manualshive.com logo in svg

3Com 3CRDSF9PWR-US - OfficeConnect Managed Fast Ethernet PoE Switch, User Manual

The 3Com 3CRDSF9PWR-US - OfficeConnect Managed Fast Ethernet PoE Switch is a high-quality networking device that provides advanced features for managing and powering your office network. To get started quickly and maximize its potential, you can easily download the detailed User Manual for free from manualshive.com, your ultimate source for all your user manual needs.

Share
Download
background image

82

C

HAPTER

 4: M

ANAGING

 D

EVICE

 S

ECURITY

Defining Access 
Control Lists 

Access Control Lists 

(ACLs) allow network managers to define 

classification actions and rules for specific ingress ports. Packets entering 
an ingress port, with an active ACL are either admitted or denied entry. 

For example, an ACL rule states that port number 20 can receive TCP 
packets, however, if a UDP packet is received, the packet will be dropped. 
ACLs are composed of access control entries (ACEs) that are made of the 
filters that determine traffic classifications. 

The following are examples of filters that can be defined as ACEs:

Source Port IP Address and Wildcard Mask

 — Filters packets by 

the source port IP address and wildcard mask.

Destination Port IP Address and Wildcard Mask

 — Filters packets 

by the destination port IP address and wildcard mask.

Protocol

 — Filters packets by the IP protocol.

DSCP

 — Filters packets by the DiffServ Code Point (DSCP) value.

IP Precedence 

— Filters packets by the IP Precedence.

Action

 — Indicates the action assigned to the packet matching the 

ACL. Packets are forwarded or dropped.

This section includes the following topics:

Viewing MAC Based ACLs

Configuring MAC Based ACLs

Removing MAC Based ACLs

Viewing IP Based ACLs

Defining IP Based ACLs

Removing IP Based ACLs

Viewing ACL Binding

Configuring ACL Binding

Removing ACL Binding

Summary of Contents for 3CRDSF9PWR-US - OfficeConnect Managed Fast Ethernet PoE Switch

Page 1: ...3Com OfficeConnect Managed PoE Switch User Guide 3CRDSF9PWR www 3Com com Part Number 10016863 Rev BB Published August 2009 ...

Page 2: ...ot to remove or deface any portion of any legend provided on any licensed program or documentation contained in or delivered to you in conjunction with this User Guide Unless otherwise indicated 3Com registered trademarks are registered in the United States and may or may not be registered in other countries 3Com and the 3Com logo are registered trademarks of 3Com Corporation Intel and Pentium are...

Page 3: ... used in your network It covers summaries of hardware and software features Using the 3Com Web Interface Provides information for using the Web interface including adding editing and deleting device configuration information Viewing Basic Settings provides information for viewing and configuring essential information required for setting up and maintaining device settings Managing Device Security ...

Page 4: ...ic and Rapid Spanning Tree Configuring SNMP Provides information for configuring the Simple Network Management Protocol SNMP which provides a method for managing network devices Configuring Quality of Service Provides information defining Quality of Service including default CoS values queue service mode DSCP and CoS mapping Trust mode bandwidth settings and Voice VLAN Managing System Files Provid...

Page 5: ...nventions Table 1 lists conventions that are used throughout this guide Related Documentation In addition to this guide other documentation available for the 3Com OfficeConnect Managed Fast Ethernet PoE Switch include the following Safety and Regulatory Information Provides installation set up and regulatory compliance information Table 1 Notice Icons Icon Notice Type Description Information note ...

Page 6: ...6 ABOUT THIS GUIDE ...

Page 7: ...p for Management 21 Methods of Managing a Switch 21 Web Interface Management 22 Command Line Interface Management 22 SNMP Management 23 Switch Setup Overview 23 IP Configuration 25 Using the Command Line Interface CLI 26 Connecting to the Console Port 26 Manually set the IP Address using the Console Port 27 Viewing IP Information using the Console Port 28 Setting Up Web Interface Management 30 Web...

Page 8: ...the Configuration 44 Resetting the Device 45 Restoring Factory Defaults 47 Logging Off the Device 48 3 VIEWING BASIC SETTINGS Viewing Device Settings 50 Configuring the Polling Interval 51 Viewing Color Keys 52 4 MANAGING DEVICE SECURITY Configuring System Access 54 Viewing System Access Settings 55 Defining System Access 56 Modifying System Access 57 Removing System Access 58 Defining RADIUS Clie...

Page 9: ...d ACLs 83 Configuring MAC Based ACLs 84 Removing MAC Based ACLs 86 Viewing IP Based ACLs 88 Defining IP Based ACLs 90 Removing IP Based ACLs 93 Viewing ACL Binding 95 Configuring ACL Binding 96 Removing ACL Binding 97 Using Broadcast Storm Control 98 Displaying Broadcast Storm Control Settings 99 Configuring Broadcast Storm Control 100 5 MANAGING SYSTEM INFORMATION Viewing System Description 104 D...

Page 10: ...odifying VLAN Settings 136 Modifying Port VLAN Settings 138 Removing VLANs 139 9 CONFIGURING IP AND MAC ADDRESS INFORMATION Defining IP Addressing 142 Configuring ARP Settings 143 Viewing ARP Settings 144 Defining ARP Settings 145 Removing ARP Entries 146 Viewing Address Tables 148 Viewing Address Table Settings 149 Viewing Port Summary Settings 150 10 CONFIGURING IGMP SNOOPING Defining IGMP Snoop...

Page 11: ... to CoS Mapping 175 Configuring DSCP to CoS Mapping 176 Configuring Trust Settings 177 Viewing Bandwidth Settings 178 Defining Bandwidth Settings 180 Configuring Voice VLAN 182 Viewing Voice VLAN 183 Defining Voice VLAN 184 Defining Voice VLAN Port Settings 186 Viewing Voice VLAN Port Definitions 188 Viewing the OUI Summaries 190 Modifying OUI Definitions 191 14 MANAGING SYSTEM FILES Backing Up Sy...

Page 12: ...efining Cable Diagnostics 221 Pinging Another Device 223 A 3COM NETWORK MANAGEMENT 3Com Network Supervisor 225 3Com Network Director 226 3Com Network Access Manager 226 3Com Enterprise Management Suite 227 Integration Kit with HP OpenView Network Node Manager 227 B DEVICE SPECIFICATIONS AND FEATURES Related Standards 229 Environmental 229 Physical 229 Electrical 230 Switch Features 230 C PIN OUTS ...

Page 13: ... GLOSSARY 243 F OBTAINING SUPPORT FOR YOUR 3COM PRODUCTS Register Your Product to Gain Service Benefits 249 TTroubleshoot Online 249 Purchase Extended Warranty and Professional Services 250 Access Software Downloads 250 Telephone Technical Support and Repair 250 Contact Us 251 REGULATORY NOTICES ...

Page 14: ......

Page 15: ...g topics About the OfficeConnect Managed Fast Ethernet PoE Switch Front Panel Detail LED Status Indicators System Specifications Installing the Switch Setting Up for Management Methods of Managing a Switch Switch Setup Overview Using the Command Line Interface CLI Setting Up Web Interface Management Setting Up Command Line Interface Management Setting Up SNMP Management V1 or V2 Default Users and ...

Page 16: ...ast Ethernet access ports One Gigabit Ethernet uplink port Port security Link aggregation control protocol LACP Up to 256 VLANs Access control lists ACLs Port access control through IEEE 802 1X or local database Port based mirroring Summary of Hardware Features Table 1 summarizes the hardware features supported by the OfficeConnect Managed Fast Ethernet PoE Switch Table 1 Hardware Features Feature...

Page 17: ... queues per port Power over Ethernet and Power over Ethernet Plus Supported on ports 1 8 Fast Ethernet Ports Auto negotiating 10 100BASE TX ports Gigabit Ethernet Ports Auto negotiating 10 100 1000BASE T ports SFP Ethernet Port Supports fiber Gigabit Ethernet long wave LX fiber Gigabit Ethernet short wave SX and single strand fiber Fast Ethernet BX transceivers Mounting Standalone and rack mountin...

Page 18: ... flashes quickly when the port is sending or receiving data Yellow The port works at the rate of 10 Mbps the LED flashes quickly when the port is sending or receiving data OFF The port is not connected 10 100 1000 BASE T Ethernet port status Link Activity Green The port works at the rate of 1000 Mbps the LED flashes quickly when the port is sending or receiving data Yellow The port works at the ra...

Page 19: ...rowser http www 3com com Table 3 System specifications of the OfficeConnect Managed Fast Ethernet PoE switch Specification OfficeConnect Managed Fast Ethernet PoE Switch Physical dimensions W D H 440 265 43 6 mm 17 3x10 4x1 7 in Weight 2 04 kg 4 50 lb Console port One Console port Fast Ethernet ports on the front panel 8 10 100 Mbps Ethernet ports Gigabit Ethernet ports on the front panel One 10 1...

Page 20: ...sarbeiten verrichten lesen Sie die 3Com Switch Family Safety and Regulatory Information ADVERTENCIA Informacion de seguridad Antes de instalar o extraer cualquier componente del switch o de realizar tareas de mantenimiento debe leer la informacion de seguridad facilitada en el 3Com Switch Family Safety and Regulatory Information AVVERTENZA Informazioni di sicurezza Prima di installare o rimuovere ...

Page 21: ... Methods of Managing a Switch Switch Setup Overview Using the Command Line Interface CLI Manually set the IP Address using the Console Port Viewing IP Information using the Console Port Setting Up Web Interface Management Setting Up Command Line Interface Management Setting Up SNMP Management V1 or V2 Default Users and Passwords Methods of Managing a Switch To manage your switch you can use one of...

Page 22: ...Refer to Setting Up Web Interface Management on page 30 Command Line Interface Management Each switch has a command line interface CLI that allows you to manage the switch from a workstation either locally via a console port connection see Figure 3 or remotely over the network see Figure 4 Figure 3 CLI management via the console port Figure 4 CLI management over the network Refer to Setting Up Com...

Page 23: ...etwork Refer to Setting Up SNMP Management V1 or V2 on page 32 Switch Setup Overview This section gives an overview of what you need to do to get your switch set up and ready for management when it is in its default state The whole setup process is summarized in Figure 6 Detailed procedural steps are contained in the sections that follow In brief you need to Configure IP information manually for y...

Page 24: ...want to manually configure the IP information Connect to the console port and use the Command Line Interface See page 26 How do you want to manage your switch See page 21 SNMP See page 32 Command Line Interface Connect using the console port See page 26 Web Interface Connect over the network See page 31 How do you want to view the automatically configured IP information How do you want to connect ...

Page 25: ...nage Most DHCP servers allow static IP addresses to be configured so that you know what IP address will be allocated to the switch Refer to the documentation that accompanies your DHCP server You should use the Automatic IP configuration method if your network uses DHCP to allocate IP information or flexibility is needed If the switch is deployed onto a different subnet it will automatically recon...

Page 26: ...ing the Command Line Interface CLI You can access the switch through the Console port to manually set the IP address or to view the IP address that was assigned automatically for example by a DHCP server For more information about the CLI refer to the 3Com CLI Reference Guide Connecting to the Console Port This section describes how to connect to your switch through the Console port Prerequisites ...

Page 27: ...have connected the cable The settings must be set to match the default settings for the switch which are 38 400 baud bits per second 8 data bits no parity 1 stop bit no hardware flow control Refer to the documentation that accompanies the terminal emulation software for more information 3 Power up the switch The Power on Self Test POST will be performed The OfficeConnect Managed Fast Ethernet PoE ...

Page 28: ...the IP address and mmm mmm mmm mmm is the subnet mask of the switch 6 Enter the end command to return to the Privileged Exec mode and then enter the quit command to terminate the CLI session The initial setup of your switch is now complete and the switch is ready for you to set up your chosen management method See Methods of Managing a Switch on page 21 Viewing IP Information using the Console Por...

Page 29: ...ddress and Netmask 169 254 99 51 255 255 0 0 on VLAN 1 Address Mode DHCP Console The initial set up of your switch is now complete and the switch is ready for you to set up your chosen management method See Methods of Managing a Switch on page 21 For more information about the CLI refer to the 3Com CLI Reference Guide If you do not intend to use the command line interface using the console port to...

Page 30: ...display the web interface correctly use one of the following Web browser and platform combinations For the browser to operate the web interface correctly JavaScript and Cascading Style Sheets must be enabled on your browser These features are enabled on a browser by default You will only need to enable them if you have changed your browser settings The switch s Web interface supports both secure H...

Page 31: ...enter the IP address of the switch that you wish to manage in the URL locator for example in the following format http xxx xxx xxx xxx 5 At the login and password prompts enter admin as your user name and press Return at the password prompt or the password of your choice if you have already modified the default password The main Web interface page is displayed Setting Up Command Line Interface Man...

Page 32: ...itch that you wish to manage in the following format telnet xxx xxx xxx xxx where xxx xxx xxx xxx is the IP address of the switch If opening a Telnet session via third party software you will need to enter the IP address in the format suitable for that software 5 At the login and password prompts enter admin as your user name and enter your password at the password prompt or just press Return if y...

Page 33: ...ading Software using the CLI This section describes how to upgrade software to your switch from the Command Line Interface CLI Note You can also upgrade the software using the switch Web user interface See Restoring the Software Image page 197 Bootcode can only be upgraded using the CLI for which instructions are supplied in the release notes 1 To download the runtime application file enter the fo...

Page 34: ...ng a new runtime file it will automatically overwrite the previous version To set the switch to boot from the new runtime file you have downloaded enter the reload command as shown below Console config end Console reload The following prompt displays System will be restarted continue y n 3 Enter y and press Return The system reboots the switch ...

Page 35: ...roduction to the user interface and includes the following topics Starting the 3Com Web Interface Understanding the 3Com Web Interface Using Screen and Table Options Saving the Configuration Resetting the Device Restoring Factory Defaults Logging Off the Device ...

Page 36: ...de read or read write permissions to users for configuring the switch Users and access levels are described in Configuring System Access Login information is always handled in the local database A unique password is required of each user Two access levels exist on the 3Com Web Interface Management access level Provides the user with read write access There is always one management level user confi...

Page 37: ... user interface 1 Open an Internet browser 2 Enter the device IP address in the address bar and press Enter The Enter Network Password Page opens Figure 8 Enter Network Password Page 3 Enter your user name and password The device default factory settings is configured with a User Name that is admin and a password that is blank Passwords are case sensitive ...

Page 38: ...wing views Tree View Provides easy navigation through the configurable device features The main branches expand to display the sub features Tab View Provides the device summary information located at the top of the home page Port Indicators Located under the Device View at the top of the home page the port indicators provide a visual representation of the ports on the front panel Tab View Port Ind...

Page 39: ... easy navigation through the configurable device features The main branches expand to display the sub features Tab View The Tab Area enables navigation through the different device features Click the tabs to view all the components under a specific feature Web Interface Information Provides access to online help and contains information about the Web Interface Tree View Tab View Web Interface Info...

Page 40: ... Summary Device View Figure 11 Device Representation 2 By moving your mouse over a port you can view information about the port type speed duplex mode utilization and current status 3 By selecting a specific port with your mouse you can open the Port Administration Detail Setup or Statistics Summary menu For detailed information on configuring ports please refer to Configuring Ports Using the 3Com...

Page 41: ...g Configuration Information Modifying Configuration Information Removing Configuration Information Viewing Configuration Information To view configuration information 1 Click Port Administration Summary The Port Settings Summary Page opens Figure 12 Port Settings Summary Page Table 8 3Com Web Interface Information Tabs Tab Tab Name Description Logout Logs the user out and terminates the current se...

Page 42: ...on can be added to specific 3Com Web Interface pages by opening the IP Setup Page To configure IP Setup 1 Click Administration IP Setup The IP Setup Page opens Figure 13 IP Setup Page 2 Enter requisite information in the text field 3 Click The IP information is configured and the device is updated ...

Page 43: ...s Figure 14 System Access Modify Page 2 Modify the fields 3 Click The access fields are modified Removing Configuration Information 1 Click Administration System Access Remove The System Access Remove Page opens Figure 15 System Access Remove Page 2 Select the user account to be deleted 3 Click The user account is deleted and the device is updated ...

Page 44: ...latest configuration to be saved to the flash memory To save the device configuration 1 Click Save Configuration The Save Configuration Page opens Figure 16 Save Configuration Page A message appears Saving configuration manually Note The configuration is saved automatically every time OK button is clicked The operation will save your configuration Do you wish to continue 2 Click The configuration ...

Page 45: ...cation To prevent the current configuration from being lost use the Save Configuration Page to save all user defined changes to the flash memory before resetting the device To reset the device 1 Click Administration Reset The Reset Page opens Figure 17 Reset Page 2 Click A confirmation message is displayed ...

Page 46: ...age is displayed indicating that the device will reboot in 15 seconds 4 Click again The device is reset and a prompt for a user name and password is displayed Figure 18 User Name and Password Page 5 Enter a user name and password to reconnect to the web interface ...

Page 47: ...k Administration Reset The Reset Page opens Figure 19 Reset Page The Reset Page contains the following fields Initialize keep IP Setting Resets the device with the factory default settings but maintains the current IP Address Initialize all information Resets the device with the factory default settings including the IP Address 2 Click or The system is restored to factory defaults ...

Page 48: ...48 CHAPTER 2 USING THE 3COM WEB INTERFACE Logging Off the Device To log off the device 1 Click The Logout Page opens 2 The following message appears 3 Click The 3Com Web Interface Home Page closes ...

Page 49: ...e Page presents a device summary section that provides the system administrator with the option to view essential information required for setting up and maintaining device settings The Device Summary Section contains the following views Viewing Device Settings Configuring the Polling Interval Viewing Color Keys ...

Page 50: ...the following fields Poll Now Enables polling the ports for port information including speed utilization and port status Product Description Displays the device name System Name Defines the user defined device name The field length is 0 160 characters System Location Defines the location where the system is currently running The field range is 0 160 characters System Contact Defines the name of th...

Page 51: ...e Polling Interval Page displays the interval at which information on the Web management pages is refreshed To configure the polling interval 1 Click Device Summary Polling Interval The Polling Interval Page opens Figure 21 Polling Interval Page The Polling Interval Page contains the following fields Polling Interval Displays the current setting for the polling interval The range for this field is...

Page 52: ...hich are the physical interface used for terminating twisted pair type cable SFP Displays the port status of the Small Form Factor Pluggable SFP optical transmitter modules that combine transmitter and receiver functions The table includes the color and the port status White Unconnected No link detected Yellow Lower speed on 10 100 1000M port Green Maximum speed 10 100 1000M RJ45 or SFP Indicates ...

Page 53: ...thentication and access control lists This section includes the following topics Configuring System Access Defining RADIUS Clients Defining Port Based Authentication 802 1X Defining Local Database Authentication Encrypting Connection to the Web Interface HTTPS Using the Secure Shell Protocol SSH Defining Access Control Lists Using Broadcast Storm Control ...

Page 54: ...nfiguring the switch Login information is managed in the local database A unique password is required of each user Two access levels exist on the 3Com Web Interface Management access level Provides the user with read write access There is always one management level user configured for the switch The factory default user name is admin with no password Monitor access level Provides the user with re...

Page 55: ... Access Summary Page The System Access Summary Page contains the following fields User Name Displays the user names The possible predefined field values are admin Displays the predefined administrative user name monitor Displays the predefined monitor user name Access Level Displays the user access level The lowest user access level is Monitor and the highest is Management Management Provides the ...

Page 56: ... opens Figure 24 System Access Setup Page The System Access Setup Page contains the following fields User Name Defines the user name Access Level Defines the user access level The lowest user access level is Monitor and the highest is Management Management Provides users with read and write access rights Monitor Provides users with read access rights Password Defines the user password User passwor...

Page 57: ...ns the following fields User Name Displays the user name Access Level Specifies the user access level The lowest user access level is Monitoring and the highest is Management Management Provides users with read and write access rights Monitor Provides users with read access rights Password Modify Enables modifying a password for an existing user Password Defines the local user password Local user ...

Page 58: ... Page The System Access Remove Page contains the following fields Remove User s Users to be removed can be selected from the list below User Name Displays the user name Access Level Displays the user access level The lowest user access level is Monitoring and the highest is Management Management Provides users with read and write access rights Monitoring Provides users with read access rights 2 Se...

Page 59: ...ns the following fields Primary Server Defines the RADIUS Primary Server authentication fields Backup Server Defines the RADIUS Backup Server authentication fields IP Address Defines the RADIUS Server IP address UDP Port Defines the authentication port The authentication port is used to verify RADIUS server authentication The authentication port default is 1812 Max Retries Defines the number of tr...

Page 60: ...s the default key string used for authenticating and encrypting all RADIUS communications between the switch and the RADIUS server This key must match the RADIUS encryption The range is 0 48 characters Do not use blank spaces Verify Key Verifies the key 2 Define the fields 3 Click The RADIUS client is enabled and the system is updated ...

Page 61: ...ing system access Supplicants Specifies the host connected to the authenticated port requesting to access the system services Authentication Server Specifies the server that performs the authentication on behalf of the authenticator and indicates whether the supplicant is authorized to access system services Port based authentication creates two access states Controlled Access Permits communicatio...

Page 62: ...cation Reauthentication can be used to detect if a new device is plugged into a switch port If enabled the client will be reauthenticated after the interval specified by the Reauthentication Period Enabled Periodic reauthentication is enabled on the port Disabled Periodic reauthentication is disabled on the port This is the default Reauthentication Period Displays the time span in seconds in which...

Page 63: ...this port This is the default Authenticator Maximum Request Sets the maximum number of times the switch port will retransmit an EAP request packet to the client before it times out the authentication session The field default is 2 Authenticator Max Count The maximum number of hosts that can connect to a port when the Multi Host operation mode is selected The field default is 5 Authenticator Quiet ...

Page 64: ... Setup Page opens Figure 29 802 1X Setup Page The 802 1X Setup Page contains the following fields 802 1X System Setting System Authentication Specifies if Port Authentication is enabled on the device The possible field values are Enabled Enables port based authentication on the device Disabled Disables port based authentication on the device This is the default Port Settings Operation Mode Allows ...

Page 65: ...tion on the port Disabled Disables periodic reauthentication on the port Maximum Request Sets the maximum number of times the switch port will retransmit an EAP request packet to the client before it times out the authentication session The field default is 2 the range is 1 10 Max Count The maximum number of hosts that can connect to a port when Multi Host operation mode is selected The field defa...

Page 66: ...ss and perform DNS queries All other traffic except for HTTP protocol traffic is blocked The switch intercepts HTTP protocol traffic and redirects it to a switch generated web page that facilitates user name and password authentication Once authentication is successful the user is forwarded on to the originally requested web page This section includes the following topics Configuring Local Databas...

Page 67: ... Local Database Setup The Local Database Setup Page opens Figure 30 Local Database Setup Page The Local Database Setup Page contains the following fields System Authentication Control Configures local database authentication globally for the switch The possible field values are Enabled Enables local database authentication on the device Disabled Disables local database authentication on the device...

Page 68: ...lowing fields Port Status Displays the administrative status of local database authentication for a port The possible field values are Enabled Enables local database authentication on the device Disabled Disables local database authentication on the device Quiet Period Displays the amount of time a host must wait after exceeding the limit for failed login attempts before it may attempt local datab...

Page 69: ... status of local database authentication for a port The possible field values are Enabled Enables local database authentication on the device Disabled Disables local database authentication on the device This is the default No Change Retains the current port status Quid Period Displays the amount of time a host must wait after exceeding the limit for failed login attempts before it may attempt loc...

Page 70: ... User Listing The Local Database User Summary Page displays user names stored in the local database To display the users stored in the Local Database 1 Click Port Local Database User Summary The Local Database User Summary Page opens Figure 33 Local Database User Summary Page The Local Database User Summary Page contains the following fields User Name The name of users stored in the local database...

Page 71: ...ge The Local Database User Setup Page contains the following fields Create a User User Name The name of a user to be authorized restricted network access through local database authentication String length is 6 12 characters case sensitive and the maximum number of users is 250 Password The authentication password for the corresponding user String length is 6 12 characters case sensitive Confirm P...

Page 72: ...5 Local Database User Modify Page The Local Database User Modify Page contains the following fields User Name The name of a user stored in the local database Password Modify Mark this box to modify the password for the selected user Password The authentication password for the corresponding user String length is 6 12 characters case sensitive Confirm Password Verifies the password 2 Select a user ...

Page 73: ...to this page To remove a user entry from the Local Database 1 Click Port Local Database Remove The Local Database User Remove Page opens Figure 36 Local Database User Remove Page The Local Database User Remove Page contains the following fields User Name The name of a user stored in the local database 2 Select a user from the list 3 Click The user entry is removed from the Local Database and the d...

Page 74: ...properly validated certificate provides a higher level of security than the default certificate You can securely browse your switch by using the HTTPS HTTP over SSL protocol To access the Web interface securely enter the following into your browser https xxx xxx xxx xxx where xxx xxx xxx xxx is the IP address of your switch Both HTTP and HTTPS service can be enabled independently on the switch How...

Page 75: ...re HTTPS settings 1 Click Security HTTPS Settings Configure The HTTPS Configure Page opens Figure 37 HTTPS Configure Page The HTTPS Configure Page contains the following fields HTTPS Status Specifies if HTTPS is enabled on the device The possible predefined field values are Enabled HTTPS is enabled on the device This is the default Table 9 HTTPS System Support Web Browser Operating System Internet...

Page 76: ...TPS settings are updated Displaying the Web Server Certificate The HTTPS Detail Page allows users to display detailed information about the web server certificate To view information about the digital certificate 1 Click Security HTTPS Settings Detail The HTTPS Detail Page opens Figure 38 HTTPS Detail Page The HTTPS Detail Page contains the following fields Issued to Shows the registered user of t...

Page 77: ...rtify your switch Administrators will be warned that the certificate has not been certified by a Certificate Authority CA but security will not be otherwise affected If you cannot generate an X 509 certificate yourself you can buy one from one of the Certifying Authorities or your ISP Each switch requires its own X 509 certificate To download an HTTPS certificate 1 Click Security HTTPS Settings Do...

Page 78: ...d in the private key file This password is used to verify authorization for certificate use and is verified when downloading the certificate to the switch 2 Define the fields 3 Click The certificate is downloaded You must reboot the switch to start using the new certificate ...

Page 79: ...lete these steps 1 Generate a Host Key Pair No keys are generated in the switch s factory default configuration You must use the SSH Key Generate Page to create a public host key 2 Provide Host Public Key to Clients Many SSH client programs automatically import the host public key during the initial connection setup with the switch Otherwise you need to manually create a known hosts file on the ma...

Page 80: ...SH client application To view the DSA and RSA keys 1 Click Security SSH Host Key The SSH Host Key Page opens Figure 40 SSH Host Key Page The SSH Host Key Page contains the following fields Key When an RSA key is displayed the first field indicates the size of the host key e g 1024 the second field is the encoded public exponent e g 65537 and the last string is the encoded modulus When a DSA key is...

Page 81: ...te Page The SSH Key Generate Page contains a prompt message to enter a seed to randomize the key generation process 2 Enter any random string preferably eight characters or more 3 Click The switch begins generating the public host key This process takes several minutes to complete After the key is generated it is stored in flash memory The SSH server on the switch uses this host key to negotiate a...

Page 82: ... filters that can be defined as ACEs Source Port IP Address and Wildcard Mask Filters packets by the source port IP address and wildcard mask Destination Port IP Address and Wildcard Mask Filters packets by the destination port IP address and wildcard mask Protocol Filters packets by the IP protocol DSCP Filters packets by the DiffServ Code Point DSCP value IP Precedence Filters packets by the IP ...

Page 83: ...elds ACL Name Contains a list of the MAC based ACLs Source Address Indicates the source MAC address Source Mask Indicates the source MAC address Mask Destination Address Indicates the destination MAC address Destination Mask Indicates the destination MAC address Mask VLAN ID Matches the packet s VLAN ID to the ACL rule The possible field values are 0 to 4095 CoS Classifies traffic based on the CoS...

Page 84: ...Setup Page allows the network administrator to create and define rules for MAC based ACLs Monitor users have no access to this page To configure MAC based ACLs Click Device ACL MAC Based ACL Setup The MAC Based ACL Setup Page opens Figure 43 MAC Based ACL Setup Page The MAC Based ACL Setup Page contains the following fields Select ACL Selects an existing MAC based ACL to which rules are to be adde...

Page 85: ...tches the destination MAC address to which packets are addressed Destination Mask Defines the destination MAC Address wildcard mask Wildcards are used to mask all or part of a destination MAC address Wildcard masks specify which bits are used and which are ignored For more details refer to the description for Source Mask VLAN ID Matches the packet s VLAN ID The possible field values are 0 to 4095 ...

Page 86: ... or MAC based ACL rules Monitor users have no access to this page Click Device ACL MAC Based ACL Remove The MAC Based ACL Remove Page opens Figure 44 MAC Based ACL Remove Page The MAC Based ACL Remove Page contains the following fields ACL Name Selects a MAC based ACL for removal Remove ACL Enables the ACL to be removed Checkbox unnamed When checked selects the rule for removal The top checkbox is...

Page 87: ...otocols Action Indicates the ACL forwarding action The options are as follows Permit Forwards packets which meet the ACL criteria Deny Drops packets which meet the ACL criteria To remove MAC based ACLs 1 Select the ACL Name to be deleted 2 Check Remove ACL 3 Click The selected ACL is deleted and the device is updated To remove MAC based ACL rules 1 Select the ACL Name containing the rules to be de...

Page 88: ... Name Contains a list of the IP Based ACLs Protocol Indicates the protocol in the rule to which the packet is matched Source Port Indicates the source port to match in packets Enabled only when TCP or UDP are selected in the Protocol list Destination Port Indicates the destination port to match in packets Enabled only when TCP or UDP are selected in the Protocol list Flag Set Indicates the TCP fla...

Page 89: ...icates the destination IP address mask Match DSCP Matches the packet DSCP value Match IP Precedence Indicates matching IP Precedence with the packet IP precedence value Action Indicates the ACL forwarding action The options are as follows Permit Forwards packets which meet the ACL criteria Deny Drops packets which meet the ACL criteria ...

Page 90: ...access control entries ACEs that are made of the filters that determine traffic classifications The total number of ACEs that can be defined in all ACLs together is 256 Monitor users have no access to this page To configure IP based ACLs Click Device ACL IP Based ACL Setup The IP Based ACL Setup Page opens Figure 46 IP Based ACL Setup Page The IP Based ACL Setup Page contains the following fields ...

Page 91: ...elected the IP based ACL is applied to any destination port TCP Flags If checked enables configuration of TCP flags matched to the packet The possible fields are URG Urgent pointer field significant The urgent pointer points to the sequence number of the octet following the urgent data ACK Acknowledgement field significant The acknowledgement field is the byte number of the next byte that the send...

Page 92: ...k of 010 010 011 010 is invalid but a wildcard mask of 10 10 11 10 is valid Destination IP Address If selected enables matching the destination port IP address to which packets are addressed to the rule according to a wildcard mask The field value is either user defined or Any If Any is selected accepts any destination IP address and disables wildcard mask filtering Wild Card Mask Indicates the de...

Page 93: ...ACL 2 Select the ACL from the list 3 Define the fields for the new ACL rule 4 Click The new IP based ACL rule settings are configured and the device is updated Removing IP Based ACLs The IP Based ACL Remove Page allows the user to remove IP based ACLs or IP based ACL rules Monitor users have no access to this page Click Device ACL IP Based ACL Remove The IP Based ACL Remove Page opens Figure 47 IP...

Page 94: ...stination IP Address Indicates the destination IP address Destination Mask Indicates the destination IP address mask DSCP Matches the packet DSCP value to the ACL Either the DSCP value or the IP Precedence value is used to match packets to ACLs IP Precedence Matches the packet IP Precedence value to the ACL Action Indicates the ACL forwarding action The options are as follows Permit Forwards packe...

Page 95: ...es To view ACL Binding 1 Click Device ACL ACL Binding Summary The ACL Binding Summary Page opens Figure 48 ACL Binding Summary Page The ACL Binding Summary Page contains the following fields Interface Displays the port or LAG number to which the ACL is bound ACL Name Displays the name of the ACL which is bound to a selected port or LAG ...

Page 96: ...ding 1 Click Device ACL ACL Binding Setup The ACL Binding Setup Page opens Figure 49 ACL Binding Setup Page The ACL Binding Setup Page contains the following fields Select Port s Selects the ports to be configured Bind ACL Assigns an Access Control List to a port or LAG MAC based ACL Displays the MAC based ACL to which the interface is assigned IP based ACL Displays the IP based ACL to which the i...

Page 97: ... Device ACL ACL Binding Remove The ACL Binding Remove Page opens Figure 50 ACL Binding Remove Page The ACL Binding Remove Page contains the following fields Checkbox unnamed Marks the ACL for removal Interface Displays the port interface to which the ACL is bound ACL Name Displays the name of ACL to be removed from the selected port 2 For each ACL to be removed check the box to the left of the row...

Page 98: ...excessive amount of broadcast messages simultaneously transmitted across a network by a single port Forwarded message responses are heaped onto the network straining network resources or causing the network to time out Broadcast Storm Control is enabled for all ports by defining the packet type and the maximum rate at which the packets can be transmitted The system measures the incoming Broadcast ...

Page 99: ... To display the storm control settings 1 Click Device Broadcast Storm Summary The Broadcast Storm Summary Page opens Figure 51 Broadcast Storm Summary Page The Broadcast Storm Summary Page contains the following fields Port A list of interfaces Broadcast Mode The storm control mode used on a port Broadcast Rate Threshold The maximum rate Kbits sec at which broadcast or multicast packets are forwar...

Page 100: ...ode Defines the storm control mode to use on the selected interface Disabled Disables storm control on the selected port Broadcast Enables broadcast storm control on the selected port Broadcast Multicast Enables broadcast and multicast storm control on the selected port Packet Rate Threshold Defines the maximum rate kilobits per second at which broadcast or multicast packets are forwarded The rang...

Page 101: ...Using Broadcast Storm Control 101 3 Select the ports to which these settings will be applied 4 Click Broadcast Storm Control is configured and the device is updated ...

Page 102: ...102 CHAPTER 4 MANAGING DEVICE SECURITY ...

Page 103: ...INFORMATION This section contains information for configuring general system information and includes the following Viewing System Description Defining System Settings Saving the Device Configuration Resetting the Device ...

Page 104: ...iption Displays the device model number and name System Name Defines the user defined device name The field range is 0 160 characters System Location Defines the location where the system is currently running The field range is 0 160 characters System Contact Defines the name of the contact person The field range is 0 160 characters Serial Number Displays the device serial number Product 3C Number...

Page 105: ...alled software version number Boot Version Displays the current boot version running on the device Hardware Version Displays the current hardware version of the device Poll Now Enables polling the ports for port information including speed utilization and port status ...

Page 106: ...YSTEM INFORMATION Defining System Settings The following section allows system administrators to configure advanced system settings The section includes the following topics Configuring the System Name Configuring System Time ...

Page 107: ...tem Name System Name The System Name Page opens Figure 54 System Name Page The System Name Page includes the following fields System Name Defines the user defined device name The field length is 0 255 characters System Location Defines the location where the system is currently running The field length is 0 255 characters System Contact Defines the name of the contact person The field length is 0 ...

Page 108: ...Time Setup The System Time Setup Page opens Figure 55 System Time Setup Page The System Time Setup Page contains the following fields Current Time Displays the time set for the system clock Time Zone Name of time zone The range for this field GMT 12 hours through GMT 13 hours and the default is GMT The local time zone is relative to Greenwich Mean Time which is based on the earth s prime meridian ...

Page 109: ...The range for this field is 16 16384 seconds and the default is 16 seconds Last Successful SNTP Connection Displays the last time the switch s clock was successfully updated by a time server Update Now Submits a time synchronization request to the configured time server Configure Date and Time Manually Manually sets the date and time used by the switch This option may be used if there is no time s...

Page 110: ...r users have no access to this page To save the device configuration 1 Click Save Configuration The Save Configuration Page opens Figure 56 Save Configuration Page The following message appears Saving configuration manually Note The configuration is saved automatically every time the OK button is clicked 2 Click The latest device configuration is saved and the device is updated ...

Page 111: ...ve no access to this page To reset the device configuration 1 Click Administration Reset The Reset Page opens Figure 57 Reset Page The Reset Page contains the following fields Reboot Reboots the device Initialize keep IP Setting Resets the device with the factory default settings but maintains the current IP Address Initialize all information Resets the device with the factory default settings inc...

Page 112: ...112 CHAPTER 5 MANAGING SYSTEM INFORMATION ...

Page 113: ...6 CONFIGURING PORTS This section contains information for configuring Port Settings and includes the following sections Viewing Port Settings Defining Port Settings Viewing Port Details ...

Page 114: ... enabled or disabled Flow Control Displays the flow control status on the port Operates when the port is in full duplex mode The possible field values are Enabled Enables flow control on the port Disabled Disables flow control on the port Speed Displays the configured rate for the port The port type determines what speed setting options are available The possible field values are 10M Indicates the...

Page 115: ...e interface supports transmission between the device and its link partner in both directions simultaneously Half The interface supports transmission between the device and the client in only one direction at a time Auto Indicates that port duplex mode is set to an optimal value based on advertised capabilities PVID VLAN ID assigned to untagged frames received on this port ...

Page 116: ...ex mode it must either be enabled for both parameters Auto or set to a fixed mode 10 100 1000 Half Full The 1000BASE T standard does not support forced mode Auto negotiation should always be used to establish a connection over any 1000BASE T port or trunk If not used the success of the link process cannot be guaranteed To configure Port Settings 1 Click Port Administration Setup The Port Administr...

Page 117: ... operating at 10 Mbps 100 Indicates the port is currently operating at 100 Mbps 1000 Indicates the port is currently operating at 1000 Mbps Auto Use to automatically configure the port No Change Retains the current port speed Duplex Specifies the port duplex mode This field is configurable only when the port speed is set to 10M or 100M The possible field values are Full The interface supports tran...

Page 118: ... Port Detail Page contains the following fields Select a port Selects a port to display its current settings Port State Indicates the port state The possible field values are Enabled Enables the port Disabled Disables the port Flow Control Displays the flow control status on the port Operates when the port is in full duplex mode The possible field values are Enabled Enables flow control on the por...

Page 119: ...s The port transmits and receives untagged frames only Hybrid The port may transmit tagged or untagged frames Trunk The port is an end point for a VLAN trunk A VLAN trunk is a direct link between two switches so the port transmits tagged frames that identify the source VLAN Duplex Displays the port duplex mode This field is configurable only when the port speed is set to 10M or 100M This field can...

Page 120: ...120 CHAPTER 6 CONFIGURING PORTS ...

Page 121: ...not be combined as members in a single trunk All ports in a trunk assume the configuration settings of the first member port that is the first port assigned or the lowest numbered port if more than one port is assigned to a trunk in the same command including communication mode i e speed duplex mode and flow control VLAN assignments and CoS settings STP VLAN and IGMP settings can only be made for ...

Page 122: ... Link Aggregation Summary The Link Aggregation Summary Page opens Figure 61 Link Aggregation Summary Page The Link Aggregation Summary Page includes the following fields Group ID Displays the Link Aggregated Group ID The field range is 1 4 Ports Displays the member ports included in the specified LAG Link Type Displays the type of link aggregation used for the Group ID The possible field values ar...

Page 123: ...ure 62 Link Aggregation Create Page The Link Aggregation Create Page includes the following fields Enter aggregation group ID Defines the group ID The field range is 1 4 Manual Selects the link aggregation type to be static LACP Selects the link aggregation type to be LACP Select ports for the new aggregation Selects the ports for which the link aggregation parameters are to be defined The ports a...

Page 124: ...aggregation Summary Group ID Displays the Link Aggregated Group ID The field range is 1 4 Member Ports Displays the ports assigned to the link aggregation Type Displays the type of link aggregation The possible field values are Manual or Dynamic 2 Define the fields 3 Click The link aggregation configuration is defined and the device is updated ...

Page 125: ...ink Aggregation Modify Page includes the following fields Select Aggregation to Modify Selects the Link Aggregation Group ID to modify Select ports to add to aggregation or de select ports to remove from aggregation Allows the network manager to select ports to be added or removed from a current aggregation The ports are color coded as follows Selected ports Blue Displays a member of the modified ...

Page 126: ...ted Group ID The field range is 1 4 Member Ports Displays the ports configured to the link aggregation Type Displays the link aggregation type The possible field values are Manual or LACP 2 Define the fields 3 Click The link aggregation modified and the application is updated ...

Page 127: ...ludes the following fields Select Aggregation s to Remove Displays the Link Aggregation table Allows selecting LAG IDs to be removed Each row corresponds to a Link Aggregated Group ID The fields in the table are Group ID Displays the Link Aggregated Group ID The field range is 1 4 Member Ports Displays the ports for which the link aggregation parameters are defined Type Displays the Link Aggregati...

Page 128: ...ACP LAG To view LACP for LAGs 1 Click Port LACP Summary The LACP Summary Page opens Figure 65 LACP Summary Page The LACP Summary Page contains the following fields Port Displays the port number to which timeout and priority values are assigned State Displays the operational values of the actor s state parameters The possible field values are N A or Active Group ID Displays the Link Aggregated Grou...

Page 129: ...g fields LACP System Priority Specifies system priority value Ports must be configured with the same system priority to join the same LAG The default value is 32768 The field range is 0 65535 Select Port Selects the port number to which timeout and priority values are assigned LACP Port Priority Specifies the LACP priority value for the port If an active port link goes down the backup port with th...

Page 130: ...130 CHAPTER 7 AGGREGATING PORTS 3 Click The LACP Link Aggregation is modified and the application is updated ...

Page 131: ...within the VLAN a Layer 3 router is required to allow traffic flow between VLANs Layer 3 routers identify segments and coordinate with VLANs VLANs are Broadcast and Multicast domains Broadcast and Multicast traffic is transmitted only in the VLAN in which the traffic is generated VLAN tagging provides a method of transferring VLAN information between VLAN groups VLAN 1is the default VLAN All ports...

Page 132: ... Page contains the following information Select a VLAN to display Selects a VLAN to be display its settings Membership type Displays the membership type for each VLAN The possible field values are Untagged Indicates the interface is an untagged member of the VLAN Tagged Indicates the interface is a tagged member of a VLAN VLAN tagged frames are forwarded by the interface The frames contain VLAN in...

Page 133: ...age opens Figure 68 VLAN Port Detail Page The VLAN Port Detail Page contains the following information Select Port Selects the ports to be displayed Untagged member of VLAN s Indicates the port is an untagged member of the VLAN Tagged ember of VLAN s Indicates the port is a tagged member of a VLAN VLAN tagged frames are forwarded by the interface The frames contain VLAN information ...

Page 134: ...te VLANs 1 Click Device VLAN Setup The VLAN Setup Page opens Figure 69 VLAN Setup Page The VLAN Setup Page contains the following fields Create VLANs ID s Defines the VLAN ID s to create Create Creates the VLAN ID s VLAN List ID Displays the VLAN ID Name Displays the user defined VLAN name 2 Enter the VLAN ID number s 3 Click The VLAN s are created and the device is updated ...

Page 135: ...ure 70 VLAN Rename Page The VLAN Rename Page contains the following fields ID Displays the VLAN ID Name Displays the user defined VLAN name Selected ID ID of entry selected from list of configured VLANs Enter new name New name for the selected entry To rename a VLAN 1 Highlight a VLAN to be renamed from the VLAN list 2 Enter the new name for the VLAN 3 Click The VLAN is renamed and the device is u...

Page 136: ...y VLAN Page contains the following fields Select a VLAN to modify Selects a VLAN to modify its settings Select membership type Selects the membership type for each port on the VLAN The possible field values are Untagged Indicates the interface is an untagged member of the VLAN Tagged Indicates the interface is a tagged member of a VLAN VLAN tagged frames are forwarded by the interface The frames c...

Page 137: ...Select None Removes the ports selected To add ports to a VLAN 1 Select a VLAN to modify 2 Select the membership type for the selected ports 3 Select ports to be added to the selected VLAN 4 You may select different membership types on multiple ports by repeating step 2 and step 3 5 Click The selected ports are added to the VLAN and the device is updated ...

Page 138: ... following fields Select a Port Selects a port to be modified Select membership type Displays the membership type for each port on the VLAN The possible field values are Untagged Indicates the interface is an untagged member of the VLAN Tagged Indicates the interface is a tagged member of a VLAN VLAN tagged frames are forwarded by the interface The frames contain VLAN information Not A Member Indi...

Page 139: ...twork administrator to remove VLANs Monitor users have no access to this page To delete VLANs 1 Click Device VLAN Remove The VLAN Remove Page opens Figure 73 VLAN Remove Page The VLAN Remove Page contains the following fields ID Displays the VLAN ID Name Displays the user defined VLAN name Select All Allows the user to select the entire table to be removed Select None Deselects all entries in the ...

Page 140: ...140 CHAPTER 8 CONFIGURING VLANS ...

Page 141: ...FIGURING IP AND MAC ADDRESS INFORMATION This section contains information for defining IP interfaces and includes the following sections Defining IP Addressing Configuring ARP Settings Viewing Address Tables ...

Page 142: ...ns Figure 74 IP Setup Page The IP Setup Page contains the following fields Configuration Method Defines whether the IP address is configured statically or dynamically The possible field values are Manual Specifies that the IP Interface is configured by the user DHCP Specifies that the IP Interface is dynamically created IP Address Defines the IP address Subnet Mask Defines the subnet mask Default ...

Page 143: ...nverts IP addresses into physical addresses and maps the IP address to a MAC address ARP allows a host to communicate with other hosts when only the IP address of its neighbors is known This section includes the following sections Viewing ARP Settings Defining ARP Settings Removing ARP Entries ...

Page 144: ...he ARP Settings Summary Page contains the following fields Interface Indicates the VLAN for which ARP parameters are defined IP Address Indicates the station IP address which is associated with the MAC Address MAC Address Displays the station MAC address which is associated in the ARP table with the IP address Status Displays the ARP table entry type Possible field values are Dynamic Indicates the...

Page 145: ... station IP address which is associated with the MAC address Note that this address must be within the same IP subnet as that assigned to the switch see Defining IP Addressing on page 142 MAC Address Defines the station MAC address which is associated in the ARP table with the IP address ARP Entry Age Out Specifies the amount of time in seconds that passes between ARP Table entry requests Followin...

Page 146: ... ARP Settings Remove Page The ARP Settings Remove Page contains the following fields Clear ARP Table Entries Specifies the types of ARP entries that are cleared The possible values are None Maintains the ARP entries All Clears all ARP entries Dynamic Clears only dynamic ARP entries Static Clears only static ARP entries Checkbox unnamed Selects the ARP entry for removal Interface Indicates the VLAN...

Page 147: ...table entry type Possible field values are Dynamic Indicates the ARP entry is learned dynamically Static Indicates the ARP entry is a static entry 2 For each ARP entry to be removed check the box to the left of the row in the table To remove all ARP entries the topmost box may be checked 3 Click The ARP table entries are removed and the device is updated ...

Page 148: ...rive at the device Addresses are associated with ports by learning the ports from the frames source address Frames addressed to a destination MAC address that is not associated with any port are flooded to all ports of the relevant VLAN Static addresses are manually configured In order to prevent the bridging table from overflowing dynamic MAC addresses from which no traffic is seen for a certain ...

Page 149: ...ss Table Summary Page The Address Table Summary Page contains the following fields Port Indicates the port through which the address was learned MAC Address Displays the current MAC addresses listed in the MAC address table VLAN Displays the VLAN ID associated with the port and MAC address Status Displays the MAC address entry type Possible values are Dynamic Indicates the MAC address is learned d...

Page 150: ...ary Page The Port Summary Page contains the following fields Select a port Displays the current port settings Port Indicates the port through which the address was learned MAC Address Displays MAC addresses currently listed in the MAC address table VLAN Displays the VLAN ID associated with the port and MAC address Status Displays the MAC address configuration method Possible values are Dynamic Ind...

Page 151: ...ue an IGMP report specifying that Multicast group is accepting members This results in the creation of the Multicast filtering database If IGMP Query is enabled and this switch is elected as the querier for the local LAN segment it will periodically poll each known multicast group for active members and dynamically configure the switch ports which need to forward multicast traffic It then propagat...

Page 152: ...lick Device IGMP Snooping Setup The IGMP Snooping and Query Setup Page opens Figure 80 IGMP Snooping and Query Setup Page The IGMP Snooping and Query Setup Page contains the following fields Global Settings IGMP Snooping Status Defines whether IGMP Snooping is enabled on the device The possible field values are Disabled Indicates that IGMP Snooping is disabled on the device Enabled Indicates that ...

Page 153: ...uery on the VLAN This is the default value Enabled Enables IGMP Query on the VLAN VLAN Summary VLAN Displays the VLAN ID Snooping Status Displays the IGMP snooping status for the VLAN The possible field values are Enabled and Disabled Query Status Displays the IGMP query status for the VLAN The possible field values are Enabled and Disabled To enable or disable IGMP Snooping or IGMP Query on the d...

Page 154: ...154 CHAPTER 10 CONFIGURING IGMP SNOOPING 4 Click IGMP Snooping and IGMP Query is enabled or disabled on the VLAN and the device is updated ...

Page 155: ...ose a single path and disable all others to ensure that only one route exists between any two stations on the network This prevents the creation of network loops However if the chosen path should fail for any reason an alternate path will be activated to maintain the connection Rapid Spanning Tree Protocol RSTP IEEE 802 1w This protocol reduces the convergence time for network topology changes to ...

Page 156: ...are Enabled Indicates that STA is enabled on the port Disabled Indicates that STA is disabled on the port Path Cost Indicates the port contribution to the root path cost The path cost can be adjusted to a higher or lower value and is used to determine the path used to forward traffic when a path is re routed Edge Port Indicates if fast forwarding is enabled on the port If enabled the port is autom...

Page 157: ...s the established link type The possible field values are Auto Automatically derived from the duplex mode setting Ports set to full duplex mode are considered Point to Point port links while ports set to half duplex mode are assumed to be on a shared link Point to Point Indicates that a point to point link is currently established on the port Shared Indicates that a shared link is currently establ...

Page 158: ...Setup Page The Spanning Tree Setup Page contains the following fields State Defines whether STA is enabled or disabled on the device The possible field values are Disabled Disables STP and RSTP on the device Enabled Enables STP or RSTP on the device Priority Specifies the bridge priority value When switches or bridges are running STA each is assigned a priority After exchanging BPDUs the device wi...

Page 159: ...ng Time Specifies the device Maximum Age Time The Maximum Age Time is the amount of time in seconds a bridge waits before sending configuration messages The default is 20 seconds Path Cost Method Specifies the method used to assign default path cost to STA ports The possible field values are Short Specifies 1 through 65 535 range for port path cost This is the default value Long Specifies 1 throug...

Page 160: ...are Enabled Indicates that STA is enabled on the port Disabled Indicates that STA is disabled on the port Edge Port Specifies if fast forwarding is enabled on the port If enabled the port is automatically placed in the Forwarding state when the port link is up Edge Port optimizes STA protocol topology convergence retains the current forwarding database to reduce the amount of frame flooding requir...

Page 161: ... the long path cost method and 1 65 535 for the short path cost method The system automatically detects the speed and duplex mode used on each port and configures the path cost according to the values shown below for IEEE 802 1w When the short path cost method is selected and the default path cost recommended by the IEEE 8021w standard exceeds 65 535 the default is set to 65 535 Path Cost is used ...

Page 162: ...cted in a loop The priority value is between 0 240 The priority value is determined in increments of 16 If the path cost for all ports on a switch are the same the port with the highest priority that is lowest value will be configured as an active link in the spanning tree Where more than one port is assigned the highest priority the port with lowest numeric identifier will be enabled 2 Select the...

Page 163: ...variables which are used to manage the device The variables are defined in the Management Information Base MIB The SNMP agent defines the MIB specification format as well as the format used to access the information over the network Access rights to the SNMP agents are controlled by access strings This section contains the following topics Setting SNMP Agent Status Defining SNMP Communities and Tr...

Page 164: ...set the operational status for SNMP 1 Click Administration SNMP Setup The SNMP Setup Page opens Figure 84 SNMP Setup Page The SNMP Setup Page contains the following fields SNMP Agent Status Specifies if SNMP is enabled on the device The possible field values are Enabled Enables SNMP on the device Disabled Disables SNMP on the device 2 Set the status field 3 Click The SNMP agent status is defined a...

Page 165: ...s are also changed SNMP communities are defined only for SNMP V1 and SNMP V2c Filters that determine whether traps are sent to specific users and the trap type sent can also be configured on the SNMP Add Page Monitor users have no access to this page To define SNMP communities 1 Click Administration SNMP SNMP Add The SNMP Add Page opens Figure 85 SNMP Add Page ...

Page 166: ...are Read Only Management access is restricted to read only Authorized management stations are only able to retrieve MIB objects Read Write Management access is read write Authorized management stations are able to both retrieve and modify MIB objects SNMP Trap IP Address Defines the IP address to which the traps are sent A maximum of 5 recipient destination IP address entries can be defined Commun...

Page 167: ... Page contains the following fields Remove Community String Community String Displays the user defined text string which authenticates management stations to the device Access Level Displays the access rights of the community The possible field values are Read Only Management access is restricted to read only Authorized management stations are only able to retrieve MIB objects Read Write Managemen...

Page 168: ...efined text string which authenticates the management station to the device Version Displays the trap type The possible field values are v1 Indicates that SNMP Version 1 traps are sent v2c Indicates that SNMP Version 2 traps are sent 2 For each SNMP Community or Trap to be removed select the table entry 3 Click The SNMP Communities and Traps are removed and the device is updated ...

Page 169: ... be forwarded are based on packet information and packet field values such as VLAN Priority Tag VPT and DiffServ Code Point DSCP VPT Classification Information VLAN Priority Tags VPT are used to classify packets by mapping packets to one of the egress queues VPT to Queue assignments are user definable Packets arriving untagged are assigned a default VPT value which is set on a per port basis The a...

Page 170: ... The possible field values are 0 7 Defining CoS The CoS Setup Page allows the network administrator to set the priority for incoming untagged frames The default priority applies for an untagged frame received on a port set to accept all frame types i e receives both untagged and tagged frames This priority does not apply to IEEE 802 1Q VLAN tagged frames If the incoming frame is an IEEE 802 1Q VLA...

Page 171: ... is IP DSCP and then default port priority Monitor users have no access to this page To configure CoS Settings 1 Click Device QoS CoS Setup The CoS Setup Page opens Figure 88 CoS Setup Page The CoS Setup Page contains the following fields Select Ports Selects the ports to be configured Set default Sets the default user priority The possible field values are 0 7 where 0 is the lowest and 7 is the h...

Page 172: ...ge of time the switch services each queue before moving on to the next queue This prevents the head of line blocking that can occur with strict priority queuing Monitor users have no access to this page To configure the queue mode 1 Click Device QoS Queue The Queue Setup Page opens Figure 89 Queue Setup Page The Queue Setup Page contains the following fields Strict Priority Services the egress que...

Page 173: ...endations in the IEEE 802 1p standard To view CoS Values to Queues 1 Click Device QoS CoS to Queue Summary The CoS to Queue Summary Page opens Figure 90 CoS to Queue Summary Page The CoS to Queue Summary Page contains the following fields Class of Service Displays the CoS priority tag values where 0 is the lowest and 7 is the highest Queue Indicates the traffic forwarding queue to which the CoS pr...

Page 174: ...QoS CoS to Queue Setup The CoS to Queue Setup Page opens Figure 91 CoS to Queue Setup Page The CoS to Queue Setup Page contains the following fields Restore Defaults Restores the device factory defaults for mapping CoS values to a forwarding queue Class of Service Specifies the CoS priority tag values where 0 is the lowest and 7 is the highest Queue Defines the traffic forwarding queue to which th...

Page 175: ...EE 802 1p standard and then subsequently mapped to the four traffic queues To view the DSCP to CoS mapping 1 Click Device QoS DSCP to CoS Summary The DSCP to CoS Summary Page opens Figure 92 DSCP to CoS Summary Page The DSCP to CoS Summary Page contains the following fields DSCP Displays the incoming packet s DSCP priority value CoS Displays the Class of Service value to which the corresponding DS...

Page 176: ...c queues Monitor users have no access to this page To map DSCP to CoS values 1 Click Device QoS DSCP to CoS Setup The DSCP to CoS Setup Page opens Figure 93 DSCP to CoS Setup Page The DSCP to CoS Setup Page contains the following fields DSCP Displays the incoming packet s DSCP priority value CoS Specifies the Class of Service value to which the corresponding DSCP priority value is mapped 2 Define ...

Page 177: ... tagged For an untagged packet the default port priority is used for priority processing If the trust mode is set to CoS and the ingress packet type is IPv4 then priority processing will be based on the CoS value in the ingress packet For an untagged packet the default port priority is used for priority processing To select the trust mode 1 Click Device QoS Trust Setup The Trust Setup Page opens F...

Page 178: ...age The Bandwidth Summary Page contains the following fields Interface Displays the interface for which rate limit and shaping parameters are defined Ingress Rate Limit Status Indicates the ingress rate limiting status on the interface The possible field values are Enabled Ingress rate limiting is enabled on the interface No Limit Ingress rate limiting is disabled on the interface This is the defa...

Page 179: ... the interface No Limit Egress traffic shaping is disabled for the interface This is the default CIR Indicates the Committed Information Rate CIR for the interface The field options include 128 1024 5056 10048 50048 100032 and 500032 kbits per second When using the command line interface the field range is 64 100 000 kbits per second for Fast Ethernet ports and 64 1 000 000 kbits per second for Gi...

Page 180: ...th Setup The Bandwidth Setup Page opens Figure 96 Bandwidth Setup Page The Bandwidth Setup Page contains the following fields Ingress Rate Limit Enable Ingress Rate Limit Enables setting an Ingress Rate Limit Ingress Rate Limit Defines the ingress traffic limit for the port The field options include 128 1024 5056 10048 50048 100032 and 500032 kbits per second When using the command line interface ...

Page 181: ...bit Ethernet ports at a resolution of 64 kbits per seconds Committed Burst Size CBS Defines the CBS for the interface The field options include 64 128 512 1024 2048 and 4096 kbits Rate limiting is based on a token bucket where bucket depth that is the maximum burst before the bucket overflows is specified by the CBS and the average rate tokens at which are removed from the bucket is specified by t...

Page 182: ...at the quality of voice does not deteriorate if IP traffic is received unevenly The system supports one Voice VLAN There are two operational modes for IP Phones IP phones are configured with VLAN mode as enabled ensuring that tagged packets are used for all communications If the IP phone s VLAN mode is disabled the phone uses untagged packets The phone uses untagged packets while retrieving the in...

Page 183: ...Summary Page opens Figure 97 Voice VLAN Summary Page The Voice VLAN Summary Page contains the following fields Port Displays a list of all switch ports Mode Specifies the Voice VLAN mode The possible field values are None Indicates that the selected port will not be added to the Voice VLAN Manual Indicates that the selected port has been manually added to the Voice VLAN Auto Indicates that if traf...

Page 184: ... corresponding port Defining Voice VLAN The Voice VLAN Setup Page provides information for enabling and defining Voice VLAN globally on the device Monitor users have no access to this page To configure Voice VLAN Settings 1 Click Device QoS VoIP Traffic Setting Setup The Voice VLAN Setup Page opens Figure 98 Voice VLAN Setup Page The Voice VLAN Setup Page contains the following fields Voice VLAN S...

Page 185: ...oice VLAN Aging Time Defines the amount of time after the last IP phone s OUI is aged out for a specific port The Voice VLAN aging time starts after the MAC Address is aged out from the Dynamic MAC Address table The port will age out after the bridge and voice aging times The default bridge aging time is 300 seconds The default voice aging time is 1 day The possible fields are Day The field range ...

Page 186: ...fields Voice VLAN Port Mode Specifies the Voice VLAN mode The possible field values are Auto Indicates that if traffic with an IP Phone MAC Address is transmitted on the port the port joins the Voice VLAN The port is aged out of the voice VLAN if the last IP phone s MAC address with a recognized OUI prefix is aged out and the defined voice VLAN aging time is then exceeded If the MAC Address of the...

Page 187: ...elect Port Enables selecting specific ports to which the Voice VLAN settings are applied The ports are color coded as follows Blue Indicates the port is selected and Voice VLAN settings are applied to the port White Indicates the port is not selected and the Voice VLAN settings are not applied to the port This is the default value Grey Indicates that the interface cannot be added to the Voice VLAN...

Page 188: ...ort Details Page The Voice VLAN Port Details Page contains the following fields Select Port Selects specific ports to display their Voice VLAN port definitions The ports are color coded as follows Blue Indicates the port is selected and its Voice VLAN settings are displayed in the text box below White Indicates the port is not selected and its Voice VLAN settings are not displayed This is the defa...

Page 189: ...e The possible field values are None Indicates that the selected port will not be added to a Voice VLAN Manual Indicates that the selected port has been manually added to the Voice VLAN Auto Indicates that if traffic with an IP Phone MAC Address is transmitted on the port the port will join the Voice VLAN The port is aged out of the voice VLAN if the IP phone s MAC address with a recognized OUI pr...

Page 190: ...ce VLAN ports from the specific IP phone with a listed OUI is forwarded on the voice VLAN To view Voice VLAN OUI Settings 1 Click Device QoS VoIP Traffic Setting OUI Summary The Voice VLAN OUI Summary Page opens Figure 101 Voice VLAN OUI Summary Page The Voice VLAN OUI Summary Page contains the following fields OUI List Telephony OUI s Lists the OUIs currently enabled on the Voice VLAN The followi...

Page 191: ...e destination MAC prefix The packet gets higher priority when there is a match with the OUI list Using the OUI network managers can add a specific manufacturer s MAC addresses to the OUI table Once the OUIs are added all traffic received on the Voice VLAN ports from the specific IP phone with a listed OUI is forwarded on the voice VLAN Monitor users have no access to this page To modify Voice VLAN...

Page 192: ...ain up to 32 characters Add Allows you to add a new OUI Remove Allows you to delete an existing OUI 2 Enter an OUI in the Telephony OUI field 3 Enter an OUI description in the Description field 4 Click to define a new OUI or click to delete an existing OUI The Voice VLAN table is modified and the device is updated ...

Page 193: ...ommands in the Startup file are copied to the Running Configuration File and applied to the device During the session all new commands entered are added to the commands already stored in the Running Configuration file Commands are not overwritten To update the Startup file before powering down the device the Running Configuration file must be copied to the Startup Configuration file by clicking on...

Page 194: ...section contains information for defining File maintenance and includes both configuration file management as well as device access This section contains the following topics Backing Up System Files Restoring Files Restoring the Software Image ...

Page 195: ...ckup Page contains the following fields Upload via TFTP Enables initiating an upload to a TFTP server Upload via HTTP Enables initiating an upload to an HTTP server or HTTPS server Configuration Upload TFTP Server IP Address Specifies the TFTP Server IP Address to which the configuration file is uploaded Destination File Name Specifies the destination file to which the configuration file is upload...

Page 196: ...ntains the following fields Download via TFTP Enables initiating a download from a TFTP server Download via HTTP Enables initiating a download from an HTTP server or HTTPS server Configuration Download TFTP Server IP Address Specifies the TFTP Server IP Address from which the configuration file is downloaded Source File Name Specifies the source file from which the configuration file is downloaded...

Page 197: ...store Image Page The Restore Image Page contains the following fields Download via TFTP Enables initiating a download via a TFTP server Download via HTTP Enables initiating a download via an HTTP server or HTTPS server Software Download TFTP Server IP Address Specifies the TFTP Server IP Address from which the image file is downloaded Source File Name Specifies the image files to be downloaded 2 D...

Page 198: ...198 CHAPTER 14 MANAGING SYSTEM FILES ...

Page 199: ...ext to power sources Power over Ethernet can be used with IP Phones Wireless Access Points IP Gateways PDAs Audio and video remote monitoring Powered Devices are devices which receive power from the device power supplies for example IP phones Powered Devices are connected to the device via Ethernet ports This section contains information for configuring PoE Settings and includes the following topi...

Page 200: ...owing information Device Power Display State Indicates the in line power source status The possible field values are on Indicates that the power supply unit is functioning off Indicates that the power supply unit is not functioning Power Max Indicates the maximum amount of power the device can supply The field value is displayed in Watts Power Used Indicates the actual amount of power currently us...

Page 201: ...er mode The possible field values are Auto Power is automatically allocated to the port according to port number Lower numbered ports are assigned a higher priority for power delivery This is the default Guarantee Power is guaranteed to the selected port provided that the power is available If the power demand from connected devices exceeds available power this setting will override the priority a...

Page 202: ...rt PoE state The possible values are Enabled Enables the port for PoE Disabled Disables the port for PoE PoE Mode for selected enabled ports Defines the PoE mode for the selected port The possible values are Auto Power is automatically allocated to the port according to port number Lower numbered ports are assigned a higher priority for power delivery Guarantee Power is guaranteed to the selected ...

Page 203: ...203 2 Define the fields 3 Click The settings are applied to the selected ports and the device is updated ...

Page 204: ...204 CHAPTER 15 MANAGING POWER OVER ETHERNET DEVICES ...

Page 205: ...ages to be filtered based on their urgency or relevancy Each message severity determines the set of event logging devices that are sent messages per each event The following table lists the log severity levels This section includes the following topics Viewing Logs Configuring Logging System Log Severity Levels Severity Level Message Emergency 0 Highest The system is not functioning Alert 1 The sy...

Page 206: ...isplay The Logging Display Page opens Figure 108 Logging Display Page The Logging Display Page contains the following fields and buttons Save Preview Saves the displayed Log table to a web HTML page Clear Logs Deletes all logs from the Log table Log Time Displays the time at which the log was generated Severity Displays the log severity Description Displays the log message text 2 Click The selecte...

Page 207: ...ging Specifies if device logging to local Cache and Flash memory is enabled Local logging is enabled by default Severity level Specifies the minimum severity level for which a message will be logged When a severity level is selected all severity level choices above the selection are selected automatically The possible field values are Emergency The highest warning level If the device is down or no...

Page 208: ...g Provides debugging messages Enable Syslogging Specifies if device logging to remote Syslogs servers is enabled Severity level Specifies the minimum severity level for which a message will be logged When a severity level is selected all severity level choices above the selection are selected automatically The possible field values are identical to those used for Local Logging Syslog IP Address De...

Page 209: ...17 VIEWING STATISTICS This section contains information for viewing port statistics and contains the following topics Viewing Port Statistics ...

Page 210: ...stics 1 Click Ports Statistics Summary The Port Statistics Summary Page opens Figure 110 Port Statistics Summary Page The Port Statistics Summary Page contains the following fields Select Port Selects the specific port for which statistics are displayed Refresh Interval Defines the amount of time that passes before the interface statistics are refreshed The field range is 10 600 seconds and defaul...

Page 211: ... free up buffer space Error Input For packet oriented interfaces the number of inbound packets that contained errors preventing them from being deliverable to a higher layer protocol For character oriented or fixed length interfaces the number of inbound transmission units that contained errors preventing them from being deliverable to a higher layer protocol Error Output For packet oriented inter...

Page 212: ...articular interface Deferred Transmissions A count of frames for which the first transmission attempt on a particular interface is delayed because the medium was busy Late Collisions The number of times that a collision is detected later than 512 bit times into the transmission of a packet Excessive Collisions A count of frames for which transmission on a particular interface fails due to excessiv...

Page 213: ... were not addressed to a multicast or broadcast address at this sub layer Broadcast PKTS The number of packets delivered by this sub layer to a higher sub layer which were addressed to a broadcast address at this sub layer Multicast PKTS The total number of packets that higher level protocols requested be transmitted and which were addressed to a multicast address at this sub layer including those...

Page 214: ...ions on this Ethernet segment 64 Bytes Frames 65 127 Byte Frames 128 255 Byte Frames 256 511 Byte Frames 512 1023 Byte Frames 1024 1518 Byte Frames 1519 1536 Byte Frames The total number of frames including bad packets received and transmitted where the number of octets fall within the specified range excluding framing bits but including FCS octets Table 12 Port Statistics Summary Page Field Descr...

Page 215: ...CE DIAGNOSTICS This section contains information for viewing and configuring port and cable diagnostics and includes the following topics Configuring Port Mirroring Configuring Cable Diagnostics Pinging Another Device ...

Page 216: ...raffic by forwarding copies of incoming and outgoing packets from one or more ports to a monitoring port Port mirroring can be used as a diagnostic tool as well as a debugging feature Port mirroring also enables monitoring of switch performance Network administrators can configure port mirroring by selecting one or more ports from which to copy transmit or receive packets and another port to which...

Page 217: ...ort Mirroring Setup Page contains the following fields Select port type Defines the port that will be the monitor port destination port and the port that will be mirrored source port The possible values are Monitor Defines the port as the monitor port the destination port Mirror Defines the port as a mirrored port source port to be monitored and indicates the traffic direction to be monitored The ...

Page 218: ...mirror port The fields displayed are Monitor Displays the monitor port Mirror In Displays the ports monitored for ingress traffic Mirror Out Displays the ports monitored for egress traffic 2 Select a port type 3 If the Mirror port type has been selected select Mirror In and or Mirror Out 4 Select the Monitor port destination port 5 Click Port mirroring is enabled and the device is updated ...

Page 219: ...ck Monitoring Port Mirroring Remove The Port Mirroring Remove Page opens Figure 112 Port Mirroring Remove Page The Port Mirroring Remove Page contains the following fields Monitor Displays the monitor port Mirror In Displays the ports monitored for ingress traffic Mirror Out Displays the ports monitored for egress traffic 2 Select the ports to be removed 3 Click Port mirroring is removed and the d...

Page 220: ...cs The Cable Diagnostics Summary Page contains fields for viewing tests on copper cables Cable testing provides information about where errors occurred in the cable and the last time a cable test was performed To view cables diagnostics 1 Click Monitoring Cable Diagnostics Summary The Cable Diagnostics Summary Page opens Figure 113 Cable Diagnostics Summary Page The Cable Diagnostics Summary Page ...

Page 221: ...s Last Update Indicates the last time the port was tested Defining Cable Diagnostics The Diagnostics Page contains fields for performing tests on copper cables Cable testing provides information about where errors occurred in the cable and the last time a cable test was performed When performing cable tests consider the following During the tests ports are in the down state The minimum cable lengt...

Page 222: ...e test Failed Indicates that the cable failed the test The test will fail if a cable is not connected to the port the cable is connected on only one side the cable is shorter than one meter or a short has occurred in the cable Cable Fault Distance Indicates the distance in meters from the port where the cable error occurred A Cable Fault Distance of 0M can result from a short 1 meter cable an open...

Page 223: ...sing the command line interface to ping another device To send ping requests to another device 1 Click Monitoring Ping The Ping Page opens Figure 115 Ping Page The Ping Page contains the following fields IP Address IP address of the host 2 Enter the IP address of the target device 3 Click The switch starts pinging the target device The following are some results of the Ping command Normal response...

Page 224: ...E DIAGNOSTICS Destination unreachable The gateway for this destination indicates that the destination is unreachable Network or host unreachable The gateway found no corresponding entry in the route table Press Esc to stop pinging ...

Page 225: ...Com Network Supervisor 3Com Network Supervisor 3NS is an easy to use management application that graphically discovers maps and monitors the network and links It maps devices and connections so you can easily Monitor stress levels Set thresholds and alerts View network events Generate reports in user defined formats Launch embedded device configuration tools 3NS is configured with intelligent defa...

Page 226: ...m Network Director can help you manage your 3Com network and to download a trial version go to www 3com com 3nd 3Com Network Access Manager 3Com Network Access Manager is installed seamlessly into Microsoft Active Directory and Internet Authentication Service IAS It simplifies the task of securing the network perimeter by allowing the administrator to easily control network access directly from th...

Page 227: ...ely managed These include SNMP capable devices such as switches routers security switches the 3Com VCX IP Telephony server and wireless access points Up to 250 devices Up to 1 000 devices Up to 5 000 devices An unlimited number of devices To find out more about 3Com Enterprise Management Suite go to www 3com com ems Integration Kit with HP OpenView Network Node Manager 3Com Integration Kit for HP ...

Page 228: ...228 APPENDIX A 3COM NETWORK MANAGEMENT ...

Page 229: ...hernet IEEE 802 3at Power over Ethernet Plus Safety UL 60950 1 EN 60950 1 CSA 22 2 No 60950 1 IEC 60950 1 EMC Emissions EN55022 Class B CISPR 22 Class B FCC Part 15 Subpart B Class B ICES 003 Class B VCCI Class B AS NZS CISPR22 Class B EMC Immunity EN55024 Operating Temperature 0 to 40 C 32 to 104 F Storage Temperature 40 to 70 C 40 to 158 F Humidity 0 95 non condensing Standard EN 60068 IEC 68 Wi...

Page 230: ...owing Advertise their abilities Acknowledge receipt and understanding of the common modes of operation that both devices share Reject the use of operational modes that are not shared by both devices Configure each port for the highest level operational mode that both ports can support Automatic MAC Addresses Aging MAC addresses from which no traffic is received for a given period are aged out This...

Page 231: ...Tagging Compliance IEEE 802 1Q defines an architecture for virtual bridged LANs the services provided in VLANs and the protocols and algorithms involved in the provision of these services An important requirement included in this standard is the ability to mark frames with a desired Class of Service CoS tag value IGMP Snooping IGMP Snooping examines IGMP frame contents when they are forwarded by t...

Page 232: ...erver using the Extensible Authentication Protocol EAP Port based Virtual LANs Port based VLANs classify incoming packets to VLANs based on their ingress port Port Mirroring Port mirroring monitors and mirrors network traffic by forwarding copies of incoming and outgoing packets from a monitored port to a monitoring port Users specify which target port receives copies of all traffic passing throug...

Page 233: ...ntrol Protocol TCP TCP connections are defined between 2 ports by an initial synchronization exchange TCP ports are identified by an IP address and a 16 bit port number Octets streams are divided into TCP packets each carrying a sequence number TFTP Trivial File Transfer Protocol The device supports boot image software and configuration upload download via TFTP Virtual Cable Testing VCT detects an...

Page 234: ...234 APPENDIX B DEVICE SPECIFICATIONS AND FEATURES ...

Page 235: ... PC Terminal Cable connector 25 pin male female only required if screen always required required for handshake Screen DTR TxD RxD CTS Ground DSR RTS DCD Screen DCD RxD TxD DTR Ground DSR RTS CTS Shell 4 3 2 8 5 6 7 1 Shell 1 2 3 4 5 6 7 8 Switch 5500 Cable connector RJ 45 female PC AT Serial Port Cable connector 9 pin female only required if screen Always required always required required for hand...

Page 236: ... 7 8 6 5 1 4 1 2 3 4 5 6 7 8 20 Switch 5500 Cable connector RJ 45 female RS 232 Modem Port Cable connector 25 pin male Pin Number 10 100 1000 Ports configured as MDI 1 Transmit Data Bidirectional Data A 2 Transmit Data Bidirectional Data A 3 Receive Data Bidirectional Data B 4 Not assigned Bidirectional Data C 5 Not assigned Bidirectional Data C 6 Receive Data Bidirectional Data B 7 Not assigned B...

Page 237: ...ured as MDIX 1 Receive Data Bidirectional Data B 2 Receive Data Bidirectional Data B 3 Transmit Data Bidirectional Data A 4 Not assigned Bidirectional Data A 5 Not assigned Bidirectional Data D 6 Transmit Data Bidirectional Data D 7 Not assigned Bidirectional Data C 8 Not assigned Bidirectional Data C ...

Page 238: ...238 APPENDIX C PIN OUTS ...

Page 239: ...is detected the exact nature of the problem must be determined This includes how the problem is detected and what are the possible causes of the problem With the problem known the effect of the problem is recorded with all known results from the problem Once the problem is quantified the solution is applied Solutions are found either in this chapter or through customer support If no solution is fo...

Page 240: ...erial cable Software settings Replace the serial cable Replace serial cable for a pin to pin straight flat cable Reconfigure the emulation software connection settings Response from the terminal emulations software is not readable Faulty serial cable Software settings Replace the serial cable Reconfigure the emulation software connection settings Self test exceeds 20 seconds The device may not be ...

Page 241: ...stored configuration information including IP address and address configuration mode user names and passwords It then resets the switch to factory default settings and restarts the system Resetting the switch to factory defaults erases all your settings You will need to reconfigure the switch after you reset it password recovery Deletes all user names and passwords restores the default user names ...

Page 242: ...upgrade Initiates a firmware download via TFTP Follow the system prompts to specify the TFTP server where your firmware can be found and then enter the source name of the firmware After the file is downloaded the system will be reset ...

Page 243: ...riority bit Differentiated Services Code Point Service DSCP DSCP uses a six bit tag to provide for up to 64 different forwarding behaviors Based on network policies different kinds of traffic can be marked for different kinds of forwarding The DSCP bits are mapped to the Class of Service categories and then into the output queues Domain Name Service DNS A system used for translating host names for...

Page 244: ... to transmit packets based on the tagged priority value IEEE 802 1X Port Authentication controls access to the switch ports by requiring users to first enter a user ID and password for authentication IEEE 802 3 Defines carrier sense multiple access with collision detection CSMA CD access method and physical layer specifications IEEE 802 3ab Defines CSMA CD access method and physical layer specific...

Page 245: ...ntrol Message Protocol ICMP A network layer protocol that reports errors in processing IP packets ICMP is also used by routers to feed back information about better routing choices Internet Group Management Protocol IGMP A protocol through which hosts can register with their local router for multicast services If there is more than one multicast switch router on a given subnetwork one of the devic...

Page 246: ...message and converts it into a fixed string of digits also called a message digest Multicast Switching A process whereby the switch filters incoming multicast frames for services for which no attached host has registered or forwards them to all ports contained within the designated multicast VLAN group Network Time Protocol NTP NTP provides the mechanisms to synchronize time across the network The...

Page 247: ... with a cryptographic key and encrypt data connections between management clients and the switch Simple Network Management Protocol SNMP The application protocol in the Internet suite of protocols which offers network management services Spanning Tree Protocol STP A technology that checks your network for any loops A loop can often occur in complicated or backup linked network systems Spanning Tre...

Page 248: ...ardless of their physical location or connection point in the network A VLAN serves as a logical workgroup with no physical barriers and allows users to share information and resources as though located on the same LAN XModem A protocol used to transfer files between devices Data is grouped in 128 byte blocks and error corrected ...

Page 249: ...ugh product registration Register your product at http eSupport 3com com 3Com eSupport services are based on accounts that you create or have authorization to access First time users must apply for a user name and password that provides access to a number of eSupport features including Product Registration Repair Services and Service Request If you have trouble registering your product please cont...

Page 250: ...ftware Downloads Software Updates are the bug fix maintenance releases for the version of software initially purchased with the product In order to access these Software Updates you must first register your product on the 3Com Web site at http eSupport 3com com First time users will need to apply for a user name and password A link to software downloads can be found at http eSupport 3com com or un...

Page 251: ...publication Find a current directory of 3Com resources by region at http csoweb4 3com com contactus Country Telephone Number Country Telephone Number Asia Pacific Rim Telephone Technical Support and Repair Australia Hong Kong India Indonesia Japan Malaysia New Zealand 1800 075 316 2907 0456 000 800 440 1193 001 803 852 9825 03 3507 5984 1800 812 612 0800 450 454 Philippines PR of China Singapore S...

Page 252: ... 0800 182 1502 06800 12813 1 800 553 117 180 945 3794 800 879489 800 23625 0800 0227788 Norway Poland Portugal Russia Saudi Arabia South Africa Spain Sweden Switzerland U A E U K 800 11376 00800 4411 357 800 831416 88005558588 800 8 445 312 0800 995 014 900 938 919 020 795 482 0800 553 072 04 3908997 0800 096 3266 You can also obtain support in this region using this URL http emea 3com com support...

Page 253: ...0 988 2112 AT T 800 988 2112 Guatemala Guyana Haiti Honduras Jamaica Martinique Mexico Mexico Local Monserrat Nicaragua Panama Paraguay Peru Puerto Rico Rest of Latin America St Kitts Nevis St Lucia Suriname Trinidad and Tobago Turks and Caicos Uruguay Montivideo Venezuela Virgin Islands AT T 800 998 2112 AT T 800 998 2112 AT T 800 998 2112 AT T 800 998 2112 AT T 800 998 2112 AT T 800 998 2112 180...

Page 254: ...NG SUPPORT FOR YOUR 3COM PRODUCTS Country Telephone Number Country Telephone Number US and Canada Telephone Technical Support and Repair All locations Network Jacks Wired 1 847 262 0070 All other 3Com products 1 800 876 3226 ...

Page 255: ...enced radio television technician for additional suggestions The user may find the following booklet prepared by the Federal Communications Commission helpful How to Identify and Resolve Radio TV Interference Problems This booklet is available from the U S Government Printing Office Washington DC 20402 Stock No 004 000 00345 4 In order to meet FCC emissions limits this equipment must be used only ...

Page 256: ......

Reviews:

No comments

Related manuals for 3CRDSF9PWR-US - OfficeConnect Managed Fast Ethernet PoE Switch

Keithley 3700 series Reference Manual preview
3700 series
Brand: Keithley Pages: 434
Avocent SwitchView SC8 DVI Specifications preview
SwitchView SC8 DVI
Brand: Avocent Pages: 2
LevelOne FEP-0800 Quick Installation Manual preview
FEP-0800
Brand: LevelOne Pages: 17
protech 4PET0301SC User Manual preview
4PET0301SC
Brand: protech Pages: 4
N-Tron NTSFP-LX-40 User Manual & Installation Manual preview
NTSFP-LX-40
Brand: N-Tron Pages: 20
Conceptronic HUBBIES 01 Multi Language Quick Manual preview
HUBBIES 01
Brand: Conceptronic Pages: 7
N-Tron 716M12 User Manual & Installation Manual preview
716M12
Brand: N-Tron Pages: 169
Cabletron Systems SmartSTACK ETHERNET ELS10-27 User Manual preview
SmartSTACK ETHERNET ELS10-27
Brand: Cabletron Systems Pages: 126
Aruba Instant On 1930 Series Installation, Safety, And Regulatory Information preview
Instant On 1930 Series
Brand: Aruba Pages: 8
TP-Link LiteWave LS105G Installation Manual preview
LiteWave LS105G
Brand: TP-Link Pages: 3
Stahl 128635 Operating Instructions Manual preview
128635
Brand: Stahl Pages: 29
HDTV Supply HDTVMT0808140 User Manual preview
HDTVMT0808140
Brand: HDTV Supply Pages: 21
BERNSTEIN CSMS-M-R-H-KA Installation And Operating Instructions Manual preview
CSMS-M-R-H-KA
Brand: BERNSTEIN Pages: 38
serverLink SL-271-H Quick Installation Manual preview
SL-271-H
Brand: serverLink Pages: 2
T.I.P. TLS 100 E Manual preview
TLS 100 E
Brand: T.I.P. Pages: 42
MLis MLB-E4203-28-F User Manual preview
MLB-E4203-28-F
Brand: MLis Pages: 85
ALFAtron SC61E Manual preview
SC61E
Brand: ALFAtron Pages: 23
Lantech LGS-2424C User Manual preview
LGS-2424C
Brand: Lantech Pages: 80

Brands by name

Popular brands

Load more brands