7 61 Port Authentication CLI Commands 230 Table 7 62 Multiple Hosts CLI Commands 234 Table 7 63 Add User Name CLI Comma...

Page 19: ...rt to VLAN Group Assignments CLI Commands 303 Table 7 83 LAG VLAN Assignments CLI Commands 308 Table 7 84 Binding MAC address to VLANs CLI Commands 311 Table 7 85 GVRP Global Parameters CLI Commands 313 Table 7 86 Private VLAN CLI Commands 318 Table 7 87 LACP Parameters CLI Commands 321 Table 7 88 LAG Membership CLI Commands 324 Table 7 89 Multicast Filtering and Snooping CLI Commands 326 Table 7 ...

Page 20: ...able 8 102 Device Event Definition CLI Commands 361 Table 8 103 Device Event Definition CLI Commands 363 Table 8 104 Device Alarm CLI Commands 366 Table 8 105 Port Statistic CLI Commands 369 Table 8 106 LAG Statistic CLI Commands 370 Table 9 107 CoS to Queue Mapping Table Default values 373 Table 9 108 DSCP to Queue Mapping Table Default Values 374 Table 9 109 QoS Settings CLI Commands 377 Table 9...

Page 21: ...8P PowerConnect 3424 The PowerConnect 3424 provides 24 10 100Mbps ports plus two SFP ports and two Copper ports which can be used to forward traffic in a stand alone device or as stacking ports when the device is stacked The device also provides one RS 232 console port The PowerConnect 3424 is a stackable device but also operates as a stand alone device PowerConnect 3424P The PowerConnect 3424P pr...

Page 22: ...nnect 3448 P stacking provides multiple switch management through a single point as if all stack members are a single unit All stack members are accessed through a single IP address through which the stack is managed The stack is managed from a Web based interface SNMP Management Station Command Line Interface CLI PowerConnect 3424 P and PowerConnect 3448 P devices support stacking up to six units...

Page 23: ...tacking member must be repaired to ensure the stacking integrity After the stacking issues are resolved the device can be reconnected to the stack without interruption and the Ring topology is restored Stacking Failover Topology If a failure occurs in the stacking topology the stack reverts to Stacking Failover Topology In the Stacking Failover topology devices operate in a chain formation The Sta...

Page 24: ...present and neither has been manually configured as the Master the one with the longer up time is elected as the Stack Master If two Master enabled units are present and both have been manually configured as the Master the one with the longer up time is elected as the Stack Master If the two Master enabled stacking members are the same age Unit 1 is elected as the Stack Master NOTE Two stacking me...

Page 25: ...ystem reboots the Startup Configuration file in the Master unit is used to configure the stack If a stack member is removed from the stack and then replaced with a unit with the same Unit ID the stack member is configured with the original device configuration Only ports which are physically present are displayed in the PowerConnect OpenManage Switch Administrator home page and can be configured t...

Page 26: ...igurations remain the same The remaining ports receive the default port configuration Figure 1 5 PowerConect 3424 P port replaces PowerConnect 3448 P port If a PowerConnect 3424 P replaces PowerConnect 3448 P the PowerConnect 3424 P 24 FE ports receives the first 24 FE PowerConnect 3448 P port configuration The GE port configurations remain the same Same Configuration Same Configuration Same Confi...

Page 27: ...rom the stack Links from the Stack Master to the stacking members fails A soft switchover is performed with either via web interface or the CLI Switching between the Stack Master and the Backup Master results in a limited service loss Any dynamic tables are relearned if a failure occurs The running configuration file is synchronized between Stack Master and the Backup Master and continues running ...

Page 28: ... egress port resources HOL blocking queues packets and the packets at the head of the queue are forwarded before packets at the end of the queue Flow Control Support IEEE 802 3X Flow control enables lower speed devices to communicate with higher speed devices by requesting that the higher speed device refrains from sending packets Transmissions are temporarily halted to prevent buffer overflows Fo...

Page 29: ...vertisement Port advertisement allows the system administrator to configure the port speeds that are advertised For more information on auto negotiation see Defining Port Configuration or Defining LAG Parameters MAC Address Supported Features MAC Address Capacity Support The device supports up to 8K MAC addresses The device reserves specific MAC addresses for system use Static MAC Entries MAC entr...

Page 30: ...meters Layer 2 Features IGMP Snooping IGMP Snooping examines IGMP frame contents when they are forwarded by the device from work stations to an upstream Multicast router From the frame the device identifies work stations configured for Multicast sessions and which Multicast routers are sending Multicast frames For more information see IGMP Snooping Port Mirroring Port mirroring monitors and mirror...

Page 31: ...ces GVRP Support GARP VLAN Registration Protocol GVRP provides IEEE 802 1Q compliant VLAN pruning and dynamic VLAN creation on 802 1Q trunk ports When GVRP is enabled the device registers and propagates VLAN membership on all ports that are part of the active underlying Spanning Tree Protocol Features topology For more information see Configuring GVRP Parameters Private VLANs Private VLAN ports a ...

Page 32: ...provides differing load balancing scenario Packets assigned to various VLANs are transmitted along different paths within MSTP Regions MST Regions Regions are one or more MSTP bridges by which frames can be transmitted The standard lets administrators assign VLAN traffic to unique paths For more information see Configuring the Spanning Tree Protocol Link Aggregation Link Aggregation Up to eight Ag...

Page 33: ...ation on SNMP Alarms and Traps see Defining SNMP Parameters SNMP Versions 1 2 and 3 Simple Network Management Protocol SNMP over the UDP IP protocol controls access to the system a list of community entries is defined each of which consists of a community string and its access privileges There are 3 levels of SNMP security read only read write and super Only a super user can access the community t...

Page 34: ...ed examined and acted upon The system sends notifications of significant events in real time and keeps a record of these events for after the fact usage For more information on Syslog see Managing Logs SNTP The Simple Network Time Protocol SNTP assures accurate network Ethernet Switch clock time synchronization up to the millisecond Time synchronization is performed by a network SNTP server Time s...

Page 35: ... a locked port and the frame source MAC address is not tied to that port the protection mechanism is invoked For more information see Configuring Port Security RADIUS Client RADIUS is a client server based protocol A RADIUS server maintains a user database which contains per user authentication information such as user name password and accounting information For more information see Configuring R...

Page 36: ...P HTTPS and SNMP access are assigned security features For more information on Password Management see Managing Passwords Additional CLI Documentation The CLI Reference Guide which is available on the Documentation CD provides information about the CLI commands used to configure the device The document provides information about the command description syntax default values guidelines and examples...

Page 37: ...3424 front panel Figure 2 1 PowerConnect 3424 Front Panel The front panel contains 24 RJ 45 ports number 1 24 The upper row of ports is marked with odd numbers 1 23 and the lower row of ports is marked with even numbers 2 24 In addition the front panel also contains ports G1 G2 which are fiber ports and ports G3 G4 which are copper ports Ports G3 G4 can either be used as stacking ports or used to ...

Page 38: ... FE ports RJ 45 ports designated as 10 100Base T ports 2 Fiber ports Designated as 1000Base X SFP ports 2 Gigabit ports Designated as 1000Base T ports Console port RS 232 Console based port The following figure illustrates the PowerConnect 3448 front panel Figure 2 3 PowerConnect 3448 Front Panel The front panel contains 48 RJ 45 ports number 1 48 The upper row of ports is marked by odd numbers 1 ...

Page 39: ...erConnect 3448 back panel Figure 2 4 PowerConnect 3448 Back Panel The back panel contains an RPS connector console port and power connector SFP Ports The Small Form Factor Plugable SFP ports are a Two Wire Serial Interface TWSI for communication via a Complex Programmable Logic Device CPLD which is designated as 1000Base SX or LX RS 232 Console Port One DB 9 connector for a terminal connection is ...

Page 40: ...t emitting diodes LED that indicate the status of links power supplies fans and system diagnostics Port LEDs Each 10 100 1000 Base T port and 10 100 Base T port has two LEDs The speed LED is located on the left side of the port while the link duplex activity LED is located on the right side The following figure illustrates the 10 100 Base T port LEDs on The PowerConnect 3424 P and PowerConnect 344...

Page 41: ...100BaseT LED Indications LED Color Description Link Activity Speed Green Static The port is running at 100 Mbs Green Flashing The port is either transmitting or receiving data at 100 Mbps Yellow Static The port is running at 10 Mbs Yellow Flashing The port is either transmitting or receiving data at 10 Mbps OFF The port is currently not operating FDX Green Static The port is currently operating in...

Page 42: ... Static The Powered Device PD is detected and is operating at normal load For more information about Powered Devices see Managing Power over Ethernet Green Flashing The port is operating at transitional mode The PD is being detected or is faulty For more information about Power over Ethernet see Managing Power over Ethernet Amber Static An overload or short has occurred on the Powered Device For m...

Page 43: ...00BaseT LED Indications LED Color Description Link Activity Speed Green Static The port is running at 1000 Mbs Green Flashing The port is either transmitting or receiving data at 1000 Mbps Yellow Static The port is running at 10 or 100Mbs Yellow Flashing The port is either transmitting or receiving data at 10 or 100 Mbps OFF The port is currently not operating FDX Green Static The port is currentl...

Page 44: ... Static The RPS is currently operating Red Static The RPS failed OFF The redundant power supply is not plugged in Redundant Power Supply RPS models 3424P and 3448P Green Static The RPS is currently operating OFF The redundant power supply has failed or is not plugged in Diagnostics DIAG Green Flashing The system diagnostic test is currently in progress Green Static The system diagnostic test passe...

Page 45: ...onnect 3424 P and PowerConnect 3448 P devices have an internal power supply 12 Volt Operation with both power supply units is regulated through load sharing Power supply LEDs indicate the status of the power supply The PowerConnect 3424 P and PowerConnect 3448 P devices have an internal power supply of 470W 12V 48V with a total of 370W for 24 ports PoE device AC Power Supply Unit The AC power supp...

Page 46: ...e external RPS 600 is connected See Table 2 5 for RPS LED definition The PowerConnect 3424 P and PowerConnect 3448 P switches connect to an external EPS 470 unit to provide a redundant power option No configuration is required The front panel RPS LED indicates whether the external EPS 470 is connected See Table 2 5 for RPS LED definition Figure 2 11 Power Connection When the device is connected to...

Page 47: ...Unit ID of the Master unit the third member is 3 and the fourth Stack member is 4 NOTE The device does not automatically detect a stand alone unit If a Unit ID has already been selected press the Stack ID button several times until no stacking LED is lit Reset Button The PowerConnect 3424 P and PowerConnect 3448 P switches have a reset button located on the front panel for manual reset of the devi...

Page 48: ...48 Hardware Description w w w d e l l c o m s u p p o r t d e l l c o m ...

Page 49: ...E Models The RPS is currently installed by checking that the PoE LEDs on the front panel are illuminated Clearance There is adequate frontal clearance for operator access Allow clearance for cabling power connections and ventilation Cabling The cabling is routed to avoid sources of electrical noise such as radio transmitters broadcast amplifiers power lines and fluorescent lighting fixtures Ambien...

Page 50: ...diately Mounting the Device The following mounting instructions apply to The PowerConnect 3424 P and PowerConnect 3448 P devices The Console port is on the back panel The power connectors are positioned on the back panel Connecting a Redundant Power Supply RPS is optional but is recommended The RPS connector is on the back panel of the devices Installing in a Rack CAUTION Read the Safety Informati...

Page 51: ...into the 48 26 cm 19 inch rack ensuring that the rack mounting holes on the device line up to the mounting holes on the rack 5 Secure the unit to the rack with the rack screws not provided Fasten the lower pair of screws before the upper pair of screws Ensure that the ventilation holes are not obstructed Installing on a Flat Surface The device must be installed on a flat surface if it is not insta...

Page 52: ...ure 3 2 Bracket Installation for Mounting on a Wall 2 Insert the supplied screws into the rack mounting holes and tighten with a screwdriver 3 Repeat the process for the wall mounting bracket on the other side of the device 4 Place the device on the wall in the location where the device is being installed 5 On the wall mark the locations where the screws to hold the device must be prepared 6 Drill...

Page 53: ...necting to a Terminal 1 Connect an RS 232 crossover cable to the ASCII terminal or the serial connector of a desktop system running terminal emulation software 2 Connect the female DB 9 connector at the other end of the cable to the device serial port connector Front Panel Drilled Holes Wall Drilled Holes ...

Page 54: ...cted and operating correctly by examining the LEDs on the front panel Installing a Stack Overview Each device can operate as a stand alone device or can be a member in a stack Up to six devices or up to 192 ports are supported per stack All stacks must have a Master unit and may have a Master Backup unit with any other devices connected to the stack as Members Stacking PowerConnect 3400 Series Swi...

Page 55: ...vice in the stack and into port G4 of the device immediately below it in the stack Repeat this process until all devices are connected Connect the bottommost device s port G3 in the stack to port G4 of the uppermost device in the stack Figure 3 5 Stacking Cable Diagram NOTE In stacking mode ports designated as G3 and G4 are not displayed in the EWS The effect is of not being present on the device ...

Page 56: ...aster and Backup Master unit and unit ID 3 to 6 are for Member units Unit ID Selection Process The unit ID selection process is as follows 1 Ensure that the stand alone Master device Console port is connected to a VT100 terminal device or VT100 terminal emulator via the RS 232 crossover cable 2 Locate an AC power receptacle 3 Deactivate the AC power receptacle 4 Connect the device to the AC recept...

Page 57: ...fore proceeding read the release notes for this product Download the release notes from the Dell Support website at support dell com NOTE It is recommended that you obtain the most recent revision of the user documentation from the Dell Support website at support dell com Connecting to the Device To configure the device the device must be connected to a console However if the device is part of a s...

Page 58: ...000 Service Pack 2 or later installed With Windows 2000 Service Pack 2 the arrow keys function properly in HyperTerminal s VT100 emulation Go to www microsoft com for information on Windows 2000 service packs 8 Connect the female connector of the RS 232 crossover cable directly to the device Console port on the Master unit stand alone device and tighten the captive retaining screws The PowerConnec...

Page 59: ...e device external connections are completed a terminal is connected to the device to monitor the boot and other procedures The order of installation and configuration procedures is illustrated in the following figure NOTE Before proceeding read the release notes for this product Download the release notes from support dell com ...

Page 60: ...etected the program flow stops If POST passes successfully a valid executable image is loaded into RAM POST messages are displayed on the terminal and indicate test success or failure The boot process runs approximately 30 seconds Connect Device and Console Power On Susepnd Bootup Yes Press Esc Startup Menu Special Functions Reboot No Loading Program from flash to RAM Enter Wizard Yes No Initial C...

Page 61: ...device configuration and gets the device up and running as quickly as possible NOTE Obtain the following information from the network administrator before configuring the device The IP address to be assigned to the VLAN 1 interface through which the device is to be managed by default every port is a member of the VLAN 1 The IP subnet mask for the network The default gateway next hop router IP addr...

Page 62: ...d from the BootP server NOTE You can exit the Setup Wizard at any time by entering ctrl z Wizard Step 1 The following is displayed The system is not setup for SNMP management by default To manage the switch using SNMP required for Dell Network Manager you can Setup the initial SNMP version 2 account now Return later and setup additional SNMP v1 v3 accounts For more information on setting up SNMP a...

Page 63: ...unt is used to login to the CLI and Web interface You may setup other accounts and change privilege levels later For more information on setting up user accounts and changing privilege levels see the user documentation To setup a user account Enter the user name 1 20 admin Please enter the user password Please reenter the user password Enter the following User name for example admin Password and p...

Page 64: ...llowing is displayed as per the example parameters described This is the configuration information that has been collected SNMP Interface Dell_Network_Manager 0 0 0 0 User Account setup admin Password Management IP address 1 1 1 1 255 255 255 0 Default Gateway 1 1 1 2 Wizard Step 5 The following is displayed If the information is correct please select Y to save the configuration and copy to the st...

Page 65: ...trieve an IP address the device acts as a DHCP client When the device is reset the DHCP command is saved in the configuration file but the IP address is not To retrieve an IP address from a DHCP server perform the following steps 1 Select and connect any port to a DHCP server or to a subnet that has a DHCP server on it in order to retrieve the IP address 2 Enter the following commands to use the s...

Page 66: ...d and the ip address dhcp command is saved in the configuration file In the event of master failure the backup will again attempt to retrieve a DHCP address This could result in one of the following The same IP address may be assigned A different IP address may be assigned which could result in loss of connectivity to the management station The DHCP server may be down which would result in IP addr...

Page 67: ...e is now configured with an IP address Security Management and Password Configuration System security is handled through the Authentication Authorization and Accounting AAA mechanism that manages user access rights privileges and management methods AAA uses both local and remote user databases Data encryption is handled through the SSH mechanism The system is delivered with no default password con...

Page 68: ...er the following commands console config aaa authentication login default line console config aaa authentication enable default line console config line console console config line login authentication default console config line enable authentication default console config line password george When initially logging on to a device through a terminal session enter george at the password prompt Whe...

Page 69: ...ter the following commands console config ip http authentication local console config username admin password user1 level 15 Configuring an initial HTTPS password To configure an initial HTTPS password enter the following commands console config ip https authentication local console config username admin password user1 level 15 Enter the following commands once when configuring to use a terminal a...

Page 70: ... Built 06 Jan 2005 14 46 49 Carrier board based on PPC8247 128 MByte SDRAM I Cache 16 KB D Cache 16 KB Cache Enabled Autoboot in 2 seconds press RETURN or Esc to abort and enter prom 2 When the auto boot message appears press Enter to get the Startup menu The Startup menu procedures can be done using the ASCII terminal or Windows HyperTerminal 1 Download Software 2 Erase Flash File 3 Password Reco...

Page 71: ...sion is Base Mac address is 00 00 b0 45 54 00 Dram size is 128M bytes Dram first block size is 36864K bytes Dram first PTR is 0x1C00000 Flash size is 16M Loading running configuration Number of configuration items loaded 5 Loading startup configuration Number of configuration items loaded 5 Device configuration Slot 1 PowerConnect 3424 HW Rev 0 0 Unit Number 1 Standalone BOXP_high_appl_init dpssIp...

Page 72: ...tion 2 In some cases the device configuration must be erased If the configuration is erased all parameters configured via CLI EWS or SNMP must be reconfigured To erase the device configuration 1 From the Startup menu press 2 within two seconds to erase flash file The following message is displayed Warning About to erase a Flash file Are you sure Y N y 2 Press Y The following message is displayed W...

Page 73: ...efore downloading the software System Image Download The device boots and runs when decompressing the system image from the flash memory area where a copy of the system image is stored When a new image is downloaded it is saved in the other area allocated for the other system image copy On the next boot the device will decompress and run from the currently active system image unless chosen otherwi...

Page 74: ...ssing file file1 on 176 215 31 3Ö Loading file1 from 176 215 31 3 Copy took 00 01 11 hh mm ss Exclamation symbols indicate that a copying process is in progress Each symbol corresponds to 512 bytes transferred successfully A period indicates that the copying process is timed out Many periods in a row indicate that the copying process failed 6 Select the image for the next boot by entering the boot...

Page 75: ...that the file to be downloaded is saved on the TFTP server the rfb file 3 Enter the show version command to verify which software version is currently running on the device The following is an example of the information that appears console show version SW version 1 0 0 30 date 27 Jan 2005 time 13 42 41 Boot version 1 0 0 05 date 27 Jan 2005 time 15 12 20 HW version 4 Enter the copy tftp tftp addr...

Page 76: ... results in the station attempting to operate in half duplex MDI MDIX The device supports auto detection of straight through and crossed cables on all switching 10 100 1000BaseT ports The feature is part of the Auto negotiation and is enabled when Auto negotiation is enabled When the MDI MDIX Media Dependent Interface with Crossover is enabled the automatic correction of errors in cable selection ...

Page 77: ...s Table 4 7 Port Default Settings Function Default Setting Port speed and mode 10 100BaseT copper auto negotiation 100 Mbps full duplex 10 100 1000BaseT copper SFP auto negotiation1000 Mbps full duplex Port forwarding state Enabled Port tagging No tagging Flow Control Off disabled on ingress Back Pressure Off disabled on ingress ...

Page 78: ...78 Configuring PowerConnect 3424 P and 3448 P w w w d e l l c o m s u p p o r t d e l l c o m ...

Page 79: ...e address bar and press Enter 3 When the Log In window displays enter a user name and password NOTE Passwords are both case sensitive and alpha numeric 4 Click OK The Dell OpenManage Switch Administrator home page displays Understanding the Interface The home page contains the following views Tree view Located on the left side of the home page the tree view provides an expandable view of the featu...

Page 80: ...dragging the vertical bar to the right the tree area can be expanded to display the full name of a component 2 The device view provides information about device ports current configuration and status table information and feature components Depending on the option selected the area at the bottom of the device view displays other device information and or dialogs for configuring parameters 3 The co...

Page 81: ...nnect Port and Stacking Indicators NOTE The Port LEDs are not reflected in PowerConnect front panel in the OpenManage Switch Administrator LED status can only be determined by viewing the actual device However the Stacking LEDs reflect the Stacking port status For more information about LEDs see LED Definitions Component Description Port Indicators Green The port is currently enabled Red An error ...

Page 82: ...rt page at support dell com Help Online help that contains information to assist in configuring and managing the device The online help pages are context sensitive For example if the IP Addressing page is open the help topic for that page displays when Help is clicked About Contains the version and build number and Dell copyright information Log Out Opens the Log Out window Table 5 11 Device Manag...

Page 83: ...the device is connected to the device prior to beginning using CLI commands For information about configuring an initial IP Address see Initial Configuration NOTE Ensure that the software has been downloaded to the device before using the CLI to remotely access the device Terminal Connection 1 Power on the device and wait until the startup is complete 2 When the Console prompt displays type enable...

Page 84: ...minal prompt displays a list of commands available for that particular command mode In each mode a specific command is used to navigate from one command mode to another During the CLI session initialization the CLI mode is the User EXEC mode Only a limited subset of commands are available in the User EXEC mode This level is reserved for tasks that do not change the terminal configuration and is us...

Page 85: ...ting parameters Passwords are displayed on the screen and are case sensitive To access and list the Privileged EXEC mode commands 1 At the prompt type enable and press Enter 2 When a password prompt displays enter the password and press Enter The Privileged EXEC mode prompt displays as the device host name followed by For example console To list the Privileged EXEC commands type a question mark at...

Page 86: ...isplays as the device host name followed by config and the pound sign console config To list the Global Configuration commands enter a question mark at the command prompt To return from Global Configuration mode to Privileged EXEC mode type the exit command or use the Ctrl Z key combination The following example illustrates how to access Global Configuration mode and return back to the Privileged ...

Page 87: ...uring System Information This section provides information for defining system parameters including security features downloading switch software and resetting the switch To open the System page click System in the tree view Figure 6 1 System ...

Page 88: ...t in the tree view Figure 6 2 Asset The Asset page contains the following fields System Name 0 159 Characters Defines the user defined device name System Contact 0 159 Characters Indicates the name of the contact person System Location 0 159 Characters The location where the system is currently running MAC Address Indicates the device MAC address Sys Object ID The vendor s authoritative identifica...

Page 89: ...ommands The following table summarizes the equivalent CLI commands for viewing and setting fields displayed in the Asset page Table 6 12 Asset CLI Commands CLI Command Description hostname name Indicates or modifies the device host name snmp server contact text Sets up a system contact snmp server location text Enters information on where the device is located clock set hh mm ss day month year Man...

Page 90: ...config hostname dell dell config snmp server contact Dell_Tech_Supp dell config snmp server location New_York dell config exit Console config snmp server host 10 1 1 1 management 2 Console clock set 13 32 00 7 Mar 2002 Console show clock 15 29 03 Jun 17 2002 console show system id Service tag Serial number 51 Asset tag console show system System Description Ethernet Switch System Up Time days hour...

Page 91: ...emperature Celsius 30 Temperature Sensor Status OK console show system id Unit Serial number Asset tag Service tag 1 893658972 mkt 1 89788978 2 893658973 mkt 2 89788979 3 893658974 mkt 3 89788980 4 893658975 mkt 4 89788981 5 893658976 mkt 5 89788982 6 893658977 mkt 6 89788983 console show system Unit Type 1 PowerConnect 3424 2 PowerConnect 3424 3 PowerConnect 3428 4 PowerConnect 3424P 5 PowerConne...

Page 92: ...it Main Power Supply Redundant Power Supply 1 OK 2 OK 3 OK 4 OK OK 5 OK OK 6 OK OK Unit Fan1 Fan2 Fan3 Fan4 Fan5 1 OK OK 2 OK OK 3 OK OK 4 OK OK OK OK OK 5 OK OK OK OK OK 6 OK OK OK OK OK Unit Temperature Celsius Temperature Sensor Status 1 30 OK 2 30 OK 3 30 OK 4 30 OK 5 30 OK 6 30 OK ...

Page 93: ...he 3rd Saturday in March During the period of Daylight Saving Time Brazilian clocks go forward one hour in most of the Brazilian southeast Chile Easter Island 9th March 12th October The first Sunday in March or after 9th March China China does not operate Daylight Saving Time Canada From the first Sunday in April until the last Sunday of October Daylight Saving Time is usually regulated by provinc...

Page 94: ...land From the first Sunday in October until the first Sunday on or after 15th March Norway Last weekend of March until the last weekend of October Paraguay From 6th April until 7th September Poland Last weekend of March until the last weekend of October Portugal Last weekend of March until the last weekend of October Romania Last weekend of March until the last weekend of October Russia Last weeke...

Page 95: ...Indicates that the system time is not set by an external source Local Settings Date Defines the system date The field format is DD MMM YY for example 04 May 50 Local Time Defines the system time The field format is HH MM SS for example 21 15 03 Time Zone Offset The difference between Greenwich Mean Time GMT and local time For example the Time Zone Offset for Paris is GMT 1 00 while the local time ...

Page 96: ... are Date The date at which DST begins The possible field range is 1 31 Month The month of the year in which DST begins The possible field range is Jan Dec Year The year in which the configured DST begins Time The time at which DST begins The field format is Hour Minute for example 05 30 To Defines the time that DST ends in countries other than USA or Europe in the format DD MMM YY in one field an...

Page 97: ...the year in which DST ends every year The possible field range is Jan Dec Time The time at which DST ends every year The field format is Hour Minute for example 05 30 Selecting a Clock Source 1 Open the Time Synchronization page 2 Define the Clock Source field 3 Click Apply Changes The Clock source is selected and the device is updated Defining Local Clock Settings 1 Open the Time Synchronization ...

Page 98: ...es offset zone acronym Sets the time zone for display purposes clock summer time Configures the system to automatically switch to summer time Daylight Savings Time clock summer time recurring usa eu week day month hh mm week day month hh mm offset offset zone acronym Configures the system to automatically switch to summer time according to the USA and European standards clock summer time date date...

Page 99: ...y The power supply is not operating normally Not Present The power supply is currently not present Fan Status The non PoE devices have two fans while the PoE devices have five fans Each fan is denoted as fan plus the fan number in the interface The possible field values are The fan is operating normally The fan is not operating normally Not Present A fan is currently not present Temperature The te...

Page 100: ... command Table 6 14 Celsius to Fahrenheit Conversion Table Celsius Fahrenheit 0 32 5 41 10 50 15 59 20 68 25 77 30 86 35 95 40 104 Table 6 15 System Health CLI Command CLI Command Description show system unit unit Displays system information Console show system System Description Ethernet switch System Up Time days hour min sec 1 22 38 21 System Contact System Name RS1 System location System MAC A...

Page 101: ... power from the PowerConnect power supplies for example IP phones Powered Devices are connected to the PowerConnect device via Ethernet ports Powered devices are connected via either all PowerConnect 3424P s 24 FE ports or all PowerConnect 3448P s 48 FE ports To open the Power Over Ethernet page click System General Power over Ethernet in the tree view Unit Sensor Temperature Celsius Status 1 1 41...

Page 102: ...upply unit is not functioning Faulty Indicates that the power supply unit is functioning but an error has occurred For example a power overload or a short circuit Nominal Power Indicates the actual amount of power the device can supply The field value is displayed in Watts Consumed Power Indicates the amount of the power used by the device The field value is displayed in Watts System Usage Thresho...

Page 103: ...ested to confirm it is receiving power from the power supply Searching Indicates that the PowerConnect device is currently searching for a powered device Searching is the default PoE operational status Fault Indicates that the PowerConnect device has detected a fault on the powered device For example the powered device memory could not be read Power Priority Level Determines the port priority if t...

Page 104: ...Invalid Signature Counter Indicate the times an invalid signature was received Signatures are the means by which the powered device identifies itself to the PSE Signatures are generated during powered device detection classification or maintenance Defining PoE Settings 1 Open the Power Over Ethernet page 2 Define the fields 3 Click Apply Changes PoE settings are defined and the device is updated M...

Page 105: ...s Consumed Power 120 Watts 80 Usage Threshold 95 Traps Enabled Port Powered Device State Priority Status Classification W 1 e1 IP Phone Model A Auto High On 0 44 12 95 2 e1 Wireless AP Model Auto Low On 0 44 3 84 3 e1 Auto Low Off N A Console show power inline ethernet 1 e1 Port Powered Device State Priority Status Classification W 1 1e IP Phone Model A Auto High On 0 44 12 95 Overload Counter 1 S...

Page 106: ...e following fields Unit No Indicates the unit number for which the device versions are displayed Software Version The current software version running on the device Boot Version The current Boot version running on the device Hardware Version The current device hardware version Displaying Device Versions Using the CLI The following table summarizes the equivalent CLI commands for viewing fields dis...

Page 107: ...vice This prevents the current device configuration from being lost For more information about saving Configuration files see Managing Files Unit No on Top First stack member number Possible values are Master and 1 6 Unit No on Bottom Second stack member number Possible values are Master and 1 6 Switch Stack Control from Unit 1 to Unit 2 Enables switching from the current stack Master to the backu...

Page 108: ... 2 Define the stack topology by defining the top and bottom units These units should be neighbors 3 Click Apply Changes The display order is reconfigured on the System page Managing Stacks Using the CLI Commands The following table summarizes the equivalent CLI commands for viewing fields displayed in the Stack Management page The following is an example of the CLI commands Table 6 18 Stack Manage...

Page 109: ...Resetting the Device 1 Open the Reset page 2 Select a unit in the Reset Unit Number field 3 Click Apply Changes A confirmation message displays 4 Click OK The device is reset After the device is reset a prompt for a user name and password is displayed 5 Enter a user name and password to reconnect to the Web Interface Resetting the Device Using the CLI The following table summarizes the equivalent ...

Page 110: ...m SNTP servers is evaluated based on the Time level and server type SNTP time definitions are assessed and determined by the following time levels T1 The time at which the original request was sent by the client T2 The time at which the original request was received by the server T3 The time at which the server sent the client a reply T4 The time at which the client received the server s reply The...

Page 111: ...t every poll interval If Unicast Anycast and Broadcast polling are enabled the information is retrieved in this order Information from servers defined on the device is preferred If Unicast polling is not enabled or if no servers are defined on the device the device accepts time information from any SNTP server that responds If more than one Unicast device responds synchronization information is pr...

Page 112: ... to the SNTP servers for Broadcast server time information on the selected interfaces when enabled Receive Anycast Servers Updates Polls the SNTP server for Anycast server time information when enabled If both the Receive Anycast Servers Update and the Receive Broadcast Servers Update fields are enabled the system time is set according the Anycast server time information Receive Unicast Servers Up...

Page 113: ...ttings are applied Defining SNTP Global Parameters Using CLI Commands The following table summarizes the equivalent CLI commands for setting fields displayed in the SNTP Global Settings page The following is an example of the CLI commands Table 6 20 SNTP Global Parameters CLI Commands CLI Command Description sntp broadcast client enable Enables SNTP Broadcast clients sntp anycast client enable Ena...

Page 114: ...ation The SNTP Authentication page contains the following SNTP Authentication Enables authenticating an SNTP session between the device and an SNTP server when enabled Encryption Key ID Defines the Key Identification used to authenticate the SNTP server and device The field value is up to 4294967295 Authentication Key 1 8 Characters The key used for authentication Trusted Key Indicates the encrypt...

Page 115: ...tion Key Table 1 Open the SNTP Authentication page 2 Click Show All The Authentication Key Table opens Figure 6 11 Authentication Key Table Deleting the Authentication Key 1 Open the SNTP Authentication page 2 Click Show All The Authentication Key Table opens 3 Select an Authentication Key Table entry 4 Select the Remove check box 5 Click Apply Changes The entry is removed and the device is update...

Page 116: ...w SNTP servers from the SNTP Servers page To open the SNTP Servers page click System SNTP Servers in the tree view Table 6 21 SNTP Authentication CLI Commands CLI Command Description sntp authenticate Defines authentication for received Simple Network Time Protocol SNTP traffic from servers sntp trusted key Authenticates the identity of a system to which SNTP will synchronize sntp authentication k...

Page 117: ...formation The possible field values are Primary The primary server provides SNTP information Secondary The backup server provides SNTP information Status The operating SNTP server status The possible field values are Up The SNTP server is currently operating normally Down Indicates that a SNTP server is currently not available For example the SNTP server is currently not connected or is currently ...

Page 118: ...server Remove Removes a specific SNTP server from the SNTP Servers list when selected Adding an SNTP Server 1 Open the SNTP Servers page 2 Click Add The Add SNTP Server page opens Figure 6 13 Add SNTP Server 3 Define the fields 4 Click Apply Changes The SNTP Server is added and the device is updated Displaying the SNTP Server Table 1 Open the SNTP Servers page 2 Click Show All The SNTP Servers Tab...

Page 119: ...n SNTP Server entry 4 Select the Remove check box 5 Click Apply Changes The entry is removed and the device is updated Defining SNTP Servers Settings Using CLI Commands The following table summarizes the equivalent CLI commands for setting fields displayed in the SNTP Server page The following is an example of the CLI commands Table 6 22 SNTP Server CLI Commands CLI Command Description sntp server...

Page 120: ...P Interface Settings The SNTP Interface Settings page contains the following fields Unit No Indicates the stacking member on which the SNTP interface is enabled Interface Contains an interface list on which SNTP can be enabled Receive Servers Updates Enables or disables SNTP on the specific interface Remove Removes SNTP from a specific interface when selected Adding an SNTP Interface 1 Open the SN...

Page 121: ...the interface in order to define it as an Anycast or Broadcast interface The following is an example of the CLI commands for displaying SNTP interfaces Table 6 23 SNTP Interface Settings CLI Commands CLI Command Description sntp client enable Enables the Simple Network Time Protocol SNTP client on an interface show sntp configuration Shows the configuration of the Simple Network Time Protocol SNTP...

Page 122: ...for all error reporting For example Syslog and local device reporting messages are assigned a severity code and include a message mnemonic which identifies the source application generating the message It allows messages to be filtered based on their urgency or relevancy The distribution of logging messages to the various destinations such as the logging buffer logging file or Syslog server is con...

Page 123: ...click System Logs Global Parameters in the tree view Figure 6 17 Global Log Parameters Severity Type Severity Level Description Emergency 0 The system is not functioning Alert 1 The system needs immediate attention Critical 2 The system is in a critical state Error 3 A system error has occurred Warning 4 A system warning has occurred Notice 5 The system is functioning properly but system notice ha...

Page 124: ... saved if there is a serious device malfunction for example an attempt was made to download a non existing configuration file Critical The third highest warning level A critical log is saved if a critical device malfunction occurs for example two device ports are not functioning while the rest of the device ports remain functional Error A device error has occurred for example a copy operation has ...

Page 125: ...bles error message logging logging ip address hostname port port severity level facility facility description text Logs messages to a syslog server For a list of the Severity levels see Log Severity Levels on page 123 logging console level Limits messages logged to the console based on severity logging buffered level Limits syslog messages displayed from an internal buffer RAM based on severity lo...

Page 126: ... Log Table click System Logs RAM Table in the tree view Figure 6 18 RAM Log Table The RAM Log Table contains the following fields Log Index The log number in the RAM Log Table Log Time Indicates the time at which the log was entered into the RAM Log Table Severity Indicates the log severity Description Description of the log entry Removing Log Information 1 Open the RAM Log Table 2 Click Clear Log...

Page 127: ...al buffer clear logging Clears logs console show logging Logging is enabled Console Logging Level info Console Messages 0 Dropped Buffer Logging Level info Buffer Messages 26 Logged 26 Displayed 200 Max File Logging Level error File Messages 157 Logged 26 Dropped 1 messages were not logged 01 Jan 2000 01 03 42 INIT I Startup Cold Startup 01 Jan 2000 01 01 36 LINK W Down 1 e14 01 Jan 2000 01 01 36 ...

Page 128: ... the log was entered the log severity and a description of the log message To open the Log File Table click System Logs File Table in the tree view Figure 6 19 Log File Table The Log File Table contains the following fields Log Index The log number in the Log File Table Log Time Indicates the time at which the log was entered in the Log File Table Severity Indicates the log severity Description Th...

Page 129: ...logging file Clears messages from the logging file console show logging file Logging is enabled Console Logging Level info Console Messages 0 Dropped Buffer Logging Level info Buffer Messages 62 Logged 62 Displayed 200 Max File Logging Level debug File Messages 11 Logged 51 Dropped SysLog server 12 1 1 2 Logging warning Messages 14 Dropped SysLog server 1 1 1 1 Logging info Messages 0 Dropped 01 J...

Page 130: ...ontains the following fields User Name Contains a user defined device user name list Login History Status Indicates if password history logs are enabled on the device Login Time Indicates the time the selected user logged on to the device User Name Indicates the user that logged on to the device Protocol Indicates the means by which the user logged on to the device Location Indicates the IP addres...

Page 131: ... commands Table 6 28 Log File Table CLI Commands CLI Command Description show users login history Displays password management history information console show users login history Login Time Username Protocol Location Jan 1 2005 23 58 17 Anna HTTP 172 16 1 8 Jan 1 2005 07 59 23 Errol HTTP 172 16 0 8 Jan 1 2005 08 23 48 Amy Serial Jan 1 2005 08 29 29 Alan SSH 172 16 0 8 Jan 1 2005 08 42 31 Bob HTTP...

Page 132: ...port to which the logs are sent for the selected server The possible range is 1 65535 The default value is 514 Facility Defines a user defined application from which system logs are sent to the remote server Only one facility can be assigned to a single server If a second facility level is assigned the first facility level is overridden All applications defined for a device utilize the same facili...

Page 133: ... is updated Defining a New Server 1 Open the Remote Log Server Settings page 2 Click Add The Add a Log Server page opens Figure 6 22 Add a Log Server The Add a Log Server page contains the additional field New Log Server IP Address Defines the IP address of the new Log Server 3 Define the fields 4 Click Apply Changes The server is defined and added to the Available Servers list Displaying the Remo...

Page 134: ...the server s 5 Click Apply Changes The Log Servers Table entry is removed and the device is updated Working with Remote Server Logs Using the CLI Commands The following table summarizes the equivalent CLI command for working with remote log servers Table 6 29 Remote Log Server CLI Commands CLI Command Description logging ip address hostname port port severity level facility facility description te...

Page 135: ...terfaces To open the Default Gateway page click System IP Addressing Default Gateway in the tree view console enable console configure console config logging 10 1 1 1 severity critical console config end console show logging Logging is enabled Console Logging Level debug Console Messages 5 Dropped Buffer Logging Level debug Buffer Messages 16 Logged 16 Displayed 200 Max File Logging Level error Fi...

Page 136: ...teway is selected and the device is updated Removing a Device s Default Gateway Device 1 Open the Default Gateway page 2 Select the Remove check box to remove default gateways 3 Click Apply Changes The default gateway entry is removed and the device is updated Defining a Device s Gateway Using the CLI Commands The following table summarizes the equivalent CLI commands for setting fields displayed ...

Page 137: ...he following parameters IP Address The interface IP address Prefix Length The number of bits that comprise the source IP address prefix or the network mask of the source IP address Source Interface The interface type for which the IP address is defined Select Port LAG or VLAN Type Indicates whether or not the IP address was configured statically Remove When selected removes the interface from the ...

Page 138: ... IP Address Parameters 1 Open the IP Interfaces Parameters page 2 Select an IP address in the IP Address drop down menu 3 Modify the interface type 4 Click Apply Changes The parameters are modified and the device is updated Deleting IP Addresses 1 Open the IP Interfaces Parameters page 2 Click Show All The IP Interface Parameters Table page opens Figure 6 26 IP Interface Parameter Table 3 Select a...

Page 139: ... ip address mask prefix length Sets an IP address no ip address ip address Removes an IP address show ip interface ethernet interface number vlan vlan id port channel number Displays the usability status of interfaces configured for IP console config interface vlan 1 console config if ip address 92 168 1 123 255 255 255 0 console config if no ip address 92 168 1 123 console config if end console s...

Page 140: ...re 6 27 DHCP IP Interface The DHCP IP Interface page contains the following fields Interface The specific interface connected to the device Click the option button next to Port LAG or VLAN and select the interface connected to the device Host Name The host name Remove When selected removes DHCP clients Adding DHCP Clients 1 Open the DHCP IP Interface page 2 Click Add The Add DHCP IP Interface page...

Page 141: ...ve check box 5 Click Apply Changes The selected entry is deleted and the device is updated Defining DHCP IP Interfaces Using CLI Commands The following table summarizes the equivalent CLI commands for defining DHCP clients The following is an example of the CLI command Table 6 32 DHCP IP Interface CLI Commands CLI Command Description ip address dhcp hostname host name To acquire an IP address on a...

Page 142: ... activating specific DNS servers To open the Domain Naming System DNS page click System IP Addressing Domain Naming System DNS in the tree view Figure 6 28 Domain Naming System DNS The Domain Naming System DNS page contains the following fields DNS Status Enables or disables translating DNS names into IP addresses DNS Server Contains a list of DNS servers DNS servers are added to the Add DNS Serve...

Page 143: ...Displaying the DNS Servers Table 1 Open the Domain Naming System DNS page 2 Click Show All The DNS Server Table opens Figure 6 30 DNS Server Table Removing DNS Servers 1 Open the Domain Naming System DNS page 2 Click Show All The DNS Server Table page opens 3 Select a DNS Server Table entry 4 Select the Remove checkbox 5 Click Apply Changes The selected DNS server is deleted and the device is upda...

Page 144: ...ss Sets the available name servers Up to eight name servers can be set no ip name server server address Removes a name server ip domain name name Defines a default domain name that the software uses to complete unqualified host names clear host name Deletes entries from the host name to address cache show hosts name Displays the default domain name list of name server hosts the static and the cach...

Page 145: ...6 31 Default Domain Name The Default Domain Name page contains the following fields Default Domain Name 1 158 characters Contains a user defined default domain name When defined the default domain name is applied to all unqualified host names Type The IP address type The possible field values are Dynamic The IP address is created dynamically Static The IP address is a static IP address Remove When...

Page 146: ...is page one IP address per host can be assigned To open the Host Name Mapping page click System IP Addressing Host Name Mapping in the tree view Figure 6 32 Host Name Mapping Table 6 34 DNS Domain Name CLI Commands CLI Command Description ip domain name name Defines a default domain name that the software uses to complete unqualified host names no ip domain name Disable the use of the Domain Name ...

Page 147: ...alues are Dynamic The IP address is created dynamically Static The IP address is a static IP address Remove Host Name When checked removes the DNS Host Mapping Adding Host Domain Names 1 Open the Host Name Mapping page 2 Click Add The Add Host Name Mapping page opens Figure 6 33 Add Host Name Mapping 3 Define the relevant fields 4 Click Apply Changes The IP address is mapped to the Host Name and t...

Page 148: ...t Names Using the CLI Commands The following table summarizes the equivalent CLI commands for mapping Domain Host names to IP addresses The following is an example of the CLI commands Table 6 35 Domain Host Name CLI Commands CLI Command Description ip host name address Defines the static host name to address mapping in the host cache no ip host name Removes the name to address mapping clear host n...

Page 149: ...P global settings ARP Entry Age Out 1 40000000 For all devices the amount of time seconds that passes between ARP requests about an ARP table entry After this period the entry is deleted from the table The range is 1 40000000 The default value is 60000 seconds Clear ARP Table Entries The type of ARP entries that are cleared on all devices The possible values are None ARP entries are not cleared Al...

Page 150: ...try Remove ARP Entry When selected removes an ARP entry Adding a Static ARP Table Entry 1 Open the ARP Settings page 2 Click Add The Add ARP Entry page opens 3 Select an interface 4 Define the fields 5 Click Apply Changes The ARP Table entry is added and the device is updated Displaying the ARP Table 1 Open the ARP Settings page 2 Click Show All The ARP Table page opens Deleting ARP Table Entry 1 ...

Page 151: ...ort channel number Adds a permanent entry in the ARP cache arp timeout seconds Configures how long an entry remains in the ARP cache clear arp cache Deletes all dynamic entries from the ARP cache show arp Displays entries in the ARP Table no arp Removes an ARP entry from the ARP Table console config arp 198 133 219 232 00 00 0c 40 0f bc console config arp timeout 12000 console config exit console ...

Page 152: ...urred The tests use Time Domain Reflectometry TDR technology to test the quality and characteristics of a copper cable attached to a port Cables up to 120 meters long can be tested Cables are tested when the ports are in the down state with the exception of the Approximated Cable Length test To open the Copper Cables page click System Diagnostics Copper Cable in the tree view Figure 6 36 Copper Ca...

Page 153: ...er Cables page 2 Click Show All The Integrated Cable Test Results Table page opens NOTE This screen displays the results of tests that have been previously run but does not actually perform the test on all ports now In addition to the fields in the Copper Cables page the Integrated Cable Test Results Table contains the following field Unit No The unit number for which the cable is displayed Perfor...

Page 154: ...le length measurement does not operate for 10 Mbps links Viewing Optical Transceiver Diagnostics Use the Optical Transceiver page to perform tests on Fiber Optic cables To open the Optical Transceiver page click System Diagnostics Optical Transceiver in the tree view NOTE Optical transceiver diagnostics can be performed only when the link is present Figure 6 37 Optical Transceiver console enable C...

Page 155: ...tics Test Results Table 1 Open the Optical Transceiver page 2 Click Show All The test runs and the Optical Transceiver Diagnostics Table page opens In addition to the fields in the Optical Transceiver page the Optical Transceiver Diagnostics Table contains the following field Unit No The unit number for which the cable is displayed N A Not Available N S Not Supported W Warning E Error NOTE Finisar...

Page 156: ...ely defined for each type of management access method including Web HTTP Secure Web HTTPS Telnet and Secure Telnet Access to different management methods may differ between user groups For example User Group 1 can access the device only via an HTTPS session while User Group 2 can access the device via both HTTPS and Telnet sessions Management Access Lists contain up to 256 rules that determine whi...

Page 157: ... Active Activates an access profile Remove Removes an access profile from the Access Profile Name list when selected Activating a Profile 1 Open the Access Profiles page 2 Select an Access Profile in the Access Profile field 3 Select the Set Access Profile Active check box 4 Click Apply Changes The Access Profile is activated Adding an Access Profile Rules act as filters for determining rule prior...

Page 158: ... Table Management Method The management method for which the access profile is defined Users with this access profile are denied or permitted access to the device from the selected management method line Interface The interface type to which the rule applies This is an optional field This rule can be applied to a selected port LAG or VLAN by selecting the check box then selecting the appropriate o...

Page 159: ...n the Access Profile page 2 Click Add Rule to Profile The Add an Access Profile Rule page opens Figure 6 40 Add an Access Profile Rule 3 Complete the fields 4 Click Apply Changes The rule is added to the access profile and the device is updated Viewing the Profile Rules Table NOTE The order in which rules appear in the Profile Rules Table is important Packets are matched to the first rule which me...

Page 160: ...ent CLI commands for setting fields displayed in the Access Profiles page Table 6 39 Access Profiles CLI Commands CLI Command Description management access list name Defines an access list for management and enters the access list context for configuration permit ethernet interface number vlan vlan id port channel number service service Sets port permitting conditions for the management access lis...

Page 161: ...mber vlan vlan id port channel number service service Sets port denying conditions for the management access list and the selected management method management access class console only name Defines which access list is used as the active management connections show management access list name Displays the active management access lists show management access class Displays information about manag...

Page 162: ...it ethernet 1 e2 console config macl deny ethernet 1 e3 console config macl deny ethernet 1 e4 console config macl exit console config management access class mlist console config exit console show management access list mlist permit ethernet 1 e1 permit ethernet 1 e2 deny ethernet 1 e3 deny ethernet 1 e4 Note all other access implicitly denied Console show management access class Management acces...

Page 163: ...S server If the authentication fails using the first method the authentication process ends If an error occurs during the authentication the next selected method is used To open the Authentication Profiles page click System Management Security Authentication Profiles in the tree view Figure 6 42 Authentication Profiles The Authentication Profiles page contains the following fields Authentication P...

Page 164: ...on occurs at the TACACS server Restore Default Restores the default user authentication method on the device Available for default profile only Remove Removes the selected profile when selected Active profiles can not be deleted Available for user defined profiles only Selecting an Authentication Profile 1 Open the Authentication Profiles page 2 Select a profile in the Authentication Profile Name ...

Page 165: ...the device Displaying the Authentication Profiles Table 1 Open the Authentication Profiles page 2 Click Show All The Authentication Profiles Table page opens Deleting an Authentication Profile 1 Open the Authentication Profiles page 2 Click Show All The Authentication Profile Table page opens 3 Select an authentication profile 4 Select the Remove check box 5 Click Apply Changes The selected authen...

Page 166: ... Access methods For example console users can be authenticated by Authentication Method List 1 while Telnet users are authenticated by Authentication Method List 2 To open the Select Authentication page click System Management Security Select Authentication in the tree view Table 6 40 Authentication Profile CLI Commands CLI Command Description aaa authentication login default list name method1 met...

Page 167: ...d EXEC mode from the console interface Telnet Authentication profiles used to authenticate Telnet users Secure Telnet SSH Authentication profiles used to authenticate Secure Shell SSH users SSH provides clients with secure and encrypted remote connections to a device HTTP and Secure HTTP Authentication method used for HTTP access and Secure HTTP access respectively Possible field values are None N...

Page 168: ... List Applying an Authentication Profile to Secure Telnet SSH Sessions 1 Open the Select Authentication page 2 Select an Authentication Profile in the Secure Telnet SSH field 3 Click Apply Changes Secure Telnet SSH sessions are assigned an Authentication Profile Assigning HTTP Sessions an Authentication Sequence 1 Open the Select Authentication page 2 Select an authentication sequence in the HTTP ...

Page 169: ...thentication method list for a remote Telnet Console or SSH ip http authentication method1 method2 Indicates authentication methods for HTTP servers ip https authentication method1 method2 Indicates authentication methods for HTTPS servers show authentication methods Displays information about the authentication methods console config line enable authentication default console config line login au...

Page 170: ...the device displays a password expiration warning message After the password has expired users can login three additional times During the three remaining logins an additional warning message displays informing the user that the password must be changed immediately If the password is not changed users are locked out of the system and can only log in using the console Password warnings are logged i...

Page 171: ...0 NOTE The user is notified before the password expires and that it must be changed However this notification is not displayed to the Web user Enable Login Attempts When checked enables locking a user out of the device when a faulty password is used more than a user defined number of times For example if this field is checked configured to 5 and a user attempts to log on five times with an incorre...

Page 172: ...ord min length length Defines the minimum password length password history number Defines the amount of times a password is changed before the password can be reused password lock out number Defines the number of times a faulty password is entered before the user is locked out of the device show password configuration Displays password management information console show passwords configuration Mi...

Page 173: ...rds and access levels To open the Local User Database page click System Management Security Local User Database in the tree view Figure 6 46 Local User Database Line Password Aging Password Expiry date Lockout Telnet SSH Console console show users accounts Username Privilege Password Aging Password Expiry Date Lockout nim 15 39 18 Feb 2005 ...

Page 174: ...s the expiration date of the user defined password Lockout Status Specifies the number of failed authentication attempts since the user last logged in successfully when the Enable Login Attempts checkbox is selected in the Password Management page Specifies LOCKOUT when the user account is locked Reactivate Suspended User Reactivate the specified user s access rights when selected Access rights ca...

Page 175: ... 1 Open the Local User Database page 2 Click Show All The Local User Table opens Figure 6 48 Local User Table Reactivating a Suspended User 1 Open the Local User Database page 2 Click Show All The Local User Table opens 3 Select a User Name entry 4 Select the Reactivate Suspended User check box 5 Click Apply Changes The user access rights are reactivated and the device is updated ...

Page 176: ...Users Using CLI Commands The following table summarizes the equivalent CLI commands for setting fields displayed in the Local User Database page The following is an example of the CLI commands Table 6 43 Local User Database CLI Commands CLI Command Description username name password password level level encrypted Establishes a username based authentication system set username name active Reactivat...

Page 177: ...ears in the format Line Aging 1 365 for Console Telnet Secure Telnet Indicates the amount of time in days that elapses before a line password is aged out when selected Expiry Date for Console Telnet Secure Telnet Indicates the expiration date of the line password Lockout Status for Console Telnet Secure Telnet Specifies the number of failed authentication attempts since the user last logged in suc...

Page 178: ...for the Telnet sessions is defined and the device is updated Defining Line Passwords for Secure Telnet Sessions 1 Open the Line Password page 2 Define the Secure Telnet Line Password field 3 Click Apply Changes The line password for Secure Telnet sessions is defined and the device is updated Assigning Line Passwords Using CLI Commands The following table summarizes the equivalent CLI commands for ...

Page 179: ...ble password Confirm Password Confirms the new enable password The password appears in the format Enable Password Aging 1 365 Indicates the amount of time in days that elapses before a password is aged out when selected Expiry Date Indicates the expiration date of the enable password Lockout Status Specifies the number of failed authentication attempts since the user last logged in successfully wh...

Page 180: ...ralized user management system while still retaining consistency with RADIUS and other authentication processes TACACS provides the following services Authentication Provides authentication during login and via user names and user defined passwords Authorization Performed at login Once the authentication session is completed an authorization session starts using the authenticated user name The TAC...

Page 181: ...ey must match the encryption key used on the TACACS server This key is encrypted Authentication Port 0 65535 The port number through which the TACACS session occurs The default is port 49 Timeout for Reply 1 30 The amount of time that passes before the connection between the device and the TACACS server times out The field range is 1 30 seconds Status The connection status between the device and t...

Page 182: ...fault source IP address is 0 0 0 0 Key String 0 128 Characters The default key string used for authenticating and encrypting all communications between the device and the TACACS server This key is encrypted Timeout for Reply 1 30 The default time that passes before the device and the TACACS server connection times out The default is 5 seconds Adding a TACACS Server 1 Open the TACACS Settings page ...

Page 183: ... Commands CLI Command Description tacacs server host ip address hostname single connection port port number timeout timeout key key string source source priority priority Indicates a TACACS host tacacs server key key string Indicates the authentication and encryption key for all TACACS communications between the device and the TACACS server This key must match the encryption used on the TACACS dae...

Page 184: ...r RADIUS servers can be defined RADIUS servers provide a centralized authentication method for Telnet Access Secure Shell Access Web Access Console Access To open the RADIUS Settings page click System Management Security RADIUS in the tree view console show tacacs Device Configuration IP address Status Port Single Connection TimeOut Source IP Priority 12 1 1 2 Not Connected 49 Yes 1 12 1 1 1 1 Glo...

Page 185: ...s The possible field values are 1 10 Timeout for Reply 1 30 Indicates the amount of the time in seconds the device waits for an answer from the RADIUS server before retrying the query or switching to the next server The possible field values are 1 30 Dead Time 0 2000 Indicates the amount of time in minutes that a RADIUS server is bypassed for service requests The range is 0 2000 Key String 1 128 C...

Page 186: ...ds Default Dead time 0 2000 Indicates the default amount of time in minutes that a RADIUS server is bypassed for service requests The range is 0 2000 Default Key String 1 128 Characters The Default Key string used for authenticating and encrypting all RADIUS communications between the device and the RADIUS server This key is encrypted Source IP Address Indicates the default source IP address that ...

Page 187: ... 3 Select a RADIUS Servers List entry 4 Select the Remove check box 5 Click Apply Changes The RADIUS server is removed and the device is updated Defining RADIUS Servers Using CLI Commands The following table summarizes the equivalent CLI commands for defining fields displayed on the RADIUS Settings page Table 6 47 RADIUS Server CLI Commands CLI Command Description radius server timeout timeout Set...

Page 188: ...smit retries deadtime deadtime key key string source source priority priority Specifies a RADIUS server host show radius servers Displays the RADIUS server settings Console config radius server timeout 5 Console config radius server retransmit 5 Console config radius server deadtime 10 Console config radius server key dell server Console config radius server host 196 210 100 1 auth port 127 timeou...

Page 189: ...nd SNMPv2 PDUs In addition a User Security Model USM is defined for SNMPv3 which includes Authentication Provides data integrity and data origin authentication Privacy Protects against disclosure message content Cipher Block Chaining CBC is used for encryption Either authentication is enabled on an SNMP message or both authentication and privacy are enabled on an SNMP message However privacy canno...

Page 190: ... be defined before SNMPv3 is enabled For stand alone devices select a default Engine ID that is comprised of Enterprise number and the default MAC address For a stackable system configure the Engine ID and verify that the Engine ID is unique for the administrative domain This prevents two devices in a network from having the same Engine ID Use Defaults Uses the device generated Engine ID The defau...

Page 191: ...r viewing fields displayed in the SNMP Global Parameters page Table 6 48 SNMP Notification Commands CLI Command Description snmp server enable traps Enables the router to send Simple Network Management Protocol traps snmp server trap authentication Enables the router to send Simple Network Management Protocol traps when authentication fails show snmp Checks the status of SNMP communications snmp s...

Page 192: ... Community String Community Access View name IP address public read only view 1 All Community String Group name IP address Type Traps are enabled Authentication failure trap is enabled Version 1 2 notifications Target Address Type Community Version Udp Port Filter name To Sec Retries Version 3 notifications Target Address Type Username Security Level Udp Port Filter name To Sec Retries System Cont...

Page 193: ...o open the SNMPv3 View Settings page click System SNMP View Settings in the tree view Figure 6 58 SNMPv3 View Settings The SNMPv3 View Settings page contains the following fields View Name Contains a list of user defined views The view name can contain a maximum of 30 alphanumeric characters New Object ID Subtree Indicates the device feature OID included or excluded in the selected SNMP view Selec...

Page 194: ...e SNMPv3 View Settings page 2 Click Add The Add A View page opens Figure 6 59 Add A View 3 Define the field 4 Click Apply Changes The SNMP View is added and the device is updated Displaying the View Table 1 Open the SNMPv3 View Settings page 2 Click Show All The View Table page opens Figure 6 60 View Table ...

Page 195: ...MP View CLI Commands CLI Command Description snmp server view view name oid tree included excluded Creates or updates a view entry show snmp views viewname Displays the configuration of views Console config snmp server view user1 1 included Console config end Console show snmp views Name OID Tree Type user1 iso included Default iso included Default snmpVacmMIB excluded Default usmUser excluded Def...

Page 196: ...ns the following fields Group Name The user defined group to whom access control rules are applied The field range is up to 30 characters SNMP Version Defines the SNMP version attached to the group The possible field values are SNMPv1 SNMPv1 is defined for the group SNMPv2 SNMPv2 is defined for the group SNMPv3 SNMPv3 is defined for the group Security Level The security level attached to the group...

Page 197: ...to the assigned SNMP view Notify Sends traps for the assigned SNMP view Defining SNMP Groups 1 Open the Access Control Group page 2 Click Add The Add an Access Control Group page opens Figure 6 62 Add an Access Control Group 3 Define the fields in the Add an Access Control Group page 4 Click Apply Changes The group is added and the device is updated Displaying the Access Table 1 Open the Access Co...

Page 198: ...g table summarizes the equivalent CLI commands for defining fields displayed in the Access Control Group page The following is an example of the CLI commands Table 6 50 SNMP Access Control CLI Commands CLI Command Description snmp server group groupname v1 v2 v3 noauth auth priv read readview write writeview notify notifyview Configure a new Simple Network Management Protocol SNMP group or a table...

Page 199: ... Engine ID Indicates either the local or remote SNMP entity to which the user is connected Changing or removing the local SNMP Engine ID deletes the SNMPv3 User Database Local Indicates that the user is connected to a local SNMP entity Remote Indicates that the user is connected to a remote SNMP entity If the Engine ID is defined remote devices receive inform messages Group Name Contains a list of...

Page 200: ...n key If only authentication is required 16 bytes are defined for MD5 If both privacy and authentication are required 32 bytes are defined for MD5 Each byte in hexadecimal character strings is two hexadecimal digits Each byte can be separated by a period or a colon Privacy Key 16 hexa characters If only authentication is required 20 bytes are defined If both privacy and authentication are required...

Page 201: ...entry 4 Check the Remove checkbox 5 Click Apply Changes The User Security Model Table entry is deleted and the device is updated Defining SNMPv3 Users Using CLI Commands The following table summarizes the equivalent CLI commands for defining fields displayed in the SNMPv3 User Security Model USM page Table 6 51 SNMPv3 User CLI Commands CLI Command Description snmp server user username groupname re...

Page 202: ...P v1 and SNMP v2 To open the SNMPv1 2 Community page click System SNMP Communities in the tree view Figure 6 67 SNMPv1 2 Community The SNMPv1 2 Community page contains the following fields SNMP Management Station The management station IP address for which the SNMP community is defined Community String Functions as a password and used to authenticate the management station to the device console co...

Page 203: ...r defined SNMP views Name Specifies the name of the community used for SNMPv1 v2 Advanced Contains a list of user defined groups When SNMP Advanced mode is selected the SNMP access control rules comprising the group are enabled for the selected community The Advanced mode also enables SNMP groups for specific SNMP communities The SNMP Advanced mode is defined only with SNMPv3 The possible field va...

Page 204: ...alent CLI commands for viewing fields displayed in the SNMPv1 2 Community The following is an example of the CLI commands Table 6 52 SNMP Community CLI Commands CLI Command Description snmp server community community ro rw su ip address view view name Sets up the community access string to permit access to the SNMP protocol snmp server community group community group name ip address Sets up commun...

Page 205: ...contains the following fields Notification Filter Name The user defined notification filter New Object Identifier Tree The OID for which notifications are sent or blocked If a filter is attached to an OID traps or informs are generated and sent to the trap recipients Object IDs are selected from either the Select from List or the Object ID List Notification Filter Type Indicates whether informs or...

Page 206: ...r is added and the device is updated Displaying the Filter Table 1 Open the Notification Filter page 2 Click Show All The Filter Table opens Figure 6 71 Filter Table Removing a Filter 1 Open the Notification Filter page 2 Click Show All The Filter Table opens 3 Select a Filter Table entry 4 Check the Remove checkbox The filter entry is deleted and the device is updated ...

Page 207: ...n example of CLI commands Table 6 53 SNMP Notification Filter CLI Commands CLI Command Description snmp server filter filter name oid tree included excluded Creates or updates an SNMP notification filter show snmp filters filtername Displays the configuration of SNMP notification filters Console config snmp server filter user1 iso included Console config end Console show snmp filters Name OID Tree...

Page 208: ...following services Identifying Management Trap Targets Trap Filtering Selecting Trap Generation Parameters Providing Access Control Checks To open the Notification Recipients page click System SNMP Notification Recipient in the tree view Figure 6 72 Notification Recipients The Notification Recipients page contains the following fields Recipient IP Indicates the IP address to whom the traps are sen...

Page 209: ... means by which the packet is authenticated The possible field values are No Authentication The packet is neither authenticated nor encrypted Authentication The packet is authenticated Privacy The packet is both authenticated and encrypted UDP Port 1 65535 The UDP port used to send notifications The default is 162 Filter Name Includes or excludes SNMP filters Timeout 1 300 The amount of time secon...

Page 210: ...on Recipients 3 Define the relevant fields 4 Click Apply Changes The notification recipient is added and the device is updated Displaying Notification Recipients Tables 1 Open Notification Recipients page 2 Click Show All The Notification Recipients Tables page opens Figure 6 74 Notification Recipients Tables ...

Page 211: ...summarizes the equivalent CLI commands for viewing fields displayed in the Notification Recipients page Table 6 54 SNMP Community CLI Commands CLI Command Description snmp server host ipaddress hostname community string traps informs 1 2 udp port port filter filtername timeout seconds retries retries Creates or updates a notification recipient receiving notifications in SNMP version 1 or 2 snmp se...

Page 212: ...on file are lost During the startup process all commands in the Startup Configuration file are copied to the Running Configuration file and applied to the device During the session all new commands are added to the commands existing in the Running Configuration file To update the Startup Configuration file before powering down the device the Running Configuration file must be copied to the Startup...

Page 213: ...page contains fields for downloading system image and Configuration files from the TFTP server to the device To open the File Download from Server page click System File Management File Download in the tree view Figure 6 75 File Download from Server The File Download from Server page contains the following fields Firmware Download The Firmware file is downloaded If Firmware Download is selected th...

Page 214: ...onfiguration file and overwrites it User Defined Backup Configuration Downloads the user defined Backup Configuration file and overwrites it New File Name Downloads a new backup configuration file can be specified as the destination file NOTE The image file overwrites the non active image It is recommended to designate that the non active image will become the active image after reset and then to ...

Page 215: ...rver page contains fields for uploading the software to the TFTP server from the device The Image file can also be uploaded from the File Upload to Server page To open the File Upload to Server page click System File Management File Upload in the tree view Table 6 55 File Download CLI Commands CLI Command Description copy source url destination url Copies any file from a source to a destination co...

Page 216: ...P Server IP Address to which the Software Image is uploaded Destination File Name 1 159 Characters Indicates the Software Image file path to which the file is uploaded Configuration Upload TFTP Server IP Address The TFTP Server IP Address to which the Configuration file is uploaded Destination File Name 1 159 Characters Indicates the Configuration file path to which the file is uploaded Transfer F...

Page 217: ...e 2 Define the file type to upload 3 Define the fields 4 Click Apply Changes The software is uploaded to the TFTP server Uploading Files Using CLI Commands The following table summarizes the equivalent CLI commands for setting fields displayed in the File Upload to Server page The following is an example of the CLI commands Table 6 56 File Upload CLI Commands CLI Command Description copy source ur...

Page 218: ...s Unit No The unit number for which the Image file is selected Active Image The Image file which is currently active on the unit After Reset The Image file which is active on the unit after the device is reset The possible field values are Image 1 Activates Image file 1 after the device is reset Image 2 Activates Image file 2 after the device is reset Selecting an Image File 1 Open the Active Imag...

Page 219: ...he Copy Files page contains the following fields Copy Configuration When selected copies either the running startup or backup configuration file of the Master file to the destination file Source Indicates the type of file to be copied to the destination file Select either the Running Configuration Startup Configuration or one of the user defined Backup Configuration files Table 6 57 File Upload CL...

Page 220: ...placed by the factory configuration default settings When clear indicates that the current configuration settings should be maintained Copying Files 1 Open the Copy Files page 2 Define the Source and Destination fields 3 Click Apply Changes The file is copied and the device is updated Restoring Company Factory Default Settings 1 Open the Copy Files page 2 Click Restore Configuration Factory Defaul...

Page 221: ...o open the Files on File System page click System File Management File System in the tree view Figure 6 79 Files on File System The Files on File System page contains the following fields File Name Indicates the file currently stored in the file management system Size Indicates the file size Modified Indicates the date the file was last modified console delete startup config Startup file was delet...

Page 222: ...e space currently free Managing Files Using CLI Commands The following table summarizes the equivalent CLI commands for managing system files The following is an example of the CLI commands Table 6 59 Copy Files CLI Commands CLI Command Description dir Display list of files on a flash file system console dir Directory of flash File Name Permis sion Flash Size Data Size Modified 3 txt rw 524288 523...

Page 223: ...ttings page contains a link for configuring general settings The General Settings page provides information for defining general device parameters To open the General Settings page click System Advanced Settings General Settings in the tree view Figure 6 80 General Settings syslog1 sys r 262144 22 Feb 2005 18 49 27 syslog2 sys r 262144 22 Feb 2005 18 49 27 directory prv 262144 06 Feb 2005 17 55 31...

Page 224: ...Log Entries 20 400 The maximum number of RAM Log entries When the Log entries are full the log is cleared and the Log file is restarted Viewing RAM Log Entries Counter Using the CLI Commands The following table summarizes the equivalent CLI commands for setting fields displayed in the General Settings page The following is an example of the CLI commands Table 6 60 General Settings CLI Commands CLI...

Page 225: ...ies the device port which is authenticated before permitting system access Supplicants Specifies host connected to the authenticated port requesting to access the system services Authentication Server Specifies the external server for example the RADIUS server that performs the authentication on behalf of the authenticator and indicates whether the supplicant is authorized to access system service...

Page 226: ...ntication is implemented in the following modes Single Host Mode Only the authorized host can access the port Multiple Host Mode Multiple hosts can be attached to a single port Only one host must be authorized for all hosts to access the network If the host authentication fails or an EAPOL logoff message is received all attached clients are denied access to the network Guest VLANs Provides limited...

Page 227: ...port based authentication on the device The possible field values are Enable Enables port based authentication on the device Disable Disables port based authentication on the device Authentication Method Indicates the Authentication method used The possible field values are None Indicates that no authentication method is used to authenticate the port RADIUS Indicates that port authentication is pe...

Page 228: ...enabled indicates that unauthorized users connected to this interface can access the Guest VLAN Periodic Reauthentication Permits immediate port reauthentication Reauthentication Period 300 4294967295 Indicate the time span in which the selected port is reauthenticated The field value is seconds The field default is 3600 seconds Reauthenticate Now Permits immediate port reauthentication when check...

Page 229: ...llowing fields Unit No Selects a stacking member Copy Parameters from Port No Copies parameters a the selected port Copying parameters in the Port Based Authentication Table 1 Open the page 2 Click Show All The Port Based Authentication Table opens 3 Select the interface in the Copy Parameters from Port No field 4 Select an interface in the Port Based Authentication Table 5 Check the Copy to check...

Page 230: ...out quiet period seconds Sets the number of seconds that the device remains in the quiet state following a failed authentication exchange dot1x timeout re authperiod seconds Sets the number of seconds between re authentication attempts dot1x timeout server timeout seconds Sets the time for the retransmission of packets to the authentication server dot1x timeout supp timeout seconds Sets the time f...

Page 231: ...ports and VLANs For more information on Advanced Port Based Authentication see Advanced Port Based Authentication To open the Multiple Hosts click Switch Network Security Multiple Hosts Figure 7 3 Multiple Hosts Console show dot1x Interface Admin Mode Oper Mode Reauth Control Reauth Period Username 1 e1 Auto Authorized Ena 3600 Bob 1 e2 Auto Authorized Ena 3600 John 1 e3 Auto Unauthorized Ena 3600...

Page 232: ...until they are activated or the switch is reset Traps Enables or disables sending traps to the host if a violation occurs Trap Frequency 1 1000000 Sec Defines the time period by which traps are sent to the host The Trap Frequency 1 1000000 field can be defined only if the Multiple Hosts field is defined as Disable The default is 10 seconds Status The host status The possible field values are Unaut...

Page 233: ...Configuring Switch Information 233 Figure 7 4 Multiple Hosts Table ...

Page 234: ... Command Table 7 62 Multiple Hosts CLI Commands CLI Command Description dot1x multiple hosts Allows multiple hosts clients on an 802 1X authorized port that has the dot1x port control interface configuration command set to auto dot1x single host violation forward discard discard shutdown trap seconds Configures the action to be taken when a station whose MAC address is not the client supplicant MA...

Page 235: ...he following fields User Name List of users authorized via the RADIUS Server Port The port number s used for authentication per user name Session Time The amount of time the user was logged on to the device The field format is Day Hour Minute Seconds for example 3 days 2 hours 4 minutes 39 seconds Authentication Method The method by which the last session was authenticated The possible field value...

Page 236: ...ng Users Using the CLI Commands The following table summarizes the equivalent CLI commands for authenticating users as displayed in the Authenticated Users page The following is an example of the CLI commands console show dot1x users Port Username Session Time Auth Method MAC Address 1 e11 gili 00 09 27 Remote 00 80 c8 b9 dc 1d Table 7 63 Add User Name CLI Commands CLI Command Description show dot...

Page 237: ...ed to that port either it was learned on a different port or it is unknown to the system the protection mechanism is invoked and can provide various options Unauthorized packets arriving to a locked port are either Forwarded Discarded with no trap Discarded with a trap The port is shut down Locked port security also enables storing a list of MAC addresses in the configuration file The MAC address ...

Page 238: ...cked port type The Learning Mode field is enabled only if Locked is selected in the Set Port field The possible field values are Classic Lock Locks the port using the classic lock mechanism The port is immediately locked regardless of the number of addresses that have already been learned Limited Dynamic Lock Locks the port by deleting the current dynamic MAC addresses associated with the port The...

Page 239: ... they are reactivated or the device is reset Trap Enables traps being sent when a packet is received on a locked port Trap Frequency 1 1000000 The amount of time in seconds between traps The default value is 10 seconds Defining a Locked Port 1 Open the Port Security page 2 Select an interface type and number 3 Define the fields 4 Click Apply Changes The locked port is added to the Port Security Ta...

Page 240: ...rt Security CLI Commands CLI Command Description shutdown Disables interfaces set interface active ethernet interface port channel port channel number Reactivates an interface that is shutdown due to port security reasons port security learning disabled dynamic Defines the locked port type port security max max addr Specifies the number of MAC address that can be learned on the port port security ...

Page 241: ...on IP Classification fields are based on L2 fields only The MAC Based ACL page allows a MAC based ACL to be defined For an explanation of ACLs see Defining MAC Based ACLs To open the MAC Based ACL page select Switch Network Security MAC based ACL Figure 7 9 MAC Based ACL The MAC Based ACL page contains the following fields ACL Name User defined ACL New ACE Priority 1 2147483647 Index of the ACE ru...

Page 242: ...d and the device is updated Displaying ACL Specific ACEs 1 Open the MAC Based ACL page 2 Select an ACL 3 Click Show All The ACEs Associated with MAC ACL page opens Removing ACLs 1 Open the MAC Based ACL page NOTE ACLs can be removed only if they are not bound to an interface 2 Select an ACL 3 Click Show All The ACEs Associated with MAC ACL page opens 4 Check the Remove ACL checkbox ...

Page 243: ...CEs to ACLs as displayed in the MAC Based ACL page Table 7 65 MAC Based ACE CLI Commands CLI Command Description mac access list name Creates Layer 2 MAC ACLs and enters to MAC Access list configuration mode deny destination Denies traffic if the conditions defined in the MAC based ACL are matched show access lists name Displays Access Control Lists configured on the device ...

Page 244: ...ts to classification methods and interfaces To open the ACL Bindings page select Switch Network Security ACL Binding Figure 7 11 ACL Bindings The ACL Bindings page contains the following fields Select an ACL The ACL type to which incoming packets are matched Bind ACL to VLAN The VLAN to which the ACL is attached Assigning an ACL to an Interface 1 Open the ACL Bindings page 2 Select the ACL type in...

Page 245: ...in the ACL Bindings Table are the same as the fields on the ACL Bindings page Copying Parameters in the ACL Bindings Table 1 Open the ACL Bindings page 2 Click Show All The ACL Bindings Table opens 3 Select an interface in the Copy Parameters from field 4 Select a VLAN from the VLAN drop down menu The definitions for this interface are copied to the selected target ports trunks 5 Check the Copy to...

Page 246: ...nfiguring port functionality including advanced features such as storm control and port mirroring and for performing virtual port tests To open the Ports page Select Switch Ports Defining Port Configuration Use the Port Configuration page to define port parameters If port configuration is modified while the port is a LAG member the configuration change is only effective after the port is removed f...

Page 247: ...spended Port Reactivates a port if the port has been disabled through the locked port security option Operational Status Indicates the port operational status Possible field values are Suspended The port is currently active and is not receiving or transmitting traffic Active The port is currently active and is receiving and transmitting traffic Disable The port is currently disabled and is not rec...

Page 248: ...s speed port and half duplex mode setting 100 Full Indicates that the port advertises for a 100 mbps speed port and full duplex mode setting 1000 Full Indicates that the port advertises for a 1000 mbps speed port and full duplex mode setting Current Advertisement The port advertises its speed to its neighbor port to start the negotiation process The possible field values are those specified in the...

Page 249: ... are MDI The current MDI setting is MDI MDIX The current MDI setting is MDIX LAG Specifies if the port is part of a LAG NOTE If port configuration is modified while the port is a LAG member the configuration change is only effective after the port is removed from the LAG Defining Port Parameters 1 Open the Port Configuration page 2 Select a port in the Port Field 3 Define the available fields in t...

Page 250: ...ing auto negotiation duplex half full Configures the full half duplex operation of a given ethernet interface when not using auto negotiation negotiation capability1 capability2 capability5 Enables auto negotiation operation for the speed and duplex parameters of a given interface back pressure Enables Back Pressure on a given interface flowcontrol auto on off Configures the Flow Control on a give...

Page 251: ...utdown console config if speed 100 console config if duplex full console config if negotiation console config if back pressure console config if flowcontrol on console config if mdix auto console config if end console show interfaces configuration ethernet 1 e3 Port Type Duplex Speed Neg Flow Control Admin State Back Pressure Mdix Mode 1 e3 100 Full 100 Enabled On Up Enable Auto Console show inter...

Page 252: ...or information about Link Aggregated Groups LAG and assigning ports to LAGs see Aggregating Ports To open the Port Configuration page click Switch Ports LAG Configuration in the tree view Figure 7 14 LAG Configuration Port Type Duplex Speed Neg Flow Control Link State Back Pressure Mdix Mode 1 e3 100 Full 100 Auto On Up Enable On 1 e4 100 Full 1000 Off Off Up Disable On Ch Type Duplex Speed Neg Fl...

Page 253: ...0 Half Indicates that the LAG advertises for a 10 mbps speed LAG and half duplex mode setting 10 Full Indicates that the LAG advertises for a 10 mbps speed LAG and full duplex mode setting 100 Half Indicates that the LAG advertises for a 100 mbps speed LAG and half duplex mode setting 100 Full Indicates that the LAG advertises for a 100 mbps speed LAG and full duplex mode setting 1000 Full Indicat...

Page 254: ...lick Apply Changes The LAG parameters are saved to the device Modifying LAG Parameters 1 Open the LAG Configuration page 2 Select a LAG in the LAG field 3 Modify the fields 4 Click Apply Changes The LAG parameters are saved to the device Displaying the LAG Configuration Table 1 Open the LAG Configuration page 2 Click Show All The LAG Configuration Table opens Figure 7 15 LAG Configuration Table ...

Page 255: ...n negotiation capability1 capability2 capability5 Enables interface speed auto negotiation operation back pressure Enables Back Pressure on a given interface flowcontrol auto on off Configures the Flow Control on a given interface show interfaces configuration ethernet interface port channel port channel number Displays the configuration for all configured interfaces show interfaces status etherne...

Page 256: ...iation console config if speed 100 console config if flowcontrol on console config if exit console config interface port channel 3 console config if shutdown console config if exit console config interface port channel 4 console config if back pressure console config if description p4 console config if end console show interfaces port channel Channel Ports ch1 Inactive 1 e 11 13 ch2 Active 1 e14 ...

Page 257: ... enabling and configuring Storm Control To open the Storm Control page click Switch Ports Storm Control in the tree view Figure 7 16 Storm Control The Storm Control page contains the following fields Port The port from which storm control is enabled Broadcast Control Enables or disables forwarding Broadcast packet types on the specific interface Broadcast Mode Specifies the Broadcast mode currentl...

Page 258: ...Define the fields 4 Click Apply Changes Storm Control is enabled Modifying Storm Control Port Parameters 1 Open the Storm Control page 2 Modify the fields 3 Click Apply Changes The Storm Control port parameters are saved to the device Displaying the Port Parameters Table 1 Open the Storm Control page 2 Click Show All The Storm Control Settings Table opens Figure 7 17 Storm Control Settings Table ...

Page 259: ...ol definitions are copied or click Select All to copy the definitions to all ports 5 Click Apply Changes The parameters are copied to the selected ports in the Storm Control Settings Table and the device is updated Configuring Storm Control with CLI Commands The following table summarizes the equivalent CLI commands for configuring Storm Control as displayed on the Storm Control page Table 7 69 St...

Page 260: ...s network traffic by forwarding copies of incoming and outgoing packets from a monitored port to a monitoring port Monitored port cannot operate faster than the monitoring port All the RX TX packets should be monitored to the same port The following restrictions apply to ports configured to be destination ports Ports cannot be configured as a source port Ports cannot be a LAG member IP interfaces ...

Page 261: ...mal operations on it are suspended This includes Spanning Tree and LACP Figure 7 18 Port Mirroring The Port Mirroring page contains the following fields Destination Port The port number to which port traffic is copied Transmit Packets Defines the how the packets are mirrored The possible field values are Untagged Mirrors packets as untagged vlan packets This is the default value Tagged Mirrors pac...

Page 262: ... Type field 9 Click Apply Changes The new source port is defined and the device is updated Deleting a Copy Port from a Port Mirroring Session 1 Open the Port Mirroring page 2 Select the Remove check box 3 Click Apply Changes The selected port mirroring session is deleted and the device is updated Configuring a Port Mirroring Session Using CLI Commands The following table summarizes the equivalent ...

Page 263: ...all ports of the relevant VLAN Static addresses are manually configured In order to prevent the bridging table from overflowing dynamic MAC addresses from which no traffic is seen for a certain period are erased To open the Address Tables page click Switch Address Tables in the tree view Defining Static Addresses The Static MAC Address Table page contains a list of static MAC addresses Static Addr...

Page 264: ...attached to the MAC VLAN Name User defined VLAN name Status MAC address status Possible values are Secure Used for defining static MAC Addresses for Locked ports Permanent The MAC address is permanent Delete on Reset The MAC address is deleted when the device is reset Delete on Timeout The MAC address is deleted when a timeout occurs NOTE To prevent Static MAC addresses from being deleted when the...

Page 265: ...Setting in the Static MAC Address Table 1 Open the Static MAC Address Table page 2 Select an interface 3 Modify the fields 4 Click Apply Changes The static MAC address is modified and the device is updated Removing a Static Address from the Static Address Table 1 Open the Static MAC Address Table page 2 Choose an interface 3 Click Show All The Static MAC Address Table opens 4 Select a table entry ...

Page 266: ...ption bridge address mac address permanent delete on reset delete on timeout secure ethernet interface port channel port channel number Adds a static MAC layer station source address to the bridge table show bridge address table vlan vlan ethernet interface port channel port channel number Displays entries in the bridge forwarding database console config if bridge address 00 60 70 4C 73 FF permane...

Page 267: ...table are forwarded directly to those ports The Dynamic MAC Address page also contains information about the aging time before a dynamic MAC address is erased and includes parameters for querying and viewing the Dynamic Address list The Current Address Table contains dynamic address parameters by which packets are directly forwarded to the ports To open the Dynamic MAC Address page click Switch Ad...

Page 268: ...r which the table is queried Address Table Sort Key Specifies the means by which the Dynamic Address Table is sorted The address table can be sorted by address VLAN or interface Redefining the Aging Time 1 Open the Dynamic MAC Address 2 Define the Aging Time field 3 Click Apply Changes The aging time is modified and the device is updated Querying the Dynamic Address Table 1 Open the Dynamic MAC Ad...

Page 269: ... Sort CLI Commands CLI Command Description bridge aging time seconds Sets the address table aging time show bridge address table vlan vlan ethernet interface port channel port channel number Displays classes of dynamically created entries in the bridge forwarding database console config bridge aging time 250 console config end console show bridge address table Aging time is 250 sec vlan mac addres...

Page 270: ... must be greater than the leave time Set the same GARP timer values on all Layer 2 connected devices If the GARP timers are set differently on the Layer 2 connected devices GARP application does not operate successfully To open the GARP page click Switch GARP in the tree view Defining GARP Timers The GARP Timers page contains fields for enabling GARP on the device To open the GARP Timers page clic...

Page 271: ...g GARP Timers 1 Open the GARP Timers page 2 Select an interface 3 Complete the fields 4 Click Apply Changes The GARP parameters are saved to the device Copying Parameters in the GARP Timers Table 1 Open the GARP Timers page 2 Click Show All The GARP Timers Table opens 3 Select the interface type in the Copy Parameters from field 4 Select an interface in either the Port or LAG drop down menu The de...

Page 272: ...r CLI Commands CLI Command Description garp timer join leave leaveall timer_value Adjusts the GARP application join leave and leaveall GARP timer values console config interface ethernet 1 e1 console config if garp timer leave 900 console config if end console show gvrp configuration ethernet 1 e11 GVRP Feature is currently Disabled on the device Maximum VLANs 223 Port s GVRP Registration Dynamic ...

Page 273: ...d uses of network topologies that provide faster convergence of the spanning tree without creating forwarding loops If RSTP is enabled on the device but the neighboring device is STP enabled the local device uses STP For more information on configuring Rapid STP see Defining Rapid Spanning Tree Multiple STP Provides full connectivity for packets allocated to any VLAN Multiple STP is based on the R...

Page 274: ...TP Rapid STP or MSTP on the device STP Operation Mode Indicates the STP mode by which STP is enabled on the device The possible field values are Classic STP Enables Classic STP on the device This is the default value Rapid STP Enables Rapid STP on the device Multiple STP Enables Multiple STP on the device BPDU Handling Determines how BPDU packets are managed when STP is disabled on the port device...

Page 275: ...aximum Age Time The Maximum Age Time indicates the amount of time in seconds a bridge waits before sending configuration messages The default max age is 20 seconds Forward Delay 4 30 Specifies the device forward delay time The Forward Delay Time indicates the amount of time in seconds a bridge remains in a listening and learning state before forwarding packets The default is 10 seconds Bridge ID I...

Page 276: ... defining STP global parameters as displayed in the Spanning Tree Global Settings page Table 7 74 STP Global Parameter CLI Commands CLI Command Description spanning tree Enables spanning tree functionality spanning tree mode stp rstp mstp Configures the mode of the spanning tree protocol spanning tree priority priority Configures the spanning tree priority spanning tree hello time seconds Configur...

Page 277: ...s spanning tree configuration show spanning tree detail active blockedports instance instance id Displays detailed spanning tree information on active or blocked ports show spanning tree mst configuration Displays spanning tree MST configuration identifier Table 7 74 STP Global Parameter CLI Commands continued CLI Command Description ...

Page 278: ... console show spanning tree Spanning tree enabled mode MSTP Default port cost method short Gathering information MST 0 Vlans Mapped 16 4094 CST Root ID Priority 20480 Address 00 30 ab 00 00 08 Path Cost 4 Root Port ch2 This switch is the IST master Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec Bridge ID Priority 32768 Address 00 00 00 16 00 64 Max hops 20 Name State Prio Nbr Cost Sts Role P...

Page 279: ...ault port cost method short Gathering information MST 0 Vlans Mapped 16 4094 CST Root ID Priority 20480 Address 00 30 ab 00 00 08 Path Cost 4 Root Port ch2 This switch is the IST master Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec Bridge ID Priority 32768 Address 00 00 00 16 00 64 Max hops 20 Name State Prio Nbr Cost Sts Role PortFast Type 1 e5 enabled 128 2 19 FRW Desg Yes P2p Intr 1 e7 e...

Page 280: ...t If Fast Link mode is enabled for a port the Port State is automatically placed in the Forwarding state when the port link is up Fast Link mode optimizes the time it takes for the STP protocol to converge STP convergence can take 30 60 seconds in large networks Port State Indicates the current STP state of a port If enabled the port state determines what forwarding action is taken on traffic Poss...

Page 281: ... the Spanning Tree Speed Speed at which the port is operating Path Cost 1 200000000 The port contribution to the root path cost The path cost is adjusted to a higher or lower value and is used to forward traffic when a path being rerouted Default Path Cost The default path cost The default values for long path costs are Ethernet 2 000 000 Fast Ethernet 200 000 Gigabit Ethernet 20 000 The default v...

Page 282: ... updated Displaying the STP Port Table 1 Open the Spanning Tree Port Settings page 2 Click Show All The STP Port Table opens Defining STP Port Settings Using CLI Commands The following table summarizes the equivalent CLI commands for defining STP port parameters as displayed in the STP Port Settings page Table 7 75 STP Port Settings CLI Commands CLI Command Description spanning tree disable Disabl...

Page 283: ...ing tree disable Console config if spanning tree cost 35000 Console config if spanning tree port priority 96 Console config if spanning tree portfast Console config if exit Console config exit Console show spanning tree ethernet 1 e15 Port 1 e15 enabled State forwarding Role designated Port id 128 15 Port cost 19 Type P2p configured Auto Internal Port Fast No configured No Designated bridge Priori...

Page 284: ... LAG Settings in the tree view Figure 7 24 Spanning Tree LAG Settings console show spanning tree ethernet 1 e15 instance 12 Port 1 e15 enabled State discarding Role alternate Port id 128 15 Port cost 19 Type P2p configured Auto Internal Port Fast No configured No Designated bridge Priority 32768 Address 00 00 b0 07 07 49 Designated port id 128 11 Designated path cost 0 Guard root Disabled Number o...

Page 285: ...esses and do not forward frames This state is union of Blocking and Listening state introduced in STP 802 1 D Listening The LAG is in the listening mode and cannot forward traffic or learn MAC addresses Learning The LAG is in the learning mode and cannot forward traffic but it can learn new MAC addresses Forwarding The LAG is currently in the forwarding mode and it can forward traffic and learn ne...

Page 286: ...The ID of the selected interface Designated Cost Cost of the port participating in the STP topology Ports with a lower cost are less likely to be blocked if STP detects loops Forward Transitions Number of times the LAG State has changed from the Forwarding state to a Blocking state Modifying the LAG STP Parameters 1 Open the Spanning Tree LAG Settings page 2 Select a LAG from the Select a LAG drop...

Page 287: ...panning tree detail active blockedports instance instance id Displays detailed spanning tree information on active or blocked ports console config interface port channel 1 console config if spanning tree disable console config if spanning tree cost 35000 console config if spanning tree port priority 96 console config if spanning tree portfast Table 7 76 STP LAG Settings CLI Commands continued CLI ...

Page 288: ... page contains the following fields Interface Port or LAG for which you can view and edit RSTP settings State Disables RSTP state of the selected interface Role Indicates the port role assigned by the STP algorithm in order to provide STP paths The possible field values are Root Provides the lowest cost path to forward packets to root switch Designated Indicates that the port or LAG via which the ...

Page 289: ...he originating PPP sends Network Control Protocols NCP packets to select and configure one or more network layer protocols When each of the chosen network layer protocols has been configured packets from each network layer protocol can be sent over the link The link remains configured for communications until explicit LCP or NCP packets close the link or until some external event occurs This is th...

Page 290: ...ype setting spanning tree mode stp rstp mstp Configure the spanning tree protocol currently running clear spanning tree detected protocols ethernet interface port channel port channel number Restarts the protocol migration process show spanning tree ethernet interface port channel port channel number Displays spanning tree configuration console config interface ethernet 1 e5 console config if span...

Page 291: ...anning Tree MSTP Settings in the tree view Figure 7 26 MSTP Settings The MSTP Settings page contains the following fields Region Name 1 32 Characters Indicates user defined MSTP region name Revision 0 65535 Defines unsigned 16 bit number that identifies the current MST configuration revision The revision number is required as part of the MST configuration The possible field range is 0 65535 Max Ho...

Page 292: ... Designated Root Bridge ID Indicates the ID of the bridge which is the root of the selected instance Root Port Indicates the selected instance s root port Root Path Cost Indicates the selected instance s path cost Bridge ID Indicates the bridge ID of the selected instance Remaining Hops Indicates the number of hops remaining to the next destination Displaying the MSTP Instance Table 1 Open the Spa...

Page 293: ...tion revision number spanning tree mst instance id port priority priority Sets the priority of a port spanning tree mst instance id priority priority Sets the device priority for the specified spanning tree instance spanning tree mst max hops hop count Sets the number of hops in an MST region before the BPDU is discarded and the information held for a port is aged spanning tree mst instance id cos...

Page 294: ... config mst instance 1 add vlan 10 20 console config mst name region1 console config mst revision 1 console config spanning tree mst configuration console config mst instance 2 add vlan 21 30 console config mst name region1 console config mst revision 1 console config mst show pending Pending MST configuration Name Region1 Revision 1 Instance Vlans Mapped 0 1 9 31 4094 1 10 20 2 21 30 ...

Page 295: ...instance Type Indicates whether MSTP treats the port as a point to point port or a port connected to a hub and whether the port is internal to the MST region or a boundary port A Master port provides connectivity from a MSTP region to the outlying CIST root A Boundary port attaches MST bridges to LAN in an outlying region If the port is a boundary port it also indicates whether the device on the o...

Page 296: ...Indicates that the default path cost is assigned according to the method selected on the Spanning Tree Global Settings page Designated Bridge ID The bridge ID number that connects the link or shared LAN to the root Designated Port ID The Port ID number on the designated bridge that connects the link or the shared LAN to the root Designated Cost Cost of the path from the link or the shared LAN to t...

Page 297: ...rfaces as displayed in the Spanning Tree MSTP Interface Settings page Table 7 79 MSTP Interface CLI Commands CLI Command Description spanning tree mst instance id cost cost Sets the path cost of the port for MST calculations spanning tree mst instance id priority priority Sets the device priority for the specified ST instance show spanning tree mst configuration Displays the MST configuration ...

Page 298: ...w spanning tree mst configuration Gathering information Current MST configuration Name Gili Revision 65000 Instance Vlans Mapped State 0 16 4094 enabled 1 1 enabled 2 2 enabled 3 3 enabled 4 4 enabled 5 5 enabled 6 6 enabled 7 7 enabled 8 8 enabled 9 9 enabled 10 10 enabled 11 11 enabled 12 12 enabled 13 13 enabled 14 14 enabled 15 15 enabled ...

Page 299: ...l Since VLANs isolate traffic within the VLAN a router working at the Layer 3 protocol level is needed to allow traffic flow between VLANs Layer 3 routers identify segments and coordinate with VLANs VLANs are Broadcast and Multicast domain Broadcast and Multicast traffic is transmitted only in the VLAN in which the traffic is generated VLAN tagging provides a method of transferring VLAN informatio...

Page 300: ... Membership page click Switch VLAN VLAN Membership in the tree view Figure 7 30 VLAN Membership The VLAN Membership page contains the following fields Show VLAN Lists and displays specific VLAN information according to VLAN ID or VLAN name VLAN Name 0 32 Characters The user defined VLAN name Status The VLAN type Possible values are Dynamic The VLAN was dynamically created through GVRP Static The V...

Page 301: ...formation is modified and the device is updated Deleting VLANs 1 Open the VLAN Membership page 2 Select a VLAN in the Show VLAN field 3 Select the Remove VLAN check box 4 Click Apply Changes The selected VLAN is deleted and the device is updated Defining VLAN Membership Groups Using CLI Commands The following table summarizes the equivalent CLI commands for defining VLAN membership groups as displ...

Page 302: ...from the drop down menu 3 Select a port in the Port Membership Table and assign the port a value 4 Click Apply Changes The port is assigned to the VLAN group and the device is updated console config vlan database console config vlan vlan 1972 console config vlan end console config interface vlan 1972 console config if name Marketing console config if end Table 7 81 VLAN Port Membership Table Port ...

Page 303: ...ed only Discards untagged frames at ingress switchport forbidden vlan add vlan list remove vlan list Forbids adding specific VLANs to the port switchport mode access trunk general Configures the VLAN membership mode of a port switchport access vlan vlan id Configures the VLAN ID when the interface is in access mode switchport trunk allowed vlan add vlan list remove vlan list Adds or removes VLANs ...

Page 304: ... console config interface ethernet 1 e8 console config if switchport mode access console config if switchport access vlan 23 console config if end console config interface ethernet 1 e9 console config if switchport mode trunk console config if switchport mode trunk allowed vlan add 23 25 console config if end console config interface ethernet 1 e11 console config if switchport mode general console...

Page 305: ...Port The port number included in the VLAN Port VLAN Mode The port mode Possible values are General The port belongs to VLANs and each VLAN is user defined as tagged or untagged full 802 1Q mode Access The port belongs to a single untagged VLAN When a port is in Access mode the packet types which are accepted on the port cannot be designated Ingress filtering cannot be enabled disabled on an access...

Page 306: ...n the port Ingress Filtering Enables or disables Ingress filtering on the port Ingress filtering discards packets that are destined to VLANs of which the specific port is not a member Current Reserved VLAN The VLAN currently designated by the system as the reserved VLAN Reserve VLAN for Internal Use The VLAN selected by the user to be the reserved VLAN if not in use by the system Assigning Port Se...

Page 307: ... page contains the following fields LAG The LAG number included in the VLAN LAG VLAN Mode The LAG VLAN mode Possible values are General The LAG belongs to VLANs and each VLAN is user defined as tagged or untagged full 802 1Q mode Access The LAG belongs to a single untagged VLAN Trunk The LAG belongs to VLANs in which all ports are tagged except for one port that can be untagged PVE Promiscuous The...

Page 308: ...LAN that is designated as the reserved VLAN after the device is reset Assigning VLAN LAG Settings 1 Open the VLAN LAG Settings page 2 Select a LAG from the LAG drop down menu and complete the fields on the page 3 Click Apply Changes The VLAN LAG parameters are defined and the device is updated Displaying the VLAN LAG Table 1 Open the VLAN LAG Settings page 2 Click Show All The VLAN LAG Table opens...

Page 309: ...mode access console config if switchport access vlan 2 console config if exit console config interface port channel 2 console config if switchport mode general console config if switchport general allowed vlan add 2 3 tagged console config if switchport general pvid 2 console config if switchport general acceptable frame type tagged only console config if switchport general ingress filtering disab...

Page 310: ...VLAN Only dynamic VLANs can be bound to MAC addresses To bind MAC addresses to a VLAN ensure the VLAN ports were dynamically added and are not static VLAN ports To open the Bind MAC to VLAN page click Switch VLAN Bind MAC to VLAN Figure 7 33 Bind MAC to VLAN The Bind MAC to VLAN page contains the following fields MAC Address Indicates the MAC Address which is bound to the VLAN Bind to VLAN 2 4093 ...

Page 311: ... vlan 0060 704c 73ff 123 console config vlan exit console config exit console show vlan mac to vlan MAC Address VLAN 0060 704c 73ff 123 Table 7 84 Binding MAC address to VLANs CLI Commands CLI Command Description mac to vlan mac address vlan id Binds the MAC address to the VLAN switchport access vlan dynamic Configures private VLANs show mac to vlan Displays the MAC to VLAN database no mac to vlan...

Page 312: ... GVRP Parameters page enables GVRP globally GVRP can also be enabled on a per interface basis To open the GVRP Parameters page click Switch VLAN GVRP Parameters in the tree view Figure 7 34 GVRP Parameters The GVRP Parameters page contains the following fields GVRP Global Status Enables or disables GVRP on the device GVRP is disabled by default Interface Specifies port or LAG for editing GVRP sett...

Page 313: ... page Table 7 85 GVRP Global Parameters CLI Commands CLI Command Description gvrp enable global Enables GVRP globally gvrp enable interface Enables GVRP on an interface gvrp vlan creation forbid Enables or disables dynamic VLAN creation gvrp registration forbid De registers all dynamic VLANs and prevents dynamic VLAN registration on the port show gvrp configuration ethernet interface port channel ...

Page 314: ...ig if gvrp enable console config if gvrp vlan creation forbid console config if gvrp registration forbid console config if end console show gvrp configuration GVRP Feature is currently Enabled on the device Maximum VLANs 223 Port s GVRP Status Registration Dynamic VLAN Creation Timers milliseconds Join Leave Leave All 1 e11 Enabled Forbidden Disabled 200 900 10000 1 e12 Disabled Normal Enabled 200...

Page 315: ...ports with a VLANs is blocked except for traffic from promiscuous ports All isolated ports are automatically assigned to the Isolated VLAN Community Community ports communicate with other community ports and with promiscuous ports Community ports are separated from all other interfaces in other communities or isolated ports in the same PVLAN All community ports are automatically assigned to the Co...

Page 316: ...fined in the Add Private VLAN page Isolated VLAN Indicates which VLAN to which isolated ports are assigned Add Community VLANs Adds a Community VLAN to which community ports are assigned Community VLAN Displays a list of the Community VLANs Remove Community Removes a Community VLAN when checked Remove Private VLAN Removes a Private VLAN when checked Adding Private VLANs 1 Open the Private VLAN pag...

Page 317: ...ty VLANs are added to the Private VLAN Add Community VLANs Adds a Community VLAN to the private VLAN Isolated VLAN Adds an Isolated VLAN to the Private VLAN 3 Define the fields 4 Click Apply Changes The Private VLAN is defined and the device is updated Displaying the PV Ports Table 1 Open the Private VLAN page 2 Click Show PV Ports The PV Ports Table opens Figure 7 37 PV Ports Table ...

Page 318: ...d Adds a isolated port to a isolated VLAN private vlan primary Defines a primary VLAN private vlan community add community vlan list remove community vlan list Defines or removes a community VLAN of the primary VLAN private vlan isolated Defines an isolated VLAN of the primary VLAN switchport private vlan pvlan community cvlan Defines private VLAN ports show vlan private vlan primary vlan id Displ...

Page 319: ...he same back pressure and flow control modes All ports in the LAG have the same priority All ports in the LAG have the same transceiver type The device supports up to eight LAGs and eight ports in each LAG Ports can be configured as LACP ports only if the ports are not part of a previously configured LAG Ports added to a LAG lose their individual port configuration When ports are removed from the ...

Page 320: ... on the relevant links To open the LACP Parameters page click Switch Link Aggregation LACP Parameters in the tree view Figure 7 38 LACP Parameters The LACP Parameters page contains the following fields LACP System Priority 1 65535 The LACP priority value for global settings The possible range is 1 65535 The default value is 1 Select a Port The port number to which timeout and priority values are a...

Page 321: ... Parameters Table 1 Open the LACP Parameters page 2 Click Show All The LACP Parameters Table opens Configuring LACP Parameters Using CLI Commands The following table summarizes the equivalent CLI commands for configuring LACP parameters as displayed in the LACP Parameters page Table 7 87 LACP Parameters CLI Commands CLI Command Description lacp system priority value Configures the system priority ...

Page 322: ...LAG cannot be configured with the LAG settings the port is added to the LAG using the port default settings An error message is generated However as this is the only port in the LAG the entire LAG operates with the port s settings instead of the LAG s defined settings Use the LAG Membership page to assign ports to LAGs To open the LAG Membership page click Switch Link Aggregation LAG Membership in...

Page 323: ...ip page 2 In the LAG row the second row toggle the button to a specific number to aggregate or remove the port to that LAG number 3 In the LACP row the first row toggle the button under the port number to assign either the LACP or the static LAG 4 Click Apply Changes The port is added to the LAG or LACP and the device is updated Adding Ports to LAGs Using CLI Commands The following table summarize...

Page 324: ... 2 Multicast filtering is enabled by default and not user configurable NOTE The system supports Multicast filtering for 256 Multicast groups Filtering L2 Multicast Packets Forwards Layer 2 packets to interfaces If Multicast filtering is disabled Multicast packets are flooded to all relevant ports To open the Multicast Support page click Switch Multicast Support in the tree view Defining Multicast ...

Page 325: ...ults in the creation of the Multicast filtering database To open the Multicast Support page click Switch Multicast Support in the tree view The Global Parameters page contains fields for enabling IGMP Snooping on the device To open the Global Parameters page click Switch Multicast Support Global Parameters in the tree view Figure 7 40 Global Parameters The Global Parameters page contains the follo...

Page 326: ...ivalent CLI commands for enabling Multicast Filtering and IGMP Snooping as displayed on the Global Parameters page The following is an example of the CLI commands Adding Bridge Multicast Address Members The Bridge Multicast Group page displays the ports and LAGs attached to the Multicast service group in the Ports and LAGs tables The Port and LAG tables also reflect the manner in which the port or...

Page 327: ...k Switch Multicast Support Bridge Multicast Group in the tree view Figure 7 41 Bridge Multicast Group The Bridge Multicast Group page contains the following fields VLAN ID Identifies a VLAN and contains information about the Multicast group address Bridge Multicast Address Identifies the Multicast group MAC address IP address Remove When selected removes a Bridge Multicast address Ports Port that ...

Page 328: ...oin the port to the selected Multicast group 5 Toggle a port to F to forbid adding specific Multicast addresses to a specific port 6 Click Apply Changes The bridge Multicast address is assigned to the Multicast group and the device is updated Table 7 90 IGMP Port LAG Members Table Control Settings Port Control Definition D The port LAG has joined the Multicast group dynamically in the Current Row ...

Page 329: ... Changes The LAG is assigned to the Multicast group and the device is updated Managing Multicast Service Members Using CLI Commands The following table summarizes the equivalent CLI commands for managing Multicast service members as displayed in the Bridge Multicast Group page Table 7 91 Multicast Service Member CLI Commands CLI Command Description bridge multicast address mac multicast address ip...

Page 330: ...ulticast address table Vlan MAC Address Type Ports 1 0100 5e02 0203 static 1 e11 1 e12 19 0100 5e02 0208 static 1 e11 16 19 0100 5e02 0208 dynamic 1 e11 12 Forbidden ports for multicast addresses Vlan MAC Address Ports 1 0100 5e02 0203 1 e8 19 0100 5e02 0208 1 e8 console show bridge multicast address table format ip Vlan IP Address Type Ports 1 224 239 130 2 2 3 static 1 e11 1 e12 19 224 239 130 2...

Page 331: ...ing Multicast router switch Once IGMP Snooping is enabled Multicast packets are forwarded to the appropriate port or VLAN To open the Bridge Multicast Forward All page click Switch Multicast Support Bridge Multicast Forward All page in the tree view Figure 7 43 Bridge Multicast Forward All Forbidden ports for multicast addresses Vlan IP Address Ports 1 224 239 130 2 2 3 1 e8 19 224 239 130 2 2 8 1...

Page 332: ...ter or Switch 1 Open Bridge Multicast Forward All page 2 Define the VLAN ID field 3 Select a port in the Ports table and assign the port a value 4 Click Apply Changes The port is attached to the Multicast router or switch Attaching a LAG to a Multicast Router or Switch 1 Open Bridge Multicast Forward All page 2 Define the VLAN ID field 3 Select a port in the LAGs table and assign the LAG a value 4...

Page 333: ...Routers CLI Command Description show bridge multicast filtering vlan id Displays the Multicast filtering configuration bridgemulticastforward all add remove ethernet interface list port channel port channel number list Enables forwarding of all Multicast packets on a port Use the no form of this command to return to default Console config interface vlan 1 Console config if bridge multicast forward...

Page 334: ...g VLAN ID Specifies the VLAN ID IGMP Snooping Status Enables or disables IGMP snooping on the VLAN Auto Learn Enables or disables Auto Learn on the Ethernet device Host Timeout 1 2147483647 Time before an IGMP snooping entry is aged out The default time is 260 seconds Multicast Router Timeout 1 2147483647 Time before aging out a Multicast router entry The default value is 300 seconds Leave Timeout...

Page 335: ...ping CLI Commands CLI Command Description ip igmp snooping Enables Internet Group Membership Proto col IGMP snooping ip igmp snooping mrouter learn pim dvmrp Enables automatic learning of Multicast router ports in the context of a specific VLAN ip igmp snooping host time out time out Configures the host time out ip igmp snooping mrouter time out time out Configures the mrouter time out ip igmp sno...

Page 336: ...ter time out 200 console config if ip igmp snooping leave time out 60 console config if end console show ip igmp snooping groups Vlan IP Address Querier Ports 1 224 239 130 2 2 3 Yes 1 e11 1 e12 19 224 239 130 2 2 8 Yes 1 e11 13 console show ip igmp snooping interface 1 e1 IGMP Snooping is globally enabled IGMP Snooping is enabled on VLAN 1 IGMP host timeout is 300 sec IGMP Immediate leave is disa...

Page 337: ...ommands are not available for all the Statistics pages Viewing Tables The Table Views page contains links for displaying statistics in a table form To open the page click Statistics Table in the tree view Viewing Utilization Summary The Utilization Summary page contains statistics for interface utilization To open the page click Statistics Table Views Utilization Summary in the tree view Figure 8 ...

Page 338: ... to 200 The maximum reading of 200 for a full duplex connection indicates that 100 of bandwidth of incoming and outgoing connections is used by the traffic travelling through the interface The maximum reading for a half duplex connection is 100 Unicast Received Percentage of Unicast packets received on the interface Non Unicast Packets Received Percentage of non Unicast packets received on the int...

Page 339: ...e Received Unicast Packets Number of received Unicast packets on the interface Transmit Unicast Packets Number of transmitted Unicast packets from the interface Received Non Unicast Packets Number of received non Unicast packets on the interface Transmit Non Unicast Packets Number of transmitted non Unicast packets from the interface Received Errors Number of received packets with errors on the in...

Page 340: ...ount of time that passes before the interface statistics are refreshed Receive Statistics Total Bytes Octets Amount of octets received on the selected interface Unicast Packets Amount of Unicast packets received on the selected interface Multicast Packets Amount of Multicast packets received on the selected interface Broadcast Packets Amount of Broadcast packets received on the selected interface ...

Page 341: ...nters 1 Open the Interface Statistics page 2 Click Reset All Counters The interface statistics counters are reset Viewing Interface Statistics Using the CLI Commands The following table contains the CLI commands for viewing interface statistics Table 8 95 Interface Statistics CLI Commands CLI Command Description show interfaces counters ethernet interface port channel port channel number Displays ...

Page 342: ...e following is an example of the CLI commands console enable console show interfaces counters Port InOctets InUcastPkts InMcastPkts InBcastPkts 1 e1 0 0 0 0 1 e2 0 0 0 0 1 e3 0 0 0 0 1 e4 0 0 0 0 1 e5 0 0 0 0 1 e6 0 0 0 0 1 e7 0 0 0 0 1 e8 0 0 0 0 1 e9 0 0 0 0 1 e10 0 0 0 0 ...

Page 343: ...re the interface statistics are refreshed Frame Check Sequence FCS Errors Number of FCS errors received on the selected interface Single Collision Frames Number of single collision frame errors received on the selected interface Late Collisions Number of late collisions received on the selected interface Oversize Packets Number of oversize packets on the selected interface Internal MAC Transmit Er...

Page 344: ...ntains the CLI commands for viewing etherlike statistics The following is an example of the CLI commands Table 8 96 Etherlike Statistics CLI Commands CLI Command Description show interfaces counters ethernet interface port channel port channel number Displays traffic seen by the physical interface Console show interfaces counters ethernet 1 1 Port IN Octets InUcastPkts InMcastPkts InBcastPkts 1 e1...

Page 345: ...elds Interface Specifies whether statistics are displayed for a port or LAG Refresh Rate Amount of time that passes before the interface statistics are refreshed Join Empty Device GVRP Join Empty statistics Leave Empty Device GVRP Leave Empty statistics Empty Indicates the number of empty GVRP statistics Excessive Collisions 0 Internal MAC Tx Errors 0 Carrier Sense Errors 0 Oversize Packets 0 Inte...

Page 346: ...nts statistics Displaying GVRP Statistics for a Port 1 Open the GVRP Statistics page 2 Select an interface in the Interface field The GVRP statistics for the selected interface are displayed Resetting GVRP Statistics 1 Open the GVRP Statistics page 2 Click Reset All Counters The GVRP statistics counters are reset Viewing GVRP Statistics Using the CLI Commands The following table contains the CLI c...

Page 347: ... Received rEmp Empty Received rLIn Leave In Received rLE Leave Empty Received rLA Leave All Received sJE Join Empty Sent sJIn Join In Sent sEmp Empty Sent sLIn Leave In Sent sLE Leave Empty Sent sLA Leave All Sent Port rJE rJIn rEmp rLIn rLE rLA sJE sJIn sEmp sLIn sLE sLA 1 e1 0 0 0 0 0 0 0 0 0 0 0 0 1 e2 0 0 0 0 0 0 0 0 0 0 0 0 1 e3 0 0 0 0 0 0 0 0 0 0 00 0 ...

Page 348: ...Value INVEVENT Invalid Event Port INVPROT INVATYP INVAVAL INVPLEN INVALEN INVEVENT 1 e1 0 0 0 0 0 0 1 e2 0 0 0 0 0 0 1 e3 0 0 0 0 0 0 1 e4 0 0 0 0 0 0 sLE Leave Empty Sent sLA Leave All Sent Port rJE rJIn rEmp rLIn rLE rLA sJE sJIn sEmp sLIn sLE sLA 1 e1 0 0 0 0 0 0 0 0 0 0 0 0 1 e2 0 0 0 0 0 0 0 0 0 0 0 0 1 e3 0 0 0 0 0 0 0 0 0 0 0 0 1 e4 0 0 0 0 0 0 0 0 0 0 0 0 1 e5 0 0 0 0 0 0 0 0 0 0 0 0 1 e6 ...

Page 349: ...valid EAPOL frames received on the port Frames Transmit Indicates the number of EAPOL frames transmitted via the port Start Frames Receive Indicates the number of EAPOL Start frames received on the port Log off Frames Receive Indicates the number of EAPOL Logoff frames received on the port Respond ID Frames Receive Indicates the number of EAP Resp Id frames received on the port Respond Frames Rece...

Page 350: ...t recently received EAPOL frame Displaying EAP statistics for a port 1 Open the EAP Statistics page 2 Select an interface in the Interface field The interface EAP statistics are displayed To reset the EAP Statistics 1 Open the EAP Statistics page 2 Click Reset All Counters The EAP statistics counters are reset Viewing EAP Statistics Using the CLI Commands The following table summarizes the CLI com...

Page 351: ...statistics ethernet 1 e1 EapolFramesRx 11 EapolFramesTx 12 EapolStartFramesRx 1 EapolLogoffFramesRx 1 EapolRespIdFramesRx 3 EapolRespFramesRx 6 EapolReqIdFramesTx 3 EapolReqFramesTx 6 InvalidEapolFramesRx 0 EapLengthErrorFramesRx 0 LastEapolFrameVersion 1 LastEapolFrameSource 0008 3b79 8787 ...

Page 352: ...page contains the following fields Interface Specifies the port or LAG for which statistics are displayed Refresh Rate Amount of time that passes before the statistics are refreshed Received Bytes Octets Number of bytes received on the selected interface Received Packets Number of packets received on the selected interface Broadcast Packets Received Number of good Broadcast packets received on the...

Page 353: ...eived on the interface since the device was last refreshed Collisions Number of collisions received on the interface since the device was last refreshed Frames of xx Bytes Number of xx byte frames received on the interface since the device was last refreshed Viewing Interface Statistics 1 Open the RMON Statistics page 2 Select an interface type and number in the Interface field The interface stati...

Page 354: ...may include interface definitions or polling periods To open the RMON History Control page click Statistics RMON RMON History Control in the tree view console show rmon statistics ethernet 1 e1 Port 1 e1 Dropped 8 Octets 878128 Packets 978 Broadcast 7 Multicast 1 CRC Align Errors 0 Collisions 0 Undersize Pkts 0 Oversize Pkts 0 Fragments 0 Jabbers 0 64 Octets 98 65 to 127 Octets 0 128 to 255 Octets...

Page 355: ... saved The default value is 50 Current No of Samples in List Indicates the current number of samples taken Sampling Interval 1 3600 Indicates the time interval in seconds between what the samplings are taken from the ports The possible values are 1 3600 seconds The default is 1800 seconds 30 minutes Remove When checked removes the History Control Table entry Adding a History Control Entry 1 Open t...

Page 356: ... CLI commands for viewing RMON History Control The following is an example of the CLI commands Viewing the RMON History Table The RMON History Table contains interface specific statistical network samplings Each table entry represents all counter values compiled during a single sample To open the RMON History Table click Statistics RMON RMON History Table in the tree view Table 8 100 RMON History ...

Page 357: ...packets but rather the number of times dropped packets were detected Received Bytes Octets The number of data octets including bad packets received on the network Received Packets The number of packets received during the sampling interval Broadcast Packets The number of good broadcast packets received during the sampling interval Multicast Packets The number of good multicast packets received dur...

Page 358: ...detected when repeater port detects two or more stations transmit simultaneously Utilization Estimates the main physical layer network usage on an interface during the session sampling The value is reflected hundredths of percent Viewing Statistics for a Specific History Entry 1 Open the RMON History Table 2 Select an entry in the History Entry No field The entry statistics display in the RMON His...

Page 359: ...ole show rmon history 1 throughput Sample Set 5Owner cli Interface 24 interval 10 Requested samples 50 Granted samples 50 Maximum table size 270 Time Octets PacketsBroadcast Multicast 09 Mar 2003 18 29 32 00 00 0 09 Mar 2003 18 29 42 00 00 0 09 Mar 2003 18 29 52 00 00 0 09 Mar 2003 18 30 02 00 00 0 09 Mar 2003 18 30 12 00 00 0 09 Mar 2003 18 30 22 00 00 0 ...

Page 360: ...s Control page contains the following fields Event Entry Indicates the event Community Community to which the event belongs Description User defined event description Type Describes the event type Possible values are Log Event type is a log entry Trap Event type is a trap Log and Trap Event type is both a log entry and a trap None There is no event Time Time when the event occurred Owner The devic...

Page 361: ...ries 1 Open the RMON Events Control page 2 Click Show All The RMON Events Table page opens 3 Check the Remove checkbox for the event s that needs to be deleted and then click Apply Changes The table entry is deleted and the device is updated NOTE A single event entry can be removed from the RMON Events Control page by checking the Remove check box on that page Defining Device Events Using the CLI ...

Page 362: ...ntains a list of RMON events To open the RMON Events Log page click Statistics RMON RMON Events Log in the tree view Figure 8 11 RMON Events Log console config rmon event 1 log console config exit console show rmon events Index Description Type Community Owner Last Time Sent 1 Errors Log CLI Jan 18 2002 23 58 17 2 High Broadcast Log Trap router Manager Jan 18 2002 23 59 48 ...

Page 363: ...ce Alarms Use the RMON Alarms page to set network alarms Network alarms occur when a network problem or event is detected Rising and falling thresholds generate events For more information about events see Viewing the RMON Events Log To open the RMON Alarms page click Statistics RMON RMON Alarms in the tree view Table 8 103 Device Event Definition CLI Commands CLI Command Description show rmon log...

Page 364: ...ference in the values is compared to the threshold Absolute Compares the values directly with the thresholds at the end of the sampling interval Rising Threshold 0 4294967295 The rising counter value that triggers the rising threshold alarm The rising threshold is presented on top of the graph bars Each monitored variable is designated a color The field default is 100 seconds Rising Event The mech...

Page 365: ...old Interval 1 4294967295 sec Alarm interval time The field default is 100 seconds Owner Device or user that defined the alarm Remove When checked removes an RMON Alarm Adding an Alarm Table Entry 1 Open the RMON Alarms page 2 Click Add The Add an Alarm Entry page opens Figure 8 13 Add an Alarm Entry Page 3 Select an interface 4 Complete the fields 5 Click Apply Changes The RMON alarm is added and...

Page 366: ... Click Apply Changes The entry is deleted and the device is updated Defining Device Alarms Using the CLI Commands The following table contains the CLI commands for defining device alarms Table 8 104 Device Alarm CLI Commands CLI Command Description rmon alarm index MIB_Object_ID interval rthreshold fthreshold revent fevent type type startup direction owner name Configures RMON alarm conditions sho...

Page 367: ...Viewing Port Statistics Use the Port Statistics page to open statistics in a chart form for port elements To open the Port Statistics page click Statistics RMON Charts Port Statistics in the tree view console config rmon alarm 1000 1 3 6 1 2 1 2 2 1 10 1 360000 1000000 1000000 10 20 Console show rmon alarm table Index OID Owner 11 3 6 1 2 1 2 2 1 10 1 CLI 21 3 6 1 2 1 2 2 1 10 1 Manager 31 3 6 1 2...

Page 368: ... display RMON Statistics Selects the RMON statistics to display GVRP Statistics Selects the GVRP statistics type to display Refresh Rate Amount of time that passes before the statistics are refreshed Displaying Port Statistics 1 Open the Port Statistics page 2 Select the statistic type of to open 3 Select the desired refresh rate from the Refresh Rate drop down menu 4 Click Draw The graph for the ...

Page 369: ...ommands CLI Command Description show interfaces counters ethernet interface port channel port channel number Displays traffic seen by the physical interface show rmon statistics ethernet interface port channel port channel number Displays RMON Ethernet statistics show gvrp statistics ethernet interface port channel port channel number Displays GVRP statistics show gvrp error statistics ethernet in...

Page 370: ...t the desired refresh rate from the Refresh Rate drop down menu 4 Click Draw The graph for the selected statistic is displayed Viewing LAG Statistics Using the CLI Commands The following table contains the CLI commands for viewing LAG statistics Table 8 106 LAG Statistic CLI Commands CLI Command Description show interfaces counters ethernet interface port channel port channel number Displays traff...

Page 371: ...resources consumed by each stacking member Each stacking member is assigned a color on the graph To open the CPU Utilization page click Statistics RMON Charts CPU Utilization in the tree view Figure 8 16 CPU Utilization The CPU Utilization page contains the following information Refresh Rate Amount of time that passes before the statistics are refreshed ...

Page 372: ...372 Viewing Statistics w w w d e l l c o m s u p p o r t d e l l c o m ...

Page 373: ...ffic flow for traffic with high demand QoS is defined by Classification Specifies which packet fields are matched to specific values All packets matching the user defined specifications are classified together Action Defines traffic management where packets being forwarded are based on packet information and packet field values such as VLAN priority tag VPT and DSCP DiffServ Code Point VPT Classif...

Page 374: ...e applications are always forwarded Strict Priority SP allows the prioritization of mission critical time sensitive traffic over less time sensitive applications For example under Strict Priority voice over IP traffic can be prioritized so the IP traffic is forwarded before FTP or e mail SMTP traffic Weighted Round Robin Ensures that a single application does not dominate the device forwarding cap...

Page 375: ...ns a field for enabling or disabling QoS It also contains a field for selecting the Trust mode The Trust mode relies on predefined fields within the packet to determine the egress queue In addition the Global Settings page enables defining queues as either Strict Priority SP or Weighted Round Robin WRR To open the Global Settings page click Quality of Service QoS Parameters Global Settings in the ...

Page 376: ... Trust Mode field values are CoS 802 1p The egress queue assignment is determined by the IEEE802 1p VLAN priority tag VPT or by the default VPT assigned to a port The device default is the IEEE802 1p DSCP The egress queue assignment is determined by the DSCP field NOTE The interface Trust settings overrides the global Trust setting Queue Settings Strict Priority Indicates the system queues are SP ...

Page 377: ...Interface Settings page contains fields for deactivating the Trust mode and setting the default CoS value on incoming untagged packets To open the Interface Settings page click Quality of Service QoS Parameters Interface Settings in the tree view Figure 9 2 Interface Settings Table 9 109 QoS Settings CLI Commands CLI Command Description qos trust cos dscp Configures the system to trust mode no qos...

Page 378: ... interface 1 Open the Interface Settings page 2 Select an interface in the Interface field 3 Define the fields 4 Click Apply Changes The CoS settings are assigned to the interface Displaying QoS CoS settings 1 Open the Interface Settings page 2 Click Show All The Interface Table is displayed Assigning QoS Interfaces Using the CLI Commands The following table summarizes the equivalent CLI commands ...

Page 379: ... fields Class of Service Specifies the CoS priority tag values where zero is the lowest and 7 is the highest Queue The queue to which the CoS priority is mapped Four traffic priority queues are supported Restore Defaults Restores the device factory defaults for mapping CoS values to an egress queue Mapping a CoS Value to a Queue 1 Open the CoS to Queue page 2 Select a CoS entry 3 Define the queue ...

Page 380: ...n example of the CLI commands Mapping DSCP Values to Queues The DSCP to Queue page provides fields for defining egress queue to specific DSCP fields To open the DSCP to Queue page click Quality of Service QoS Mapping DSCP to Queue in the tree view Figure 9 4 DSCP to Queue Table 9 111 CoS to Queue Settings CLI Commands CLI Command Description wrr queue cos map queue id cos0 cos7 Maps assigned CoS v...

Page 381: ...P to Queue page 2 Select a value in the DSCP In column 3 Define the Queue field 4 Click Apply Changes The DSCP is overwritten and the value is assigned an egress queue Assigning DSCP Values Using the CLI Commands The following table summarizes the equivalent CLI commands for configuring fields in the DSCP to Queue page The following is an example of the CLI commands Table 9 112 DSCP Value to Queue...

Page 382: ...382 Configuring Quality of Service w w w d e l l c o m s u p p o r t d e l l c o m ...

Page 383: ... with Isolated Ports Community Ports Promiscuous Ports MAC based VLAN ports Ingress Filtering ACL ACL functionality is restricted with MAC Based ACLs Special VLANs Auto negotiation No feature interaction restrictions or limitations Back Pressure Support Bridge Multicast Filtering No feature interaction restrictions or limitations Cable Tests No feature interaction restrictions or limitations Commu...

Page 384: ...ted Ports cannot function with Community Ports Promiscuous Ports Port Lock GVRP MAC based ACLs Ingress Filtering Isolated VLAN Isolated VLANs cannot function with Community VLANs Static MAC Addresses ACLs GVRP IGMP Snooping Special VLANs LAG Statistics No feature interaction restrictions or limitations Link Aggregation No feature interaction restrictions or limitations However this feature has sev...

Page 385: ...ions or limitations However this feature has several guidelines for configuring Storm Control For all the feature guidelines see Defining Port Mirroring Sessions Port Statistics No feature interaction restrictions or limitations Private VLAN Private VLANs cannot function with Isolated Ports Community Ports GVRP IGMP Snooping Special VLAN Private VLAN Private VLANs are limited or restricted functio...

Page 386: ...ture interaction restrictions or limitations Static MAC No feature interaction restrictions or limitations Storm Control No feature interaction restrictions or limitations System Logs No feature interaction restrictions or limitations System Time Synchronization No feature interaction restrictions or limitations Unauthenticated VLAN Ports Unauthenticated VLAN Ports have restricted functionality wi...

Page 387: ...VLAN Groups several VLANs into a single aggregated VLAN Aggregating VLANs enables routers to respond to ARP requests for nodes located on different sub VLANs belonging to the same Super VLAN Routers respond with their MAC address ARP Address Resolution Protocol A protocol that converts IP addresses into physical addresses ASIC Application Specific Integrated Circuit A custom chip designed for a sp...

Page 388: ...be transmitted in a fixed amount of time For digital switch modules bandwidth is defined in Bits per Second bps or Bytes per Second Bandwidth Assignments The amount of bandwidth assigned to a specific application user or interface Baud The number of signaling elements transmitted each second Best Effort Traffic is assigned to the lowest priority queue and packet delivery is not guaranteed Boot Ver...

Page 389: ...ion about broadcast storms see Defining LAG Parameters C CDB Configuration Data Base A file containing a device s configuration information Class of Service Class of Service CoS Class of Service is the 802 1p priority scheme CoS provides a method for tagging packets with priority information A CoS value between 0 7 is added to the Layer II header of packets where zero is the lowest priority and se...

Page 390: ... two different types of duplex mode Full Duplex Mode Permits for bisynchronous communication for example a telephone Two parties can transmit information at the same time Half Duplex Mode Permits asynchronous communication for example a walkie talkie Only one party can transmit information at a time E Egress Ports Ports from which network traffic is transmitted End System An end user device on a n...

Page 391: ...igher speed device s that is that the higher speed device refrains from sending packets Fragment Ethernet packets smaller than 576 bits Frame Packets containing the header and trailer information required by the physical medium G GARP General Attributes Registration Protocol Registers client stations into a Multicast domain Gigabit Ethernet Gigabit Ethernet transmits at 1000 Mbps and is compatible...

Page 392: ... MAC sublayer IEEE 802 1Q Defines the operation of VLAN Bridges that permit the definition operation and administration of VLANs within Bridged LAN infrastructures Image File System images are saved in two Flash sectors called images Image 1 and Image 2 The active image stores the active copy while the other image stores a second copy Ingress Port Ports on which network traffic is received IP Inte...

Page 393: ...k resources For example load balancing may distribute the incoming packets evenly to all servers or redirect the packets to the next available server M MAC Address Media Access Control Address The MAC Address is a hardware specific address that identifies each network node MAC Address Learning MAC Address Learning characterizes a learning bridge in which the packet s source MAC address is recorded...

Page 394: ...ic aspects of network components Multicast Transmits copies of a single packet to multiple ports N NMS Network Management System An interface that provides a method of managing a system Node A network connection endpoint or a common junction for multiple network lines Nodes include Processors Controllers Workstations O OID Object Identifier Used by SNMP to identify managed objects In the SNMP Mana...

Page 395: ...0 Mbps Fast Ethernet 100Mbps Gigabit Ethernet 1000 Mbps Protocol A set of rules that governs how devices exchange information across networks Q QoS Quality of Service QoS allows network managers to decide how and what network traffic is forwarded according to priorities application types and source and destination addresses Query Extracts information from a database and presents the information fo...

Page 396: ...twork devices with embedded SNMP agents SNMP agents gather network activity and device status information and send the information back to a workstation SNTP Simple Network Time Protocol SNTP assures accurate network switch clock time synchronization up to the millisecond SoC System on a Chip An ASIC that contains an entire system For example a telecom SoC application can contain a microprocessor ...

Page 397: ... communicate and exchange data streams TCP guarantees packet delivery and guarantees packets are transmitted and received in the order their sent Telnet Terminal Emulation Protocol Enables system users to log in and use resources on remote networks TFTP Trivial File Transfer Protocol Uses User Data Protocol UDP without security features to transfer files Trap A message sent by the SNMP that indica...

Page 398: ... that cover a large geographical area Wildcard Mask Specifies which IP address bits are used and which bits are ignored A wild switch module mask of 255 255 255 255 indicates that no bit is important A wildcard of 0 0 0 0 indicates that all the bits are important For example if the destination IP address 149 36 184 198 and the wildcard mask is 255 36 184 00 the first two bits of the IP address are...

Page 399: ...oadcast 110 112 121 Buttons 82 C Cables 152 154 CBC 189 CIDR 389 Cipher Block Chaining 189 CLI 22 34 Command Line Interface 22 34 Command Mode Overview 84 Communities 202 Configuration file 213 Console 124 CoS 378 Critical 124 D DC unit 46 Debug 124 Default Gateway 135 136 Default settings 220 Defining device information 88 Defining MAC Based ACLs 241 Device installation 50 Device representation 8...

Page 400: ...6 HTTPS 156 I ICMP 392 IDRP 392 IEEE 392 IEEE 802 1d 392 IEEE 802 1p 392 IEEE 802 1Q 392 IEEE 802 1Q 31 IGMP 392 iles 213 Image 392 Image 1 392 Image 2 392 Image files 218 Informational 124 Ingress 392 IP 392 IP addresses 137 ISIS 392 J Jumbo frames 392 L L2TP 393 LACP 320 LAGs 284 322 331 393 LCP 289 LEDs 40 Light Emitting Diodes 40 Line 164 Line Passwords 177 Link aggregation 319 Link Control Pr...

Page 401: ...95 Quality of Service 373 395 R RADIUS 164 184 186 187 395 RAM logs 124 Rapid Spanning Tree Protocol 288 396 Rapid STP 289 293 297 RDP 395 Remote Authentication Dial In User Service 35 Remote Authentication Dial In User Service 395 Remote Authorization Dial In User Service 184 Remote Log Server Page 130 Reset 135 Reset button 47 RMON 352 354 356 395 RMON History Control Page 355 RPS 45 RSTP 32 288...

Page 402: ...23 Traps 208 Tree view 79 Trivial File Transfer Protocol 397 Trust 377 U UDP 397 Understanding the interface 79 Unicast 110 112 Unit failure 22 Unit IDs 23 Uploading files 215 User Data Protocol 397 User Security Model 189 USM 189 V Ventilation System 47 Virtual Local Area Networks 398 VLAN 299 301 305 307 331 398 VLAN ID 268 VLAN membership 300 VLAN membership table 301 VLAN Port Membership Table...

Reviews:

No comments

Related manuals for 48 Port Gigabit Ethernet Switch

ABB EDS500 Series Operating Instruction preview
EDS500 Series
Brand: ABB Pages: 7
ABB Sense7 Series Original Instructions Manual preview
Sense7 Series
Brand: ABB Pages: 15
ABB NAL Series Mounting And Operation Manual preview
NAL Series
Brand: ABB Pages: 32
ABB VUBB User Manual preview
VUBB
Brand: ABB Pages: 44
N-Tron 100 Series User Manual & Installation Manual preview
100 Series
Brand: N-Tron Pages: 20
Barksdale 9000 Series Operating Instructions preview
9000 Series
Brand: Barksdale Pages: 5
Barksdale 8000 Series Operating Instructions Manual preview
8000 Series
Brand: Barksdale Pages: 6
S&C 2000 series Instructions For Field Assembly And Installation preview
2000 series
Brand: S&C Pages: 26
S&C 2000 series Installation Manual preview
2000 series
Brand: S&C Pages: 28
S&C 2000 series Installation And Operation Manual preview
2000 series
Brand: S&C Pages: 37
D-Link DKVM-IP1 Manual preview
DKVM-IP1
Brand: D-Link Pages: 73
La Toulousaine 1400 Installation Manual preview
1400
Brand: La Toulousaine Pages: 6
JDS Uniphase SB Series User Manual preview
SB Series
Brand: JDS Uniphase Pages: 40
Magnetrol T20 Series Instruction Manual And Replacement Parts List preview
T20 Series
Brand: Magnetrol Pages: 12
Magnetrol T20 Series Installation And Operating Manual preview
T20 Series
Brand: Magnetrol Pages: 24
ABLE 6 Series Installation & Maintenance Instructions preview
6 Series
Brand: ABLE Pages: 5
TAMS 1800 Series Installation & Operation Manual preview
1800 Series
Brand: TAMS Pages: 28
D-Link DFE-550TX Datasheet preview
DFE-550TX
Brand: D-Link Pages: 2

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

ABB AEG Acer Asus Beko Black & Decker Bosch Brother Candy Canon Cisco Craftsman D-Link DeWalt Dell Electrolux Emerson Epson Frigidaire Fujitsu GE HP Haier Hitachi Honeywell Huawei Husqvarna JVC Kenmore Kenwood KitchenAid LG Lenovo Makita Miele Mitsubishi Electric Motorola NEC Nikon Nokia Panasonic Philips Pioneer Samsung Sanyo Sharp Siemens Sony TP-Link Toshiba Whirlpool Xiaomi Yamaha Zanussi Load more brands