Asus GIGAX2024 User Manual Download Page 41

Page: 41 / 115

GigaX2024/2048 L2 Managed Switch User Manual

Figure 33. Tagged VLAN (GigaX 2048)

Figure 34. Tagged VLAN (GigaX 2024)

4.5.10 Default Port VLAN and CoS

Some VLAN tag related ﬁeld settings for each port are included in this page. It

includes:

Port:

select the port to conﬁgure

PVID:

port-based VLAN ID. Every untagged packet received from this port will

be tagged with this VLAN group ID

CoS (Class of Service) value:

every untagged packet received from this port

will be assigned to this CoS in the VLAN tagged
Click on

Modify

to change the content in the port list window. Click

make the setting send to the switch (HTTP server). Click

Reload

to refresh the

settings to current value. To make the conﬁguration effective, please go to

Save

Conﬁguration

page, then click

Save

Summary of Contents for GIGAX2024

Page 1: ...GigaX2024 2048 User Manual Layer 2 Managed Switch ...

Page 2: ...tability or ﬁtness for a particular purpose In no event shall ASUS its directors ofﬁcers employees or agents be liable for any indirect special incidental or consequential damages including damages for loss of proﬁts loss of business loss of use or data interruption of business and the like even if ASUS has been advised of the possibility of such damages arising from any defect or error in this ma...

Page 3: ...uipment does cause harmful interference to radio or television reception which can be determined by turning the equipment off and on the user is encouraged to try to correct the interference by one or more of the following measures Reorient or relocate the receiving antenna Increase the separation between the equipment and receiver Connect the equipment to an outlet on a circuit different from tha...

Page 4: ...ail tmd1 asus com Web Site usa asus com Technical Support Support Fax 1 502 933 8713 General Support 1 502 995 0883 Notebook Support 1 510 739 3777 x5110 Support Email tsd asus com ASUS COMPUTER GmbH Germany and Austria Address Harkort Str 25 D 40880 Ratingen BRD Germany General Fax 49 2102 9599 31 General Email sales asuscom de for marketing requests only Technical Support Support Hotlines Compon...

Page 5: ...rt 1 Installing the hardware 6 3 1 1 Installing the switch on a ﬂat surface 6 3 1 2 Mounting the switch on a rack 6 3 2 Part 2 Setting up the switch 6 3 2 1 Connect the console port 6 3 2 2 Connect to the computers or a LAN 7 3 2 3 Attach the RPS module 7 3 2 4 Attach the power adapter 7 3 3 Part 3 Basic switch setting for management 8 3 3 1 Setting up through the console port 8 3 3 2 Setting up t...

Page 6: ...e 20 4 5 1 Spanning Tree 20 4 5 2 Link Aggregation 21 4 5 3 Mirroring 23 4 5 4 Static Multicast 24 4 5 5 IGMP Snooping 25 4 5 6 Trafﬁc Control 25 4 5 7 Dynamic Addresses 26 4 5 8 Static Addresses 27 4 5 9 Tagged VLAN 27 4 5 10 Default Port VLAN and CoS 29 4 5 11 DHCP Snooping 30 4 6 SNMP 31 4 6 1 Community Table 31 4 6 2 Host Table 31 4 6 3 Trap Setting 32 4 6 4 VACM Group 32 4 6 5 VACM View 33 4 ...

Page 7: ...9 QoS 44 4 9 1 Trust State 45 4 9 2 Mapping 46 4 9 3 Class Set 46 4 9 4 Policy Set 47 4 9 5 Policy Attach 49 4 9 6 CoS 49 4 10 Statistics Chart 50 4 10 1 Trafﬁc Comparison 50 4 10 2 Error Group 51 4 10 3 Historical Status 52 4 11 Save Conﬁguration 53 5 Console Interface 54 5 1 Power On Self Test 54 5 1 1 Boot ROM Command Mode 55 5 1 2 Boot ROM Commands 55 5 2 Login and Logout 57 5 3 CLI Commands 5...

Page 8: ...nds 82 5 4 Miscellaneous Commands 85 6 IP Addresses Network Masks and Subnets 86 6 1 IP Addresses 86 6 1 1 Structure of an IP address 86 6 1 2 Network classes 87 6 2 Subnet masks 87 7 Troubleshooting 89 7 1 Diagnosing problems using IP utilities 89 7 1 1 ping 89 7 1 2 nslookup 90 7 2 Replacing defective fans 91 7 3 Simple ﬁxes 93 8 Glossary 95 9 Index 101 ...

Page 9: ... login screen 12 Figure 11 Home page GigaX 2048 13 Figure 12 Home page GigaX 2024 13 Figure 13 Top frame GigaX 2048 14 Figure 14 Top frame GigaX 2024 14 Figure 15 Expanded Menu List 15 Figure 16 Management 17 Figure 17 IP Setup 17 Figure 18 Administration 18 Figure 19 Reboot 18 Figure 20 Firmware Upgrade 19 Figure 21 Physical Interface 20 Figure 22 Spanning Tree 21 Figure 23 Link aggregation GigaX...

Page 10: ...re 38 Community Table 31 Figure 39 Host Table 31 Figure 40 Trap Setting 32 Figure 41 VACM Group 33 Figure 42 VACM View 34 Figure 43 USM User 35 Figure 44 Filter Set 36 Figure 45 Filter Rule in MAC mode 36 Figure 46 Filter Rule in IP mode 36 Figure 47 Filter Attach GigaX 2048 37 Figure 48 Filter Attach GigaX 2024 38 Figure 49 Port Access Control 39 Figure 50 Dial In user 40 Figure 51 RADIUS 41 Figu...

Page 11: ...c comparison GigaX 2024 51 Figure 64 Error group 52 Figure 65 Historical Status 52 Figure 66 Save Conﬁguration 53 Figure 67 CLI interface 54 Figure 68 Boot ROM Command Mode 55 Figure 69 SYS commands 58 Figure 70 Using the ping utility 89 Figure 71 Using the nslookup utility 90 Figure 72 Loosening the thumbscrew 91 Figure 73 Removing the fan module 91 Figure 74 Detaching the fan from the module 92 ...

Page 12: ... panel labels and LEDs 4 Table 2 Rear panel labels 5 Table 3 Technical speciﬁcations 5 Table 4 LED Indicators 8 Table 5 Port color description 14 Table 6 Commonly used buttons and icons 16 Table 7 Boot ROM commands 56 Table 8 IP address structure 86 Table 9 Troubleshooting 93 ...

Page 13: ...sing Gigabit Ethernet switching ports Two small form factor SFP Gigabit interface converter GBIC slots Automatic MDI MDIX supported on 10 100BASE TX and 10 100 1000BASE T ports Compliant with 802 3u 802 3z and 802 3ab speciﬁcations 802 1D transparent bridge spanning tree protocol 802 1w RSTP Rapid Spanning Tree Protocol 802 1X port based network access control RADIUS remote authentication dial in ...

Page 14: ...e switch The terms LAN and network are used interchangeably to refer to a group of Ethernet connected computers at one site The illustrations and web interface screens refer to both the GigaX 2048 and GigaX 2024 models except otherwise indicated 1 2 2 Typography Boldface type text is used for items you select from menus and drop down lists and text strings you type when prompted by the program 1 2...

Page 15: ... comes with the following items GigaX 2048 48 port or GigaX 2024 24 port L2 managed switch AC power cord Null modem cable for console interface DB9 Rack installation kit two brackets with six 6 32 screws USB cable for console interface Installation CD ROM Quick installation guide Figure 1 GigaX L2 managed switch package contents ...

Page 16: ...he switch has a good redundant power supply Amber On ThePSUisabnormalandtheswitchispoweredbyRPS Off No power system LED is also off RPS does not work properly or not installed system LED is on FAN Green On Both fans are working properly Amber On Both or either one of the fans stopped 10 100 ports Green On Ethernet link is established Flashing Data is being transmitted received Off No Ethernet link...

Page 17: ...SB USB port for console management 5 RPS Redundant Power Supply connector 2 4 Technical speciﬁcations Table 3 Technical speciﬁcations Physical Dimensions 43 5mm H x 444 mm W x 265mm D Power Input Consumption 100 240V AC 2 5A 50 60Hz 90 watts Redundant Power Supply RPS Input Output 100 240V AC 1 8A 50 60Hz 12V DC 12 5A Environmental Ranges Operating Storage Temperature 10 to 50 C 14 to 122 F 40 to ...

Page 18: ... a ﬂat surface The switch must be installed on a level surface that can support the weight of the switch and its accessories Attach four rubber pads on the marked location on the bottom of the switch 3 1 2 Mounting the switch on a rack 1 Position the bracket posts with the holes on both sides of the switch 2 Use three screws to secure the bracket to the switch 3 Repeat the above steps for the othe...

Page 19: ...y RPS module optional to the RPS jack on the rear panel of the switch and make sure the other end of the RPS is connected to the power cord Connect to the power cord to a grounded power outlet 3 2 4 Attach the power adapter 1 Connect the AC power cord to the POWER receptacle on the back of the switch and plug the other end of the power cord into a wall outlet or a power strip 2 Check the front LED...

Page 20: ...ed IE5 0 or higher version Command Line Interface using console port to conﬁgure the switch 3 3 1 Setting up through the console port 1 Use the supplied crossover RS 232 cable to connect to the console port on the back of the switch This port is a male DB 9 connector implemented as a data terminal equipment DTE connection Tighten the retaining screws on the cable to secure it on the connector Conn...

Page 21: ...d 0 0 0 0 your network gateway IP 0 0 0 0 1 as your default route entry as shown in Figure 6 Figure 6 Login and IP setup Screen 3 3 2 Setting up through the Web interface To connect your PC to the switch your PC must have a valid IP in your network Contact your network administrator to obtain a valid IP for the switch If you wish to change the default IP address of the switch follow section 3 3 1 ...

Page 22: ...ress is applied to the switch the browser can no longer update the switch status window or retrieve any page You need to retype the new IP address in the address location box and press Enter then the Web link returns 5 To enable authentication for Web access click Administration on the menu list then select Enabled to start the protection 6 A login window appears immediately after you click OK See...

Page 23: ...11 GigaX2024 2048 L2 Managed Switch User Manual Figure 8 IP Setup GigaX 2048 Figure 9 IP Setup GigaX 2024 ...

Page 24: ... location box and press Enter http 192 168 1 1 This is the factory default IP address for the switch A login screen displays as shown in Figure 10 Figure 10 Conﬁguration manager login screen Log in is not required if you do not enable web access authentication see section 3 3 2 2 Enter your user name and password then click OK Use the following defaults the ﬁrst time you log into the system You ca...

Page 25: ...13 GigaX2024 2048 L2 Managed Switch User Manual Figure 11 Home page GigaX 2048 Figure 12 Home page GigaX 2024 ...

Page 26: ...description Figure 13 Top frame GigaX 2048 Figure 14 Top frame GigaX 2024 Table 5 Port color description Port Color Description Green Ethernet link is established Black No Ethernet link Amber Link is present but port is disabled manually or by spanning tree Clicking on the port icon of the switch displays the port conﬁguration in the lower right frame The left frame which is shown in Figure 15 con...

Page 27: ...See section 4 3 for details 4 2 1 Menu navigation tips To expand a group of related menus click on the corresponding group name The sign will change to after expansion To contract a group of related menus click on the corresponding group name The sign will appear next to the group name To open a speciﬁc conﬁguration page click on the desired menu item ...

Page 28: ...rule and etc Re displays the current page with updated statistics or settings 4 3 System Pages System pages include management IP setup administration reboot and ﬁrmware update function 4 3 1 Management The Management page contains the following information Model Name product name MAC Address switch MAC address System Name user assigned name to identify the system editable System Name can not incl...

Page 29: ...within the same VLAN for management usages DHCP Client Enables DHCP to get a dynamic IP address or disable DHCP to specify a static IP address The DHCP server must be reachable within the management VLAN IP Address Assigns a static IP address to the switch management interface Network Mask Default Gateway Click on OK to make the setting effective immediately Click on Reload to refresh the setting ...

Page 30: ...can change the password at any time through the CLI interface Figure 18 Administration 4 3 4 Reboot The Reboot page contains a Reboot button Clicking the button to reboot the system Rebooting the system stops the network trafﬁc and terminates the Web interface connection Figure 19 Reboot 4 3 5 Firmware Upgrade The Firmware Upgrade and Auto conﬁg page contains the following information Hardware Ver...

Page 31: ...le to boot The ﬁle name of the auto conﬁg ﬁle must be conﬁg bat the ﬁrst line must be autoconﬁg Figure 20 Firmware Upgrade 4 4 Physical Interface The Physical Interface shows the realtime Ethernet port status You can conﬁgure the port in following ﬁelds Port select the port to conﬁgure Admin disable enable the port Mode set the speed and duplex mode Flow Control enable disable 802 3x ﬂow control m...

Page 32: ...onsists of three parts The ﬁrst part shows the root information It shows the current STP setting about the root switch The second part is STP setting The following options are available Disable STP Enable RSTP Enabled Turn the STP RSTP off on When you turn the STP RSTP on STP RSTP will use the following settings if the switch is the root switch Hello Time the interval between the generation of con...

Page 33: ...e Point to Point Auto Yes No A full duplex link is considered as a point to point link Otherwise it is a shared link Point to point link may have less convergence time Auto is recommended in most cases Click on OK to make the setting effective immediately Click on Reload to refresh the setting to current value To save conﬁguration permanently please go to Save Conﬁguration page then click Save Fig...

Page 34: ...ctive Go to Physical Interface and check the link mode in the runtime status window for the trunk ports If all the trunk members are in the same speed and full duplex mode then the trunk group is set up successfully If one of the members is not in the same speed or full duplex mode the trunk is not set correctly Check the link partner and change the settings to have the same speed and full duplex ...

Page 35: ...Receives the copies of all the trafﬁcs in the selected mirrored ports GigaX 2048 has two monitor ports Each port can monitor 24 Fast Ethernet ports and one Gigabit port GigaX 2024 has only one monitor port The port can monitor 24 Fast Ethernet ports and two Gigabit ports The monitor port can not belong to any link aggregation group The monitor port can not belong to any Private VLAN The monitor po...

Page 36: ...to other ports in the group Show Group selects Add a new Group to enter a new entry Or select an existing group address to display MAC Address the multicast address VLAN selects the vlan group If you selected a Private VLAN trafﬁc from isolated port is forwarded only to promiscuous port CoS assigns the priority for Class of Service Click OK to make the setting effective immediately Click Reload to...

Page 37: ...switch only allows 255 layer 2 multicast group Click OK to make the setting effective immediately Click Reload to refresh the settings to current value To save conﬁguration permanently please go to Save Conﬁguration page then click on Save Figure 29 IGMP Snooping 4 5 6 Trafﬁc Control Trafﬁc control prevents the switch bandwidth from ﬂooding packets including broadcast packets multicast packets and...

Page 38: ...AN ID or speciﬁed MAC address The dynamic address is the MAC address learned by switch it will age out from the address table if the address is not learned again during the age time User can set the age time by entering a valid number from 10 to 1 000 000 in seconds Then click OK to make the setting effective immediately Click Reload to refresh the settings to current value To save conﬁguration pe...

Page 39: ...e the existed address by selecting the entry with the mouse then clicking on Remove The Modify button updates the existed MAC address entries You can look up a static address entry by MAC address and VLAN ID then click on the Query Click OK to make the setting send to the switch HTTP server Click Reload to refresh the settings to current value To make the conﬁguration effective please go to Save C...

Page 40: ...This ﬁeld disappears in VLAN creation page Private VLAN Set this VLAN to be a Private VLAN PVLAN PVLAN is to provide LAN security with the simplicity of VLAN conﬁguration System administrator can reduce the VLAN and IP consumption but provide the same security to LAN We cannot use default VLAN VLAN 1 as the PVLAN In our system the total number of PVLAN is four There are two types port in a PVLAN t...

Page 41: ...ased VLAN ID Every untagged packet received from this port will be tagged with this VLAN group ID CoS Class of Service value every untagged packet received from this port will be assigned to this CoS in the VLAN tagged Click on Modify to change the content in the port list window Click OK to make the setting send to the switch HTTP server Click Reload to refresh the settings to current value To ma...

Page 42: ...ed ports The selected trusted port forwards the DHCP packets as a normal port but the DHCP ACK packets will be dropped when the unselected untrusted port receives the packets DHCP Snooping is To enable or disable DHCP snooping Click OK to make the setting send to the switch HTTP server Click Reload to refresh the settings to current value To make the conﬁguration effective please go to Save Conﬁgu...

Page 43: ...ke the setting effective immediately Click Reload to refresh the settings to current value To save conﬁguration permanently please go to Save Conﬁguration page then click on Save Figure 38 Community Table 4 6 2 Host Table This page links host IP address to the community name that is entered in Community Table page Type an IP address and select the community name from the drop down list Click OK to...

Page 44: ...noauth or rw_noauth only Read View Name enter the Read View Name that the Group belongs The related SNMP messages are Get GetNext GetBulk Write View Name enter the Write View Name that the Group belongs The related SNMP message is Set Notify View Name enter the Notify View Name that the Group belongs The related SNMP messages are Trap Report Inform request Note that this aspect of access control i...

Page 45: ...e SNMPv3 message View Subtree enter the View Subtree that the View belongs The Subtree is the Oid to match the Oid in the SNMPv3 message The match is good when the subtree is shorter than the Oid in the SNMPv3 message Decimal value is needed View Mask enter the View Mask that the View belongs Each bit in the mask represents the digit between the dots of View Subtree from left side Bit ʻ0ʼ means ʻd...

Page 46: ...longs The password needs at least 8 characters or digits Priv Protocol enter the Priv Protocol that Engine ID and Name belong Only NoPriv DES can be chosen If the NoPriv is chosen there is no need to enter password Priv Password enter the password that the Priv Protocol belongs The password needs at least 8 characters or digits Click on Add when you create a new USM User entry by the above informa...

Page 47: ...string of ﬁlter name cannot include characters ʻ ʼ ʻ ʼ ʻ ʼ and space When you click on the Set the Filter Set page appears Figure 39 First create a ﬁlter set by typing a name and ID then clicking on Add Second click on the button to select the set you want to edit or remove Third click on Edit to enter the rule page as Figure 40 or click on Remove to remove the ﬁlter set You have to follow the rul...

Page 48: ... rule donʼt care the MAC value In IP rule setup you can enter any of the 5 tuples source IP destination IP protocol source application port and destination application port The Action ﬁeld determines if the packet should be dropped or forwarding when it matches the rule If a packet matches two rules with different action the packet will follow the rule showed ﬁrst in the rule list Figure 45 Filter...

Page 49: ...gaX 2048 the egress ports and ingress ports must be in the ports 1 24 and 49 or ports 25 48 and 50 Detach from all ports remove all the ﬁlters from the attached ports You may not detach certain ports after issuing an Attach All command If you wish to detach ports use the Detach All command Once the ﬁlter set is attached to the ingress ports and egress ports it will ﬁlter the packets according to t...

Page 50: ...strict input to an interface by limiting and identifying MAC addressed of the stations allowed to access the port When you assign secure MAC addresses to a secure port the port does not forward with source addresses outside the group of deﬁned addresses 4 8 1 Port Access Control Port Access Control is used to conﬁgure various 802 1x parameters 802 1x uses either RADIUS server or local database sup...

Page 51: ... hosts connected to the selected port are allowed to use the port if ONE of the hosts passed the authentication If disabled only ONE host among other hosts passed the authentication is allowed to use the port Authentication Control If ʻforce_authorizedʼ is selected the selected port is forced authorized Thus trafﬁc from all hosts is allowed to pass Otherwise if ʻforce_unauthorizedʼ is selected the...

Page 52: ...witch HTTP server Click Reload to refresh the settings to current value To make the conﬁguration effective please go to Save Conﬁguration page then click Save Figure 50 Dial In user 4 8 3 RADIUS In order to use external RADIUS server the following parameters are required to be setup Authentication Server IP The IP address of the RADIUS server Authentication Server Port The port number for the RADI...

Page 53: ...ion when the maximum numbers of secure MAC address have been added to the address table and a station whose MAC address is not in the address table attempts to access the interface You can conﬁgure the interface for one of three violation modes a Protect In this mode you are not notiﬁed that a security violation has occurred b Restrict In this mode you are notiﬁed that a security violation has occ...

Page 54: ...y button The ﬁeld you changed will update the content of the display window Click OK to make the setting effective immediately Click Reload to refresh the settings to current value To save conﬁguration permanently please go to Save Conﬁguration page then click on Save Figure 52 Port Conﬁguration 4 8 4 2 Port Status This page is display the port security information for all ports The information of...

Page 55: ...rt security status shows SecureDown if one of the following situations occurs The port is link down Administrative bridge port state is disables The port is a trunk port The port is a monitor port in port mirroring The port is running 802 1x and in the single host mode If the status of a port is ʻShutdownʼ users can select the corresponding port number and set Restart to Yes then click on the Modi...

Page 56: ...rtʼs current total secure MAC addresses show in the address window Users can remove the existed address by selecting the entries with the mouse then click on Remove to remove them When you want to select multi entries please press Shift of the keyboard and selecting the entries with the mouse Click Add or Remove the conﬁguration effective immediately To save static secure MAC address permanently p...

Page 57: ... set to default port CoS For IP packets the switch modiﬁes the CoS value by using the DSCP to CoS map CosOverride disable enable CoS Override on the port Cos Override only can be enabled when Trust State is ʻNoʼ trust CoS Override will override the previously conﬁgured trust state and apply the default port CoS value to all incoming packets If a port was previously set to trust DSCP this command o...

Page 58: ... the trafﬁc Map DSCP to CoS each DSCP value can map into one of the CoS value Users can use the DSCP to CoS map to map DSCP values in incoming packets to a CoS value which is used to select one of the four egress queues Click OK to make the setting send to the switch HTTP server Click Reload to refresh the settings to current value To make the conﬁguration effective please go to Save Conﬁguration ...

Page 59: ...you create a new class by the above information Then you will see the new added entry shows in the class list Click on to select the class that you want to modify Editing the class then click on Modify You will see the modiﬁed entry shows in the class list Click on to select the class that you want to remove then click on Remove to remove it To make the conﬁguration effective please go to Save Con...

Page 60: ...orts the trafﬁc arte is 80Mbps Trafﬁc Burst Size select a trafﬁc burst size The minimum size of Fast Ethernet ports is 4K For gigabit Ethernet ports trafﬁc burst size will be multiplied by 8 For example set trafﬁc burst size to 4K Then the burst size of Fast Ethernet ports is 4K Bytes but for Gigabit Ethernet ports the burst size is 32K Bytes Exceed Action select exceed action If the exceed action...

Page 61: ...o attach a policy to ports Attach to all ports the policy will apply to all the ports of the system Attach to certain ports you can specify the ingress ports to be applied Detach all remove the policy from the attached ports Figure 60 Policy Attach 4 9 6 CoS The switch supports four CoS queues for each egress port For each queue you can specify the scheduling types as follows Strict priority sched...

Page 62: ...ht settings only effective for WRR scheduling Click OK to make the setting send to the switch HTTP server Click Reload to refresh the settings to current value To make the conﬁguration effective please go to Save Conﬁguration page then click Save Figure 61 CoS 4 10 Statistics Chart The Statistics Chart pages provide network ﬂow in different charts You can specify the period time to refresh the cha...

Page 63: ...fﬁc comparison GigaX 2048 Figure 63 Trafﬁc comparison GigaX 2024 4 10 2 Error Group Selecting the Port and display Color then clicking the Draw the statistics window shows you all the discards or error counts for the speciﬁed port The data is updated periodically ...

Page 64: ...rror group 4 10 3 Historical Status You can display information for different ports and statistics items in this chart Since this shows the history of the statistics information the line chart keeps the old data even it is refreshed Figure 65 Historical Status ...

Page 65: ...fective after a successful save Sometimes you may want to reset the switch conﬁguration you can click on Restore to reset the conﬁguration ﬁle to factory default Of course a system reboot will follow this restoration process You will lose all the conﬁgurations when you choose to restore the factory default conﬁgurations Figure 66 Save Conﬁguration Note ...

Page 66: ...o enter CLI mode after the timeout All the CLI commands are case sensitive In order to make them easier to use you can enter into different category by typing the full command then this category becomes your working category Thereafter you donʼt have to type sys before any sub commands For example sys is a command category including a lot of sub commands You donʼt have to type sys for the sub comm...

Page 67: ...re is in Slot 0 and the other ﬁrmware is in Slot 1 The later version will be selected to boot the system automatically Enter key to show the help messages for all available commands Although the commands are helpful in some situation we STRONGLY suggest users not to use them if you donʼt know the command function Figure 68 Boot ROM Command Mode 5 1 2 Boot ROM Commands Type in the boot mode to disp...

Page 68: ...mware Change it back to auto select mode after successfully updating the ﬁrmware s 0 1 2 3 Set the console baud rate 0 9600bps 1 38400bps 2 57600bps 3 115200bps You have to set up the terminal emulator with the same baud rate to make the work x NONE Upload ﬁrmware to the switch It is slow to update ﬁrmware by the console port If you lost network connection to switch you can still update ﬁrmware in...

Page 69: ...r all managed functions The command uses are listed in the categories as the WEB management interface This way you can follow the instructions and set up the switch correctly as easily as using WEB interface to conﬁgure the switch Always use to get the available commands list and help Always use to get back to the root directory Always use to get back to the parent directory Type the command only ...

Page 70: ...YS commands VLAN ID Displays the VLAN ID for the switch It is necessary to be within the same VLAN for management usages CLI command net interface vlan sw0 VLAN ID DHCP Client Enable DHCP to get a dynamic IP address or disable DHCP to specify a static IP address If you enable DHCP you can renew or release the IP address for the switch and use show command to display the dynamic IP address CLI comm...

Page 71: ...d When the password protection is enabled the web interface will request a user name and password authentication while user accesses the switch through the browser CLI command sys web set enable disable New Password Verify Password The default user name is admin By default a password is not required You may set a password by conﬁguring these ﬁelds CLI command sys users modify user name ʻadminʼ by ...

Page 72: ...port speed port number 10 100 1000 CLI command l2 port duplex port number full half Flow Control Enable Disable Displays the IEEE802 3x ﬂow control setting of a port Note that this ﬂow control is operating only in full duplex mode CLI command l2 port ﬂow port number enable disable Reload Restores the previous port settings from the conﬁguration ﬁle CLI command l2 port retrieve 5 3 3 Bridge Command...

Page 73: ...umber Priority 0 240 old port Priority new port Priority Port port number Path Cost 1 200000000 old port Path Cost new port Path Cost Port port number EdgePort yes no old port EdgePort new port EdgePort Port port number Point to Point yes no auto old port Point to Point new port Point to Point Reload Restores the previous saved settings from conﬁguration ﬁle CLI command l2 stp retrieve CLI command...

Page 74: ... trunk name lacp enable disable port list Add Remove Trunk Trunk group port members can be added to or removed from an existing trunk group CLI command l2 trunk add trunk id port list CLI command l2 trunk remove trunk id port list LACP Action User can enable or disable LACP on a speciﬁc trunk group CLI command l2 trunk lacp action trunk id enable disable LACP System Priority User can assign the sy...

Page 75: ...reate mirror id 1 or 2 monitor port no enable disable CLI command l2 mirror ingress mirror id 1 or 2 port list CLI command l2 mirror egress mirror id 1 or 2 port list CLI command l2 mirror remove mirror id 1 or 2 ingress egress port list For GigaX 2024 Mirror Mode Enable Disable Monitor Port port number Displays the mirroring settings of the switch CLI command l2 mirror create monitor port no enab...

Page 76: ...t 1 2 3 4 50 for all ports vlan port list untagged port list format 1 2 3 4 50 for all ports untagged port list Remove Multicast Group Allows user to delete a static multicast group entry from multicast group table by given a MAC address and VLAN ID CLI command l2 mcast delete mac address format xx xx xx xx xx xx multicast mac address vlan id vlan id Reload Restores the previous saved settings fro...

Page 77: ...e CLI command l2 rate limit limit rate Reload Restores the previous saved settings from conﬁguration ﬁle CLI command l2 rate retrieve Aging Time User can set the ARL Address Resolution Logic entries aging time by setting the aging time value CLI command l2 arl age aging time value Query by Port ARL entries existed in ARL table can be queried according to port number CLI command l2 arl port port nu...

Page 78: ... VLAN information of the switch CLI command l2 vlan show vlan id Name VLAN ID Private VLAN Allows user to conﬁg the VLAN settings User may create a new VLAN by giving a unique VLAN ID a VLAN description name and its port member list note that the port member here is indicated as tagged port member To specify a VLAN port member as untagged port CLI command utportadd can achieve this purpose User ma...

Page 79: ... default VLAN for a port by giving a VLAN ID and its associated port member list CLI command l2 port vlan vlan id 4095 to disable the port based vlan port list CoS Value Sets the Class of Service for a port by assigning it a priority with range of 0 7 criteria value CLI command l2 port priority CoS port list Reload Restores the previous saved settings from conﬁguration ﬁle CLI command l2 port retr...

Page 80: ...vileges Get privilege are turned on by default and user can specify whether to give it the Set Privilege while create a new entry CLI command snmp community add New community string new community string Get privileges y always turn on by default Set privileges y n n set privilege y for ʻyesʼ n for ʻnoʼ CLI command snmp community set User can modify a community entry in the table by reassigning its...

Page 81: ...mask and its dedicated community string CLI command snmp host add Host IP Subnet IP address Netmask netmask Community community string CLI command snmp host set User can modify a host entry in the table by reassigning its allowed IP address network mask and community string Host table entry table index entry id to conﬁg Host IP Subnet old IP address new IP address Netmask old netmask new netmask C...

Page 82: ...d community string Trap table entry table index entry id to conﬁg SNMP version 1 2c old snmp version new snmp version Destination IP old IP address new IP address Community old community string new community string CLI command snmp trap delete Allows user to delete a trap entry from trap table Trap table entry table index entry id to delete Reload Restores the previous saved settings from conﬁgura...

Page 83: ...security model security level and context match Gruop Name old group name string new group name string Security Model 0 1 2 3 any v1 v2c usm old security model new security model Security Level 1 2 3 noauth authnopriv authpriv old security level new security level Context Match 0 1 inexact exact old context match new context match Read View Name old read view name string new read view name string ...

Page 84: ...pv3 view set User can modify a VACM View entry in the table by reassigning its allowed view name view type view subtree and view mask View Name old view name string new view name string View Subtree oid old view subtree new view subtree View Mask old view mask new view mask View Type 1 2 included excluded old view type new view type CLI command snmp snmpv3 view delete Allows user to delete a VACM ...

Page 85: ...dify a USM User entry in the table by reassigning its allowed engine Id name auth protocol auth password priv protocol and priv password EngineId old engine id string new engine id string Name old user name string new user name string AuthProtocol oid old auth protocol oid string new auth protocol oid string AuthPassword old auth password string new auth password string Priv Protocol oid old priv ...

Page 86: ...d a new MAC address rule associated to a ﬁlter set These ﬁlter rule works with ICMP TCP or UDP protocols with action of permit or deny User can also specify the MAC address source or destination of the ﬁlter rule by using CLI command dstmac and srcmac CLI command ﬁlter rule new set id rule id protocol ICMP TCP UDP any action permit deny CLI command ﬁlter rule dstmac set id rule id type any mac add...

Page 87: ...LI command ﬁlter rule dstip set id rule id type any ip subnet CLI command ﬁlter rule srcip set id rule id type any ip subnet CLI command ﬁlter rule dstport set id rule id type any port CLI command ﬁlter rule srcport set id rule id type any port Rule Mode MAC Rule Action Permit Deny Source MAC Destination MAC Modify Allows user to modify the MAC ﬁlter rule CLI command ﬁlter rule modify set id rule ...

Page 88: ...e any ip subnet CLI command ﬁlter rule dstport set id rule id type any port CLI command ﬁlter rule srcport set id rule id type any port Rule Mode MAC Rule Action Permit Deny Source MAC Destination MAC Delete Allows user to delete the MAC ﬁlter rule CLI command ﬁlter rule delete set id rule id Rule Mode IP Rule Action Permit Deny Source IP Type IP Mask Destination IP Type IP Mask Source Port Type P...

Page 89: ...t to an egress port CLI command ﬁlter apply egress ﬁlter set id any none port number Reload Restores the previous saved settings from conﬁguration ﬁle CLI command ﬁlter retrieve 5 3 6 Security Commands Reauthentication Allows user to enable or disable periodic reauthentication CLI command security dot1x bridge reauth enable disable Reauthentication Time Allows user to set up the reauthentication t...

Page 90: ...eauthentication attemps 1 10 Multi host Allows user to enable or disable Multi host on some speciﬁc ports CLI command security dot1x port multihost enable disable port list Authentication Control Allows user to set up the authentication control of some speciﬁc ports CLI command security dot1x port authctrl type 1 force_authorized 2 force_unauthorized 3 auto port list Guest VLAN Allows user to set ...

Page 91: ... to modify a user entry from the local database It contains a user name password and dynamic VLAN User Name new user name string Password new password string Conﬁrm Password new conﬁrm password string Dynamic VLAN new dynamic VLAN Reload Restores the previous saved settings from conﬁguration ﬁle CLI command security dialinuser retrieve Authentication Server IP Authentication Server Port Authentica...

Page 92: ...he pairs of keys are RSA and DSA public private keys respectively CLI command security sshkey start Reset SSH key Reset SSH keys to default value CLI command security radius default Show Generating Status Show the SSH key generating status It will display success or SSH keys generated fail or system is generating keys CLI command security sshkey show Admin Enable Disable Allows user to enable disa...

Page 93: ...art port list Port Selection Query Display current secure MAC addresses of some particular ports CLI command security portsecu mac display port list MAC Address Port Selection Add Add a static secure MAC address to a port CLI command security portsecu mac add mac address port no Remove Remove a secure MAC address from a port by giving a MAC the VID and a port number or clear all of the secure MAC ...

Page 94: ... map cosdscp dscp1 dscp2 dscp3 dscp4 dscp5 dscp6 dscp7 dscp8 DSP to CoS Allows users to set up the DSCP to CoS map CLI command qos map dscpcos dscp list to cos priority Class Name Match None Filter DSCP Filter Set ID DSCP 0 8 10 16 18 24 26 32 34 40 46 48 56 Add Creates a new class with specifying a unique class name and match mode If the match mode is ʻFilterʼ users must input an existed ﬁlter se...

Page 95: ...ses Policy Name Add Creates a new policy with specifying a unique policy name CLI command qos policy new policy name Remove Allows users to remove a policy by indicating the policy ID Users can remove all policies by inputting ʻ ʼ CLI command qos class remove policy id 1 56 for all policies Edit Class ID DSCP Trafﬁc Rate Trafﬁc Burst Size Exceed Action None Drop DSCP Exceed DSCP Add Allows users t...

Page 96: ... old trafﬁc rate new trafﬁc rate trafﬁc burst size old trafﬁc rate size new trafﬁc rate size exceed act old exceed action new exceed action exceed dscp old dscp value new dscp value Remove Allows users to remove a policy action by specifying a policy ID and class ID Users can remove all policy actions of a policy by specifying a policy ID and ʻ ʼ CLI command qos policy remove policy id 1 56 class ...

Page 97: ... user to map the CoS priority with range of 0 7 for a buffer queue total of 4 with queue ID of 1 4 CLI command l2 cos map queue id 1 4 cos 0 7 5 4 Miscellaneous Commands sys time uptime show the time since the system boot up sys time date show the current date and time sys time settime set the current time sys ﬁles conﬁg backup backup conﬁguration ﬁles sys ﬁles conﬁg default restore factory defaul...

Page 98: ...The IP address 20 56 0 211 reads twenty dot ﬁfty six dot zero dot two eleven 6 1 1 Structure of an IP address IP addresses have a hierarchical design similar to that of telephone numbers For example a 7 digit telephone number starts with a 3 digit preﬁx that identiﬁes a group of thousands of telephone lines and ends with four digits that identify one speciﬁc line in that group Similarly IP address...

Page 99: ... hold over 65 000 hosts There can be up to 16 384 class B networks in existence A class B network might be appropriate for a large organization such as a business or government agency Class C networks are the smallest only able to hold 254 hosts at most but the total possible number of class C networks exceeds 2 million 2 097 152 to be exact LANs connected to the Internet are usually class C netwo...

Page 100: ... is also included Since this extra bit has only two values 0 and 1 this means there are two subnets Each subnet uses the remaining 7 bits in ﬁeld4 for its host IDs which range from 0 to 127 instead of the usual 0 to 255 for a class C address Similarly to split a class C network into four subnets the mask is 255 255 255 192 or 11111111 11111111 11111111 11000000 The two extra bits in Field 4 can ha...

Page 101: ...o the computer you specify If the computer receives the message it sends messages in reply To use it you must know the IP address of the computer with which you are trying to communicate On Windows based computers you can execute a ping command from the Start menu Click the Start button and then click Run In the Open text box type a statement such as the following ping 192 168 1 1 Click OK You can...

Page 102: ...our DNS server usually located with your ISP If that name is not an entry in your ISPʼs DNS table the request is then referred to another higher level server and so on until the entry is found The server then returns the associated IP address On Windows based computers you can execute the nslookup command from the Start menu Click the Start button then click Run In the Open text box type the follo...

Page 103: ...rear panel becomes defective you can easily replace it following these steps 1 Unlock the fan module by loosening the thumbscrew that secures it to the rear panel Figure 72 Loosening the thumbscrew 2 Carefully pull the module out as shown Figure 73 Removing the fan module 3 Carefully pull the two power cables from the fan connectors 4 Loosen the screws that secure the fan to the module Remove the ...

Page 104: ... fan cables are connected to the correct fan connector FAN 1 is on the left side when you are facing the rear panel 7 Insert the fan module to the switch chassis until it ﬁts in place Make sure that the fan power cables are not caught between the fan module and chassis 8 Secure the fan module to the chassis with the thumbscrew Check around the fan module to make sure no cable is caught between the...

Page 105: ...ection FAN LED is amber blinking Check the fans on the back of the switch If any of the fans is defective refer to section 7 2 to replace the fan Gigabit Ethernet Link LED does not illuminate after an Ethernet cable is attached 1 Verify if the Ethernet cable is securely connected to your LAN switch hub PC and to the switch Make sure the PC and or hub switch is turned on 2 Verify if your cable is s...

Page 106: ...hanged the password from the default try using admin as the user ID and bypassing password 2 Login to console mode through RS232 or USB use sys user show to display the lost information Some pages do not display completely 1 Verify that you are using Internet Explorer v5 5 or later Netscape is not supported Support for Javascript must be enabled in your browser Support for Java may also be require...

Page 107: ... address 209 191 4 240 is 11010001 10111111 00000100 11110000 in binary See also bit IP address network mask bit Short for binary digit a bit is a number that can have two values 0 or 1 See also binary bps bits per second CoS Class of Service Deﬁned in 802 1Q the value range is from 0 to 7 DSCP Differentiated Services Code Point The six most signiﬁcant bits of the DiffServ ﬁeld in IP header is cal...

Page 108: ...he ping command makes use of ICMP IGMP Internet Group Management Protocol An Internet protocol that enables a computer to share information about its membership in multicast groups with adjacent routers A multicast group of computers is one whose members have designated as interested in receiving speciﬁc content from the others Multicasting to an IGMP group can be used to simultaneously update the...

Page 109: ...ent hardware address of a device assigned by its manufacturer MAC addresses are expressed as six pairs of characters mask See network mask Multicast To send data to a group of network devices Mbps Abbreviation for Megabits per second or one million bits per second Network data rates are often expressed in Mbps Monitor Also called Roving Analysis allow you to attach a network analyzer to one port a...

Page 110: ... as a computer or router through which data ﬂows into and out of the device protocol A set of rules governing the transmission of data In order for a data transmission to work both ends of the connection have to follow the rules of the protocol PVLAN Private Virtual Local Area Network QoS Quality of Service Deﬁned in 802 1Q For datacommunication network performance QoS characteristics are bandwidt...

Page 111: ... TCP is responsible for dividing data up into packets for delivery and reassembling them at the destination while IP is responsible for delivering the packets from source to destination When TCP and IP are bundled with higher level applications such as HTTP FTP Telnet etc TCP IP refers to this whole suite of protocols Telnet SSH An interactive character based program used to access a remote comput...

Page 112: ...to the Internet Web browser A software program that uses Hyper Text Transfer Protocol HTTP to download information from and upload to web sites and displays the information which may consist of text graphic images audio or video to the user Web browsers use Hyper Text Transfer Protocol HTTP Popular web browsers include Netscape Navigator and Microsoft Internet Explorer See also HTTP web site WWW W...

Page 113: ...e 29 download 95 Dynamic Address page 26 Error Group page 51 Ethernet deﬁned 95 Filter Attach Page 37 Filter Set 35 Filtering rule 97 Filters pages 35 Firmware Upgrade page 18 FTP 96 Hardware connections 6 7 Historical Status page 52 Host 96 Host ID 86 Host Table Commands 69 Host Table page 31 HTTP 96 ICMP 96 IGMP 96 IGMP Snooping 96 IGMP Snooping page 25 Internet 96 Intranet 96 IP addresses 97 ex...

Page 114: ...18 Remote 98 RJ 45 98 Routing 99 RPS module 7 Save Conﬁguration page 53 SNMP 99 SNMP Commands 68 SNMP pages 31 Spanning Tree Commands 60 Spanning Tree page 20 Static Address Commands 58 Static Address page 27 Static Multicast page 24 Statistics Chart pages 50 STP 99 Subnet 99 Subnet mask See Network mask Subnet masks 99 System Commands 57 Tagged VLAN page 27 TCP IP 99 Telnet 99 TFTP 99 Trafﬁc Comp...

Page 115: ...103 GigaX2024 2048 L2 Managed Switch User Manual WAN 100 Web browser 100 Web function layout 12 Web Interface 12 Web page 100 Web site 100 Web top frame 14 World Wide Web 101 ...

Search results

Summary of Contents for GIGAX2024

Reviews:

Related manuals for GIGAX2024

Brands by name

Popular brands

Asus GIGAX2024, User Manual

Search results

Summary of Contents for GIGAX2024

Reviews:

Related manuals for GIGAX2024

Brands by name

Popular brands