manualshive.com logo in svg

CTS FOS-3148 Series, User Manual

The CTS FOS-3148 Series is a cutting-edge product designed for optimal performance. Ensure you are using it to its full potential by downloading the free User Manual from manualshive.com. This manual contains all the information you need to maximize the capabilities of your device.

Share
Download
background image

 

185 

APPENDIX C: VLAN Application Note 

 
Overview 
 

A  Virtual  Local  Area  Network  (VLAN)  is  a  network  topology  configured  according  to  a  logical 
scheme instead of the physical layout. It can be used to combine any collection of LAN segments 
into  a  group  that  appears  as  a  single  LAN  so  as  to  logically  segment  the  network  into  different 
broadcast  domains.  All  broadcast,  multicast,  and  unknown  packets  entering  the  Switch  on  a 
particular VLAN will only be forwarded to the stations or ports that are members of that VLAN.    
 
Generally,  end  nodes  that  frequently  communicate  with  each  other  are  assigned  to  the  same 
VLAN, regardless of where they are physically on the network. In this way, the use of VLANs can 
enhance performance by conserving bandwidth and improve security by limiting traffic to specific 
domains. Another benefit of VLAN is that you can change the network topology without physically 
moving  stations  or  changing  cable  connections.  Stations  can  be  ‘moved’  to  another  VLAN  and 
thus  communicate  with  its  members  and  share  its  resources,  simply  by  changing  the  port  VLAN 
settings  from  one  VLAN  to  another  VLAN.  This  allows  VLAN  to  accommodate  network  moves, 
changes and additions with the utmost flexibility. 
 
The  Managed  Switch  supports  Port-based  VLAN  implementation  and  IEEE  802.1Q  standard 
tagging mechanism that enables the switch to differentiate frames based on a 12-bit VLAN ID (VID) 
field.  Besides,  the  Managed  Switch  also  provides  double  tagging  function.  The  IEEE  802.1Q 
double tagging VLAN is also referred to Q-in-Q or VLAN stacking (IEEE 802.1ad). Its purpose is to 
expand  the  802.1Q  VLAN  space  by  tagging  the  inner  tagged  packets.  In  this  way,  a  “double-
tagged”  frame  is  created  so  as  to  separate  customer  traffic  within  a  service  provider  network. 
Moreover,  the  addition  of  double-tagged  space  increases  the  number  of  available  VLAN  tags 
which allow service providers to use a single SP-VLAN (Service Provider VLAN) tag per customer 
over the Metro Ethernet network. 
 
While  this  application  note  can  not  cover  all  of  the  real-life  applications  that  are  possible  on  this 
Managed  Switch,  it  does  provide  the  most  common  applications  largely  deployed  in  most 
situations. In particular, this application note provides a couple of network examples to help users 
implement  Port-Based  VLAN,  Data  VLAN, Management  VLAN  and  Double-Tagged  VLAN.  Step-
by-step configuration instructions using CLI and Web Management on setting up these examples 
are also explained. Examples described below include: 

 
 

Examples 

Configuration Procedures 

I.

 

Port-Based VLAN

 

CLI

 

WEB

 

II.

 

Data VLAN

 

CLI

 

WEB

 

III.

 

Management VLAN

 

CLI

 

WEB

 

IV.

 

Q-in-Q

 

CLI

 

WEB

 

Summary of Contents for FOS-3148 Series

Page 1: ...1 FOS 3148 Series 44 PORTS 100 1000BASE X SFP WITH 4 COMBO PORTS 10 100 1000BASE T 100 1000BASE X SFP UPLINK MANAGEMENT SWITCH Network Management User s Manual Version 0 92...

Page 2: ...2 Revision History Version F W Date Description 0 90 0 99 15 20141201 Fisrt release 0 91 0 99 16 20141208 Minor modification according to F W v0 99 16 0 92 0 99 16 20150224 Revise trust port...

Page 3: ...s cause harmful interference to radio or television reception which can be determined by turning the equipment off and on the user is encouraged to try to correct the interference by one or more of th...

Page 4: ...Mode 18 2 4 1 Ping Command 18 2 4 2 Traceroute Command 18 2 5 Privileged Mode 19 2 5 1 Copy cfg Command 19 2 5 2 Firmware Command 20 2 5 3 Ping Command 21 2 5 4 Reload Command 21 2 5 5 Traceroute Com...

Page 5: ...27 Show running config start up config Command 78 3 SNMP NETWORK MANAGEMENT 79 4 WEB MANAGEMENT 80 4 1 System Information 81 4 2 User Authentication 83 4 2 1 RADIUS Configuration 85 4 3 Network Manag...

Page 6: ...7 3 Introduction to Q in Q 120 4 4 7 4 802 1Q VLAN 121 4 4 7 4 1 VLAN Interface 121 4 4 7 4 2 Trunk VLAN table 122 4 4 7 4 3 Management VLAN 123 4 4 7 4 4 QinQ VLAN configuration 124 4 4 8 QoS Config...

Page 7: ...Monitor 157 4 5 6 1 RSTP Bridge Overview 157 4 5 6 2 RSTP Port Status 158 4 5 6 3 RSTP Statistics 158 4 5 7 802 1X Monitor 159 4 5 7 1 802 1X Port Status 160 4 5 7 2 802 1X Statistics 161 4 5 8 IGMP...

Page 8: ...173 4 6 5 Load Factory Settings Except Network Configuration 173 4 7 Save Configuration 173 4 8 Reset System 174 APPENDIX A Free RADIUS readme 175 APPENDIX B Set Up DHCP Auto Provisioning 176 APPENDI...

Page 9: ...gement Telnet runs over TCP IP and allows you to establish a management session through the network Once the Managed switch is on the network with proper IP configurations you can use Telnet to login...

Page 10: ...ased network management system is used to manage the Managed Switch through the network remotely When you use a SNMP based network management system the Managed Switch becomes one of the managed devic...

Page 11: ...sceiver Before connecting the other switches workstation or Media Converter make sure both side of the SFP transfer are with the same media type for example 1000Base SX to 1000Base SX 1000Bas LX to 10...

Page 12: ...esses were obtained Remember that an address can be assigned to only one device on a network If you connect to the outside network you must change all the arbitrary IP addresses to comply with those y...

Page 13: ...the switch cannot be reached by any other means You also need the Local Console Management to setup the Switch network configuration for the first time You can setup the IP address and change the def...

Page 14: ...thorized username and password and then you will be directed to User mode In CLI management the User mode only provides users with basic functions to operate the Managed Switch If you would like to co...

Page 15: ...perform several functions The following table summarizes the most frequently used quick keys in CLI Keys Purpose tab Enter an unfinished command and press Tab key to complete the command Press key in...

Page 16: ...rence parameter s size r repeat t timeout These three parameters are used in ping command and are optional which means that you can ignore these three parameters if they are unnecessary when executing...

Page 17: ...lete the default username admin to prevent unauthorized accesses Enable Mode Password Enable mode is password protected When you try to enter Enable mode a password prompt will appear to request the u...

Page 18: ...t packets are sent and received Command Parameter Description Switch ping A B C D A B C D E F G H s size 1 65500 bytes t timeout 1 99 secs A B C D A B C D E F G H Enter the IP IPv6 address that you wo...

Page 19: ...opy cfg command to backup a configuration file via FTP or TFTP server and restore the Managed Switch back to the defaults or to the defaults but keep IP configurations 1 Restore a configuration file v...

Page 20: ...witch copy cfg from default keep ip Switch reload 2 5 2 Firmware Command To upgrade firmware via TFTP or FTP server Command Parameter Description Switch firmware upgrade ftp A B C D A B C D E F G H fi...

Page 21: ...art the Managed Switch Command Example Switch reload 2 To specify the image for the next restart before restarting Command Example Switch reload Image 2 OK Switch reload 2 5 5 Traceroute Command Comma...

Page 22: ...appear Company Name Display a company name for this Managed Switch Use switch info company name company name command to edit this field System Object ID Display the predefined System OID System Contac...

Page 23: ...ss Enter in Privileged mode you will be directed to Global Configuration mode where you can set up advanced switching functions such as QoS VLAN and storm control security globally All commands entere...

Page 24: ...config interface 1 3 5 Switch config if 1 3 5 Enter three discontinuous interfaces separated by commas Interface 1 3 5 will apply commands entered Switch config interface 1 3 Switch config if 1 3 Ent...

Page 25: ...e M B Version Display the main board version Fiber Type Display information about the slide in or fixed fiber type Fiber Wavelength Display the slide in or fixed fiber s TX and RX wavelength informati...

Page 26: ...s 192 Use this command to enter ACL configuration mode for each ACL rule When you enter each ACL rule you can further configure detailed settings for this rule Switch config acl RULE action permit cop...

Page 27: ...ecify destination MAC mask Switch config acl RULE ethertype any 0xWXYZ any 0xWXYZ Specify Ethertype or ANY Switch config acl RULE ingress port any port list any port list Specify ingress port s or ANY...

Page 28: ...fig acl RULE no destination l4 port Undo destination l4 port specification Switch config acl RULE no destination mac Undo destination mac specification Switch config acl RULE no ingress port Undo ingr...

Page 29: ...annel group distribution rule destination mac Load balancing depending on destination MAC address Switch config channel group distribution rule source mac Load balancing depending on source MAC addres...

Page 30: ...255 Specify a key to the selected interfaces Switch config if PORT PORT channel group lacp role active active Specify the selected interfaces to active LACP role No command Switch config if PORT PORT...

Page 31: ...tion with the authentication server and relays the response to the client Switch config dot1x reauth period 0 3600 0 3600 Specify a period of authentication time that a client authenticates with the a...

Page 32: ...rt_list port_list Show or verify the selected interfaces 802 1x settings including port status and authentication status Switch config show dot1x statistics Show or verify 802 1x statistics Switch con...

Page 33: ...RT PORT dot1x reauthenticate Re authenticate the selected interfaces No command Switch config interface port_list port_list Enter several discontinuous port numbers separated by commas or a range of p...

Page 34: ...w command Switch config show ip address Show the current IP configurations or verify the configured IP settings IP command example Switch config ip address 192 168 1 198 255 255 255 0 192 168 1 254 Se...

Page 35: ...the specified ports DHCP Snooping Option 82 and trust port settings Switch config show ip dhcp snooping status Show DHCP Snooping status IP DHCP Snooping example Switch config ip dhcp snooping Enable...

Page 36: ...ming video and gaming and allows more efficient use of resources when supporting these uses IGMP Snooping is the process of listening to IGMP traffic IGMP snooping as implied by the name is a feature...

Page 37: ...ooping function Switch config no ip igmp snooping flooding Disable flooding function Traffic will forward to router ports only when disabled Switch config no ip igmp snooping immediate leave Disable i...

Page 38: ...multicast segment information Switch config show ip igmp segment 1 400 1 400 Show the specified segment s setting Switch config segment ID show Show the selected segment s setting Switch config profil...

Page 39: ...port_list Enter several discontinuous port numbers separated by commas or a range of ports with a hyphen For example 1 3 or 2 4 Switch config if PORT PORT no ip igmp filter Disable IGMP Filter on the...

Page 40: ...er on port 1 to port 3 Switch config if 1 3 ip igmp filter profile Silverprofile Assign the selected ports to the specified profile Silverprofile Switch config if 1 3 ip igmp max groups 400 Set the ma...

Page 41: ...nerate IP addresses internally using stateless address autoconfiguration or they may be assigned configuration data with DHCPv6 Set up the IPv6 address of the Managed Switch or configure the Managed S...

Page 42: ...on the network By using LLDP two devices running different network layer protocols can learn information about each other A set of attributes are used to discover neighbor devices These attributes con...

Page 43: ...ault setting Switch config no lldp tlv select capability Disable Capability attribute to be sent Switch config no lldp tlv select management address Disable Management Address attribute to be sent Swi...

Page 44: ...Switch config loop detection interval 1 180 0 180 Set up Loop Detection time interval from 1 to 180 seconds Switch config loop detection unlock interval 1 1440 1 1440 Set up Loop Detection unlock time...

Page 45: ...aging time Entries in the MAC address table containing source MAC addresses and their associated ports will be deleted if they are not accessed within aging time MAC Command Parameter Description Swit...

Page 46: ...nfig if PORT PORT no mac learning Disable MAC learning function Show command Switch config show mac address table Show MAC addresses learned by the Managed Switch Switch config show mac address table...

Page 47: ...rt number Management command example Switch config management console timeout 300 The console management will timeout logout automatically when it is inactive for 300 seconds Switch config management...

Page 48: ...itch config ntp server2 A B C D A B C D E F G H A B C D A B C D E F G H Specify the secondary time server IP IPv6 address Switch config ntp syn interval 1 8 1 8 Specify the interval time to synchroniz...

Page 49: ...ameter Description Switch config qos 802 1p dscp 802 1p dscp Specify QoS mode Switch config qos dscp map 0 63 0 7 0 63 Specify a DSCP value 0 7 Specify a queue value Switch config qos management prior...

Page 50: ...discontinuous port numbers separated by commas or a range of ports with a hyphen For example 1 3 or 2 4 Switch config if PORT PORT qos rate limit ingress 500 1000000 kbps 500 1000000 kbps Specify ingr...

Page 51: ...rotection multicast 1 1024k 1 1024k Specify the maximum unknown multicast packets per second pps Any unknown multicast packets exceeding the specified threshold will then be dropped The packet rates t...

Page 52: ...ximum unicast packets per second pps to 1024k Any unicast packets exceeding the specified threshold will then be dropped 2 6 17 SNMP Server Command 1 Create a SNMP community and set up detailed config...

Page 53: ...nd Switch config community NAME exit Return to Global Configuration mode Snmp server example Switch config snmp server community mycomm Create a new community mycomm and edit the details of this commu...

Page 54: ...tch config trap 1 community mycomm Refer this trap destination account to the community mycomm Switch config trap 1 description redepttrapdest Add a description for this trap destination account Switc...

Page 55: ...leaving a single active path between any two network nodes Multiple active paths between network nodes cause a bridge loop Bridge loops create several problems First the MAC address table used by the...

Page 56: ..._false auto forced_true forced_false auto Set the aggregated ports to non point to point ports forced_false or allow the Managed Switch to detect point to point status automatically auto By default ag...

Page 57: ...ace s STP information including port state path cost priority edge port state and p2p port state Switch config show spanning tree interface port_list port_list Show the selected interfaces STP informa...

Page 58: ...g Tree settings Spanning tree Interface command Parameter Description Switch config interface port_list port_list Enter several discontinuous port numbers separated by commas or a range of ports with...

Page 59: ...state Switch config show spanning tree statistics Show each interface and each link aggregation group s statistics information including the total RSTP packets received RSTP packets transmitted STP p...

Page 60: ...1518 9600 bytes Specify the maximum transmission unit in bytes The allowable MTU value is between 1518 and 9600 bytes No command Switch config no switch bpdu 00 0F Undo permit packets from the address...

Page 61: ...ch up to 55 alphanumeric characters Switch config switch info system location sys_location sys_location Enter a brief description up to 55 alphanumeric characters of the Managed Switch location Like t...

Page 62: ...ify the secondary system log server IP IPv6 address Switch config syslog server3 A B C D A B C D E F G H A B C D A B C D E F G H Specify the third system log server IP IPv6 address No command Switch c...

Page 63: ...ormation and load factory settings ro read only Read Only access privilege Switch config user NAME password password password Enter the password up to 20 alphanumeric characters for this user account...

Page 64: ...F G H Specify the primary RADIUS server IP IPv6 address Switch config user radius server2 A B C D A B C D E F G H A B C D A B C D E F G H Specify the secondary RADIUS server IP IPv6 address No command...

Page 65: ...port VLAN settings from one VLAN to another This allows VLAN to accommodate network moves changes and additions with the greatest flexibility 802 1Q VLAN Concept Port Based VLAN is simple to implemen...

Page 66: ...note at this point that any network host connected to an Access Port is totally unaware of the VLAN assigned to the port The network host simply assumes it is part of a single broadcast domain just a...

Page 67: ...nk vlan 1 4094 1 4094 Specify the selected ports Trunk VLAN ID VID Switch config if PORT PORT vlan dot1q vlan mode access Set the selected ports to access mode untagged Switch config if PORT PORT vlan...

Page 68: ...packets will be limited to within the VLAN Port Based VLAN is uncomplicated and fairly rigid in implementation and is useful for network administrators who wish to quickly and easily set up VLAN so a...

Page 69: ...trunk VLAN table Switch config vlan ID show Show the membership status of this VLAN ID Switch config show vlan interface Show all ports VLAN assignment and VLAN mode Switch config show vlan interface...

Page 70: ...dot1q vlan mode trunk native Set the selected ports to Trunk native Mode tagged and untagged Switch config if 1 4 exit Exit current ports interface mode Switch config interface 45 46 Enter port 45 to...

Page 71: ...interface numbers Command Parameter Description Switch config interface port_list port_list Enter several port numbers separated by commas or a range of port numbers For example 1 3 or 2 4 Note You n...

Page 72: ...PORT PORT channel group trunking Disable port trunking 4 Set up port description Command Parameter Description Switch config if PORT PORT description description description Type in the description f...

Page 73: ...port s Switch config if PORT PORT no ip dhcp snooping server trust Unconfigure port s as DHCP server trust port s Setup IGMP snooping MLD sub commands Command Parameter Description Switch config if P...

Page 74: ...P sourceguard setting to default unlimited 8 Enable loop detection per port Command Parameter Description Switch config if PORT PORT loop detection Enable loop detection on port s No command Switch co...

Page 75: ...000Mbps No command Switch config if PORT PORT no qos rate limit ingress Undo ingress rate limit Switch config if PORT PORT no qos rate limit egress Undo egress rate limit 12 Shutdown interface Command...

Page 76: ...fig if PORT PORT no spanning tree p2p Undo specify the port as point to point port 14 Set up port speed Command Parameter Description Switch config if PORT PORT speed 1000 100 10 1000 100 10 Set port...

Page 77: ...ce statistics is useful for network administrators to diagnose and analyze port traffic real time conditions Command Parameters Description Switch config show interface Show overall interface configur...

Page 78: ...d ports 2 6 26 Show sfp Command When you slide in SFP transceiver detailed information about this module can be viewed by issuing this command Command Description Switch config show sfp information Di...

Page 79: ...ory resources required for the complete network management SNMP Manager is often composed by desktop computer work station and software program such like HP OpenView Totally 4 types of operations are...

Page 80: ...e the RS 232 RJ 45 console port or one of the 10 100 1000Base TX RJ 45 ports as the temporary RJ 45 Management console port to set up the assigned IP parameters of the Managed Switch including IP addr...

Page 81: ...for network management applications 4 Switch Management Set up switch port configuration VLAN configuration and other functions 5 Switch Monitor View the operation status and traffic statistics of th...

Page 82: ...me command to edit this field System Location Display a brief location description for this Managed Switch Use switch info sys location sys location command to edit this field DHCP DHCPv6 Vendor ID En...

Page 83: ...egistered users are allowed to operate the Managed Switch Users who want to operate the Managed Switch need to register into the user list first To view or change current registered users select User...

Page 84: ...n for double checking Description Enter a unique description up to 35 alphanumeric characters for the user This is mainly for reference only Console Level Select the desired privilege for the console...

Page 85: ...roduct Secret Key The word to encrypt data of being sent to RADIUS server RADIUS Port The RADIUS service port on RADIUS server Retry Time Times of trying to reconnect if the RADISU server is not reach...

Page 86: ...View the registered SNMP community name list Add a new community name or remove an existing community name 6 Trap Destination View the registered SNMP trap destination list Add a new trap destination...

Page 87: ...Managed Switch You can use the default IP address or specify a new one when the situation of address duplication occurs or the address does not match up with your network The default factory setting...

Page 88: ...ix FE80 it will use the prefix supplied by the router and put it together with its identifier which by default is the MAC address in EUI 64 format IPv6 Gateway Specify the IP address of a gateway or a...

Page 89: ...rts auto provisioning function that enables DHCP clients to automatically download the latest Firmware and configuration image from the server For information about how to set up a DHCP server please...

Page 90: ...anagement service 4 3 3 RS232 Telnet Console Configuration Click the option RS232 Telnet Console Configuration from the Network Management menu and then the following screen page appears Baud Rate 960...

Page 91: ...reen page appears Time Synchronization To enable or disable time synchronization Time Server IP IPv6 Address NTP time server address 2nd Time Server IP IPv6 Address When the default time server is dow...

Page 92: ...ast not too far away In this way the time will be more accurate 4 3 5 Device Community Click the option Device Community from the Network Management menu and then the following screen page appears Up...

Page 93: ...e only SNMP Level Click the pull down menu to select the desired privilege for the SNMP operation NOTE When the community browses the Managed Switch without proper access right the Managed Switch will...

Page 94: ...ntication failure trap after any unauthorized users attempt to login Port Link Up Down Trap Enable or disable the Managed Switch to send port link up link down trap Fan Trap Enable or disable the Mana...

Page 95: ...62 Specify the second Log server IP IPv6 address When the default Log Server is down the Managed Switch will automatically contact the second or third Log server Log Server IPv63 Specify the third Log...

Page 96: ...nfiguration 8 QoS Configuration Set up the priority queuing rate limit and storm control 9 IGMP MLD Snooping Configuring IGMP MLD Snooping parameters 10 Static Multicast Configuration To create edit o...

Page 97: ...0180C2000000 to 0180C200000F will be dropped Multicast MAC addresses from 0180C2000000 to 0180C200000F are reserved for use by 802 1 802 3 protocols The purpose for each multicast address is describe...

Page 98: ...e data than any one single port or device can deliver without replacing everything and buying new hardware For most backbone installations it is common to install more cabling or fiber optic pairs tha...

Page 99: ...t Trunking Create edit or delete port trunking group s 3 LACP Port Configuration Set up the configuration of LACP on all or some ports 4 4 3 1 Distribution Rule Click the option Distribution Rule from...

Page 100: ...ion MAC Address Enable or disable packets according to Destination MAC address 4 4 3 2 Port Trunking Click the option Port Trunking from the Link Aggregation menu and then the following screen page ap...

Page 101: ...below in mind when assign ports to a trunking group Must have 2 to 16 ports in each trunking group Each port can only be grouped in one group If the port is already set On in LACP Port Configuration i...

Page 102: ...configured as part of a static trunk If ports on other devices are also configured as LACP the Managed Switch and the other devices will negotiate a trunk link between them If an LACP trunk consists o...

Page 103: ...ave the same LACP port Key In order to allow a port to join an aggregated group the port Key must be set to the same value The range of key value is between 0 and 255 When key value is set to 0 the po...

Page 104: ...disables the links which are not part of that tree leaving a single active path between any two network nodes Multiple active paths between network nodes cause a bridge loop Bridge loops create sever...

Page 105: ...Settings Set up system priority max Age hello time etc 2 RSTP Aggregated Port Settings Set up aggregation path cost priority edge etc 3 RSTP Physical Port Settings Set up physical ability and edge sta...

Page 106: ...ork Force Version Set and show the RSTP protocol to be used Normal use RSTP Compatible compatible with STP 4 4 4 2 RSTP Aggregated Port Settings Click the option RSTP Aggregated Port Settings from the...

Page 107: ...us were true If the port cannot maintain this status for example if the port is forced to half duplex operation the P2P status changes to operate as if the P2P value were false The default setting for...

Page 108: ...108 This sets up each port s path cost The default value is 0...

Page 109: ...pull down menu of Select Setting You can choose Port Priority value between 0 and 240 The default value is 0 Configure Port Edge Select Edge from the pull down menu of Select Setting Set the port to e...

Page 110: ...connecting to a VLAN clients that are 802 1X complaint should successfully authenticate with the authentication server Initially ports are in the authorized state which means that ingress and egress...

Page 111: ...dentifying information from the client verifies that information with the authentication server and relays the response to the client RADIUS IP Specify RADIUS Authentication server address RADIUS Secr...

Page 112: ...ed This forces the Managed Switch to deny access to all clients either 802 1X aware or 802 1X unaware Auto This requires 802 1X aware clients to be authorized by the authentication server Accesses fro...

Page 113: ...folder MAC Address Management from the Switch Management menu and then the following screen page appears 1 MAC Table Learning To enable or disable learning MAC address function 2 Static MAC Table Conf...

Page 114: ...then the following screen page appears NOTE The Managed Switch only supports switch based MAC security and does not support port based MAC security The Managed Switch can support up to 128 entries of...

Page 115: ...different broadcast domains All broadcast multicast and unknown packets entering the Switch on a particular VLAN will only be forwarded to the stations or ports that are members of that VLAN VLAN can...

Page 116: ...t of broadcast packets on their network The following screen page appears when you choose Port Based VLAN mode and then select Configure VLAN Since source addresses of the packets are listed in MAC ad...

Page 117: ...N VLAN can enhance performance by conserving bandwidth and improve security by limiting traffic to specific domains A VLAN is a collection of end nodes grouped by logics instead of physical locations...

Page 118: ...derstand Access VLAN specifies the VLAN ID to the switch port that will assign the VLAN ID to untagged traffic from that port A port can only be assigned to one Access VLAN at a time When the port is...

Page 119: ...s referred to as the native VLAN ID for a Trunk native Port The native VLAN ID is the VLAN ID that carries untagged traffic on trunk native ports Example PortX configuration Configuration Result Trunk...

Page 120: ...G TCI P C VID Type LEN PAYLOAD FCS 802 1q Frame Preamble SFD D A S A Outer Tag or SP Tag Inner Tag or C Tag TCI P C VID Type LEN PAYLOAD FCS Double tagged Frame Double Tagged Frame As shown below in Q...

Page 121: ...set up VLAN mode and create 802 1Q VLAN on the selected port s 3 Management VLAN To set up management VLAN and management ports 4 4 7 4 1 VLAN Interface The following screen page appears if you choos...

Page 122: ...s Untagged packets PVID is added Tagged packets Stay intact When sending packets PVID and VID will be compared If PVID and VID are the same PVID will be removed If PVID and VID are different the packe...

Page 123: ...N group VLAN Name Use the default name or specify a VLAN name VLAN Members If you check the ports it denotes that the ports selected belong to the specified VLAN group 4 4 7 4 3 Management VLAN The fo...

Page 124: ...elect the VLAN mode for this Management VLAN Management Port Tick the checkbox on the ports that you would like them to become Management ports 4 4 7 4 4 QinQ VLAN configuration The following screen p...

Page 125: ...ed criteria and receives preferential treatments QoS enables you to assign various grades of network service to different types of traffic such as multi media video protocol specific time critical and...

Page 126: ...at services to the egress queues are offered in the sequential order and all traffic with higher priority queues is transmitted first before lower priority queues are serviced Weight Weighted Round Ro...

Page 127: ...packets Specify one of the listed options for CoS Class of Service priority tag values The default value is 0 The default 802 1p settings are shown in the following table Priority Level normal low lo...

Page 128: ...default setting is disabled Configure DSCP Remark Check DSCP Remarking to enable This allows you to enable or disable DSCP remarking for each port The default setting is disabled 4 4 8 2 QoS Rate Limi...

Page 129: ...s traffic will be dropped Specifying 0 is to disable this function 4 4 9 IGMP MLD Snooping The Internet Group Management Protocol IGMP is a communications protocol used to manage the membership of Int...

Page 130: ...the packet processing at the switch at the cost of needing additional memory to handle the multicast tables and also decreases the workload at the end hosts since their network cards or operating syst...

Page 131: ...1 One Unit 1 second Query Response Interval This determines the maximum amount of time allowed before sending an IGMP response report Default value 3000 One Unit 0 1 second Immediate Leave The Immedia...

Page 132: ...om the IGMP MLD Snooping menu and then the following screen page with the ability information of IPMC Segment ID Name and IP Range appears ID View only field that shows the current registered ID numbe...

Page 133: ...haracters IP Range Specify the multicast streams IP range for the registered segment The IP range is from 224 0 1 0 239 255 255 255 4 4 9 4 IPMC Profile Select the option IPMC Profile from the IGMP ML...

Page 134: ...PMC Profiles that are registered Max This shows the maximum number available for IPMC Profile The maximum number is 60 Profile Name Enter an identification name This field is limited to 20 characters...

Page 135: ...gistered in IPMC Profile option 4 4 10 Static Multicast Configuration Select the option Static Multicast Configuration from the Switch Management menu and then the following screen page appears IP IPv...

Page 136: ...tatic multicast configuration The default maximum number is 128 IP IPv6 Address Specify the multicast stream source IP IPv6 address VLAN Specify a VLAN ID for multicast stream Forwarding port Select a...

Page 137: ...onnected to the network For example it could be a device that you trust but has been taken over by an attacker By default most security functions available in this Managed Switch are turned off to pre...

Page 138: ...rm 4 4 12 1 DHCP Option 82 DHCPv6 Option 37 Settings The Managed Switch can add information about the source of client DHCP requests that relay to DHCP server by adding Relay Agent Information This he...

Page 139: ...ver Servers recognizing the Relay Agent Information option may use the Information to implement IP address or other parameter assignment policies Switch or Router as the DHCP relay agent intercepting...

Page 140: ...CP request is from Port 1 that is marked as both Opt82 port and trust port A If a DHCP request is with Opt82 Agent information and then the Managed Switch will forward it B If a DHCP request is withou...

Page 141: ...ings from the Security Configuration menu and then the following screen page appears Source Guard To specify authorized access information for each port There are three options available Unlimited Non...

Page 142: ...ed Time Specify packets expired time 180 259200 Seconds DHCP Server Trust Port Specify designated port to be Trust Port that can give you offer from DHCP server Check any port box to enable it DHCP Se...

Page 143: ...port number Click New to register a new Static IP address and then the following screen page appears Click Edit to edit and view Static IP Table settings Use Delete to remove a current Static IP addre...

Page 144: ...out to DHCP Server soon after they receive a DHCP offer When DCHP Server responds with a DHCP ACK message that contains lease duration and other configuration information the IP configuration process...

Page 145: ...orm control Unknown Unicast Rate Enable or disable unknown Unicast traffic control and set up unknown Unicast Rate packet per second pps Multicast Rate Enable or disable Multicast traffic control and...

Page 146: ...ination MAC Filter Select Any or specify a destination MAC address TOS Traffic Class Filter Select Any or specify a TOS Traffic class Protocol Next Header Specify IPv4 protocol and IPv6 next header IP...

Page 147: ...running different network layer protocols can learn information about each other A set of attributes are used to discover neighbor devices These attributes contains type length and value descriptions...

Page 148: ...LLDP TLVs to send LLDP uses a set of attributes to discover neighbor devices These attributes contains type length and value descriptions and are referred to TLVs Details such as port description sys...

Page 149: ...interval is 1440 minutes VLAN ID Specify the VLANs where Loop Detection will be performed Port 1 48 Enable or disabled Loop Detection function on the specific port s 4 5 Switch Monitor Switch Monitor...

Page 150: ...only field that shows IGMP status and Groups table 9 SFP Information View the current port s SFP information e g speed Vendor ID Vendor S N etc SFP port state shows current DMI Diagnostic monitoring...

Page 151: ...ate in frame relay Frame relay is temporarily disabled in order to prevent temporary loops which may occur in a Bridged LAN during the lifetime of this state as the active topology of the Bridged LAN...

Page 152: ...port Frames Sent The total frames sent from current port Sent Utilization The ratio of real sent traffic to the total bandwidth of current ports Total Bytes Total bytes of receiving and sending from c...

Page 153: ...llision Each port s Collision frames TX Dropped Frames Drop frames sent Total Errors Total error frames received Clear All This will clear all port s counter values and be set back to zero 4 5 4 Port...

Page 154: ...bytes frames received Frames 1024 1518 Bytes 1024 1518 bytes frames received Frames 1519 MAX Bytes Over 1519 bytes frames received RX Multicast Frames Good multicast frames received TX Multicast Fram...

Page 155: ...ct LACP Port Status from the LACP monitor menu and then the following screen page appears In this page you can find the following information about LACP port status Port Number The number of the port...

Page 156: ...key based on its rate duplex mode and other basic configurations In an LACP aggregation group all ports share the same operational key in a manual or static LACP aggregation the selected ports share t...

Page 157: ...u and then the following screen page appears In this page you can find the following information about RSTP bridge Update Update the current status Bridge ID RSTP Bridge ID of the Managed Switch Max A...

Page 158: ...e Port Yes is displayed if the port is the Edge port connecting to an end station and does not receive BPDU P2p Port Yes is displayed if the port link is connected to another STP device Protocol Displ...

Page 159: ...cation packets from current port RSTP Received The total received RSTP packets from current port STP Received The total received STP packets from current port TCN Received The total received TCN packe...

Page 160: ...2 1X port status from the 802 1x Monitor menu and then the following screen page appears In this page you can find the following information about 802 1X ports Port The number of the port State Displa...

Page 161: ...n order to view the real time 802 1X port statistics status of the Managed Switch select 802 1x Statistics from the 802 1x Monitor menu and then the following screen page shows up 4 5 8 IGMP MLD Monit...

Page 162: ...group members exist on the subnet Upon receiving an IGMP general query the Managed Switch forwards it through all ports in the VLAN except the receiving port Querier The state of IGMP querier in the...

Page 163: ...h as VLAN ID Querier and Queries Transmitted Received packets Select MLD Snooping Status from the IGMP MLD Monitor menu and then the following screen page appears Update Click Update to update the tab...

Page 164: ...oup The multicast IP address of IGMP querier Port The port s grouped in the specific multicast group 4 5 9 SFP Information Click the SFP Information folder and then the following screen page appears 4...

Page 165: ...of the slide in SFP Transceiver Vendor Name Vendor name of the slide in SFP Transceiver Vendor PN Vendor PN of the slide in SFP Transceiver Vendor SN Vendor SN of the slide in SFP Transceiver 4 5 9 2...

Page 166: ...voltage TX Bias mA The Slide in SFP module operation current TX Power dbm The Slide in SFP module optical Transmission power RX Power dbm The Slide in SFP module optical Receiver power 4 5 10 DCHP Sno...

Page 167: ...iew only field that shows DHCP server IP address TimeLeft View only field that shows DHCP client lease time 4 5 11 MAC Address Table MAC Address Table displays MAC addresses learned when System Reset...

Page 168: ...f the neighboring device System Name View only field that shows the system name advertised by the neighboring device Port Description View only field that shows the port description of the remote port...

Page 169: ...ct IEEE 802 1q Tag VLAN Table from the Switch Monitor menu and then the following screen page appears VLAN Name View only filed that shows the VLAN name VID View only filed that shows the VID 4 6 Syst...

Page 170: ...to update the latest firmware save current configuration or restore previous configuration to the Managed Switch 4 Load Factory Setting Load Factory Setting will set the configuration of the Managed...

Page 171: ...information Select Event Log from the System Utility menu and then the following screen page appears Click Clear to clear all Event log records 4 6 3 Upgrade The Managed Switch has both built in TFTP...

Page 172: ...ecific path and filename within the File Server Click OK to start the download process and receive files from the server A transmitting progress will be displayed during file transfer Once completed a...

Page 173: ...ation will set all the configurations of the Managed Switch back to the factory default settings However IP and Gateway addresses will not restore to the factory default It is very useful when network...

Page 174: ...r any configuration change Reset System can make it effective Select Reset System from the Console main menu and then the following screen page appears Click Set Next bootup Image to change the boot u...

Page 175: ...he directory raddb and modify these three files users clients conf and dictionary which are on the disc shipped with this product Please use any text editing software e g Notepad to carry out the foll...

Page 176: ...visioning process are described below for your reference A Setup Procedures Follow the steps below to set up Auto Provisioning server modify dhcpd conf file and generate a copy of configuration file S...

Page 177: ...n Server Update DHCP Client Linux Fedora 12 supports yum function by default First of all update DHCP client function by issuing yum install dhclient command Install DHCP Server Issue yum install dhcp...

Page 178: ...ease note that each vendor has their own way to define auto provisioning Make sure to use the file provided by the vendor Enable and run DHCP service 1 Choose dhcpd 2 Enable DHCP service 3 Start runni...

Page 179: ...179 Step 3 Modify dhcpd conf file Open dhcpd conf file in etc dhcp directory Double click dhcpd conf placed in etc dhcp directory to open it...

Page 180: ...oes not request a specific IP lease time the server will assign a default lease time value Maximum lease time This is the maximum length of time that the server will lease for 2 Define subnet subnet m...

Page 181: ...MD5 for firmware image 13 Specify the configuration filename 14 Specify the MD5 for configuration file NOTE 1 The text beginning with a pound sign will be ignored by the DHCP server For example in th...

Page 182: ...182 Restart DHCP service...

Page 183: ...be equal to DHCP when provisioning and it results in MD5 never matching and causing the device to reboot endless In order for your Managed Switch to retrieve the correct configuration image in TFTP FT...

Page 184: ...ration 2 The device will compare the firmware and configuration MD5 code form of DHCP option every time when it communicates with DHCP server 3 If MD5 code is different the device will then upgrade th...

Page 185: ...y The Managed Switch supports Port based VLAN implementation and IEEE 802 1Q standard tagging mechanism that enables the switch to differentiate frames based on a 12 bit VLAN ID VID field Besides the...

Page 186: ...PCs or other workstations Switch 1 also connects to Port 1 in Managed Switch Client PCs in the Marketing Department can access the Server 1 and Public Server Switch 2 is used in the RD Department to...

Page 187: ...port based RD OK 7 Return to Global Configuration mode and show currently configured port based VLAN membership SWH config if 2 22 23 26 exit SWH config show vlan port based Port Based VLAN Index VLAN...

Page 188: ...VLAN Configure VLAN Click OK to apply the settings 4 Click New to add a new Port Based VLAN Switch Management VLAN Configuration Port Based VLAN Configure VLAN 5 Add Port 2 22 23 and 26 in a group and...

Page 189: ...to member port 21 23 and 26 2 A untagged packet arrives at Port 2 Untagged packets received on the Managed Switch will be forwarded out untagged Therefore in this example the Managed Switch will look...

Page 190: ...packets to the Managed Switch to be routed in Carrier Ethernet For this example IEEE 802 1Q tagging mechanism can be used to forward data from the Managed Switch to the destination PC Data VLAN Netwo...

Page 191: ...n dot1q vlan access vlan 11 OK SWH config if 1 exit 8 Show currently configured VLAN tag settings SWH config show vlan interface IEEE 802 1q Tag VLAN Interface Port Mode PVID VLAN Member 1 access 11 1...

Page 192: ...By default all ports are member ports of the Default_VLAN Before removing the Deafult_VLAN from the VLAN table make sure you have correct management VLAN and PVID configurations otherwise incorrect co...

Page 193: ...t arrives at Port 1 port 1 s Port VLAN ID 11 will be added to the original port Because port 26 is set as a trunk port it will forward the packet with tag 11 out to the Carrier Ethernet 2 A tagged pac...

Page 194: ...WH config vlan 10 3 Name VLAN 10 to Management SWH config vlan 10 name Management OK SWH config vlan 10 exit 4 Assign Port 26 to VLAN 10 SWH config interface 26 SWH config if 26 vlan dot1q vlan trunk...

Page 195: ...gement VLAN 10 that includes only Port 26 as a member port Switch Management VLAN Configuration IEEE 802 1q Tag VLAN Configure VLAN 3 Check Management VLAN 10 settings Switch Management VLAN Configura...

Page 196: ...ag VLAN Management VLAN Click OK to apply the settings 5 Check Management VLAN 10 settings again Switch Management VLAN Configuration IEEE 802 1q Tag VLAN Configure VLAN Now Port 26 and CPU are member...

Page 197: ...nfiguration mode SWH enable Password SWH config SWH config 2 Create a VLAN 15 SWH config vlan dot1q vlan 15 OK 3 Name VLAN 15 to S VLAN SWH config vlan 15 name S VLAN OK SWH config vlan 15 exit 4 Assi...

Page 198: ...EEE 802 1q Tag VLAN Interface Port Mode PVID VLAN Member 1 dot1q tunnel 15 1 15 2 access 1 1 3 access 1 1 4 access 1 1 5 access 1 1 6 access 1 1 7 access 1 1 8 access 1 1 9 access 1 1 10 access 1 1 11...

Page 199: ...By default all ports are member ports of the Default_VLAN Before removing the Deafult_VLAN from the VLAN table make sure you have correct management VLAN and PVID configurations otherwise incorrect c...

Page 200: ...original tag will be kept intact and then added an outer tag 15 by Port 1 which is set as a tunnel port When this packet is forwarded to Port 26 two tags will be forwarded out because Port 26 is set a...

Page 201: ...0 Add and revise WEB management section Revise VLAN section on WEB GUI Draft new CISCO LIKE CLI section 1 07 B0 1 07 A2 1 07 92 2011 05 2011 04 2011 01 0 95 Modify LOGO image and product description...

Reviews:

No comments

Related manuals for FOS-3148 Series

EnGenius ETR9360 Quick Start Manual preview
ETR9360
Brand: EnGenius Pages: 3
Airlinkplus ASW224 User Manual preview
ASW224
Brand: Airlinkplus Pages: 20
Alcatel-Lucent 7705 SAR-A Installation Manual preview
7705 SAR-A
Brand: Alcatel-Lucent Pages: 154
InHand IR615-S Series User Manual preview
IR615-S Series
Brand: InHand Pages: 69
Lindy Modular Fast Fiber Switch Converter MT-RJ Specifications preview
Modular Fast Fiber Switch Converter MT-RJ
Brand: Lindy Pages: 3
Lanpro LP-F22 Series Assembling Instructions preview
LP-F22 Series
Brand: Lanpro Pages: 3
Billion BEC MX-1000 User Manual preview
BEC MX-1000
Brand: Billion Pages: 158
Westermo Viper-012 User Manual preview
Viper-012
Brand: Westermo Pages: 22
Patton electronics SmartNode 4634 Series Quick Start Manual preview
SmartNode 4634 Series
Brand: Patton electronics Pages: 12
TP-Link TL-WR840N Quick Installation Manual preview
TL-WR840N
Brand: TP-Link Pages: 2
Lancom 1711+ VPN Manual preview
1711+ VPN
Brand: Lancom Pages: 79
Planet IEEE 802.3at User Manual preview
IEEE 802.3at
Brand: Planet Pages: 2
Digi WR41v1 Test preview
WR41v1
Brand: Digi Pages: 22
Cisco ASR 9001 Hardware Installation Manual preview
ASR 9001
Brand: Cisco Pages: 160
Dell 100T TR5 Compatibility Matrix preview
100T TR5
Brand: Dell Pages: 90
Lenovo RackSwitch G8272 Installation Manual preview
RackSwitch G8272
Brand: Lenovo Pages: 118
Lenovo RackSwitch G8332 Installation Manual preview
RackSwitch G8332
Brand: Lenovo Pages: 122
Lenovo Storage N3310 User Manual And Hardware Maintenance Manual preview
Storage N3310
Brand: Lenovo Pages: 152

Brands by name

Popular brands

Load more brands