ANTAIRA LMP-0800G-24 User Manual Download Page 65

Page: 65 / 104

Antaira Technologies - Industrial Ethernet Switches

LMP-0800G-24 Series User Manual V1.0

5.14 802.1X

802.1X is an IEEE Standard for Port-based Network Access Control. It provides an authentication

mechanism to devices that wish to attach to a LAN or WLAN. This port-based network access

control protocol contains 3 parts, supplicant, authenticator, and authentication server. With 802.1X

authentication, we can link a username with an IP address, MAC address, and port. This provides

greater visibility into the network. 802.1X also provides more security because it only allows traffic

transmitting on authenticated ports or MAC addresses. Although the IEEE standard defined it as a

“Port-based” control, to provide more robust service, Antaira implements all managed switches with

802.1X to a “MAC-based” access control.

RADIUS

RADIUS is used in the authentication process. Database of authorized users is maintained on a

RADIUS server. There is an authenticator, our switch enabling 802.1X, to forward the

authentication requests between authentication (RADIUS) server and client. Allowing or denying the

requests decides if the client can connect to a LAN/WAN or not.

5.14.1 802.1X Settings

The below figure is the 802.1X configuration interface.

Figure 5.77

– 802.1X Configuration Interface

Summary of Contents for LMP-0800G-24

Page 1: ...trial Ethernet Switches LMP 0800G 24 Series User Manual V1 0 i LMP 0800G 24 Series 8 Port Industrial PoE Gigabit Managed Ethernet Switches 8 10 100 1000Tx 30W Port 12 36VDC Power Input w Voltage Boost...

Page 2: ...Notice Copyrights 2015 by Antaira Technologies LLC All rights reserved Reproduction adaptation or translation without prior permission of Antaira Technologies LLC is prohibited except as allowed unde...

Page 3: ...try to correct the interference by one or more of the following measures Reorient or relocate the receiving antenna Increase the separation between the equipment and receiver Connect the equipment int...

Page 4: ...Hardware Description 4 2 1 Physical Dimensions 4 2 2 Front Panel 5 2 3 Top View 5 2 4 LED Indicators 5 2 5 Reset Button 6 2 6 Ethernet Ports 7 2 7 Cabling 8 2 8 Wiring the Power Inputs 8 2 9 Wiring t...

Page 5: ...IPv6 Settings 18 5 2 6 System Time 18 5 3 Port Management 19 5 3 1 Port Status 19 5 3 2 Port Configuration 19 5 4 PoE Power over Ethernet 20 5 4 1 PoE Configuration 20 5 4 2 Ping Alarm 21 5 4 3 PoE S...

Page 6: ...41 5 8 1 802 1Q VLAN Settings 42 5 9 QoS Traffic Prioritization 43 5 9 1 QoS Classification 44 5 9 2 CoS Mapping 45 5 9 3 ToS Mapping 45 5 10 Port Trunk 46 5 10 1 Trunk Status 47 5 10 2 Trunk Configur...

Page 7: ...1 UPnP 60 5 16 Modbus TCP 61 5 16 1 Enable Modbus TCP 61 5 16 2 MODBUS Data Map and Information 62 5 17 System Warning 68 5 17 1 Syslog Setting 68 5 17 2 System Event Log 69 5 17 3 SMTP Setting 69 5...

Page 8: ...hes LMP 0800G 24 Series User Manual V1 0 viii 5 20 Configuration 73 5 20 1 Save 74 5 20 2 Backup Restore 74 5 20 3 Auto Load Backup 75 5 21 Logout 75 6 Command Line Interface Management 76 6 1 About C...

Page 9: ...functions such as IGMP VLAN QoS SNMP port lock RMON ModbusTCP and 802 1X HTTPS SSH SSL increase determinism and improve network management for remote SCADA systems or control networks The LMP 0800G 24...

Page 10: ...SNMP trap and Fault Alarm Relay Output Software Upgrade via TFTP and HTTP Configuration Backup USB Port 1 3 Product Hardware Features System Interface and Performance All RJ 45 ports support Auto MDI...

Page 11: ...30W Port 1 Product CD 2 Wall mounting brackets and screws 1 RJ45 to DB9 Serial Console cable 1 DC cable 18 AWG DC jack 5 5x2 1mm 1 5 Safety Precaution Attention If the DC voltage is supplied by an ext...

Page 12: ...Hardware Description 2 1 Physical Dimensions Figure 2 1 below shows the physical dimensions of Antaira s LMP 0800G 24 series 8 port industrial gigabit PoE managed Ethernet switches with 8 10 100 1000T...

Page 13: ...4 LED Indicators There are LED light indicators located on the front panel of the industrial Ethernet switch that display the power status and network status Each LED indicator has a different color a...

Page 14: ...f Ring Network is not active LAN Port 1 8 Left LED Green On Connected to network 10 100 1000Mbps Flashing Networking is active Off Not connected to network LAN Port 1 8 Right LED PoE Indicators Green...

Page 15: ...tomatic MDI operations Users can use straight through cables see figure below for all network connections to PCs servers and other switches or hubs With straight through cabling pins 1 2 3 and 6 are a...

Page 16: ...8 Wiring the Power Inputs Please follow the steps below when inserting the power wire 1 Insert the positive and negative wires into the PWR1 V1 V1 and PWR2 V2 V2 contacts on the terminal block connec...

Page 17: ...s the picture shows below in Figure 2 8 By inserting the wires it will detect the fault status including power failure or port link failure managed industrial switch only and forma normally open circu...

Page 18: ...he DIN Rail bracket on the rear side of the industrial Ethernet switch 2 To remove the DIN Rail bracket do the opposite from step 1 3 After the DIN Rail bracket is installed on the rear side of the sw...

Page 19: ...lace the wall mounting brackets on the top and bottom of the industrial Ethernet switch 3 Use the screws to screw the wall mounting bracket on the industrial Ethernet switch 4 Use the hook holes at th...

Page 20: ...ll mounting installation 3 To hang the industrial Ethernet switch on a DIN Rail or wall please refer to the Mounting Installation section 4 Power on the industrial Ethernet switch and then the power L...

Page 21: ...esign with advanced management features that allow users to manage the switch from anywhere on the network through any Internet browser such as Internet Explorer version 9 0 or above is recommended Fi...

Page 22: ...5 2 Web Console Main Status Page 3 The login screen appears 4 Key in the default username admin and password admin 5 Click Login button then the main status page of the Web Console will appear as bel...

Page 23: ...net Switch The fixed system description is n port Industrial Managed PoE Ethernet Switch System Location Factory Default blank Users can use this field to insert The physical location of this switch e...

Page 24: ...Terms Value Description New Password Users can assign a New Password and the maximum length of the new password is 20 characters alphabet and numeric values only Confirmation Re type the new password...

Page 25: ...ork is using If DHCP client function is enabling user does not require assigning the IP address The network DHCP server will assign the IP address for the switch and it will be display in this column...

Page 26: ...disable IPv6 settings IPv6 Address The unit default IPv6 address is depended on MAC address Assign the IPv6 address that the network is using Users can add more than one IPv6 addresses IPv6 Length Pre...

Page 27: ...Time Server Users can define the Time Server info The maximum length of Time Server is 32 characters and are invalid characters Click the Apply button to save changes 5 3 Port Management 5 3 1 Port St...

Page 28: ...0 half 10 full 10 half mode Flow Control Support symmetric and asymmetric mode to avoid packet loss when congestion occurred Click the Apply button to save changes Click to undo any changes made local...

Page 29: ...than 30 0W Click the Apply button to save changes 5 4 2 Ping Alarm The PoE ping alarm function is using the ping command to turn on or off any PoE power output port Users can insert any particular po...

Page 30: ...MSTP 802 1s For industrial applications the ERPS G 8032 is highly recommended since they can achieve faster recovery time than any STP protocol Due to different manufacturers who provide their own pro...

Page 31: ...PL owner or neighbor in a ring are members or RPL next neighbor nodes to this topology and normally forward receive traffic ERPS like STP provides a loop free network by using polling packets to detec...

Page 32: ...enabling ERPS the ring is closed and working well Node State INITIAL ERPS disable PROTECTION One of ERPS node link failed or link down PENDING The ring is from open to closed and the WTR timer is coun...

Page 33: ...e defined as None node All node roles have the ability to block the port if the link attach to the port is failed and disconnected Ring ID ERPS ring ID ranges from 1 to 239 Ring ID distinguishes diffe...

Page 34: ...disabled due to only one protocol is exclusive running within a switch Below are the steps to disable RSTP or MSTP Step 1 Login the switch with a web browser Step 2 Open the RSTP Configuration page un...

Page 35: ...he loop avoidance mechanism ensures the traffic flows on all but the RPL ring link In order to achieve the loop avoidance mechanism ITU T G 8032 defines three roles in ERPS which are RPL Owner Node RP...

Page 36: ...there are three major roles required to configure within the ERPS configuration Figure 5 27 RPL Configured Architecture Caution Before enabling any ERPS protocols on any of the Ring Nodes please DO NO...

Page 37: ...t Port 1 was chosen as example Step 2 Choose a specific port from the dropdown box next to ring port 1 then set it as None from the dropdown box next to Role which locates below ring port 1 At this po...

Page 38: ...rface and choose a specific port number under Ring Port 0 and set it as the None node by clicking the dropdown box of Role then set another specific port number under Ring Port 1 as the Neighbor node...

Page 39: ...ld setup the rest of the managed switches Role of both Ring Port 0 and 1 as None Node as shown above in Figure 5 27 Please be sure no duplicate port number has been chosen within a managed switch s ER...

Page 40: ...sm that is decided by the MAC address Due to the MAC address is unique the ERPS will just choose the biggest MAC as the blocking node However the user is still required to enable the RRPS protocol and...

Page 41: ...Industrial Ethernet Switches LMP 0800G 24 Series User Manual V1 0 33 After the configurations press the Apply button on the bottom right corner to save the settings Figure 5 32 Non Configured Archite...

Page 42: ...es a cascading effect away from the root bridge where each designated bridge proposes to its neighbors to determine if it can make a rapid transition Another extension of RSTP is the Multiple Spanning...

Page 43: ...ired to be reboot The value must be multiple of 4096 according to the protocol standard rule Root Hello Time 1 10 Enter a value between 1 through 10 for the time to control the switch to send out the...

Page 44: ...ns P2P enabling False means P2P disabling Auto Edge The port is directly connected to end stations and it cannot create bridging loop in the network To configure the port as an edge port set the port...

Page 45: ...ting the instance ID number from 1 to 15 by clicking on the dropdown box from the MSTI Status interface 5 6 4 MSTI Configuration Users can display the MSTI root status and port status by selecting the...

Page 46: ...nce number user can insert which VLAN Group info into the belonging Instance number Priority 0 61440 A value used to identify the root bridge The bridge with the lowest value has the highest priority...

Page 47: ...t Cost Priority value Cost Users can define the path cost value from 1 through 200000000 to the other bridge from this transmitting bridge at the specified port Priority Users can decide which port sh...

Page 48: ...ber to the multicast list for that group When the switch hears an IGMP leave it removes the host s port from the table entry IGMP snooping can reduce multicast traffic from streaming and other bandwid...

Page 49: ...l receive traffic from the same members on that VLAN Basically creating a VLAN from a switch is logically equivalent of reconnecting a group of network devices to another Layer 2 switch However all th...

Page 50: ...ames Tag contains a VLAN Identifier VID that indicates the VLAN numbers The managed switches also provide users with a defined management VLAN so that users can connect an Antaira switch to other comm...

Page 51: ...changes 5 9 QoS Traffic Prioritization Network traffic is always unpredictable and the only basic assurance that can be offered is the best effort traffic delivery To overcome this challenge Quality o...

Page 52: ...s are serviced Trust Mode Users can select the trust mode with either DSCP or Cos When select DSCP only trusted DSCP Differentiated Services Code Point values are mapped to a specific QoS class and dr...

Page 53: ...ue in 4 priority queues from Low to Normal Medium and High Click the Apply button to save changes 5 9 3 ToS Mapping ToS is an acronym for Type of Service It is implemented as the IPv4 ToS priority con...

Page 54: ...al managed switches support 2 types of Port Trunk One is LACP dynamic and the other is Static LACP mode is more flexible and it can change modes either trunk or single port Dynamic Port Trunk also pro...

Page 55: ...es the term and value description of Port Trunk Terms Value Description Aggregation Show the status of Port Trunk List all Trunks and show their type and members 5 10 2 Trunk Configuration The below g...

Page 56: ...erface Users can use the dropdown box to choose the destination port as Port to mirror on feature Monitor Direction Users can select the monitor direction from the dropdown box by Tx Rx or Tx Rx Sourc...

Page 57: ...odes servers workstations routers switches and hubs etc on an IP network SNMP enables network administrators to manage network performance find and solve network problems and plan for network growth N...

Page 58: ...SNMP V3 There are 2 accounts when using SNMP v3 authentication These 2 accounts are admin and user In this section it introduces the authentication settings and encryption information Terms Value Desc...

Page 59: ...ata User The range of length is from 8 to 32 characters with only numeric and alphabet characters accepted Click the Apply button to save changes 5 12 2 SNMP Trap Setting Terms Value Description Trap...

Page 60: ...ill send a broadcast query to request necessary information from a DHCP server DHCP Servers manage a pool of IP address and network configuration information If they get queries from DHCP Clients they...

Page 61: ...incoming port number from DHCP Client and the port number is started by 1 Field Description MAC Address The MAC address of the Relay Agent The MAC address is all hex format and without or for example...

Page 62: ...DHCP Client Enable or Disable DHCP Client IP Address Static IP address setting Assign the IP address that the network is using Subnet Mask Assign the subnet mask of the IP address Gateway The IP addre...

Page 63: ...way The IP address that connects the LAN to the Internet Name Server The IP address of DNS Lease Time A controllable time period that DHCP server will reclaim IP addresses 5 13 3 DHCP Server Binding T...

Page 64: ...o Server2 The IP address of the second DHCP Server that Relay Agent connect to Relay to Server3 The IP address of the third DHCP Server that Relay Agent connect to Relay to Server4 The IP address of t...

Page 65: ...ore security because it only allows traffic transmitting on authenticated ports or MAC addresses Although the IEEE standard defined it as a Port based control to provide more robust service Antaira im...

Page 66: ...on models Enable Port Check the checkbox es to enable authentication before connecting to a LAN or WAN Re Auth Re Auth means re authenticate it is enabled by default Check the checkbox es to enable r...

Page 67: ...RADIUS Server The below figure is the RADIUS Server setting interface The below table describes RADIUS Server Terms and Value Description Terms Value Description Server IP IP Address of RADIUS server...

Page 68: ...ces directly to a computer But UPnP is not directly related to the earlier plug and play technology any more UPnP devices are plug and play in that when connected to a network they automatically estab...

Page 69: ...covers the use of MODBUS messaging in an intranet or internet environment using the TCP IP protocols According to the standard Modbus encapsulates the message with an Ethernet TCP IP wrapper Antaira s...

Page 70: ...ollowing table starting from MODBUS for Function Code 4 For example the address offset 0x0000 hex equals MODBUS address 30001 and the address offset 0x0015 hex equals MODBUS address 30022 Note that al...

Page 71: ...rial Number 0x0051 2 words HEX Firmware Version For example Word 0 0 x 0203 Word 1 0 x 0300 Firmware Version was 2 3 3 0x0053 2 words HEX Firmware Release Date For example Word 0 0 x 2319 Word 1 0 x 1...

Page 72: ...t Port Information 0x1000 to 0x1005 1 word HEX Port 1 to 6 Status 0x0000 Link down 0x0001 Link up 0x0002 Disable 0xFFFF No port 0x1100 to 0x1105 1 word HEX Port 1 to 6 Speed 0x0000 10M Half 0x0001 10M...

Page 73: ...to 6 Tx Packets Ex Port1 Tx Packet Amount 13244800 Received MODBUS response 0x13244800 Word 0 0 x 1324 Word 1 0 x 4800 0x2080 to 0x208B 2 words HEX Port 1 to 6 Tx Bytes Ex Port1 Tx Bytes Amount 13244...

Page 74: ...Rx Error Packets Ex Port1 Rx Error Packet Amount 13244800 Received MODBUS response 0x13244800 Word 0 0 x 1324 Word 1 0 x 4800 Redundancy Information 0x3000 1 word HEX Redundancy Protocol 0x0000 None 0...

Page 75: ...word HEX ERPS Port0 Status 0x0000 Disable 0x0001 ERPS not enable 0x0002 Link down 0x0003 Forwarding 0x0004 Learning 0x0005 Blocking 0x3303 1 word HEX ERPS Port1 Status 0x0000 Disable 0x0001 ERPS not e...

Page 76: ...e through email whenever any event occurs It definitely increases the flexibility and capability for the user to monitor the remote site network and device statuses 5 17 1 Syslog Setting The SYSLOG is...

Page 77: ...e Then the system event logs will display within the SYSLOG LIST window The SYSLOG LIST will contain up to 5 pages of system event log information Users also can click the Refresh button to have the m...

Page 78: ...ntication username Password the authentication password Recipient E mail Address es Users can setup up to 4 recipient E mail addresses to receive any system warning message Click the Apply button to s...

Page 79: ...ult Alarm type such as power failure port link down or broken through the Fault Alarm setting interface to trigger this function 5 18 MAC Table The MAC address table is the filtering database that sup...

Page 80: ...upgrade system reboot and reset the system to factory default 5 19 1 Upgrade Antaira is continuously developing new functions and features for specific application requirements for the industrial man...

Page 81: ...orage device through the built in USB port Users can use the USB port feature to execute the Auto Load function to boot the switch s configuration that has been saved within the USB storage device or...

Page 82: ...ocal PC or server Upload Configuration Users can click the Choose File button to select the saved configuration file from local PC or server then click the Upload the settings to the switch USB Manage...

Page 83: ...ile name is switch MAC ADDRESS cfg if the file didn t exist it will find switch config cfg If all of them didn t exist it does not work USB Auto Backup Select USB Auto Backup it can auto Backup runnin...

Page 84: ...Users can use console or telnet to management switch by CLI CLI Management by RS 232 Serial Console 115200 8 none 1 none Before configuring by an RS 232 serial console use an RJ45 to DB9 F cable to c...

Page 85: ...Antaira Technologies Industrial Ethernet Switches LMP 0800G 24 Series User Manual V1 0 77 Step 2 Input a name for the new connection Step 3 Select to use a specific COM port number...

Page 86: ...ts None for Parity 1 for Stop bits and none for Flow control Step 5 The Console login screen will appear Use the keyboard to enter the Username and Password and then press Enter CLI Management by Teln...

Page 87: ...User Manual V1 0 79 Follow the steps below to access the console via Telnet Step 1 Telnet to the IP address of the switch from the Windows Run command as below Step 2 The Login screen will appear Use...

Page 88: ...ress ip_addr ip_mask configure ip default gateway ip_router configure ip name server ip_addr_string configure no boot host dhcp configure no ip default gateway configure no ip name server configure sh...

Page 89: ...nterface no shutdown interface show speed interface show duplex interface show flowcontrol interface show name interface show link rx interface show link tx interface show link summary interface VLAN...

Page 90: ...erps no aps channel erps no revertive erps no port0 erps no port1 erps no ring id erps no timer hold off erps no timer guard erps no timer wtr erps show status erps show brief erps show port status er...

Page 91: ...k_cost_value interface spanning tree port priority port_priority interface spanning tree link type point to point point to multiple interface spanning tree auto edge off interface spanning tree admin...

Page 92: ...e mst revision configure no spanning tree mst instance instance_ID vlan configure no spanning tree mst instance_ID cost interface no spanning tree mst instance_ID port priority interface show spanning...

Page 93: ...nt syslog power2 enable configure event syslog cold start enable configure event syslog warm start enable configure event syslog authentication failure enable configure event syslog erps change enable...

Page 94: ...og server IP_address configure syslog mode all remote local usb configure no syslog server configure no syslog mode configure show syslog server configure show syslog mode configure show syslog log co...

Page 95: ...ser des aes PWD configure no snmp server enable configure no snmp server community ro rw configure no snmp server v3 level admin user configure no snmp server v3 auth admin user configure no snmp serv...

Page 96: ...ow snmp trap version configure show snmp trap community configure show snmp trap inform retry configure show snmp trap inform timeout configure show snmp trap v3 user configure show snmp trap v3 level...

Page 97: ...x respond time 1 12 configure igmp snooping query interval 1 3600 configure igmp snooping last member count 2 10 configure igmp snooping last member interval 60 300 configure igmp snooping querier ena...

Page 98: ...igure no dhcp server binding bind_num configure no dhcp service relay configure no dhcp relay server server_number configure no dhcp relay information option configure no dhcp relay information policy...

Page 99: ...R PASSWORD configure dot1x authenticator enable interface dot1x reauthentication enable interface dot1x reauthentication period SEC interface no dot1x enable configure no dot1x authentication server t...

Page 100: ...able interface show dot1x reauthentication enable interface show dot1x reauthentication period interface IPv6 ipv6 enable configure ipv6 address add IPV6_ADDR PREFIX_LEN configure ipv6 neighbor flush...

Page 101: ...g usb command Ex file1 folder file2 2 CLI enable configure terminal copy startup config usb path Fill in the folder and filename behind the copy startup config usb command Ex file1 folder file2 3 CLI...

Page 102: ...ies User Manual V1 0 94 Upgrade via TFTP CLI enable configure terminal tftp server ip IP_ADDRESS tftp file name UPGRADE_FILE_NAME tftp upgrade Fill in the TFTP server IP and upgrade file name behind t...

Page 103: ...802 1q Virtual LANs VLAN IEEE 802 1x Port based Network Control Authentication IEEE 802 1ad Stacked VLAN Q in Q IEEE 802 1p QoS CoS Protocol for Traffic Prioritization Switch Protocol IGMPv1 v2 SNMPv...

Page 104: ...on 1 removable 6 contact terminal block Power Consumption 15 Watts no PD included 190 Watts 12VDC 255 Watts 36VDC Environmental Limits Operating Temperature STD 10 to 70 C 14 to 158 F EOT 40 to 75 C 4...

Search results

Summary of Contents for LMP-0800G-24

Reviews:

Related manuals for LMP-0800G-24

Brands by name

Popular brands

ANTAIRA LMP-0800G-24, User Manual

Search results

Summary of Contents for LMP-0800G-24

Reviews:

Related manuals for LMP-0800G-24

Brands by name

Popular brands