Black Box LGB5000 Series User Manual Download Page 76 | Manualshive

Page: 76 / 236

background image

76

1.877.877.2269

BLACKBOX.COM

NEED HELP?

LEAVE THE TECH TO US

LIVE 24/7

TECHNICAL

SUPPORT

1.877.877.2269

CHAPTER 2: CONFIGURATION

FIGURE 2-42. RADIUS SERVER CONFIGURATION SCREEN

PARAMETER DESCRIPTION

Global Configuration

These settings are common for all of the RADIUS servers.

Timeout: Timeout is the number of seconds, in the range 1 to 1000, to wait for a reply from a RADIUS server before retransmitting the

request.

Retransmit: Retransmit is the number of times, in the range 1 to 1000, a RADIUS request is retransmitted to a server that is not

responding. If the server has not responded after the last retransmit, it is considered to be dead.

Deadtime: Deadtime, which can be set to a number between 0 to 1440 minutes, is the period during which the switch will not send

new requests to a server that has failed to respond to a previous request. This will stop the switch from continually trying to contact a
server that it has already determined as dead. Setting the Deadtime to a value greater than 0 (zero) will enable this feature, but only if
more than one server has been configured.

Key: The secret key—up to 63 characters long— shared between the RADIUS server and the switch.

NAS-IP-Address (Attribute 4): The IPv4 address to be used as attribute 4 in RADIUS Access-Request packets. If this field is left blank,

the IP address of the outgoing interface is used.

NAS-IPv6-Address (Attribute 95): The IPv6 address to be used as attribute 95 in RADIUS Access-Request packets. If this field is left

blank, the IP address of the outgoing interface is used.

NAS-Identifier (Attribute 32): The identifier—up to 255 characters long— to be used as attribute 32 in RADIUS Access-Request packets.

If this field is left blank, the NAS-Identifier is not included in the packet.

«
...
74
75
76
77
78
...
»

Summary of Contents for LGB5000 Series

Page 1: ...S LGB5028A R2 LGB5052A R2 1 3 5 9 7 2 4 6 8 10 12 14 18 20 22 24 25 26 27 28 16 11 13 15 17 19 21 23 23 SFP SFP System Link Act Speed Mode 28 PORT GbE MANAGED SWITCH 25 26 1 3 5 2 SFP SFP System Link...

Page 2: ...em 10 2 1 1 Information 10 2 1 2 IP 11 2 1 3 NTP 13 2 1 4 Time 14 2 1 5 Log 15 2 2 Green Ethernet 16 Port Power Savings 16 2 3 Ports Configuration 18 2 3 1 Ports 18 2 3 2 Ports Description 19 2 4 DHCP...

Page 3: ...ed VLAN 117 2 16 2 Protocol Based VLAN 118 2 16 3 IP Subnet Based VLAN 121 2 17 Voice VLAN 122 2 17 1 Configuration 122 2 17 2 OUI 124 2 18 QoS 125 2 18 1 Port Classification 125 2 18 2 Port Policing...

Page 4: ...1 3 3 5 SFP Detail Information 163 3 4 DHCP 165 3 4 1 Server 165 3 4 2 Snooping Table 167 3 4 3 Relay Statistics 168 3 4 4 Detailed Statistics 169 3 5 Security 171 3 5 1 Access Management Statistics 1...

Page 5: ...sFlow 216 4 DIAGNOSTICS 218 4 1 Ping 218 4 2 Ping6 219 4 3 Cable Diagnostics 220 4 4 Traceroute 221 5 MAINTENANCE 223 5 1 Restart Device 223 5 2 Reboot Schedule 223 5 3 Factory Defaults 224 5 4 Firmwa...

Page 6: ...ow to operate and use the management functions of the LGB5028A R2 or LGB5052A R2 via HTTP HTTPs web browser The Manual is intended for use by network administrators who are responsible for operating a...

Page 7: ...use the management functions of the switch Installation Getting Started Guide CLI User Guide To download the guides from blackbox com 1 Go to www blackbox com 2 Enter the part number in the search bo...

Page 8: ...tch provides the ideal combination of affordability and capabilities for entry level networking including small business or enterprise applications and helps you create a more efficient better connect...

Page 9: ...For first time use enter the default username and password and then click the Login button The login process now is completed In this login menu you have to input the complete username and password re...

Page 10: ...System Contact The text identification of the contact person for this managed node together with information on how to contact this person The allowed string length is 0 to 128 and the allowed conten...

Page 11: ...er of routes is 32 WEB INTERFACE To configure an IP address in the web interface 1 Click Configuration System and IP 2 Click Add Interface then you can create a new Interface on the switch 3 Click Add...

Page 12: ...een 0 and 30 bits for a IPv4 address If DHCP is enabled this field is not used The field may also be left blank if IPv4 operation on the interface is not desired IPv6 Address The IPv6 address of the i...

Page 13: ...ter you press the Apply button Though it synchronizes the time automatically NTP does not update the time periodically without user s processing Time Zone is an offset time from GMT You have to select...

Page 14: ...id IPv4 address For example 192 1 2 34 Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values 2 1 4 TIME The switch provides manual and...

Page 15: ...Day Select the starting day Month Select the starting month Hours Select the starting hour Minutes Select the starting minute End time settings Week Select the ending week number Day Select the ending...

Page 16: ...T POWER SAVINGS EEE is a power saving option that reduces the power usage when there is low or no traffic use EEE works by powering down circuits when there is no traffic When a port gets data to be t...

Page 17: ...his switch port For maximizing power savings the circuit isn t started when transmit data is ready for a port but is instead queued until a burst of data is ready to be transmitted This will give some...

Page 18: ...ION SCREEN PARAMETER DESCRIPTION Port This is the logical port number for this row Link The current link state is displayed graphically Green indicates the link is up and red that it is down Current L...

Page 19: ...a fixed speed setting is selected that is what is used The Current Rx column indicates whether pause frames on the port are obeyed and the Current Tx column indicates whether pause frames on the port...

Page 20: ...undo any changes made locally and revert to previously saved values 2 4 DHCP This section describes how to configure the DHCP Snooping parameters of the switch DHCP Snooping can prevent attackers from...

Page 21: ...ler than or equal to the second VLAN ID But if the VLAN range contains only 1 VLAN ID then you can just input it into either one of the first and second VLAN ID or both On the other hand if you want t...

Page 22: ...a DHCP client WEB INTERFACE To configure DHCP server excluded IP in the web interface 1 Click Configuration DHCP Server and Excluded IP 2 Click Add IP Range then you can create new IP Range on the sw...

Page 23: ...Configuration DHCP Server and Pool 2 Click Add New Pool then you can create new Pool on the switch 3 Click Apply FIGURE 2 11 DHCP SERVER POOL CONFIGURATION SCREEN PARAMETER DESCRIPTION Pool Setting Ad...

Page 24: ...deleted during the next save Add New Pool Click to add a new DHCP pool Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values 2 4 2 SNOOPING DH...

Page 25: ...an untrusted source of the DHCP messages Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values 2 4 3 RELAY A DHCP relay agent is used...

Page 26: ...information option 82 into a DHCP message when forwarding to DHCP server and removes it from a DHCP message when transferring to DHCP client It only works when DHCP relay operation mode is enabled Dis...

Page 27: ...granted the full control of the device But other values need to refer to each group privilege level A User s privilege should be same or greater than the group privilege level to have the access of th...

Page 28: ...lick Apply FIGURE 2 15 PRIVILEGE LEVEL CONFIGURATION SCREEN PARAMETER DESCRIPTION Group Name The name identifying the privilege group In most cases a privilege level group consists of a single module...

Page 29: ...the Client console telent ssh http https that you want to monitor 3 Specify the Authentication Method none local radius tacacs 4 Specify the service port 5 Click Apply FIGURE 2 16 AUTH METHOD CONFIGUR...

Page 30: ...gement Configuration in the web interface 1 Click Configuration Security Switch and Access Management 2 Select Enabled in the Mode of Access Management Configuration 3 Click Add new entry 4 Specify th...

Page 31: ...rmation between SNMP manager and agent and traverses the Object Identity OID of the management Information Base MIB described in the form of SMI syntax SNMP agent is running on the switch to respond t...

Page 32: ...security name than an SNMPv1 or SNMPv2c community string In addition to community string a particular range of source addresses can be used to restrict the source subnet Write Community Indicates the...

Page 33: ...2 CONFIGURATION TRAP Configure SNMP trap on this page WEB INTERFACE To configure the configure SNMP Trap Configuration in the web interface 1 Click Configuration Security Switch SNMP and Trap 2 Click...

Page 34: ...estination IPv6 address IPv6 address is in 128 bit records represented as eight fields of up to four hexadecimal digits with a colon separating each field For example fe80 215 c5ff fe03 4dc7 The symbo...

Page 35: ...255 Trap Probe Security Engine ID Indicates the SNMP trap probe security engine ID mode of operation Possible values are Enabled Enable SNMP trap probe security engine ID mode of operation Disabled Di...

Page 36: ...ses can be used to restrict a source subnet when combined with a source mask Source Mask Indicates the SNMP access source address mask Buttons Delete Check to delete the entry It will be deleted durin...

Page 37: ...Security Level Indicates the security model that this entry should belong to Possible security models are NoAuth NoPriv No authentication and no privacy Auth NoPriv Authentication and no privacy Auth...

Page 38: ...entry Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values GROUPS This function is used to configure an SNMPv3 group The Entry index keys are...

Page 39: ...racters from 33 to 126 Buttons Delete Check to delete the entry It will be deleted during the next save Add New Entry Click to add a new entry Apply Click to save changes Reset Click to undo any chang...

Page 40: ...D Subtree The OID defining the root of the subtree to add to the named view The allowed OID length is 1 to 128 The allowed string content is a digital number or asterisk Buttons Delete Check to delete...

Page 41: ...h this request may request the current values The allowed string length is 1 to 32 and the allowed content is ASCII characters from 33 to 126 Write View Name The name of the MIB view defining the MIB...

Page 42: ...rted 0 Emergency System is unusable 1 Alert Action must be taken immediately 2 Critical Critical conditions 3 Error Error conditions 4 Warning Warning conditions 5 Notice Normal but significant condit...

Page 43: ...erface 1 Click Configuration Security Switch RMON and Statistics 2 Click Add New Entry 3 Specify the ID parameters 4 Click Apply FIGURE 2 26 RMON STATISTICS CONFIGURATION SCREEN PARAMETER DESCRIPTION...

Page 44: ...rom 1 to 65535 Data Source Indicates the port ID to be monitored If you are using a stacking switch the value must add 1000 switch ID 1 for example if the port is switch 3 port 5 the value is 2005 Int...

Page 45: ...on the interface including framing characters InUcastPkts The number of unicast packets delivered to a higher layer protocol InNUcastPkts The number of broadcast and multicast packets delivered to a...

Page 46: ...when the first value is less than the falling threshold RisingOrFallingTrigger alarm when the first value is larger than the rising threshold or less than the falling threshold default Rising Thresho...

Page 47: ...are None No SNMP log is created no SNMP trap is sent Log Create SNMP log entry when the event is triggered Snmp trap Send SNMP trap when the event is triggered Log and trap Create SNMP log entry and s...

Page 48: ...in the Limit of Port Configuration 3 Set Action Trap Shutdown Trap Shutdown 4 Click Apply FIGURE 2 30 PORT SECURITY LIMIT CONTROL CONFIGURATION SCREEN PARAMETER DESCRIPTION System Configuration Mode...

Page 49: ...y happen that a configured maximum cannot be granted if the remaining ports have already used all available MAC addresses Action If Limit is reached the switch can take one of the following actions No...

Page 50: ...shared printers or by simply logging on to the Internet WEB INTERFACE To configure a Network Access Server in the web interface 1 Click Configuration Security Network and NAS 2 Select Enabled in the...

Page 51: ...conds after which a connected client must be reauthenticated This is only active if the Reauthentication Enabled checkbox is checked Valid values are in the range 1 to 3600 seconds EAPOL Timeout Deter...

Page 52: ...ned VLAN The RADIUS server must be configured to transmit special RADIUS attributes to take advantage of this feature see RADIUS Assigned VLAN Enabled below for a detailed description The RADIUS Assig...

Page 53: ...EAPOL Start frames at a rate faster than X seconds then it will never get authenticated because the switch will cancel on going backend authentication server requests whenever it receives a new EAPOL...

Page 54: ...plicant software to authenticate The disadvantage is that MAC addresses can be spoofed by malicious users equipment whose MAC address is a valid RADIUS user can be used by anyone Also only the MD5 Cha...

Page 55: ...e pages show which modules have temporarily overridden the current Port VLAN configuration Guest VLAN Operation When a Guest VLAN enabled port s link comes up the switch starts transmitting EAPOL Requ...

Page 56: ...anually Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ACL The LGB5028A R2 or LGB5052A R2 switch access control list ACL is probably the...

Page 57: ...ted The default value is Disabled Logging Specify the logging operation of this port The allowed values are Enabled Frames received on the port are stored in the System Log Disabled Frames received on...

Page 58: ...ACL Rate Limiter in the web interface 1 Click Configuration Security Network ACL and Rate Limiter 2 Specify the Rate field and the range from 0 to 3276700 3 Click the Apply to save the setting 4 If yo...

Page 59: ...aximum number of ACEs is 256 on each switch Click on the lowest plus sign to add a new ACE to the list The reserved ACEs used for internal protocol cannot be edited or deleted the order sequence canno...

Page 60: ...Indicates the forwarding action of the ACE Permit Frames matching the ACE may be forwarded and learned Deny Frames matching the ACE are dropped Filter Frames matching the ACE are filtered Rate Limiter...

Page 61: ...s ACE Ethernet Type Only Ethernet Type frames can match this ACE The IEEE 802 3 describes the value of Length Type Field specifications to be greater than or equal to 1536 decimal equal to 0600 hexade...

Page 62: ...tination MAC filter for this ACE Any No DMAC filter is specified DMAC filter status is don t care MC Frame must be multicast BC Frame must be broadcast UC Frame must be unicast Specific If you want to...

Page 63: ...rget IP Filter Specify the target IP filter for this specific ACE Any No target IP filter is specified Target IP filter is don t care Host Target IP filter is set to Host Specify the target IP address...

Page 64: ...ocol Value When Specific is selected for the IP protocol value you can enter a specific value The allowed range is 0 to 255 A frame that hits this ACE matches this IP protocol value IP TTL Specify the...

Page 65: ...se fields are explained later in this manual UDP Select UDP to filter IPv6 UDP protocol frames Extra fields for defining UDP parameters will appear These fields are explained later in this manual TCP...

Page 66: ...er you can enter a specific TCP UDP source value The allowed range is 0 to 65535 A frame that hits this ACE matches this TCP UDP source value TCP UDP Source Range When Range is selected for the TCP UD...

Page 67: ...P frames where the URG field is set must not be able to match this entry 1 TCP frames where the URG field is set must be able to match this entry Any Any value is allowed don t care Ethernet Type Para...

Page 68: ...URE 2 36 IP SOURCE GUARD CONFIGURATION SCREEN PARAMETER DESCRIPTION Mode of IP Source Guard Configuration Enable the Global IP Source Guard or disable the Global IP Source Guard All configured ACEs wi...

Page 69: ...e 2 Click Add New Entry 3 Specify the Port VLAN ID IP Address and MAC address in the entry 4 Click Apply FIGURE 2 37 STATIC IP SOURCE GUARD CONFIGURATION SCREEN PARAMETER DESCRIPTION Port The logical...

Page 70: ...ode Configuration 4 Click Apply FIGURE 2 38 ARP INSPECTION CONFIGURATION SCREEN PARAMETER DESCRIPTION Mode of ARP Inspection Configuration Enable the Global ARP Inspection or disable the Global ARP In...

Page 71: ...s up to 9999 entries from the VLAN table default being 20 selected through the entries per page input field When first visited the web page will show the first 20 entries from the beginning of the VLA...

Page 72: ...given port are enabled ARP Inspection is enabled on this given port Second you can specify which VLAN will be inspected on VLAN mode configuration web page The log type also can be configured on per...

Page 73: ...Entry 3 Specify the Port VLAN ID IP Address and MAC address in the entry 4 Click Apply FIGURE 2 40 STATIC ARP INSPECTION TABLE SCREEN PARAMETER DESCRIPTION Port The logical port for the settings VLAN...

Page 74: ...layed table starting from that or the closest next Dynamic ARP Inspection Table match In addition the two input fields will upon a button click assume the value of the first displayed entry allowing f...

Page 75: ...entry after the last entry currently displayed 2 5 3 AAA This section shows you how to use an AAA Authentication Authorization and Accounting server to provide access control to your network The AAA...

Page 76: ...quests to a server that has failed to respond to a previous request This will stop the switch from continually trying to contact a server that it has already determined as dead Setting the Deadtime to...

Page 77: ...bal retransmit value Key This optional setting overrides the global key Leaving it blank will use the global key Buttons Delete This button can be used to undo the addition of the new server Add New S...

Page 78: ...te To delete a TACACS server entry check this box The entry will be deleted during the next Save Hostname The IP address or hostname of the TACACS server Port The TCP port to use on the TACACS server...

Page 79: ...Check to enable the use of the IP Address or uncheck to disable By default IP Address is enabled TCP UDP Port Number The TCP UDP port number can be used to calculate the destination port for the fram...

Page 80: ...e ports are connected to the same partner Key The Key value incurred by the port range 1 65535 The Auto setting will set the key as appropriate by the physical link speed 10Mb 1 100Mb 2 1Gb 3 Using th...

Page 81: ...ral Settings Enable Loop Protection Controls whether loop protections is enabled as a whole Transmission Time The interval between each loop protection PDU sent on each port Valid values are 1 to 10 s...

Page 82: ...devices are assigned as designated ports After determining the lowest cost spanning tree it enables all root ports and designated ports and disables all other ports Network packets are only forwarded...

Page 83: ...40 seconds and MaxAge must be FwdDelay 1 2 Maximum Hop Count This defines the initial value of remaining Hops for MSTI information generated at the boundary of an MSTI region It defines how many brid...

Page 84: ...ted with a comma and or space A VLAN can only be mapped to one MSTI An unused MSTI should just be left empty I e not have any VLANs mapped to it This section describes how to inspect the current STP M...

Page 85: ...comma and or space A VLAN can only be mapped to one MSTI An unused MSTI should just be left empty I e not having any VLANs mapped to it Example 2 5 20 40 Buttons Apply Click to save changes Reset Clic...

Page 86: ...nd revert to previously saved values 2 8 4 CIST PORTS When you implement a Spanning Tree protocol on the switch you need to configure the CIST Ports The section describes how to inspect the current ST...

Page 87: ...hen a port is initialized AutoEdge Controls whether the bridge should enable automatic edge detection on the bridge port This allows operEdge to be derived from whether BPDU s are received on the port...

Page 88: ...An MSTI port is a virtual port which is instantiated separately for each active CIST physical port for each MSTI instance configured on and applicable to the port The MSTI instance must be selected b...

Page 89: ...ority This can be used to control priority of ports having identical port cost Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values 2...

Page 90: ...The name used for indexing the profile table Each entry has the unique name which is composed of at maximum 16 alphabetic and numeric characters At least one alphabetic character must be present Profi...

Page 91: ...selected profile entry This field is not editable and will be adjusted automatically according to the selected profile entry Action Indicates the learning action upon receiving the Join Report frame t...

Page 92: ...used for indexing the address entry table Each entry has the unique name which is composed of at maximun 16 alphabetic and numeric characters At least one alphabetic character must be present Start A...

Page 93: ...MVR source ports You can create up to 4 MVR VLANs with corresponding channel profiles for each Multicast VLAN The channel profile is defined by the IPMC Profile that provides the filtering conditions...

Page 94: ...the port from multicast group membership The value is in units of tenths of a seconds The range is from 0 to 31744 The default LLQI is 5 tenths or one half second Interface Channel Setting When the MV...

Page 95: ...ast Destination Address With this function once a switch receives an IP multicast packet it will forward the packet to the members who joined in a specified IP multicast group before The packets will...

Page 96: ...e Enable fast leave on the port Throttling Enable to limit the number of multicast groups to which a switch port can belong Buttons Apply Click to save changes Reset Click to undo any changes made loc...

Page 97: ...IGMP Auto Forced IGMPv1 Forced IGMPv2 Forced IGMPv3 default compatibility value is IGMP Auto PRI Priority of Interface It indicates the IGMP control frame priority level generated by the system These...

Page 98: ...you can filter multicast joins on a per port basis by configuring IP multicast profiles and associating them with individual switch ports An IGMP profile can contain one or more multicast groups and...

Page 99: ...multicast address to use NOTE This is a function of the application software not of MLD When MLD snooping is enabled on a VLAN the switch acts to minimize unnecessary multicast traffic If the switch r...

Page 100: ...ps in the address Using IPv6 Address range Leave Proxy Enabled Enable MLD Leave Proxy This feature can be used to avoid forwarding unnecessary leave messages to the router side Proxy Enable Enable MLD...

Page 101: ...ntry MLD Snooping Enabled Enable the per VLAN MLD Snooping Up to 32 VLANs can be selected for MLD Snooping Querier Election Enable to join MLD Querier election in the VLAN Disable to act as a MLD Non...

Page 102: ...iously saved values Delete Check to delete the entry The designated entry will be deleted during the next save Add New MLD VLAN Click to add new MLD VLAN Specify the VID and configure the new entry Cl...

Page 103: ...ces and to learn about adjacent LLDP devices The Link Layer Discovery Protocol LLDP is a vendor neutral Link Layer protocol in the Internet Protocol Suite used by network devices for advertising their...

Page 104: ...the Tx Interval value Valid values are restricted to 1 8192 seconds Tx Reinit When a port is disabled LLDP is disabled or the switch is rebooted an LLDP shutdown frame is transmitted to the neighbori...

Page 105: ...description is included in LLDP information transmitted Sys Name Optional TLV When checked the system name is included in LLDP information transmitted Sys Descr Optional TLV When checked the system de...

Page 106: ...2 63 LLDP MED CONFIGURATION SCREEN PARAMETER DESCRIPTION Fast start repeat count Rapid startup and Emergency Call Service Location Identification Discovery of endpoints is a critically important aspec...

Page 107: ...ormalized to within 0 180 degrees with a maximum of 4 digits It is possible to specify the direction to either East of the prime meridian or West of the prime meridian Altitude Altitude SHOULD be norm...

Page 108: ...ncy call setup to a traditional CAMA or ISDN trunk based PSAP This format consists of a numerical digit string corresponding to the ELIN to be used for emergency calling Policies Network Policy Discov...

Page 109: ...ed to use an untagged VLAN or a single tagged data specific VLAN When a network policy is defined for use with an untagged VLAN see Tagged flag below then the L2 priority field is ignored and only the...

Page 110: ...istrator wants to do a fixed mapping between the DMAC address and switch ports The frames also contain a MAC address SMAC address which shows the MAC address of the equipment sending the frame The SMA...

Page 111: ...y as soon as a frame with unknown SMAC is received Disable No learning is done Secure Only static MAC entries are learned all other frames are dropped NOTE Make sure that the link used for managing th...

Page 112: ...son you should have a connection between your management station and a port in the new management VLAN or connect to the new management VLAN through a multi VLAN route WEB INTERFACE To configure VLAN...

Page 113: ...default all frames but frames classified to the Port VLAN a k a Native VLAN get tagged on egress Frames classified to the Port VLAN do not get C tagged on egress egress tagging can be changed to tag a...

Page 114: ...ss Acceptance Hybrid ports allow for changing the type of frames that are accepted on ingress Tagged and untagged both tagged and untagged frames are accepted Tagged Only Only tagged frames are accept...

Page 115: ...eb interface 1 Click Configuration Private VLAN and Membership 2 Select Private VLAN Membership Configuration 3 Click the Apply to save the setting 4 If you want to cancel the setting then you need to...

Page 116: ...LAN IDs and Private VLAN IDs can be identical A port must be a member of both a VLAN and a Private VLAN to be able to forward packets By default all ports are VLAN unaware and members of VLAN 1 and Pr...

Page 117: ...k boxes for each port is displayed for each MAC based VLAN entry To include a port in a MAC based VLAN check the box To remove or exclude the port from the MAC based VLAN make sure the box is unchecke...

Page 118: ...so provide flow control and automatic repeat request ARQ error management mechanisms SNAP The Subnetwork Access Protocol SNAP is a mechanism for multiplexing on networks using IEEE 802 2 LLC more prot...

Page 119: ...he Ethernet type EtherType field value for the protocol running on top of SNAP if the OUI is an OUI for a particular organization the protocol ID is a value assigned by that organization to the protoc...

Page 120: ...this page VLAN ID Indicates the ID to which Group Name will be mapped A valid VLAN ID ranges from 1 4095 Port Members A row of check boxes for each port is displayed for each Group Name to VLAN ID ma...

Page 121: ...icates the IP address Mask Length Indicates the network mask length VLAN ID Indicates the VLAN ID The VLAN ID can be changed for the existing entries Port Members A row of check boxes for each port is...

Page 122: ...ION The Voice VLAN feature enables voice traffic forwarding on the Voice VLAN then the switch can classify and schedule network traffic We recommend having two VLANs on a port one for voice one for da...

Page 123: ...ice VLAN Auto Enable auto detect mode It detects whether there is a VoIP phone attached to the specific port and configures the Voice VLAN members automatically Forced Force join to Voice VLAN This fi...

Page 124: ...ing then you need to click the Reset button It will revert to previously saved values FIGURE 2 73 VOICE VLAN OUI TABLE SCREEN PARAMETER DESCRIPTION Telephony OUI A telephony OUI address is a globally...

Page 125: ...ntees to the frame according to what was configured for that specific QoS class The switch supports advanced memory control mechanisms providing excellent performance of all QoS classes under any traf...

Page 126: ...is tagged and Tag Class is enabled then the frame is classified to a DPL that is mapped from the PCP and DEI value in the tag Otherwise the frame is classified to the default DPL The classified DPL ca...

Page 127: ...measure for the port policer rate as kbps Mbps fps or kfps Flow Control If flow control is enabled and the port is in flow control mode then pause frames are sent instead of discarding frames Buttons...

Page 128: ...128 1 877 877 2269 BLACKBOX COM NEED HELP LEAVE THE TECH TO US LIVE 24 7 TECHNICAL SUPPORT 1 877 877 2269 CHAPTER 2 CONFIGURATION FIGURE 2 76 QOS EGRESS PORT POLICERS SCREEN...

Page 129: ...alue is restricted to 1 100 This parameter is only shown if Scheduler Mode is set to Weighted Queue Scheduler Percent Shows the weight in percent for this queue This parameter is only shown if Schedul...

Page 130: ...130 1 877 877 2269 BLACKBOX COM NEED HELP LEAVE THE TECH TO US LIVE 24 7 TECHNICAL SUPPORT 1 877 877 2269 CHAPTER 2 CONFIGURATION FIGURE 2 77 QOS EGRESS PORT SHAPERS SCREEN...

Page 131: ...nt Shows the weight in percent for this queue This parameter is only shown if Scheduler Mode is set to Weighted Port Shaper Enable Controls whether the port shaper is enabled for this switch port Port...

Page 132: ...132 1 877 877 2269 BLACKBOX COM NEED HELP LEAVE THE TECH TO US LIVE 24 7 TECHNICAL SUPPORT 1 877 877 2269 CHAPTER 2 CONFIGURATION FIGURE 2 78 PORT TAG REMARKING SCREEN...

Page 133: ...evel to PCP DEI values when the mode is set to Mapped Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values Cancel Click to undo any ch...

Page 134: ...e the Ingress Translation click the checkbox 2 Classify Classification for a port can have 4 different values Disable No Ingress DSCP Classification DSCP 0 Classify if incoming or translated if enable...

Page 135: ...ration QoS and DSCP Based QoS 2 Enable or disable the DSCP 3 Scroll to select QoS Class and DPL parameters 4 Click Save to save the setting 5 If you want to cancel the setting then you need to click t...

Page 136: ...EN PARAMETER DESCRIPTION DSCP Maximum number of supported DSCP values are 64 and valid DSCP value range from 0 to 63 Ingress Ingress side DSCP can be first translated to new DSCP before using the DSCP...

Page 137: ...P Classification parameters in the web interface 1 Click Configuration QoS and DSCP Translation 2 Scroll to set the DSCP Parameters 3 Click apply to save the setting 5 If you want to cancel the settin...

Page 138: ...Control List parameters in the web interface 1 Click Configuration QoS and QoS Contol List 2 Click the plus sign to add a new QoS Control List 3 Scroll all parameters and select the Port Member to jo...

Page 139: ...x600 0xFFFF are allowed LLC Only LLC frames are allowed SNAP Only SNAP frames are allowed IPv4 The QCE will match only IPV4 frames IPv6 The QCE will match only IPV6 frames Action Indicates the classif...

Page 140: ...Specific Source IP address in value mask format or Any IP and Mask are in the format x y z w where x y z and w are decimal numbers between 0 and 255 When Mask is converted to a 32 bit binary string an...

Page 141: ...rol Configuration parameters in the web interface 1 Click Configuration QoS and Storm Control 2 Select the frame type to enable storm control 3 Scroll to set the Rate Parameters 4 Click apply to save...

Page 142: ...set the Port mirror mode 4 Click apply to save the setting 5 If you want to cancel the setting then you need to click the Reset button It will revert to previously saved values FIGURE 2 85 MIRROR CONF...

Page 143: ...cancel the setting then you need to click the Reset button It will revert to previously saved values FIGURE 2 86 UPNP CONFIGURATION SCREEN PARAMETER DESCRIPTION Mode Indicates the UPnP operation mode...

Page 144: ...cipation in a switch or an end station consists of a GARP application component and a GARP Information Declaration GID component associated with each port or the switch The propagation of information...

Page 145: ...number of VLANs When GVRP is enabled a maximum number of VLANs supported by GVRP is specified By default this number is 20 This number can only be changed when GVRP is turned off Buttons Apply Click...

Page 146: ...d values 2 22 SFLOW The sFlow Collector configuration for the switch can be monitored and modified here The configuration is divided into two parts Configuration of the sFlow receiver a k a sFlow coll...

Page 147: ...ut The number of seconds remaining before sampling stops and the current sFlow owner is released While active the current time left can be updated with a click on the Refresh button If locally managed...

Page 148: ...cates the Switch2go mode operation When the mode operation is enabled the message will send out to or get from the server The switch also establishes a vtunnel with Switch2go server for the connection...

Page 149: ...Name Service in the web interface 1 Click Configuration Switch2go and Port Name Service 2 Specify the detailed Port Name and set the Role 3 Click apply to save the setting 4 If you want to cancel the...

Page 150: ...to save the setting 5 If you want to cancel the setting then you need to click the Reset button It will revert to previously saved values FIGURE 2 92 SMTP CONFIGURATION SCREEN PARAMETER DESCRIPTION T...

Page 151: ...if the switch malfunctions 3 1 1 INFORMATION The switch system information is provided here WEB INTERFACE To display System Information in the web interface 1 Click Monitor System and Information 2 C...

Page 152: ...he device Mechanical Version Displays the mechanical version of the device Serial Number Displays the unique serial number assigned to the device MAC Address The MAC Address of this switch Memory Disp...

Page 153: ...IP network or host address of this route Gateway Show the gateway address of this route Status Show the status flags of the route Neighbor cache IP Address Show the IP address of the entry Link Addre...

Page 154: ...e debug level Time The time of the system log entry Message The detailed message of the system log entry iPush Status The status of sending this syslog to iPush server Buttons Auto refresh Check this...

Page 155: ...System and Detailed Log 2 Display the log information FIGURE 3 4 DETAILED SYSTEM LOG INFORMATION SCREEN PARAMETERS ID The ID 1 of the system log entry Message The detailed message of the system log en...

Page 156: ...YSTEM OVERVIEW SCREEN PARAMETER DESCRIPTION Model Name Displays the factory defined model name for identification purposes Connected Devices Total of currently connected devices Firmware Version Displ...

Page 157: ...AMETER DESCRIPTION Local Port This is the logical port number for this row Link Shows if the link is up for the port green link up red link down EEE Shows if EEE is enabled for the port reflects the s...

Page 158: ...Click Refresh to refresh the port statistics or click Clear to clear all information FIGURE 3 7 PORT STATISTICS OVERVIEW SCREEN PARAMETER DESCRIPTION Port The logical port for the settings contained...

Page 159: ...resh box 3 Click Refresh to refresh the Queuing Counters or click Clear to clear all information FIGURE 3 8 QUEUEING COUNTERS SCREEN PARAMETER DESCRIPTION Port The logical port for the settings contai...

Page 160: ...ndicates the type of frame to look for incoming frames Possible frame types are Any The QCE will match all frame type Ethernet Only Ethernet frames with Ether Type 0x600 0xFFFF are allowed LLC Only LL...

Page 161: ...ibes how to provide detailed traffic statistics for a specific switch port Use the port select box to select which switch port details to display The displayed counters are the totals for receive and...

Page 162: ...The number of received and transmitted good and bad packets Rx and Tx Octets The number of received and transmitted good and bad bytes Includes FCS but excludes framing bits Rx and Tx Unicast The num...

Page 163: ...es received with valid CRC Rx Fragments The number of short 1 frames received with invalid CRC Rx Jabber The number of long 2 frames received with invalid CRC Rx Filtered The number of received frames...

Page 164: ...I code that is assigned by IEEE Vendor Name Display the company name of the module manufacturer Vendor P N Display the part number assigned by the module manufacturer Vendor Rev Revision Display the m...

Page 165: ...erface 1 Click DHCP Server and Statistics 2 Display the DHCP Server Statistics FIGURE 3 12 DHCP SERVER STATISTICS SCREEN PARAMETER DESCRIPTION Database Counters Display counters of various databases P...

Page 166: ...DHCP NAK messages sent Buttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds v v v v v v Refresh Click to refresh the page immediately v v v v...

Page 167: ...ddresses WEB INTERFACE To Display DHCP Server Declined IP in the web interface 1 Click DHCP Server and Declined IP 2 Display the DHCP Declined IP FIGURE 3 14 DHCP SERVER DECLINED IP SCREEN PARAMETER D...

Page 168: ...ntry DHCP Server Address DHCP Server address of the entry Buttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds Refresh Refreshes the displayed...

Page 169: ...at resulted in error while being sent to servers Receive from Client The number of received packets from the server Receive Agent Option The number of received packets with the relay agent information...

Page 170: ...on 53 with value 7 packets received and transmitted Rx and Tx Inform The number of inform option 53 with value 8 packets received and transmitted Rx and Tx Lease Query The number of lease query option...

Page 171: ...lear all information FIGURE 3 18 ACCESS MANAGEMENT STATISTICS SCREEN PARAMETER DESCRIPTION Interface The interface type through which the remote host can access the switch Received Packets Number of r...

Page 172: ...r modules and one with the actual port status WEB INTERFACE To display the Port Security Switch Status Configuration in the web interface 1 Click Security Network Port Security and Switch 2 Check Auto...

Page 173: ...esh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds v v v v v v Refresh Click to refresh the page immediately PORT This section shows the MAC addresses secure...

Page 174: ...uttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds v v v v v v Refresh Click to refresh the page immediately v v v v v v Clear Flushes the se...

Page 175: ...ort running EAPOL based IEEE 802 1X authentication For MAC based ports it shows selected backend server RADIUS Authentication Server statistics only WEB INTERFACE To display the NAS Port Status Config...

Page 176: ...ckend Server counters to be shown in the Selected Counters table If no supplicants are attached it shows No supplicants attached This column is not available for MAC based Auth MAC Address For Multi 8...

Page 177: ...he ingress port of the ACE Possible values are All The ACE will match any ingress port Port The ACE will match a specific ingress port Frame Type Indicates the frame type of the ACE Possible values ar...

Page 178: ...hardware limitations Buttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds v v v v v v Refresh Click to refresh the page immediately ARP INSPEC...

Page 179: ...y the Dynamic IP Source Guard Table Configuration in the web interface 1 Click Security Network and IP Source Guard 2 Check Auto refresh 3 Click Refresh to refresh the detailed port statistics 4 Speci...

Page 180: ...akes one of the following values Disabled The server is disabled Not Ready The server is enabled but IP communication is not yet up and running Ready The server is enabled IP communication is up and r...

Page 181: ...ut will get re enabled when the dead time expires The number of seconds left before this occurs is displayed in parentheses This state is only reachable when more than one server is enabled RADIUS DET...

Page 182: ...r Info This section contains information about the state of the server and the latest round trip time Buttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs eve...

Page 183: ...egment 64 The total number of packets including bad packets received that were 64 octets in length 65 127 The total number of packets including bad packets received that were between 65 to 127 octets...

Page 184: ...cluding framing bits but including FCS octets of between 64 and 1518 octets inclusive but had either a bad Frame Check Sequence FCS with an integral number of octets FCS Error or a bad FCS with a non...

Page 185: ...arm index control entry Interval Indicates the interval in seconds for sampling and comparing the rising and falling threshold Variable Indicates the particular variable to be sampled Sample Type The...

Page 186: ...web interface 1 Click Security Switch RMON and Event 2 Check Auto refresh 3 Click Refresh to refresh the port detailed statistics 4 Specify the Port to check FIGURE 3 31 RMON EVENT OVERVIEW SCREEN PAR...

Page 187: ...m ID The system ID MAC address of the aggregation partner Partner Key The Key that the partner has assigned to this aggregation ID Last changed The time since this aggregation changed Local Ports Show...

Page 188: ...IDs 1 and 2 are GLAGs while IDs 3 14 are LLAGs Partner System ID The partner s System ID MAC address Partner Port The partner s port number connected to this port Partner Prio The partner s port prio...

Page 189: ...tection port status the ports of the currently selected switch WEB INTERFACE To display the Loop Protection status in the web interface 1 Click Monitor and Loop Protection 2 If you want to auto refres...

Page 190: ...esh the STP Bridges 4 Click CIST to go to the next page STP Detailed Bridge Status FIGURE 3 36 STP BRIDGES STATUS SCREEN PARAMETER DESCRIPTION MSTI The Bridge Instance This is also a link to the STP D...

Page 191: ...le can be one of the following values AlternatePort Backup Port RootPort DesignatedPort Disabled CIST State The current STP port state of the CIST port The port state can be one of the following value...

Page 192: ...panning Tree BPDU s received and discarded on the port Discarded Illegal The number of illegal Spanning Tree BPDU s received and discarded on the port Buttons Auto refresh Check this box to refresh th...

Page 193: ...eceived The number of Received IGMPv2 Leaves and MLDv1 Dones respectively Buttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds v v v v v v Ref...

Page 194: ...Multicast information This table is sorted first by VLAN ID then by group and then by Port Different source addresses belong to the same group are treated as a single entry WEB INTERFACE To display th...

Page 195: ...immediately Updates the table starting from the first entry in the MVR Channels Groups Information Table Updates the system log entries ending at the last entry currently displayed 3 10 IPMC 3 10 1 IG...

Page 196: ...c port is learnt to be a router port Both denote the specific port is configured or learned to be a router port Port Switch port number Status Indicate whether specific port is a router port or not Bu...

Page 197: ...le Updates the system log entries ending at the last entry currently displayed IPV4 SFM INFORMATION Entries in the IGMP SFM Information Table are shown on this page The IGMP SFM Source Filtered Multic...

Page 198: ...estined to the specific group address from the source IPv4 address could be handled by a chip or not Buttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs ever...

Page 199: ...Reports V2 Reports Received The number of Received V2 Report V1 Leaves Received The number of Received V1 Leaves Router Port Display which ports act as router ports A router port is a port on the Ethe...

Page 200: ...the Auto refresh button 3 Click Refresh to refresh an entry of the MLD Snooping Group Information 4 Click Clear to clear the MLD Snooping Groups information FIGURE 3 46 MLD SNOOPING GROUP INFORMATION...

Page 201: ...t entry FIGURE 3 47 IPV6 SFM INFORMATION SCREEN PARAMETER DESCRIPTION MLD SFM Information Table Columns VLAN ID VLAN ID of the group Group Group address of the group displayed Port Switch port number...

Page 202: ...the table will show No LLDP neighbor information found PARAMETER DESCRIPTION Local Port The port on which the LLDP frame was received Chassis ID The Chassis ID is the identification of the neighbor s...

Page 203: ...2 Click Refresh for manual update web screen 3 Click Auto refresh for auto update web screen FIGURE 3 49 LLDP MED NEIGHBOR INFORMATION SCREEN NOTE If your network does not have a device that supports...

Page 204: ...Generic Endpoint Class Class I and are extended to include aspects related to media streaming Example product categories expected to adhere to this class include but are not limited to Voice Media Ga...

Page 205: ...ecified application type is using a tagged or an untagged VLAN Can be Tagged or Untagged Untagged The device is using an untagged frame format and does not include a tag header as defined by IEEE 802...

Page 206: ...which LLDP frames are received or transmitted Tx Tw The link partner s maximum time that transmit path can hold off sending data after reassertion of LPI Rx Tw The link partner s time that the receive...

Page 207: ...Red Switch and link partner have not agreed on wakeup times Green Switch and link partner have agreed on wakeup times Buttons Auto refresh Check this box to refresh the page automatically Automatic re...

Page 208: ...rs The number of received LLDP frames containing some kind of error Frames Discarded If an LLDP frame is received on a port and the switch s internal table is full the LLDP frame is counted and discar...

Page 209: ...SCRIPTION MAC Table Columns Switch stack only The stack unit where the entry is learned Type Indicates whether the entry is a static or a dynamic entry VLAN The VLAN ID of the entry MAC address The MA...

Page 210: ...and VLAN membership 2 Scroll the bar to choose the VLANs to display 3 Click Refresh to update the state FIGURE 3 53 VLAN MEMBERSHIP STATUS FOR COMBINED USERS SCREEN PARAMETER DESCRIPTION VLAN USER Var...

Page 211: ...m the Start from MAC address and VLAN input fields Combined Select VLAN Users from this drop down list 3 13 2 PORT The Port Status function gathers the information of all VLAN status and reports it by...

Page 212: ...mes This parameter affects VLAN ingress processing If the port only accepts tagged frames untagged frames received on that port are discarded Port VLAN ID Shows the Port VLAN ID PVID that a given user...

Page 213: ...automatically Automatic refresh occurs every 3 seconds v v v v v v Refresh Click to refresh the page immediately 3 14 2 PROTOCOL BASED VLAN PROTOCOL TO GROUP This page shows you the protocols for Grou...

Page 214: ...hexadecimal 000000 the protocol ID is the Ethernet type EtherType field value for the protocol running on top of SNAP if the OUI is an OUI for a particular organization the protocol ID is a value ass...

Page 215: ...IP SUBNET BASED VLAN This page shows IP subnet based VLAN entries This page shows only static entries WEB INTERFACE To Display MAC based VLAN configuration in the web interface 1 Click Monitor VCL and...

Page 216: ...unclaimed Owner contains none If sFlow is currently configured through Web or CLI Owner contains Configured through local management If sFlow is currently configured through SNMP Owner contains a stri...

Page 217: ...om this port Here flow samples are divided into Rx and Tx flow samples where Rx flow samples contain the number of packets that were sampled upon reception ingress on the port and Tx flow samples cont...

Page 218: ...ing Length The payload size of the ICMP packet Values range from 2 bytes to 1452 bytes Ping Count The count of the ICMP packet Values range from 1 time to 60 times Ping Interval The interval of the IC...

Page 219: ...MP packet goes The given VID ranges from 1 to 4094 and will be effective only when the corresponding IPv6 interface is valid When the egress interface is not given PING6 finds the best match interface...

Page 220: ...g the Cable Diagnostics for 10 100 and 1G copper ports WEB INTERFACE To configure Cable Diagnostics in the web interface 1 Specify each port cable diagnostics 2 Click Start FIGURE 4 3 CABLE DIAGNOSTIC...

Page 221: ...nagement port will cause the switch to stop responding until Cable Diagnostics is complete 4 4 TRACEROUTE This page allows you to issue ICMP TCP or UDP packets to diagnose network connectivity issues...

Page 222: ...ceroute uses the returned ICMP Time Exceeded messages to build a list of routers that packets traverse until the destination is reached and returns an ICMP Echo Reply message traceroute to 202 39 253...

Page 223: ...e 1 Click Restart Device 2 Click Yes FIGURE 5 1 RESTART DEVICE SCREEN PARAMETER DESCRIPTION Restart Device You can restart the switch on this page After restart the switch will boot normally Buttons F...

Page 224: ...ly the IP configuration is retained The new configuration is available immediately so no restart is necessary WEB INTERFACE To configure a Factory Defaults Configuration in the web interface 1 Click M...

Page 225: ...nt to simulate a power on cold restart of the switch after the software upload WARNING Forcing a cool restart will affect the traffic going through the switch Browse Click the Browse button to search...

Page 226: ...irmware image to the device will automatically use the primary image slot and activate this The firmware version and date information may be empty for older firmware releases This does not constitute...

Page 227: ...ration This file is read when the system is restored to default settings It is also possible to store up to two other files and apply them to running config thereby switching configuration 5 5 1 SAVE...

Page 228: ...configuration This can be done in two ways Replace mode The current configuration is fully replaced with the configuration in the downloaded file Merge mode The downloaded file is merged into running...

Page 229: ...d Select FIGURE 5 8 UPLOAD CONFIGURATION SCREEN PARAMETER DESCRIPTION running config The file will be applied to the switch configuration This can be done in two ways Replace mode The current configur...

Page 230: ...ick Activate Select FIGURE 5 9 ACTIVATE CONFIGURATION SCREEN PARAMETER DESCRIPTION default config A read only file with vendor specific configuration This file is read when the system is restored to d...

Page 231: ...REPORT It is possible to download a server report file on the switch to the web browser Download of a server report may take a little while to complete as the file must be prepared for download WEB I...

Page 232: ...ed and used in accordance with the instruction manual may cause harmful interference to radio communications Operation of this equipment in a residential area is likely to cause harmful interference i...

Page 233: ...tes que impidan el flujo de aire por los orificios de ventilaci n 10 El equipo el ctrico deber ser situado fuera del alcance de fuentes de calor como radiadores registros de calor estufas u otros apar...

Page 234: ...e consequential or cost of cover damages resulting from any errors in the product information or specifications set forth in this document and Black Box Corporation may revise this document at any tim...

Page 235: ..._________________________________________________________ __________________________________________________________________________________________________ ___________________________________________...

Page 236: ...NEED HELP LEAVE THE TECH TO US LIVE 24 7 TECHNICAL SUPPORT 1 877 877 2269 COPYRIGHT 2017 2022 BLACK BOX CORPORATION ALL RIGHTS RESERVED LGB5028A R2_LGB5052A R2_USER_REV2 PDF...

Reviews:

No comments

Related manuals for LGB5000 Series

Brand: D-Link Pages: 357

Brand: AbleNet Pages: 2

Brand: Radial Engineering Pages: 8

Brand: Radial Engineering Pages: 2

Brand: H3C Pages: 10

Brand: EtherWAN Pages: 2

Link Power LPS2400-T1

Brand: Inscape Data Pages: 8

3C17205 - SuperStack 3 Switch 4400 PWR

Brand: 3Com Pages: 90

BNI EIP-950-000-Z009

Brand: Balluff Pages: 12

Allen-Bradley 800F-ALR1

Brand: Rockwell Automation Pages: 2

Antenna-Disconnect-Switch

Brand: ADS Pages: 12

OSD2700F SERIES

Brand: Optical Systems Pages: 29

Brand: PTN Pages: 44

Brand: Zektor Pages: 30

iConverter GX/X

Brand: Omnitron Systems Technology Pages: 2

Brand: Alloy Pages: 13

Brand: Tripp Lite Pages: 3

CUVEO CR-UPS2000

Brand: Me Pages: 44

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands