manualshive.com logo in svg

Comnet CWGE24MS2, Installation And Operation Manual

Get the Comnet CWGE24MS2 Installation And Operation Manual for free download on our website. This manual provides step-by-step instructions on how to set up and operate the product effectively. Don't miss out on this essential resource for maximizing the performance of your Comnet CWGE24MS2.

Share
Download
background image

INS_CWGE24MS2_REV–

10/05/16     PAGE 224

INSTALLATION AND OPERATION MANUAL 

CWGE24MS2

TECH SUPPORT: 1.888.678.9427

802.1x

Introduction

IEEE 802.1X is an IEEE Standard for port-based Network Access Control (“port” meaning a single 
point of attachment to the LAN infrastructure). It is part of the IEEE 802.1 group of networking 
protocols. It provides an authentication mechanism to devices wishing to attach to a LAN, either 
establishing a point-to-point connection or preventing it if authentication fails. It is used for most 
wireless 802.11 access points and is based on the Extensible Authentication Protocol (EAP).

802.1X provides port-based authentication, which involves communications between a 
supplicant, authenticator, and authentication server. The supplicant is often software on a client 
device, such as a laptop, the authenticator is a wired Ethernet switch or wireless access point, 
and an authentication server is generally a RADIUS database. The authenticator acts like a 
security guard to a protected network. The supplicant (i.e., client device) is not allowed access 
through the authenticator to the protected side of the network until the supplicant’s identity is 
authorized. An analogy to this is providing a valid passport at an airport before being allowed 
to pass through security to the terminal. With 802.1X port-based authentication, the supplicant 
provides credentials, such as user name/password or digital certificate, to the authenticator, 
and the authenticator forwards the credentials to the authentication server for verification. If 
the credentials are valid (in the authentication server database), the supplicant (client device) is 
allowed to access resources located on the protected side of the network. 

Upon detection of the new client (supplicant), the port on the switch (authenticator) is enabled 
and set to the “unauthorized” state. In this state, only 802.1X traffic is allowed; other traffic, such 
as DHCP and HTTP, is blocked at the network layer (Layer 3). The authenticator sends out the 
EAP-Request identity to the supplicant, the supplicant responds with the EAP-response packet 
that the authenticator forwards to the authenticating server. If the authenticating server accepts 
the request, the authenticator sets the port to the “authorized” mode and normal traffic is 
allowed. When the supplicant logs off, it sends an EAP-logoff message to the authenticator. The 
authenticator then sets the port to the “unauthorized” state, once again blocking all non-EAP 
traffic.

The following figure illustrates how a client connecting to an IEEE 802.1x authentication enabled 
port goes through a validation process. The Switch prompts the client for login information in the 
form of a user name and password.

Summary of Contents for CWGE24MS2

Page 1: ...applications from network interruptions or temporary malfunctions by redirecting transmission within the network The CWGE24MS2 implements complete Layer 2 to Layer 4 ACLs to restrict access to your s...

Page 2: ...oftware Features 8 Hardware Features 10 Hardware Overview 11 Front Panel 11 Installation 13 Desktop Installation 13 Mounting on a Rack 13 Getting Connected 13 Powering On the Unit 13 Installing the SF...

Page 3: ...ption 122 Dual Homing 133 ERPS 136 Link Aggregation 143 Link Layer Discovery Protocol LLDP 151 Loop Detection 155 PPPoE IA 159 Static Route 168 STP 173 UDLD 195 Security 200 IP Source Guard 200 ACL 21...

Page 4: ...GE24MS2_REV 10 05 16 PAGE 4 INSTALLATION AND OPERATION MANUAL CWGE24MS2 TECH SUPPORT 1 888 678 9427 Management 252 SNMP 252 Auto Provision 263 Mail Alarm 266 Maintenance 270 System log 276 User Accoun...

Page 5: ...sused abused improperly installed or damaged by accidents Please refer to the Technical Specifications section for the actual warranty period s of the product s associated with this publication Discla...

Page 6: ...stallation This equipment generates uses and can radiate radio frequency energy and if not installed and used in accordance with the instructions may cause harmful interference to radio communication...

Page 7: ...ion within the network The CWGE24MS2 implements complete Layer 2 to Layer 4 ACLs to restrict access to your sensitive network resources by filtering specific packets based on TCP UDP ports source and...

Page 8: ...erier MVR DHCP Relay Option 82 Dual Homing Link Aggregation Link Layer Discovery Protocol Loop Detection Auto Recovery Timer STP RSTP MSTP ERPS G8032v2 SFP DDMI Support RMON Statistics Static Route Ne...

Page 9: ...and email alarm Specifications IEEE 802 3 10Base T IEEE 802 3u 100Base TX FX IEEE 802 3ab 1000Base T IEEE 802 3z 1000Base SX LX IEEE 802 3x Flow Control IEEE 802 1d Spanning Tree Protocol IEEE 802 1w...

Page 10: ...t Combo 10 100 1000 RJ 45 or 100FX GbE SFP 1 DB 9 console Maximum Distances RJ 45 up to 100 m SC SFP up to 120 km Console 15 m Mechanical Environmental Operating temperature 0 C to 50 C Storage temper...

Page 11: ...sole Use RS 232 with DB9 connecter to manage switch 1 6 4 2 5 3 2 CWGE24MS Front Panel 1 Power Connector 2 LEDs for Post Power Alarm Speed Link Activity for 24 SFP ports 3 100 1000Base X Fiber port on...

Page 12: ...re are four Gigabit Combo ports on the CWGE24MS2 Combo ports have both an RJ 45 interface and an SFP slot of which one can be in use at any one time The RJ 45 ports operate at 10 100 1000 Mbps while t...

Page 13: ...the Switch in a clean flat and safe position that has convenient access to AC power Affix the four self adhesive rubber pads to the underside of the Switch Apply AC power to the Switch The green PWR...

Page 14: ...FP slot Make sure the SFP module is aligned correctly with the inside of the slot Insert and slide the module into the SFP slot until it clicks into place Remove any rubber plugs that may be present i...

Page 15: ...efer to LED chart Connecting to the Console The console port DB 9 provides the out of band management facility Use null modem cable to connect the console port on the Switch and the other end into the...

Page 16: ...y or failed ALARM Red Illuminated Alarm for over threshold of system temperature fan speed or voltage Off Switch is in normal condition LNK ACT Dual Color for 1 20th Fiber ports Green on 1000Mbps Ethe...

Page 17: ...ork connection you must first configure by giving a valid IP address subnet mask and default gateway using an out of band connection or the BOOTP protocol After configuring the Switch s IP parameters...

Page 18: ...a the Internet by typing in the correct IP address factory default IP address is 192 168 10 1 connect directly via console port to configure a unique IP address Your command prompt program will allow...

Page 19: ...o execute more powerful commands you must enter the privileged mode Input command enable CWGE24MS2 enable Input a valid username and password when below prompt are displayed user admin password admin...

Page 20: ...eans these commands can be executed in this command prompt In Configure code executing command interface eth0 enter the eth0 interface node CWGE24MS2 config interface eth0 CWGE24MS2 config if interfac...

Page 21: ...igure code executing command vlan 2 enter the vlan 2 node Note where the 2 is the vlan ID CWGE24MS2 config vlan 2 CWGE24MS2 config vlan acl Its command prompt is CWGE24MS2 config acl It means these co...

Page 22: ...Description enable show hostname This command displays the system s network name enable show interface eth0 This command displays the current Eth0 configurations enable show model This command display...

Page 23: ...he boot code version Firmware Version This field displays the firmware version Built Date This field displays the built date of the firmware DHCP Client This field displays whether the DHCP client is...

Page 24: ...oad Memory Information This field displays the total memory the Switch has and the memory which is currently available Free and occupied Usage Current Time This field displays current date yyyy mm dd...

Page 25: ...a management VLAN the management VLAN should be created first and the management VLAN should have at least one member port Host Name The hostname is same as the SNMP system name Its length is up to 64...

Page 26: ...network name configure interface eth0 This command enters the eth0 interface node to configure the system IP configure configure terminal This command changes the mode to config mode configure interfa...

Page 27: ...To get an IP address from a DHCP server CWGE24MS2 config if ip dhcp client enable To configure a static IP address and a gateway for the Switch CWGE24MS2 config if ip address 192 168 202 111 24 CWGE2...

Page 28: ...gateway in dotted decimal notation for example 192 168 1 1 IPv6 Settings DHCPv6 Client Select Enable to allow the Switch to automatically get an IP address from a DHCPv6 server Click Renew to have th...

Page 29: ...ult Settings The default jumbo frame is 10240 bytes CLI Configuration Node Command Description enable show jumboframe This command displays the current jumbo frame settings configure jumboframe 10240...

Page 30: ...guration Parameter Description Port This field specifies a port or a range of ports for configuration Frame Size This field configures the maximum number of bytes of frame size for specified port s Ap...

Page 31: ...be obtained separately UDP Port 123 Daylight saving is a period from late spring to early fall when many countries set their clocks ahead of normal local time by one hour to give more daytime light i...

Page 32: ...ERATION MANUAL CWGE24MS2 TECH SUPPORT 1 888 678 9427 Default Settings Current Time Time 0 3 51 UTC Date 1970 1 1 Time Server Configuration Time Zone 00 00 IP Address 0 0 0 0 DayLight Saving Time Confi...

Page 33: ...gure time daylight saving time start date first second third fourth last Sunday Monday Tuesday Wednesday Thursday Friday Saturday MONTH HOUR This command sets the start time of the Daylight Saving Tim...

Page 34: ...e 0800 CWGE24MS2 config time ntp server enable CWGE24MS2 config time daylight saving time start date first Monday 6 0 CWGE24MS2 config time daylight saving time end date last Saturday 10 0 Web Configu...

Page 35: ...ne in the United States starts using Daylight Saving Time at 2 A M local time So in the United States you would select Second Sunday March and 2 00 Daylight Saving Time starts in the European Union on...

Page 36: ...3 management IP host entries Default Settings The default is none any host can manage the Switch via telnet or web browser CLI Configuration Node Command Description enable show interface eth0 The co...

Page 37: ...his field configures the management host Apply Click this button to take effect the settings Refresh Click this button to begin configuring this screen afresh Management Host List No This field displa...

Page 38: ...ends a packet which is forwarded to a port on the Switch the MAC address of the device is shown on the Switch s MAC Table It also shows whether the MAC address is dynamic learned by the Switch or stat...

Page 39: ...table mac MACADDR This command displays information of a specific MAC enable show mac address table port PORT_ID This command displays the current unicast address entries learnt by the specific port c...

Page 40: ...h hh hh hh hh hh VLAN ID Enter the VLAN ID to apply to the computer or device Port Enter the port number to which the computer or device is connected Apply Click Apply to take effect the settings Refr...

Page 41: ...e information in the MAC table MAC Address This field displays a MAC address Type This field displays whether this entry was entered manually Static or whether it was learned by the Switch Dynamic VLA...

Page 42: ...tined for or originated from the MAC addresses contained in blackhole MAC address entries Blackhole entries are configured for filtering out frames with specific source or destination MAC addresses No...

Page 43: ...er Description MAC Address Enter the MAC address of a computer or device that you want to refuse Valid format is hh hh hh hh hh hh VLAN ID Enter the VLAN ID to apply to the computer or device Apply Cl...

Page 44: ...fic Users can monitor the selected ports Source Ports for egress and or ingress packets Source Mode Ingress The received packets will be copied to the monitor port Egress The transmitted packets will...

Page 45: ...ror destination port PORT_ID This command specifies the monitor port for the port mirroring configure mirror source ports PORT_LIST mode both ingress egress This command adds a port or a range of port...

Page 46: ...want to make some settings the same for all ports Use this field first to set the common settings and then make adjustments on a port by port basis Source Port This field displays the number of a port...

Page 47: ...me time Loopback Test A loopback test is a test in which a signal in sent from a communications device and returned looped back to it as a way to determine whether the device is working right or as a...

Page 48: ...to make sure that the settings of the peer port are the same in order to connect Flow Control A concentration of traffic on a port decreases port bandwidth and overflows buffer memory causing packet...

Page 49: ...This command disables the specific port interface no shutdown This command enables the specific port interface description STRINGs This command configures a description for the specific port interfac...

Page 50: ...INS_CWGE24MS2_REV 10 05 16 PAGE 50 INSTALLATION AND OPERATION MANUAL CWGE24MS2 TECH SUPPORT 1 888 678 9427 Web Configuration...

Page 51: ...or the port thus ensuring lossless operation across network switches Otherwise select Off to disable it Apply Click Apply to take effect the settings Refresh Click Refresh to begin configuring this sc...

Page 52: ...o configure on this screen Description Configures a meaningful name for the port s Port Status Port This field displays the port number Description The meaningful name for the port Status The field di...

Page 53: ...ritize it according to its relative importance and use congestion management and congestion avoidance techniques to give preferential treatment Implementing QoS in your network makes network performan...

Page 54: ...s You can choose one of these ways to alter the way incoming packets are prioritized or you can choose not to use any QoS enhancement setting on the Switch 802 1p Priority When using 802 1p priority m...

Page 55: ...d not be bridged to an untagged port VLAN Identifier VID a 12 bit field specifying the VLAN to which the frame belongs A value of 0 means that the frame doesn t belong to any VLAN in this case the 802...

Page 56: ...SCP field in the IP header If the tag is present the packet is assigned to a programmable egress queue based on the value of the tagged priority The tagged priority can be designated to any of the ava...

Page 57: ...f service is used to specify the treatment of the datagram during its transmission through the internet system Example mappings of the internet type of service to the actual service provided on networ...

Page 58: ...dwidth and then moves to the end of the list and so on depending on the number of queues being used This works in a looping fashion until a queue is empty Weighted Round Robin WRR scheduling uses the...

Page 59: ...0 03 0 04 0 05 0 06 0 07 0 08 0 09 0 10 0 11 0 12 0 13 0 14 0 15 0 16 0 17 0 18 0 19 0 20 0 21 0 22 0 23 0 24 0 25 0 26 0 27 0 28 0 29 0 30 0 31 0 32 0 33 0 34 0 35 0 36 0 37 0 38 0 39 0 40 0 41 0 42...

Page 60: ...ll of the packets in its buffer before permitting the next lower priority to transmit its packets configure qos mode wrr queue weights VALUE VALUE VALUE VALUE VALUE VALUE VALUE VALUE This command conf...

Page 61: ...ates packet priority and is added to the priority tag field of incoming packets The values range from 0 lowest priority to 7 highest priority Port This field displays the number of a port 802 1p Prior...

Page 62: ...Description Mode Tag Over DSCP or DSCP Over Tag Tag Over DSCP means the 802 1p tag has higher priority than DSCP Priority This field displays each priority level The values range from 0 lowest priori...

Page 63: ...Click this button to reset the priority to queue mappings to the defaults Priority This field displays each priority level The values range from 0 lowest priority to 7 highest priority Queue ID Selec...

Page 64: ...their queue weight the number you configure in the queue Weight field Queues with larger weights get more service than queues with smaller weights Queue ID This field indicates which Queue 0 to 7 you...

Page 65: ...number of the selected type of packets For example if the broadcast and multicast options are selected the total amount of packets per second for those two types will not exceed the limit value Broad...

Page 66: ...DLF ports PORTLISTS This command enables the bandwidth limit for broadcast or multicast or DLF packets and set the limitation configure no storm control type bcast mcast DLF bcast mcast bcast DLF mca...

Page 67: ...packets of the type specified in the Type field per second the Switch can receive per second Type Select Broadcast to specify a limit for the amount of broadcast packets received per second Multicast...

Page 68: ...ontrol configurations configure bandwidth limit egress RATE_ LIMIT ports PORTLISTS This command enables the bandwidth limit for outgoing packets and set the limitation configure no bandwidth limit egr...

Page 69: ...nfiguration Parameter Description Port Selects a port that you want to configure Ingress Configures the rate limitation for the ingress packets Egress Configures the rate limitation for the egress pac...

Page 70: ...IPv6 DHCP option configurations configure ipv6 dhcp options option_18 disable enable This command enables disables the IPv6 DHCP option 18 configure ipv6 dhcp options option_37 This command enables d...

Page 71: ...configures hop count limitation for IPv6 DHCP Relay configure ipv6 dhcp relay vlan STRINGS This command enables the IPv6 DHCP Relay in a vlan or a range of vlan configure no ipv6 dhcp relay vlan STRI...

Page 72: ...icast group membership of any VLANs other than those explicitly added as an IGMP snooping VLAN Immediate Leave When you enable IGMP Immediate Leave processing the switch immediately removes a port whe...

Page 73: ...nformation A General Query is addressed to the all systems multicast group 224 0 0 1 has a Group Address field of 0 and has a Max Response Time of Query Response Interval Port IGMP Querier Mode Auto T...

Page 74: ...This command displays the current IGMP snooping configurations enable show igmp snooping counters This command displays the current IGMP snooping counters enable show igmp snooping querier This comma...

Page 75: ...e maximum groups for the specific interface configure interface range gigabitethernet1 0 PORTLISTS This command enters the interface configure node if range igmp immediate leave This command enables t...

Page 76: ...lect Delete and enter VLANs on which to have the Switch not perform IGMP snooping Unknown Multicast Packets Specify the action to perform when the Switch receives an unknown multicast frame Select Dro...

Page 77: ...h does not use the port as an IGMP query port In this case the Switch does not keep a record of an IGMP router being connected to this port and the Switch does not forward IGMP join or leave packets t...

Page 78: ...ion on a VLAN or range of VLANs configure no igmp snooping querier vlan VLANIDs This command disables the IGMP snooping querier function on a VLAN or range of VLANs Web Configurations Parameter Descri...

Page 79: ...ess START ADDR end address END ADDR This command configures the group configurations including group index and start multicast address and end multicast address config igmp type deny permit This comma...

Page 80: ...ring state Profile This field creates the IGMP Filtering profile Type The field configures the type of action for the profile Apply Click Apply to apply the settings Refresh Click this to reset the fi...

Page 81: ...s field selects the profile which you want to configure the group Group This field selects the group index Start Address The field configures the first multicast address of the group End Address The f...

Page 82: ...ettings Parameter Description Profile This field selects the profile which you want to activate on the ports Activate IGMP Filtering on Ports Selects the ports which you want to activate the IGMP Filt...

Page 83: ...t router knows which multicast groups exist on which interface dynamically Compatible mode If we select the dynamic mode in MVR setting IGMP report message transmitted from the receiver port will not...

Page 84: ...INS_CWGE24MS2_REV 10 05 16 PAGE 84 INSTALLATION AND OPERATION MANUAL CWGE24MS2 TECH SUPPORT 1 888 678 9427 Figure 1 Figure 2...

Page 85: ...cords with the following group record types as membership reports Those group record types are MODE_IS_INCLUDE CHANGE_TO_INCLUDE_MODE ALLOW_NEW_SOURCES and BLOCK_OLD_SOURCES Don t use the group addres...

Page 86: ...VR mode dynamic compatible This command configures the mode for the MVR Dynamic Sends IGMP report to all MVR source ports in the multicast VLAN Compatible Sets the Switch not to send IGMP report MVR n...

Page 87: ...rity override State Enables Disables the MVR Mode Configures the mode for the MVR 802 1p Priority The priority for these multicast group packets Source Ports Configures the source port s for the MVR N...

Page 88: ...ON MANUAL CWGE24MS2 TECH SUPPORT 1 888 678 9427 Group Settings Parameter Description MVR VLAN Select a MVR VLAN Group Name Configures the group name Start Address Configures the multicast start addres...

Page 89: ...ess are mapped into the 23 bits of available Ethernet address space This means that there is ambiguity in delivering packets If two hosts on the same subnet each subscribe to a different multicast gro...

Page 90: ...routers on a network segment 224 0 0 9 The RIP version 2 group address used to send routing information using the RIP protocol to all RIP v2 aware routers on a network segment 224 0 0 10 EIGRP group...

Page 91: ...onfigure mac address table multicast MACADDR vlan VLANID ports PORTLIST This command configures a static multicast entry configure no mac address table multicast MACADDR This command removes a static...

Page 92: ...cking is enabled the router uses more memory than if explicit tracking is disabled because the router must store the membership state of all hosts on the interface CLI Configurations Node Command Desc...

Page 93: ...ost tracking state on the Switch IGMP Snooping Membership Table Index This field indicates the index of the entry Port This field indicates the port of the entry Multicast Group This field indicates t...

Page 94: ...not form a VLAN with a particular port then the Switch cannot be managed from that port Example If you want to allow port 1 and port 3 to talk to each other you must configure as below CWGE24MS2 conf...

Page 95: ...INS_CWGE24MS2_REV 10 05 16 PAGE 95 INSTALLATION AND OPERATION MANUAL CWGE24MS2 TECH SUPPORT 1 888 678 9427 Web Configuration...

Page 96: ...are not located on the same network switch Network reconfiguration can be done through software instead of physically relocating devices VID VLAN ID is the identification of the VLAN which is basicall...

Page 97: ...fic VLAN independent of the user or system attached to the port This means all users attached to the port should be members of the same VLAN The network administrator typically performs the VLAN assig...

Page 98: ...r tagged member of the VLAN group The ports should be one some of the permanent members of the vlan vlan no tagged PORTLISTS This command removes all tagged member from the vlan vlan untagged PORTLIST...

Page 99: ...r tagged member of the VLAN group The ports should be one some of the permanent members of the vlans vlan range no tagged PORTLISTS This command removes all tagged member from the vlans vlan range unt...

Page 100: ...Switch to assign to the VLAN as members You can designate multiple port numbers individually by using a comma and by range with a hyphen Apply Click Apply to save your changes back to the Switch Refre...

Page 101: ...l tag all outgoing frames transmitted with the VLAN ID Select All Click Select All to mark all member ports as tag ports Deselect All Click Deselect All to mark all member ports as untag ports Apply C...

Page 102: ...list box to accept all untagged or tagged frames on this port This is the default setting Select VLAN Tagged Only to accept only tagged frames on this port All untagged frames will be dropped Select...

Page 103: ...ured to dynamically add and manage VLANS to the VLAN database for trunking purposes In other words GVRP allows the propagation of VLAN information from device to device With GVRP a single switch is ma...

Page 104: ...default port Hold Time is 10 for all ports CLI Configuration Node Command Description enable show gvrp configuration This command displays the GVRP configurations enable show gvrp statistics This comm...

Page 105: ...Disable to deactivate the feature Port Select the port that you want to configure the GVRP settings State Select Enable to activate the port GVRP function Select Disable to deactivate the port GVRP fu...

Page 106: ...rface waits before sending VLAN advertisements Leave Time Specifies the number of milliseconds an interface waits after receiving a leave message before the interface leaves the VLAN specified in the...

Page 107: ...2 The packets with SA 00 01 02 xx xx xx will be forwarded to VLAN 22 member ports Notices The 802 1Q port base VLAN should be created first CLI Configuration Node Command Description enable show mac v...

Page 108: ...oduction The Protocol based VLAN allows users to create VLAN with packet frame type The packet frame type can be one of the three frame types EthernetII NonLLC SNAP and LLC SNAP If configuring the Eth...

Page 109: ...STS This command creates a protocol vlan entry with LLC SNAP frame type configure no protocol vlan frame type ethernetII ether type STRINGS vlan VLANID This command deletes a protocol vlan entry with...

Page 110: ...figuration Parameter Description Frame Type Select one of three frame types EthernetIU and NonLLC SNAP and LLC SNAP Ethernet type Input the Ethernet type for the EthernetII frame type VLAN Configure t...

Page 111: ...own VLANs without interfering with customer VLANs by using double tagging This allows them to connect customers to ISPs and ASPs Application Service Provider The ports that are connected to the servic...

Page 112: ...Frame data FCS Frame Check Sequence VLAN Stacking Port Roles Each port can have three VLAN stacking roles Normal Access Port and Tunnel Port Select Normal for regular non VLAN stacking IEEE 802 1Q fra...

Page 113: ...vely Both have an identical VLAN tag for their VLAN group The service provider can separate these two VLANs within its network by adding tag 100 to distinguish customer X and tag 200 to distinguish cu...

Page 114: ...lan exit CWGE24MS2 config interface gigaethernet1 0 1 CWGE24MS2 config if vlan stacking port based role access CWGE24MS2 config if vlan stacking spvid 200 CWGE24MS2 config if vlan stacking priority 3...

Page 115: ...VID outer tag IPTV with 600 and VIP customers with 700 VLAN 20 VLAN 40 VLAN 30 600 30 500 20 700 40 This following example shows how to configure ports 3 on the Switch to tag incoming frames with the...

Page 116: ...E24MS2 config qinq spvid 600 CWGE24MS2 config qinq access ports 3 CWGE24MS2 config qinq tunnel ports 4 CWGE24MS2 config qinq active CWGE24MS2 config qinq show CWGE24MS2 config qinq exit CWGE24MS2 conf...

Page 117: ...t based priority 0 7 This command sets the priority in port based Q in Q interface vlan stacking port based role tunnel access normal This command sets VLAN stacking port role interface vlan stacking...

Page 118: ...e command exits the CLI Q in Q node and enter the CLI configure node qinq show The command shows the current selective Q in Q profile configurations configure interface range gigabitethernet1 0 PORTLI...

Page 119: ...INS_CWGE24MS2_REV 10 05 16 PAGE 119 INSTALLATION AND OPERATION MANUAL CWGE24MS2 TECH SUPPORT 1 888 678 9427 Web Configuration VLAN Stacking...

Page 120: ...table index TPID Configures the TPID Configures the Port TPID Port Selects a port or a range of ports which you want to configure Tunnel TPID Index Configures the index of the TPID Table for the spec...

Page 121: ...nfigures the selective Q in Q profile name Access Ports Configures a port or a range of ports for the access ports Tunnel Ports Configures a port or a range of ports for the tunnel ports CVID Configur...

Page 122: ...option 66 and 67 DHCP option 66 is used to identify a TFTP server when the TFTP server name field in the DHCP header has been used for DHCP options DHCP option 67 is used to identify a TFTP server wh...

Page 123: ...ystem configuration to the TFTP server automatically Notice The auto backup command should be the last command in the configuration file CLI Configuration Node Command Description enable show dhcp opt...

Page 124: ...the option works by setting two sub options Circuit ID and Remote ID The DHCP option 82 is working on the DHCP snooping or and DHCP relay The switch will monitor the DHCP packets and append some info...

Page 125: ...implement policies such as restricting the number of IP addresses that can be assigned to a single remote ID or circuit ID Then the DHCP server echoes the option 82 field in the DHCP reply The DHCP se...

Page 126: ...the keyword and character For example HOSTNAME If there are any characters before the keyword you must add between the character and the keyword For example Test HOSTNAME Keyword HOSTNAME Add the sys...

Page 127: ...scription enable show dhcp options This command displays the DHCP options configurations configure dhcp options option82 disable enable This command disables enables the DHCP option 82 on the Switch c...

Page 128: ...witch Circuit Frame The frame ID for the circuit sub option Circuit Shelf The shelf ID for the circuit sub option Circuit Slot The slot ID for the circuit sub option Circuit ID String The String of th...

Page 129: ...The DHCP server sends DHCP response messages directly back to the DHCP relay agent which then forwards them to the DHCP client The DHCP administrator uses DHCP relay agents to centralize DHCP servers...

Page 130: ...s But they allocate IP address from the same DHCP server Application 2 Local in different VLANs The DHCP cleint 1 and DHCP client 2 are located in different VLAN But they allocate IP address from the...

Page 131: ...e This command disables enables the DHCP relay on the switch configure dhcp relay vlan VLAN_ RANGE This command enables the DHCP relay function on a VLAN or a range of VLANs configure no dhcp relay vl...

Page 132: ...N MANUAL CWGE24MS2 TECH SUPPORT 1 888 678 9427 Web Configuration Parameter Description State Enables disables the DHCP relay for the Switch VLAN State Enables disables the DHCP relay on the specific V...

Page 133: ...n is connected to a physical network but secondary connection is connected to a wireless network When enable dual homing feature device will default connect to Internet by primary connection and secon...

Page 134: ...e a single port or a trunk group configure no dual homing primary channel This command removes the dual homing primary channel for the system configure dual homing secondary channel port trunk VALUE T...

Page 135: ...678 9427 Web Configuration Parameter Description State Enables disables the Dual Homing for the Switch Primary channel Configures the primary channel The channel can be single port or a trunk group S...

Page 136: ...ring node adjacent to the RPL the RPL neighbour node may also participate in blocking or unblocking its end of the RPL The Ethernet rings could support a multi ring ladder network that consists of co...

Page 137: ...old off timer Each ERN uses a hold off timer to delay reporting a port failure When the timer expires the ERN checks the port status If the issue still exists the failure is reported If the issue does...

Page 138: ...stance are blocked Notice Control VLAN and Instance In CLI or Web configurations there are the Control VLAN and the Instance settings If the Control VLAN is configured for a ring and you want to confi...

Page 139: ...ring default 500ms erps ring holdoff timer This command configures the Hold off Timer for the ERPS ring default 0 ms erps ring left port PORTID type owner neighbor normal This command configures the...

Page 140: ...INS_CWGE24MS2_REV 10 05 16 PAGE 140 INSTALLATION AND OPERATION MANUAL CWGE24MS2 TECH SUPPORT 1 888 678 9427 Web configuration Ring Settings...

Page 141: ...he WTR time for the ring The Valid value is from 5 to 12 min MEL Configures the Control MEL for the ring The Valid value is from 0 to 7 The default is 7 Guard Timer Configures the Guard time for the r...

Page 142: ...the instance ID The valid value is from 1 to 31 Control VLAN Configures the control vlan for the instance The valid value is from 1 to 4094 Data VLAN Configures the data vlan for the instance The val...

Page 143: ...e ports you aggregate then the fewer available ports you have A trunk group is one logical link containing multiple ports The Switch supports both static and dynamic link aggregation Note In a properl...

Page 144: ...aggregation GROUP_ID disable enable The command disables enables the trunk on the specific trunk group configure link aggregation GROUP_ID interface PORTLISTS The command adds ports to a specific tru...

Page 145: ...specific trunk group Member Ports Select the ports to be added to the static trunk group Apply Click Apply to configure the settings Refresh Click this to reset the fields to the last setting Trunk Gr...

Page 146: ...s All ports in the same trunk group must have the same media type speed and duplex mode and flow control settings Configure trunk groups or LACP before you connect the Ethernet switch to avoid causing...

Page 147: ...s and partner s system ID configure lacp disable enable This command disables enables the LACP on the switch configure lacp GROUP_ID disable enable This command disables enables the LACP on the speci...

Page 148: ...INS_CWGE24MS2_REV 10 05 16 PAGE 148 INSTALLATION AND OPERATION MANUAL CWGE24MS2 TECH SUPPORT 1 888 678 9427 Web Configuration LACP Settings...

Page 149: ...to set the priority of an active port using Link Aggregation Control Protocol LACP The smaller the number the higher the priority level Group LACP Select a trunk group ID and then select whether to E...

Page 150: ...Default 32768 System ID The neighbor Switch s system ID Port The direct connected port Id of the neighbor Switch Age The available time period of the neighbor Switch LACP information Port State The d...

Page 151: ...s point of attachment to the IEEE 802 LAN required by those management entity or entities The information distributed via this protocol is stored by its recipients in a standard Management Information...

Page 152: ...Switch s message TTL tx hold tx interval interface lldp agent disable enable rx only tx only This command configures the LLDP agent function disable Disable the LLDP on the specific port enable Transm...

Page 153: ...ch Tx Interval Configures the interval to transmit the LLDP packets Tx Hold Configures the tx hold time which determines the TTL of the Switch s message TTL tx hold tx interval Time To Live The hold t...

Page 154: ...e port s neighbor information Local Port The local port ID Remote Port ID The connected port ID Chassis ID The neighbor s chassis ID System Name The neighbor s system name System Description The neigh...

Page 155: ...nd do loop detection again The Switch generates syslog internal log messages as well as SNMP traps when it shuts down a port via the loop detection feature Default Settings The default global Loop Det...

Page 156: ...etection on the port interface no shutdown This command enables the port It can unblock port blocked by loop detection interface loop detection recovery disable enable This command enables disables th...

Page 157: ...INS_CWGE24MS2_REV 10 05 16 PAGE 157 INSTALLATION AND OPERATION MANUAL CWGE24MS2 TECH SUPPORT 1 888 678 9427 Web Configuration...

Page 158: ...ect Enable to reactivate the port automatically after the designated recovery time has passed Recovery Time Specify the recovery time in minutes that the Switch will wait before reactivating the port...

Page 159: ...untrusted port inserting and removing VSA Tags vendor specific tag into and from PAD messages PPPoE Discovery Stage The PPPoE client broadcasts a PADI packet that contains information about the servi...

Page 160: ...endor specific tag to PADI PPPoE Active Discovery Initialization and PADR PPPoE Active Discovery Request packets from PPPoE clients This tag is defined in RFC 2516 and has the following format for thi...

Page 161: ...option The system variables can be the host name of the access node Switch the port number of the PPPoE client and or the VLAN ID on the PPPoE packet Table 4 PPPoE IA System Variable System Variable D...

Page 162: ...ients Trusted ports are connected to PPPoE servers If a PADO PPPoE Active Discovery Offer PADS PPPoE Active Discovery Session confirmation or PADT PPPoE Active Discovery Terminate packet is sent from...

Page 163: ...es the PPPoE IA on either a a specific VLAN b a comma separated list like x y or c a range like x y configure pppoe intermediate agent circuit id vlan VLAN list This command enables the PPPoE IA circu...

Page 164: ...nt vendor tag The command sets the retransmitting policy of the specific interface as keep interface no pppoe intermediate agent vlan This command disables the PPPoE IA on all VLANs interface no pppoe...

Page 165: ...Defined String User defined circuit ID string for the PPPoE IA PPPoE IA VLAN Selects Add to increase the PPPoE IA Vlan or Remove to delete the PPPoE IA Vlan Circuit ID VLAN Selects Add to increase the...

Page 166: ...INS_CWGE24MS2_REV 10 05 16 PAGE 166 INSTALLATION AND OPERATION MANUAL CWGE24MS2 TECH SUPPORT 1 888 678 9427 Port Configuration...

Page 167: ...for the PPPoE IA Interface VLAN Selects Add to increase the interface Vlan or Remove to delete the interface Vlan Circuit ID String User defined circuit ID string on specific interface vlan for the P...

Page 168: ...route Packet is forwarded on the assigned next hop in the route CLI configuration Node Command Description enable show ip forwarding status This command displays the current configuration of the ip fo...

Page 169: ...interface with routing L3 interface no ipv4 address A B C D M This command deletes a specified IPv4 interface route from the interface vlan This command deletes all dependent static routes on the spec...

Page 170: ...55 CWGE24MS2 config no ipv6 arp 1234 ab ccdd 00 11 22 33 44 55 Assigning a IPv4 IPv6 interface router This command is used to add an IPv4 IPv6 interface route to a interface vlan CWGE24MS2 config int...

Page 171: ...es the route to act as an ARP proxy globally IPv4 ARP Table Adds a static IPv4 ARP entry in the ARP table Deletes a static IPv4 ARP entry from the ARP table IP The IP address for the entry MAC The MAC...

Page 172: ...face Route or Static Route IP M The IP address and the netmask for the entry IP The static route address for the Static Route type only IPv6 Adds an IPv6 Interface Route Static Route onto the interfac...

Page 173: ...ughout the network from the device that generates the topology change In STP a longer delay is required as the device that causes a topology change first notifies the root bridge and then the root bri...

Page 174: ...cost of transmitting a frame on to a LAN through that port It is recommended to assign this value according to the speed of the bridge the slower the media the higher the cost How STP Works After a br...

Page 175: ...ndicate it should return to the blocking state to prevent a loop Disabled Not strictly part of STP a network administrator can manually disable a port 802 1w RSTP In 1998 the IEEE with document 802 1w...

Page 176: ...th Cost The valid value is from 1 to 200000000 Higher cost paths are more likely to be blocked by STP if a network loop is detected BPDU Guard This is a per port setting If the port is enabled in BPDU...

Page 177: ...ble show spanning tree blockedports This command displays the spanning tree information for only blocked port s enable show spanning tree port detail PORT_ID This command displays the spanning tree in...

Page 178: ...ing tree priority 0 61440 This command configures the priority for the system configure no spanning tree priority This command configures the default values for the system priority interface spanning...

Page 179: ...ble This command configures enables disables the bpduguard function for the specific port if range spanning tree rootguard disable enable This command enables disables the BPDU Root guard port setting...

Page 180: ...listen for conflicting information that would make it return to a blocking state otherwise temporary data loops might result The allowed range is 4 to 30 seconds Max Age This is the maximum time in s...

Page 181: ...the same priority the switch with the lowest MAC address will then become the root switch Enter a value from 0 61440 The lower the numeric value you assign the higher the priority for this bridge Pri...

Page 182: ...ORT 1 888 678 9427 Port Parameters Parameter Description Port Selects a port that you want to configure Active Enables Disables the spanning tree function for the specific port Path Cost Configures th...

Page 183: ...Guard Enables Disables the BPDU root guard function for the specific port Port Status Active The state of the STP function Role The port role Should be one of the Alternated Designated Root Backup Non...

Page 184: ...will wait before changing states Current Bridge Status MAC address This is the MAC address of the current bridge Priority Priority is used in determining the root switch root port and designated port...

Page 185: ...r of VLANs Multiple Spanning Tree Regions For switches to participate in multiple spanning tree MST instances you must consistently configure the switches with the same MST configuration information A...

Page 186: ...STP switch triggers a topology change in the IST instance and in all the MST instances active on that port Interoperability with 802 1D STP A switch running MSTP supports a built in protocol migration...

Page 187: ...tree one of the three modes STP RSTP MSTP configure spanning tree mst forward time This command configures the forward time for the MSTP configure no spanning tree mst forward time This command resets...

Page 188: ...onfigures the instance and vlan map mst name This command configures a region name for the MSTP mst no name This command reset the region name for the MSTP mst revision This command configures the rev...

Page 189: ...mode STP Spanning Tree Protocol RSTP Rapid Spanning Tree Protocol MSTP Multiple Spanning Tree Protocol Configuration Parameters Region Name Configures the region name for the Switch Revision Configure...

Page 190: ...INS_CWGE24MS2_REV 10 05 16 PAGE 190 INSTALLATION AND OPERATION MANUAL CWGE24MS2 TECH SUPPORT 1 888 678 9427 Bridge Parameters...

Page 191: ...ving a BPDU before attempting to reconfigure All Switch ports except for designated ports should receive BPDUs at regular intervals Any port that age out STP information provided in the last BPDU beco...

Page 192: ...INS_CWGE24MS2_REV 10 05 16 PAGE 192 INSTALLATION AND OPERATION MANUAL CWGE24MS2 TECH SUPPORT 1 888 678 9427 Port Parameters...

Page 193: ...specific port Edge or Non Edge BPDU Filter Enables Disables the BPDU filter function for the specific port BPDU Guard Enables Disables the BPDU guard function for the specific port ROOT Guard Enables...

Page 194: ...e root bridge MAX Age This is the maximum time in seconds the Switch can wait without receiving a configuration message before attempting to reconfigure Hello Time This is the time interval in seconds...

Page 195: ...by the IEEE standards Network systems typically check for miss wiring or unidirectional problems at the physical layer The physical layer defines the actual physical components such as connectors and...

Page 196: ...seconds interface no shutdown This command enables the specific ports interface udld port enable This command enables the udld state for the specific port interface no udld port enable This command di...

Page 197: ...fig interface port_1 CWGE24MS2 config if no udld port enable Case 5 To enable aggressive mode on a specific port example port 1 CWGE24MS2 configure terminal CWGE24MS2 config interface port_1 CWGE24MS2...

Page 198: ...INS_CWGE24MS2_REV 10 05 16 PAGE 198 INSTALLATION AND OPERATION MANUAL CWGE24MS2 TECH SUPPORT 1 888 678 9427 Web Configurations Port Settings...

Page 199: ...the port working in Normal mode UDLD Port Status State Display the current UDLD port state for the specific port Aggressive Display the current Aggressive state for the specific port Bidirectional Sta...

Page 200: ...tains the IP address and the associated MAC and VLAN numbers The IP Source Guard is supported on Layer 2 ports only including access and trunk ports The IP Source Guard features include below function...

Page 201: ...tion You can also specify the maximum number for DHCP packets that each port trusted or untrusted can receive each second Trusted ports are connected to DHCP servers or other switches The Switch disca...

Page 202: ...t in the DHCP snooping binding table will be deleted You must enable the global DHCP snooping and DHCP Snooping for vlan first The main purposes of the DHCP Snooping are Create and maintain binding ta...

Page 203: ...1 connect to port 3 DHCP Server connect to port 1 Procedures Default environments DHCP Client 1 ipconfig release DHCP Client 1 ipconfig renew DHCP Client 1 can get an IP address Enable the global DHC...

Page 204: ...g function on a VLAN or range of VLANs configure no dhcp snooping vlan VLANID This command disables the DHCP snooping function on a VLAN or range of VLANs configure dhcp snooping server IPADDR This co...

Page 205: ...nable DHCP snooping and there are no trusted ports Select Disable to not use DHCP snooping VLAN State Select Add and enter the VLAN IDs you want the Switch to enable DHCP snooping on You can designate...

Page 206: ...ion Port Select a port number to modify its maximum host count Trust Configures the specific port if it is a trust port Maximum Host Count Enter the maximum number of hosts 1 32 that are permitted to...

Page 207: ...valid DHCP server s packets will be passed to the client If you want to enable this feature you must enable the DHCP Snooping function first The Switch allows users to configure up to three valid DHC...

Page 208: ...e valid DHCP server s IP address Apply Click Apply to configure the settings Refresh Click Refresh to begin configuring this screen afresh Server Screening List No This field displays the index number...

Page 209: ...ng If you try to create a static binding with the same MAC address and VLAN ID as an existing static binding the new static binding replaces the original one CLI Configuration Node Command Description...

Page 210: ...er for each binding Click it to update an existing entry MAC Address This field displays the source MAC address in the binding IP Address This field displays the IP address assigned to the MAC address...

Page 211: ...scription MAC Address This field displays the source MAC address in the binding IP Address This field displays the IP address assigned to the MAC address in the binding Lease This field displays how l...

Page 212: ...ntrusted ports Verifies that each of these intercepted packets has a valid IP to MAC address binding before it updates the local ARP cache or before it forwards the packet to the appropriate destinati...

Page 213: ...s None Port Trusted Port Trusted 1 no 2 no 3 no 4 no 5 no 6 no 7 no 8 no 9 no 10 no 11 no 12 no 13 no 14 no 15 no 16 no 17 no 18 no 19 no 20 no 21 no 22 no 23 no 24 no Notices There are a global state...

Page 214: ...n VLANID This command enables the ARP Inspection function on a VLAN or range of VLANs configure no arp inspection vlan VLANID This command disables the ARP Inspection function on a VLAN or range of VL...

Page 215: ...uations The sender s information in the ARP packet does not match any of the current bindings The rate at which ARP packets arrive is too high You can specify the maximum rate at which ARP packets can...

Page 216: ...AC filter entries learned by this port When Port link down and ARP Inspection was enabled Switch will remove the MAC filter entries learned by this port The maximum entry of the MAC address filter tab...

Page 217: ...ttings Refresh Click Refresh to begin configuring this screen afresh Filter Table No This field displays a sequential number for each MAC address filter MAC Address This field displays the source MAC...

Page 218: ...Resolution engine collects the information action and metering results from the hit entries if more than one rule matches the actions and meter counters are taken from the policy associated with the...

Page 219: ...st This command displays all of the access control profiles configure access list STRING ip type ipv4 ipv6 This command creates a new access control profile Where the STRING is the profile name And yo...

Page 220: ...acl source mac MACADDR MACADDR This command configures the source AMC and mask for the profile acl no source mac This command removes the source MAC and mask from the profile acl source ip host IPADD...

Page 221: ...er a range of IP in the packets source IP or destination IP For example source ip 172 20 1 1 255 255 0 0 The command will filter source IP range from 172 20 0 0 to 172 20 255 255 Example CWGE24MS2 con...

Page 222: ...INS_CWGE24MS2_REV 10 05 16 PAGE 222 INSTALLATION AND OPERATION MANUAL CWGE24MS2 TECH SUPPORT 1 888 678 9427 Web Configuration...

Page 223: ...ield DSCP Configure the DSCP for the profile 802 1p Configures the 802 1p for the profile Source IP Configures the source IP of the packets that you want to filter Mask of Source IP Configures the bit...

Page 224: ...g allowed to pass through security to the terminal With 802 1X port based authentication the supplicant provides credentials such as user name password or digital certificate to the authenticator and...

Page 225: ...a user has not passed 802 1x port authentication in drop only incoming packets on the port when a user has not passed 802 1x port authentication Re authentication Specify if a subscriber has to perio...

Page 226: ...lays the current 802 1x configurations enable show dot1x username This command displays the current user accounts for the local authentication enable show dot1x accounting record This command displays...

Page 227: ...the port configuration to default settings interface dot1x max req 1 10 This command sets the max req times of a port 1 10 interface dot1x port control auto force authorized force unauthorized This c...

Page 228: ...o use Local or RADIUS as the authentication method The Local method of authentication uses the guest and user user groups of the user account database on the Switch itself to authenticate However only...

Page 229: ...key is not sent over the network This key must be the same on the external RADIUS server and the Switch Second Radius Server This is the backup server used only when the Primary Radius Server is down...

Page 230: ...INS_CWGE24MS2_REV 10 05 16 PAGE 230 INSTALLATION AND OPERATION MANUAL CWGE24MS2 TECH SUPPORT 1 888 678 9427 Port Settings...

Page 231: ...y the amount of times the Switch will try to connect to the authentication server before determining the server is down The acceptable range for this field is 1 to 10 times Reauth period Specify how o...

Page 232: ...e port Force Authorized forces the port to be authorized Force Unauthorized forces the port to be unauthorized No packets can Pass through the port Guest VLAN This field displays the Guest VLAN settin...

Page 233: ...port has implications It means that the network will have more traffic If a switch or a hub is connected by a user instead of an administrator then there are chances that loops will be created So it...

Page 234: ...rface port security disable enable This command enables disables the port security function on the specific port interface port security limit VALUE This command configures the maximum MAC entries on...

Page 235: ...Security on the Switch Port Select a port number to configure State Select Enable Disable to permit Port Security on the port Maximum MAC The maximum number of MAC addresses allowed per interface The...

Page 236: ...well as disabled independently of each other In case TACACS authentication fails on account of the server being unreachable the box can be made to default to a local authentication policy TACACS packe...

Page 237: ...CS service must be enabled before configuring the authentication authorization and accounting parameters otherwise it will return error as Tacacs service is not enabled Not allowed to disable the Auth...

Page 238: ...figure no tacacs plus authentication login mode enable To disable the authentication login mode configure tacacs plus authentication login mode local enable To enable the authentication login local mo...

Page 239: ...no tacacs plus accounting exec enable To disable the level15 commands for accounting configure tacacs plus line console enable To enable TACACSP on the console port configure no tacacs plus line cons...

Page 240: ...tication in Enable mode Authorization Command Enables Disables the authorization with show commands Authorization Exec Enables Disables the authorization with configuration commands Accounting Command...

Page 241: ...if there are any abnormal situation need process immediately CLI Configuration Node Command Description enable show alarm info This command displays alarm information Web Configuration Parameter Desc...

Page 242: ...isplays the 1 0V and 2 5V and 3 3V input status CLI Configuration Node Command Description enable show hardware monitor C F This command displays hardware working information Example CWGE24MS2 show ha...

Page 243: ...his feature helps users to monitor the ports statistics to display the link up ports traffic utilization only CLI Configuration Node Command Description enable show port statistics This command displa...

Page 244: ...ield displays the transmitted byte count Rx Errors The field displays the received error count Tx Errors The field displays the transmitted error count Rx Drops The field displays the received drop co...

Page 245: ...current port speed Utilization The port traffic utilization Refresh Click this button to refresh the screen quickly RMON Statistics Introduction This feature helps users to monitor or clear the port...

Page 246: ...ND OPERATION MANUAL CWGE24MS2 TECH SUPPORT 1 888 678 9427 Web Configuration Parameter Description Port Select a port or a range of ports to display their RMON statistics Show Show them Clear Clear the...

Page 247: ...SFP module s information such as vendor name connector type revision serial number manufacture date and to know the DDMI information if the SFP modules have supported the DDMI function CLI Configurat...

Page 248: ...e Apply Click Apply to display the SFP information Fiber Cable To indicate if the fiber cable is connected Connector Code of optical connector type Vendor Name SFP vendor name Vendor PN Part Number Ve...

Page 249: ...ulticast packets rate If the packet rate is over the user s specification the port will be blocked And if the recovery function is enabled the port will be enabled after recovery time Default Settings...

Page 250: ...ry disable enable This command enables disables the recovery function for the traffic monitor on the port interface traffic monitor recovery time VALUE This command configures the recovery time for th...

Page 251: ...to configure State Enables disables the traffic monitor function on these ports Action Unblock these ports Packet Type Specify the packet type which you want to monitor Packet Rate Specify the packet...

Page 252: ...n be queried and sometimes set by managing applications Support below MIBs RFC 1157 A Simple Network Management Protocol RFC 1213 MIB II RFC 1493 Bridge MIB RFC 1643 Ethernet Interface MIB RFC 1757 RM...

Page 253: ...t 0 0 0 0 Subnet Mask 0 0 0 0 It means that all hosts with the community string can access the Switch Default Settings SNMP disabled System Location CWGE24MS2 Maximum length 64 characters System Conta...

Page 254: ...or the system configure snmp system name STRING This command configures a name for the system The System Name is same as the host name configure snmp trap receiver IPADDR VERSION COMMUNITY This comman...

Page 255: ...tion SNMP State Select Enable to activate SNMP on the Switch Select Disable to not use SNMP on the Switch System Name Type a System Name for the Switch The System Name is same as the host name System...

Page 256: ...low the SNMP manager using this string to create or edit MIBs configure settings on the Switch IP Version Select the IP version IPv4 or IPv6 Network ID of Trusted Host Type the IP address of the remot...

Page 257: ...ity string s rights This will be Read Only or Read Write Network ID of Trusted Host This field displays the IP address of the remote SNMP management station after it has been modified by the subnet ma...

Page 258: ...s remote trap station Apply Click Apply to configure the settings Refresh Click Refresh to begin configuring this screen afresh Trap Receiver List No This field displays the index number of the trap r...

Page 259: ...SHA STRINGS des STRINGS Configures v3 user of authentication and encryption configure snmp group GROUPNAME noauth read STRINGS write STRINGS notify STRINGS Configures v3 group of non authentication co...

Page 260: ...v means messages are authenticated and encrypted Auth Algorithm Select MD5 or SHA Algorithm when security level is auth or priv Auth Password Set the password for this user when security level is auth...

Page 261: ...v3 user name Security Level Select the security level of the v3 group to use Read View Note that if a group is defined without a read view than all objects are available to read default value is none...

Page 262: ...lick Delete to remove a v3 group SNMPv3 View Parameter Description View Name Enter the v3 view name for creating an entry in the SNMPv3 MIB view table View Subtree The OID defining the root of the sub...

Page 263: ...on_State 0 Specific_Configuration_Reboot 0 If AUTO_PROVISION_VER is biggest than current auto provision version do step 3 otherwise wait 24 hours and go back to step 1 If the Firmware_Upgrade_State 1...

Page 264: ...auto provision configurations auto provision active enable disable This command enables disables the auto provision function auto provision server address IPADDR This command configures the auto provi...

Page 265: ...INS_CWGE24MS2_REV 10 05 16 PAGE 265 INSTALLATION AND OPERATION MANUAL CWGE24MS2 TECH SUPPORT 1 888 678 9427 Web Configuration...

Page 266: ...own Configuration Change The system configurations in the NV RAM have been updated Firmware Upgrade The system firmware image has been updated User Login A user login the system Port Blocked A port is...

Page 267: ...Outgoing Messages smtp gmail com SSL 465 smtp gmail com StartTLS 587 POP3 Server Incoming Messages pop gmail com SSL 995 Outlook com Server Authentication Port SMTP Server Outgoing Messages smtp live...

Page 268: ...thentication account configure mail alarm mail from This command configures the mail sender configure mail alarm mail to This command configures the mail receiver configure mail alarm server ip IPADDR...

Page 269: ...ble disable the Mail Alarm function Server IP Specifies the mail server s IP address Server Port Specifies the TCP port for the SMTP Account Name Specifies the mail account name Account Password Speci...

Page 270: ...new copy of configuration file from TFTP server Where URL PATH can be ftp user pass 192 168 1 1 file http 192 168 1 1 file tftp 192 168 1 1 file configure archive upload config URL PATH This command...

Page 271: ...N AND OPERATION MANUAL CWGE24MS2 TECH SUPPORT 1 888 678 9427 The user configuration file is default The configurations have been modified Web Configuration Save Configurations Press the Save button to...

Page 272: ...configurations file to your Switch Select the full path to your configuration file Click the Upload button to start the process Reset the factory default settings of the Switch Press the Reset button...

Page 273: ...th and file name of the firmware file you wish to upload to the Switch in the File path text box or click Browse to locate it Click Upgrade to load the new firmware Reboot Reboot allows you to restart...

Page 274: ...able show server status This command displays the current server status configure ssh server This command enables the ssh on the Switch configure no ssh server This command disables the ssh on the Swi...

Page 275: ...State Selects Enable or Disable to enable or disable the Telnet service SSH Server State Selects Enable or Disable to enable or disable the SSH service Apply Click Apply to configure the settings Ref...

Page 276: ...d Description enable show syslog The command displays the entire log message recorded in the Switch enable show syslog level LEVEL The command displays the log message with the LEVEL recorded in the S...

Page 277: ...ver IP address in dotted decimal notation For example 192 168 1 1 Select Enable to activate switch sent log message to Syslog server when any new log message occurred Log Level Select Alert Critical E...

Page 278: ...s two types of the user account admin and normal The default user s account is username admin password admin admin read write normal read only Cannot enter the privileged mode in CLI Cannot apply any...

Page 279: ...nable show user account This command displays the current user accounts configure add user USER_ACCOUNT PASSWORD normal admin This command adds a new user account configure delete user USER_ACCOUNT Th...

Page 280: ...hich group the user associates admin read and write or normal read only for this user account Apply Click Apply to add modify the user account Refresh Click Refresh to begin configuring this screen af...

Page 281: ...INS_CWGE24MS2_REV 10 05 16 PAGE 281 INSTALLATION AND OPERATION MANUAL CWGE24MS2 TECH SUPPORT 1 888 678 9427...

Page 282: ...CH SUPPORT 1 888 678 9427 INFO COMNET NET 8 TURNBERRY PARK ROAD GILDERSOME MORLEY LEEDS UK LS27 7LE T 44 0 113 307 6400 F 44 0 113 253 7462 INFO EUROPE COMNET NET MECHANICAL INSTALLATION INSTRUCTIONS...

Reviews:

No comments

Related manuals for CWGE24MS2

Patton electronics 4520 Specification Sheet preview
4520
Brand: Patton electronics Pages: 2
Patton electronics 4520 Getting Started Manual preview
4520
Brand: Patton electronics Pages: 86
Icidu NI-707533 Manual Manual preview
NI-707533
Brand: Icidu Pages: 10
Quectel Wi-Fi-M.2 EVB User Manual preview
Wi-Fi-M.2 EVB
Brand: Quectel Pages: 23
Magnadyne RV2458 Installation Manual preview
RV2458
Brand: Magnadyne Pages: 8
Seriallink SLK-R602 Series Manual preview
SLK-R602 Series
Brand: Seriallink Pages: 29
ADC HiGain H2TU-R-402 List 7A Quick Installation preview
HiGain H2TU-R-402 List 7A
Brand: ADC Pages: 7
Renesas H8S/2633 User Manual preview
H8S/2633
Brand: Renesas Pages: 28
WAGO 852-1411 Operating And Assembly Instructions preview
852-1411
Brand: WAGO Pages: 2
Connectland CR-CNL-FAST-R Installation Manual preview
CR-CNL-FAST-R
Brand: Connectland Pages: 10
Foxconn RAID Foldout Introduction preview
RAID Foldout
Brand: Foxconn Pages: 1
R3 Bridge E User Manual preview
Bridge E
Brand: R3 Pages: 48
Alcatel OmniSwitch 6624 Network Configuration Manual preview
OmniSwitch 6624
Brand: Alcatel Pages: 546
Patton electronics ForeFront 2616RC Getting Started Manual preview
ForeFront 2616RC
Brand: Patton electronics Pages: 80
MasterForce 241-0836 Operating Manual preview
241-0836
Brand: MasterForce Pages: 12
Network Instruments WAN Probe Kit Installation & Quick Start Manual preview
WAN Probe Kit
Brand: Network Instruments Pages: 44
Tripp Lite N304-05M Specification Sheet preview
N304-05M
Brand: Tripp Lite Pages: 2
Kraun Wireless ADSL2/2plus Modem Router 54Mbps User Manual preview
Wireless ADSL2/2plus Modem Router 54Mbps
Brand: Kraun Pages: 57

Brands by name

Popular brands

Load more brands