Allied Telesis AT-S80 User Manual Download Page 189 | Manualshive

Page: 189 / 346

background image

AT-S80 Management Software User’s Guide

Section I: Using the Menus Interface

189

As mentioned earlier, the switch itself does not authenticate the user
names and passwords from the clients. That is the responsibility of the
authentication server, which contains the RADIUS server software.
Instead, a switch acts as an intermediary for the authentication server by
denying access to the network by the client until the client has provided a
valid username and password, which the authentication server validates.

General Steps

Following are the general steps to implementing 802.1x Port-based
Network Access Control:

1. You must install RADIUS server software on one or more of your

network servers or management stations. Authentication protocol
server software is not available from Allied Telesis. Consult the
vendor’s documentation for server installation instructions.

2. You need to install 802.1x client software on those workstations that

are to be supplicants. Microsoft WinXP client software and Meeting
House Aegis client software have been verified as fully compatible with
the AT-S80 management software.

3. You must configure and activate the RADIUS client software in the

AT-S80 management software. The default setting for the
authentication protocol is disabled. You will need to provide the
following information:

The IP address of a RADIUS servers.

The encryption key used by the authentication server.

For instructions, refer to Chapter 18, “RADIUS Authentication Protocol”
on page 201.

4. You must configure the authenticator port settings, as explained in

“Configuring 802.1x Port-based Network Access Control Feature” on
page 193 in this chapter.

Port-based

Network Access

Control

Guidelines

Following are the guidelines for using this feature:

Ports set to Auto do not support port trunking or dynamic MAC address
learning.

The appropriate setting for a port on an AT-FS750/16 or AT-FS750/24
switch connected to an authentication server is Force-authorized, the
default setting. This is because an authentication server cannot
authenticate itself.

The authentication server must be a member of the Default VLAN by
communicating with the switch through a port that is an untagged
member of the Default VLAN.

Allied Telesis does not support connecting more than one supplicant to
an authenticator port on the switch. The switch allows only one
supplicant to log on per port.

«
...
187
188
189
190
191
...
»

Summary of Contents for AT-S80

Page 1: ...613 000213 Rev C Management Software AT S80 User s Guide For use with the AT FS750 16 and AT FS750 24 Fast Ethernet Smart Switches Version 2 0 0...

Page 2: ...espective owners Allied Telesis Inc reserves the right to make changes in specifications and other information contained in this document without prior written notice The information provided herein i...

Page 3: ...25 Starting a Local Management Session 26 Using the Menus Interface 28 Quitting from a Local Management Session 29 Chapter 3 Basic Switch Parameters 31 Configuring the IP Address Subnet Mask and Gate...

Page 4: ...Configuring a Dial in User 93 Adding a Dial in User 93 Deleting a Dial in User 94 Modifying a Dial in User 95 Chapter 10 Virtual LANs 97 VLAN Overview 98 Port based VLAN Overview 100 VLAN Name 100 Gr...

Page 5: ...ling RSTP 157 Configuring the RSTP Bridge Settings 160 Configuring STP Compatibility 162 Configuring RSTP Port Settings 163 Configuring the Basic RSTP Port Settings 163 Configuring the Advanced RSTP P...

Page 6: ...n IP Access List 222 Deleting an IP Address 224 Enabling and Disabling the DHCP Client 225 Configuring System Management Information 226 Configuring System Administration Information 228 Adding System...

Page 7: ...Chapter 31 Quality of Service QoS 295 Mapping CoS Priorities to Egress Queues 296 Configuring CoS 298 Chapter 32 Rapid Spanning Tree Protocol RSTP 301 Basic RSTP Configuration 302 Configuring RSTP Por...

Page 8: ...Contents 8 Appendix A AT S80 Software Default Settings 339 Index 343...

Page 9: ...ration Menu 108 Figure 25 Config VLAN Member Menu 112 Figure 26 Basic Switch Configuration Menu 124 Figure 27 SNMP Configuration Menu 125 Figure 28 Community Configuration Menu 125 Figure 29 Host Conf...

Page 10: ...Figure 72 Destination MAC Filter Page 266 Figure 73 Destination MAC Address with Entries 267 Figure 74 Bandwidth Control Page 270 Figure 75 VLAN Mode Page 274 Figure 76 Tagged VLAN Page 275 Figure 77...

Page 11: ...ls to Egress Port Priority Queues 141 Table 3 RSTP Auto Detect Port Costs 152 Table 4 RSTP Auto Detect Port Trunk Costs 152 Table 5 Port Priority Value Increments 153 Table 6 RSTP Point to Point Statu...

Page 12: ...Tables 12...

Page 13: ...n on the management interfaces refer to Chapter 1 Overview on page 17 Note The AT S80 management software does not support remote management with the Telnet application protocol or an SNMP program Not...

Page 14: ...portable document format PDF on our web site at www alliedtelesis com You can view the documents online or download them onto a local workstation or server For information about installing the AT FS75...

Page 15: ...following conventions Note Notes provide additional information Caution Cautions inform you that performing or omitting a specific action may result in equipment damage or loss of data Warning Warning...

Page 16: ...arranty Returning Products Products for return or repair must first be assigned a return materials authorization RMA number A product sent to Allied Telesis without an RMA number will be returned to t...

Page 17: ...for the AT FS750 16 and AT FS750 24 switches This chapter contains the following sections Management Overview on page 18 Remote SNMP Management on page 20 Management Access Level on page 21 Ports 17...

Page 18: ...g it to your network and powering on the unit as explained in the hardware installation guide Note The default settings for the management software are listed in Appendix A AT S80 Software Default Set...

Page 19: ...anagement software has a web browser interface for managing the AT FS750 16 and AT FS750 24 switches remotely from any management station on your network that has a web browser application The switch...

Page 20: ...anagement SNMP application such as AT View This management method requires an understanding of Management Information Base MIB objects Note You must assign an IP address to the switch for remote SNMP...

Page 21: ...gement access level manager When you log in as a manager you can view and configure all of the switch s operating parameters You log in as a manager by entering the appropriate username and password w...

Page 22: ...the following when configuring these dual ports By default the twisted pair port of a dual port is the active port An optional SFP port is activated when it establishes a link with an end node at whic...

Page 23: ...e 71 Chapter 7 Static Multicast Address on page 79 Chapter 8 Port Mirroring on page 85 Chapter 9 Dial in User Configuration on page 91 Chapter 10 Virtual LANs on page 97 Chapter 11 Simple Network Mana...

Page 24: ...24 Section I Using the Menus Interface...

Page 25: ...ins instructions on how to access the menus interface of the AT S80 Management Software by starting a local management session This chapter contains the following sections Starting a Local Management...

Page 26: ...a local management session perform the following procedure 1 Connect one end of the management cable included with the switch to the Console port on the switch as shown in Figure 1 Figure 1 Connectin...

Page 27: ...he default password is friend Note The login name and password are case sensitive To change the login name or password refer to Setting the User Interface Configuration on page 38 The Main Menu is sho...

Page 28: ...you can enter a value the symbol is displayed For example Enter new password The symbol indicates that you can enter a new value for the parameter or change the existing value After you have entered...

Page 29: ...ized changes to its configuration should you leave your workstation unattended Note A local management session automatically times out if there is no management activity during a timeout period The ti...

Page 30: ...Chapter 2 Getting Started with the Menus Interface 30 Section I Using the Menus Interface...

Page 31: ...y Address on page 32 Enabling and Disabling the DHCP Client on page 35 Configuring System Administration Information on page 36 Setting the User Interface Configuration on page 38 Viewing Switch Infor...

Page 32: ...if your remote management station is separated from the switch by a router To configure the switch to obtain its IP configuration from a DHCP server on the network go to Enabling and Disabling the DH...

Page 33: ...e Disable DHCP Mode option is described in Enabling and Disabling the DHCP Client on page 35 3 To set the switch s IP address do the following a Type I to select Set IP Address The following prompt is...

Page 34: ...switch and press Enter 5 To set the switch s gateway address do the following a Type G to select Set Default Gateway The following prompt is displayed Enter new gateway IP address b Type the gateway I...

Page 35: ...ment station is separated from the switch by a router The default setting for the DHCP client is disabled The DHCP client does not support BOOTP servers To activate or deactivate the DHCP client perfo...

Page 36: ...Menu is shown in Figure 4 on page 32 2 From the Basic Switch Configuration Menu type A to select System Administration Information The System Administration Configuration Menu is shown in Figure 6 Fi...

Page 37: ...object format You cannot alter this field 4 To enter the system s location do the following a Type L to select Set System Location The following prompt is displayed Enter system location b Type infor...

Page 38: ...login user name and password Enable and disable the web server used to manage the switch from a remote management station with a web browser For information about how to configure a dial in user see C...

Page 39: ...agement session The console idle time out parameter specifies the length of time a local management session can be inactive before the management software automatically ends it The purpose of this par...

Page 40: ...or Disable web server E D b Type E to enable the web server or D to disable it The default is enabled If you disable the web server you can not manage the switch from a remote management station usin...

Page 41: ...owing a Type M to select Modify Administrator The following prompt is displayed Enter entry number b Enter the number of the user name You can select numbers 2 through 8 The following prompt is displa...

Page 42: ...ng prompt is displayed Enter new password i Enter the new password The following prompt is displayed Retype new password j Reenter the new password 9 To enable or disable password protection type O Th...

Page 43: ...e the last reset or power cycle Runtime Image The version of the runtime software Boot Loader The version of the boot loader software Main Menu General Information System up for 24min s 36sec s Runtim...

Page 44: ...ring System Administration Information on page 36 System Address Information Section MAC Address The MAC address of the switch You cannot change a switch s MAC address System IP Address The switch s I...

Page 45: ...Menus Interface 45 Automatic Network Features Section DHCP Mode The status of the DHCP client on the switch For information about setting this parameter refer to Enabling and Disabling the DHCP Clien...

Page 46: ...r settings Caution The switch does not forward network traffic during the reboot process Some network traffic may be lost To reboot the switch perform the following procedure 1 From the Main Menu type...

Page 47: ...es on page 51 5 Type R to select Start Reboot Process The following prompt is displayed Are you sure you want to reboot the system Y N 6 Type Y to start the reboot process or N to cancel the reboot Th...

Page 48: ...cating with the switch through an untagged or tagged port of the Default VLAN To instruct the switch to ping a network device perform the following procedure 1 From the Main Menu type T to select Swit...

Page 49: ...of requests 6 Enter the number of ping requests you want the switch to perform The range is 1 to 10 The default is 10 7 Type T to select Set Timeout Value The following prompt is displayed Enter new...

Page 50: ...ng type S to select Stop Ping 12 Type Q to select Quit to previous menu Switch Tools Configuration Ping Execution Target IP Address 149 35 8 33 Number of Requests 4 Timeout Value sec 3 Result No 1 20...

Page 51: ...he Switch Tools Configuration Menu is shown in Figure 9 on page 46 2 From the Switch Tools Menu type R to select System Reboot to start the reboot The System Reboot menu is shown in Figure 10 on page...

Page 52: ...boot the system Y N 6 Type Y to start the reboot process The switch returns its operating parameters to the default values and begins to reload the AT S80 Management Software This process takes approx...

Page 53: ...es for viewing and adjusting the parameter settings for the ports on the switch This chapter contains the following sections Displaying the Port Parameters on page 54 Enabling and Disabling a Port on...

Page 54: ...is column contains the number of the port trunk if the port is a member of a trunk To configure a trunk refer to Chapter 5 Port Trunking on page 61 Basic Switch Configuration Port Configuration Menu P...

Page 55: ...ing and Disabling a Port on page 56 Mode The port s speed and duplex mode setting The possible values are Auto The port is using Auto Negotiation to set its operating speed and duplex mode This is the...

Page 56: ...nu type B to select Basic Configuration The Basic Switch Configuration Menu is shown in Figure 4 on page 32 2 From the Basic Switch Configuration Menu type P to select Port Configuration The Port Conf...

Page 57: ...t is displayed Enter new mode for port n a h H f F T 5 Enter the letter that corresponds to the desired speed and duplex mode setting for the port The port settings are a Auto The port uses Auto Negot...

Page 58: ...e manually when connecting an end node with a fixed duplex mode of full duplex to a switch port For 1000 Mbps operation on an uplink 10 100 1000Base T twisted pair uplink port Allied Telesis recommend...

Page 59: ...de To change the flow control setting on a port perform the following procedure 1 From the Main Menu type B to select Basic Configuration The Basic Switch Configuration Menu is shown in Figure 4 on pa...

Page 60: ...Chapter 4 Port Configuration 60 Section I Using the Menus Interface...

Page 61: ...g This chapter provides information and procedures for creating a port trunk and contains the following sections Port Trunking Overview on page 62 Creating a Port Trunk on page 64 Modifying a Port Tru...

Page 62: ...pair ports or all fiber optic ports The speed duplex mode and flow control settings must be the same on all the ports in a trunk The ports of a trunk must be members of the same VLAN The ports of a tr...

Page 63: ...7 is reserved for the uplink ports 17 and 18 on the AT FS750 16 switch and ports 25 and 26 on the AT FS750 24 switch You cannot add or remove ports from this trunk To use the uplink ports as a port t...

Page 64: ...create a port trunk perform the following procedure 1 From the Main Menu type A to select Advanced Switch Configuration The Advanced Switch Configuration Menu is shown in Figure 14 Figure 14 Advanced...

Page 65: ...include in the trunk and press Enter You can specify the ports individually separated by commas for example 1 2 5 as a range of ports separated by a hyphen for example 2 4 or both for example 4 6 11 1...

Page 66: ...ing prompt is displayed Enable or Disable trunk group number n E D 8 Type E to enable the trunk 9 Type Q to select Quit to previous menu and save your changes The trunk is now operational on the switc...

Page 67: ...ve ports from a trunk perform the following procedure 1 From the Main Menu type A to select Advanced Switch Configuration The Advanced Switch Configuration Menu is shown in Figure 14 on page 64 2 From...

Page 68: ...he ports individually separated by commas for example 1 2 5 as a range of ports separated by a hyphen for example 2 4 or both for example 4 6 11 14 6 Type Q to select Quit to previous menu and save yo...

Page 69: ...rk topology A loop can cause a broadcast storm and poor network performance To enable or disable a port trunk perform the following procedure 1 From the Main Menu type A to select Advanced Switch Conf...

Page 70: ...Chapter 5 Port Trunking 70 Section I Using the Menus Interface 5 Type E to enable the trunk or D to disable it 6 Type Q to select Quit to previous menu and save your changes...

Page 71: ...6 IGMP Snooping This chapter explains how to activate and configure the Internet Group Management Protocol IGMP snooping feature on the switch Sections in the chapter include IGMP Snooping Overview o...

Page 72: ...nly to router ports where host nodes are located There are three versions of IGMP versions 1 2 and 3 One of the differences between the versions is how a host node signals that it no longer wants to b...

Page 73: ...t received the packet Such flooding of packets can negatively impact network performance The AT FS750 switches maintain a list of multicast groups through an adjustable timeout value which controls ho...

Page 74: ...on the switch perform the following procedure 1 From the Main Menu type A to select Advanced Switch Configuration The Advanced Switch Configuration Menu is shown in Figure 16 Figure 16 Advanced Switc...

Page 75: ...layed Enable or Disable IGMP snooping E D 4 Type E to enable IGMP snooping or D to disable IGMP snooping By default IGMP snooping is disabled 5 Type Q to select Quit to previous menu and save your cha...

Page 76: ...his parameter is from 280 to 420 seconds For an IGMP router port the Set Age Out Timer is set to 130 seconds by default This value cannot be changed 4 Type the number of seconds that you want the swit...

Page 77: ...Enter MAC Address xx xx xx xx xx xx 4 Enter a Multicast Group MAC address in the format xx xx xx xx xx The range of the multicast MAC address is from 01 00 5E 00 01 00 to 01 00 5E 7F FF FF The IGMP C...

Page 78: ...Chapter 6 IGMP Snooping 78 Section I Using the Menus Interface...

Page 79: ...rface 79 Chapter 7 Static Multicast Address This chapter explains how to assign static multicast addresses Sections in the chapter include Static Multicast Address Overview on page 80 Creating a Stati...

Page 80: ...h Dynamically learned MAC addresses If you want the MAC address table to act as a forwarding database configure it with static multicast MAC addresses The Static Multicast Address feature allows you t...

Page 81: ...anced Switch Configuration The Advanced Switch Configuration Menu is shown in Figure 14 on page 64 2 From the Advanced Switch Configuration Menu type A to select Static Multicast Address Configuration...

Page 82: ...nu and save your changes Deleting a Static Group To delete a group from a Group MAC address perform the following procedure 1 From the Main Menu type A to select Advanced Switch Configuration The Adva...

Page 83: ...the Advanced Switch Configuration Menu type A to select Static Multicast Address Configuration The Static Multicast Address Table Menu is shown in Figure 18 on page 81 3 Type D to select Delete Stati...

Page 84: ...Chapter 7 Static Multicast Address 84 Section I Using the Menus Interface...

Page 85: ...ins procedures for setting up this feature Port mirroring allows you to unobtrusively monitor the ingress and egress traffic on a port by copying the traffic to another port This chapter contains the...

Page 86: ...opied and monitor it without impacting performance or speed The port whose traffic you want to mirror is called the mirrored port The port where the traffic will be copied to is called the mirroring p...

Page 87: ...select Set Mirroring Port The following prompt is displayed Set monitoring port Enter port number 4 Type the number of the port where the network analyzer is connected and press Enter You can specify...

Page 88: ...e E to select Enable Disable Port Mirroring The following prompt is displayed Enable or Disable monitoring E D 8 Type E to enable port mirroring You can now connect your data analyzer to the mirroring...

Page 89: ...ration Menu is shown in Figure 14 on page 64 2 From the Advanced Switch Configuration Menu type M to select Port Mirroring Configuration The Port Mirroring Menu is shown in Figure 19 on page 87 3 Type...

Page 90: ...Chapter 8 Port Mirroring 90 Section I Using the Menus Interface...

Page 91: ...9 Dial in User Configuration This chapter describes the Dial in User feature and provides procedures for configuring this feature Sections in the chapter include Dial in User Configuration Overview on...

Page 92: ...allows you to add and delete and modify dial in users to the AT FS750 switch In addition you must assign each dial in user a password and a VLAN See Chapter 10 Virtual LANs on page 97 for more inform...

Page 93: ...owing procedure 1 From the Main Menu type A to select Advanced Switch Configuration The Advanced Switch Configuration Menu is shown in Figure 14 on page 64 2 From the Advanced Switch Configuration Men...

Page 94: ...e your changes Deleting a Dial in User To delete a dial in user perform the following procedure 1 From the Main Menu type A to select Advanced Switch Configuration The Advanced Switch Configuration Me...

Page 95: ...ser Configuration The Dial in User Configuration Menu is shown in Figure 20 on page 93 3 Type type M to select Modify User The following prompt is displayed Enter dial in user name 4 Type the name of...

Page 96: ...Chapter 9 Dial in User Configuration 96 Section I Using the Menus Interface...

Page 97: ...a Networks VLANs This chapter contains the following sections VLAN Overview on page 98 Port based VLAN Overview on page 100 Tagged VLAN Overview on page 101 Creating a VLAN on page 103 Configuring the...

Page 98: ...dwidth the greater the likelihood overall network performance decreases VLANs improve network perform because VLAN traffic stays within the VLAN The nodes of a VLAN receive traffic only from nodes of...

Page 99: ...thout moving the workstations physically or changing group memberships by moving cables from one switch port to another In addition a virtual LAN can span more than one switch This means that the end...

Page 100: ...ID Each VLAN in a network must have a unique number assigned to it This number is called the Group ID This number uniquely identifies a VLAN in the switch Each port of a port based VLAN can belong to...

Page 101: ...rames is referred to as a tagged port Any network device connected to a tagged port must be IEEE 802 1Q compliant This is the standard that outlines the requirements and standards for tagging The devi...

Page 102: ...that port is a member The deciding factor in this process is the Port VLAN Identifier PVID Both tagged and untagged ports in a tagged VLAN must have a PVID assigned to them The default value of the P...

Page 103: ...onsidered an untagged member of the VLAN This procedure is found in Configuring the PVID of Untagged Ports on page 107 To create a VLAN perform the following procedure 1 From the Main Menu type A to s...

Page 104: ...Type C to select Create VLAN The VLAN Creation Menu is shown in Figure 22 5 From the VLAN Management Menu type C to select Create VLAN VLAN Management Menu Tagged based VLAN Configuration VLAN ID VLAN...

Page 105: ...o select Select Port Member The following prompt is displayed Enter port number 9 Enter the untagged and tagged ports of the VLAN You can specify the ports individually separated by commas for example...

Page 106: ...just created The VLAN is now active on the switch 12 If the VLAN contains untagged ports perform the next procedure Configuring the PVID of Untagged Ports on page 107 to change the PVID of the untagg...

Page 107: ...u must change their PVID values to match the VID of the VLAN if you want the ports to function as untagged members of a new VLAN This is explained in the following procedure You can also use this proc...

Page 108: ...port numbers You can add more than one port at a time You can specify the ports individually for example 2 5 11 as a range for example 4 7 or both for example 2 5 11 15 7 Type C to select Change VLAN...

Page 109: ...2 1Q VLAN The Tagged based VLAN configuration Menu is shown in Figure 22 on page 104 4 Type S to select Set Port Config The VLAN Port Configuration Menu is shown in Figure 21 on page 103 5 Type V to s...

Page 110: ...ter port number 4 Type a port number or numbers that is assigned to a port based group Then press Enter You can specify ports individually separated by commas for example 2 7 15 as a range of ports se...

Page 111: ...shown in Figure 21 on page 103 3 Type V to select 802 1Q VLAN The Tagged based VLAN configuration Menu is shown in Figure 22 on page 104 The currently configured VLANs are displayed in a table with t...

Page 112: ...ts of the VLAN Tagging Whether a port is a tagged or untagged member of the VLAN An untagged port is designated with No and a tagged port with Yes The selections in this Config VLAN Member menu are ex...

Page 113: ...figuration Menu is shown in Figure 14 on page 64 2 From the Advanced Switch Configuration Menu type V to select VLAN Management The VLAN Management Menu is shown in Figure 21 on page 103 3 Type V to s...

Page 114: ...ther VLAN by changing its PVID as explained in Configuring the PVID of Untagged Ports on page 107 To change the name of a VLAN or to add or remove tagged ports perform the following procedure 1 From t...

Page 115: ...r You can add more than one port at a time You can specify the ports individually that is 2 5 11 as a range that is 4 7 or both that is 2 5 11 15 The following prompt is displayed Select port tagging...

Page 116: ...nagement Menu is shown in Figure 21 on page 103 3 Type P to select Port Based VLAN The Port Based VLAN Configuration Menu is shown in Figure 24 on page 108 4 Type D to select Delete Member Port The fo...

Page 117: ...select 802 1Q VLAN The Tagged based VLAN configuration Menu is shown in Figure 22 on page 104 4 Type D to select Delete VLAN The following prompt is displayed Enter VLAN ID 5 Type the VLAN ID of the...

Page 118: ...Chapter 10 Virtual LANs 118 Section I Using the Menus Interface...

Page 119: ...explains how to activate SNMP management on the switch and how to create modify and delete SNMPv1 and SNMPv2c community strings Sections in the chapter include SNMP Overview on page 120 Creating an SN...

Page 120: ...entication failure trap is similar to other the traps It too signals an operating event on the switch But this trap is somewhat special because it relates to SNMP management A switch that sends this t...

Page 121: ...ent stations on your network can use a community string An open access status permits any network manager who knows the community string to use it A closed access status restricts the string to those...

Page 122: ...addresses to the community strings Each community string can have up to eight trap IP addresses It does not matter which community strings you assign your trap receivers When the switch sends a trap...

Page 123: ...and private The public string has an access mode of Read Only and the private string has an access mode of Read Write If you activate SNMP management on the switch you should delete or disable the pr...

Page 124: ...m the following procedure 1 From the Main Menu type B to select Basic Switch Configuration The Basic Switch Configuration Menu is shown in Figure 26 Figure 26 Basic Switch Configuration Menu 2 From th...

Page 125: ...enu is displayed as show in Figure 28 Figure 28 Community Configuration Menu Basic Switch Configuration SNMP Configuration Menu C ommunity Configuration H ost Configuration T rap Receiver Configuratio...

Page 126: ...r changes The new SNMP community is now operational on the switch Deleting an SNMP Community To delete an SNMP community perform the following procedure 1 From the Main Menu type B to select Basic Swi...

Page 127: ...s displayed Enter entry number a Enter the entry number from 1 through 8 that you want to modify Then press Enter The following prompt is displayed Choose which to be modified A C B Note In the above...

Page 128: ...aracters such as and are permitted The Community Configuration Menu is updated with the new SNMP community name c Select B to modify both the name and access of a community The following prompt is dis...

Page 129: ...onfiguration Menu is shown in Figure 26 on page 124 2 From the Basic Switch Configuration Menu type N to select SNMP Configuration The SNMP Configuration Menu is shown in Figure 27 on page 125 3 From...

Page 130: ...Community Configuration menu See Creating an SNMP Community on page 124 5 Type Q to select Quit to previous menu and save your changes Deleting an Host Entry To delete an entry from the Host Community...

Page 131: ...n in Figure 27 on page 125 3 From the SNMP Configuration Menu type H to select Host Configuration The Host Configuration Menu is displayed in Figure 29 on page 129 4 Type M to select Modify Host Entry...

Page 132: ...llowed by Enter f Select B to change both the IP address and Community The following prompt is displayed Enter IP address for host g Type the IP address for the host in the format xxx xxx xxx xxx Then...

Page 133: ...n page 135 Modifying a Trap Receiver on page 135 Enabling an SNMP Trap To enable an SMNP trap perform the following procedure 1 From the Main Menu type B to select Basic Switch Configuration The Basic...

Page 134: ...rsion and then press Enter Select 1 for SNMP version 1 or select 2 for SNMP version 2vc The following prompt is displayed Enter IP address for trap receiver c Enter an IP address in the xxx xxx xxx xx...

Page 135: ...age 125 3 From the SNMP Configuration Menu type T to select Trap Receiver Configuration Menu The Trap Receiver Configuration Menu is displayed in Figure 29 on page 129 4 Type D to select Delete Trap R...

Page 136: ...epresents all of the previous choices The following prompt is displayed Enter entry number b Enter a trap number between 1 and 10 Then press Enter c Type V to change the Trap SNMP version number The f...

Page 137: ...name followed by Enter See Adding an SNMP Community on page 124 The Trap Receiver Configuration Menu is updated 5 Type Q to select Quit to previous menu and save your changes Enabling or Disabling Tr...

Page 138: ...sing the Menus Interface a Enter E to enable all configured traps Or enter D to disable all configured traps Note You can only enable or disable all traps You may not enable or disable traps individua...

Page 139: ...oS This chapter contains the procedures for configuring Quality of Service QoS This chapter contains the following sections QoS Overview on page 140 Mapping CoS Priorities to Egress Queues on page 143...

Page 140: ...traffic QoS actually consists of several different elements The element supported by the AT FS750 16 and AT FS750 24 switches is called Class of Service CoS CoS applies primarily to tagged packets As...

Page 141: ...tagged packets do not contain a priority level By default all untagged packets are temporarily assigned a priority level of 0 as they enter a port and at the default settings are placed in a port s Q0...

Page 142: ...y of Service QoS 142 Section I Using the Menus Interface The default setting for Quality of Service is disabled When the feature is disabled all tagged packets are stored in the lowest priority egress...

Page 143: ...the following procedure 1 From the Main Menu type A to select Advanced Switch Configuration The Advanced Switch Configuration Menu is shown in Figure 14 on page 64 2 From the Advanced Switch Configur...

Page 144: ...5 To change the egress priority queue assignment of a tagged 802 1p traffic class do the following a Type P to select Set Priority Queue The following prompt is displayed Enter traffic class b Enter...

Page 145: ...ng prompt is displayed Enter queue for traffic class n c Enter the new egress queue number for the traffic class The range is 0 to 3 where 0 is the lowest priority queue and 3 is the highest You can s...

Page 146: ...ckets are stored in queue 2 on the egress port The default priority level for untagged packets is 0 To change the temporary priority level of untagged traffic received on a port perform the following...

Page 147: ...on the port are stored on the egress port For example in the figure above the untagged traffic received on port 2 is assigned a temporary priority level of 5 and is stored in queue 2 on the egress por...

Page 148: ...only one port or trunk at a time A prompt similar to the following is displayed Enter queue for port n 6 Enter the priority level 0 to 7 you want assigned to the untagged traffic on the port or trunk...

Page 149: ...pid Spanning Tree Protocol RSTP on the switch and includes the following sections RSTP Overview on page 150 Enabling or Disabling RSTP on page 157 Configuring the RSTP Bridge Settings on page 160 Conf...

Page 150: ...dition of a new bridge a spanning tree protocol must determine whether there are redundant paths that must be blocked to prevent data loops or activated to maintain communications between the various...

Page 151: ...t port is called the designated port Path Costs and Port Costs After the root bridge has been selected the bridges must determine if the network contains redundant paths and if one is found they must...

Page 152: ...nvolve the use of the port priority parameter This parameter is used as a tie breaker when two paths have the same cost The range for port priority in hexadecimal format is 0 to 240 with 240 being the...

Page 153: ...number of all the bridges and should therefore become the root bridge The root bridge periodically transmits a BPDU to determine whether there have been any changes to the network topology and to info...

Page 154: ...ly define the port as an edge port The default setting for the edge port status is False For each port you must manually configure this setting There is no automatic mode for the edge port setting Fig...

Page 155: ...02 1d Your network can consist of bridges running both protocols STP and RSTP in the same network can operate together to create a single spanning tree domain The switch monitors the traffic on each p...

Page 156: ...isting of untagged ports connect the separate parts of each VLAN If RSTP is activated on the switches one of the links is disabled In the example the port on the top switch that links the two parts of...

Page 157: ...ive port on the switch that is communicating with the root bridge If the switch is the root bridge for the LAN then there is no root port and the root port parameter will be 0 Basic Switch Configurati...

Page 158: ...AC address of the root bridge For example 1000 00C08F1211BB shows the root bridge priority as 1000 and 00C08F1211BB as the MAC address Hello Time The hello time See Hello Time and Bridge Protocol Data...

Page 159: ...ridge Forward Delay This is the time interval between generating and sending configuration messages by the bridge 3 Type E to select Enable Disable Global RSTP The following prompt is displayed Enable...

Page 160: ...e the root bridge for RSTP The bridge with the lowest priority number is selected as the root bridge If two or more bridges have the same priority value that is the lowest of all the bridges then the...

Page 161: ...age observe the following rules MaxAge must be greater than 2 x HelloTime 1 MaxAge must be less than 2 x ForwardingDelay 1 Note The aging time for BPDUs is different from the aging time used by the M...

Page 162: ...tibility perform the following procedure 1 From the Main Menu type B to select Basic Switch Configuration The Basic Switch Configuration Menu is shown in Figure 4 on page 32 2 From the Basic Switch Co...

Page 163: ...elect RSTP Basic Port Configuration The RSTP Basic Port Configuration menu is shown in Figure 39 Figure 39 RSTP Basic Port Configuration Menu Rapid Spanning Tree Configuration RSTP Basic Port Configur...

Page 164: ...the port with the lowest MAC address becomes the forwarding port 6 Enter a number for the priority 7 Type C to select Set Path Cost The following prompt is displayed Select port number to be changed P...

Page 165: ...or Disable STP for port n E D 12 Type E to enable or D to disable STP on the port Configuring the Advanced RSTP Port Settings To configure the advanced RSTP port settings perform the following procedu...

Page 166: ...nge the Admin OperEdge status 7 Type P to select P to P Status Rapid Spanning Tree Configuration RSTP Advanced Port Configuration Port Trunk Link State Role Admin OperEdge Admin OperPtoP Migrat 1 Down...

Page 167: ...ge 153 9 Enter A for Auto T for True or F for False according to the operating status your network requires following the guidelines in Table 6 10 Type M to select Restart Port Migration The following...

Page 168: ...nformation about the ports Trunk The trunk of which the port is a member Rapid Spanning Tree Configuration Designated Topology Information PortTrunk Link Desig Root Desig Cost Desig Bridge Desig Port...

Page 169: ...d root bridge is displayed In the network topology the designated bridge is located between the local switch and the root bridge Desig Cost The sum of all the root port costs on all bridges including...

Page 170: ...Chapter 13 Rapid Spanning Tree Protocol RSTP 170 Section II Menus Interface...

Page 171: ...dwidth Control This chapter explains how to activate and configure the Internet Group Management Protocol IGMP snooping feature on the switch Sections in the chapter include Bandwidth Control Overview...

Page 172: ...eavy traffic you can use bandwidth control to set the rate of various types of packets that a port receives You can control ingress packet types including broadcast multicast and DLF packets or a comb...

Page 173: ...Switch Configuration 2 From the Basic Switch Configuration Menu type B to select Bandwidth Control The Bandwidth Control Configuration Menu is shown in Figure 42 Figure 42 Advanced Switch Configuratio...

Page 174: ...u type B to select Basic Switch Configuration 2 From the Basic Switch Configuration Menu type B to select Bandwidth Control The Advanced Switch Configuration Menu is shown in Figure 42 on page 173 3 T...

Page 175: ...us menu and save your changes Setting Ingress DLF Status To enable or disable DLF ingress status on a switch perform the following procedure 1 From the Main Menu type B to select Basic Switch Configur...

Page 176: ...Chapter 14 Bandwidth Control 176 Section I Using the Menus Interface...

Page 177: ...ce 177 Chapter 15 IP Access List This chapter explains how to activate and configure the IP Access List feature on the switch Sections in the chapter include IP Access List Overview on page 178 Config...

Page 178: ...List Overview The IP Access List feature when enabled restricts remote web access to the management software by means of a user configured list of IP addresses It does not restrict the management pin...

Page 179: ...List Restriction To enable or disable the IP Access List feature perform the following procedure 1 From the Main Menu type B to select Basic Switch Configuration The Basic Switch Configuration Menu is...

Page 180: ...P Access List perform the following procedure 1 From the Main Menu type B to select Basic Switch Configuration The Basic Switch Configuration Menu is shown in Figure 26 on page 124 2 From the Basic Sw...

Page 181: ...hapter 16 Destination MAC Filter This chapter explains how to activate the Destination MAC filter on the switch Sections in the chapter include Destination MAC Filtering Overview on page 182 Configuri...

Page 182: ...evice which is specified by its MAC address After you add a MAC address of a device to the list of Destination MAC Filtering then the AT FS750 switch drops or discards packets sent from this device To...

Page 183: ...witch perform the following procedure 1 From the Main Menu type B to select Basic Switch Configuration The Basic Switch Configuration Menu is shown in Figure 4 on page 32 2 From the Basic Switch Confi...

Page 184: ...owing procedure 1 From the Main Menu type B to select Basic Switch Configuration The Basic Switch Configuration Menu is shown in Figure 4 on page 32 2 From the Basic Switch Configuration menu type F t...

Page 185: ...ut and the procedure for configuring 802 1x Port based Network Access Control It includes the following sections 802 1x Port based Network Access Control Overview on page 186 Guest VLANs on page 192 C...

Page 186: ...he RADIUS server performs the authentication of the username and password combinations Note RADIUS with Extensible Authentication Protocol EAP extensions is the only supported authentication server fo...

Page 187: ...EAP Success packet or EAP Reject packet to the supplicant Upon successful authorization of the supplicant by the authentication server the switch adds the supplicant s MAC address to the MAC address a...

Page 188: ...default setting Use this port control setting for those ports where there are network devices that are not to be authenticated Figure 45 illustrates the concept of the authenticator port control setti...

Page 189: ...S80 management software 3 You must configure and activate the RADIUS client software in the AT S80 management software The default setting for the authentication protocol is disabled You will need to...

Page 190: ...C address of an end node This allows end users to use the same username and password when working at different workstations After a supplicant has successfully logged on the MAC address of the end nod...

Page 191: ...is illustrated in Figure 46 Figure 46 Port based Authentication Across Multiple Switches Switch A Switch B Port 6 802 1x Port Control Setting Force authorized RADIUS Authentication Server Ports 1 to...

Page 192: ...ing the port is not required to log on and has full access to the resources of the Guest VLAN If the switch receives 802 1x packets on the port signalling that a supplicant is logging on it moves the...

Page 193: ...ion Menu is shown in Figure 47 Figure 47 Port Based Access Control Configuration Menu Advanced Switch Configuration Port Based Access Control Configuration Menu NAS ID Nas1 Authentication Method 1 Por...

Page 194: ...setting The possible settings are A Auto Enables 802 1x port based authentication and causes the port to begin in the unauthorized state allowing only EAPOL frames to be sent and received through the...

Page 195: ...authentication should occur according to the reauthentication period The options are Enabled or Disabled Current PVID Displays the current port VLAN identifier or PVID assignment of the port You canno...

Page 196: ...uration Menu is displayed Authentication Method Select an authentication method that is enabled on the switch either R RADIUS or L local 9 If the port control setting is Auto and you want to return th...

Page 197: ...he Advanced Switch Configuration Menu is shown in Figure 14 on page 64 2 From the Advanced Switch Configuration Menu type X to select 802 1x Port Based Access Control Configuration The Port Based Acce...

Page 198: ...t The settings are described here NAS ID This parameter assigns an 802 1x identifier to the switch that applies to all ports The NAS ID can be up to sixteen characters Valid characters are 0 to 9 a to...

Page 199: ...ent This is the default setting Transmission Period Sets the number of seconds that the switch waits for a response to an EAP request identity frame from the client before retransmitting the request T...

Page 200: ...n Menu is updated with the new guest VLAN ID 9 If the port control setting is Auto and you want to return the EAPOL machine state on the port to the initialized state do the following a Type I to sele...

Page 201: ...the RADIUS client software on the switch You can use the RADIUS client with 802 1x port based network access control to control who can forward packets through the switch Sections in the chapter inclu...

Page 202: ...tware is not available from Allied Telesis The RADIUS server must be communicating with the switch through a port that is an untagged member of the Default VLAN If the RADIUS server is on a different...

Page 203: ...shown in Figure 7 on page 39 3 Type R to select RADIUS Server Configuration The RADIUS Server Configuration Menu is shown in Figure 49 Figure 49 RADIUS Server Configuration Menu 4 Type I to select Se...

Page 204: ...o assign to UDP You may only assign one port number to this parameter The default value is 1812 8 Type C to select Shared Secret The following prompt is displayed Enter secret string for server 9 Ente...

Page 205: ...ration The Basic Switch Configuration Menu is shown in Figure 4 on page 32 2 From the Basic Switch Configuration Menu type U to select User Interface Configuration The User Interface Configuration Men...

Page 206: ...Chapter 18 RADIUS Authentication Protocol 206 Section I Using the Menus Interface...

Page 207: ...o the switch The procedure is Downloading a New Management Software Image Using TFTP on page 208 Note For information on how to obtain new releases of the AT S80 Management Software refer to Managemen...

Page 208: ...ver software before you begin the download procedure The switch where you are downloading the new image file must have an IP address and subnet mask For instructions on how to configure the IP address...

Page 209: ...S to select Set TFTP Server IP Address The following prompt is displayed Enter IP address of TFTP server Switch Tools Configuration Software Upgrade Menu T FTP Software Upgrade Q uit to previous menu...

Page 210: ...e number of times you want the switch to retry in the event a problem occurs during the download process The range is 1 to 20 The default is 5 times 10 To begin the download type U to select Upgrade I...

Page 211: ...rroring on page 251 Chapter 25 Static Multicast Address Table on page 255 Chapter 26 IGMP Snooping on page 261 Chapter 27 Destination MAC Address Filter on page 265 Chapter 28 Bandwidth Control on pag...

Page 212: ...212 Section II Using the Web Browser Interface...

Page 213: ...s the procedures for starting using and quitting a web browser management session on the AT FS750 16 and AT FS750 24 switches Sections in the chapter include Establishing a Remote Connection to Use th...

Page 214: ...ain its IP configuration from a DHCP server refer to Enabling and Disabling the DHCP Client on page 35 The initial assignment of an IP address must be made through a local management session Note The...

Page 215: ...gin dialog box shown in Figure 53 Figure 53 AT S80 Login Dialog Box 3 Enter the AT S80 management login user name and password The default user name is manager and the password is friend The login nam...

Page 216: ...ion about the Switch Information Page see Viewing System Information on page 233 Figure 54 Home Page for the AT FS750 24 Switch The main menu is on the sidebar of the home page It consists of the foll...

Page 217: ...Browser Interface 217 Web Browser Tools You can use the web browser tools to move around the management pages Selecting Back on your browser s toolbar returns you to the previous display You can also...

Page 218: ...apter 20 Starting a Web Browser Management Session 218 Section II Using the Web Browser Interface Quitting a Web Browser Management Session To exit a web browser management session close the web brows...

Page 219: ...List on page 222 Enabling and Disabling the DHCP Client on page 225 Configuring System Management Information on page 226 Configuring System Administration Information on page 228 Setting the User Int...

Page 220: ...ur network A gateway address is only required if your remote management station is separated from the switch by a router To configure the switch to automatically obtain its IP configuration from a DHC...

Page 221: ...P Address Enter the IP address for the switch System Subnet Mask Enter the subnet mask for the switch System Default Gateway Enter the default gateway s IP address DHCP Mode For information about sett...

Page 222: ...regarding the IP Access List feature see Chapter 15 IP Access List on page 183 Creating an IP Access List To create a list of restricted IP addresses perform the following procedure 1 From the book m...

Page 223: ...tion II Using the Web Browser Interface 223 4 Enter an IP address that you want to prevent from accessing the switch in the xxx xxx xxx xxxx format next to the IP Address field Then click Add The IP a...

Page 224: ...m the following procedure To create a list of restricted IP addresses perform the following procedure 1 From the book marks on the left side of the page select System The System folder expands 2 From...

Page 225: ...default setting for the DHCP client is disabled The DHCP client does not support BOOTP The initial assignment of the IP address must be made through a local management session using the menus interfa...

Page 226: ...ministration information perform the following procedure 1 From the book marks on the left side of the page select System The System folder expands 2 From the System folder select Management The Manag...

Page 227: ...s switches in your network and can also help you avoid performing a configuration procedure on the wrong switch System Location Specifies the location of the switch The location is optional and may co...

Page 228: ...ng procedure 1 From the book marks on the left side of the page select System The System folder expands 2 From the System folder select Administration The Administration Page is shown in Figure 58 Fig...

Page 229: ...ove password retype the password in the box next to the Confirm Password field 8 Click Add to activate your changes on the switch Modifying Administration Information To modify the password of a user...

Page 230: ...re 1 From the book marks on the left side of the page select System The System folder expands 2 From the System folder select Administration The Administration Page is shown in Figure 58 on page 228 3...

Page 231: ...login user name and password Enable and disable the web server used to manage the switch from a remote management station with a web browser To set the switch s user interface configuration perform t...

Page 232: ...ent session but not to a web management session A web browser management session remains active so long as your web browser is open Note If you select 0 you must remember to properly log off from a lo...

Page 233: ...ormation Page is the page that appears after you log on to the web interface The Switch Information Page is shown in Figure 61 Figure 61 Switch Information Page The Switch Information page displays th...

Page 234: ...tact person responsible for managing the switch To specify the name of a contact refer to Configuring System Management Information on page 226 System MAC Address IP Address Subnet Mask and Gateway Se...

Page 235: ...Interface 235 a gateway address or Enabling and Disabling the DHCP Client on page 225 to activate the DHCP client DHCP Mode The status of the DHCP client on the switch For information about setting th...

Page 236: ...ward network traffic during the reboot process Some network traffic may be lost To reboot a switch perform the following procedure 1 From the Tools folder select Reboot The Reboot Page is shown in Fig...

Page 237: ...7 4 Click Apply The switch immediately begins to reload the AT S80 management software This process takes approximately one minute to complete You can not manage the device during the reboot After the...

Page 238: ...the Default VLAN It must be communicating with the switch through an untagged or tagged port of the Default VLAN To instruct the switch to ping a network device perform the following procedure 1 From...

Page 239: ...g the Web Browser Interface 239 3 Click Start 4 To view the ping results click Show Ping Results A sample Ping Test Results page is shown in Figure 64 Figure 64 Ping Test Results Page 5 Click Back to...

Page 240: ...gs perform the following procedure 1 From the Tools menu select System Reboot The Reboot Page is shown in Figure 62 on page 236 2 For the Reboot Type select one of the following Reset to Factory Defau...

Page 241: ...ace 241 Chapter 22 Port Configuration The section in this chapter explains how to view and change the parameter settings of the individual ports on the switch Viewing and Configuring Ports Using the P...

Page 242: ...the Physical Interface Page This page allows you to view and configure the parameter settings of all the switch ports at one time To configure the ports perform the following procedure 1 From the book...

Page 243: ...g status of the port You can use this parameter to enable or disable a port You may want to disable a port and prevent packets from being forwarded if a problem occurs with the node or cable connected...

Page 244: ...id this problem when connecting an end node with a fixed duplex mode of full duplex to a switch port disable Auto Negotiation on the port and set the port s speed and duplex mode manually For 1000 Mbp...

Page 245: ...apter contains the following procedures for working with port trunking Creating a Port Trunk on page 246 Modifying a Port Trunk on page 248 Enabling and Disabling a Port Trunk on page 249 Note For bac...

Page 246: ...the trunk with the management software Connecting the cables before configuring the software can create a loop in the network topology A loop can cause a broadcast storm and poor network performance...

Page 247: ...AT FS750 16 and ports 25 and 26 on the AT FS750 24 3 In any one of the unused Trunk ID rows click the dialog boxes of the ports that will make up the port trunk A check in a box indicates the port is...

Page 248: ...o add or remove ports from a trunk perform the following procedure 1 From the Bridge folder select Spanning Tree The Spanning Tree folder expands 2 From the Spanning Tree folder select Trunking The Tr...

Page 249: ...tches The ports of a disabled trunk forward traffic as individual ports Caution Disconnect the cables from the ports of the trunk before you modify the trunk Leaving the cables connected can create a...

Page 250: ...Chapter 23 Port Trunking 250 Section II Using the Web Browser Interface...

Page 251: ...mirroring allows you to unobtrusively monitor the ingress and egress traffic on a port by having the traffic copied to another port This chapter contains the following sections Configuring Port Mirror...

Page 252: ...where the network analyzer is connected from the pull down menu 4 In the Ingress Port field select the port whose ingress traffic you want to monitor from the pull down menu You can select only one p...

Page 253: ...m the Bridge folder select Spanning Tree The Spanning Tree folder expands 2 From the Spanning Tree folder select Mirroring The Mirroring Page is shown in Figure 67 on page 252 3 From the Status field...

Page 254: ...Chapter 24 Port Mirroring 254 Section II Using the Web Browser Interface...

Page 255: ...e following procedures for setting group MAC addresses in the web interface Configuring Static Multicast Address Table on page 256 Modifying a Static Multicast Address Table on page 258 Deleting a Gro...

Page 256: ...lect Static Multicast The Static Multicast Address Table Page is shown in Figure 68 Figure 68 Static Multicast Address Table Page 3 To add a group MAC address to the Static Multicast Address table ent...

Page 257: ...AT S80 Management Software User s Guide Section II Using the Web Browser Interface 257 Figure 69 Static Multicast Table with Group MAC Addresses...

Page 258: ...left side of the page select Bridge The Spanning Tree folder expands 2 From the Spanning Tree folder select Static Multicast The Static Multicast Address Table Page is shown in Figure 68 on page 256...

Page 259: ...Table perform the following procedure 1 From the bookmarks on the left side of the page select Bridge The Spanning Tree folder expands 2 From the Spanning Tree folder select Static Multicast The Stati...

Page 260: ...Chapter 25 Static Multicast Address Table 260 Section II Using the Web Browser Interface...

Page 261: ...IGMP Snooping This chapter contains the following procedures for working with IGMP Snooping in the web interface Sections in the chapter include Configuring IGMP Snooping on page 262 Note For backgrou...

Page 262: ...P Snooping The IGMP Snooping Page is shown in Figure 71 Figure 71 IGMP Snooping Page 3 To enable or disable IGMP Snooping on the switch select Enable or Disable Then press Apply By default IGMP is dis...

Page 263: ...e Web Browser Interface 263 Note The Multicast Group Address field contains MAC addresses of nodes that are members of multicast groups To set a Multicast Group Address see Setting Group Members on pa...

Page 264: ...Chapter 26 IGMP Snooping 264 Section II Using the Web Browser Interface...

Page 265: ...his chapter contains the following procedures for setting MAC addresses in the Destination MAC Filter in the web interface Setting a Destination MAC Filter on page 266 Removing a MAC Address on page 2...

Page 266: ...ter list perform the following procedure 1 From the bookmarks on the left side of the page select Security The Security folder expands 2 From the Security folder select Destination MAC Filter The Dest...

Page 267: ...t Software User s Guide Section II Using the Web Browser Interface 267 The Destination MAC Filter table is updated with the new MAC address See Figure 73 for an example Figure 73 Destination MAC Addre...

Page 268: ...perform the following procedure 1 From the bookmarks on the left side of the page select Security The Security folder expands 2 From the Security folder select Destination MAC Filter The Destination...

Page 269: ...h Control This chapter contains the following procedures for working with Bandwidth Control in the web interface Sections in the chapter include Configuring Bandwidth Control on page 270 Note For back...

Page 270: ...Control on a port To configure Bandwidth Control perform the following procedure 1 From the bookmarks on the left side of the page select Bridge The options under the Bridge folder expand to include S...

Page 271: ...s for all the ports on the switch select the pull down menu next to the DLF Ingress Packet Status field Choose Enable or Disable Then press Apply By default the packet status is set to Disable 5 To se...

Page 272: ...Chapter 28 Bandwidth Control 272 Section II Using the Web Browser Interface...

Page 273: ...session This chapter contains the following sections Assigning Ports to a VLAN on page 274 Creating a Tagged VLAN on page 275 Modifying a Tagged VLAN on page 277 Deleting a Tagged VLAN on page 279 Cre...

Page 274: ...llowing procedure 1 From the bookmarks on the left side of the page select Bridge The Bridge folder expands 2 From the Bridge folder select VLAN The VLAN folder expands 3 From the VLAN folder select V...

Page 275: ...AN The VLAN folder expands 3 From the VLAN folder select Tagged VLAN The Tagged VLAN Page is shown in Figure 76 Figure 76 Tagged VLAN Page 4 To assign a VLAN ID type in a VLAN ID in the VLAN ID field...

Page 276: ...Chapter 29 Virtual LANs 276 Section II Using the Web Browser Interface For an example of Tagged VLANs see Figure 77 Figure 77 Example of Tagged VLAN Page...

Page 277: ...der expands 2 From the Bridge folder select VLAN The VLAN folder expands 3 From the VLAN folder select Tagged VLAN An Example of a Tagged VLAN page is shown in Figure 77 on page 276 4 In the VLAN Acti...

Page 278: ...tion II Using the Web Browser Interface 6 To change the name of the VLAN type in a name in the VLAN Name field 7 To assign ports to the VLAN click on the port numbers labeled either Static Tagged or S...

Page 279: ...Bridge folder expands 2 From the Bridge folder select VLAN The VLAN folder expands 3 From the VLAN folder select Tagged VLAN An example of the Tagged VLAN page is shown in Figure 77 on page 276 4 In t...

Page 280: ...idge folder select VLAN The VLAN folder expands 3 From the VLAN folder select Port Based VLAN The Port Based VLAN Page is shown in Figure 79 Figure 79 Port Based VLAN Page 4 To assign a VLAN ID type a...

Page 281: ...folder expands 2 From the Bridge folder select VLAN The VLAN folder expands 3 From the VLAN folder select Port Based VLAN The Port Based VLAN Page is shown in Figure 79 on page 280 4 In the VLAN Actio...

Page 282: ...tion II Using the Web Browser Interface 6 To change the name of the VLAN type in a name in the VLAN Name field 7 To assign ports to the VLAN click on the port numbers labeled either Static Tagged or S...

Page 283: ...ge The Bridge folder expands 2 From the Bridge folder select VLAN The VLAN folder expands 3 From the VLAN folder select Port Based VLAN The Port Based VLAN Page is shown in Figure 79 on page 280 4 In...

Page 284: ...Chapter 29 Virtual LANs 284 Section II Using the Web Browser Interface...

Page 285: ...MP Community on page 286 Modifying an SNMP Community on page 287 Deleting an SNMP Community on page 288 Creating a Host Table on page 289 Modifying a Host Table Entry on page 290 Deleting a Host Table...

Page 286: ...ect SNMP The SNMP folder expands 2 From the SNMP folder select Community Table The Community Table Page is shown in Figure 81 Figure 81 Community Table Page 3 Type an available entry number from 1 thr...

Page 287: ...the following procedure 1 From the bookmarks on the left side of the page select SNMP The SNMP folder expands 2 From the SNMP folder select Community Table The Community Table Page is shown in Figure...

Page 288: ...P community in the Community Table 1 From the bookmarks on the left side of the page select SNMP The SNMP folder expands 2 From the SNMP folder select Community Table The Community Table Page is shown...

Page 289: ...older select Host Table The Host Table Page is shown in Figure 82 Figure 82 Host Table Page 3 To specify an entry number type a value between 1 and 10 in the Entry number field 4 Enter an IP address f...

Page 290: ...erform the following procedure 1 From the bookmarks on the left side of the page select SNMP The SNMP folder expands 2 From the SNMP folder select Host Table The Host Table Page is shown in Figure 82...

Page 291: ...ng procedure to delete a Host Table entry 1 From the bookmarks on the left side of the page select SNMP The SNMP folder expands 2 From the SNMP folder select Host Table The Host Table Page is shown in...

Page 292: ...eft side of the page select SNMP The SNMP folder expands 2 From the SNMP folder select Trap Setting The Trap Setting Page is displayed in Figure 83 Figure 83 Trap Setting Page 3 Type a trap number bet...

Page 293: ...select Trap Setting The Trap Setting Page is shown in Figure 83 on page 292 3 Within the Trap Setting table select a pull down menu in the Version column to the change the SNMP version of a trap that...

Page 294: ...community To delete a trap perform the following procedure 1 From the bookmarks on the left side of the page select SNMP The SNMP folder expands 2 From the SNMP folder select Trap Setting The Trap Set...

Page 295: ...ce QoS This chapter contains the procedure for configuring Quality of Service QoS This chapter includes the following procedures Mapping CoS Priorities to Egress Queues on page 296 Configuring CoS on...

Page 296: ...e per port level This procedure also enables and disables QoS To change the default mappings of CoS priorities to egress priority queues or to enable or disable QoS perform the following procedure 1 F...

Page 297: ...ircle of the queue for the corresponding priority For example to direct all tagged traffic with a priority of 4 to egress queue 3 on the ports click the dialog circle for queue 3 in the priority 4 row...

Page 298: ...ore the frame is forwarded to the egress port Consequently you need to configure this feature on the ingress port For example you can configure a switch port so that all ingress frames are stored in e...

Page 299: ...e following information Port Index Displays the port number Trunk Displays the trunk number if the port is a member of a trunk Traffic Class Displays the traffic class whose egress priority queue you...

Page 300: ...n the egress port use the pull down menu in the Queue column and select the desired queue The range is 0 lowest to 3 highest The default is 0 For example if you select 3 for queue 3 for a port all ing...

Page 301: ...apter contains the following procedures for working with the Remote Spanning Tree Protocol RSTP Basic RSTP Configuration on page 302 Configuring RSTP Port Settings on page 305 Viewing the RSTP Topolog...

Page 302: ...om the Bridge folder select Spanning Tree 3 From the Spanning Tree folder select RSTP The Rapid Spanning Tree Configuration Page is shown in Figure 86 Figure 86 Rapid Spanning Tree Configuration Page...

Page 303: ...hen the switch is rebooted this parameter is reset to 0 seconds and begins incrementing until the next topology change is detected Topology Change Count An integer that reflects the number of times RS...

Page 304: ...lue that is the lowest value of all the other bridges then the bridge with the numerically lowest MAC address becomes the root bridge When a root bridge goes offline the bridge with the lowest priorit...

Page 305: ...Configuring the Advanced RSTP Port Settings on page 307 Configuring the Basic RSTP Port Settings To configure the basic RSTP port settings perform the following procedure 1 From the bookmarks on the...

Page 306: ...n Figure 87 Figure 87 RSTP Basic Port Configuration Page 4 In the STP Status column for the port you want to configure select the STP status from the list either Enable or Disable 5 In the Priority co...

Page 307: ...same settings in the All row configure one two or all of the following settings STP Status Priority and Path Cost Then click Apply Configuring the Advanced RSTP Port Settings To configure the advance...

Page 308: ...e to set whether or not the port will operate as an edge port 5 In the Admin OperPtoP column for the port you want to configure choose a setting based on the information in Table 6 on page 167 6 In th...

Page 309: ...he page select Bridge The Bridge folder expands 2 From the Bridge folder select Spanning Tree The Spanning Tree folder expands 3 From the Spanning Tree folder select Topology Info The Designated Topol...

Page 310: ...e to which the switch s root port is actively connected Designated Cost Indicates the sum of all the root port costs on all bridges including the switch between the switch and the root bridge Designat...

Page 311: ...ss Control Feature This chapter contains the procedure for configuring 802 1x Port based Network Access Control Configuring 802 1x Port based Network Access Control Feature on page 312 Note For backgr...

Page 312: ...lick Security The Security folder expands 2 From the Security folder select Port Access Control The 802 1x Access Control Configuration Page is shown in Figure 90 Figure 90 802 1x Access Control Confi...

Page 313: ...cation mode is set to a port based method The default value is Port Based For guidelines see Configuring 802 1x Port based Network Access Control Feature on page 193 MAC Based Indicates the port authe...

Page 314: ...alue is 60 seconds The range is 0 to 65 535 seconds Maximum Request Sets the maximum number of times that the switch retransmits an EAP Request packet to the client before it times out the authenticat...

Page 315: ...trol Configuration Page 6 If the port control setting is Auto and you want to return the EAPOL machine state on the port to the initialized state select Yes for the Initialize parameter and click Appl...

Page 316: ...Chapter 33 802 1x Port based Network Access Control Feature 316 Section II Using the Web Browser Interface...

Page 317: ...ontains the following procedure for setting the Dial in User feature in the web interface Adding a Dial in User on page 318 Modifying a Dial in User on page 319 Deleting a Dial in User on page 320 Not...

Page 318: ...select Dial in User The Dial in User Page is shown in Figure 91 Figure 91 Dial in User Page 3 To create a new user enter a user name in the User Name field You can enter an alphanumeric value of up t...

Page 319: ...ser name To modify a Dial in user perform the following procedure 1 From the bookmarks on the left side of the page select Security The Security folder expands 2 From the Security folder select Dial i...

Page 320: ...form the following procedure 1 From the bookmarks on the left side of the page select Security The Security folder expands 2 From the Security folder select Dial in User The Dial in User Page is shown...

Page 321: ...use the RADIUS client with 802 1x Port based Network Access Control feature to control who can forward packets through the switch The chapter contains the following section Configuring the RADIUS Cli...

Page 322: ...r select RADIUS The RADIUS Page is shown in Figure 92 Figure 92 RADIUS Page 3 To enter the RADIUS server s IP address enter the address in the Server IP Address field in the xxx xxx xxx xxx format 4 T...

Page 323: ...the switch The procedures are Upgrading a Firmware Image With TFTP on page 324 Upgrading a Firmware Image With HTTP on page 326 Note For information on how to obtain new releases of the AT S80 Manage...

Page 324: ...ad procedure The switch where you are downloading the new image file must have an IP address and subnet mask For instructions on how to configure the IP address on a switch refer to Configuring the IP...

Page 325: ...d Server IP The IP address of the TFTP server from which you are downloading the new software Download File Name The name of the AT S80 file you are downloading Retry Count The number of times the fir...

Page 326: ...ss on a switch refer to Configuring the IP Address Subnet Mask and Gateway Address on page 34 or Enabling and Disabling the DHCP Client on page 37 Caution Downloading a new version of management softw...

Page 327: ...rrent version and date of software installed on the switch This field cannot be changed Firmware File Enter the path of the firmware file or click the Browse button and select the filename 5 Click App...

Page 328: ...Chapter 36 Management Software Updates 328 Section II Using the Web Browser Interface...

Page 329: ...the Web Browser Interface 329 Chapter 37 Statistics This chapter provides procedures to display traffic error and history statistics This chapter contains the following section Displaying Switch Stati...

Page 330: ...colors for the ports The Traffic Comparison statistics chart is described in Displaying Traffic Comparison Statistics on page 330 Error Group The Error Group chart displays the discard and error coun...

Page 331: ...Statistics and select one of the options in Table 7 Table 7 Traffic Comparison Options Option Definition Inbound Octet Rate Bytes s Measures the rate of inbound octet bits in bytes per second Inbound...

Page 332: ...er second Ethernet Undersize Packet Rate Pkts s Measures the rate of undersized Ethernet packets in packets per second Ethernet Oversize Packet Rate Pkts s Measures the rate of oversized Ethernet pack...

Page 333: ...ault Blue Red Purple Yellow Orange Gray Light Red Light Blue Light Green Outbound Non unicast Packets Pkts Measures the number of outbound non unicast such as broadcast and multicast packets packets O...

Page 334: ...Chapter 37 Statistics 334 Section II Using the Web Browser Interface Light Yellow Light Gray 6 To create the traffic comparison graph select Draw...

Page 335: ...left side of the page select the Statistics Chart folder The Statistics Chart folder expands 2 From the Statistics Chart folder select Error Group The Error Group Chart Page is displayed in Table 96 F...

Page 336: ...s 30 seconds 5 To select the color of the traffic comparison graph select Color Choose one of the following colors Green This is the default Blue Red Purple Yellow Orange Gray Light Red Light Blue Lig...

Page 337: ...tatus charts statistics for a port perform the following procedure 1 From the book marks on the left side of the page select the Statistics Chart folder The Statistics Chart folder expands 2 From the...

Page 338: ...ions 5 seconds 10 seconds 15 seconds 30 seconds 4 To select the color of the traffic comparison graph select Color Choose one of the following colors Green This is the default Blue Red Purple Yellow O...

Page 339: ...ask 0 0 0 0 Default Gateway Address 0 0 0 0 DHCP Client Disabled System Administration System Name blank System Location blank System Contact blank Manager Interface Manager Username manager Manager P...

Page 340: ...ntagged SNMP public community Enabled Read Only private community Enabled Read Write Quality of Service Status Disabled Mappings of IEEE 802 1p Priority Levels to Egress Port Priority Queues See Table...

Page 341: ...Server Timeout 30 seconds Maximum Requests 2 Quiet Period 60 seconds Re authentication Period 3600 seconds Re authentication Status Disabled RADIUS Client Server IP Address 0 0 0 0 Shared Secret blank...

Page 342: ...Appendix A AT S80 Software Default Settings 342...

Page 343: ...ed 92 modifying a user 95 319 document conventions 15 E edge port described 154 F factory default settings 339 factory defaults resetting switch 51 240 flow control configuring 59 242 G gateway addres...

Page 344: ...SNMP creating a community 286 creating a host 129 creating a host table 289 deleting a host table entry 291 deleting traps 135 294 disabling traps 137 enabling traps 133 137 292 modifying a host table...

Page 345: ...7 displaying 111 modifying 114 overview 98 port based defined 100 tagged defined 101 VLAN ID described 100 VLAN name described 100 W web browser management session explained 19 quitting 218 starting 2...

Page 346: ...Index 346...

Reviews:

No comments

Related manuals for AT-S80

Venture IP Telephone System

Brand: Aastra Pages: 10

Brand: Cabletron Systems Pages: 16

E02HRLL-G - WebSphere Partner Gateway...

Brand: IBM Pages: 268

V850 ZigBee Pro

Brand: NEC Pages: 59

Storage Manager Configuration Setting

Brand: NEC Pages: 68

Brand: NEC Pages: 68

Storage ReplicationControl SQL Option

Brand: NEC Pages: 104

Storage Performance Monitor/Optimizer

Brand: NEC Pages: 184

Storage Manager IS015-9E

Brand: NEC Pages: 200

Storage Manager Messages

Brand: NEC Pages: 499

Storage Manager

Brand: NEC Pages: 710

Brand: Tascam Pages: 6

Brand: Acroprint Pages: 1

TRUE IMAGE CORPORATE WORKSTATION 8.0

Brand: ACRONIS Pages: 79

TRUEIMAGE DELUXE

Brand: ACRONIS Pages: 90

Brand: ACRONIS Pages: 97

Brand: RedMoon Music Pages: 74

Portal Server ETV v4.1

Brand: VBrick Systems Pages: 140

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands