background image

34 

3.2.2.1

 

ACL Configuration 

 

Select 

Advanced > Seldom-used > ACL > ACL Setting

Step 1

The 

ACL Setting

 interface is displayed. 

 

ACL configuration 

Figure 3-39

 

 

Click 

Add

Step 2

 

Add 

Figure 3-40

 

Summary of Contents for DH-PFS4212-8GT-96

Page 1: ...Ethernet Switch Web Operation Manual V1 0 0...

Page 2: ...vision Content Release Time V1 0 0 First release April 2021 About the Manual The manual is for reference only If there is inconsistency between the manual and the actual product the actual product sha...

Page 3: ...l trademarks registered trademarks and the company names in the manual are the properties of their respective owners Please visit our website contact the supplier or customer service if there is any p...

Page 4: ...oltage Do not disassemble the device without professional instruction Transport use and store the device in allowed ranges of humidity and temperature When removing the cable power off the device firs...

Page 5: ...g Tree 23 3 1 7 Long Distance PoE 26 Seldom used Configurations 26 3 2 3 2 1 ERPS 26 3 2 2 ACL 33 3 2 3 Loop Protection 35 3 2 4 Security 36 3 2 5 IGMP Snooping 40 3 2 6 QoS 41 3 2 7 SNMP 51 3 2 8 DHC...

Page 6: ...V 4 7 3 Uploading Network Management Configuration File 67 Cybersecurity Recommendations 68 Appendix 1...

Page 7: ...ress 192 168 1 110 by default of the switch in the address bar of the web Step 1 browser and then press Enter key Web login Figure 1 1 Enter user name and password The user name and the password are a...

Page 8: ...rt information of the device After logging in the system the Quick Setting interface is displayed See Figure 2 1 On the switch if the port shows green it means the port is connected successfully And I...

Page 9: ...pport this function The number of PoE ports supported by different models is different Receive Usage The current receiving speed is divided by the average speed in a certain period 5 minutes usually S...

Page 10: ...tion parameter Parameter Description Port Displays all ports of the switch Mode Three modes Access Hybrid and Trunk Access When the port connects to terminal devices such as PC and IPC select Access T...

Page 11: ...a single etherchannel For example add port 1 and port 2 to Static Group 1 Select Model as Static in group 1 which indicates that the group is static aggregation Step 1 Select port 1 and port 2 in grou...

Page 12: ...the Mode area and add the ports to the aggregation group For example add port 3 and port 4 to aggregation group 2 2 Select LACP Passive in the Mode area and add the ports to the aggregation group For...

Page 13: ...VLAN interface Figure 2 8 2 Configure the parameters Table 2 3 VLAN interface Parameter Description VLAN Enter VLAN number IP address Set the IP address of the VLAN interface Mask Length Set the mask...

Page 14: ...n of the IP packet Mask Length Mask length with the destination address is to identify the IP address of the destination host or the route After Logical AND between destination address and network mas...

Page 15: ...onfiguration 3 1 1 1 System Information You can set the device name IP address mask length and DHCP enable and view the software information hardware information and time Be careful when you enable DH...

Page 16: ...re 3 1 Enter the device name IP address and mask length and Select DHCP enable Step 2 Click Save Step 3 3 1 1 2 IP and Route The hosts of different VLANs cannot communicate Route or the layer 3 switch...

Page 17: ...ace and the VLAN interface can forward packet for the VLAN Generally because the VLAN can isolate the broadcasting domain every VLAN corresponds to a network segment VLAN interface is the gateway of t...

Page 18: ...2 Description of IP routes Parameter Description Network It is the destination of the IP packet Mask Length Mask length with destination address is to identify the IP address of the destination host o...

Page 19: ...click Save Sync time Click Sync PC and the switch time synchronizes with the local PC time automatically Sync NTP server time Only with NTP server configured in the network can you enable this functio...

Page 20: ...splayed Log Figure 3 7 View logs Set the start time end time and log level and then click Search to view the details of the logs Log Level includes Error Warning Notice and Information Click Export to...

Page 21: ...ction Full means full duplex Half means half duplex Speed Duplex Setting Set the speed and the duplex mode The speed and duplex mode of combo port is fixed to Auto Flow Control State Displays flow con...

Page 22: ...VLAN and configure the VLAN By default the port belongs to VLAN1 Select Advanced Common VLAN Settings Step 1 The VLAN Settings interface is displayed VLAN settings Figure 3 9 Enter 1 2 in VLANs to cre...

Page 23: ...g All All data will not be tagged Allowed VLANs Set the allowed VLAN Click Save Step 4 3 1 4 Aggregation Aggregation is to form the multiple physical ports of the switch into the logical port The mult...

Page 24: ...ime The static aggregation group is different depending on the models of switch The actual interface shall prevail Static configuration Figure 3 11 Click Save Step 4 The port 1 and port 2 form a logic...

Page 25: ...s Control Table records the relationship between the MAC address and the port and the information including the VLAN that the port belongs to When the device is forwarding the packet it queries in the...

Page 26: ...ess table Figure 3 14 Bind the MAC address to the port in the certain VLAN For example bind the MAC address Step 2 00 00 00 00 00 01 to the port 3 in VLAN 2 1 Click Add The Add Static MAC Address inte...

Page 27: ...port Devices in MAC allowlist The static MAC devices changing from the dynamic MAC devices Select Advanced Common MAC Table Port MAC Filtering Step 1 The Port MAC Filtering interface is displayed Por...

Page 28: ...AC device to static 1 Select one record and click Reserved 2 Click Save The type changes from Dynamic to Static Static MAC devices can communicate with the port normally Add MAC allowlist 1 Click Add...

Page 29: ...ng Tree Protocol and to the latest MSTP Multiple Spanning Tree Protocol Select Advanced Common Spanning Tree STP Ports Settings Step 1 STP ports settings Figure 3 19 Select the STP mode STP RSTP and M...

Page 30: ...24 STP Figure 3 20 RSTP Figure 3 21...

Page 31: ...22 Select 3 ports at least to combine an STP RSTP MSTP snoop For example Port 1 port 2 and Step 4 port 3 combine an STP snoop STP snoop Figure 3 23 Click Save Step 5 The states of port 1 port 2 and po...

Page 32: ...rnet Ring Protection Switching is the loop prevention protocol standard of layer 2 defined by ITU T and the standard number is ITU T G 8032 Y1344 So it is also called G 8032 It defines RAPS Ring Auto...

Page 33: ...on Figure 3 25 Click Add Step 2 Add Figure 3 26 Configure the parameters Step 3 Table 3 5 MEP parameters Parameter Description Instance Enter MEP instance number such as 1 Residence Port Enter the por...

Page 34: ...protocol packet ERPS to ERPS port Keep Port 0 APS MEP consistent with Port 0 SF MEP Keep Port 1 APS MEP consistent with Port 1 SF MEP For example Port 0 APS MEP is 1 and Port 1 APS MEP is 2 Port 1 AP...

Page 35: ...the mutex function of the ports 4 VLAN Configuration 5 Create MEP 6 Create ERPS and configure control VLAN and protection instance 7 View the status Example Plan protection VLAN and protocol VLAN to b...

Page 36: ...sed ERPS MEP Setting 2 Click Add 3 Set Instance to be 1 See Figure 3 31 4 Set Residence Port to be 1 5 Set Level to be 0 6 Set Tagged VID to be 3 that is protocol VLAN 7 Click OK Add MEP Figure 3 31 A...

Page 37: ...EP 2 Figure 3 33 Click OK Step 4 Create ERPS Step 5 1 Select Advanced Seldom used ERPS ERPS Setting The ERPS Setting interface is displayed 2 Click Add The Add New ERPS interface is displayed 3 Set ER...

Page 38: ...32 Add ERPS Figure 3 34 Click 1 under ERPSID to enter the configuration interface Step 6 ERPS configuration Figure 3 35 1 Click VLANconfig 2 Click Add...

Page 39: ...Instance state Figure 3 38 3 2 2 ACL ACL Access Control List is for flow identification For filtering the packet the network device needs to configure a series of matching conditions to classify the...

Page 40: ...34 3 2 2 1 ACL Configuration Select Advanced Seldom used ACL ACL Setting Step 1 The ACL Setting interface is displayed ACL configuration Figure 3 39 Click Add Step 2 Add Figure 3 40...

Page 41: ...oup configuration Figure 3 41 Enter ACL ID Ensure the ACL ID has been added during ACL configuration Step 2 Click Save Step 3 3 2 3 Loop Protection Detect the loop among the ports After the device has...

Page 42: ...Add user Click Add Step 1 Add user Figure 3 44 Enter the user name password and confirm password The password must consist of 8 to 32 Step 2 non blank characters and contain at least two types of cha...

Page 43: ...SSH on the upper right corner of the User Management interface HTTPS HTTPS Hyper Text Transfer Protocol over Secure Socket Layer is the HTTP channel for security target SSL layer and TLS layer are add...

Page 44: ...ation Click corresponding to HTTPS on the upper right corner of the User Management interface to enable HTTPS service 3 2 4 2 NAS Configuration NAS Network Access Server is a server that allows ISP to...

Page 45: ...the network from unauthorized visits It is used in the network that allows remote visits but requests the higher security It defines the RADIUS packet format and the message transmission mechanism It...

Page 46: ...he multicast constraint mechanism running on the device of layer 2 for managing and controlling the multicast Through analyzing the received IGMP packet the device of layer 2 which runs IGMP Snooping...

Page 47: ...ces provided by the network QoS evaluates bandwidth delay dithering and packet loss during packet and forwarding Congestion Congestion is common in a complex Internet packet switched environment See t...

Page 48: ...ccurs at the egress port the switch will give a CoS value to the packet after it passes the ingress port The larger the CoS value the higher the priority Select Advanced Seldom used QoS Port Classific...

Page 49: ...hen congestion occurs the priority for packet passing egress port of switch depends on the CoS value in Port Classification 2 8 Queues Weighted When congestion occurs the priority for packet passing e...

Page 50: ...44 Port schedulers Figure 3 55 Click the port such as port 1 Step 2 The QoS Egress Port Schedulers and Shapers Port 1 interface is displayed The CoS of Q0 is 0 and so on...

Page 51: ...r Mode as 2 Queues Weighted The max speed limit of port 1 and port 2 is 500 kbps When congestion occurs 50 ingress port packet will pass the egress port See the following for the configuration 1 Selec...

Page 52: ...ort Shapers The configuration is the same for port schedulers and port shapers The only difference is that the port schedulers interface shows the weight value and the port shapers interface shows the...

Page 53: ...e 3 58 3 2 6 4 DSCP Based Make sure that you have enabled DSCP before configuring DSCP function Select Advanced Seldom used QoS Port Classification Step 1 Enable DSCP at DSCP port Suppose port 3 is th...

Page 54: ...8 the CoS is 2 and DPL are 2 and 1 Step 5 1 When DSCP are 4 and 8 select Trust to enable the function See Figure 3 60 2 When setting DSCP to be 4 CoS is 2 and DPL is 2 3 When setting DSCP to be 8 CoS...

Page 55: ...49 DSCP Based Figure 3 60 Click Save Step 6 3 2 6 5 Storm Policer Inhibit the three packets including unicast multicast and broadcast Select Advanced Seldom used QoS Storm Policer Step 1...

Page 56: ...eceive the rate up to 1024 fps of unicast packet In Multicast select the Enable box and enter 1024 in Rate It means that the port can receive the rate up to 1024 fps of multicast packet In Broadcast s...

Page 57: ...of different physical features SNMP provides only the most basic function library It makes the management task and the physical feature and the networking technology of the managed device independent...

Page 58: ...nfiguring SNMP v1 v2 Example Configure SNMP v1 The configuration of SNMP v2 is the same as that of SNMP v1 Select SNMP v1 in SNMP Version Step 1 Set the read only community read write community trap a...

Page 59: ...53 SNMP v3 Figure 3 64 Set the trap address trap port and trap name Step 2 Set the read only username authentication type authentication password encryption type Step 3 and encryption password...

Page 60: ...work scale is large The workload is too heavy if manually configured and centralized management for network will be difficult The quantity of PC is larger than the quantity of IP address in the networ...

Page 61: ...segment of excluded IP Step 4 Excluded IP refers to the IP reserved for the server which will not assign to the client 1 Click Add in Excluded IP The Add Excluded IP interface is displayed See Figure...

Page 62: ...me Enter the lease time of the address pool Gateway Configure the default gateway of the address pool 3 Click OK 3 2 9 LLDP LLDP Link Layer Discovery Protocol is a standard link layer discovery way It...

Page 63: ...send and receive LLDP packet Select Disable Neither send nor receive LLDP packet Select Rx only Only receive LLDP packet Select Tx only Only send LLDP packet Click Save Step 3 View the LLDP Neighbor...

Page 64: ...DP neighbor Figure 3 70 3 2 10 485 Configuration Transmit the data of asynchronous serial port RS 232 485 transparently through Ethernet Select Advanced Seldom used 485 Config 485 configuration Figure...

Page 65: ...ards of IEEE 802 3af IEEE 802 3at and IEEE 802 3bt adopting the power port globally agreed It can be applied in IP telephone wireless AP Access Point portable device charger card reader network camera...

Page 66: ...corresponding port Click Save Step 5 3 2 11 2 Green PoE Set PoE off and on time Select Advanced Seldom used PoE Green PoE Step 1 Green PoE Figure 3 73 Set PoE Off Time and PoE On Time Step 2 Select th...

Page 67: ...D and keep it online and check the status of PD devices every 60 s If there is no data transmission the PoE port will be automatically powered off and restarted Mandatory PoE power supply and PoE watc...

Page 68: ...62 3 2 11 5 Viewing PoE Event Statistics Select Advanced Seldom used PoE PoE Event Statistic to view PoE event statistics PoE event statistic Figure 3 76...

Page 69: ...and the device reboots Step 3 Restoring Default Settings 4 2 You can restore all the switch configurations to the factory defaults except the VLAN1 IP address of the switch Select Maintain Common Res...

Page 70: ...to upload Step 2 Click UpLoad Step 3 Restart the device and the configuration will take effect Step 4 Software Update 4 4 Select Maintain Common Software Update Step 1 Upgrade Figure 4 5 Click Browse...

Page 71: ...that through configuring switch data package from one or several ports mirroring source ports can be copied to a specific port mirroring destination port The mirroring destination port connects to a P...

Page 72: ...e Step 4 Ping 4 6 With Ping protocol you can check whether the device with a specified IP address can be accessed and check whether the network connection fails Select Maintain Common Ping Step 1 Ping...

Page 73: ...sView Export Step 1 Export configuration file Figure 4 11 Click Export Step 2 4 7 3 Uploading Network Management Configuration File You can upload network management configuration file Select Maintain...

Page 74: ...suggest that you download and use the latest version of client software Nice to have recommendations to improve your equipment network security 1 Physical Protection We suggest that you perform physi...

Page 75: ...er encrypted transmission will cause some loss in transmission efficiency 11 Secure Auditing Check online users we suggest that you check online users regularly to see if the device is logged in witho...

Reviews: