background image

APPENDIX A 

ACRONYMS 

 

169 

 

    The TCP protocol guarantees reliable and in-order delivery of data from sender to receiver and distinguishes data 
for multiple connections by concurrent applications (for example, Web server and e-mail server) running on the same 
host. 
    The applications on networked hosts can use TCP to create connections to one another. It is known as a connection-
oriented protocol, which means that a connection is established and maintained until such time as the message or 
messages to be exchanged by the application programs at each end have been exchanged. TCP is responsible for 
ensuring that a message is divided into the packets that IP manages and for reassembling the packets back into the 
complete message at the other end. 
    Common network applications that use TCP include the World Wide Web (WWW), e-mail, and File Transfer Protocol 
(FTP). 
 

TELNET 

    TELNET is an acronym for TELetype NETwork. It is a terminal emulation protocol that uses the Transmission Control 
Protocol (TCP) and provides a virtual connection between TELNET server and TELNET client. 
    TELNET enables the client to control the server and communicate with other servers on the network. To start a 
Telnet session, the client user must log in to a server by entering a valid username and password. Then, the client user 
can enter commands through the Telnet program just as if they were entering commands directly on the server 
console. 
 

TFTP 

    TFTP is an acronym for Trivial File Transfer Protocol. It is transfer protocol that uses the User Datagram Protocol 
(UDP) and provides file writing and reading, but it does not provide directory service and security features.  
 

ToS 

    ToS is an acronym for Type of Service. It is implemented as the IPv4 ToS priority control. It is fully decoded to 
determine the priority from the 6-bit ToS field in the IP header. The most significant 6 bits of the ToS field are fully 
decoded into 64 possibilities, and the singular code that results is compared against the corresponding bit in the IPv4 
ToS priority control bit (0~63).  
 

TLV 

    TLV is an acronym for Type Length Value. A LLDP frame can contain multiple pieces of information. Each of these 
pieces of information is known as TLV.  
 

TKIP 

    TKIP is an acronym for Temporal Key Integrity Protocol. It used in WPA to replace WEP with a new encryption 
algorithm. TKIP comprises the same encryption engine and RC4 algorithm defined for WEP. The key used for 
encryption in TKIP is 128 bits and changes the key used for each packet.  
 

UDP 

    UDP is an acronym for User Datagram Protocol. It is a communications protocol that uses the Internet Protocol (IP) 
to exchange the messages between computers. 
    UDP is an alternative to the Transmission Control Protocol (TCP) that uses the Internet Protocol (IP). Unlike TCP, 
UDP does not provide the service of dividing a message into packet datagrams, and UDP doesn't provide reassembling 
and sequencing of the packets. This means that the application program that uses UDP must be able to make sure that 
the entire message has arrived and is in the right order. Network applications that want to save processing time 
because they have very small data units to exchange may prefer UDP to TCP. 
    UDP provides two services not provided by the IP layer. It provides port numbers to help distinguish different user 
requests and, optionally, a checksum capability to verify that the data arrived intact. 
    Common network applications that use UDP include the Domain Name System (DNS), streaming media applications 
such as IPTV, Voice over IP (VoIP), and Trivial File Transfer Protocol (TFTP). 
 

UPnP 

    UPnP is an acronym for Universal Plug and Play. The goals of UPnP are to allow devices to connect seamlessly and to 
simplify the implementation of networks in the home (data sharing, communications, and entertainment) and in 
corporate environments for simplified installation of computer components. 
 

User Priority 

Summary of Contents for FRM220-MX210 series

Page 1: ...1 FRM220 MX210 Series 2 Gigabit Ethernet Multiplexer ...

Page 2: ...t CTC Union Technologies was negligent regarding the design or manufacture of said product TRADEMARKS Microsoft is a registered trademark of Microsoft Corp HyperTerminal is a registered trademark of Hilgraeve Inc ActiPHY and VeriReach are registered trademarks of Vitesse Semiconductor WARNING This equipment has been tested and found to comply with the limits for a Class A digital device pursuant t...

Page 3: ... the following models FRM220 MX210 This document is the current official release manual Contents are subject to change without prior notice Please check CTC Union s website for any updated manual or contact us by E mail at sales ctcu com Please address any comments for improving this manual or to point out omissions or errors to marketing ctcu com Thank you 2014 CTC Union Technologies Co Ltd All R...

Page 4: ...3 System IP 15 3 2 4 System IP Status 17 3 2 5 System NTP 17 3 2 6 System Time 18 3 2 7 System Log Configuration 19 3 2 8 System Log Information 19 3 2 9 System Detailed Log 20 3 2 10 System CPU Load 20 3 3 PORTS 21 3 3 1 Ports Configuration 21 3 3 2 Ports State 26 3 3 3 Ports Traffic Overview 26 3 3 4 Ports QoS Statistics 27 3 3 5 Ports QCL Status 27 3 3 6 Ports Detailed Statistics 28 3 3 7 Ports...

Page 5: ...Rate Limiters 57 3 4 5 3 3 Access Control List 57 3 4 5 3 4 ACL Status 61 3 4 5 4 DHCP 62 3 4 5 4 1 Snooping Configuration 63 3 4 5 4 2 Relay Configuration 63 3 4 5 4 3 Relay Statistics 64 3 4 5 5 IP Source Guard 65 3 4 5 5 1 Configuration 65 3 4 5 5 2 Static Table 65 3 4 5 5 3 Dynamic Table 66 3 4 5 6 ARP inspection 66 3 4 5 6 1 Port Configuration 66 3 4 5 6 2 VLAN Configuration 67 3 4 5 6 3 Stat...

Page 6: ... 10 2 2 VLAN Configuration 101 3 10 2 3 Port Filtering Profile 102 3 10 2 4 Status 103 3 10 2 5 Groups Information 103 3 10 2 6 IPv6 SFM Information 104 3 11 LLDP 104 3 11 1 Configuration 105 3 11 2 LLDP MED 106 3 11 3 Neighbours 108 3 11 4 LLDP MED Neighbours 109 3 11 5 LLDP Global Counters 109 3 12 EPS 110 3 13 MEP 112 3 14 ERPS 122 3 15 MAC TABLE 123 3 15 1 Configuration 123 3 15 2 MAC Address ...

Page 7: ...Control 150 3 21 MIRRORING 151 3 22 UPNP 151 3 23 DIAGNOSTICS 151 3 23 1 Ping 152 3 23 2 Link OAM 152 3 23 2 1 MIB Retrieval 152 3 23 3 Ping6 153 3 23 4 VeriPHY 153 3 23 5 EPG 154 3 23 6 Test Pattern 155 3 23 7 Loopback 155 3 24 MAINTENANCE 156 3 24 1 Restart Device 156 3 24 2 Factory Defaults 156 3 24 3 Software 156 3 24 3 1 Upload 156 3 24 3 2 Image Select 157 3 24 3 3 Upgrade boot code 157 3 24...

Page 8: ...multiplexer also equips advanced OSI Layer 2 switch technologies including jumbo frame support tag based VLAN port trunking fiber redundancy 802 1D Spanning Tree Protocol 802 3x Flow Control and ingress egress bandwidth control per port With its own embedded 32 bit processor MX210 supports stand alone management via IP Telnet SNMP HTTP or in band management via 802 3ah OAM protocol when connected ...

Page 9: ...lt Button The Reset to Default button is located next to RJ 45 UTP port It is used to recover lost password or to return TCP IP settings to factory default values Use a pencil or blue point pen and then press the button for 6 seconds then release to reset the device to the factory default settings DO NOT POWER OFF Allow the device to again fully reboot Default values Login Username admin Password ...

Page 10: ...vailable with single AC 100 240VAC single DC 18 75VDC dual AC dual DC or AC plus DC combo The single slot chassis with external power adapter works with AC source voltage only with the provided 100 240VAC 12VDC 1A switching adapter Figure 2 Chassis options for FRM220 MX210 card CH02M or CH02 NMC XX Chassis XX AC DC AA DD or AD FRM220 CH20 CH01M or CH01 XX Chassis XX AC DC AA DD or AD FRM220 CH01 s...

Page 11: ... terminal block DC power connector pin assignment 2 3 Installation of SFP Modules This device supports SFP modules that are of the Bale Clasp type The bale clasp pluggable module has a bale clasp that secures the module into the SFP cage 2 3 1 Inserting a Bale Clasp SFP Module into the Cage Step 1 Close the bale clasp upward before inserting the pluggable module Step 2 Line up the SFP module with ...

Page 12: ... or above is recommended Firefox Chrome or other stable web browser enter the IP address of the MX210 in the browser s location bar The factory default address is 10 1 1 1 3 1 1 Login A standard login prompt will appear depending on the type of browser used The example below is with Firefox browser The factory default is username admin with no password Web Home Page ...

Page 13: ...uto refresh checkbox may be selected The screen will be auto refreshed every 3 seconds Unless connected directly on a local LAN we recommend not using the auto refresh function as it does generate a bit of traffic 3 1 4 Help System The FRM220 MX210 Series has an online help system to aid the engineer when setting the parameters of the device Each functional setting page is accompanied by a specifi...

Page 14: ...1 1 5 and sysLocation OID 1 3 6 1 2 1 1 6 Remember to click the Save button after entering the configuration information System Contact Indicate the descriptive contact information This could be a person s name email address or other descriptions The allowed string length is 0 255 and the allowed content is the ASCII characters from 32 126 System Name Indicate the hostname for this device Alphabet...

Page 15: ...raffic between interfaces will not be routed In Router mode traffic is routed between all interfaces When configuring this device for multiple VLANs the Router mode should be chosen Router mode is the default mode DNS Server This setting controls the DNS name resolution done by the switch The following modes are supported From any DHCP interfaces The first DNS server offered from a DHCP lease to a...

Page 16: ...is not used The field may also be left blank if IPv4 operation on the interface is not desired IPv4 Current Lease For DHCP interfaces with an active lease this column shows the current interface address as provided by the DHCP server IPv6 Address A IPv6 address is a 128 bit record represented as eight fields of up to four hexadecimal digits with a colon separating each field For example fe80 215 c...

Page 17: ...re the NTP mode operation Possible modes are Enabled Enable NTP client mode operation Disabled Disable NTP client mode operation Server Enter the IPv4 or IPv6 address of an NTP server IPv6 address is in 128 bit records represented as eight fields of up to four hexadecimal digits with a colon separating each field For example fe80 215 c5ff fe03 4dc7 The symbol is a special syntax that can be used a...

Page 18: ...elect appropriate Time Zone from the drop down and click Save to set Acronym Set the acronym of the time zone Daylight Saving Time Configuration Daylight Saving Time This is used to set the clock forward or backward according to the configurations set below for a defined Daylight Saving Time duration Select Disable to disable the Daylight Saving Time configuration Select Recurring and configure th...

Page 19: ...owledgments The syslog packet will always send out even if the syslog server does not exist When the mode of operation is disabled no syslog packets are sent out Server Address This sets the IPv4 host address of syslog server If the switch provides DNS feature it also can be a host name Syslog Level This sets what kind of messages will send to syslog server Possible levels are Info Send informatio...

Page 20: ...mber 3 2 10 System CPU Load This page displays the CPU load using an SVG graph The load is measured as averaged over the last 100ms 1sec and 10 seconds intervals The last 120 samples are graphed and the last numbers are displayed as text as well In order to display the SVG graph your browser must support the SVG format Automatic refresh occurs every 3 seconds ...

Page 21: ... explain these two methods first Then we move on to describe four options available in pull down menu A Switch Mux method This method uses L2 switching technology and aggregates two local ports into two remote ports In this mode the local port 2 and 3 can still switch to each other If you wish to isolate each other you can use port isolation function to make it work B VLAN Mux method As its name i...

Page 22: ...We will describe these four options one by one below Disable Mux mode is disabled When the Mux mode is disabled users can change the port speed of port 1 3 Switch When Switch Mux mode is selected port 1 speed will be fixed in 2 5Gbps FDX It can achieve the following application The Switch Mux mode can also have the following possibilities ...

Page 23: ...bership menu it has the default setup as shown in the following picture Users cannot change the settings anymore Under Private VLANs Port Isolation menu it has the default setup as shown in the following picture Users cannot change the settings anymore When the device is set to Switch Isolate Local Port 2 and 3 Mode it can achieve following application The Switch Isolate Local Port 2 and 3 mode ca...

Page 24: ...ge the settings anymore When the device is set to VLAN Mux mode it can achieve following application Port This device has three fiber optical ports for SFP modules numbered 1 3 and one electrical LAN ports numbered 4 The fifth port is used to connect the device to the FRM 220 device The select all port will apply actions on all ports Link The current link state for each port is displayed graphical...

Page 25: ...ent Tx column indicates whether pause frames on the port are transmitted The Rx and Tx settings are determined by the result of the last Auto Negotiation Check the configured column to use flow control This setting is also related to the setting for Configured Link Speed Maximum Frame Size Enter the maximum frame size allowed for the switch port including FCS This switch supports up to 9600 byte p...

Page 26: ...ate Display an overview graphic of the switch This is the same graphic overview shown when first logging into the switch for management Green colored ports indicate a 10 100M linked state while Amber colored ports indicate a 1G linked state The Yellow colored ports indicate a 2 5G linked state Black ports have no link The link status display can be updated by clicking the Refresh button When Auto ...

Page 27: ...cs for the different queues for all switch ports The displayed counters are Port The logical port for the settings contained in the same row Qn There are 8 QoS queues per port Q0 is the lowest priority queue Rx Tx The number of received and transmitted packets per queue 3 3 5 Ports QCL Status This page shows the QCL status by different QCL users Each row describes the QCE that is defined It is a c...

Page 28: ...under DPL column DSCP If a frame matches the QCE then DSCP will be classified with the value displayed under DSCP column Conflict Displays Conflict status of QCL entries As H W resources are shared by multiple applications it may happen that resources required to add a QCE may not be available In that case it shows conflict status as Yes otherwise it is always No Please note that conflict can be r...

Page 29: ...ories based on their respective frame sizes Receive and Transmit Queue Counters Displays the number of received and transmitted packets per input and output queue Receive Error Counters Rx Drops The number of frames dropped due to lack of receive buffers or egress congestion Rx CRC Alignment The number of frames received with CRC or alignment errors Rx Undersize The number of short1 frames receive...

Page 30: ...gth Laser wavelength Tx Wave Length 2 Laser wavelength Rx not all SFP support this reading Link Length Link Length This is a marketing specification for this SFP module not an actual measurement TX Power The laser diode transmit power is reported by the SFP that support DDI Digital Diagnostic monitoring Interface RX Power The receive optical power is reported by SFP that support DDI RX Sensitivity...

Page 31: ...ntly the only way to login as another user on the web server is to close and reopen the browser By default there is only one user admin assigned the highest privilege level of 15 Click the entries in User Name column to edit the existing users Or click the Add New User button to insert a new user entry Add User User Name Enter the new user name Password Enter the password for this user account Pas...

Page 32: ... and privilege level 5 for a guest account 3 4 1 2 Privilege Levels This page provides an overview of the privilege levels Group Name This name identifies the privilege group In most cases a privilege level group consists of a single module e g LACP RSTP or QoS but a few of them contains more than one The following description defines these privilege level groups in details System Contact Name Loc...

Page 33: ... can be set to one of the following values no Authentication is disabled and login is not possible local Use the local user database on the switch for authentication radius Use remote RADIUS server s for authentication tacacs Use remote TACACS server s for authentication NOTE Methods that involve remote servers will time out if the remote servers are offline In this case the next method is tried E...

Page 34: ...ration mode When the current connection is HTTPS and HTTPS mode operation is disabled web browser will automatically redirect to an HTTP connection Possible modes are Enabled Enable HTTPS mode operation Disabled Disable HTTPS mode operation Automatic Redirect Indicates the HTTPS redirect mode operation It applies only if HTTPS mode Enabled is selected Automatically redirects HTTP of web browser to...

Page 35: ... the matched host can access the switch from TELNET SSH interface Click the Add New Entry button to insert a new entry to the list Click the Delete button to remove a newly inserted entry or select the checkbox to remove a saved entry during the next save Click the Save button to save settings or changes Click the Reset button to restore changed settings to the default settings 3 4 2 2 Access Mana...

Page 36: ...acters from 0x21 to 0x7E Write Community Indicates the community write access string to permit access to the SNMP agent The allowed string length is 0 to 255 and the allowed content is the ASCII characters from 0x21 to 0x7E These two fields are applicable only for SNMP version v1 or v2c If SNMP version is v3 the community string will be associated with SNMPv3 communities table SNMPv3 provides more...

Page 37: ...NMP trap on this page Global Settings Mode Globally enable or disable trap function Click the Add New Entry to insert a SNMP trap entry SNMP Trap Configuration Trap Config Name Indicates a descriptive name for this SNMP trap entry Trap Mode Indicates the SNMP trap mode operation Enabled Enable SNMP trap mode operation ...

Page 38: ...rm mode operation Trap Inform Timeout seconds Indicates the SNMP trap inform timeout The allowed range is 0 to 2147 Trap Inform Retry Times Indicates the SNMP trap inform retry times The allowed range is 0 to 255 Trap Probe Security Engine ID Indicates the SNMP trap probe security engine ID mode of operation Possible values are Enabled Enable SNMP trap probe security engine ID mode of operation Di...

Page 39: ... Select the checkbox to enable Dying Gasp trap A trap will be issued when the remote device encounters power failure After completing all the trap settings click the Save button 3 4 3 3 SNMPv3 Community Configuration Configure SNMPv3 community table on this page The entry index key is Community Delete Check to delete the entry It will be deleted during the next save Community Indicates the communi...

Page 40: ... Level Indicates the security model that this entry should belong to Possible security models are NoAuth NoPriv No authentication and no privacy Auth NoPriv Authentication and no privacy Auth Priv Authentication and privacy The value of security level cannot be modified if entry already exists That means it must first be ensured that the value is set correctly Authentication Protocol Indicates the...

Page 41: ...settings 3 4 3 5 SNMPv3 Group Configuration Configure SNMPv3 group table on this page The entry index keys are Security Model and Security Name Security Model Indicates the security model that this entry should belong to Possible security models are v1 Reserved for SNMPv1 v2c Reserved for SNMPv2c usm User based Security Model USM for SNMPv3 Security Name A string identifying the security name that...

Page 42: ... Model and Security Level Delete Check to delete the entry It will be deleted during the next save Group Name A string identifying the group name that this entry should belong to The allowed string length is 1 to 32 and the allowed content is ASCII characters from 0x21 to 0x7E Security Model Indicates the security model that this entry should belong to Possible security models are any Any security...

Page 43: ...historical record can be used to monitor intermittent problems ID Indicates the index of the entry The range is from 1 to 65535 Data Source Indicates the port ID which wants to be monitored Interval Indicates the polling interval By default 1800 seconds is specified The allowed range is 1 3600 seconds Buckets The number of buckets requested for this entry By default 50 is specified The allowed ran...

Page 44: ... selected variable and calculate the value to be compared against the thresholds Rising or Falling Trigger alarm when the first value is larger than the rising threshold or less than the falling threshold Rising Trigger alarm when the first value is larger than the rising threshold Falling Trigger alarm when the first value is less than the falling threshold Rising Threshold If the current value i...

Page 45: ...ke when an alarm is triggered None No event is generated Log When the event is triggered a RMON log entry will be generated snmptrap Sends a trap message to all configured trap managers logandtrap Logs an event and sends a trap message Community A password like community string sent with the trap Although the community string can be set on this configuration page it is recommended that it be defin...

Page 46: ...ets Frag The number of frames which size is less than 64 octets received with invalid CRC Jabb The number of frames which size is larger than 64 octets received with invalid CRC Coll The best estimate of the total number of collisions on this Ethernet segment 64 Bytes The total number of packets including bad packets received that were 64 octets in length X Y 65 127 128 255 256 511 512 1023 1024 1...

Page 47: ...redths of a percent 3 4 4 7 Alarm Overview ID Display an alarm control index Interval Interval in seconds for sampling and comparing the rising and falling threshold Variable MIB object that is used to be sampled Sample Type The method of sampling the selected variable and calculating the value to be compared against the thresholds Value The value of the statistic during the last sampling period S...

Page 48: ...lay Event log time Log Description Display Event description 3 4 5 Network 3 5 5 1 Port Security Port Security Limit Control can restrict the number of users that can access the switch based on users MAC address and VLAN ID on a per port basis Once the number of users that wants to access the switch exceeds the specified number a selected action will be taken immediately 3 4 5 1 1 Limit Control ...

Page 49: ...sses to access on a port No action is further taken Trap If Limit 1 MAC addresses are seen on the port send an SNMP trap If Aging is disabled only one SNMP trap will be sent but with Aging enabled new SNMP traps will be sent every time the limit is exceeded Shutdown If Limit 1 MAC addresses is seen on the port shut down the port This implies that all secured MAC addresses will be removed from the ...

Page 50: ...ort Security service Ready The Port Security service is in use by at least one user module and is awaiting frames from unknown MAC addresses to arrive Limit Reached The Port Security service is enabled by at least the Limit Control user module and that module has indicated that the limit is reached and no more MAC addresses should be taken in Shutdown The Port Security service is enabled by at lea...

Page 51: ...ed in seconds expires and no frames have been seen the MAC address will be removed from the MAC table Otherwise a new age period will begin If aging is disabled or a user module has decided to hold the MAC address indefinitely a dash will be shown 3 4 5 2 NAS Network Access Server configuration is useful to the networking environment that wants to authenticate clients supplicants before they can a...

Page 52: ...lowed access to the switch via 802 1X and MAC based authentication The default period is 300 seconds The allowed range is 10 1000000 seconds Hold Time The time after an EAP Failure indication or RADIUS timeout that a client is not allowed access This setting applies to ports running Single 802 1X Multi 802 1X or MAC based authentication By default hold time is set to 10 seconds The allowed range i...

Page 53: ...ch will send one EAPOL Failure frame when the port link comes up and any client on the port will be disallowed network access Port Based 802 1X This mode requires a dot1x aware client to be authorized by the authentication server Clients that are not dot1x aware will be denied access Single 802 1X In Single 802 1X at most one supplicant can get authenticated on the port at a time Normal EAPOL fram...

Page 54: ...OL based or MACBased mode Clicking these buttons will not cause settings changed on the page to take effect Reauthenticate Schedules reauthentication to whenever the quiet period of the port runs out EAPOL based authentication For MAC based authentication reauthentication will be attempted immediately The button only has effect for successfully authenticated clients on the port and will not cause ...

Page 55: ...nse Identity frames that have been received by the switch Start The number of EAPOL Start frames that have been received by the switch Logoff The number of valid EAPOL Logoff frames that have been received by the switch Invalid Type The number of EAPOL frames that have been received by the switch in which the frame type is not recognized Invalid Length The number of EAPOL frames that have been rec...

Page 56: ...VC Policer cannot be enabled at the same time EVC Policer ID Select EVC Policer ID to apply to a port The allowed values are Disabled and 1 through 256 Port Redirect Select a port to which matching frames are redirected Mirror Enable or disable mirroring feature When enabled a copy of matched frames will be mirrored to the destination port specified in Mirror configuration page ACL based port mirr...

Page 57: ...e allowed values are 0 3276700 pps or 1 100 200 300 1000000 kbps Unit Select the unit of measure used in rate 3 4 5 3 3 Access Control List Access Control List is to establish filtering rules for an ACL policy for a particular port or for all ports Rules applied to a port take effect immediately Ingress Port The ingress port of the access control entry Select All to apply to all ports or select a ...

Page 58: ... no policy filter is assigned to this rule or don t care Select Specific to filter specific policy with this ACE Frame Type Select a frame type to match Available frame types include Any Ethernet ARP IPv4 By default any frame type is used Action Select the action type either to permit or deny Rate Limiter Enable or disable the rate limiter when matched frames are found EVC Policer Enable or disabl...

Page 59: ...ny To allow all types of destination MAC addresses MC Multicast MAC address BC Broadcast MAC address UC Unicast MAC address Specific Use this to self define a destination MAC address This option is for Ethernet frame type only Ethernet Type Parameter Ether Type Filter This option can only be used to filter Ethernet II formatted packets Select Specific to define an Ether Type value ARP Parameter AR...

Page 60: ...o indicate a match and not a match IP Select 0 to indicate that Protocol Address Space field in ARP RARP frame is not equal to IP 0x800 Select 1 to indicate that Protocol Address Space is equal to IP 0x800 Select Any to indicate a match and not a match Ethernet Select 0 to indicate that Hardware Address Space field in ARP RARP frame is not equal to Ethernet 1 Select 1 to indicate that Hardware Add...

Page 61: ...limit field greater than zero must not be able to match this entry 1 denotes that IPv6 frames with a hop limit field greater than zero must be able to match this entry 3 4 5 3 4 ACL Status This page shows the ACL status by different ACL users Each row describes the ACE that is defined It is a conflict if a specific ACE is not applied to the hardware due to hardware limitations The maximum number o...

Page 62: ...ion is disabled Mirror Specify the mirror operation of this port The allowed values are Enabled Frames received on the port are mirrored Disabled Frames received on the port are not mirrored The default value is Disabled CPU Forward packet that matched the specific ACE to CPU CPU Once Forward first packet that matched the specific ACE to CPU Counter The counter indicates the number of times the AC...

Page 63: ...Select the DCHP Snooping port mode Ports can be set to either Trusted or Untrusted 3 4 5 4 2 Relay Configuration Relay Mode Enable or disable the DHCP relay function Relay Server Enter DHCP server IP address that is used by the switch s DHCP relay agent Relay Information Mode Enable or disable DHCP Relay option 82 function Please note that Relay Mode must be enabled before this function is able to...

Page 64: ...sing Remote ID The number of packets received with the Remote ID option missing Receive Bad Circuit ID The number of packets whose Circuit ID option did not match known circuit ID Receive Bad Remote ID The number of packets whose Remote ID option did not match known Remote ID Client Statistics Transmit to Client The number of relayed packets from server to client Transmit Error The number of packe...

Page 65: ...ode Enable or disable IP source guard on a port Please note that to make IP source guard work both global mode and port mode must be enabled Max Dynamic Clients Select the maximum number of dynamic clients that can be learned on a port The available options are 0 1 2 unlimited If the port mode is enabled and the maximum number of dynamic clients is equal 0 the switch will only forward IP packets t...

Page 66: ...save settings or changes Click the Reset button to restore settings to default settings or previously configured settings 3 4 5 5 3 Dynamic Table The Dynamic IP Source Guard table shows entries sorted by port VLAN ID IP address and MAC address By default each page displays 20 entries However it can display 999 entries by entering the number in entries per page input field 3 4 5 6 ARP inspection 3 ...

Page 67: ... First you have to enable the port setting on Port mode configuration web page Only when both Global Mode and Port Mode on a given port are enabled ARP Inspection is enabled on this given port Second you can specify which VLAN will be inspected on VLAN mode configuration web page The log type also can be configured on per VLAN setting Log Type There are four log types available None Log nothing De...

Page 68: ...utton to insert an entry to the table Select the Delete checkbox to remove the entry during the next save Click the Save button to save newly configured settings or changes Click the Reset button to restore settings to default settings or previously configured settings 3 4 5 6 4 Dynamic Table Configuration Port The port number of this entry VLAN ID VLAN ID in which the ARP traffic is permitted MAC...

Page 69: ...transmit is sent the switch considers the authentication server is dead Deadtime Deadtime is the period during which the switch will not send new requests to a server that has failed to respond to a previous request This will stop the switch from continually trying to contact a server that it has already determined as dead Setting the Deadtime to a value greater than 0 zero will enable this featur...

Page 70: ...l timeout value If you prefer to use the global value leave this field blank Retransmit If retransmit value is specified here it will replace the global retransmit value If you prefer to use the global value leave this field blank Key If secret key is specified here it will replace the global secret key If you prefer to use the global value leave this field blank 3 4 6 2 RADIUS Overview The number...

Page 71: ... The number of RADIUS Access Response packets containing invalid authenticators or Message Authenticator attributes received from the server Unknown Types The number of RADIUS packets that were received with unknown types from the server on the authentication port and dropped Packets Dropped The number of RADIUS packets that were received from the server on the authentication port and dropped for ...

Page 72: ...ommunication with the server yet RADIUS Accounting Statistics for Server Responses The number of RADIUS packets valid or invalid received from the server Malformed Responses The number of malformed RADIUS packets received from the server Malformed packets include packets with an invalid length Bad authenticators or unknown types are not included as malformed access responses Bad Authenticators The...

Page 73: ...00 ms A value of 0 ms indicates that there hasn t been round trip communication with the server yet 3 4 6 4 TACACS Global Configuration Timeout The time the switch waits for a reply from a TACACS server before it retransmits the request Deadtime Deadtime is the period during which the switch will not send new requests to a server that has failed to respond to a previous request This will stop the ...

Page 74: ... major icons static and LACP 3 5 1 Static Aggregation Mode Configuration Source MAC Address All traffic from the same Source MAC address is output on the same link in a trunk Destination MAC Address All traffic with the same Destination MAC address is output on the same link in a trunk IP Address All traffic with the same source and destination IP address is output on the same link in a trunk TCP ...

Page 75: ... an aggregated link group must have the same LACP port Key In order to allow a port to join an aggregated group the port Key must be set to the same value Role The user can select either Active or Passive role depending on the device s capability of negotiating and sending LACP control packets Ports that are designated as Active are able to process and send LACP control frames Hence this allows LA...

Page 76: ...l ports that are a port of this LAG 3 5 2 3 Port Status Port The port number LACP Show LACP status on a port Yes LACP is enabled and the port link is up No LACP is not enabled or the port link is down Backup The port is in a backup role When other ports leave LAG group this port will join LAG Key The aggregation key value on a port Aggr ID Display the aggregation ID active on a port Partner System...

Page 77: ...ink To this end the 802 3ah capable ND sends specified OAMPDUs in a periodic fashion normally once a second During the OAM Discovery process the 802 3ah capable ND monitors received OAMPDUs from the remote ND and allows 802 3ah OAM functionality to be enabled on the link based upon local and remote state and configuration settings In other words it supports OAM capability discovery function and he...

Page 78: ...isted here is detected an OAM entity sends an Event Notification OAMPDU to its peer OAM entity Error Frame Event The Errored Frame Event counts the number of errored frames detected during the specified period The period is specified by a time interval Window in order of 1 sec This event is generated if the errored frame count is equal to or greater than the specified threshold for that period Per...

Page 79: ...vely A unique Event Notification OAMPDU is indicated as an Event Notification OAMPDU with a Sequence Number field that is distinct from the previously transmitted Event Notification OAMPDU Sequence Number Rx Tx Duplicate Error Event Notification A count of the number of duplicate Event OAMPDUs received and transmitted on this interface Event Notification OAMPDUs may be sent in duplicate to increas...

Page 80: ...onitoring Support If status is enabled the device supports interpreting Link Events MIB Retrieval Support If status is enabled the device supports sending Variable Response OAMPDUs MTU Size It represents the largest OAMPDU in octets supported by the device This value is compared to the remotes Maximum PDU Size and the smaller of the two is used Multiplexer State When in forwarding state the device...

Page 81: ...s in the period is required to be equal to or greater than in order for the event to be generated 1 The default value is one frame error 2 The lower bound is zero frame errors 3 The upper bound is unspecified Frame errors This four octet field indicates the number of detected errored frames in the period Total frame errors This eight octet field indicates the sum of errored frames that have been d...

Page 82: ...rors since the OAM sub layer was reset Symbol frame period error events This four octet field indicates the number of Errored Symbol Period Event TLVs that have been generated since the OAM sub layer was reset Local Remote Event Seconds Summary Status Event Seconds Summary Time Stamp This two octet field indicates the time reference when the event was generated in terms of 100 ms intervals encoded...

Page 83: ... be logged 3 7 1 Configuration General Settings Enable Loop Protection Enable or disable loop protection function Transmission Time The interval between each loop protection PDU sent on each port Valid values are 1 to 10 seconds Shutdown Time The period for which a port will be kept disabled Valid values are 0 to 604800 seconds 0 means that a port is kept disabled until next device restart Port Co...

Page 84: ...nterconnected with each other have a high tendency to cause bridge loops that make networks unstable and in worst cases make networks unusable For example the MAC address table used by the switch or bridge can fail since the same MAC addresses and hence the same network hosts are seen on multiple ports Second a broadcast storm occurs This is caused by broadcast packets being forwarded in an endles...

Page 85: ... appropriate spanning tree protocol Protocol versions provided include STP RSTP and MSTP Bridge Priority Each switch has a relative priority and cost that is used to decide what the shortest path is to forward a packet The lowest cost path lowest numeric value has a higher priority and is always used unless it is down If you have multiple bridges and interfaces then you need to adjust the prioriti...

Page 86: ...the switch from sending BPDU frames on ports that are connected to end devices Edge Port BPDU Guard Edge ports generally connect directly to PC file servers or printers Therefore edge ports are configured to allow rapid transition Under normal situations edge ports should not receive configuration BPDUs However if they do this probably is due to malicious attacks or mis settings When edge ports re...

Page 87: ...der to share spanning trees for MSTI bridges must have the same configuration name and revision value Configuration Revision The revision number for this MSTI The allowed range is 0 65535 MSTI Mapping MSTI MSTI instance number VLAN Mapped Specify VLANs mapped to a certain MSTI Both a single VLAN and a range of VLANs are allowed Separate VLANs with a comma and use hyphen to denote a range of VLANs ...

Page 88: ... port and designated port The device with the highest priority becomes the root device However if all devices have the same priority the device with the lowest MAC address will then become the root device Note that lower numeric values indicate higher priority The bridge priority plus the MSTI instance number concatenated with the 6 byte MAC address of the switch forms a Bridge Identifier 3 8 4 CI...

Page 89: ...abled this causes the port not to be selected as Root Port for the CIST or any MSTI even if it has the best spanning tree priority Restricted TCN If enabled this causes the port not to propagate received topology change notifications and topology changes to other ports BPDU Guard This feature protects ports from receiving BPDUs It can prevent loops by shutting down a port when a BPDU is received i...

Page 90: ... bridge ID for this instance consisting a priority value and MAC address of the bridge switch Root ID Display the root device s priority value and MAC address Root Port The number of the port on this switch that is closest to the root This switch communicates with the root device through this port If there is no root port then this switch has been accepted as the root device of the Spanning Tree n...

Page 91: ...nning Tree network Regional Root The Bridge ID of the currently elected regional root bridge inside the MSTP region of this bridge This parameter only applies to the CIST instance Internal Root Cost The Regional Root Path Cost For the Regional Root Bridge the cost is zero For all other CIST instances in the same MSTP region it is the sum of the Internal Port Path Costs on the least cost path to th...

Page 92: ...e The time since the bridge port was last initialized 3 8 7 Port Status Port The port number CIST Role The role assigned by Spanning Tree Algorithm Roles can be Designated Port Backup Port Root Port or Non STP CIST State Display the current state of a port The CIST state must be one of the following Blocking Ports only receive BPDU messages but do not forward them Learning Port has transmitted con...

Page 93: ...iscarded on a port 3 9 IPMC Profile The IPMC Profile includes the following two sub menus 3 9 1 Profile Table IPMC Profile Configuration Global Profile Mode Enable or disable IPMC Profile feature globally IPMC Profile Table Setting Profile Name Enter a name for this profile Profile Description Enter a brief description for this profile Click the Add New IPMC Profile to insert a new entry to the ta...

Page 94: ...of the rule Enable Corresponding information of the group address that matches the range specified in the rule will be logged Disable Corresponding information of the group address that matches the range specified in the rule will not be logged You can manage rules and the corresponding precedence order by using the following buttons Insert a new rule before the current entry of rule Delete the cu...

Page 95: ...ayer 3 packets that IGMP packets sent in a multicast network When IGMP snooping is enabled in a switch it analyses all the IGMP packets between hosts connected to the switch and multicast routers in the network When a switch receives an IGMP report for a given multicast group from a host the switch adds the host s port number to the multicast list for that group When the switch hears an IGMP Leave...

Page 96: ...odel for the groups in the address range Leave Proxy Enabled Suppresses leave messages unless received from the last member port in the group IGMP leave proxy suppresses all unnecessary IGMP leave messages so that a non querier switch forwards an IGMP leave packet only when the last dynamic member port leaves a multicast group Proxy Enabled When enabled the switch performs like IGMP Snooping with ...

Page 97: ...ailable IPv4 management address of the IP interface associated with this VLAN Compatibility This configures how hosts and routers take actions within a network depending on IGMP version selected Available options are IGMP Auto Forced IGMPv1 Forced IGMPv2 Forced IGMPv3 By default IGMP Auto is used PRI Select the priority of interface This field indicates the IGMP control frame priority level genera...

Page 98: ...onds 3 10 1 3 Port Filtering Profile The Port Filtering Configuration page is to filter specific multicast traffic on a per port basis Before you select a filtering profile for filtering purposes you must set up profiles in IPMC Profile page Port The port number Filtering Profile Select the configured multicast groups that are denied on a port When a certain multicast group is selected on a port I...

Page 99: ...d The number of queries transmitted Queries Received The number of queries received V1 Reports Received The number of Received V1 Reports V2 Reports Received The number of Received V2 Reports V3 Reports Received The number of Received V3 Reports V2 Leaves Received The number of Received V2 Leaves Router Port Port The port number Status Indicate whether a specific port is a router port or not 3 10 ...

Page 100: ...Pv6 multicast traffic so that multicast traffic is forwarded to ports or users who want to receive it In this way MLD snooping can reduce the flooding of IPV6 multicast packets in the specified VLANs Please note that IGMP Snooping and MLD Snooping are independent of each other They can both be enabled and function at the same time 3 10 2 1 Basic Configuration Global Configuration Snooping Enabled ...

Page 101: ...to the all routers address FF02 2 for MLDv1 Port Related Configuration Port The port number Router Port Tick the checkbox on a given port to assign it as a router port If MLD snooping cannot locate the MLD querier you can manually designate a port which is connected to a known MLD querier i e a multicast router switch This interface will then join all the current multicast groups supported by the ...

Page 102: ...sages sent by the Querier The default Querier Interval is 125 seconds The allowed interval range is 1 31744 seconds QRI The Query Response Interval is the maximum amount of time that the IGMP router waits to receive a response to a General Query message The QRI applies when the switch is acting as the querier and is used to inform other devices of the maximum time this system waits for a response ...

Page 103: ...LE DISABLE denotes the specific interface is administratively disabled Queries Transmitted The number of queries transmitted Queries Received The number of queries received V1 Reports Received The number of Received V1 Reports V2 Reports Received The number of Received V2 Reports V2 Leaves Received The number of Received V2 Leaves Router Port Port The port number Status Indicate whether a specific...

Page 104: ...plane destined to the specific group address from the source IPv4 address can be handled by the chip or not 3 11 LLDP LLDP Link Layer Discovery Protocol runs over data link layer which is used for network devices to send information about themselves to other directly connected devices on the network By using LLDP two devices running different network layer protocols can learn information about eac...

Page 105: ...ode Disabled LLDP information will not be sent and LLDP information received from neighbours will be dropped Enabled LLDP information will be sent and LLDP information received from neighbours will be analyzed Rx Only The switch will analyze LLDP information received from neighbours Tx Only The switch will send out LLDP information but will drop LLDP information received from neighbours CDP Aware ...

Page 106: ...application layers on top of the protocol in order to achieve these related properties With Fast start repeat count it is possible to specify the number of times the fast start transmission is repeated The recommended value is 4 times giving that 4 LLDP frames with a 1 second interval will be transmitted when a LLDP frame with new information is received It should be noted that LLDP MED and the LL...

Page 107: ...ridian Name Greenwich The associated vertical datum is Mean Lower Low Water MLLW This datum pair is to be used when referencing locations on water sea ocean Civic Address Location IETF Geopriv Civic Address based Location Configuration Information Civic Address LCI Country Code The two letter ISO 3166 country code in capital ASCII letters Example DK DE or US State National subdivisions state canto...

Page 108: ...g Tag Tag indicating whether the specified application type is using a tagged or an untagged VLAN VLAN ID Specify the VLAN ID for the port L2 Priority Specify one of eight priority levels 0 7 as defined by 802 1D 2004 DSCP Specify one of 64 code point values 0 63 as defined in IETF RFC 2474 3 11 3 Neighbours Local Port The local port that a remote LLDP capable device is attached Chassis ID An ID i...

Page 109: ...lobal Counters Total Neighbours Entries Added Shows the number of new entries added since the switch was rebooted and for which the remote TTL has not yet expired Total Neighbors Entries Deleted The number of LLDP neighbors which have been removed from the LLDP remote systems MIB for any reason Total Neighbors Entries Dropped The number of times which the remote database on this switch dropped an ...

Page 110: ...idirectional or bidirectional switching while the latter one operates with unidirectional switching It can also be configured to revertive mode allowing the traffic goes back to working transport entity when the original fault is repaired and WTR wait to restore timer has expired The other timer supported is Hold Off timer which configures the delay time of protection switching until an upstream d...

Page 111: ...ckbox to enable APS Automatic Protection Switching feature Revertive Select the checkbox to enable revertive mode Leaving the checkbox unchecked will operate on non revertive mode WTR Time WTR stands for Wait To Restore and WTR timer is used in revertive mode to avoid a constant and rapid cycle between down and up states in a misconfigured or mismanaged network known as flapping Hold Off Time Hold...

Page 112: ...received and APS working status 3 13 MEP Instance Specify the MEP instance ID After saving an entry click the number of each instance to further configure details of this MEP entry Domain Three domain options are available Port This is a MEP in the Port Domain Flow Instance is a Port Evc This is a MEP in the EVC Domain Flow Instance is a EVC The EVC must be created VLAN This is a MEP in the VLAN D...

Page 113: ...l Select a MEP level The allowed range is 0 7 Format Two formats are available ITU ICC This is defined by ITU in Y 1731 ANNEX A The maximum characters allowed for ICC format is 6 MEG id can allow 7 characters in maximum IEEE String This is defined by IEEE in 802 1ag The Domain name and short name can be input is 8 characters long MEG id can be 8 characters long as well Domain Name Depending on the...

Page 114: ... all zeros Unicast Peer MAC The target switch or device s unicast MAC address You can specify unicast MAC address in xx xx xx xx xx xx xx xx xx xx xx xx or xxxxxxxxxxxx format where x is a hexadecimal digit NOTE When Peer MEP ID field is configured the device can auto negotiate the neighboring device s MAC address Therefore the user can set Unicast Peer MAC field to all zeros 00 00 00 00 00 00 for...

Page 115: ...eer MAC configuration Unicast is only valid for L APS type The R APS PDU is always transmistted with multicast MAC described in G 8032 Type R APS APS PDU is transmitted as R APS this is for ERPS L APS APS PDU is transmitted as L APS this is for ELPS Last Octet This is the last octet of the transmitted and expected RAPS multi cast MAC In G 8031 03 2010 a RAPS multi cast MAC is defined as 01 19 A7 0...

Page 116: ...us in case To Send 0 max 10 000 Loop Back State Transaction ID The transaction ID of the first LBM transmitted For each LBM transmitted the transaction ID in the PDU is incremented Transmitted The total number of LBM PDU transmitted Reply MAC The MAC of the replying MEP MIP In case of multi cast LBM replies can be received from all peer MEP in the group This MAC is not shown in case of To Send 0 R...

Page 117: ...der of the LBM causing this LTR MIP forwarding or terminating MEP Test Signal Tx Rx Enable or disable test signal to send or receive TST PDU Dei The DEI to be inserted as PCP bits in TAG if any Priority The priority to be inserted as PCP bits in TAG if any Peer MEP The TST frame destination MAC will be taken from the Unicast Peer MAC configuration of this peer Rate The TST frame transmission bit r...

Page 118: ...CP can be selected LCK prio The priority to be used when transmitting LCK in each client flow Priority resulting in highest possible PCP can be selected AIS Enable Enable or disable the insertion of AIS signal AIS PDU transmission in client layer flows Priority On Caracal this priority is used in sink direction client layer On Serval for each client EVC the highest COS ID ECE Class is used Frame R...

Page 119: ...Priority has to be the same Frame rate Select the frame rate of CCM LMM PDU This is the inverse of transmission period as described in Y 1731 Selecting 300f sec or 100f sec is not valid In case of enable of Continuity Check and Loss Measurement both implemented on SW based CCM Frame Rate has to be the same Cast Selection of CCM or LMM PDU transmitted unicast or multicast The unicast MAC will be ta...

Page 120: ...ed if the Cast is configured to Uni The 1DM DMR unicast MAC will be taken from the Unicast Peer MAC configuration of this peer Way One Way or Two Way Delay Measurement implemented on 1DM or DMM DMR respectively Tx Mode Standardize Y 1731 standardize way to transmit 1DM DMR Proprietary The proprietary way with follow up packets to transmit 1DM DMR Calc This is only used if the Way is configured to ...

Page 121: ...nce last clear The unit is microsecond Average last N The average delay of the last n packets since last clear The unit is microsecond Average Variation Total The average delay variation since last clear The unit is microsecond Average Variation last N The average delay variation of the last n packets since last clear The unit is microsecond Min The minimum delay since last clear The unit is micro...

Page 122: ...ult detection mechanism ERPS can converge in less than 50 milliseconds and recover quickly to forward traffic ERPS ID Specify an ID for this group Port 0 Port 0 is also known as E port East port which is used by some of the other vendors Specify the east port of the switch in the ring Port 1 Port 1 is also known as W port West port which is used by some of the other vendors When this port is inter...

Page 123: ...e to save changes Click Reset to undo any changes made locally and restore changes to previously saved default values Click Refresh to manually refresh ERPS information 3 15 MAC Table The MAC Table menu contains configuration and status sub menu Select the configuration page to set up detailed configuration 3 15 1 Configuration Disable Automatic Aging Learned MAC addresses will appear in the table...

Page 124: ... 3 15 2 MAC Address Table The MAC Address Table shows both static and dynamic MAC addresses learned from CPU or switch ports You can enter the starting VLAN ID and MAC addresses to view the desired entries Type Display whether the learned MAC address is static or dynamic VLAN ID The VLAN ID associated with this entry MAC Address The MAC address learned on CPU or certain ports Port Members Ports as...

Page 125: ... the groups Multiple ports can be mapped to a single group with the same Group ID NOTE By default each port is mapped to a group with a group ID equal to the port number For example port 2 is mapped to the group with ID is 2 Port Number Click the appropriate radio button to include a port into a group 3 16 2 VID Translation Mapping Group ID Indicate the Group ID that applies to this translation ru...

Page 126: ...adcast traffic damaging the entire network VLANs can help group devices that communicate frequently with other in the same VLAN so as to divide the entire network into several broadcast domains VLANs make changes of devices or relocation more easily In traditional networks when moving a device geographically to a new location for example move a device in floor 2 to floor 4 the network administrato...

Page 127: ...ormally used to connect to other switches Trunk ports have the following characteristics By default a trunk port is member of all VLANs 1 4095 The VLANs that a trunk port is member of may be limited by the use of Allowed VLANs Frames classified to a VLAN that the port is not a member of are discarded By default all frames but frames classified to the Port VLAN a k a Native VLAN get tagged on egres...

Page 128: ...8 it is forwarded 2 If the TPID of tagged frame is not 0x88A8 ex 0x8810 it will be discarded The TIPID of frame transmitted by S custom port will be set to an self customized value which can be set by the user using the column of Ethertype for Custom S ports When an untagged frame is received on a port a tag PVID is attached and then forwarded Ingress Filtering If Ingress Filtering is enabled and ...

Page 129: ...ay become a member of all possible VLANs 3 17 2 Membership Status This page shows the current VLAN membership saved on the Switch VLAN ID VLANs that are already created Port members Display member ports on the configured VLANs 3 17 3 Port Status This page shows the current VLAN settings on a per port basis saved on the Switch Port The port number Port Type Displays the selected port type of each p...

Page 130: ...ip This page is used to configure private VLANs New Private VLANs can be added here and existing VLANs can be modified Private VLANs are based on the source port mask and there are no connections to VLANs which means that VLAN IDs and Private VLAN IDs can be identical A port must be a member of both a VLAN and a Private VLAN to be able to forward packets By default all ports are VLAN unaware and m...

Page 131: ...rvices 3 19 1 Port Configuration Port The port number Port rule applies to all ports DEI Mode The DEI mode for an NNI port determines whether frames transmitted on the port will have the DEI field in the outer tag marked based on the color of the frame The allowed values are Coloured The DEI is 1 for yellow frames and 0 for green frames Fixed The DEI value is determined by ECE rules Tag Mode The t...

Page 132: ...e The number of entries per page The allowed range is from 1through 999 Policer ID The Policer ID is used to identify one of the 2048 policers State The administrative state of the bandwidth profile The allowed values are Enabled The bandwidth profile enabled Disabled The bandwidth profile is disabled Type The policer type of the bandwidth profile The allowed values are MEF MEF ingress bandwidth p...

Page 133: ...d range is from 0 through 10000000 kilobit per second CBS The Committed Burst Size CBS of the bandwidth profile The allowed range is from 0 through 100000 bytes EIR The Excess Information Rate EIR for MEF type bandwidth profile The allowed range is from 0 through 10000000 kilobit per second EBS The Excess Burst Size EBS for MEF type bandwidth profile The allowed range is from 0 through 100000 byte...

Page 134: ...e None An inner tag is not inserted C tag An inner C tag is inserted S tag An inner S tag is inserted S custom tag An inner tag is inserted and the tag type is determined by the VLAN port configuration of the NNI VLAN Mode The inner VLAN mode affects the VID in the inner and outer tag Possible values are as follows Normal The VID of the two outer tags aren t swapped Tunnel The VID of the two outer...

Page 135: ...for ECE Ingress Matching Tag Type The tag type for matching the ECE The possible values are Any The ECE will match both tagged and untagged frames Untagged The ECE will match untagged frames only C Tagged The ECE will match custom tagged frames only S Tagged The ECE will match service tagged frames only Tagged The ECE will match tagged frames only Frame Type The frame type for the ECE The possible...

Page 136: ...for the VLAN ID filter you can enter a specific value The allowed value is from 1 through 4096 Tag Pop Count The ingress tag pop count for the ECE The allowed range is from 0 through 2 Policy ID The ACL Policy ID for the ECE for matching ACL rules The allowed range is from 0 through 255 Class The traffic class for the ECE The allowed range is from 0 to 7 and Disabled MAC Parameters SMAC DMAC Filte...

Page 137: ...es Rx Tx The number of received and transmitted green frames Yellow Frames Rx Tx The number of received and transmitted yellow frames Red Frames Rx The number of received red frames Discarded Frames Rx Tx The number of discarded frames in ingress and egress queue system 3 20 QoS Network traffic is always unpredictable and the only basic assurance that can be offered is the best effort traffic deli...

Page 138: ... frames DEI Select the appropriate value for the default Drop Eligible Indicator for untagged frames Tag Class This field displays classification mode for tagged frames on this port Disabled Use the default QoS class and DP level for tagged frames Enabled Use the mapped versions of PCP and DEI for tagged frames DSCP Based Select the checkbox to enable DSCP based QoS Ingress Port Address Mode The I...

Page 139: ...efault 500kbps is used The allowed range for kbps and fps is 100 to 1000000 The allowed range for Mbps and kfps is 1 to 3300Mbps Unit Select the unit of measure for the policer Flow Control If flow control is enabled and the port is in flow control mode then pause frames are sent instead of discarding frames 3 20 3 Queue Policing Port The port number Port settings apply to all ports Queue 0 7 Enab...

Page 140: ...t 500kbps is used Allowed range for kbps is 100 to 1000000 Allowed range for Mbps is 1 to 3300Mbps Unit Select he unit of measure for the ingress queue policer 3 20 4 Port Scheduler Port Click the port to set up detailed settings for port scheduler Mode Display scheduler mode selected Weight Display the weight in percentage assigned to Q0 Q5 ...

Page 141: ...IGURATION This page allows you to set up the Schedulers and Shapers for a specific port Scheduler Mode The device offers two modes to handle queues Strict mode This gives egress queues with higher priority to be transmitted first before lower priority queues are serviced ...

Page 142: ...indicate a relative weight for each queue DWRR uses a predefined relative weight for each queue that determines the percentage of service time the switch services each queue before moving on to the next queue This prevents the head of line blocking that can occur with strict priority queuing Weight Assign a weight to each queue This weight sets the frequency at which each queue is polled for servi...

Page 143: ...ON 3 20 6 Port Tag Remarking Click on the port number to configure its QoS Egress Port Tag Remarking Tag Remarking Mode Select the appropriate remarking mode used by this port Classified Use classified PCP DEI values Default Use default PCP DEI values Default PCP 0 Default DEI 0 ...

Page 144: ... method Ingress Classify Select the appropriate classification method Disable No ingress DSCP classification is performed DSCP 0 Classify if incoming DSCP is 0 Selected Classify only selected DSCP for which classification is enabled in DSCP Translation table All Classify all DSCP Egress Rewrite Configure port egress rewriting of DSCP values Disable Egress rewriting is disabled Enable Enable egress...

Page 145: ... trusted DSCP values are mapped to a specific QoS class and drop precedence level DPL Frames with untrusted DSCP values are treated as non IP frames QoS Class Select the QoS class to the corresponding DSCP value for ingress processing By default 0 is used Allowed range is 0 to 7 DPL Select the drop precedence level to the corresponding DSCP value for ingress processing By default 0 is used The val...

Page 146: ...anslation of DSCP values based on the specified classification method Ingress Classify Enable classification at ingress side as defined in the QoS port DSCP Configuration Table Egress Remap DP0 Remap DP0 value to the selected DSCP value DP0 indicates a drop precedence with a low priority Egress Remap DP1 Remap DP1 value to the selected DSCP value DP1 indicates a drop precedence with a high priorit...

Page 147: ...ts based on frame type MAC address VID PCP DEI values Once a QCE is mapped to a port traffic matching the first entry in the QoS Control List is assigned to the QoS class drop precedence level and DSCP value defined by that entry Traffic not matching any of the QCEs are classified to the default QoS Class for the port This page displays rules created in QoS control list QCL only The maximum number...

Page 148: ... be taken Class If a frame matches the QCL it will be put in the queue corresponding to the specified QoS class DPL The drop precedence level will be set to the specified value DSCP The DSCP value will be set to the specified value You can modify each QCE QoS Control Entry in the table using the following buttons Insert a new QCE before the current row Edit the QCE entry Move the QCE up the list M...

Page 149: ...vice Access Point address By default any is used Select specific to indicate a value 0x00 to 0xFF Control Control field may contain command response or sequence information depending on whether the LLC frame type is Unnumbered Supervisory or Information By default any is used Select specific to indicate a value 0x00 to 0xFF SNAP SubNetwork Access Protocol can be distinguished by an OUI and a Proto...

Page 150: ...eue corresponding to the specified QoS class or placed in a queue based on basic classification rules DPL If a frame matches the QCE the drop precedence level will be set to the selected value or left unchanged DSCP If a frame matches the QCE the DSCP value will be set to the selected one 3 20 12 Storm Control Storm Control is used to keep a network from downgraded performance or a complete halt b...

Page 151: ...n the mirror port 3 22 UPnP Mode Enable or disable UPnP operation TTL TTL Time to live is used to configure how many steps an UPnP advertisement can travel before it disappears Advertising Duration This defines how often an UPnP advertisement is sent The duration is carried in Simple Service Discover Protocol SSDP packets which informs a control point how often it should receive a SSDP advertiseme...

Page 152: ...s that you wish to ping Ping Length The size or length of echo packets Ping Count The number of echo packets will be sent Ping Interval The time interval between each ping request 3 23 2 Link OAM 3 23 2 1 MIB Retrieval Local or Peer Click on the radio button to select the location of MIB to be polled Port The port on the device that is used for OAM MIB retrieval ...

Page 153: ...s interface is not given Ping6 finds the best match interface for destination Please note that do not specify egress interface for loopback address Do specify egress interface for link local or multicast address 3 23 4 VeriPHY This page is used for running the VeriPHY Cable Diagnostics for 10 100 and 1G copper ports Select which ports to run or all Click Start This will take approximately 5 second...

Page 154: ...nsmit Duration Configure the duration of the packet generation If the item is selected enabled the EPG continuously transmits packets If the item is not selected disabled the EPG transmission stops after 30 000 000 packets Length Select the length of packets to be generated by the EPG GAB This field configures the inter packet gab for packets by the EPG Dest Addr This field configures the low nibb...

Page 155: ...est pattern repeated transmission of K28 5 code group Long test pattern Long continuous random test pattern packet length is 1524 bytes Short test pattern Short continuous random test pattern packet length is 360 bytes Error Counter Jitter Test Pattern Error Counter Error When Jitter pattern checker has locked it displays yes When Jitter pattern checker has not locked it displays no Lock When Jitt...

Page 156: ...pecify timeout values for each loopback port 3 24 Maintenance The Maintenance menu contains several sub menus Select the appropriate sub menu to restart the device set the device to the factory default or upgrade firmware image 3 24 1 Restart Device Click Yes button to reboot the switch 3 24 2 Factory Defaults Click Yes button to reset your device to factory defaults settings Please note that all ...

Page 157: ...le from your local device and then click Upload to start updating 3 24 3 2 Image Select Select the image file to be used in this device 3 24 3 3 Upgrade boot code Upgrade the latest redboot codes 3 24 4 Configuration 3 24 4 1 Save Click on the Save Configuration button to save current running configurations to startup configurations ...

Page 158: ... config Download a copy of the factory default configurations to your local device startup config Download a copy of startup configurations to your local device 3 24 4 3 Upload Select a file and then click Upload Configuration to start uploading the file 3 24 4 4 Activate Select the file that you would like to use Click on the Activate Configuration to replace configurations to the selected one ...

Page 159: ... 4 Web Configuration Operation 159 CHAPTER 3 WEB OPERATION CONFIGURATION 3 24 4 5 Delete Select the file that you would like to delete Click on the Delete Configuration File to remove the file from the device ...

Page 160: ... 256 bits AMS AMS is an acronym for Auto Media Select AMS is used for dual media ports ports supporting both copper cu and fiber SFP cables AMS automatically determines if a SFP or a CU cable is inserted and switches to the corresponding media If both SFP and cu cables are inserted the port will select the preferred media APS APS is an acronym for Automatic Protection Switching This protocol is us...

Page 161: ...m for Differentiated Services Code Point It is a field in the header of IP packets for packet classification purposes EEE EEE is an abbreviation for Energy Efficient Ethernet defined in IEEE 802 3az EPS EPS is an abbreviation for Ethernet Protection Switching defined in ITU T G 8031 Ethernet Type Ethernet Type or EtherType is a field in the Ethernet MAC header defined by the Ethernet networking st...

Page 162: ...rom any point within the network IGMP IGMP is an acronym for Internet Group Management Protocol It is a communications protocol used to manage the membership of Internet Protocol multicast groups IGMP is used by IP hosts and adjacent multicast routers to establish multicast group memberships It is an integral part of the IP multicast specification like ICMP for unicast connections IGMP can be used...

Page 163: ...ons attached to the same IEEE 802 LAN the major capabilities provided by the system incorporating that station the management address or addresses of the entity or entities that provide management of those capabilities and the identification of the stations point of attachment to the IEEE 802 LAN required by those management entity or entities The information distributed via this protocol is store...

Page 164: ...STP protocol provides for multiple spanning tree instances while ensuring RSTP and STP compatibility The standard was originally defined by IEEE 802 1s but was later incorporated in IEEE 802 1D 2005 MVR Multicast VLAN Registration MVR is a protocol for Layer 2 IP networks that enables multicast traffic from a source VLAN to be shared with subscriber VLANs The main reason for using MVR is to save b...

Page 165: ...1Q frame It is also known as User Priority PD PD is an acronym for Powered Device In a PoE system the power is delivered from a PSE power sourcing equipment to a remote device The remote device is called a PD PHY PHY is an abbreviation for Physical Interface Transceiver and is the device that implements the Ethernet physical layer IEEE 802 3 PING Ping Packet InterNet Grouper is a program that send...

Page 166: ...acronym for QoS Control Entry It describes QoS class associated with a particular QCE ID There are six QCE frame types Ethernet Type VLAN UDP TCP Port DSCP TOS and Tag Priority Frames can be classified by one of 4 different QoS classes Low Normal Medium and High for individual application QCI QCI is an acronym for QoS Class Identifier This is a special identifier defining the quality of packet com...

Page 167: ...vers for Microsoft Windows IBM OS 2 and other SMB client machines Samba uses the Server Message Block SMB protocol and Common Internet File System CIFS which is the underlying protocol used in Microsoft Windows networking Samba can be installed on a variety of operating system platforms including Linux most common Unix platforms OpenVMS and IBM OS 2 Samba can also register itself with the master b...

Page 168: ...elect one wikipedia SSH SSH is an acronym for Secure SHell It is a network protocol that allows data to be exchanged using a secure channel between two networked devices The encryption used by SSH provides confidentiality and integrity of data over an insecure network The goal of SSH was to replace the earlier rlogin TELNET and rsh protocols which did not provide strong authentication or guarantee...

Page 169: ...most significant 6 bits of the ToS field are fully decoded into 64 possibilities and the singular code that results is compared against the corresponding bit in the IPv4 ToS priority control bit 0 63 TLV TLV is an acronym for Type Length Value A LLDP frame can contain multiple pieces of information Each of these pieces of information is known as TLV TKIP TKIP is an acronym for Temporal Key Integri...

Page 170: ...an wired networks When introduced in 1999 WEP was intended to provide confidentiality comparable to that of a traditional wired network Wikipedia WiFi WiFi is an acronym for Wireless Fidelity It is meant to be used generically when referring of any type of 802 11 network whether 802 11b 802 11a dual band etc The term is promulgated by the Wi Fi Alliance WPA WPA is an acronym for Wi Fi Protected Ac...

Page 171: ...ce to the wireless network Wikipedia WRED WRED is an acronym for Weighted Random Early Detection It is an active queue management mechanism that provides preferential treatment of higher priority frames when traffic builds up within a queue A frame s DP level is used as input to WRED A higher DP level assigned to a frame results in a higher probability that the frame is dropped during times of con...

Page 172: ......

Page 173: ......

Reviews: