Black Box LGB1002A-R2 User Manual Download Page 151 | Manualshive

Page: 151 / 318

background image

145

The Fig. 3-55 shows the procedure of 802.1X authentication. There are steps

for the login based on 802.1X port access control management. The protocol used
in the right side is EAPOL and the left side is EAP.

1.

At the initial stage, the supplicant A is unauthenticated and a port
on switch acting as an authenticator is in unauthorized state. So the
access is blocked in this stage.

2.

Initiating a session. Either authenticator or supplicant can initiate
the message exchange. If supplicant initiates the process, it sends
EAPOL-start packet to the authenticator PAE and authenticator will
immediately respond EAP-Request/Identity packet.

3. The

authenticator

always periodically sends EAP-Request/Identity

to the supplicant for requesting the identity it wants to be
authenticated.

4. If the authenticator doesn’t send EAP-Request/Identity, the

supplicant will initiate EAPOL-Start the process by sending to the
authenticator.

5.

And next, the Supplicant replies an EAP-Response/Identity to the
authenticator. The authenticator will embed the user ID into Radius-
Access-Request command and send it to the authentication server
for confirming its identity.

6.

After receiving the Radius-Access-Request, the authentication
server sends Radius-Access-Challenge to the supplicant for asking
for inputting user password via the authenticator PAE.

7.

The supplicant will convert user password into the credential
information, perhaps, in MD5 format and replies an EAP-Response
with this credential information as well as the specified
authentication algorithm (MD5 or OTP) to Authentication server via
the authenticator PAE. As per the value of the type field in message
PDU, the authentication server knows which algorithm should be
applied to authenticate the credential information, EAP-MD5
(Message Digest 5) or EAP-OTP (One Time Password) or other
else algorithm.

Supplicant A

B

C

Authentication server

Authenticator

Fig. 3-54

«
...
149
150
151
152
153
...
»

Summary of Contents for LGB1002A-R2

Page 1: ...i 16 Port 1000BASE TX L2 Plus Managed Ethernet Switch...

Page 2: ...LGB1002A R2 17 2 1 4 1 Configuring the Management Agent of LGB1002A R2 through the Serial RS 232 Port 17 2 1 4 2 Configuring the Management Agent of LGB1002A R2 through the Ethernet Port 19 2 1 5 IP...

Page 3: ...155 3 11 1 Port 156 3 11 2 Aggregator View 158 3 11 3 LACP System Priority 159 3 12 STP CONFIGURATION 160 3 12 1 STP STATUS 160 3 12 2 Configuration 162 3 12 3 STP Port Configuration 164 3 13 MSTP 167...

Page 4: ...OPERATION OF CLI MANAGEMENT 197 4 1 CLI MANAGEMENT 197 4 1 1 Login 197 4 2 COMMANDS OF CLI 199 4 2 1 Global Commands of CLI 200 4 2 2 Local Commands of CLI 206 5 MAINTENANCE 306 5 1 RESOLVING NO LINK...

Page 5: ...v Revision History Release Date Revision 0 91 2008 03 12 A1 0 95 2008 06 30 A2...

Page 6: ...s Commission FCC Statement This equipment has been tested and found to comply with the limits for a class A computing device pursuant to Subpart J of part 15 of FCC Rules which are designed to provide...

Page 7: ...ce and Ethernet ports step by step Many explanation in detail of hardware and software functions are shown as well as the examples of the operation for web based interface and command line interface C...

Page 8: ...for both metro LAN and office application In this switch Port 13 and Port 16 include two types of media TP and SFP Fiber LC BiDi LC this port supports 10 100 1000Mbps TP or 1000Mbps SFP Fiber with aut...

Page 9: ...mote Network Monitoring and is a branch of the SNMP MIB The device supports MIB 2 RFC 1213 Bridge MIB RFC 1493 RMON MIB RFC 1757 statistics Group 1 2 3 9 Ethernet like MIB RFC 1643 Ethernet MIB RFC 16...

Page 10: ...a multicast address group to which none of its other hosts belong sends unsolicited group membership reports to that group When the last of its hosts in a particular multicast group leaves the group...

Page 11: ...100 1000Mbps Auto negotiation Gigabit Ethernet TP ports 4 10 100 1000Mbps TP or 1000Mbps SFP Fiber dual media auto sense 1392KB on chip frame buffer Support jumbo frame up to 9600 bytes Programmable c...

Page 12: ...spanning tree 802 1w RSTP Supports multiple spanning tree 802 1s MSTP Supports 802 1X port security on a VLAN Supports IP MAC Port Binding for LAN security Supports user management and only first logi...

Page 13: ...ing on the left side of the panel contains a Power LED which indicates the power status and 16 ports working status of the switch One RS 232 DB 9 interface is offered for configuration or management F...

Page 14: ...1000Mbps Green Amber Lit green when 1000Mbps speed is active Lit ember when 100Mbps speed is active Off when 10Mbps speed is active 1000SX LX Gigabit Fiber Port 13 to 16 LED SFP LINK ACT Green Lit wh...

Page 15: ...SFP types provided for the switch 1000Mbps LC MM SFP Fiber transceiver 1000Mbps LC SM 10km SFP Fiber transceiver 1000Mbps LC SM 30km SFP Fiber transceiver 1000Mbps LC SM 50km SFP Fiber transceiver 100...

Page 16: ...sceivers to the LGB1002A R2 Note If you have no modules please skip this section Connecting the SFP Module to the Chassis The optional SFP modules are hot swappable so you can plug or unplug it before...

Page 17: ...eeded for each RJ 45 port to be connected to a Gigabit 10 100 1000 TP device Now you can start having the switch in operation Power On The switch supports 100 240 VAC 50 60 Hz power supply The power s...

Page 18: ...w the mounting accessory to the front side of the switch See Fig 2 2 Place the Chassis into the 19 inch wiring closet rail and locate it at the proper position Then fix the Chassis by screwing it 2 1...

Page 19: ...ector type there mainly are LC and BIDI LC Gigabit Fiber with multi mode LC SFP module Gigabit Fiber with single mode LC SFP module Gigabit Fiber with BiDi LC 1310nm SFP module Gigabit Fiber with BiDi...

Page 20: ...10 10 m TP to fiber Converter 56 Bit Time unit 1ns 1sec 1000 Mega bit Bit Time unit 0 01 s 1sec 100 Mega bit Table 2 2 Sum up all elements bit time delay and the overall bit time delay of wires device...

Page 21: ...ports both port based VLAN and tag based VLAN They are different in practical deployment especially in physical location The following diagram shows how it works and what the difference they are Case2...

Page 22: ...members but they could access VLAN4 members 3 VLAN3 members could not access VLAN1 VLAN2 and VLAN4 4 VLAN4 members could not access VLAN1 and VLAN3 members but they could access VLAN2 members Case3a...

Page 23: ...un a terminal emulator with the default setting of the switch s serial port With this you can communicate with the switch In the switch RS 232 interface only supports baud rate 115200 bps with 8 data...

Page 24: ...switch next to change the IP address of default gateway and subnet mask For example your network address is 10 1 1 0 and subnet mask is 255 255 255 0 You can change the switch s default IP address 192...

Page 25: ...Then follow the procedures listed below 1 Set up a physical path between the configured the switch and a PC by a qualified UTP Cat 5 cable with RJ 45 connector Note If PC directly connects to the swi...

Page 26: ...predefined address classes or categories Each class has its own network range between the network identifier and host identifier in the 32 bits address Each IP address comprises two parts network iden...

Page 27: ...ute and 127 0 0 0 8 is reserved for loopback function 0 Class B IP address range between 128 0 0 0 and 191 255 255 255 Each class B network has a 16 bit network prefix followed 16 bit host address The...

Page 28: ...may have a subnet mask 255 255 0 0 in default in which the first two bytes is with all 1s This means more than 60 thousands of nodes in flat IP address will be at the same network It s too large to m...

Page 29: ...2 510 22 1024 1022 21 2048 2046 20 4096 4094 19 8192 8190 18 16384 16382 17 32768 32766 16 65536 65534 Table 2 4 According to the scheme above a subnet mask 255 255 255 0 will partition a network with...

Page 30: ...e switch Use the same network address and append your host address to it Fig 2 12 First IP Address as shown in the Fig 2 12 enter 192 168 1 1 for instance For sure an IP address such as 192 168 1 x mu...

Page 31: ...lease refer to Appendix A The switch is suitable for the following applications Central Site Remote site application is used in carrier or ISP See Fig 2 13 Peer to peer application is used in two remo...

Page 32: ...26 Fig 2 15 Office Network Connection Fig 2 14 Peer to peer Network Connection...

Page 33: ...sword then click the Login button The login process now is completed Just click the link of Forget Password in WebUI See Fig 3 1 or input Ctrl Z in CLI s login screen See Fig 4 1 4 2 in case the user...

Page 34: ...above Netscape V7 1 above or FireFox V1 00 above and have the resolution 1024x768 The switch supported neutral web browser interface In Fig 3 2 for example left section is the whole function tree wit...

Page 35: ...th this information you will know the software version used MAC address serial number how many ports good and so on This is helpful while malfunctioning Fig 3 2 The Information of Page Layout On the t...

Page 36: ...ving If you do not choose any selection in Auto Logout list it means you turn on the Auto Logout function and the system will be logged out automatically when no action on the device 3 minutes later I...

Page 37: ...31 Port MAC QoS System VLAN GVRP SNMP ACL Root IP MAC Binding 802 1X Trunk STP MSTP Mirroring IGMP Alam Save Restore Export Import Diagnostics Maintenance Logout...

Page 38: ...the device s user interface or SNMP Device name The name of the switch User defined Default is LGB1002A R2 System up time The time accumulated since this switch is powered up Its format is day hour mi...

Page 39: ...AC address It is the Ethernet MAC address of the management agent in this switch Device Port Show all types and numbers of the port in the switch RAM size The size of the DRAM in this switch Flash siz...

Page 40: ...the administrator equivalent identity Guest equivalent identity can modify his password only Please note that you must confirm administrator guest identity in the field of Authorization in advance be...

Page 41: ...just the time manually Filling the valid figures in the fields of Year Month Day Hour Minute and Second respectively and press Apply button time is adjusted The valid figures for the parameter Year Mo...

Page 42: ...e zero for this parameter means it need not have to adjust current time equivalent to in act daylight saving You don t have to set the starting ending date as well If you set daylight saving to be non...

Page 43: ...37 Fig 3 6...

Page 44: ...arameter description DHCP Setting DHCP is the abbreviation of Dynamic Host Configuration Protocol Here DHCP means a switch to turn ON or OFF the function The switch supports DHCP client used to get an...

Page 45: ...Network address Subnet mask number and host address It is shown in the following figure This reduces the total IP number of a network able to support by the amount of 2 power of the bit number of sub...

Page 46: ...specify a DNS IP address for the switch With this the switch can translate a mnemonic name address into an IP address There are two ways to specify the IP address of DNS One is fixed mode which manual...

Page 47: ...Function name Loop Detection Function description Display whether switch open Loop detection Parameter description Port No Display the port number The number is 1 16 Detection Port Enable When Port No...

Page 48: ...inside of the accepting range Accept Deny Accept Deny Accept Rule 3 When only deny lists exist then it will accept all connections excluding the connection inside of the denying range Deny Accept Den...

Page 49: ...r example we can decide that which VLAN VID is able to be accepted or denied by the switch the IP range of the user could be accepted or denied by the switch the port that the user is allowed or not a...

Page 50: ...anaged valid Port Range including Any and Custom Default is Any You can select the ports that you would like them to be worked and restricted in the management security configuration if Custom had bee...

Page 51: ...the same window without the login of these device The most top left button is only for Master device See Fig 3 9 The background color of the button you press will be changed to represent that the devi...

Page 52: ...ble Role The role that the switch would like to play in virtual stack Two types of roles including master and slave are offered for option Default is Master Group ID It is the group identifier GID whi...

Page 53: ...ystem Log Function description The Trap Log Data is displaying the log items including all SNMP Private Trap events SNMP Public traps and user logs occurred in the system In the report table No Time a...

Page 54: ...nd management Each of them will be described in detail orderly in the following sections 3 2 1 Port Configuration Port Configuration is applied to change the setting of each port In this configuration...

Page 55: ...Disable If flow control is set Enable both parties can send PAUSE frame to the transmitting device s if the receiving port is too busy to handle When it is set Disable there will be no flow control in...

Page 56: ...ort the latest updated status of all ports in this switch When any one of the ports in the switch changes its parameter displayed in the page it will be automatically refreshed the port current status...

Page 57: ...local port has to be preset its capability Default None depends on the result of the negotiation Flow Control Show each port s flow control status There are two types of flow control in Ethernet Backp...

Page 58: ...facturer s OUI code which is assigned by IEEE Vendor Name Display the company name of the module manufacturer Vendor P N Display the product name of the naming by module manufacturer Vendor Rev Revisi...

Page 59: ...reset and restart counting The data is updated every time interval defined by the user The Refresh Interval is used to set the update frequency Fig 3 15 Function name Simple Counter Function descripti...

Page 60: ...ansmitted drop Receive Number of packets received drop Auto refresh The simple counts will be refreshed automatically on the UI screen Refresh The simple counts will be refreshed manually when user us...

Page 61: ...e counting is overflow the counter will be reset and restart counting The data is updated every time interval defined by the user The valid range is 3 to 10 seconds The Refresh Interval is used to set...

Page 62: ...g number of the transmitted multicast packet Rx 64 Bytes Number of 64 byte frames in good and bad packets received Rx 65 127 Bytes Number of 65 126 byte frames in good and bad packets received Rx 128...

Page 63: ...ytes with invalid CRC Rx Jabber Number of long frames according tomax_length register with invalid CRC Rx Drops Frames dropped due to the lack of receiving buffer Rx Errors Number of the error packet...

Page 64: ...ased VLAN will be accepted No filtering criterion applies in port based VLAN The only criterion is the physical port you connect to For example for a port based VLAN named PVLAN 1 contains port member...

Page 65: ...ces The system acts as a proxy for its hosts This switch can be set IGMP function Enable or Disable by VLAN group If the VLAN group IGMP proxy is disabled the switch will stop the exchange of IGMP mes...

Page 66: ...y button to have the setting taken effect Fig 3 19 Delete Group Just press the Delete button to remove the selected group entry from the Tag based group table Fig 3 20 Note If you need use PVLAN Priva...

Page 67: ...61 c You need to assign these ports for member of port isolation d Press the Save to complete the PVLAN configuration process...

Page 68: ...AN Name The name defined by administrator is associated with a VLAN group Valid letters are A Z a z 0 9 and _ characters The maximal length is 15 characters Member Port This is used to enable or disab...

Page 69: ...63 Delete Group Just press the Delete button to remove the selected group entry from the Port based group table Fig 3 23...

Page 70: ...packets Tagged Forward tagged packets only and discard untagged packets PVID This PVID range will be 1 4094 Before you set a number x as PVID you have to create a Tag based VLAN with VID x For exampl...

Page 71: ...65 Fig 3 24...

Page 72: ...66 3 3 5 Management Function name Management Function description To assign a specific VLAN for management purpose Parameter description VID Specific Management VLAN ID Fig 3 25...

Page 73: ...dress Age out Time will be removed from the MAC Table The range of Age out Time is 10 1000000 seconds and the setup of this time will have no effect on static MAC addresses In addition the learning li...

Page 74: ...is port MAC address dynamic learning mechanism only support static MAC address setting Secure Disable this port MAC address dynamic learning mechanism and copy the dynamic learning packets to CPU Save...

Page 75: ...the table by filling in MAC Address VID VLAN ID and Alias fields individually User also can delete the existed entry by clicking Delete button Fig 3 27 Parameter description MAC It is a six byte long...

Page 76: ...MAC address will be forwarded to this port For adding a MAC address entry in the allowed table you just need to fill in four parameters MAC address associated port VID and Alias Just select the existe...

Page 77: ...lias Edit and MAC Alias Delete You can click Create Edit button to add modify a new or an existed alias name for a specified MAC address or mark an existed entry to delete it Alias name must be compos...

Page 78: ...VLAN identifier This will be filled only when tagged VLAN is applied Valid range is 1 4094 MAC address Display the MAC address of one entry you selected from the searched MAC entries table Port The po...

Page 79: ...ion and GIP GVRP state machine maintain the contents of Dynamic VLAN Registration Entries for each VLAN and propagate these information to other GVRP aware devices to setup and update their knowledge...

Page 80: ...ipant There are two modes normal participant and non participant provided for the user s choice Normal It is Normal Participant In this mode the switch participates normally in GARP protocol exchanges...

Page 81: ...e Disabled In this mode the switch dynamic VLAN will be created when this port received GVRP PDU The default setting is Normal Enabled In this mode the switch does not create dynamic VLAN when this po...

Page 82: ...d GARP BPDU is received by the GARP application LeaveAll Message Packets Number of GARP BPDU with Leave All message is received by the GARP application JoinEmpty Message Packets Number of GARP BPDU wi...

Page 83: ...mitted by the GARP application JoinEmpty Message Packets Number of GARP BPDU with Join Empty message is transmitted by the GARP application JoinIn Message Packets Number of GARP BPDU with Join In mess...

Page 84: ...escription VID VLAN identifier When GVRP group creates each dynamic VLAN group owns its VID Valid range is 1 4094 Member Port Those are the members belonging to the same dynamic VLAN group Edit Admini...

Page 85: ...uling and congestion control guarantees to the frame according to what was configured for that specific QoS class The switch support advanced memory control mechanisms providing excellent performance...

Page 86: ...S behavior User priority The user priority value 0 7 3 bits is used as an index to the eight QoS class values for VLAN tagged or priority tagged frames Queuing Mode There are two Scheduling Method Str...

Page 87: ...ueues per port with strict or weighted fair queuing scheduling There are 24 QoS Control Lists QCL for advance programmable QoS classification based on IEEE 802 1p Ether Type VID IPv4 IPv6 DSCP and UDP...

Page 88: ...to the bottom of the list for a match The first matching QCE determines the QoS classification of the frame The QCE ordering is therefore important for the resulting QoS classification algorithm If n...

Page 89: ...83 Fig 3 39 Fig 3 40 Fig 3 41...

Page 90: ...otocols already assigned EtherType values The commonly used values in the EtherType field and corresponding protocols are listed below Ethertype Hexadecimal Protocol 0x0800 IP Internet Protocol 0x0801...

Page 91: ...80B PPP Point to Point Protocol 0x 880C GSMP General Switch Management Protocol 0x8847 MPLS Multi Protocol Label Switching unicast 0x8848 MPLS Multi Protocol Label Switching multicast 0x8863 PPPoE PPP...

Page 92: ...u can refer to following UDP TCP port numbers information http www iana org assignments port numbers UDP TCP Port No The configurable specific port value 0 65535 DSCP Value The configurable DSCP value...

Page 93: ...ndwidth of received and transmitted frames Ingress policer or egress shaper operation is controlled per port in the Rate Limit Configuration Fig 3 43 Parameter description Port Port number Policer Ena...

Page 94: ...e limit kbps Mbps Shaper Enabled Shaper enabled to limit egress bandwidth by shaper rate Shaper Rate The configurable shaper rate range 500 Kbps 1000000 Kbps 1 Mbps 1000 Mbps Shaper Unit There are two...

Page 95: ...to prevent storm event happen Fig 3 44 Parameter description Frame Type There three frame types of storm can be controlled Flooded unicast Multicast Broadcast Status Enable Disable Selection means ena...

Page 96: ...r can apply these application easily Fig 3 45 Parameter description Please select an Action User need to select one of action from following items then click on Next to finish QCL configuration Set up...

Page 97: ...16 Fig 3 47 Set up Port Policies Parameter description Wizard Again Click on the Wizard Again back to QCL Configuration Wizard Finish When you click on Finish the parameters will be set according to t...

Page 98: ...92 Fig 3 48 Set up Port Policies Finish Fig 3 49 Set up Typical Network Application Rules Fig 3 50 Set up Typical Network Application Rules...

Page 99: ...udio Games Blizzard Battlenet Diablo2 and StarCraft Fighter Ace II Quake2 Quake3 MSN Game Zone User Definition Ethernet Type VLAN ID UDP TCP Port DSCP Ethernet Type Value Type Range 0x600 0xFFFF VLAN...

Page 100: ...g 3 52 Set up Typical Network Application Rules Parameter description QCL ID QCL ID Range 1 24 Traffic Class There are four classes Low Normal Medium High Fig 3 53 Set up Typical Network Application R...

Page 101: ...95 Fig 3 54 Set up Typical Network Application Rules Finish Fig 3 55 Set up Typical Network Application Rules Finish...

Page 102: ...96 Fig 3 56 Set up Typical Network Application Rules Finish Parameter description QCL QoS Control List QCL 1 24 Fig 3 57 Set up TOS Precedence Mapping...

Page 103: ...97 Parameter description QCL ID QoS Control List QCL 1 24 TOS Precedence 0 7 Class Low Normal Medium High Fig 3 58 Set up TOS Precedence Mapping Fig 3 59 Set up TOS Precedence Mapping Finish...

Page 104: ...98 Fig 3 60 Set up VLAN Tag Priority Mapping Parameter description QCL ID QoS Control List QCL 1 24 Tag Priority 0 7 Class Low Normal Medium High Fig 3 61 Set up VLAN Tag Priority Mapping...

Page 105: ...99 Fig 3 62 Set up VLAN Tag Priority Mapping Finish...

Page 106: ...unity name trap host and public traps as well as the throttle of SNMP A SNMP manager must pass the authentication by identifying both community names then it can access the MIB information of the targ...

Page 107: ...with SNMP manager receiving the trap message from the managed switch with SNMP agent issuing the trap message 6 trap hosts can prevent the important trap message from losing For each public trap the...

Page 108: ...ach policy can be applied to any port This makes it very easy to determine what type of ACL policy you will be working with 3 8 1 Ports Function name ACL Port Configuration Function description The sw...

Page 109: ...Range 1 16 To select one of rate limiter ID for this port it will limit met ACL packets by rate limiter ID configuration Port Copy Disabled Disable to copy the met ACL packets to specific port Port n...

Page 110: ...tion There are 16 rate limiter ID You can assign one of the limiter ID for each port The rate limit configuration unit is Packet Per Second pps Fig 3 Parameter description Rate Limiter ID ID Range 1 1...

Page 111: ...port There are 8 policies each port can select one of policy then decides which of the Permit Deny Rate Limitation and Port Copy actions would take according to the ACL configuration packet s IPv4 Et...

Page 112: ...description Frame Type Range Any Ethernet Type ARP IPv4 Any It is including all frame type Ethernet Type It is including all Ethernet frame type ARP It is including all ARP protocol frame type IPv4 I...

Page 113: ...107 Fig 3 69 Frame Type Fig 3 70...

Page 114: ...108 Fig 3 71 Fig 3 72 Fig 3 73 ARP...

Page 115: ...109 Fig 3 74 ARP Fig 3 75 ARP Fig 3 76 ARP Fig 3 77 ARP...

Page 116: ...110 Fig 3 78 ARP Fig 3 79 ARP Fig 3 80 ARP Fig 3 81 ARP...

Page 117: ...111 Fig 3 83 ARP Fig 3 84 ARP Fig 3 85 ARP Fig 3 86 ARP Fig 3 87 ARP...

Page 118: ...112 Fig 3 88 IPv4 Fig 3 89 IPv4 Fig 3 90 IPv4...

Page 119: ...113 Fig 3 91 IPv4 Fig 3 92 IPv4 Fig 3 93 IPv4 Fig 3 94 IPv4 Fig 3 95 IPv4...

Page 120: ...114 Fig 3 96 IPv4 Fig 3 97 IPv4 Fig 3 98 IPv4 Fig 3 99 IPv4 Fig 3 100 IPv4...

Page 121: ...115 Fig 3 101 IPv4 Fig 3 102 IPv4 Fig 3 103 IPv4...

Page 122: ...116 Fig 3 104 IPv4 Fig 3 105 IPv4 Fig 3 106 IPv4...

Page 123: ...117 Fig 3 107 IPv4 Fig 3 108 IPv4 Fig 3 109 IPv4...

Page 124: ...118 Fig 3 110 IPv4 Fig 3 111 IPv4 Fig 3 112 IPv4...

Page 125: ...119 Fig 3 113 IPv4 Fig 3 114 IPv4 Fig 3 115 IPv4...

Page 126: ...120 Fig 3 116 IPv4 Fig 3 117 IPv4 Fig 3 118 Action...

Page 127: ...121 Fig 3 119 Rate Limiter Fig 3 120 Port Copy...

Page 128: ...122 Fig 3 121 DMAC Filter Fig 3 122 VLAN ID Filter Fig 3 123 VLAN ID Filter...

Page 129: ...ions would take according to the ACL configuration packet s IPv4 EtherType ARP Protocol MAC Parameters and VLAN parameters Parameter description Ingress Port Range Any Policy 1 8 Port 1 16 Any Apply t...

Page 130: ...ccording to DMAC Value specific the destination MAC address MAC Parameters When Frame Type ARP SMAC Filter Range Any Specific Any It is including all source MAC address Specific It is according to SMA...

Page 131: ...e Any Host Network Any Including all sender IP address Host Only one specific sender host IP address Network A specific IP subnet segment under the sender IP mask Sender IP Address Default 192 168 1 1...

Page 132: ...x6 and the Protocol size is 0x4 IP Range Any 0 1 Any Both 0 and 1 0 The ingress ARP PARP frames where Protocol type is not equal 0x800 1 The ingress ARP PARP frames where Protocol type is equal 0x800...

Page 133: ...very datagram specifies an options field Range Any Yes No Any Including all IP option case Yes The ingress frame is specified IP options No The ingress frame is not specified IP options SIP Filter SIP...

Page 134: ...Any Including all UDP source ports Specific According to following Source Port No setting for ingress classification Range According to following Source Port Range setting for ingress classification...

Page 135: ...ng to following Dest Port No setting for ingress classification Range According to following Dest Port Range setting for ingress classification Dest Port No Range 0 65535 Dest Port Range Range 0 65535...

Page 136: ...all TCP URG case 0 The TCP control bit URG is 0 1 The TCP control bit URG is 1 IP Protocol Value The IP Protocol Value is TCP options may occupy space at the end of the TCP header and are a multiple o...

Page 137: ...rity restrictions route recording and source routing Not every datagram specifies an options field Range Any Yes No Any Including all IP option case Yes The ingress frame is specified IP options No Th...

Page 138: ...ve ACL ingress classification rule you can do the following actions Action Range Permit Deny Permit Permit the met ACL ingress classification rule packets forwarding to other ports on the switch Deny...

Page 139: ...t up Source MAC and Source IP Binding Next Click on Next to confirm current setting and go to next step automatically Cancel Cancel current setting back to top layer in the ACL wizard function Back Cl...

Page 140: ...134 Fig 3 126 Set up Policy Rules Fig 3 127 Set up Policy Rules Fig 3 128 Set up Policy Rules...

Page 141: ...135 Fig 3 129 Set up Policy Rules Finish Fig 3 130 Set up Port Policies Fig 3 131 Set up Port Policies...

Page 142: ...136 Fig 3 132 Set up Port Policies Fig 3 133 Set up Port Policies Finish Fig 3 134 Set up Typical Network Application Rules...

Page 143: ...137 Fig 3 135 Set up Typical Network Application Rules Fig 3 136 Set up Typical Network Application Rules Fig 3 137 Set up Typical Network Application Rules...

Page 144: ...MAP NFS POP3 SAMBA SMTP TELNET TFTP Instant Messaging Google Talk MSN Messenger Yahoo Messenger User Definition Ethernet Type UDP Port TCP Port Others TCP Port ICMP Multicast IP Stream NetBIOS Ping Re...

Page 145: ...139 Fig 3 139 Set up Source MAC and Source IP Binding Fig 3 140 Set up Source MAC and Source IP Binding Fig 3 141 Set up Source MAC and Source IP Binding...

Page 146: ...eter description Port 1 16 Binding Enabled Use the switch ACL function to support IP MAC Binding function the maximum is up to 128 entries Source MAC Address xx xx xx xx xx xx For example 00 40 c7 00...

Page 147: ...acket Function name IP MAC Binding Configuration Function description The switch has client and server two classes of IP MAC Binding table The maximum number of IP MAC binding client table is 512 entr...

Page 148: ...xxx xxx xxx For example 192 168 1 100 Port No Port no 1 16 VID VLAN ID 1 4094 Add Input MAC IP Port and VID then click on Add to create a new entry into the IP MAC Binding table Delete Select one of e...

Page 149: ...nt It is an entity being authenticated by an authenticator It is used to communicate with the Authenticator PAE Port Access Entity by exchanging the authentication message when the Authenticator PAE r...

Page 150: ...d C is in the internal network D is Authentication server running RADIUS switch at the central location acts Authenticator connecting to PC A and A is a PC outside the controlled port running Supplica...

Page 151: ...ill initiate EAPOL Start the process by sending to the authenticator 5 And next the Supplicant replies an EAP Response Identity to the authenticator The authenticator will embed the user ID into Radiu...

Page 152: ...ll send an EAP Failure to the supplicant This means the supplicant is failed to authenticate The port it connected is in the unauthorized state the supplicant and the devices connected to this port wo...

Page 153: ...port control state set in 802 1X port setting Here Entry Authorized means MAC entry is authorized Port Mode Port Control Authentication Port Status Disable Don t Care Don t Care Port Uncontrolled Mult...

Page 154: ...Server IP address for authentication Default 192 168 1 1 UDP Port Default port number is 1812 Secret Key The secret key between authentication server and authenticator It is a string with the length 1...

Page 155: ...key between authentication server and authenticator It is a string with the length 1 31 characters The character string may contain upper case lower case and 0 9 It is character sense It is not allowe...

Page 156: ...ort number to be selected for configuring its associated 802 1X parameters which are Port control reAuthMax txPeriod Quiet Period reAuthEnabled reAuthPeriod max Request suppTimeout serverTimeout and C...

Page 157: ...s set to be in authorized state or unauthorized state depends on the result of the authentication exchange between the authentication server and the supplicant Default Auto reAuthMax 1 10 The number o...

Page 158: ...out condition in the exchange between the authenticator and the supplicant The valid range 1 65535 Default 30 seconds serverTimeout 1 65535 s A timeout condition in the exchange between the authentica...

Page 159: ...X authentication current operating mode and status Fig 3 146 Parameter description Port Port number 1 16 Mode Show this port IEEE 802 1X operating mode There are four modes Disable Normal Advance and...

Page 160: ...ters for manager monitoring authenticator status Fig 3 147 Parameter description Port Port Number 1 16 Auto refresh Refresh the authenticator counters in the web UI automatically Refresh Click on the...

Page 161: ...non IEEE 802 3 MAC link Operating in half duplex mode Aggregate the ports with different data rates Static Trunk Ports using Static Trunk as their trunk method can choose their unique Static GroupID a...

Page 162: ...tically set to use the None trunking method and its Group ID will turn to 0 This means the port won t aggregate with other ports b 14 ports all use LACP Trunk Group ID 1 at most 12 ports can aggregate...

Page 163: ...s LACP Active An Active LACP port begins to send LACPDU to its link partner right after the LACP protocol entity started to take control of this port Passive A Passive LACP port will not actively send...

Page 164: ...ameter description Aggregator It shows the aggregator ID from 1 to 16 of every port In fact every port is also an aggregator and its own aggregator ID is the same as its own Port No Method Show the me...

Page 165: ...partners are all on a single system Each system supports LACP will be assigned a globally unique System Identifier for this purpose A system ID is a 64 bit field comprising a 48 bit MAC Address and 16...

Page 166: ...single active path on the network 3 12 1 STP Status Function name STP Status Function description In the Spanning Tree Status user can read 12 parameters to know STP current status The 12 parameters d...

Page 167: ...me is set by root The Forward Delay time is defined as the time spent from Listening state moved to Learning state or from Learning state moved to Forwarding state of a port in bridge Hello Time Show...

Page 168: ...s Disable Fig 3 152 Parameter description Spanning Tree Protocol Set 802 1W Rapid STP function Enable Disable Default is Disable Bridge Priority The lower the bridge priority is the higher priority it...

Page 169: ...conds Forward Delay You can set the root bridge forward delay time This figure is set by root bridge only The forward delay time is defined as the time spent from Listening state moved to Learning sta...

Page 170: ...us It displays the current state of a port We cannot manually set it because it displays the status only There are three possible states according to 802 1w specification DISCARDING state indicates th...

Page 171: ...ort An Edge Port is a port connected to a device that knows nothing about STP or RSTP Usually the connected device is an end station Edge Ports will immediately transit to forwarding state and skip th...

Page 172: ...False fast transition to Forwarding state will not happen on this port Default Auto M Check Migration Check It forces the port sending out an RSTP BPDU instead of a legacy STP BPDU at the next transmi...

Page 173: ...nment can ensure a loop free data path for a group of vlans within an MSTI Redundant path and load balancing in vlan environment is also achieved via this feature A spanning tree instance called CIST...

Page 174: ...a MSTP bridge Bridges participating in a common MST region must have the same Region Name and Revision Level Fig 3 155 Parameter description Region Name 0 32 characters A variable length text string...

Page 175: ...n Instance ID Every spanning tree instance need to have a unique instance ID within 0 4095 Instance 0 CIST always exists and can not be deleted Additional spanning instances MSTIs can be added or dele...

Page 176: ...ormance parameters per instance per port Instance Status Fig 3 160 To show the status report of a particular spanning tree instance Port Status Fig 3 161 To show the status report of all ports regardi...

Page 177: ...Hops 6 40sec It s a new parameter for the multiple spanning tree protocol It is used in the internal spanning tree instances CIST Remaining Hops or MSTI Remaining Hops in the Spanning tree protocol m...

Page 178: ...on as in the RSTP specification for the CIST ports Restricted Role Yes No If Yes causes the Port not to be selected as Root Port for the CIST or any MSTI even it has the best spanning tree priority ve...

Page 179: ...attached LANs transitions frequently Mcheck The same definition as in the RSTP specification for the CIST ports Fig 3 160 Instance Status Parameter description MSTP State MSTP protocol is Enable or D...

Page 180: ...regarded as a common RSTP bridge The IST Internal Spanning Tree and MSTIs are transparent to bridges outside this region CIST REGIONAL ROOT MAC Mac Address of the CIST regional root bridge CIST INTERN...

Page 181: ...backup port ROOT root port DSGN designated port MSTR master port The last 3 are possible port roles for a port to transit to FORWARDING state Path Cost Display currently resolved port path cost value...

Page 182: ...176 Whether or not a port is a Point to Point Port in reality Restricted Role Same as mentioned in Port Config Restricted Tcn Same as mentioned in Port Config...

Page 183: ...onitored Port respectively thus the traffic received by Port B will be copied to Port A for monitoring Note When configure the mirror function you should avoid setting a port to be a sniffer port and...

Page 184: ...able The source enable means the monitored port ingress traffic will be copied to monitoring port Destination Enable The destination enable means the monitored port egress traffic will be copied to mo...

Page 185: ...ost can update the information of the Multicast table when a member port joins or leaves an IP Multicast Destination Address With this function once a switch receives an IP multicast packet it will fo...

Page 186: ...message to update the database of the Multicast table By the way this also reduces the unnecessary multicast traffic Passive In Passive Snooping mode the IGMP snooping will not periodically poll the h...

Page 187: ...f options for managed valid VLAN VID including Any and Custom Default is Any When you choose Custom you can fill in VID number The valid VID range is 1 4094 Port The switch supports two kinds of optio...

Page 188: ...rap The message will be sent while users tick the trap event individually on the web page shown as below Parameter description Trap Cold Start Warm Start Link Down Link Up Authentication Failure User...

Page 189: ...Then user can read the trap information from the email or the mobile phone This function provides 6 email addresses and 6 mobile phone numbers at most The 24 different trap events will be sent out to...

Page 190: ...erver Password your password on the mail server Email Address 1 6 email address that would like to receive the alarm message SMS SMS Server the IP address of the server transferring your SMS Username...

Page 191: ...from rogue DHCP servers or other devices which send port related information to a DHCP server This information can be useful in tracking an IP address back to a physical port Fig 3 17 1 DHCP Snooping...

Page 192: ...received all DHCP packets are forwarded for a trusted por It set a trust port 1 available port from 0 to 24 0 is disabled Trust port 2 It set a trust port 2 available port from 0 to 24 0 is disabled...

Page 193: ...gnizable type it is dropped If a DHCP packet from a client passes the filtering criteria above it will only be forwarded to trusted ports in the same VLAN If a DHCP packet is from server is received o...

Page 194: ...ing current IP address the IP address will keep the same one that you had saved before by performing this function Working Configuration It is the configuration you are using currently and can be chan...

Page 195: ...rent configuration as a user configuration file in flash memory Fig 3 169 3 18 4 Restore User Function name Restore User Configuration Function description Restore User Configuration function can retr...

Page 196: ...190 Fig 3 170...

Page 197: ...As User via TFTP Fig 3 171 Parameter description Export File Path Export Start Export Save As Start s config file stored in the flash Export User Conf Export Save As User s config file stored in the...

Page 198: ...scribed in detail orderly in the following sections 3 20 1 Diag Function name Diagnostics Function description Diagnostics function provides a set of basic system diagnosis It let users know that whet...

Page 199: ...know that if the target device is available or not You can simply fill in a known IP address and then click Ping button After a few seconds later the switch will report you the pinged device is alive...

Page 200: ...g Note If a link is established on the twisted pair interface in 1000BASE T mode VeriPHY can run without disruption of the link or disruption of any data transfer However if a link is established in 1...

Page 201: ...tware changing IP configuration or changing VLAN mode configuration then you must reboot to have the new configuration taken effect Here we are discussing is software reset for the reboot in the main...

Page 202: ...on name Logout Function description The switch allows you to logout the system to prevent other users from the system without the permission If you do not logout and exit the browser the switch will a...

Page 203: ...s Menu configure the parameters as below see the next section Baud rate 115200 Stop bits 1 Data bits 8 Parity N Flow control none 4 1 1 Login The command line interface CLI is a text based interface U...

Page 204: ...198 Fig 4 1 Fig 4 2 LGB1002A R2 LGB1002A R2 LGB1002A R2 LGB1002A R2...

Page 205: ...logout save start save user restore default and restore user For more details please refer to Section 4 2 1 Command instructions reside in the corresponding modes are local commands The same command...

Page 206: ...gument None Possible value None Example LGB1002A R2 alarm LGB1002A R2 alarm events LGB1002A R2 alarm events end LGB1002A R2 exit Syntax exit Description Back to the previous mode When you enter this c...

Page 207: ...GB1002A R2 ip LGB1002A R2 ip help Commands available Local commands set ip Set ip subnet mask and gateway set dns Set dns enable dhcp Enable DHCP and set dns auto or manual disable dhcp Disable DHCP s...

Page 208: ...ords up to 256 If optional argument is given the CLI would only show the last numbers of records given by the argument Argument show last number of history records optional Possible value 1 2 3 256 Ex...

Page 209: ...re the default IP address y n If you choose Y or y the IP address will restore to default 192 168 1 1 If you choose N or n the IP address will keep the same one that you had saved before If restoring...

Page 210: ...re startup configuration would replace as user defined one Argument None Possible value None Example LGB1002A R2 restore user Restoring Restore User Configuration Successfully Press any key to reboot...

Page 211: ...on as the user defined configuration When you enter this command the CLI would save your current configuration into the non volatile FLASH as user defined configuration Argument None Possible value No...

Page 212: ...le from 1 to 16 times max times range 1 10 Possible value port range 1 to 16 times 1 10 default is 2 Example LGB1002A R2 802 1X set max request 2 2 set mode Syntax set mode port range mode Description...

Page 213: ...ate machine to define periods of time during when it will not attempt to acquire a Supplicant Argument port range syntax 1 5 7 available from 1 to 16 sec timer range 0 65535 Possible value port range...

Page 214: ...vailable from 1 to 16 sec timer range 1 65535 Possible value port range 1 to 16 sec 1 65535 default is 3600 Example LGB1002A R2 802 1X set reAuthPeriod 2 3600 set serverTimeout Syntax set serverTimeou...

Page 215: ...imeout conditions in the exchanges between the Authenticator and the Supplicant or Authentication Server The initial value of this timer is either suppTimeout or serverTimeout as determined by the ope...

Page 216: ...Multi host 3 Disable 4 Disable 5 Disable 6 Disable show parameter Syntax show parameter Description To display the parameter settings of each port Argument None Possible value None Example LGB1002A R2...

Page 217: ...hentication status of each port Argument None Possible value None Example LGB1002A R2 802 1X show security Port Mode Status 1 Disable 2 Multi host Unauthorized 3 Disable 4 Disable 5 Disable 6 Disable...

Page 218: ...y source ip any destination ip any ARP flag ARP SMAC Match any RARP DMAC Match any IP Ethernet Length any IP any Ethernet any action 1 rate limiter 0 copy port 0 action Syntax action port permit deny...

Page 219: ...2A R2 acl delete Syntax delete index Description To delete the ACE Access Control Entry configuration on the switch Argument index the access control rule index value Possible value None Example LGB10...

Page 220: ...2000 1024000 Possible value id 1 16 rate 1 2 4 8 16 32 64 128 256 512 1000 2000 4000 8000 16000 32000 64000 128000 256000 512000 1024000 Example LGB1002A R2 acl ratelimiter 3 16000 LGB1002A R2 acl set...

Page 221: ...imiter port copy Description To set access control entry on switch Argument Possible value Example show Syntax show Description To show all access control entry setting on switch Argument none Possibl...

Page 222: ...ccessfully LGB1002A R2 account del Syntax del name Description To delete an existing account Argument name existing user account Possible value None Example LGB1002A R2 account del aaaaa Account aaaaa...

Page 223: ...ssword changed successfully show Syntax show Description To show system account including account name and identity Argument None Possible value None Example LGB1002A R2 account show Account Name Iden...

Page 224: ...user Syntax del server user Description To remove the configuration of server user account and password Argument None Possible value None Example LGB1002A R2 alarm email del server user set mail addr...

Page 225: ...et up the account and password of the email server Argument username email server account and password Possible value None Example LGB1002A R2 alarm email set user admin show Syntax show Description T...

Page 226: ...all 1 3 del email Syntax del email range Description To disable the email of the events Argument range del the range of email syntax 1 5 7 Possible value range 1 24 Example LGB1002A R2 alarm events d...

Page 227: ...et all Syntax set all range Description To enable email sms and trap of events Argument range set the range of events syntax 1 5 7 Possible value range 1 24 Example LGB1002A R2 alarm events set all 1...

Page 228: ...s Argument range set the range of trap syntax 1 5 7 Possible value range 1 24 Example LGB1002A R2 alarm events set trap 1 3 show Syntax show Description To display the configuration of alarm event Arg...

Page 229: ...arm Syntax show Description The Show for alarm here is used to display the configuration of Trap SMS or E mail Argument None Possible value None Example LGB1002A R2 alarm show events LGB1002A R2 alarm...

Page 230: ...er Possible value 1 to 6 Example LGB1002A R2 alarm sms set phone number 1 0968777777 set server Syntax set server ip Description To set up the IP address of sms server Argument ip SMS server ip addres...

Page 231: ...configuration of SMS trap event Argument None Possible value None Example LGB1002A R2 alarm sms show SMS Server 192 168 1 7 Username ABC Password Mobile Phone 1 0968777777 Mobile Phone 2 Mobile Phone...

Page 232: ...time Description To set up the timer of autologout Argument time range 1 to 3600 seconds 0 for autologout off current setting is 180 seconds Possible value time 0 1 3600 Example LGB1002A R2 autologou...

Page 233: ...ress rate Syntax disable ingress rate range Description To cancel the Ingress rate of the port Argument range syntax 1 5 7 available from 1 to 16 Possible value range 1 to 16 Example LGB1002A R2 bandw...

Page 234: ...s rate range data_rate Description To set up the Ingress rate of the ports Argument range syntax 1 5 7 available from 1 to 16 data_rate 0 1000 Possible value range 1 to 16 data_rate 0 1000 Example LGB...

Page 235: ...bled 0 Disabled 0 Disabled 0 8 Disabled 0 Disabled 0 Disabled 0 9 Disabled 0 Disabled 0 Disabled 0 10 Disabled 0 Disabled 0 Disabled 0 11 Disabled 0 Disabled 0 Disabled 0 12 Disabled 0 Disabled 0 Disa...

Page 236: ...t successful export user conf Syntax export user conf Description To run the export user conf function Argument None Possible value None Example LGB1002A R2 config file export user conf Export success...

Page 237: ...p the filepath and filename that will be exported Argument filepath filepath and filename Possible value filepath filepath and filename Example LGB1002A R2 config file set export path log 21511 txt se...

Page 238: ...ption To display the config file information Argument None Possible value None Example LGB1002A R2 config file show TFTP Server IP Address 192 168 3 111 Export Path and Filename nmap 123 ts Import Pat...

Page 239: ...rgument sec range syntax 0 1 30 The value 0 is to disable dhcp boot delay Possible value sec 0 30 Example LGB1002A R2 dhcp boot set dhcp boot 30 show Syntax show Description To display the status of D...

Page 240: ...opback Test Argument None Possible value None Example LGB1002A R2 diag loopback Internal Loopback Test OK External Loopback Test Port 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 Fail ping Syntax ping ip De...

Page 241: ...e path LGB1003A R2_LGB1002A R2_v2 03 img show Syntax show Description To display the information of tftp server and upgrade path Argument None Possible value None Example LGB1002A R2 firmware show TFT...

Page 242: ...A R2 gvrp enable group Syntax group group number Description To enter any of gvrp group for changing gvrp group setting You can change the applicant or registrar mode of existing gvrp group per port A...

Page 243: ...ticipant Normal 7 Normal Normal 8 Normal Normal 12 Normal Normal 13 Normal Normal 23 Normal Normal 24 Normal Normal LGB1002A R2 gvrp group 2 set registrar 1 10 fixed LGB1002A R2 gvrp group 2 show GVRP...

Page 244: ...ticipant normal or non participant Example LGB1002A R2 gvrp set applicant 1 10 non participant set registrar Syntax set registrar range normal fixed forbidden Description To set default registrar mode...

Page 245: ...le LGB1002A R2 gvrp set restricted 1 10 enable LGB1002A R2 gvrp show config GVRP state Enable Port Join Time Leave Time LeaveAll Time Applicant Registrar Restricted 1 20 60 1000 Normal Normal Enable 2...

Page 246: ...20 to 100 leave 60 to 300 leaveall 1000 to 5000 Example LGB1002A R2 gvrp set timer 2 8 25 80 2000 show config Syntax show config Description To display the gvrp configuration Argument None Possible va...

Page 247: ...show counter 2 GVRP Counter port 2 Counter Name Received Transmitted Total GVRP Packets 0 0 Invalid GVRP Packets 0 LeaveAll message 0 0 JoinEmpty message 0 0 JoinIn message 0 0 LeaveEmpty message 0 0...

Page 248: ...lticast the range of IP multicast vid vlan ID 0 4094 or any 0 value means tag based vlan disable port range syntax 1 5 7 available from 1 to 16 Possible value ip multicast ex 224 1 1 1 225 2 3 3 or an...

Page 249: ...igmp snooping Description To display IGMP snooping mode and allowed IP multicast entry Argument None Possible value None Example LGB1002A R2 igmp snooping show igmp snooping Snoop Mode Active IP Mult...

Page 250: ...to Description To enable the system DHCP function and set DNS server via manual or auto mode Argument manual auto set dhcp by using manual or auto mode Possible value manual auto manual or auto Exampl...

Page 251: ...others Example LGB1002A R2 ip set ip 192 168 1 2 255 255 255 0 192 168 1 253 show Syntax show Description To display the system s DHCP function state IP address subnet mask default gateway DNS mode DN...

Page 252: ...auto upload Syntax disable auto upload Description To disable the auto upload function Argument None Possible value None Example LGB1002A R2 log disable auto upload enable auto upload Syntax enable au...

Page 253: ...sible value None Example LGB1002A R2 log show Tftp Server 0 0 0 0 Auto Upload Disable 1 Wed Apr 13 12 13 27 2005 Link Up Port 1 2 Wed Apr 13 12 13 26 2005 Link Down Port 1 3 Wed Apr 13 11 58 31 2005 L...

Page 254: ...04 05 06 ip ip address port 1 to 16 vid 1 to 4094 Example LGB1002A R2 ip_mac_binding set entry 1 00 11 2f de 7b a9 192 168 2 2 1 1 delete ip Syntax delete ip 0 1 ip Description Delete ip mac binding e...

Page 255: ...249 MAC Address Alias 1 00 02 03 04 05 06 aaa 2 00 33 03 04 05 06 ccc 3 00 44 33 44 55 44 www...

Page 256: ...e 2 Normal 3 Disable 3 Normal 4 Disable 4 Normal 5 Disable 5 Normal 6 Disable 6 Normal 7 Disable 7 Normal 8 Disable 8 Normal enable Syntax enable Description To enable switch ports the loop detection...

Page 257: ...w Detection Port Locked Port Port Status Port Status 1 Enable 1 Normal 2 Enable 2 Normal 3 Enable 3 Normal 4 Enable 4 Normal 5 Enable 5 Normal 6 Enable 6 Normal 7 Enable 7 Normal 8 Enable 8 Normal sho...

Page 258: ...252 6 Enable 6 Normal 7 Enable 7 Normal 8 Enable 8 Normal...

Page 259: ...n To set up the mac alias entry Argument mac mac address format 00 02 03 04 05 06 alias mac alias name max 15 characters Possible value None Example LGB1002A R2 mac table alias set 00 44 33 44 55 44 w...

Page 260: ...tagged Possible value port 1 to 16 vid 0 1 4094 Example LGB1002A R2 mac table information search 1 16 MAC Table List Alias MAC Address Port VID State 00 40 c7 88 00 06 1 0 Dynamic show Syntax show Des...

Page 261: ...LGB1002A R2 mac table maintain set aging 300 set flush Syntax set flush Description To delete all of the MACs that is learned dynamically Argument None Possible value None Example LGB1002A R2 mac tab...

Page 262: ...Possible value mac mac address port 0 16 vid 0 1 4094 alias mac alias name Example LGB1002A R2 mac table static mac add 00 02 03 04 05 06 3 0 aaa LGB1002A R2 mac table static mac del Syntax del mac vi...

Page 263: ...ing Etnry Total 1 item s 1 mac 00 33 03 04 05 06 vid alias ccc LGB1002A R2 mac table static mac show forward Syntax show forward Description To display the static forward table Argument None Possible...

Page 264: ...ent policy records Argument name value ACL entry name vid value VLAN ID ip value IP range port value Incoming port type value Access type action value a ccept or d eny Possible value name value No def...

Page 265: ...ent a specific or range management security entry s Possible value None Example LGB1002A R2 management show 1 Name Tom VlanID 2 IP 192 168 1 30 192 168 1 80 Type SNMP Action Deny Port 1 2 LGB1002A R2...

Page 266: ...Incoming port type value Access type action value a ccept or d eny Possible value name value No default and it must be set vid value The range is 1 4095 and can be set to any ip value For example 192...

Page 267: ...x show Description To show the specific management policy record Argument None Possible value None Example LGB1002A R2 management show 1 Name Tom VlanID 2 IP 192 168 1 30 192 168 1 80 Type SNMP Action...

Page 268: ...ximum packet length Possible value range 1 to 16 length bytes 1518 1532 9216 Example LGB1002A R2 max pkt len set len 1 8 9216 show Syntax show Description To show current setting of maximum packet len...

Page 269: ...received by this port will be copied to the monitoring port Argument range the port that is chosen for monitored port of the mirror function syntax 1 5 7 available from 1 to 16 Possible value range 1...

Page 270: ...show Syntax show Description To display the setting status of Mirror function Argument None Possible value None Example LGB1002A R2 mirror show Mirror Mode rx Monitoring Port 2 Monitored Port 3 4 5 7...

Page 271: ...ax migrate check port range Description To force the port to transmit RST BPDUs Argument Usage migrate check port range port range syntax 1 5 7 available from 1 to 16 Possible value Usage migrate chec...

Page 272: ...vid string syntax example 2 5 7 100 200 Possible value instance id available from 1 to 4094 Example LGB1002A R2 mstp set msti vlan 2 2 5 msti 2 had been successfully created and or vlan s have been a...

Page 273: ...alue port range syntax 1 5 7 available from 1 to 16 hello time only 1 2 are valid values Example LGB1002A R2 mstp set p hello 5 10 1 LGB1002A R2 mstp set p p2p Syntax set p p2p port range admin p2p De...

Page 274: ...CIST ROOT PORT ID 0 CIST REGIONAL ROOT PRIORITY 4096 CIST REGIONAL ROOT MAC 00 40 c7 5e 00 09 CIST INTERNAL ROOT PATH COST 0 CIST CURRENT MAX AGE 20 CIST CURRENT FORWARD DELAY 15 TIME SINCE LAST TOPO...

Page 275: ...cn Description To set per port restricted tcn Argument port range syntax 1 5 7 available from 1 to 16 restricted tcn 0 false 1 True Possible value port range 1 to 16 restricted tcn 0 false 1 True Exam...

Page 276: ...mstp show region info Name test2 Revision 0 Instances 0 LGB1002A R2 mstp set revision level Syntax set rev revision level Description To set mstp revision level 0 65535 Argument revision level 0 65535...

Page 277: ...sion 2 instance id 0 bridge max age 20 bridge forward delay 15 bridge max hops 20 instance priority 4096 bridge mac 00 40 c7 5e 00 09 CIST ROOT PRIORITY 4096 CIST ROOT MAC 00 40 c7 5e 00 09 CIST EXTER...

Page 278: ...lse 7 0 128 2 true auto false false 12 0 128 2 true auto true false LGB1002A R2 mstp show ports Syntax show ports instance id Description To show port status Argument instance id 0 CIST 1 4095 MSTI Po...

Page 279: ...instance id Description To show vlan mapping of an instance Argument nstance id 0 CIST 1 4095 MSTI Possible value instance id 0 CIST 1 4095 MSTI Example LGB1002A R2 mstp show vlan map 0 instance 0 ha...

Page 280: ...s Type HTTP SNMP Port 2 3 4 5 8 2 Name rule1 IP Range 192 168 2 1 192 168 2 30 Action Deny Access Type HTTP TELENT SNMP Port 11 12 13 14 15 3 Name Mary IP Range 192 168 3 1 192 168 3 4 Action Deny Acc...

Page 281: ...68 4 22 Action Deny Access Type HTTP TELENT SNMP Port 2 3 4 5 LGB1002A R2 policy show Syntax show Description To show management policy list Argument none Possible value none Example LGB1002A R2 polic...

Page 282: ...isable flow control range Description To disable the flow control function of the port Argument range syntax 1 5 7 available from 1 to 16 Possible value range 1 16 Example LGB1002A R2 port disable flo...

Page 283: ...ble value range 1 16 Example LGB1002A R2 port enable state 3 12 set speed duplex Syntax set speed duplex range auto 10half 10full 100half 100full 1Gfull Description To set up the speed and duplex of a...

Page 284: ...Syntax show detail counter Description To display the detailed counting number of each port s traffic Argument port available from 1 to 16 Possible value 1 16 Example LGB1002A R2 port show detail cou...

Page 285: ...50530 Temperature none Vcc none Mon1 Bias mA none Mon2 TX PWR none Mon3 RX PWR none show simple counter Syntax show simple counter Description To display the summary counting of each port s traffic Ar...

Page 286: ...0 65535 default default class all other TCP UDP ports 1 high 0 low match special TCP UDP class 1 high 0 low Possible value port range 1 to 16 1 10 tcp udp port range 0 65535 default 1 or 0 match 1 or...

Page 287: ...iption To set qos priority mode of the switch Argument port per port priority pri_tag vlan tag priority tos ip tos classification layer4 ip tcp udp port classification diffserv ip diffserv classificat...

Page 288: ...le LGB1002A R2 qos set pri tag 1 15 1 2 1 set simple layer4 Syntax set simple layer4 Description To set class of ports on simple mode of Layer 4 qos Argument layer 4 configuration mode valid values ar...

Page 289: ...ment None Possible value None Example LGB1002A R2 qos show IP Diffserv Classification Default Class high DiffServ Class DiffServ Class DiffServ Class DiffServ Class 0 high 1 high 2 high 3 high 4 high...

Page 290: ...le here is used for the de activation of snmp or set community Argument None Possible value None Example LGB1002A R2 snmp disable snmp LGB1002A R2 snmp disable set ability enable Syntax enable set abi...

Page 291: ...community private LGB1002A R2 snmp set trap 1 192 168 1 1 162 public show Syntax show Description The Show here is to display the configuration of SNMP Argument None Possible value None Example LGB100...

Page 292: ...m 1 to 16 Possible value range 1 to 16 Example LGB1002A R2 stp Mcheck 1 8 disable Syntax disable Description To disable the STP function Argument None Possible value None Example LGB1002A R2 stp disab...

Page 293: ...Max Age 6 to 40 Forward Delay 4 to 30 Example LGB1002A R2 stp set config 61440 2 20 15 set port Syntax set port range path cost priority edge_port admin p2p Description To set up the port information...

Page 294: ...LGB1002A R2 stp set version rstp show config Syntax show config Description To display the configuration of STP Argument None Possible value None Example LGB1002A R2 stp show config STP State Configur...

Page 295: ...00000 128 No Auto 3 DISCARDING 2000000 128 No Auto 4 DISCARDING 2000000 128 No Auto 5 DISCARDING 2000000 128 No Auto 6 DISCARDING 2000000 128 No Auto 7 DISCARDING 2000000 128 No Auto 8 DISCARDING 2000...

Page 296: ...A R2 stp show status STP Status STP State Enabled Bridge ID 00 40 C7 D8 09 1D Bridge Priority 61440 Designated Root 00 40 C7 D8 09 1D Designated Priority 61440 Root Port 0 Root Path Cost 0 Current Max...

Page 297: ...me device name string Description To set the device name description of the switch Argument device name string length up to 40 characters Possible value device name A b c d z and 1 2 3 etc Example LGB...

Page 298: ...Managed Switch Location Contact Device Name LGB1002A R2 System Up Time 0 Days 0 Hours 4 Mins 14 Secs Current Time Tue Jan 17 16 28 46 2006 BIOS Version v1 05 Firmware Version v2 08 Hardware Mechanical...

Page 299: ...he trap log Argument None Possible value None Example LGB1002A R2 tftp show 2 Mon Mar 17 15 18 38 2008gvrp mode qce type Dual Media Swapped Port 1 SwapTo TP ge hostnamexit 4 8 3 Mon Mar 17 15 18 38 20...

Page 300: ...ver Argument ip the IP address of tftp server Possible value ip tftp server ip Example LGB1002A R2 tftp set server 192 168 3 111 show Syntax show Description To display the information of tftp server...

Page 301: ...31 hh daylight saving end Hour 00 23 Possible value hr 5 to 5 MM 01 12 DD 01 31 HH 00 23 mm 01 12 dd 01 31 hh 00 23 Example LGB1002A R2 time set daylightsaving 3 10 12 01 11 12 01 Save Successfully se...

Page 302: ...onizing 1 Synchronization success show Syntax show Description To show the time configuration including Current Time NTP Server Timezone Daylight Saving Daylight Saving Start and Daylight Saving End A...

Page 303: ...nk set priority 33333 set trunk Syntax set trunk port range method group active LACP Description To set up the status of trunk including the group number and mode of the trunk as well as LACP mode Arg...

Page 304: ...Ready Ports show lacp detail Syntax show lacp detail aggtr Description To display the detailed information of the LACP trunk group Argument aggtr aggregator available from 1 to 16 Possible value aggtr...

Page 305: ...status Syntax show status Description To display the aggregator status and the settings of each port Argument None Possible value None Example LGB1002A R2 trunk show status Trunk Port Setting Trunk P...

Page 306: ...tag group vid Description To delete the tag based vlan group Argument vid which vlan group you want to delete available from 1 to 4094 Possible value vid 1 to 4094 Example LGB1002A R2 vlan del tag gro...

Page 307: ...yntax enable drop untag range Description To drop the untagged frames Argument range which port s you want to set syntax 1 5 7 available from 1 to 16 Possible value range 1 to 16 Example LGB1002A R2 v...

Page 308: ...n Q function up link syntax 1 5 7 available from 13 to 16 only for metro mode vlan Possible value disable port tag metro double tag disable port tag metro double tag up link 13 14 15 or 16 or 13 16 Ex...

Page 309: ...all frames except a specific VID vid untag vid for hybrid port Possible value range 1 to 16 vid 1 to 4094 Example LGB1002A R2 vlan set port role 5 hybrid 6 set pvid Syntax set pvid range pvid Descript...

Page 310: ...asymmetric vlan Possible value vid 1 to 4094 range 1 to 16 0 or 1 Example LGB1002A R2 vlan set tag group 2 VLAN 2 2 5 6 15 13 0 show group Syntax show group Description To display the vlan mode and v...

Page 311: ...pvid Port PVID Rule1 Rule2 Port Rule Untag Vid 1 1 Disable Disable Access 2 1 Disable Disable Access 3 5 Disable Disable Access 4 1 Disable Disable Access 5 5 Enable Disable Hybrid 6 6 5 Enable Disab...

Page 312: ...tion ports are used on that Managed Switch 9 Please check the uplink setup of the Managed Switch to verify the uplink function is enabled 3 The console interface cannot appear on the console port conn...

Page 313: ...ports port based VLAN 802 1Q tag based VLAN Efficient self learning and address recognition mechanism enables forwarding rate at wire speed Web based management provides the ability to completely mana...

Page 314: ...0 100Mbps support full or half duplex 1000Mbps support full duplex only Transmission Speed 10 100 1000Mbps for TP 1000Mbps for Fiber Full Forwarding Filtering Packet Rate PPS packets per second Forwar...

Page 315: ...6 LINK ACT 10 100 1000Mbps 1000M SFP Fiber Port 13 to 16 SFP LINK ACT Power Requirement AC Line Voltage 100 240 V Frequency 50 60 Hz Consumption 30W Ambient Temperature 0 to 40 C Humidity 5 to 90 Dime...

Page 316: ...rred as Class of Service CoS by the IEEE 802 1P standard Classification of packet priority can be based on either a VLAN tag on packet or a user defined Per port QoS Two queues per port IP TOS Classif...

Page 317: ...face The table below shows the pin assignments for the DB 9 cable Function Mnemonic Pin Carrier CD 1 Receive Data RXD 2 Transmit Data TXD 3 Data Terminal Ready DTR 4 Signal Ground GND 5 Data Set Ready...

Page 318: ......

Reviews:

No comments

Related manuals for LGB1002A-R2

Brand: ICP DAS USA Pages: 48

Brand: ICP DAS USA Pages: 24

Brand: ICP DAS USA Pages: 4

MediaStream ConnectPlus 1000

Brand: Avid Technology Pages: 74

Brand: NETGEAR Pages: 2

Brand: FOR-A Pages: 72

EonServ 5000 Series

Brand: Surveon Pages: 33

Brand: Juniper Pages: 825

Brand: UfiSpace Pages: 34

Brand: Selta Pages: 83

Brand: Gemtek Systems Pages: 51

Brand: RubyTech Pages: 25

Brand: Airlinkplus Pages: 20

Brand: MCT Pages: 12

Brand: Vista Pages: 93

Brand: Garderos Pages: 21

CANopen Communication Module DVPCP02-H2

Brand: Delta Electronics Pages: 2

Brand: StarTech.com Pages: 16

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands