Avaya C360 Manager Installation And Configuration Manual Download | Manualshive

Page: 77 / 248

background image

SNMP Support

Issue 2 July 2005

77

SNMPv3

SNMPv3 enables the following features over SNMPv1 or v2c:

●

User authentication with a username and password. Authentication is performed using
md5 or sha-1.

●

Communication encryption between the Network Management Station (NMS) and the
SNMP agent at the application level

●

Access control definition for specific MIB items available on the SNMP agent

●

Notification of specified network events directed toward specified users

●

Definition of roles using access control, each with unique access permissions and
authentication/encryption requirements

The basic components in SNMPv3 access control are users, groups, and views.

In addition. SNMPv3 uses an SNMP engine ID to identify an SNMP entity. An SNMP engine ID
is assigned to each IP address of each device in the network. Each SNMP engine ID should be
unique in the network.

Users

SNMPv3 uses the User-based Security Model (USM) for security, and the View-based Access
Control Model (VACM) for access control. USM uses the HMAC-MD5-96 and HMAC-SHA-96
protocols for user authentication, and the CBC-DES56 protocol for encryption.

A maximum of 21 users, including local users and remote users getting notifications can be
defined on a stack. If the SNMP engine ID changes, all users other than the default user for the
stack are invalid and must be redefined. The SNMP engine ID can be changed via the CLI. In
addition, a change in the IP address of the stack automatically changes the SNMP engine ID.

SNMPv3 supports three security levels:

●

NoAuthNoPriv - This is the lowest level of SNMPv3 security. No authentication is done and
no encryption is performed. This method is maintains the same security level as SNMPv1,
but provides a method for limiting the access rights of a user.

●

AuthNoPriv - User authentication is performed based on MD5 or SHA algorithms. The
message is sent with an HMAC that is calculated with the user key. The data part is sent
unencrypted.

●

AuthPriv - User authentication is performed based on MD5 or SHA algorithms. 'The
message is sent with HMAC for authentication, and encrypted using DES.

To create an SNMPv3 user account, you must provide the following information:

●

UserName - string representing the name of the user.

●

Maximum length: 32 characters.

«
...
75
76
77
78
79
...
»

Summary of Contents for C360 Manager

Page 1: ...Installation and Configuration for the Avaya C360 Converged Stackable Switches Software Version 4 5 10 300503 Issue 2 July 2005...

Page 2: ...than those specified herein may result in hazardous radiation exposures Contact your Avaya representative for more laser product information Electromagnetic Compatibility EMC Standards This product co...

Page 3: ...ity 23 Quality of Service QoS 23 Monitoring 24 Power over Ethernet PoE Support on C360 PWR switches 24 Layer 3 Support 25 Management 25 Management Interface Options 26 C360 Switch Configurations 27 Se...

Page 4: ...PS 55 Supplemental Earthing of the C360 Optional 56 Sample Backup Power Supply Scheme 57 Budgeting Power 59 Post Installation 60 Chapter 5 Establishing Switch Access 61 CLI Architecture 62 Security Le...

Page 5: ...rs 86 Allowed Managers Introduction 86 Allowed Managers CLI Commands 86 Allowed Protocols 88 Allowed Protocols Introduction 88 Allowed Protocols CLI Commands 88 Section 3 Avaya C360 Configuration 91 C...

Page 6: ...ter 8 Avaya C360 Layer 2 Features 113 Ethernet 114 Fast Ethernet 114 Gigabit Ethernet 114 Configuring Ethernet Parameters 115 Auto Negotiation 115 Full Duplex Half Duplex 115 Speed 115 MDI MDI X Detec...

Page 7: ...Commands 138 LAG Implementation in the C360 139 Port Redundancy 140 Port Redundancy Operation 140 Intermodule Port Redundancy 141 Port Redundancy CLI Commands 142 Port Classification 143 Overview 143...

Page 8: ...AN 168 IP Configuration 169 IP Configuration CLI Commands 169 Assigning Initial Router Parameters 170 RIP Routing Interchange Protocol Configuration 172 RIP Overview 172 RIP2 173 RIP CLI Commands 173...

Page 9: ...xample 193 IP Fragmentation and Reassembly 194 IP Fragmentation and Reassembly Overview 194 IP Fragmentation Reassembly CLI Commands 194 Chapter 10 Avaya C360 Power over Ethernet Features 197 Power Ov...

Page 10: ...hooting the Installation 213 Stack Health 216 Overview 216 Implementation of Stack Health in the C360 216 Stack Health CLI Commands 217 Chapter 13 Maintenance 219 Introduction 219 Replacing the Stacki...

Page 11: ...r 2 233 IETF Layer 3 234 IETF Network Monitoring 235 Appendix D Specifications 237 Physical 237 Power Requirements 237 Environmental 238 Safety 238 MTBF 239 Interfaces 239 GBIC Transceivers 239 LX Tra...

Page 12: ...Contents 12 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Page 13: ...tches and stacking modules contain components sensitive to electrostatic discharge Touching the circuit boards unless instructed to do so may damage them PRECAUCI N PRECAUCION El switch C360 y sus m d...

Page 14: ...onvey instructions and information CLI Conventions Mandatory keywords are in the computer bold font Information displayed on screen is displayed in computer font Variables that you supply are in point...

Page 15: ...ar el equipo o resultar en p rdida de datos WARNING WARNING This means danger Failure to follow the instructions or warnings may result in bodily injury You should ensure that you are qualified for t...

Page 16: ...Before you Install the Avaya C360 16 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Page 17: ...Issue 2 July 2005 17 Section 1 Avaya C360 Overview...

Page 18: ...18 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Page 19: ...non PoE configurations the C360 series is a powerful yet cost effective option for enterprise applications With C360 switches you can deploy PoE and multilayer switching using one switch while mainta...

Page 20: ...ss are maintained You can add remove and replace switches in the stack without disrupting operation Auto reconfiguration for replaced switch the configuration of the units is distributed over the stac...

Page 21: ...agement access through the switch console port to a directly attached terminal or remote terminal via a serial connection or modem Refer to Establishing a Console Connection on page 64 and Establishin...

Page 22: ...edundant cable is connected to the stack The broken link is bypassed and data transmission continues uninterrupted BUPS Backup Power Supply you can connect an additional DC power supply to the BUPS co...

Page 23: ...r to RADIUS on page 82 for further information SNMP v3 adds security features to the SNMP v1 and SNMP v2c feature set Refer to SNMPv3 on page 77 for further information SSH enables establishing a remo...

Page 24: ...ular valuable so in case of link failure notification is generated for valuable ports only Refer to Port Classification on page 143 for further information The C360 supports SMON switch monitoring whi...

Page 25: ...ts IP address and its corresponding Media Access Control MAC address Refer to ARP Address Resolution Protocol Table Configuration on page 181 for further information NetBIOS Re broadcast for applicati...

Page 26: ...le port or by using Telnet PPP or SSH from a remote management station SNMP provides a means to monitor and control the switch or the stack You can manage switch configuration settings performance sec...

Page 27: ...5 27 C360 Switch Configurations Table 2 summarizes the C360 switch configurations Table 2 C360 Switch Configurations Model 10 100BASE T Ports GBIC SFP Ports PoE on 10 100BASE T ports C363T 24 2 C363T...

Page 28: ...Avaya C360 Overview 28 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Page 29: ...Issue 2 July 2005 29 Section 2 Installing the C360...

Page 30: ...30 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Page 31: ...2 July 2005 31 Chapter 2 Avaya C360 Front and Rear Panels This chapter describes the front and rear panels of the C360 switches including the LEDs buttons and power inlets C360 Front Panels C360 Rear...

Page 32: ...For example if the COL LED is illuminated then all Port LEDs show the collision status of their respective port If you wish to select the LAG function then press the left button until the LAG Functio...

Page 33: ...C360 Front Panels Issue 2 July 2005 33 Figure 4 C364T PWR Front Panel Figure 5 C360 Function LEDs Figure notes 1 PoE LED on C360 PWR only 2 Left front panel button 3 Right front panel button 1 2 3...

Page 34: ...Status OFF Power is off ON Power is on Blinking Main power is down and BUPS is active SYS System Status OFF Module is a slave in a stack ON Module is the stack master and the optional Octaplane and R...

Page 35: ...activity ON Data transmitted on line from the module Rx Receive from line OFF No receive activity ON Data received from the line into the module FDX Full Duplex mode OFF Half duplex mode ports 1 to 24...

Page 36: ...is detected or Power supply error or Not enough power Table 4 C360 Right and Left Select buttons On order to Press Select the function LED see Table 3 Left or Right button Reset the switch Both Right...

Page 37: ...panel contains a stacking module slot AC power input and BUPS DC input Note Note The C S and SW versions on your C360 switches may differ from those shown in Figure 7 Figure 7 C360 Back Panel Figure n...

Page 38: ...Avaya C360 Front and Rear Panels 38 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Page 39: ...ll Mounting Optional Stacking optional Making Connections to Network Equipment Installing SFP GBIC Transceivers Preparing Needed Tools Prepare the tools you need to mount the Replace variable w short...

Page 40: ...uct name fulfills the following requirements Cables are away from sources of electrical noise such as radio transmitters broadcast amplifiers power lines fluorescent light fixtures Water or moisture c...

Page 41: ...tches the specifications shown in Table 7 Table 7 Power Requirements AC Input voltage 100 to 240 VAC 50 to 60 Hz Power consumption C363T C363T PWR C364T C364T PWR 60 W 420 W 90 W 760 W AC Input curren...

Page 42: ...e brackets supplied with the chassis The brackets are symmetric you can fix either bracket on either side Figure 8 shows the two available rack mounting positions Figure 8 Front and Mid Mount Position...

Page 43: ...is a reliable ground connection at the outlet 5 Ensure that the internal rack ambient temperature is within the operating specification limits of the C360 6 Ventilation for the C360 is from side to si...

Page 44: ...it on the wall Ensure that the four C360 screw holes are aligned with the rack hole positions as shown in Figure 10 You can attach the brackets to face either the top or the bottom of the unit dependi...

Page 45: ...not leave the stacking slots open Cover empty slots using the blanking plates supplied PRECAUCI N PRECAUCION No deje las aberturas de ampliaci n abiertas Cubrir las aberturas vacias con las placas blo...

Page 46: ...he long cable is 2 m long the extra long cable is 8 m long Redundant Long Redundant Octaplane cable X330RC X330L RC black used to connect the top and bottom switches of a stack Catalog No CB0222 CB026...

Page 47: ...as a redundant connection CAUTION CAUTION To prevent EMI cover any unused ports on the stacking modules using the grey plugs provided Insert the plug labelled left into the lower port insert the plug...

Page 48: ...equipment to be connected to the C360 detailing the connector types on the various units All required cables as specified in Connecting Cables to Network Equipment Appropriate cables are available fro...

Page 49: ...roved SFP GBIC transceivers see http support avaya com SFP GBIC transceivers are hot swappable Safety Information CAUTION CAUTION You must operate the SFP GBIC transceivers under recommended operating...

Page 50: ...copper GBIC transceiver To remove the SFP GBIC transceiver 1 Press the clip on the base of the transceiver see Figure 13 for the location Figure 13 Clip Location on Base of Transceiver 2 Pull the tra...

Page 51: ...the port at the other end of the link 1 Use the show port command to check the auto negotiation status of the transceiver ports 2 Use the set port negotiation module port enable command to enable aut...

Page 52: ...Installation 52 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Page 53: ...s power to the switch and for Power over Ethernet PoE WARNING WARNING To isolate the switch completely you must disconnect all the power connections AC plug and BUPS DC power ADVERTENCIA ADVERTENCIA P...

Page 54: ...o a 3 conductor grounding type attachment plug rated at a minimum of 10A 250V and a configuration specific for the region country in which it will be used The attachment plug must bear the safety agen...

Page 55: ...the two screws in the terminal block is M4 The pitch between each screw is 9 5mm 1 Remove the protective plastic cover over the BUPS DC inputs by unscrewing the two Phillips screws WARNING WARNING The...

Page 56: ...y la fuente de alimentaci n externa est n conectados correctamente Positivo a Positivo Negativo a Negativo 3 Replace the plastic cover by aligning the holes with the screw receptacles and replacing t...

Page 57: ...of inline power per C363T PWR switch Table 9 lists the equipment required for this scenario Figure 16 Sample Scheme Figure notes 1 AC power 2 BUPS DC input 3 BUPS DC input Table 9 Required Equipment...

Page 58: ...PC 800W PSUs see Budgeting Power for details APC A0800 085 545 CA1 3 X360STK Octaplane stacking module 700305899 1 X330RC Redundant Octaplane stacking cable 108563453 4705 065 2 X330SC Short Octaplane...

Page 59: ...parameter in the C360 PWR switch set using the set powerinline external power CLI command Refer to Table 10 and Table 11 for guidelines If you set the powerinline external power parameter to other val...

Page 60: ...hooting the Installation Table 12 Post Installation Indications Procedure Indication Troubleshooting Information Powering the C360 All front panel function LEDs illuminate briefly If the PWR LED blink...

Page 61: ...I Architecture Security Levels Entering the CLI Establishing Connections Establishing a Console Connection Assigning C360 IP Stack Address Establishing a Telnet Connection Establishing an SSH Connecti...

Page 62: ...to show system parameter values The Privileged level read write is used by site personnel to access stack configuration options The Supervisor level administrator is used to define user names passwor...

Page 63: ...ame Type root as the Login name and the default password root in lowercase letters Defining new local users Define new users and access levels using the following command in Supervisor Level Exiting t...

Page 64: ...ection describes the procedure for establishing switch access between a terminal and the C360 switch over the serial port provided on the front panel of the C360 RJ 45 connector labeled Console For in...

Page 65: ...9600 baud 8 bits 1 stop bit no parity If you reset or powered up the switch after connecting and configuring the terminal Welcome to C360 appears followed by the Login Name prompt If the login prompt...

Page 66: ...CLI to assign the C360 stack an IP address and net mask To assign a C360 IP stack address 1 Establish a serial connection by connecting a terminal to the master C360 switch of the stack 2 When prompt...

Page 67: ...ult subnet mask is 255 255 255 0 3 From the Microsoft Windows taskbar of your PC click Start and then Run or from the DOS prompt of your PC then start the Telnet session by typing telnet C360_IP_addre...

Page 68: ...ck contains three router modules a maximum of eight SSH sessions can be active on the stack The C360 agent reports SSH sessions opened to it In addition each router module reports the SSH sessions ope...

Page 69: ...t verifies digital signature by decrypting it with DSA and the C360 host public key This and the step above are essential to prevent a man in the middle attack by someone taking the C360 identity 7 Us...

Page 70: ...to key generate dsa CLI command to generate a key if necessary 2 Enable SSH on the switch using the ip ssh enable CLI command 3 Connect your station to the network 4 Verify that you can communicate wi...

Page 71: ...s default IP address SSH Commands The following SSH commands are accessible from Supervisor level Table 15 SSH CLI Commands In order to Use the following command Enable SSH and configure SSH parameter...

Page 72: ...ntities use the session mod_num mode CLI command mod_num is the number of the switch in the stack counting from the bottom mode can be switch router wan or mgp Use switch mode to configure layer 2 com...

Page 73: ...password root You are now in Supervisor Level 4 At the prompt type set interface ppp ip_addr net mask with an IP address and netmask to be used by the C360 to connect via its PPP interface Note Note T...

Page 74: ...ch Access 74 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5 9 You can now dial into the switch from a remote station and open a Telnet session to the PPP int...

Page 75: ...also sends management information back to the SNMP Manager as events occur Each C360 module has an agent However on each C360 stack one module is selected to be the master module The stack is managed...

Page 76: ...a trap is detected SNMPv1 SNMPv1 uses community strings to limit access rights Each SNMP device is assigned to a read community and a read write community To communicate with a switch you must send an...

Page 77: ...HMAC SHA 96 protocols for user authentication and the CBC DES56 protocol for encryption A maximum of 21 users including local users and remote users getting notifications can be defined on a stack If...

Page 78: ...ccess rights including read write and trap or inform notifications the users can send The group maps its users to views based on the security model and level with which the user is communicating with...

Page 79: ...n use wildcards to include or exclude an entire branch of OIDs in the MIB tree using an asterisk instead of the specific node To create an SNMPv3 view you must provide the following information ViewNa...

Page 80: ...t snmp community Display a list of SNMPv3 views show snmp view Display a table of SNMPv3 users and the groups with which they are mapped show snmp userToGroup Display the SNMPv3 engine ID show snmp en...

Page 81: ...emote user for SNMP notifications snmp server remote user Remove an SNMPv3 remote user for SNMP notifications no snmp server remote user Configure the SNMPv3 timeout and retries for notification snmp...

Page 82: ...server in an attempt to authenticate the user remotely If the user name and password are authenticated then the RADIUS server responds to the switch with an Authentication Acknowledgement that includ...

Page 83: ...1x refer to IEEE 802 1x Port Based Network Access Control User attempts login Local User account authenticated in switch Perform log in according to user s privilege level to switch Yes Authenticatio...

Page 84: ...fault set radius authentication Set a primary or secondary RADIUS server IP address set radius authentication server Configure a character string to be used as a shared secret between the switch and t...

Page 85: ...To use the recovery password feature you must connect to the switch s console port Log in using the user name root and password ggdaseuaimhrke Use the set username command to change the password for t...

Page 86: ...IP address from the Allowed Managers List Tip Tip The identification of an Allowed Manager is done by checking the Source IP address of the packets Thus if the Source IP address is modified on the wa...

Page 87: ...tatus of allowed managers is enabled or disabled show allowed managers status Show the IP addresses of the managers that are currently connected show secure current Table 19 Allowed Managers CLI Comma...

Page 88: ...e connection via the Console port Allowed Protocols CLI Commands The following Allowed Protocols commands are available Table 20 Allowed Protocol CLI Commands 1 of 2 In order to Use the following comm...

Page 89: ...sword on the switch terminal recovery password enable Disable Recovery Password on the switch no terminal recovery password Enable Telnet access from the switch ip telnet client enable Disable Telnet...

Page 90: ...Establishing Switch Access 90 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Page 91: ...Issue 2 July 2005 91 Section 3 Avaya C360 Configuration...

Page 92: ...92 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Page 93: ...0506 For instructions on the use of the graphical user interfaces refer to the C360 Device Manager User Guide on the Avaya C360 Documentation and Utilities CD C360 Default Settings The default setting...

Page 94: ...d 802 1x port control Auto RADIUS server Disabled Time server IP address 0 0 0 0 Timezone offset 0 hours SNMPv1 communities Read only Read write Trap SNMP Public Public Public SNMP authentication trap...

Page 95: ...nly Port speed 10 100 Mbps Depending on auto negotiation results 1000 Mbps Auto negotiation1 1 Ensure that the other side is also set to Autonegotiation Enabled Enable Enable Flow control Disabled no...

Page 96: ...Avaya C360 Default Settings 96 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Page 97: ...tem Logging Telnet Client Support Monitoring CPU Utilization Basic Switch Configuration Use the CLI commands briefly described below for configuring the display on your terminal or workstation The rul...

Page 98: ...to its default value no hostname Clear the current terminal display clear screen Set the number of minutes before an inactive CLI session automatically logs out set logout Display the number of minut...

Page 99: ...ameters The rules of syntax and output examples are all set out in detail in the Reference Guide for the Avaya C360 Converged Stackable Switch 10 300506 Table 25 Operating Parameter CLI Commands In or...

Page 100: ...uide Avaya C360 Multilayer Stackable Switches version 4 5 Display the time status and parameters show time parameters Display the current time zone offset show timezone Get the time from the time serv...

Page 101: ...figuration file to multiple devices in the network resulting in a consistent configuration You can also download image files to the switch The image files provide the switch s firmware and device mana...

Page 102: ...in a switch mode Use the CLI commands described below for uploading and downloading Layer 2 configuration files The rules of syntax and output examples are all set out in detail in the Reference Guid...

Page 103: ...ion files you must be in a router mode Use the CLI commands briefly described below for uploading and downloading Layer 3 configuration files The rules of syntax and output examples are all set out in...

Page 104: ...the device using SCP copy startup config scp Upload the running configuration file from the device using SCP copy running config scp Upload a startup configuration file from the device using TFTP copy...

Page 105: ...the secured file server The C360 authenticates itself to the server by providing a user name and password With a Windows based SSH server WinSSHD the user name provided must be a defined user on the W...

Page 106: ...nt Time is included only if a time server is configured for the device Message Facility The software sub system from which the message originated Severity Level The severity level of the message Sever...

Page 107: ...messages are saved to a log file in the NVRAM of the master module in the stack The log file is not erased by an NVRAM initialization Syslog server Logging messages are sent to a Syslog server as ASC...

Page 108: ...facility that the messages are sent to on the remote syslog server If a syslog facility is not defined the default facility local7 is used 3 Enable the Syslog server Addition optional configuration i...

Page 109: ...in the Reference Guide for the Avaya C360 Converged Stackable Switch 10 300506 In order to Use the following command Define a filter rule for logging messages for the current session set logging sessi...

Page 110: ...r the specified Syslog server or for all servers show logging server condition Define a filter rule for logging messages to a file set logging file condition Enable or disable logging to a file on NVR...

Page 111: ...ip Tip Enabling and disabling the Telnet client service can only be done using a direct console connection via the Console port By default the Telnet client service is disabled Telnet Commands The fol...

Page 112: ...g and disabling CPU utilization monitoring and viewing CPU utilization statistics The rules of syntax and output examples are all set out in detail in the Reference Guide for the Avaya C360 Converged...

Page 113: ...iated with it These commands are used to configure operate or monitor switch activity for each of the Layer 2 features This section of the C360 Installation and Maintenance Guide explains each of the...

Page 114: ...y other stations The first version of Ethernet supported data transfer rates of 10 Mbps and is therefore known as 10BASE T over copper or 10BASE FX over fiber Fast Ethernet Fast Ethernet is a newer ve...

Page 115: ...gabit ports Auto Negotiation determines the Flow Control configuration of the port Full Duplex Half Duplex Devices that support Full Duplex can transmit and receive data simultaneously as opposed to h...

Page 116: ...over time so short term peak loads may exceed the switch capacity When this occurs the switch must buffer frames until there is enough capacity to forward them to the appropriate ports This however c...

Page 117: ...ts the serial number assigned to the device by the manufacturer CAM Table The CAM Table contains a mapping of learned MAC addresses to ports and VLANs The switch checks forwarding requests against the...

Page 118: ...t port negotiation Administratively enable a port set port enable Administratively disable a port set port disable Set the speed for a 10 100 port set port speed Configure the duplex mode of a 10 100B...

Page 119: ...address show cam mac Clear all the CAM table entries clear cam Display the autopartition settings show autopartition Display the current status of the MAC aging function show mac aging Display the MAC...

Page 120: ...within the VLAN The figure below illustrates how a simple VLAN can connect several endpoints in different locations and attached to different hubs In this example the Management VLAN consists of stat...

Page 121: ...N Thus the Engineering and Mktg VLANs are not burdened with processing that traffic Figure 22 VLAN Switching and Bridging VLAN Tagging VLAN Tagging is a method of controlling the distribution of infor...

Page 122: ...able Port Multi VLAN binding modes are Bind to All the port is programmed to support the entire 3K VLANs range Traffic from any VLAN is forwarded through a port defined as Bind to All This is intended...

Page 123: ...port Intended mainly for easy backbone link 2 Static Binding You manually specify the list of VLAN IDs to be bound to the port up to 3 071 VLANs Default mode for every port Only VLAN 9 and any other V...

Page 124: ...ckets Permitted Static Only user defined VIDs Bind to Configured All VIDs defined in the switch Bind to All Any VID 1 to 3 071 Table 32 VLAN CLI Commands 1 of 2 In order to Use the following command A...

Page 125: ...a port clear port static vlan Clear the dynamic vlans learned by the switch from incoming traffic clear dynamic vlans Display the MAC addresses learned on a specific VLAN show cam vlan Table 32 VLAN...

Page 126: ...the authenticator The process begins with the supplicant trying to access a certain restricted network resource and upon successful authentication by the authentication server the supplicant is grant...

Page 127: ...ports in a blocking state unless they were declared Force Authenticate They will be reverted to Forwarding state only when the port is authorized by the RADIUS server Note Note The actual state of por...

Page 128: ...ols prevent the port from being authorized when the link is down or when the user supplied incorrect logon information 802 1x CLI Commands The following table contains a list of the CLI commands for t...

Page 129: ...enable disable 802 1x set dot1x system auth control enable disable Set dot1x control parameter per port set port dot1x port control Initialize port dot1x set port dot1x initialize Set the port to re a...

Page 130: ...e authentication period per port an idle time between re authentication attempts set port dot1x re authperiod Set the max req per port the maximal number of times the port tries to retransmit requests...

Page 131: ...increased traffic and degradation in network performance The Spanning Tree Algorithm Produces a logical tree topology out of any arrangement of bridges The result is a single path between any two end...

Page 132: ...to be propagated all the way back to the Root Bridge and back to be changed Origination of BPDUs on a port by port basis Port Roles At the center of RSTP specifically as an improvement over STP 802 1d...

Page 133: ...int to point link is sufficient for most networks Spanning Tree Implementation in the C360 RSTP is implemented in C360 family of products so that it is interoperable with the existing implementation o...

Page 134: ...g the CLI command set port spantree cost auto Spanning Tree Protocol CLI Commands The following table contains a list of CLI commands for the Spanning Tree feature The rules of syntax and output examp...

Page 135: ...P port and not as a common STA port set port spantree force protocol migration Display a port s edge admin and operational RSTP state show port edge state Set the port as an RSTP edge port or non edge...

Page 136: ...management station When the C360 is configured to send traps to report attempted intrusion to prevent the flooding of the Console s trap log network the Agent sends an intruder alert every five second...

Page 137: ...security for the switch set security mode Display the MAC security mode for the switch show security mode Enable Disable MAC security for a specific port set port security Display the MAC security mo...

Page 138: ...mes a LAG member The attributes of the base port such as port speed VLAN number etc are applied to all the other member ports in the LAG When created each LAG is automatically assigned a logical port...

Page 139: ...he two GBIC ports to form a LAG you can aggregate the bandwidths of six 10 100BASE T ports in a LAG for a maximum of seven LAGs per switch Tip Tip You cannot combine 10 100BASE T and 1000BASE X ports...

Page 140: ...undancy feature supports up to 20 pairs of ports per stack The redundant or secondary port takes over when the primary port link is down Port redundancy provides for the following in the C360 Switchba...

Page 141: ...naffected This makes intermodule port redundancy a better option for very important connections In the example in Figure 24 Intermodule Port Redundancy is configured on ports in switch 1 primary and s...

Page 142: ...detail in the Reference Guide for the Avaya C360 Converged Stackable Switch 10 300506 In order to Use the following command Define or remove port redundancy schemes set port redundancy Enable the defi...

Page 143: ...an be sent even when the port is disabled This feature is particularly useful for the link intermodule redundancy application where you need to be informed about a link failure on the dormant port and...

Page 144: ...he layer 2 switches as described in IEEE standard 802 1D Layer 2 switches capable of multicast filtering send the multicast packets only to ports connecting members of that multicast group This is typ...

Page 145: ...e C360 switch reset that the filtering information is learned by the switch but not configured on the ports The Group Filtering Delay time is the time that the switch waits between becoming aware of a...

Page 146: ...order to Use the following command Enable or disable the IP multicast filtering application set intelligent multicast Define aging time for client ports set intelligent multicast client port pruning...

Page 147: ...N s advanced remote networking capabilities provide the tools needed to monitor and analyze the behavior of segments on a network In conjunction with an RMON agent RMON gathers details and logical inf...

Page 148: ...nterface table numbering scheme show rmon statistics Display the most recent RMON history log for a given History Index show rmon history Display the parameters set for a specific alarm entry that was...

Page 149: ...N is an extension of the RMON standard SMON adds to the monitoring capabilities of RMON in the following ways It provides additional tools and features for monitoring in the switch environment It prov...

Page 150: ...C360 Multilayer Stackable Switches version 4 5 Note Note SMON for the network layer is not supported in this version of the C360 SMON CLI Commands In order to Use the following command Enter the SMON...

Page 151: ...define one source port and one destination port on each C360 stack for either received Rx or transmitted and received Tx Rx traffic Port Mirroring CLI commands Port Mirroring Implementation in the C3...

Page 152: ...dules installed in the stack When the Priority scheme is set to Strict the Lower priority queue will transmit only if none of the Higher priority queues has nothing to transmit When the Priority schem...

Page 153: ...ted periodically The IEEE has defined a recommended transmission rate of 30 seconds however the transmission rate is adjustable LLDP devices after receiving an LLDP message from a neighboring network...

Page 154: ...tus using the set port lldp CLI command optional The default value is rx and tx The device now accepts LLDP TLVs from neighboring devices supporting LLDP on port 3 in module 5 in the stack 3 Configure...

Page 155: ...val at which the device transmits LLDP frames set lldp tx interval Set the TxHoldMultiplier set lldp tx hold multiplier Set the TxDelay set lldp tx delay Set the reinitDelay lldp re init delay Display...

Page 156: ...Avaya C360 Layer 2 Features 156 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Page 157: ...c Routing Configuration Route Redistribution ARP Address Resolution Protocol Table Configuration BOOTP DHCP Dynamic Host Configuration Protocol Relay Configuration NetBIOS Re broadcast Configuration V...

Page 158: ...0 Multilayer Stackable Switches version 4 5 Obtaining and Activating a License Key Each Certificate is specific for The switch type The required feature The number of devices After you purchase a Rout...

Page 159: ...ing and Activating a License Key Issue 2 July 2005 159 Obtaining a Routing License Key To obtain a License Key that enables routing features 1 Go to http license lsg avaya com and click request new li...

Page 160: ...Avaya C360 Layer 3 Features 160 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5 2 Enter the Certificate Key and Certificate Type 3 Click Next...

Page 161: ...Obtaining and Activating a License Key Issue 2 July 2005 161 4 Enter contact information once per certificate 5 Click Next...

Page 162: ...Avaya C360 Layer 3 Features 162 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5 6 View number of licenses left...

Page 163: ...Obtaining and Activating a License Key Issue 2 July 2005 163 7 Enter serial number of the switch es or module To identify serial numbers use the CLI command show module identity...

Page 164: ...Avaya C360 Layer 3 Features 164 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5 8 Click Generate The feature enabling license code is generated...

Page 165: ...tureName where module C360 switch number the location of the device in the stack license license code featureName routing and press Enter 2 Reset the module 3 Check that the license is activated using...

Page 166: ...sender s links Link information can also be used to build a complete picture of the network s topology Once the network topology is understood routers can determine optimal routes to network destinat...

Page 167: ...ects all networks This architecture strings several routers together via a high speed LAN topology such as Fast Ethernet or Gigabit Ethernet Within the global Internet routers do all the packet switch...

Page 168: ...omplicated For example if there are two interfaces over the same VLAN and you configure DHCP server on one interface it will be used also for the second interface over the same VLAN This behavior migh...

Page 169: ...dress Set the administrative state of an IP interface ip admin state Update the interface broadcast address ip broadcast address Define a default gateway router ip default gateway Define the interface...

Page 170: ...r commands from the Master module type the command session module number router where module number is the location of the router module in the stack and press Enter The command prompt changes from C3...

Page 171: ...Use the command Router configure if interface name ip address ip address netmask Press Enter 9 Assign a vlan to the IP interface you have created Type Assign a vlan to the IP interface you have creat...

Page 172: ...e size Also when operating RIPv1 you must not configure supernets which are networks with a mask smaller than the natural net mask of the address class such as 192 1 0 0 with mask 255 255 0 0 smaller...

Page 173: ...owing command Configure the Routing Information Protocol RIP router rip Specify a list of networks on which the RIP is running network Redistribute routing information from other protocols into RIP re...

Page 174: ...Stackable Switches version 4 5 Specify the type of authentication used in RIP Version 2 packets ip rip authentication mode Set the authentication string used on the interface ip rip authentication ke...

Page 175: ...ate algorithms to send routing information to all nodes in an internetwork by calculating the shortest path to each node This calculation is based on a topography of the Internet constructed by each n...

Page 176: ...re interface metric ip ospf cost Specify the time interval between hellos the router sends ip ospf hello interval Configure the interval before declaring the neighbor as dead ip ospf dead interval Con...

Page 177: ...are reachable via another router as a next hop The next hop router must belong to one of the directly attached networks for which the C360 has an IP interface Local static routes such as those that h...

Page 178: ...tch choice For example a high preference static default route will not be preferred over a RIP route to the subnet of the destination In order to Use the following command Establish a static route ip...

Page 179: ...otocol preferences are listed below from the most to the least preferred 1 Local directly attached net 2 High preference static manually configured routes 3 OSPF internal routes 4 RIP 5 OSPF external...

Page 180: ...1 metric N to RIP metric 1 OSPF external type 2 metric N to RIP metric N 1 Static to OSPF external type 2 metric configurable default 1 RIP metric N to OSPF external type 2 metric N Direct to OSPF ext...

Page 181: ...re address from its IP address This mechanism ability is called ARP Address Resolution Protocol The following mechanism describes how a station builds an ARP Table Figure 27 Building an ARP Table Stat...

Page 182: ...esolution Protocol ARP cache arp Configure the amount of time that an entry remains in the ARP cache arp timeout Set the amount of time that an entry remains in the ARP cache back to default no arp ti...

Page 183: ...eeps track of IP addresses rather than requiring an administrator to manage the task This means that a new computer can be added to a network without the hassle of manually assigning it a unique IP ad...

Page 184: ...ify two DHCP BOOTP servers In this case it duplicates each request and sends it to both servers This provides redundancy and prevents the failure of a single server from blocking hosts from loading Yo...

Page 185: ...is When a netbios broadcast packet arrives from an interface on which netbios rebroadcast is enabled the packet is distributed to all other interfaces configured to rebroadcast netbios If the netbios...

Page 186: ...l routers The routing functions of the virtual router are performed by one of the physical routers with which it is associated This router is known as the master router For each virtual router VRRP se...

Page 187: ...n must be done per VLAN The C360 requires that this VRID must not be used in the network even in different VLAN By the end of the routers configuration and when the network is up the main router for e...

Page 188: ...C for the ARP requests Therefore the stations will not sense any change neither in the configured DG nor in the MAC level VRRP has no provisions for routing data base synchronization among the redunda...

Page 189: ...ter ID ip vrrp preempt Set the primary address that shall be used as the source address of VRRP packets for the virtual router ID ip vrrp primary Accept or discard packets addressed to the IP address...

Page 190: ...on the DSCP 802 1p mapping configured by the user The C360 supports Access Control policy Access Control rules define how the C360 should handle routed packets There are three possible ways to handle...

Page 191: ...nal frame fields influence internal queues selection ip access list dscp trust Assign a name to a Policy List ip access list name Add the name of an owner to a Policy List ip access list owner Delete...

Page 192: ...configured access lists show ip access list summary Set the policy control source to either local or remote policy server set qos policy source Copy current policy and router configuration to the sta...

Page 193: ...k 149 49 0 0 rule 1 2 Assigning priority 3 to all TCP traffic going to the host 172 44 17 1 rule 2 3 Denying Telnet sessions originated by the host 192 168 5 33 rule 3 C360 1 super ip access list 100...

Page 194: ...h and fragment offset fields along with the more fragment and don t fragment flags in the IP header are used for IP fragmentation and reassembly IP Fragmentation works as follows 1 IP packet is divide...

Page 195: ...et the maximum number of seconds to reassemble a fragmented IP packet destined for the router fragment timeout Display information regarding fragmented IP packets that are destined for the router show...

Page 196: ...Avaya C360 Layer 3 Features 196 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Page 197: ...bes the C360 PWR PoE Power over Ethernet Features It provides the basic procedures for configuring the C360 for PoE operation It contains the following sections Load Detection Plug and Play Operation...

Page 198: ...eria see Load Detection so you can use it right out of the box The C360 PWR switches provide power over standard Category 3 and Category 5 cables Load Detection The C360 PWR switches periodically chec...

Page 199: ...cted Once power is provided to a port it is checked periodically to see if a PD is still connected If a PD is disconnected from a powered port then power is denied to the port Plug and Play Operation...

Page 200: ...arning Similarly if the power drops below the lower limit for a port power is denied to that port and an undercurrent warning is issued Priority Since the internal power supply may not be capable of d...

Page 201: ...ltra reliable Avaya network It provides power to IP telephones wireless network access devices and Web cameras Figure 31 Powered Ethernet Application Both the data and power paths from the C360 PWR to...

Page 202: ...circuitry reset stack and powerinline Enable the load detection process and power delivery for the port set port powerinline enable Disable the load detection process and power delivery for the port...

Page 203: ...ANs Viewing and editing Virtual LAN information Link Aggregation Groups LAGs Viewing and editing LAG information Port Redundancy Setting port redundancy for ports in a C360 Switch Port Mirroring Setti...

Page 204: ...ion of the Java plug in Configuring the Device Manager You can configure several Device Manager parameters using the CLI These parameters include the time out and retries parameters and the location o...

Page 205: ...xx xxx xxx xxx is the IP address of the Avaya C360 Device you want to manage The SNMP parameters dialog box opens Figure 32 SNMP parameters dialog box 3 For SNMPv1 login a enter the SNMP community str...

Page 206: ...Java plug in is installed on your computer the Java Plug in Security Warning dialog box opens after a few seconds Figure 33 Java Plug in Security Warning dialog box Click Yes If the required Java plu...

Page 207: ...unning the Device Manager Issue 1 June 2005 207 Figure 34 The Welcome Page 6 If you have the Java plug in installed the Device Manager should open in a new window see Figure 35 Figure 35 Device Manage...

Page 208: ...t installed automatically then you have three options for installing it manually Installing from the C360 Documentation and Utilities CD To install from the C360 documentation and Utilities CD 1 Close...

Page 209: ...n the first time the users tries to manage the device 1 Copy the emweb aux files directory from the Avaya C360 Documentation and Utilities CD to your local Web server Please refer to your Web server d...

Page 210: ...C360 Device Manager 210 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Page 211: ...Issue 2 July 2005 211 Section 4 Troubleshooting and Maintaining the Avaya C360...

Page 212: ...212 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Page 213: ...r cord is inserted correctly Replace the power cord If the cord is inserted correctly check that the AC power source is working by connecting a different device in place of the C360 If that device wor...

Page 214: ...Switch Inline power capacity exceeded PoE LED blinks Increase the priority of the PD port to High or Critical see page Move the PD to a higher numbered port Disconnect unnecessary PDs from the switch...

Page 215: ...inserted correctly Check that there are no cross corrections The pins on the Octaplane cable are bent or broken Replace the cable The socket on the stacking module is damaged Replace the stacking modu...

Page 216: ...gents in all modules start sending special packets of various length via all stacking cables to one another The Master module synchronizes this process and collects the results When the Redundant Cabl...

Page 217: ...ins a list of the CLI commands for the Stack Health feature The syntax and output examples are set out in detail in the Reference Guide for the Avaya C360 Converged Stackable Switch 10 300506 In order...

Page 218: ...Troubleshooting the Installation 218 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Page 219: ...nobs anti clockwise 3 Take hold of the two knobs one near each side of the front panel and pull gently but firmly towards yourself 4 Insert the new stacking module gently into the slot ensuring that t...

Page 220: ...CION El switch C360 y sus m dulos de ampliaci n contienen componentes sensibles a descargas electrost ticas Tocar las tarjetas sin autorizaci n del personal t cnico puede da arlas CAUTION CAUTION Do n...

Page 221: ...for the Avaya C360 Converged Stackable Switch 10 300506 for further information on the NVRAM initialization 4 The NVRAM initialization process starts When you receive a CLI message on to remove the mo...

Page 222: ...Maintenance 222 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Page 223: ...Avaya Integrated Management Suite Obtain Software Online You can obtain the firmware and C360 Device Manager from the Downloads section on the Avaya Support Site at http support avaya com Downloading...

Page 224: ...from memory Bank B to Bank A and download the new version to Bank B This process accomplishes the following prevents the device manager image file from being downloaded into Bank A by providing a non...

Page 225: ...G700 Media Gateway subject to certain limitations which are described in this appendix Please read the information carefully before creating mixed stacks Important Important You should update existing...

Page 226: ...ion of cables You may use the same Octaplane cables for stacking all the switches However the stacking modules are not interchangeable Please refer to Table 36 for information on which stacking module...

Page 227: ...for information on which stacking module to use Tip Tip Please refer to the appropriate documentation for further information Table 38 BUPS Compatibility Switch BUPS C360 APC 800 refer to Connecting...

Page 228: ...ML Notes SSH 1 You can open SSH sessions to the stack or Layer 3 interface You can access the G700 MGP after opening an SSH connection to the stack IP and then using the session command Logging 1 Even...

Page 229: ...33T PWR P332G ML and P332GT ML as follows Layer 3 VLANs 3 071 3 071 252 P332G ML and P332GT ML will only recognize the first 252 VLANs the others will not be used It is recommended not to define more...

Page 230: ...Mixed Stacks 230 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Page 231: ...vaya com Table 41 Configuration for ports connected to Avaya IP Telephones Parameter Value CLI command PVID Data VLAN set port vlan vlan_num module port Port tagging None i e not a trunk port set trun...

Page 232: ...Configuring C360 QoS for Avaya IP Telephones 232 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Page 233: ...rt Based Network Access Control 802 3z Gigabit Ethernet 802 3u Ethernet Fast Ethernet IETF Layer 2 RFC 1155 Structure and identification of management information for TCP IP based internets RFC 1157 S...

Page 234: ...dcasting Internet datagrams in the presence of subnets RFC 950 Internet Standard Subnetting Procedure RFC 951 Bootstrap Protocol RFC 1027 Using ARP to implement transparent subnet gateways RCF 1058 Ro...

Page 235: ...rt for groups 1 2 3 and 9 Statistics History Alarms Events SMON RFC 2613 support for groups Data Source Capabilities Port Copy VLAN and Priority Statistics Bridge MIB Groups RFC 2674 dot1dbase and dot...

Page 236: ...Standards and Compatibility 236 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Page 237: ...364T PWR 4 9 kg 10 8 lb 5 5 kg 12 1 lb 5 0 kg 11 lb 6 8 kg 15 lb C363T C363T PWR Input voltage 100 to 240 VAC 50 60 Hz 100 to 240 VAC 50 60 Hz Power dissipation 60 W max 420 W max AC Input current 1 3...

Page 238: ...60950 and IEC 60950 1 Laser components are Laser Class I approved EN 60825 IEC 825 for Europe FDA CFR 1040 for USA Branch Circuit Protection A UL Listed and CSA Certified 15A branch circuit protectiv...

Page 239: ...port connectors 2 x SFP GBIC connectors RS 232 for terminal setup via RJ 45 connector on front panel GBIC Transceivers LX Transceiver A 9 m or 10 m single mode fiber SMF cable may be connected to a 1...

Page 240: ...3V and Maximum Output Wattage of 4 dBm ELX Transceiver You may connect a 9 mm or 10 mm single mode fiber SMF cable to a 1000BASE ELX SFP GBIC port The fiber length should be between a minimum length...

Page 241: ...rminal using the supplied RJ 45 crossed cable and RJ 45 to DB 9 adapter Tip Tip Pin 1 of the Modem DB 25 connector is internally connected to Pin 7 GND C360 RJ 45 Pin Name DCE View Terminal DB 9 Pins...

Page 242: ...ations 242 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5 Ethernet VLANs Layer 23 071 Layer 3255 MAC addressesminimum 16k Priority queuing4 queues Multicast...

Page 243: ...h configuration settings 93 Client configuring Telnet support 111 Compatibility features in stacking different devices 228 hardware in stacking different devices 226 standards 233 Configurations switc...

Page 244: ...duplex half duplex 115 gigabit ethernet 114 MAC address 117 MAC aging 117 priority 116 speed 115 F Fast ethernet 114 Features layer 2 113 layer 2 ethernet 114 layer 2 IEEE 802 1x 126 layer 2 IP multi...

Page 245: ...assigning router parameters 170 fragmentation and reassembly 194 multicast filtering configuring with CLI 146 IP multicast filtering 144 J Java plug in installing 208 L Layer 2 and Layer 3 connection...

Page 246: ...9 PoE configuring with CLI 202 in converged networks 201 support 24 PoE features 197 load detection 198 plug and play 199 powering devices 200 Policy configuration 190 Port mirroring 151 configuring w...

Page 247: ...orted 233 IEEE 233 IETF layer 2 233 IETF layer 3 234 IETF network monitoring 235 Static routing configuration 177 Supported standards 233 Switch configuration basic 97 hardware configurations 27 Switc...

Page 248: ...248 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5 Index...

Reviews:

No comments

Related manuals for C360 Manager

Integrated Fiery Color Server

Brand: Xerox Pages: 24

CONTRIBUTE 3 - USING AND ADMINISTERING...

Brand: MACROMEDIA Pages: 256

COLDFUSION 5 - INSTALING AND CONFIGURING...

Brand: MACROMEDIA Pages: 160

ANTI-VIRUS - FOR MICROSOFT EXCHANGE

Brand: F-SECURE Pages: 115

Application Accelerator RAID Edition

Brand: Intel Pages: 85

15606-011408-9300 - MAP R6.3 UPG

Brand: Autodesk Pages: 208

Brand: McAfee Pages: 315

TIVOLI SC32-0129-00

Brand: IBM Pages: 82

REGISTRYBOOSTER 2010 - V1

Brand: UNIBLUE Pages: 11

Brand: NEC Pages: 57

Brand: Patton electronics Pages: 331

Netcool/OMNIbus Probe for Nortel CNM

Brand: IBM Pages: 34

Brand: Nav TV Pages: 9

Brand: Omron Pages: 2

TEMS VISUALIZATION 7.3 ENTERPRISE

Brand: ASCOM Pages: 8

Brand: Canon Pages: 168

Brand: Lenovo Pages: 116

Host Software Component 6.0

Brand: StorageTek Pages: 718

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands